| virtuous-barb-6862.dataplicity.io/dk/a1b2c3/f58f552eed0c2300502a2b55f664996d/login/ | 143.204.55.61 | 301 Moved Permanently | 167 B |
URL HTTP/1.1virtuous-barb-6862.dataplicity.io/dk/a1b2c3/f58f552eed0c2300502a2b55f664996d/login/ IP143.204.55.61:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hashf5d40b7259645010f9a248858ad14178 b3051d17a6ec8c9e166bf09a62b48261ab86957b 7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank | fortinet | Phishing | |
GET /dk/a1b2c3/f58f552eed0c2300502a2b55f664996d/login/ HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 03 Feb 2023 09:51:09 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://virtuous-barb-6862.dataplicity.io/dk/a1b2c3/f58f552eed0c2300502a2b55f664996d/login/
X-Cache: Redirect from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Y7gXHRDQx2ZT0UNeWchJ8FtQxBpLDYw72jlxM5nZtO5p77MP65V1qA==
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash81713f952b51a865ad9764cde68e3fdb 278c3a9c4bb2a0ffb7375f90d89a1ba6e90a766a c2eb0d8a24ecb51af28f1c71db4b9a95c568dcf6c94b41ee8c78787a4ebebcef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2EB0D8A24ECB51AF28F1C71DB4B9A95C568DCF6C94B41EE8C78787A4EBEBCEF"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13135
Expires: Fri, 03 Feb 2023 13:30:04 GMT
Date: Fri, 03 Feb 2023 09:51:09 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashec47f9eed203ae063b9c210009de54a9 19ff156471b9cffbc2432c5b65543bdd18e36271 3974208ce1840f6c9467287b7e220379ed881d76db64939f411dbc500c103d48
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3974208CE1840F6C9467287B7E220379ED881D76DB64939F411DBC500C103D48"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6096
Expires: Fri, 03 Feb 2023 11:32:45 GMT
Date: Fri, 03 Feb 2023 09:51:09 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash30db107dcf4380cef05efea409c2e6a3 96e6a306fbc07299aba64e5c14e2bfca35872fa9 b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 03 Feb 2023 09:43:35 GMT
content-type: application/json
age: 454
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash9a76feabb767086ae0fa54e0ffbf763f 3655d78994a1e9838340669462728b67c8c12e54 bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9290
Expires: Fri, 03 Feb 2023 12:25:59 GMT
Date: Fri, 03 Feb 2023 09:51:09 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: YhtQB2VSEmuGCzr+h1l4QSL7YPLP13BCng8FyjI9mPimBZErpCojgE0jTdM2s12GW/qf15G/Gn8=
x-amz-request-id: JWNSYST5Z185266N
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 03 Feb 2023 08:52:20 GMT
age: 3529
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 09:51:09 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 03 Feb 2023 09:49:06 GMT
age: 124
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash8913af0be619500295008bb91f506660 a7b8068ba9aa506205a295b24458c2616997a0d1 6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6875
Expires: Fri, 03 Feb 2023 11:45:45 GMT
Date: Fri, 03 Feb 2023 09:51:10 GMT
Connection: keep-alive
|
|
| push.services.mozilla.com/ | 35.155.47.30 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP35.155.47.30:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: s7WsIDXbGY4w6v8uKUStHw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: VLpfZBvA+qg7RdY20TuflodsusA=
|
|
| virtuous-barb-6862.dataplicity.io/dk/bower_components/font-awesome/css/font-awesome.min.css | 143.204.55.44 | 200 OK | 6.6 kB |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/bower_components/font-awesome/css/font-awesome.min.css IP143.204.55.44:0
File typeASCII text, with very long lines (30837) Hash11222b06ed955893a95f4d4f94d754a6 140330b30b9490c9a98b2d7e71b5d1f107c243c9 7f596aacbe4591f01a463daec67efb7adf3b191d6a1031a50d21b023b297059d
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank |
GET /dk/bower_components/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/a1b2c3/f58f552eed0c2300502a2b55f664996d/login/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 6646
date: Fri, 03 Feb 2023 09:51:11 GMT
server: nginx
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:51:11 GMT
etag: "7918-58e9aa94-e212a;br"
last-modified: Sun, 09 Apr 2017 03:29:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2DGjU0uQ9fwA4P6krIg7w3SSBN3k7LOvUOWifh_yBW05pbj8tfnQUA==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/bower_components/ua-parser-js/dist/ua-parser.min.js | 143.204.55.44 | 200 OK | 6.0 kB |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/bower_components/ua-parser-js/dist/ua-parser.min.js IP143.204.55.44:0
File typeUnicode text, UTF-8 text, with very long lines (16817) Hash9f782b11abdef176b9e0d5899a634b07 43dd6a3e3550e92c7da197d141baa78a697a1032 d33e2ca4d194c4c55ed7beba31eb7a3e23223874870653ee3ba78f9449fbb243
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank | fortinet | Phishing | |
GET /dk/bower_components/ua-parser-js/dist/ua-parser.min.js HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/a1b2c3/f58f552eed0c2300502a2b55f664996d/login/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 5961
date: Fri, 03 Feb 2023 09:51:11 GMT
server: nginx
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:51:11 GMT
etag: "4298-59df16c8-e2123;br"
last-modified: Thu, 12 Oct 2017 07:16:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: medZ61jCifd-WplHotI_T287eG8x4FzbjlIYaVHoT3hirAXlUeSr1A==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/core/form/core_form.css | 143.204.55.44 | 200 OK | 856 B |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/core/form/core_form.css IP143.204.55.44:0
Hashc125ce7c2f3d84c1d38638de45631ed1 6379d7f1c595effb8977d278487707ddbb9aec74 dec7240d91c6d57e62d07ec4bc47903c1609595ab555da68a281cab1a750e3fe
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank |
GET /dk/core/form/core_form.css HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/a1b2c3/f58f552eed0c2300502a2b55f664996d/login/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 856
date: Fri, 03 Feb 2023 09:51:11 GMT
server: nginx
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:51:11 GMT
etag: "11f9-5ec80e2a-e20b2;br"
last-modified: Fri, 22 May 2020 17:38:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6_iHAndHPQrGVsn3NuKL5BVdFkK-T2KZwtVUayzzyZ106DDEHgFaSA==
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashc14d3cf8ade0150a711f094be32ac474 11e7fb5487d364c5392e1594e09f5b49831043ea 2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10411
Expires: Fri, 03 Feb 2023 12:44:42 GMT
Date: Fri, 03 Feb 2023 09:51:11 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashc14d3cf8ade0150a711f094be32ac474 11e7fb5487d364c5392e1594e09f5b49831043ea 2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10411
Expires: Fri, 03 Feb 2023 12:44:42 GMT
Date: Fri, 03 Feb 2023 09:51:11 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashc14d3cf8ade0150a711f094be32ac474 11e7fb5487d364c5392e1594e09f5b49831043ea 2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10411
Expires: Fri, 03 Feb 2023 12:44:42 GMT
Date: Fri, 03 Feb 2023 09:51:11 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashc14d3cf8ade0150a711f094be32ac474 11e7fb5487d364c5392e1594e09f5b49831043ea 2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10411
Expires: Fri, 03 Feb 2023 12:44:42 GMT
Date: Fri, 03 Feb 2023 09:51:11 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feed96488-989b-49ab-8eef-5c9dea89a5ca.jpeg | 34.120.237.76 | 200 OK | 5.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feed96488-989b-49ab-8eef-5c9dea89a5ca.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash5314f1087266189144982b464f4aa7a6 438b5a17b9060f6825331348aa3797ab1c15895d fb7d5ec834d28c99f6430703c002c24a9caf50b7701a369cbd69e51576f1e73c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feed96488-989b-49ab-8eef-5c9dea89a5ca.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5898
x-amzn-requestid: 50d6181d-6804-48ab-bc38-9fcaf4da1bc5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fZALWF5IIAMFv5g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d37a48-2e2e53124ce2f9eb31290ec4;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 07:16:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 9Jus6UYlOGiDdqLBxJ387FMtEAST6THfW-oz6gjgFzKzchCdwUCcvQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 03:13:49 GMT
age: 23842
etag: "438b5a17b9060f6825331348aa3797ab1c15895d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg | 34.120.237.76 | 200 OK | 9.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash352e4166a431e781e56cc7f169c7f8ca 866b76c34076cf2e18c6a071336fcf4f581f3c4d 75ba13b601f4b00c5b091eb29e7f6739ffee3e127bd6d3c4b35cc967bb6d354a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9779
x-amzn-requestid: 101b984b-9c04-4d07-b1fe-3d888f4bcd49
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ftcNRFV_oAMF2_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dba721-72679ba0378015034e17b8ca;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 12:05:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: p74tt3doRE9DKoD5cpPKriYPFEQhq7f3Xf8vhgNNz7QhZNIvdc6NQQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:05:18 GMT
age: 42353
etag: "866b76c34076cf2e18c6a071336fcf4f581f3c4d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fff49ad64-ed0c-4270-8972-02b93a55c3b8.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fff49ad64-ed0c-4270-8972-02b93a55c3b8.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashb67f1de5050f7e32226bb0b279e5f450 058dc594601de546ae391ffa47269b404fee0f02 268b5f2557e4f171f33641cc7923d6cd786cba6e056f6656c82113b49b70a3df
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fff49ad64-ed0c-4270-8972-02b93a55c3b8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12514
x-amzn-requestid: e5e536fd-15ec-4a9f-a678-c24e6202d0f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fY_y3HRSoAMFxUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d379ab-5137ec566a8ccb4a3628e17a;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 07:13:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KvaWZ_Re1oRbOGg3MDxp5BKPCMAzYqCfVo4n3rf67ppjVO9Pmey4wg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:05:20 GMT
age: 42351
etag: "058dc594601de546ae391ffa47269b404fee0f02"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashe366b32074025aaf60bbae8bdb08d330 a52c2883bad98fa20333aa639a5dd3a5bf544c8e 9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w0Zm5V0TQxsQ7917U3fdhS_n7qKE143PuhI2JmNCDM_Pf0yPLyW6yA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 04:53:21 GMT
age: 17870
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fde7081-1c8d-41df-98c8-c063731c6202.jpeg | 34.120.237.76 | 200 OK | 3.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fde7081-1c8d-41df-98c8-c063731c6202.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash703c7834618fd34f3d7ce5c82a51abc0 4bdaa7e9e8d6408b73ea457e7aabb26fa2a5c81c 1f467ce5825e3f8b8f841293d1ce945dc7a577abbe2cb8a2caa16ace165f4857
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fde7081-1c8d-41df-98c8-c063731c6202.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3385
x-amzn-requestid: 30717e1a-7a08-4b11-90e7-cd175aa667d9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuvzrEo4oAMF1qg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2ce4-3bc1302b4cf47fa2520e3033;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:36:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AnMRlC-rgJLk6OwzHDFeaGBuDfEuRj_n0S2o1o7QSTZqMwCIr-20-A==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:46:35 GMT
age: 43476
etag: "4bdaa7e9e8d6408b73ea457e7aabb26fa2a5c81c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15f2ebc9-82b4-4f1b-b0b8-978571cb123b.jpeg | 34.120.237.76 | 200 OK | 9.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15f2ebc9-82b4-4f1b-b0b8-978571cb123b.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash02123eef9faa8560ff66b058d4e13a28 decf26282993d7f0b14cf4112d14fa39c97fa89f 28889ff20f1b2fe0b73f8f97e6569f1d68d77fe436eeb47cc06ee4f0822ff239
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15f2ebc9-82b4-4f1b-b0b8-978571cb123b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9130
x-amzn-requestid: 09ad3fbb-1e71-4455-82df-6e59f65239a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuxiYEkqIAMFVZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2fa8-1dca116e4317f9bd14f6d45a;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:48:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _Bc2svrG-wX63DK9RPUyjh-n6AHVHaQe3QRmEL27L-amwCH2I_f_9g==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:05:17 GMT
age: 42354
etag: "decf26282993d7f0b14cf4112d14fa39c97fa89f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/login/form/form.js?v=63dcd90eb55d5 | 143.204.55.44 | 200 OK | 1.0 kB |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/login/form/form.js?v=63dcd90eb55d5 IP143.204.55.44:0
File typeASCII text, with very long lines (3434), with no line terminators Hash07afccfc39c70175abfd983fa7b2203e 7bad97f84f19e587017b1e1f03987f05c7bb11b2 5bf70c51471e58d0a705d1bd4ea6c9d889a377415eed915394afdeaa949a2d56
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank | fortinet | Phishing | |
GET /dk/login/form/form.js?v=63dcd90eb55d5 HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/a1b2c3/f58f552eed0c2300502a2b55f664996d/login/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 1032
date: Fri, 03 Feb 2023 09:51:11 GMT
server: nginx
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:51:11 GMT
etag: "d6a-5dea980e-e224e;br"
last-modified: Fri, 06 Dec 2019 18:03:58 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: oSgrRRTbBVq2SseblA9J5QALjoj69GQ7O9i1f0l8cC63NNlXm1qlSA==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/core/form/core_form.js | 143.204.55.44 | 200 OK | 6.2 kB |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/core/form/core_form.js IP143.204.55.44:0
File typeUnicode text, UTF-8 text, with very long lines (22945), with no line terminators Hashb00ae3061f6dfb16359b50f687f25268 5c6cc7ff6fa1463f1d425f15f111a106bb282c1c de8b504dd441b32bf5e01b5c87993af8a1c2a879ab400ecc2f9c78ae50a566a6
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank | fortinet | Phishing | |
GET /dk/core/form/core_form.js HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/a1b2c3/f58f552eed0c2300502a2b55f664996d/login/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 6165
date: Fri, 03 Feb 2023 09:51:11 GMT
server: nginx
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:51:11 GMT
etag: "59a4-5fa69fd6-e20b3;br"
last-modified: Sat, 07 Nov 2020 13:23:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6NZbmiCJ7NYcWYQjGSEeMR6ehiy2OzFDbh0ntta6WpRU2lJJbh6bmA==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/core/token/core_token.js | 143.204.55.44 | 200 OK | 2.6 kB |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/core/token/core_token.js IP143.204.55.44:0
File typeASCII text, with very long lines (11754), with no line terminators Hash86e81aec7074f0a216426ee36abc03b7 202fcd9ed19d8b660bc884dfef1e58b6d770aae0 26b479e9dbed11c546a4a5ad93d42e973ff7ada0313c8fa506d6743b6c6fbc9a
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank | fortinet | Phishing | |
GET /dk/core/token/core_token.js HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/a1b2c3/f58f552eed0c2300502a2b55f664996d/login/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 2573
date: Fri, 03 Feb 2023 09:51:11 GMT
server: nginx
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:51:11 GMT
etag: "2dea-5fa6a006-e20b0;br"
last-modified: Sat, 07 Nov 2020 13:24:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8CYaURvOqX_F_vvMVIItCzLVHLdStIqE87skYW82Tz5I8kDaG24HvA==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/login/form/css.css | 143.204.55.44 | 200 OK | 0 B |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/login/form/css.css IP143.204.55.44:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank |
GET /dk/login/form/css.css HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/a1b2c3/f58f552eed0c2300502a2b55f664996d/login/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 0
date: Fri, 03 Feb 2023 09:51:11 GMT
server: nginx
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:51:11 GMT
etag: "0-5d872d1e-e224d;;;"
last-modified: Sun, 22 Sep 2019 08:13:18 GMT
accept-ranges: bytes
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vQWWxy4bjFRZDkhU5W7XuzNrag7gVaIw8OU0jCWm_czrmgfafJUzaQ==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/bower_components/jquery/dist/jquery.min.js | 143.204.55.44 | 200 OK | 29 kB |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/bower_components/jquery/dist/jquery.min.js IP143.204.55.44:0
File typeASCII text, with very long lines (32058) Hashb3a379b7e761820bd153b1455cb7f869 b43e13ee5876142d063322243881dc950993c867 ee266bb7706bcc2b01393912870297448b135a0c5f4536b92eb5944a42917259
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank | fortinet | Phishing | |
GET /dk/bower_components/jquery/dist/jquery.min.js HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/a1b2c3/f58f552eed0c2300502a2b55f664996d/login/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 29376
date: Fri, 03 Feb 2023 09:51:11 GMT
server: nginx
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:51:11 GMT
etag: "15283-5934c80a-e211c;br"
last-modified: Mon, 05 Jun 2017 02:55:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zhRILezEZOKOgMPPg6ZQ2Z-2II90U2KHmaHcl87AuYTjJSZfSURFcg==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/login/index.css | 143.204.55.44 | 200 OK | 1.0 kB |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/login/index.css IP143.204.55.44:0
Hashd44af931eb3e45f2b05b383b9133f97f 7548131b58781e593b1925b80741f9c38e86cb43 efc297b9306bc64d5f9fcc6ce81587510ba61584e500f6dc04cc47960ef3ee3a
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank |
GET /dk/login/index.css HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/a1b2c3/f58f552eed0c2300502a2b55f664996d/login/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 1047
date: Fri, 03 Feb 2023 09:51:12 GMT
server: nginx
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:51:11 GMT
etag: "3940-5f0cae80-e226a;br"
last-modified: Mon, 13 Jul 2020 18:57:04 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Xr0ABDgK9H01gYgv_vAd5dehoC6GHUA1nF1L4Ue-AEbirKUkCTShFw==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/login/token/token.js?v=63dcd90eb55d8 | 143.204.55.44 | 200 OK | 698 B |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/login/token/token.js?v=63dcd90eb55d8 IP143.204.55.44:0
File typeASCII text, with very long lines (1800), with no line terminators Hashda6198d2b32d8994fe70c0c329934cd7 11eeb5bd7f1197ee7147f2ddd13e4a3df56a3502 e439a76dddd72eecbe1f338d1e52c82bcfc9204ba42db3870bceb46c5ab3c593
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank | fortinet | Phishing | |
GET /dk/login/token/token.js?v=63dcd90eb55d8 HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/a1b2c3/f58f552eed0c2300502a2b55f664996d/login/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 698
date: Fri, 03 Feb 2023 09:51:12 GMT
server: nginx
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:51:11 GMT
etag: "708-5f0ef876-e2241;br"
last-modified: Wed, 15 Jul 2020 12:37:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QsQmFnSF9eo2iHOJv6HBJ1oF4GP87eVmRLjBIYjkYCTpxixSZ1MShg==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/login/dkb_responsive.min.css | 143.204.55.44 | 200 OK | 36 kB |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/login/dkb_responsive.min.css IP143.204.55.44:0
File typeASCII text, with very long lines (65536), with no line terminators Hash793d2f980b3cac9b58baee29da769772 7c428487f06ac3ab93a232eef4551c339a7a35f2 932d7ac3a2b526f0f9b3672dd820079a07cb12b264325a90a1f2f856cc86e3bb
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank |
GET /dk/login/dkb_responsive.min.css HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/a1b2c3/f58f552eed0c2300502a2b55f664996d/login/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 35982
date: Fri, 03 Feb 2023 09:51:12 GMT
server: nginx
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:51:11 GMT
etag: "4bb56-5f0cab2c-e2251;br"
last-modified: Mon, 13 Jul 2020 18:42:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Hv90wLy_gjkE9eVNNX8StquOtcL0egkcjHU8hvm0MhT4x1B9Hv4oZw==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/login/dkb-global.css | 143.204.55.44 | 200 OK | 35 kB |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/login/dkb-global.css IP143.204.55.44:0
File typeASCII text, with very long lines (26620) Hash91cec36f30571729a86c53f8da72a828 41811d499482f4e3045a211aa6f02b8cd9b98924 a256ea62b254ed2e18b1db1f688ef1e9794713599907f823ba59a5a9101be5c3
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank |
GET /dk/login/dkb-global.css HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/a1b2c3/f58f552eed0c2300502a2b55f664996d/login/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 35267
date: Fri, 03 Feb 2023 09:51:12 GMT
server: nginx
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:51:11 GMT
etag: "38891-5f0cab2c-e227c;br"
last-modified: Mon, 13 Jul 2020 18:42:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: onP2g4RGqN4wuVkgwZK9SbLFT4Vs-xDdDidXx4IO5Ypy4q8bd23cng==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/login/c0d75975d30300cc39ba6c22834ef480.jpg | 143.204.55.44 | 200 OK | 23 kB |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/login/c0d75975d30300cc39ba6c22834ef480.jpg IP143.204.55.44:0
File typeJPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS3 Windows, datetime=2016:10:25 17:57:59], baseline, precision 8, 120x90, components 3\012- data Hashc0d75975d30300cc39ba6c22834ef480 bf459b9a013326a662bdce634e0add247629f5fa 04de149751276069b2c581032afc9c43bf176fe06868a1f2147f3935b8ad116b
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank |
GET /dk/login/c0d75975d30300cc39ba6c22834ef480.jpg HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/a1b2c3/f58f552eed0c2300502a2b55f664996d/login/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 22633
date: Fri, 03 Feb 2023 09:51:12 GMT
server: nginx
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:51:11 GMT
etag: "5869-5f0cab2c-e2279;;;"
last-modified: Mon, 13 Jul 2020 18:42:52 GMT
accept-ranges: bytes
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: a7ctUwOdRaYFAzcNbo_sRtNCuvzKIUd_okRN6M0RALNkxJmAjkN2Gw==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/login/9c8bf4e8205bf61d35b8fb9d34449556f682914e.svg | 143.204.55.44 | 200 OK | 402 B |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/login/9c8bf4e8205bf61d35b8fb9d34449556f682914e.svg IP143.204.55.44:0
File typeSVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (686), with no line terminators Hash6b44e18098c3abdb7544b2d37c523101 2ace983ab6959a310727f7572d397a9a437f77fe 2f6841fa4eefb748052623f99db78f80a5ca99fbb3319b5a3f90fa5689ae45cc
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank | fortinet | Phishing | |
GET /dk/login/9c8bf4e8205bf61d35b8fb9d34449556f682914e.svg HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/login/dkb_responsive.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 402
date: Fri, 03 Feb 2023 09:51:12 GMT
server: nginx
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:51:12 GMT
etag: "2ae-5f0cab2c-e226c;br"
last-modified: Mon, 13 Jul 2020 18:42:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UwOCDGbf_mW3-6xB-zNYgypvyDCYMsqLfPzCZGTmLFb0_pnwfujYwQ==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/login/9ffff3dcba74a06f908dcc216aff9945f2c794a7.svg | 143.204.55.44 | 200 OK | 469 B |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/login/9ffff3dcba74a06f908dcc216aff9945f2c794a7.svg IP143.204.55.44:0
File typeSVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (871), with no line terminators Hash0091db7103221d7d7460594cafd8f14b 698633c54d56d279c0fecebf9443388adb4181ee 5693776d6bcd6f66429e67f597dedc82abb107070588309cfffb4a8eb894316e
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank | fortinet | Phishing | |
GET /dk/login/9ffff3dcba74a06f908dcc216aff9945f2c794a7.svg HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/login/dkb_responsive.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 469
date: Fri, 03 Feb 2023 09:51:12 GMT
server: nginx
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:51:12 GMT
etag: "367-5f0cab2c-e2262;br"
last-modified: Mon, 13 Jul 2020 18:42:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qldiY8aBLSCjsRPBf4LAkCe3x9JU5VYGehI6Cx3Xg2v3yMmBD_Jtdw==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/login/1ee670489f75dd6ea807765ada75310558e5d196.svg | 143.204.55.44 | 200 OK | 1.0 kB |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/login/1ee670489f75dd6ea807765ada75310558e5d196.svg IP143.204.55.44:0
File typeSVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (3042), with no line terminators Hash894bbaf24692fd257365ee95559b9117 4bffb1677b81d6f3ae47159ffb512e34c6d2b250 a848a05cfc1538f23312315c41fe3a8119feca5d80bafa1adeada339917351d0
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank | fortinet | Phishing | |
GET /dk/login/1ee670489f75dd6ea807765ada75310558e5d196.svg HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/login/dkb_responsive.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 1020
date: Fri, 03 Feb 2023 09:51:12 GMT
server: nginx
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:51:12 GMT
etag: "be2-5f0cab2c-e225d;br"
last-modified: Mon, 13 Jul 2020 18:42:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wk-ki0P9uy-J1lubdoX1CxbX6Kk9ptgOlY5OkhTsp-MR_hjnFBu50A==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/login/4d6cfa3b23c923a6ff461ca35648f21238265651.svg | 143.204.55.44 | 200 OK | 239 B |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/login/4d6cfa3b23c923a6ff461ca35648f21238265651.svg IP143.204.55.44:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (475), with no line terminators Hashbd8f00ccaad44a579f812f5d2685ecce f5bab0a7eab44d6e91965dc41134313fd1b2bdb2 f68fc0553fb0e59c4b70b69fc1382fc9e0efb901ef498b5ed8432688e9906185
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank | fortinet | Phishing | |
GET /dk/login/4d6cfa3b23c923a6ff461ca35648f21238265651.svg HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/login/dkb_responsive.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 239
date: Fri, 03 Feb 2023 09:51:12 GMT
server: nginx
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:51:12 GMT
etag: "1db-5f0cab2c-e2263;br"
last-modified: Mon, 13 Jul 2020 18:42:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PVwN-g8M1t5p2Eg3iq9CjEQ3ot1KxnevCDSOvaGxvqTmHTsnw84sOw==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/login/a7a9ae59ec5545b759d8ce83efdec96fd262f0fd.svg | 143.204.55.44 | 200 OK | 377 B |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/login/a7a9ae59ec5545b759d8ce83efdec96fd262f0fd.svg IP143.204.55.44:0
File typeSVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (669), with no line terminators Hash16f640b33924c16e143723c079769169 aa4415eda49c368b26045d85c8070d1c47dc515d d83cf473d5ad194155dd3448310d7f6007326fb4defcfa6b0c98f3c11cb70678
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank | fortinet | Phishing | |
GET /dk/login/a7a9ae59ec5545b759d8ce83efdec96fd262f0fd.svg HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/login/dkb_responsive.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 377
date: Fri, 03 Feb 2023 09:51:12 GMT
server: nginx
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:51:12 GMT
etag: "29d-5f0cab2c-e2261;br"
last-modified: Mon, 13 Jul 2020 18:42:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Uo42AlpKdFqJs4uGsM7tzopUbaQS9iEJE5tCHyvYAIUgHD1eaFjU7w==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/login/b9b216637340489b71e138ef8af8a77d8ff4d638.svg | 143.204.55.44 | 200 OK | 479 B |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/login/b9b216637340489b71e138ef8af8a77d8ff4d638.svg IP143.204.55.44:0
File typeSVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (856), with no line terminators Hashd005f9244c43d14d91a43673dee3007e 57880a9dbcbe4ece8f24c066e3dc3a9337883737 bcc169ff944073ae1c8741a1772d9d80a8260656c34d461ddd169a9459194c71
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank | fortinet | Phishing | |
GET /dk/login/b9b216637340489b71e138ef8af8a77d8ff4d638.svg HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/login/dkb_responsive.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 479
date: Fri, 03 Feb 2023 09:51:13 GMT
server: nginx
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:51:12 GMT
etag: "358-5f0cab2c-e225c;br"
last-modified: Mon, 13 Jul 2020 18:42:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PM5Og7REbVXm4yMuhv8_wf8pzRYH8mMEgzTdqSR5TruuguedCHjKPA==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/login/ab5d9e89d08baa6fab3aa74c2066ded0fe6ab4c9.svg | 143.204.55.44 | 200 OK | 499 B |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/login/ab5d9e89d08baa6fab3aa74c2066ded0fe6ab4c9.svg IP143.204.55.44:0
File typeSVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (944), with no line terminators Hashc903b1579a4b86518a6eb8b189a05e9f 542835a2a890e5ca2f71da9fa57d952a86c28629 768b93c9f2147fee9457544216ba0a73e69972e76df81f0d9f23bd36cca7485a
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank | fortinet | Phishing | |
GET /dk/login/ab5d9e89d08baa6fab3aa74c2066ded0fe6ab4c9.svg HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/login/dkb_responsive.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 499
date: Fri, 03 Feb 2023 09:51:13 GMT
server: nginx
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:51:13 GMT
etag: "3b0-5f0cab2c-e2242;br"
last-modified: Mon, 13 Jul 2020 18:42:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: n0zmGthPefKYxQbdbCvTMex0XccJGSd8zYOebLgWWyrZDScwa8OkRg==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/login/69587e341aa8004c80fa8a6212b6f1ef4ea59ddf.svg | 143.204.55.44 | 200 OK | 483 B |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/login/69587e341aa8004c80fa8a6212b6f1ef4ea59ddf.svg IP143.204.55.44:0
File typeSVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (864), with no line terminators Hash8593009ba50d4ff92c84eb169c3ac80b 6de33ec60d4d1bde232a83e00c0b0d78d0e0020a 5d06ed895ac5af7d44c95dda138e2ea655f6bb3f0ce686deb1157a232d3567b7
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank | fortinet | Phishing | |
GET /dk/login/69587e341aa8004c80fa8a6212b6f1ef4ea59ddf.svg HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/login/dkb_responsive.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 483
date: Fri, 03 Feb 2023 09:51:13 GMT
server: nginx
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:51:12 GMT
etag: "360-5f0cab2c-e2267;br"
last-modified: Mon, 13 Jul 2020 18:42:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Rn0IloZUTpJxKgNP-GoNacnZrnCckAIWzDTJnHMTrzpVNPd5JAejpg==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/login/928dbe0ec53aba8bdad3070a3c2fbd716c5a3f47.svg | 143.204.55.44 | 200 OK | 1.3 kB |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/login/928dbe0ec53aba8bdad3070a3c2fbd716c5a3f47.svg IP143.204.55.44:0
File typeSVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2808), with no line terminators Hash4e91d5028c6e4992c6bfc9cf90f2694a 5edafba2f099d5d25020ce1b42cf0061f447d3f4 1ee342c29b8e990da2e6d52d4f4e406aaf2086e6ef7593835d809d1a35e5efc4
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank | fortinet | Phishing | |
GET /dk/login/928dbe0ec53aba8bdad3070a3c2fbd716c5a3f47.svg HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/login/dkb_responsive.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 1349
date: Fri, 03 Feb 2023 09:51:13 GMT
server: nginx
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:51:12 GMT
etag: "af8-5f0cab2c-e226d;br"
last-modified: Mon, 13 Jul 2020 18:42:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: MlnisZ4aWtwDfSWlVCh70Z-SEjfZXDrMjFWtUb87WyalEhag9DqTeg==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/login/f1c3726d133ea40cc4df65bc2ef3507461d6ae2f.svg | 143.204.55.44 | 200 OK | 1.5 kB |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/login/f1c3726d133ea40cc4df65bc2ef3507461d6ae2f.svg IP143.204.55.44:0
File typeSVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (4870), with no line terminators Hashe1683de9b31d4d2888c61c9747edbe90 8623bd912bd567e2d51c5afde4876a476915de75 267e8c9a1ed7f6f635f040cbee4bc24f1760580fc76ecb4d0a0257fa83c55ed6
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank | fortinet | Phishing | |
GET /dk/login/f1c3726d133ea40cc4df65bc2ef3507461d6ae2f.svg HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/login/dkb_responsive.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 1495
date: Fri, 03 Feb 2023 09:51:13 GMT
server: nginx
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:51:12 GMT
etag: "1306-5f0cab2c-e2278;br"
last-modified: Mon, 13 Jul 2020 18:42:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: z0hc1CMp9VhZgke7sUbXCHJAQothO-9PVpa1y9aYCjjUTFjlMDlDIQ==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/login/dkb-global-print.css | 143.204.55.44 | 200 OK | 28 kB |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/login/dkb-global-print.css IP143.204.55.44:0
File typeCSV text\012- , ASCII text, with very long lines (8021) Hashd1a9837c3793b9b3c2653a394d065691 efb9f3b7da9b9730a5e8c40cd4be38c816f62fce 4992c5dc0438757b4d0d607ac7a6afdf28c3c81d420d4fa09b3a209fdedaa307
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank |
GET /dk/login/dkb-global-print.css HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/a1b2c3/f58f552eed0c2300502a2b55f664996d/login/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 28124
date: Fri, 03 Feb 2023 09:51:14 GMT
server: nginx
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:51:13 GMT
etag: "34049-5f0cab2c-e2257;br"
last-modified: Mon, 13 Jul 2020 18:42:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: TcbTfskDiIO2MxhZ28kFHYRpR4O1goAXTfAgrt6wezS2Srinx25RyQ==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/home.php?pl=token&link=dkb&bid=f58f552eed0c2300502a2b55f664996d&callback=jQuery32104281093891998542_1675417902394&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1675417902395 | 143.204.55.44 | 200 OK | 77 B |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/home.php?pl=token&link=dkb&bid=f58f552eed0c2300502a2b55f664996d&callback=jQuery32104281093891998542_1675417902394&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1675417902395 IP143.204.55.44:0
File typeASCII text, with no line terminators Hash1b08933cd19640c7fdbc43b50cc0da88 83e0ee1db949a4f2450b2a4d60b359af25644d40 554f15308993eb357a6a7710095f751d8108f3138c3d3c4c76a457e536f1243d
GET /dk/home.php?pl=token&link=dkb&bid=f58f552eed0c2300502a2b55f664996d&callback=jQuery32104281093891998542_1675417902394&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1675417902395 HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/a1b2c3/f58f552eed0c2300502a2b55f664996d/login/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 77
date: Fri, 03 Feb 2023 09:51:14 GMT
server: nginx
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: IotNfSqzbQ4iUu2PMYYPgnfPDiWBn7KmoOX7ya-s7d2YuynvlK4j2g==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/home.php?pl=token&link=dkb&bid=f58f552eed0c2300502a2b55f664996d&callback=jQuery32104281093891998542_1675417902396&data=%7B%22mes%22%3A%22User%20on%20login%20page%22%7D&_=1675417902397 | 143.204.55.44 | 200 OK | 77 B |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/home.php?pl=token&link=dkb&bid=f58f552eed0c2300502a2b55f664996d&callback=jQuery32104281093891998542_1675417902396&data=%7B%22mes%22%3A%22User%20on%20login%20page%22%7D&_=1675417902397 IP143.204.55.44:0
File typeASCII text, with no line terminators Hash5f3d5300acdcd27a3167deee1bcc47a6 f2ab39c15d9b89cdd0b55490ca4a56d2912bffea f2a9ae2fe965b131c603f7ff52a674d469bebda1db77bdc7dd6de0ab35bb4f39
GET /dk/home.php?pl=token&link=dkb&bid=f58f552eed0c2300502a2b55f664996d&callback=jQuery32104281093891998542_1675417902396&data=%7B%22mes%22%3A%22User%20on%20login%20page%22%7D&_=1675417902397 HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/a1b2c3/f58f552eed0c2300502a2b55f664996d/login/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 77
date: Fri, 03 Feb 2023 09:51:14 GMT
server: nginx
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: AF-F08-z40o86Zdfg3PFVWjk2pBzRI9FiHtUgC7sAs8upzV8k0Y8ag==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/login/73321b88c86cde1be9540eebac3e131c15a2c5f6.svg | 143.204.55.44 | 200 OK | 606 B |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/login/73321b88c86cde1be9540eebac3e131c15a2c5f6.svg IP143.204.55.44:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (846), with no line terminators Hash5411f7058dcd02f935e567fd915a280d 7b47b8dc8c1f4f4ff3d135fea537dd903a7a41eb 9dce0cde3b7858279705fbe8d8dab9aa236a40f778a91aff1ce2c8c1a178f746
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank | fortinet | Phishing | |
GET /dk/login/73321b88c86cde1be9540eebac3e131c15a2c5f6.svg HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/login/dkb_responsive.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 606
date: Fri, 03 Feb 2023 09:51:14 GMT
server: nginx
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:51:14 GMT
etag: "34e-5f0cab2c-e2271;br"
last-modified: Mon, 13 Jul 2020 18:42:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: o4XHu8NpITs_zJeA9no96icgFwtxJDISqMJ3-0yfJY4TIgB-YssMxA==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/login/327c9ccaea95787ff2bed3adee6c2bda61d66098.svg | 143.204.55.44 | 200 OK | 419 B |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/login/327c9ccaea95787ff2bed3adee6c2bda61d66098.svg IP143.204.55.44:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (948), with no line terminators Hashf344ecb46b2a516e6f5167f2b77b5b2d 770c1d30814f74d9985506c7d90569f1eff64b80 75adbf1837ae26e60ea8368273ed8aaa7a355ece1914ae72e8f0f554e2f75bfd
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank | fortinet | Phishing | |
GET /dk/login/327c9ccaea95787ff2bed3adee6c2bda61d66098.svg HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/login/dkb_responsive.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 419
date: Fri, 03 Feb 2023 09:51:14 GMT
server: nginx
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:51:14 GMT
etag: "3b4-5f0cab2c-e2277;br"
last-modified: Mon, 13 Jul 2020 18:42:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _JoTz5zSRwaHqWhYZEFvhC6j5AksonqZDcUWl0EyJGwzbGAdSptJOA==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/home.php?pl=token&link=dkb&bid=f58f552eed0c2300502a2b55f664996d&callback=jQuery32104281093891998542_1675417902396&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1675417902398 | 143.204.55.44 | 200 OK | 77 B |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/home.php?pl=token&link=dkb&bid=f58f552eed0c2300502a2b55f664996d&callback=jQuery32104281093891998542_1675417902396&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1675417902398 IP143.204.55.44:0
File typeASCII text, with no line terminators Hash5f3d5300acdcd27a3167deee1bcc47a6 f2ab39c15d9b89cdd0b55490ca4a56d2912bffea f2a9ae2fe965b131c603f7ff52a674d469bebda1db77bdc7dd6de0ab35bb4f39
GET /dk/home.php?pl=token&link=dkb&bid=f58f552eed0c2300502a2b55f664996d&callback=jQuery32104281093891998542_1675417902396&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1675417902398 HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/a1b2c3/f58f552eed0c2300502a2b55f664996d/login/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 77
date: Fri, 03 Feb 2023 09:51:17 GMT
server: nginx
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: XM1LhH-9knkjgfp2rYQsYIr_xMUc5NUGPgSjb5_DNu7QYgtZtHYw2A==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/a1b2c3/f58f552eed0c2300502a2b55f664996d/login/ | 143.204.55.44 | 200 OK | 0 B |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/a1b2c3/f58f552eed0c2300502a2b55f664996d/login/ IP143.204.55.44:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/a1b2c3/f58f552eed0c2300502a2b55f664996d/login/ HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Fri, 03 Feb 2023 09:51:10 GMT
server: nginx
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zFonzwN2rb8SHOyucH3G4_cHxGhlQMWKIAcEUw8snxEf4oZv2XdQBQ==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/dk/login/a0a628fa1d136767dfc96799bfff4f969e9b8638.svg | 143.204.55.44 | 200 OK | 0 B |
URL HTTP/2virtuous-barb-6862.dataplicity.io/dk/login/a0a628fa1d136767dfc96799bfff4f969e9b8638.svg IP143.204.55.44:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /dk/login/a0a628fa1d136767dfc96799bfff4f969e9b8638.svg HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/login/dkb_responsive.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Fri, 03 Feb 2023 09:51:12 GMT
server: nginx
cache-control: public, max-age=604800
expires: Fri, 10 Feb 2023 09:51:12 GMT
etag: "d0-5f0cab2c-e227e;gz"
last-modified: Mon, 13 Jul 2020 18:42:52 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 72VMVQ3JCYsiJD1cNps76ieTDLnwIk2spKXK0rI-U2zUoF7U1ZMMqQ==
X-Firefox-Spdy: h2
|
|
| virtuous-barb-6862.dataplicity.io/favicon.ico | 143.204.55.44 | 404 Not Found | 0 B |
URL HTTP/2virtuous-barb-6862.dataplicity.io/favicon.ico IP143.204.55.44:0
GET /favicon.ico HTTP/1.1
Host: virtuous-barb-6862.dataplicity.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtuous-barb-6862.dataplicity.io/dk/a1b2c3/f58f552eed0c2300502a2b55f664996d/login/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
date: Fri, 03 Feb 2023 09:51:14 GMT
server: nginx
cache-control: private, no-cache, max-age=0
pragma: no-cache
content-encoding: gzip
vary: Accept-Encoding
x-cache: Error from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5dnfWfkz0FM7nNFDVvW0OfdWwgniVNjHqjA7zSQxfI2ZXuo6ukmRMA==
X-Firefox-Spdy: h2
|
|