Report - odwwrm.imitrk5.net/c/055423b9cd706420?s1=161782&s2=152986&click_id=24859241&click

Report Overview

Submitted URL
odwwrm.imitrk5.net/c/055423b9cd706420?s1=161782&s2=152986&click_id=24859241&click_id2=
IP
52.19.101.114
ASN
#16509 AMAZON-02
Submitted
2023-05-22 06:48:47
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
6

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2023-05-22	554 B	18 kB	142.250.74.131
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2023-05-22	459 B	3.1 kB	142.250.74.74
odwwrm.imitrk5.net	unknown	2020-08-19	2022-06-04	2023-03-20	542 B	619 B	52.19.101.114
cdn-dimi.akamaized.net	unknown	2014-03-18	2022-07-07	2023-05-22	4.6 kB	404 kB	88.221.27.128
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-05-22	1.7 kB	3.5 kB	142.250.74.131
www.imitrk13.com	unknown	2022-09-22	2023-01-31	2023-05-19	1.5 kB	26 kB	18.200.4.16
www.gstatic.com	unknown	2008-02-11	2016-07-26	2023-05-22	856 B	20 kB	216.58.211.3

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator
2023-05-22	medium	www.imitrk13.com/
2023-05-22	medium	www.imitrk13.com/js/pushjs/1.0.0/utils.js
2023-05-22	medium	www.imitrk13.com/js/pushjs/1.0.0/subscriber.js

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (10)

	URL	Size	First Seen	Last Seen
	www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js	36 kB	2023-03-07	2024-04-21
Pretty URL www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js IP 216.58.211.3 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:22 Last Seen2024-04-21 23:30:58 Times Seen11070 Hash 0cb7a0eb328ea70ab360f861314c8820 e3e20eb50dae36f4cbcef1890b1cc7878acb537a 4569845f7c550a55311814032e88541bd3b4a055ec3894e9cf58c4fff1be91d9 Loading...

	www.imitrk13.com/	2.0 kB	2023-05-22	2023-05-22
Pretty URL www.imitrk13.com/ IP 18.200.4.16 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-22 08:48:51 Last Seen2023-05-22 08:48:51 Times Seen1 Hash 48cab247de23bb0484a2ffbc91825557 02ac1ce83e5169d617af4a138c128da4d419e6d0 f46c9972a66243aeddae73bb5fd3c3ac0ff3ebc91df611709afc5b791985f4ca Loading...

	www.imitrk13.com/	3.1 kB	2023-05-22	2023-05-22
Pretty URL www.imitrk13.com/ IP 18.200.4.16 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-22 08:48:51 Last Seen2023-05-22 08:48:51 Times Seen1 Hash 2c15d900289ce4ea16303c322f3a9d90 f829a5f7dfe8c65eca34d2c9f2180762516ab0f4 78270c3966871d2da4b494f06858b72d703dbf10e1f170963b7a6d81950dded7 Loading...

	www.imitrk13.com/	9.4 kB	2023-05-22	2023-05-22
Pretty URL www.imitrk13.com/ IP 18.200.4.16 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-22 08:48:51 Last Seen2023-05-22 08:48:51 Times Seen1 Hash 0c5c8bde8ed06fa0b83fa69a38d15994 3eb0f6197e71811151a470e43e7ee1ce1c47a819 0a45718c116dcaa90cc2ce9c3889549d5d9852aa44468f783d4e7b4d63e25ed0 Loading...

	www.imitrk13.com/js/pushjs/1.0.0/subscriber.js	9.4 kB	2023-03-07	2023-05-23
Pretty URL www.imitrk13.com/js/pushjs/1.0.0/subscriber.js IP 18.200.4.16 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:44 Last Seen2023-05-23 11:55:13 Times Seen1847 Hash eaaa22632bcced1b4a2bad3c22bd618f c5bb4097ff0b252c19671985d5d431dfd6bb7281 20a2729b7c4f4c6a0dd2e80500284bd8c0e84e3e4076eb6a248e2951fec0c550 Loading...

	moz-extension://94b86a3e-a8f5-4509-b451-a3e524e5069f/shims/firebase.js	2.3 kB	2023-05-05	2024-04-25
Pretty URL moz-extension://94b86a3e-a8f5-4509-b451-a3e524e5069f/shims/firebase.js IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-05 23:38:25 Last Seen2024-04-25 23:31:34 Times Seen9700 Hash 32d439c9ec8c789e843ae58b6774681c deb2c661dacf46eb3a1eacbba3e430dcf10cc395 f65e83801e16f98e150ae8843afb4c98c0b3ac0fa7fbe5a5ec687b08119732d6 Loading...

	www.imitrk13.com/js/pushjs/1.0.0/utils.js	7.1 kB	2023-03-07	2024-04-21
Pretty URL www.imitrk13.com/js/pushjs/1.0.0/utils.js IP 18.200.4.16 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:44 Last Seen2024-04-21 23:30:57 Times Seen4796 Hash 711c7ecda710a342d24faef1dec76ede d1b38489603a2aecc2be5edb4fa4cd8d442fe727 41a5e34d6777a471d63211252ce51555815b728949dc81cec01414f4ffdb98eb Loading...

	www.gstatic.com/firebasejs/5.0.2/firebase-app.js	25 kB	2023-03-07	2024-04-21
Pretty URL www.gstatic.com/firebasejs/5.0.2/firebase-app.js IP 216.58.211.3 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:22 Last Seen2024-04-21 23:30:58 Times Seen10994 Hash 9164d0e8a317eceb870cca88c9683127 4617c910005f7100b4ff26a458a8b4463e33cdc6 15c9bd66992ef54979c981763cae280f28b6845520020ed38b5ab5f3f70f7931 Loading...

	www.imitrk13.com/	242 B	2023-05-22	2023-05-22
Pretty URL www.imitrk13.com/ IP 18.200.4.16 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-22 08:48:51 Last Seen2023-05-22 08:48:51 Times Seen1 Hash e125f677b1eca8b063fbc371950fa535 eef8e1d8324a79b34a2166dcfe740a5ca235dd04 63bc962233db8336cd62d27c3ed628e4ca66ebd5f3131aafc6a9f87d16528120 Loading...

	www.imitrk13.com/sandbox%20eval%20code	123 B	2023-05-05	2024-04-25
Pretty URL www.imitrk13.com/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-05 23:38:25 Last Seen2024-04-25 23:31:37 Times Seen7418 Hash 239166f4d1bda569909c9af241098419 ad3987a93224de5c735c7c380daf5bfaecf60ac8 255566913e81e0587539abba68839777480779575271b734e817e7093f4dceec Loading...

HTTP Transactions (23)

URL IP Response Size

odwwrm.imitrk5.net/c/055423b9cd706420?s1=161782&s2=152986&click_id=24859241&click_id2=

52.19.101.114

302 Found

47 B

URL User Request GET HTTP/2
odwwrm.imitrk5.net/c/055423b9cd706420?s1=161782&s2=152986&click_id=24859241&click_id2=
IP
52.19.101.114:443
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subject*.imitrk5.net
Fingerprint51:2C:22:A1:9E:87:7C:FC:99:5F:2B:FC:EC:70:E2:E5:A1:A3:5C:DC
ValiditySat, 25 Mar 2023 23:31:46 GMT - Fri, 23 Jun 2023 23:31:45 GMT

File type
HTML document, ASCII text
Size
47 B (47 bytes)
Hash
70ce351b4e0fb3179c66d3c13286792d
521d3842914d13d0b9b96560de13ab793d7ae844
deb17edf2b88c355f649cd49ad76a08fbd4985c16f908baa392d62035417a82b

HTTP Headers

GET /c/055423b9cd706420?s1=161782&s2=152986&click_id=24859241&click_id2= HTTP/1.1
Host: odwwrm.imitrk5.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
server: nginx
date: Mon, 22 May 2023 06:48:29 GMT
content-type: text/html; charset=utf-8
content-length: 47
location: https://www.imitrk13.com
set-cookie: unique_id=646b103d000a3f52; Path=/; Expires=Fri, 21 Jul 2023 06:48:29 GMT; Secure; SameSite=None
unique_id2=646b103d000a4777; Path=/; Expires=Sun, 20 Aug 2023 06:48:29 GMT; Secure; SameSite=None
impression=; Path=/; Expires=Mon, 22 May 2023 06:48:29 GMT; Secure; SameSite=None
tid=hcgsn646b103d00033b28; Path=/; Expires=Tue, 25 Apr 2028 06:48:29 GMT; Secure; SameSite=None
X-Firefox-Spdy: h2

cdn-dimi.akamaized.net/landings/278174/1674550754/css/reset.css?1674550755

88.221.27.128

200 OK

751 B

URL GET HTTP/1.1
cdn-dimi.akamaized.net/landings/278174/1674550754/css/reset.css?1674550755
IP
88.221.27.128:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.imitrk13.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
751 B (751 bytes)
Hash
474f10b7230be35c0d196a74fc40ecbe
60fb52d2d1a3c61c28e14faa43abe9d54f8c8e7b
32317691a98d7184c22b44b2866b6c90dcc913d2aa9de70bf0805a2a62052465

HTTP Headers

GET /landings/278174/1674550754/css/reset.css?1674550755 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.imitrk13.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: up4DaCMUwfCeX/qwWAJUyDZm58oQYPxxVgLPlPbMk7DkDND0pr2CItqYvD6QAg4bLULLhtLCFC4=
x-amz-request-id: EAQW8BV5BP11Q74R
Last-Modified: Tue, 24 Jan 2023 08:59:17 GMT
ETag: "474f10b7230be35c0d196a74fc40ecbe"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 22 May 2023 06:48:29 GMT
Content-Length: 751
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/landings/278174/1674550754/css/style.css?1674550755

88.221.27.128

200 OK

816 B

URL GET HTTP/1.1
cdn-dimi.akamaized.net/landings/278174/1674550754/css/style.css?1674550755
IP
88.221.27.128:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.imitrk13.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
816 B (816 bytes)
Hash
7d64e365849620843bd06ba6696f8a52
26a4ab93251e88303f5882a40b4e82dbaf5a81b9
7e5518528581ceacd42f783448f1574c769e17c3b4e41bba5a2a45051bf08bd8

HTTP Headers

GET /landings/278174/1674550754/css/style.css?1674550755 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.imitrk13.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: rNHLgiI05jhtT25i5exCC89igntb9p/9v23pvwaoigw3Zg8ESbqUjyMVCfGjSM5z4oJWFlMrWpk=
x-amz-request-id: WX9NGPSEDR8E1TCJ
Last-Modified: Tue, 24 Jan 2023 08:59:17 GMT
ETag: "7d64e365849620843bd06ba6696f8a52"
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 22 May 2023 06:48:29 GMT
Content-Length: 816
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8d1ffc63ece540992319c6f7637db168
b84a5580317750f11fea9fb0ca41710c88e66d38
905441c3ec5505f8196be1b4c4123cd1862bc6f03ce2bc5cf5fe37b21e07c907

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 22 May 2023 06:48:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.imitrk13.com/

18.200.4.16

200 OK

8.2 kB

URL User Request GET HTTP/2
www.imitrk13.com/
IP
18.200.4.16:443
ASN
#16509 AMAZON-02

Certificate
IssuerLet's Encrypt
Subject*.imitrk13.com
Fingerprint7E:1C:DB:57:99:53:91:58:73:5D:E4:8E:65:15:99:F0:66:E5:29:2A
ValiditySat, 15 Apr 2023 23:50:27 GMT - Fri, 14 Jul 2023 23:50:26 GMT

File type
gzip compressed data, from Unix\012- data
Size
8.2 kB (8195 bytes)
Hash
2cae23625efb7d0f2806e278eb7bcf88
b5a16a0b1bb7a9608117dc0a7f69d9dc05153d62
700dd83f803b6a6e3612081e4850146ff2e6031d37239b0cb074be74a92ad126

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: www.imitrk13.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 22 May 2023 06:48:29 GMT
content-type: text/html; charset=utf-8
set-cookie: unique_id=646b103d0004acdc; Path=/; Expires=Fri, 21 Jul 2023 06:48:29 GMT; Secure; SameSite=None
unique_id2=646b103d0004b42e; Path=/; Expires=Sun, 20 Aug 2023 06:48:29 GMT; Secure; SameSite=None
impression=; Path=/; Expires=Mon, 22 May 2023 06:48:29 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2

cdn-dimi.akamaized.net/assets/css/reset.css

88.221.27.128

302 Moved Temporarily

0 B

URL GET HTTP/1.1
cdn-dimi.akamaized.net/assets/css/reset.css
IP
88.221.27.128:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.imitrk13.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/css/reset.css HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.imitrk13.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Moved Temporarily
Server: AkamaiGHost
Content-Length: 0
Location: https://cdn-dimi.akamaized.net/404
Date: Mon, 22 May 2023 06:48:30 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/404

88.221.27.128

404 Not Found

134 B

URL GET HTTP/1.1
cdn-dimi.akamaized.net/404
IP
88.221.27.128:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.imitrk13.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
134 B (134 bytes)
Hash
9c7c01b7650d428a3540bd1d22390a2f
1de74307526c98f84fe5ef2f7dce7ae7c1f77dd0
08c97b6bb3dda74ce86e43cfe75fe216618aa8d1f1e04fa9fc5ef57d3b1a69e1

HTTP Headers

GET /404 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.imitrk13.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Content-Type: text/html
Content-Length: 134
Date: Mon, 22 May 2023 06:48:30 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/assets/css/style.css

88.221.27.128

302 Moved Temporarily

0 B

URL GET HTTP/1.1
cdn-dimi.akamaized.net/assets/css/style.css
IP
88.221.27.128:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.imitrk13.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/css/style.css HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.imitrk13.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Moved Temporarily
Server: AkamaiGHost
Content-Length: 0
Location: https://cdn-dimi.akamaized.net/404
Date: Mon, 22 May 2023 06:48:30 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/404

88.221.27.128

404 Not Found

134 B

URL GET HTTP/1.1
cdn-dimi.akamaized.net/404
IP
88.221.27.128:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.imitrk13.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
134 B (134 bytes)
Hash
9c7c01b7650d428a3540bd1d22390a2f
1de74307526c98f84fe5ef2f7dce7ae7c1f77dd0
08c97b6bb3dda74ce86e43cfe75fe216618aa8d1f1e04fa9fc5ef57d3b1a69e1

HTTP Headers

GET /404 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.imitrk13.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Content-Type: text/html
Content-Length: 134
Date: Mon, 22 May 2023 06:48:30 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/landings/278174/1674550754/images/pic-man.png

88.221.27.128

200 OK

38 kB

URL GET HTTP/1.1
cdn-dimi.akamaized.net/landings/278174/1674550754/images/pic-man.png
IP
88.221.27.128:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.imitrk13.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
PNG image data, 814 x 896, 8-bit colormap, non-interlaced\012- data
Size
38 kB (37784 bytes)
Hash
17e08579016eb684bf161ffaac47b22a
74c758c61f2bfa4a8a61ba07fd591b7d70a1343b
7fe7095dee01c817bf9d4e7e8c7d7a0227721c2cc2426c1601dbe51856fec734

HTTP Headers

GET /landings/278174/1674550754/images/pic-man.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.imitrk13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: 5sog3PeyIav3XIO0QG4ob5m3CcBk7r5NEHjCn1fUvuYbUZGZ853cRiM/l+WfgquJFN/xfntcPjA=
x-amz-request-id: EXT9N11RR53VZ6BG
Last-Modified: Tue, 24 Jan 2023 08:59:16 GMT
ETag: "17e08579016eb684bf161ffaac47b22a"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 37784
Date: Mon, 22 May 2023 06:48:30 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/landings/278174/1674550754/images/arrow.svg

88.221.27.128

200 OK

5.2 kB

URL GET HTTP/1.1
cdn-dimi.akamaized.net/landings/278174/1674550754/images/arrow.svg
IP
88.221.27.128:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.imitrk13.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (854)
Size
5.2 kB (5162 bytes)
Hash
349f207f561b8a5aaa030f17f7faa9d8
488f571a76a5ecff5a3f9ed85940feb0b29637a8
cbc3d1acb359e7a987ef29a89f62ee132f49318a3a328dfbd119a493fee8f167

HTTP Headers

GET /landings/278174/1674550754/images/arrow.svg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/landings/278174/1674550754/css/style.css?1674550755
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: 0Rr0PkDNzLrBtIuwSn77/2Vrr7DG+8UjOSGZ5Fw8CmVOGbPzf64zMa1UEbVS+MJ4zYTlHk9gfL5l3lpTtHGtWg==
x-amz-request-id: 44EFR0VB5VF6SY0R
Last-Modified: Tue, 24 Jan 2023 08:59:16 GMT
ETag: "349f207f561b8a5aaa030f17f7faa9d8"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 5162
Date: Mon, 22 May 2023 06:48:30 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/landings/278174/1674550754/images/main-bg.png

88.221.27.128

200 OK

355 kB

URL GET HTTP/1.1
cdn-dimi.akamaized.net/landings/278174/1674550754/images/main-bg.png
IP
88.221.27.128:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.imitrk13.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
PNG image data, 1920 x 1080, 4-bit colormap, non-interlaced\012- data
Size
355 kB (354682 bytes)
Hash
baebaa2a4eda3de7ade641c5ae18c0a4
08bbdad58ce7715c5a09521161656f853ae182d0
c6399f73e14090a0addc73534a2d41d0c198747b5c2b562b988ecfdcb4e37a3d

HTTP Headers

GET /landings/278174/1674550754/images/main-bg.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/landings/278174/1674550754/css/style.css?1674550755
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: 5zwzmTtbERJEHk9CqHOUD/HYLAJxzthGgJhYX/e1FSWSiaVNvu47+MN3lfuewe++ocsAcRUl9Fk=
x-amz-request-id: RMNE5Z4ZSKAH6V8Q
Last-Modified: Tue, 24 Jan 2023 08:59:16 GMT
ETag: "baebaa2a4eda3de7ade641c5ae18c0a4"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 354682
Date: Mon, 22 May 2023 06:48:30 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d34f0af5cb22586cc436ab96da5df7cc
91c7686c859dd34556de215681e7124a8af7cb70
3e6027d2501218ce83cd136b33af94417d03c38330873e6d80570f00c6c0c8e8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 22 May 2023 06:48:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d34f0af5cb22586cc436ab96da5df7cc
91c7686c859dd34556de215681e7124a8af7cb70
3e6027d2501218ce83cd136b33af94417d03c38330873e6d80570f00c6c0c8e8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 22 May 2023 06:48:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/firebasejs/5.0.2/firebase-app.js

216.58.211.3

200 OK

8.6 kB

URL GET HTTP/2
www.gstatic.com/firebasejs/5.0.2/firebase-app.js
IP
216.58.211.3:443
ASN
#15169 GOOGLE

Requested by
https://www.imitrk13.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT

File type
ASCII text, with very long lines (25088)
Size
8.6 kB (8604 bytes)
Hash
9164d0e8a317eceb870cca88c9683127
4617c910005f7100b4ff26a458a8b4463e33cdc6
15c9bd66992ef54979c981763cae280f28b6845520020ed38b5ab5f3f70f7931

HTTP Headers

GET /firebasejs/5.0.2/firebase-app.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.imitrk13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 8604
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 May 2023 00:16:46 GMT
expires: Thu, 16 May 2024 00:16:46 GMT
cache-control: public, max-age=31536000
age: 455504
last-modified: Thu, 10 May 2018 20:35:51 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d34f0af5cb22586cc436ab96da5df7cc
91c7686c859dd34556de215681e7124a8af7cb70
3e6027d2501218ce83cd136b33af94417d03c38330873e6d80570f00c6c0c8e8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 22 May 2023 06:48:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js

216.58.211.3

200 OK

10 kB

URL GET HTTP/2
www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js
IP
216.58.211.3:443
ASN
#15169 GOOGLE

Requested by
https://www.imitrk13.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT

File type
ASCII text, with very long lines (35547)
Size
10 kB (10017 bytes)
Hash
0cb7a0eb328ea70ab360f861314c8820
e3e20eb50dae36f4cbcef1890b1cc7878acb537a
4569845f7c550a55311814032e88541bd3b4a055ec3894e9cf58c4fff1be91d9

HTTP Headers

GET /firebasejs/5.0.2/firebase-messaging.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.imitrk13.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 10017
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 May 2023 07:32:28 GMT
expires: Sun, 19 May 2024 07:32:28 GMT
cache-control: public, max-age=31536000
age: 170162
last-modified: Thu, 10 May 2018 20:35:52 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v12/UcCO3FwrK3iLTeHuS_fvQtMwCp50KnMw2boKoduKmMEVuGKYAZ9hiA.woff2

142.250.74.131

200 OK

18 kB

URL GET HTTP/2
fonts.gstatic.com/s/inter/v12/UcCO3FwrK3iLTeHuS_fvQtMwCp50KnMw2boKoduKmMEVuGKYAZ9hiA.woff2
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://www.imitrk13.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT

File type
Web Open Font Format (Version 2), TrueType, length 17660, version 1.0\012- data
Size
18 kB (17660 bytes)
Hash
cfdce67a2e07ba6cf05e0292d7f3f9b7
dcad1b9e50f8ef49ec4600fe88c68c165d9b7e61
048d136d592e66896cccc1fe4fada4feb16b7f6af671cd49a2fe6ed6b2276c6c

HTTP Headers

GET /s/inter/v12/UcCO3FwrK3iLTeHuS_fvQtMwCp50KnMw2boKoduKmMEVuGKYAZ9hiA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.imitrk13.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17660
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 May 2023 13:53:38 GMT
expires: Sun, 19 May 2024 13:53:38 GMT
cache-control: public, max-age=31536000
age: 147292
last-modified: Mon, 11 Jul 2022 21:02:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d34f0af5cb22586cc436ab96da5df7cc
91c7686c859dd34556de215681e7124a8af7cb70
3e6027d2501218ce83cd136b33af94417d03c38330873e6d80570f00c6c0c8e8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 22 May 2023 06:48:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn-dimi.akamaized.net/landings/278174/1674550754/images/favicon.ico?t=20230522064829

88.221.27.128

200 OK

1.2 kB

URL GET HTTP/1.1
cdn-dimi.akamaized.net/landings/278174/1674550754/images/favicon.ico?t=20230522064829
IP
88.221.27.128:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.imitrk13.com/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
3c292280ee9b4d7a15bf7b3a6673acf7
72fae9ef1e5a2c730fbcf586cb84b6ebecae6189
658e1996ba0e0e34a6e650d1d4b7463ca1e0793e9b7ccb3f424a0ccd4625c17b

HTTP Headers

GET /landings/278174/1674550754/images/favicon.ico?t=20230522064829 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.imitrk13.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: RXlV2ZgprwnB6Qfx/57/3coATDU8egJbC4SCzpFRd4LFiFGKz8LpRCKBxAe6YgxEE19/bSdwRRQ=
x-amz-request-id: K9T39SWFE49EHYP8
Last-Modified: Tue, 24 Jan 2023 08:59:16 GMT
ETag: "3c292280ee9b4d7a15bf7b3a6673acf7"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/x-icon
Server: AmazonS3
Content-Length: 1150
Date: Mon, 22 May 2023 06:48:30 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

www.imitrk13.com/js/pushjs/1.0.0/utils.js

18.200.4.16

200 OK

7.1 kB

URL GET HTTP/2
www.imitrk13.com/js/pushjs/1.0.0/utils.js
IP
18.200.4.16:443
ASN
#16509 AMAZON-02

Requested by
https://www.imitrk13.com/
Certificate
IssuerLet's Encrypt
Subject*.imitrk13.com
Fingerprint7E:1C:DB:57:99:53:91:58:73:5D:E4:8E:65:15:99:F0:66:E5:29:2A
ValiditySat, 15 Apr 2023 23:50:27 GMT - Fri, 14 Jul 2023 23:50:26 GMT

File type
C source, ASCII text, with very long lines (7334), with no line terminators
Size
7.1 kB (7071 bytes)
Hash
7df62062a027cd25d5a179c520f38668
0ddaa8cd9090908d987e0299cef74fbf7f118738
cdf93aff990bae251f609ef00d7d2bdbb56a35f003c7184ba067b5948629faa3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/pushjs/1.0.0/utils.js HTTP/1.1
Host: www.imitrk13.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.imitrk13.com/
Cookie: unique_id=646b103d0004acdc; unique_id2=646b103d0004b42e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 22 May 2023 06:48:29 GMT
content-type: application/javascript
expires: Mon, 29 May 2023 06:48:29 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Inter:wght@600&display=swap

142.250.74.74

200 OK

2.5 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Inter:wght@600&display=swap
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://www.imitrk13.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT

File type
ASCII text, with very long lines (2537), with no line terminators
Size
2.5 kB (2474 bytes)
Hash
03e12c0ad4923973c517091ddca48ff0
70b5f072fddb55df3e87a1fb672f7a48b2e1fac4
a783749c6cac3ffbc4af3eccc221b931ae145dc92dbba16f43f007f704e3ab23

HTTP Headers

GET /css2?family=Inter:wght@600&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 22 May 2023 06:48:29 GMT
date: Mon, 22 May 2023 06:48:29 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.imitrk13.com/js/pushjs/1.0.0/subscriber.js

18.200.4.16

200 OK

9.4 kB

URL GET HTTP/2
www.imitrk13.com/js/pushjs/1.0.0/subscriber.js
IP
18.200.4.16:443
ASN
#16509 AMAZON-02

Requested by
https://www.imitrk13.com/
Certificate
IssuerLet's Encrypt
Subject*.imitrk13.com
Fingerprint7E:1C:DB:57:99:53:91:58:73:5D:E4:8E:65:15:99:F0:66:E5:29:2A
ValiditySat, 15 Apr 2023 23:50:27 GMT - Fri, 14 Jul 2023 23:50:26 GMT

File type
C source text\012- troff or preprocessor input, ASCII text, with very long lines (9655), with no line terminators
Size
9.4 kB (9390 bytes)
Hash
27f37ec7e452d816af0cd5d68ed4fc39
d8dbbc6cc7be62a6cfb02e59c0e6cfadb8fb975e
af621039acb3da02f30310da1e9d71790e8f0e02a19c3bb36adde6b9aa339b59

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/pushjs/1.0.0/subscriber.js HTTP/1.1
Host: www.imitrk13.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.imitrk13.com/
Cookie: unique_id=646b103d0004acdc; unique_id2=646b103d0004b42e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Mon, 22 May 2023 06:48:29 GMT
content-type: application/javascript
expires: Mon, 29 May 2023 06:48:29 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (10)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML