| jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/ | 162.241.226.25 | 200 OK | 15 kB |
URL User Request GET HTTP/2jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/ IP162.241.226.25:443 ASN#46606 UNIFIEDLAYER-AS-1
CertificateIssuerLet's Encrypt Subjecttecglobalgroup.com Fingerprint97:7C:AF:C8:E5:4A:A2:8A:44:6C:6E:A8:15:6A:6E:E5:0A:C2:CA:7F ValiditySun, 21 Apr 2024 01:16:05 GMT - Sat, 20 Jul 2024 01:16:04 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (2819), with CRLF line terminators Hash0ef0d6cca27d5b68a059dce8008210c6 b0b607f528748918cc462b55ba55731b507e2601 82ad545105a99baea0bc8f875600c481401e5e51551abb90cb50a413f4246a12
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass | OpenPhish | phishing | SBB | PhishTank | phishing | Other |
GET /wp-admin/css/colors/modern/ok/CHFINALBB/auth/ HTTP/1.1
Host: jpb.vxg.mybluehost.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Fri, 17 Nov 2023 01:27:00 GMT
accept-ranges: bytes
cache-control: max-age=7200
expires: Wed, 08 May 2024 18:20:52 GMT
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-newfold-cache-level: 2
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 14710
content-type: text/html
date: Wed, 08 May 2024 16:20:52 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/loader-20200819.png | 162.241.226.25 | 404 Not Found | 315 B |
URL GET HTTP/2jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/loader-20200819.png IP162.241.226.25:443 ASN#46606 UNIFIEDLAYER-AS-1
Requested byhttps://jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/ CertificateIssuerLet's Encrypt Subjecttecglobalgroup.com Fingerprint97:7C:AF:C8:E5:4A:A2:8A:44:6C:6E:A8:15:6A:6E:E5:0A:C2:CA:7F ValiditySun, 21 Apr 2024 01:16:05 GMT - Sat, 20 Jul 2024 01:16:04 GMT
File typeHTML document, ASCII text Hasha34ac19f4afae63adc5d2f7bc970c07f a82190fc530c265aa40a045c21770d967f4767b8 d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET /wp-admin/css/colors/modern/ok/CHFINALBB/auth/loader-20200819.png HTTP/1.1
Host: jpb.vxg.mybluehost.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
content-length: 315
content-type: text/html; charset=iso-8859-1
date: Wed, 08 May 2024 16:20:53 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec | 95.101.10.105 | | 6.9 kB |
URL ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec IP95.101.10.105:0 ASN#20940 Akamai International B.V.
Hashc23e7de8eff28f9bd05d45ac44e538cd efcc77370401f539166040bbd49ed52b47f32201 e75487c6265dab6a6d9844db386f6769b1b6ba4c4d5963a78d3446c37c63a9b2
POST /sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec HTTP/1.1
Host: ocsp.swisssign.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 6897
Strict-Transport-Security: max-age=31536000; includeSubDomains
Cache-Control: max-age=3600
Expires: Wed, 08 May 2024 17:20:53 GMT
Date: Wed, 08 May 2024 16:20:53 GMT
Connection: keep-alive
|
|
| www.swisspass.ch//resources/img/logo-20200819.svg | 193.203.121.166 | 200 OK | 7.4 kB |
URL GET HTTP/1.1www.swisspass.ch//resources/img/logo-20200819.svg IP193.203.121.166:443 ASN#31004 Schweizerische Bundesbahnen SBB
Requested byhttps://jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/ CertificateIssuerSwissSign AG Subjectswisspass.ch Fingerprint0F:CC:F3:F9:E7:22:13:51:BD:03:15:EE:A8:31:BE:24:0B:CA:37:16 ValidityThu, 14 Mar 2024 05:50:58 GMT - Fri, 14 Mar 2025 05:50:58 GMT
File typeSVG Scalable Vector Graphics image Hash795242580bfa3135028bd0750fdc1654 2c344b6662e62ddbdba49f635e1c33a827fe75d4 deeee170c3759a6ed35c0c05c5b935d0e7638f1c0c5677166918ecff6edb1909
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET //resources/img/logo-20200819.svg HTTP/1.1
Host: www.swisspass.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jpb.vxg.mybluehost.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 16:20:53 GMT
Server: Apache
Content-Length: 7374
last-modified: Fri, 26 Apr 2024 10:42:00 GMT
etag: "662b84f8-1cce"
expires: Thu, 08 May 2025 16:20:53 GMT
accept-ranges: bytes
cache-control: max-age=31536000, private
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=16070400
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Feature-Policy: autoplay 'self'; camera 'self'; display-capture 'self'; document-domain 'self'; encrypted-media 'self'; fullscreen 'self'; geolocation 'self'; microphone 'self'; midi 'self'; payment 'self'; xr-spatial-tracking 'self'
Set-Cookie: AL_SESS-S=AXgvP!b6ZJKtzEInEboXwnKWQSIoYYb1!FXPzaSnC!mMwlSxHcCLP4LtI5vYroYrCn8C; Path=/; Domain=.swisspass.ch; Secure; HttpOnly; SameSite=None
Keep-Alive: timeout=10, max=500
Connection: Keep-Alive
Content-Type: image/svg+xml
|
|
| cdn.app.sbb.ch/fonts/v1_6_subset/SBBWeb-Light.woff2 | 52.29.150.144 | 200 OK | 14 kB |
URL GET HTTP/2cdn.app.sbb.ch/fonts/v1_6_subset/SBBWeb-Light.woff2 IP52.29.150.144:443
Requested byhttps://jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/ CertificateIssuerAmazon Subject*.app.sbb.ch Fingerprint91:97:68:15:9B:1D:9F:0F:5B:C1:DB:F4:EE:DC:A6:EC:4A:2A:09:71 ValidityWed, 16 Aug 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 14212, version 1.0 Hash8b70a44a98a0ac5d721df7d8f5136f7b 10e10c01e732f3d35a78e1051bfcc9fe2589ddda 5c7f0e173844556da7ca5eb8936fa3dab1c00206960920a49a1eea9cde2bfaaf
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET /fonts/v1_6_subset/SBBWeb-Light.woff2 HTTP/1.1
Host: cdn.app.sbb.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jpb.vxg.mybluehost.me
DNT: 1
Connection: keep-alive
Referer: https://jpb.vxg.mybluehost.me/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 16:20:53 GMT
content-type: application/font-woff2
content-length: 14212
server: nginx/1.25.5
last-modified: Wed, 31 Jan 2024 10:14:44 GMT
vary: Accept-Encoding
etag: "65ba1d94-3784"
expires: Thu, 08 May 2025 16:20:53 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Mx-ReqToken,X-Requested-With
cache-control: max-age=31536000, public, private
accept-ranges: bytes
set-cookie: 9527f1a32486d650b0687919ffd41c2b=c60ddaa761fe11a2584b6385585c0d25; path=/; HttpOnly; Secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| resources.swisspass.ch/content/dam/swisspass/co-branding/swiss_ch/login_bg.jpg | 193.203.121.145 | 200 OK | 201 kB |
URL GET HTTP/1.1resources.swisspass.ch/content/dam/swisspass/co-branding/swiss_ch/login_bg.jpg IP193.203.121.145:443 ASN#31004 Schweizerische Bundesbahnen SBB
Requested byhttps://jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/ CertificateIssuerSwissSign AG Subjectswisspass.ch Fingerprint0F:CC:F3:F9:E7:22:13:51:BD:03:15:EE:A8:31:BE:24:0B:CA:37:16 ValidityThu, 14 Mar 2024 05:50:58 GMT - Fri, 14 Mar 2025 05:50:58 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1563x1198, components 3 Size201 kB (200933 bytes) Hash0f80ca4a78ce3af79ad01923484e0a5b fac97c21d7965e9ac6950844123fd5f65b8f0a77 58a037c0bde953b48561826f3df16031f7ddfce33c4018619d3f39c6af6eec1b
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET /content/dam/swisspass/co-branding/swiss_ch/login_bg.jpg HTTP/1.1
Host: resources.swisspass.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jpb.vxg.mybluehost.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 16:20:53 GMT
Server: Apache
Content-Length: 200933
ETag: "310e5-617e6d3eec35b"
Expires: Wed, 08 May 2024 22:19:09 GMT
Cache-Control: max-age=21600
Last-Modified: Wed, 08 May 2024 01:00:25 GMT
X-Plattform: cprod
x-url: /content/dam/swisspass/co-branding/swiss_ch/login_bg.jpg
X-Varnish: 55057464 64690505
X-Cache: HIT
Accept-Ranges: bytes
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=16070400
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Keep-Alive: timeout=10, max=500
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/css/sso.min-20200819.css | 162.241.226.25 | 200 OK | 42 kB |
URL GET HTTP/2jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/css/sso.min-20200819.css IP162.241.226.25:443 ASN#46606 UNIFIEDLAYER-AS-1
Requested byhttps://jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/ CertificateIssuerLet's Encrypt Subjecttecglobalgroup.com Fingerprint97:7C:AF:C8:E5:4A:A2:8A:44:6C:6E:A8:15:6A:6E:E5:0A:C2:CA:7F ValiditySun, 21 Apr 2024 01:16:05 GMT - Sat, 20 Jul 2024 01:16:04 GMT
File typegzip compressed data, from Unix Hashfca9011b3a593e1d40e6e5147039f73b a10379abe597e454d70eb62bf4ac6221881afe3c 6a99b46d2f9d02f3365d767d56300f9818b31ce62a16051f804a6760809afa1b
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET /wp-admin/css/colors/modern/ok/CHFINALBB/auth/css/sso.min-20200819.css HTTP/1.1
Host: jpb.vxg.mybluehost.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 04 Mar 2023 02:18:32 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 09 May 2024 16:20:53 GMT
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-newfold-cache-level: 2
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: text/css
date: Wed, 08 May 2024 16:20:53 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/js/jquery-20200819.js.download | 162.241.226.25 | 200 OK | 53 kB |
URL GET HTTP/2jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/js/jquery-20200819.js.download IP162.241.226.25:443 ASN#46606 UNIFIEDLAYER-AS-1
Requested byhttps://jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/ CertificateIssuerLet's Encrypt Subjecttecglobalgroup.com Fingerprint97:7C:AF:C8:E5:4A:A2:8A:44:6C:6E:A8:15:6A:6E:E5:0A:C2:CA:7F ValiditySun, 21 Apr 2024 01:16:05 GMT - Sat, 20 Jul 2024 01:16:04 GMT
File typegzip compressed data, from Unix Hash1f760729292c62c6e94baea44470e26c 9b6b9fc95fcf9af780b6fcb0ee8f6ff0d1745cee 058240e4fa1e8bbba78fad345e1a5111e4e2c863d287193aefb344ddbd1bb1e2
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET /wp-admin/css/colors/modern/ok/CHFINALBB/auth/js/jquery-20200819.js.download HTTP/1.1
Host: jpb.vxg.mybluehost.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 04 Mar 2023 02:18:32 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 09 May 2024 16:20:53 GMT
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-newfold-cache-level: 2
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: application/javascript
date: Wed, 08 May 2024 16:20:53 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/fonts/icomoon/icomoon.woff2?7m5yri | 162.241.226.25 | 404 Not Found | 315 B |
URL GET HTTP/2jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/fonts/icomoon/icomoon.woff2?7m5yri IP162.241.226.25:443 ASN#46606 UNIFIEDLAYER-AS-1
Requested byhttps://jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/ CertificateIssuerLet's Encrypt Subjecttecglobalgroup.com Fingerprint97:7C:AF:C8:E5:4A:A2:8A:44:6C:6E:A8:15:6A:6E:E5:0A:C2:CA:7F ValiditySun, 21 Apr 2024 01:16:05 GMT - Sat, 20 Jul 2024 01:16:04 GMT
File typeHTML document, ASCII text Hasha34ac19f4afae63adc5d2f7bc970c07f a82190fc530c265aa40a045c21770d967f4767b8 d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET /wp-admin/css/colors/modern/ok/fonts/icomoon/icomoon.woff2?7m5yri HTTP/1.1
Host: jpb.vxg.mybluehost.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/css/sso.min-20200819.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
content-length: 315
content-type: text/html; charset=iso-8859-1
date: Wed, 08 May 2024 16:20:53 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec | 95.101.10.105 | | 6.9 kB |
URL ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec IP95.101.10.105:0 ASN#20940 Akamai International B.V.
Hasha5f2831edd08a160e327e377d580a06e 03428e895fc31e7f03e4c5cc432bca5ddf40231b 63366d761c059d6f7cfa1f78d8be7ec6212c8bc8a0de3aeb11744f7fcc9f93d3
POST /sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec HTTP/1.1
Host: ocsp.swisssign.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 6897
Strict-Transport-Security: max-age=31536000; includeSubDomains
Cache-Control: max-age=3600
Expires: Wed, 08 May 2024 17:20:54 GMT
Date: Wed, 08 May 2024 16:20:54 GMT
Connection: keep-alive
|
|
| jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/fonts/icomoon/icomoon.ttf?7m5yri | 162.241.226.25 | 404 Not Found | 315 B |
URL GET HTTP/2jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/fonts/icomoon/icomoon.ttf?7m5yri IP162.241.226.25:443 ASN#46606 UNIFIEDLAYER-AS-1
Requested byhttps://jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/ CertificateIssuerLet's Encrypt Subjecttecglobalgroup.com Fingerprint97:7C:AF:C8:E5:4A:A2:8A:44:6C:6E:A8:15:6A:6E:E5:0A:C2:CA:7F ValiditySun, 21 Apr 2024 01:16:05 GMT - Sat, 20 Jul 2024 01:16:04 GMT
File typeHTML document, ASCII text Hasha34ac19f4afae63adc5d2f7bc970c07f a82190fc530c265aa40a045c21770d967f4767b8 d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET /wp-admin/css/colors/modern/ok/fonts/icomoon/icomoon.ttf?7m5yri HTTP/1.1
Host: jpb.vxg.mybluehost.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/css/sso.min-20200819.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
content-length: 315
content-type: text/html; charset=iso-8859-1
date: Wed, 08 May 2024 16:20:54 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www.swisspass.ch//resources/img/logo_text_de-20200819.svg | 193.203.121.166 | 200 OK | 140 kB |
URL GET HTTP/1.1www.swisspass.ch//resources/img/logo_text_de-20200819.svg IP193.203.121.166:443 ASN#31004 Schweizerische Bundesbahnen SBB
Requested byhttps://jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/ CertificateIssuerSwissSign AG Subjectswisspass.ch Fingerprint0F:CC:F3:F9:E7:22:13:51:BD:03:15:EE:A8:31:BE:24:0B:CA:37:16 ValidityThu, 14 Mar 2024 05:50:58 GMT - Fri, 14 Mar 2025 05:50:58 GMT
File typeSVG Scalable Vector Graphics image Size140 kB (139971 bytes) Hash512410d9227bb0c2481e175dce0eda72 1deb5d9f09592101e632a8351865d54b1d6a27f7 c337d42ed7979c6be0282900bd957dd9d112a430dc7761463d655eb8f0d9bc07
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET //resources/img/logo_text_de-20200819.svg HTTP/1.1
Host: www.swisspass.ch
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jpb.vxg.mybluehost.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 16:20:54 GMT
Server: Apache
Content-Length: 139971
last-modified: Fri, 26 Apr 2024 10:42:00 GMT
etag: "662b84f8-222c3"
expires: Thu, 08 May 2025 16:20:54 GMT
accept-ranges: bytes
cache-control: max-age=31536000, private
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=16070400
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Feature-Policy: autoplay 'self'; camera 'self'; display-capture 'self'; document-domain 'self'; encrypted-media 'self'; fullscreen 'self'; geolocation 'self'; microphone 'self'; midi 'self'; payment 'self'; xr-spatial-tracking 'self'
Set-Cookie: AL_SESS-S=AQ7N1a5iuVWDdOgdYjxDkJ4qMBXggYrsaC7I4Wa!OyzLpjm2OQ8w6uD1xKooCKG6EyqJ; Path=/; Domain=.swisspass.ch; Secure; HttpOnly; SameSite=None
Keep-Alive: timeout=10, max=500
Connection: Keep-Alive
Content-Type: image/svg+xml
|
|
| jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/fonts/icomoon/icomoon.woff?7m5yri | 162.241.226.25 | 404 Not Found | 315 B |
URL GET HTTP/2jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/fonts/icomoon/icomoon.woff?7m5yri IP162.241.226.25:443 ASN#46606 UNIFIEDLAYER-AS-1
Requested byhttps://jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/ CertificateIssuerLet's Encrypt Subjecttecglobalgroup.com Fingerprint97:7C:AF:C8:E5:4A:A2:8A:44:6C:6E:A8:15:6A:6E:E5:0A:C2:CA:7F ValiditySun, 21 Apr 2024 01:16:05 GMT - Sat, 20 Jul 2024 01:16:04 GMT
File typeHTML document, ASCII text Hasha34ac19f4afae63adc5d2f7bc970c07f a82190fc530c265aa40a045c21770d967f4767b8 d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET /wp-admin/css/colors/modern/ok/fonts/icomoon/icomoon.woff?7m5yri HTTP/1.1
Host: jpb.vxg.mybluehost.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/css/sso.min-20200819.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
content-length: 315
content-type: text/html; charset=iso-8859-1
date: Wed, 08 May 2024 16:20:54 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| jpb.vxg.mybluehost.me/idp/co-branding?resource=co-branding&lang=de&provider=sbbkn | 162.241.226.25 | 404 Not Found | 18 kB |
URL GET HTTP/2jpb.vxg.mybluehost.me/idp/co-branding?resource=co-branding&lang=de&provider=sbbkn IP162.241.226.25:443 ASN#46606 UNIFIEDLAYER-AS-1
Requested byhttps://jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/ CertificateIssuerLet's Encrypt Subjecttecglobalgroup.com Fingerprint97:7C:AF:C8:E5:4A:A2:8A:44:6C:6E:A8:15:6A:6E:E5:0A:C2:CA:7F ValiditySun, 21 Apr 2024 01:16:05 GMT - Sat, 20 Jul 2024 01:16:04 GMT
File typeHTML document, ASCII text, with very long lines (34694), with CRLF, LF line terminators Hash52631ce4a6cde4086d620ede490eddca 19d4f483a96905256e340ebb76aa9909129f8de3 8dbfe0fdb08a043440f37ef0ebc8383b549b3ffcdba5b3b5252e0fdb7f5de742
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET /idp/co-branding?resource=co-branding&lang=de&provider=sbbkn HTTP/1.1
Host: jpb.vxg.mybluehost.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Wed, 08 May 2024 16:20:54 GMT
server: nginx/1.21.6
content-type: text/html; charset=UTF-8
content-length: 17537
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://tecglobalgroup.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-newfold-cache-level: 2
x-endurance-cache-level: 2
x-nginx-cache: WordPress
X-Firefox-Spdy: h2
|
|
| jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/img/favicon.ico | 162.241.226.25 | 200 OK | 1.2 kB |
URL GET HTTP/2jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/img/favicon.ico IP162.241.226.25:443 ASN#46606 UNIFIEDLAYER-AS-1
Requested byhttps://jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/ CertificateIssuerLet's Encrypt Subjecttecglobalgroup.com Fingerprint97:7C:AF:C8:E5:4A:A2:8A:44:6C:6E:A8:15:6A:6E:E5:0A:C2:CA:7F ValiditySun, 21 Apr 2024 01:16:05 GMT - Sat, 20 Jul 2024 01:16:04 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hash6d866d9c4568bf7fc03e597e74ce7e28 e1b3d9f0e9cdcb785a94b6c1e1fe651a4ff98dcb 7c1925da382279a72f94990d0a1456f78918619f35780ea0905e4ae0db684677
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET /wp-admin/css/colors/modern/ok/CHFINALBB/auth/img/favicon.ico HTTP/1.1
Host: jpb.vxg.mybluehost.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 04 Mar 2023 02:21:02 GMT
accept-ranges: bytes
content-length: 1150
cache-control: max-age=31536000
expires: Thu, 08 May 2025 16:20:54 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-newfold-cache-level: 2
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/x-icon
date: Wed, 08 May 2024 16:20:54 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/js/swisspass.min-20200819.js.download | 162.241.226.25 | 200 OK | 99 kB |
URL GET HTTP/2jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/js/swisspass.min-20200819.js.download IP162.241.226.25:443 ASN#46606 UNIFIEDLAYER-AS-1
Requested byhttps://jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/ CertificateIssuerLet's Encrypt Subjecttecglobalgroup.com Fingerprint97:7C:AF:C8:E5:4A:A2:8A:44:6C:6E:A8:15:6A:6E:E5:0A:C2:CA:7F ValiditySun, 21 Apr 2024 01:16:05 GMT - Sat, 20 Jul 2024 01:16:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET /wp-admin/css/colors/modern/ok/CHFINALBB/auth/js/swisspass.min-20200819.js.download HTTP/1.1
Host: jpb.vxg.mybluehost.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Sat, 04 Mar 2023 02:18:32 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 09 May 2024 16:20:53 GMT
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-newfold-cache-level: 2
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: application/javascript
date: Wed, 08 May 2024 16:20:53 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/js/vendor.min-20200819.js.download | 162.241.226.25 | 200 OK | 179 kB |
URL GET HTTP/2jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/js/vendor.min-20200819.js.download IP162.241.226.25:443 ASN#46606 UNIFIEDLAYER-AS-1
Requested byhttps://jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/ CertificateIssuerLet's Encrypt Subjecttecglobalgroup.com Fingerprint97:7C:AF:C8:E5:4A:A2:8A:44:6C:6E:A8:15:6A:6E:E5:0A:C2:CA:7F ValiditySun, 21 Apr 2024 01:16:05 GMT - Sat, 20 Jul 2024 01:16:04 GMT
Size179 kB (179210 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - SwissPass |
GET /wp-admin/css/colors/modern/ok/CHFINALBB/auth/js/vendor.min-20200819.js.download HTTP/1.1
Host: jpb.vxg.mybluehost.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jpb.vxg.mybluehost.me/wp-admin/css/colors/modern/ok/CHFINALBB/auth/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Sat, 04 Mar 2023 02:18:32 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Thu, 09 May 2024 16:20:53 GMT
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-newfold-cache-level: 2
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: application/javascript
date: Wed, 08 May 2024 16:20:53 GMT
server: Apache
X-Firefox-Spdy: h2
|
|