Report - pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html

Report Overview

Submitted URL
pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
IP
104.18.3.35
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-17 04:23:09
Access
public
Website Title
Capital One Sign In: Log in to access your account(s)
Final URL
pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/64bb9dd9-44f9-46bf-98ae-ba0abcc1e84c
Tags
capitalone financial phishing
urlquery detections
Phishing - Capital One

Detections

urlquery
17
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
dev-sqlmfia.pantheonsite.io	unknown	2016-01-29	2024-01-28	2024-03-28	893 B	419 kB	23.185.0.3
pital-css.pages.dev	unknown	2020-09-02	2024-01-25	2024-03-23	7.2 kB	66 kB	172.66.47.87
verified.capitalone.com	24740	1995-03-13	2017-01-03	2024-03-23	400 B	16 kB	23.59.34.231
pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev	unknown	unknown	No data	No data	999 B	894 B	104.18.2.35
ajax.aspnetcdn.com	693	2010-10-12	2012-05-24	2024-04-16	389 B	31 kB	152.199.19.160
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-04-16	831 B	12 kB	104.17.25.14
ecm.capitalone.com	13649	1995-03-13	2017-02-01	2024-03-23	5.4 kB	98 kB	23.36.79.34

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-16	medium	pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html	Capital One Financial Corporation

PhishTank

Scan Date	Severity	Indicator	Alert
2024-04-16	medium	pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html	Other

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (5)

	URL	Size	First Seen	Last Seen
	pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/64bb9dd9-44f9-46bf-98ae-ba0abcc1e84c	4.8 kB	2024-04-17	2024-04-17
Pretty URL pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/64bb9dd9-44f9-46bf-98ae-ba0abcc1e84c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-17 06:23:17 Last Seen2024-04-17 06:23:17 Times Seen1 Hash a593290b29b46f71d7eb08165c7fdfca 5e8198af934258a80d066e16cf75ae8ce91a4dc3 1ed814888ebb84926c8f190bc770bbfd3294d5180dc8f905cfbd3058ed9a0cd9 Loading...

	unknown	16 B	2023-04-10	2024-04-30
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-10 15:57:29 Last Seen2024-04-30 02:03:23 Times Seen33919 Hash 7c3c3ddeb80438dcbb3d081d2d00e152 5a4016732ee72ec77b4f6ab17047bcea6d2ea34d 321b4f657afbf8ba49518e6ab4cbad07ea967d0b4c68f71c7deed05ed09c1187 Loading...

	ajax.aspnetcdn.com/ajax/jQuery/jquery-3.3.1.min.js	87 kB	2023-03-07	2024-04-30
Pretty URL ajax.aspnetcdn.com/ajax/jQuery/jquery-3.3.1.min.js IP 152.199.19.160 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-30 05:28:41 Times Seen107034 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.10/jquery.mask.js	20 kB	2023-03-07	2024-04-29
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.10/jquery.mask.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-29 19:38:10 Times Seen3643 Hash 053305c2b293c27c02523cda42962c09 556b0af7346b9e21a8eea1be8b195b563169ecd5 be483938eb34538b970684f72e312f62652e84b42b7ad86953962d1ce2217c44 Loading...

	pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/64bb9dd9-44f9-46bf-98ae-ba0abcc1e84c	398 B	2023-09-18	2024-04-29
Pretty URL pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/64bb9dd9-44f9-46bf-98ae-ba0abcc1e84c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-18 22:50:34 Last Seen2024-04-29 18:32:23 Times Seen53 Hash b0ac3917a0fd869dfea1b16de017de83 36c98166019096cb33fcf1dc144cdaa34129f013 33eb1c14897b67e5bcee23221bc17adb284f240ba8377224d855803c7a56279a Loading...

HTTP Transactions (37)

URL IP Response Size

pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html

104.18.2.35

200 OK

587 B

URL User Request GET HTTP/1.1
pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
IP
104.18.2.35:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
587 B (587 bytes)
Hash
e9c738c7be8054d6a561063b84f2c2d6
69f5fcc9ed72de44c62fb469612150e2ad926db0
ac0a72fe7d8d60ed4fbddd124dbba1c70a0a4c5359778a5023ce878219be47fc

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Capital One
OpenPhish	phishing	Capital One Financial Corporation
PhishTank	phishing	Other

HTTP Headers

GET /index.html HTTP/1.1
Host: pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:22:43 GMT
Content-Type: text/html
Content-Length: 587
Connection: keep-alive
Accept-Ranges: bytes
ETag: "e9c738c7be8054d6a561063b84f2c2d6"
Last-Modified: Mon, 15 Apr 2024 16:44:21 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759a2b90bc792dc-CPH

ajax.aspnetcdn.com/ajax/jQuery/jquery-3.3.1.min.js

152.199.19.160

200 OK

30 kB

URL GET HTTP/2
ajax.aspnetcdn.com/ajax/jQuery/jquery-3.3.1.min.js
IP
152.199.19.160:443
ASN
#15133 EDGECAST

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerDigiCert Inc
Subject*.vo.msecnd.net
Fingerprint86:E0:37:E4:B1:31:51:81:DD:54:33:82:FF:4D:EB:D1:15:5F:65:C4
ValidityTue, 30 Jan 2024 00:00:00 GMT - Thu, 30 Jan 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
30 kB (30394 bytes)
Hash
a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef

HTTP Headers

GET /ajax/jQuery/jquery-3.3.1.min.js HTTP/1.1
Host: ajax.aspnetcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 1994564
cache-control: public,max-age=31536000
content-type: application/javascript
date: Wed, 17 Apr 2024 04:22:44 GMT
etag: "80288516b793d31:0"
last-modified: Mon, 22 Jan 2018 19:27:49 GMT
server: ECAcc (ska/F6AE)
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 30394
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css

104.17.25.14

200 OK

5.6 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (30837)
Size
5.6 kB (5631 bytes)
Hash
269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd

HTTP Headers

GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 04:22:44 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 129156
expires: Mon, 07 Apr 2025 04:22:44 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IkgAR8Gs6Kaj4tMJWTM2bLMq02Scz7vjVFbwB%2BrBi3mQqDui3igrPFxFGJ6b8KslO74%2BNlMXP%2BuYPPj5VUBgmmfifanadgaXUmo1%2BDQLarMhEsXWdgVOtQPbX3IpgXNh7mUYktSQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8759a2bfa8d38f5c-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.10/jquery.mask.js

104.17.25.14

200 OK

4.5 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.10/jquery.mask.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
4.5 kB (4517 bytes)
Hash
053305c2b293c27c02523cda42962c09
556b0af7346b9e21a8eea1be8b195b563169ecd5
be483938eb34538b970684f72e312f62652e84b42b7ad86953962d1ce2217c44

HTTP Headers

GET /ajax/libs/jquery.mask/1.14.10/jquery.mask.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 04:22:44 GMT
content-type: application/javascript; charset=utf-8
content-length: 4517
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-4e98"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 536741
expires: Mon, 07 Apr 2025 04:22:44 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B7GNqXerXwvTBdxkideppbRUqtUc2eVGWvMsgS%2FkhpnadX0G8yKi5dGU9yTx4fXJgOmwl3tP1M1hlKo5yN1Zt2DTizsDehynczfkfrbC0YhCr7OoYwOGbbjS98Q8JEzaf%2BvdyQmn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8759a2bff9018f5c-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ecm.capitalone.com/CI_Common/assets/fonts/Optimist_W_Lt.woff2

23.36.79.34

200 OK

28 kB

URL GET HTTP/2
ecm.capitalone.com/CI_Common/assets/fonts/Optimist_W_Lt.woff2
IP
23.36.79.34:443
ASN
#20940 Akamai International B.V.

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerDigiCert Inc
Subjectecm.capitalone.com
FingerprintEB:F6:BD:77:65:EE:62:78:14:5F:98:60:A6:56:55:50:0A:7E:93:03
ValidityFri, 23 Jun 2023 00:00:00 GMT - Tue, 25 Jun 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 27852, version 1.0
Size
28 kB (27852 bytes)
Hash
cb37fa55f3dfdd26d61901032a53644f
1115e8d43a08c1f74ec1f6a886d1cb530bb9da97
902c5a9d8ad932630fb2021fe1a1a7f4f06513b19e8d073866178ee65ff33fe9

HTTP Headers

GET /CI_Common/assets/fonts/Optimist_W_Lt.woff2 HTTP/1.1
Host: ecm.capitalone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 27852
last-modified: Fri, 28 Jun 2019 00:26:02 GMT
etag: "cb37fa55f3dfdd26d61901032a53644f"
x-amz-server-side-encryption: AES256
x-amz-version-id: Q75rYxmglrbgkwTTGgaHL71RQB9n5YCD
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: 96b2Bo9YFlYTrfFcQX2Rvo9AmSOQP47Hz8QmnzNMKIjIs5vNDDwCTw==
cache-control: max-age=1768886
expires: Tue, 07 May 2024 15:44:10 GMT
date: Wed, 17 Apr 2024 04:22:44 GMT
access-control-request-method: POST,GET,PUT,DELETE
access-control-max-age: 86400
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

ecm.capitalone.com/CI_Common/assets/fonts/Optimist_W_Rg.woff2

23.36.79.34

200 OK

28 kB

URL GET HTTP/2
ecm.capitalone.com/CI_Common/assets/fonts/Optimist_W_Rg.woff2
IP
23.36.79.34:443
ASN
#20940 Akamai International B.V.

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerDigiCert Inc
Subjectecm.capitalone.com
FingerprintEB:F6:BD:77:65:EE:62:78:14:5F:98:60:A6:56:55:50:0A:7E:93:03
ValidityFri, 23 Jun 2023 00:00:00 GMT - Tue, 25 Jun 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 28388, version 1.0
Size
28 kB (28388 bytes)
Hash
f4e1fbca28c954a486a90828b2ee7543
7750f00fe0337120e16632ea7fff2a78b11c874a
9b98e19f831844b3dae8e1fd65b6802bc778446fbdacac8203e34bbc02eacbcd

HTTP Headers

GET /CI_Common/assets/fonts/Optimist_W_Rg.woff2 HTTP/1.1
Host: ecm.capitalone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 28388
last-modified: Fri, 28 Jun 2019 00:26:02 GMT
etag: "f4e1fbca28c954a486a90828b2ee7543"
x-amz-server-side-encryption: AES256
x-amz-version-id: 1GgM.ruzxSoQhqV._aklwOsuyVwoqFBE
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: UKrbxnA6XvXEgVu-TXphVPrBB0iMQxkeEdB_hKRsr382fqfwzgdFHA==
cache-control: max-age=1438015
expires: Fri, 03 May 2024 19:49:39 GMT
date: Wed, 17 Apr 2024 04:22:44 GMT
access-control-request-method: POST,GET,PUT,DELETE
access-control-max-age: 86400
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

dev-sqlmfia.pantheonsite.io/sqlcap/basic.js

23.185.0.3

200 OK

127 kB

URL GET HTTP/2
dev-sqlmfia.pantheonsite.io/sqlcap/basic.js
IP
23.185.0.3:443
ASN
#54113 FASTLY

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerLet's Encrypt
Subjectpantheonsite.io
Fingerprint23:29:40:F0:5B:2A:65:6E:BF:46:58:A1:10:8F:CF:AE:E4:77:7A:DA
ValidityWed, 24 Jan 2024 20:55:39 GMT - Tue, 23 Apr 2024 20:55:38 GMT

File type
JavaScript source, ASCII text, with very long lines (65277), with CRLF line terminators
Size
127 kB (126557 bytes)
Hash
01f5c2b7d56c16d0b56f71adf53486a4
ab660d22da57e6d49a1835a10fe0152436f0ea32
7b951aea1d1832ca80c1968aec439fb685884e149a61c211c66287e3f7e7ab53

HTTP Headers

GET /sqlcap/basic.js HTTP/1.1
Host: dev-sqlmfia.pantheonsite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
content-type: application/x-javascript
etag: W/"661d57f6-45227"
expires: Wed, 17 Apr 2024 04:22:43 GMT
last-modified: Mon, 15 Apr 2024 16:38:14 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe3-a-5bb59f7746-c2j5x
x-styx-req-id: 2326198a-fc72-11ee-8ab2-d6b718048928
cache-control: no-cache, must-revalidate
date: Wed, 17 Apr 2024 04:22:44 GMT
x-served-by: cache-chi-kigq8000151-CHI, cache-hel1410033-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1713327764.061664,VS0,VE129
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
X-Firefox-Spdy: h2

ecm.capitalone.com/CI_Common/assets/fonts/Optimist_W_SBd.woff2

23.36.79.34

200 OK

28 kB

URL GET HTTP/2
ecm.capitalone.com/CI_Common/assets/fonts/Optimist_W_SBd.woff2
IP
23.36.79.34:443
ASN
#20940 Akamai International B.V.

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerDigiCert Inc
Subjectecm.capitalone.com
FingerprintEB:F6:BD:77:65:EE:62:78:14:5F:98:60:A6:56:55:50:0A:7E:93:03
ValidityFri, 23 Jun 2023 00:00:00 GMT - Tue, 25 Jun 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 28188, version 1.0
Size
28 kB (28188 bytes)
Hash
d647937062406e5cc182de0cc77947d8
9d4c283a4fca43ae95019091bbd0a9e1b77b97bc
48b4ed4ba8ee0eaeddfba861e6772c61f818931816102636a888ec0b49bce056

HTTP Headers

GET /CI_Common/assets/fonts/Optimist_W_SBd.woff2 HTTP/1.1
Host: ecm.capitalone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 28188
last-modified: Fri, 28 Jun 2019 00:26:02 GMT
etag: "d647937062406e5cc182de0cc77947d8"
x-amz-server-side-encryption: AES256
x-amz-version-id: QmX7yv6RJT4hT4UTSJmqyU0reaonF3KP
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: O3lBoAqLkZUcPBtTZb4ozX77cfZvmlXBezAzB7kGcH79gTWk8WZMuQ==
cache-control: max-age=397391
expires: Sun, 21 Apr 2024 18:45:55 GMT
date: Wed, 17 Apr 2024 04:22:44 GMT
access-control-request-method: POST,GET,PUT,DELETE
access-control-max-age: 86400
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

pital-css.pages.dev/css/Bootstrap.js

172.66.47.87

404 Not Found

0 B

URL GET HTTP/2
pital-css.pages.dev/css/Bootstrap.js
IP
172.66.47.87:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerGoogle Trust Services LLC
Subjectpital-css.pages.dev
FingerprintA3:5F:66:02:DB:E6:9D:59:71:06:C6:0C:40:7A:15:66:FF:28:D2:2F
ValiditySun, 24 Mar 2024 16:31:28 GMT - Sat, 22 Jun 2024 16:31:27 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /css/Bootstrap.js HTTP/1.1
Host: pital-css.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Wed, 17 Apr 2024 04:22:44 GMT
content-length: 0
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jwyHITddoygo0PXL4qeNcPqnFAWmu1pR6zqkpvu7F4IRiZ3U%2Bdc4Vm%2BwaA5tuC6vLNMr2lHvfOGnUkJDfQ8z62321c%2FHwl4r8U793f7TCwkFUjJfy9MEcpt%2BMMT99ILtbs2%2BqbFC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759a2bfdb1a930a-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

pital-css.pages.dev/css/smartBanner.js

172.66.47.87

404 Not Found

0 B

URL GET HTTP/2
pital-css.pages.dev/css/smartBanner.js
IP
172.66.47.87:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerGoogle Trust Services LLC
Subjectpital-css.pages.dev
FingerprintA3:5F:66:02:DB:E6:9D:59:71:06:C6:0C:40:7A:15:66:FF:28:D2:2F
ValiditySun, 24 Mar 2024 16:31:28 GMT - Sat, 22 Jun 2024 16:31:27 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /css/smartBanner.js HTTP/1.1
Host: pital-css.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Wed, 17 Apr 2024 04:22:44 GMT
content-length: 0
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HuJrHsQRROnW4KZ2CScWEduNxGq28mcHMoZDTeHe02Ovp5b7rXZMf%2BCvczvtQSxarW8kkM9Ccq%2FYAXCv6oexMrM%2BsCQuRyx4MVJRqn%2F0q4NIsofrWspxyK1KevuAgKLJkfWQij3m"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759a2bfedb9abc2-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

pital-css.pages.dev/css/712ff787f143e2fedc740cf96cd0f80b.js

172.66.47.87

404 Not Found

0 B

URL GET HTTP/2
pital-css.pages.dev/css/712ff787f143e2fedc740cf96cd0f80b.js
IP
172.66.47.87:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerGoogle Trust Services LLC
Subjectpital-css.pages.dev
FingerprintA3:5F:66:02:DB:E6:9D:59:71:06:C6:0C:40:7A:15:66:FF:28:D2:2F
ValiditySun, 24 Mar 2024 16:31:28 GMT - Sat, 22 Jun 2024 16:31:27 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /css/712ff787f143e2fedc740cf96cd0f80b.js HTTP/1.1
Host: pital-css.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Wed, 17 Apr 2024 04:22:44 GMT
content-length: 0
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cdzt7Z%2Fr8eyeuEun6KPydCJnP9o3Ggsh4Yu0EvCTTofDIeQUTgewshsaP4rV%2F5mBpTB1IqrHG0OIARtbgaNxpTpDdNXpFfT01aDnnNjMC1C4d%2BxqpnEokcTKmRiKXfyN1wMS3GUe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759a2bffdc2abc2-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

pital-css.pages.dev/css/styles.17a600ea31802b45.css

172.66.47.87

404 Not Found

0 B

URL GET HTTP/2
pital-css.pages.dev/css/styles.17a600ea31802b45.css
IP
172.66.47.87:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerGoogle Trust Services LLC
Subjectpital-css.pages.dev
FingerprintA3:5F:66:02:DB:E6:9D:59:71:06:C6:0C:40:7A:15:66:FF:28:D2:2F
ValiditySun, 24 Mar 2024 16:31:28 GMT - Sat, 22 Jun 2024 16:31:27 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /css/styles.17a600ea31802b45.css HTTP/1.1
Host: pital-css.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Wed, 17 Apr 2024 04:22:44 GMT
content-length: 0
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RFhX5EyTS%2BHyWe8uZglO69OZw48XJOTI%2F9xezv4RRYxXUoG1v4mipMoDnW45dOwdrr0dLHhGA6b7DF9di4SKMhiQoqQ04eUSCbRVR4rarVJq8vXdC6OjjtrohFGeqTfL%2FFBSFG9C"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759a2bfcda6abc2-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

pital-css.pages.dev/css/c344d59e90

172.66.47.87

404 Not Found

0 B

URL GET HTTP/2
pital-css.pages.dev/css/c344d59e90
IP
172.66.47.87:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerGoogle Trust Services LLC
Subjectpital-css.pages.dev
FingerprintA3:5F:66:02:DB:E6:9D:59:71:06:C6:0C:40:7A:15:66:FF:28:D2:2F
ValiditySun, 24 Mar 2024 16:31:28 GMT - Sat, 22 Jun 2024 16:31:27 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /css/c344d59e90 HTTP/1.1
Host: pital-css.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
date: Wed, 17 Apr 2024 04:22:44 GMT
content-length: 0
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9rkaM3ExgvVjOuAhGi0CzbPAzc4KZ%2F8AwUuYSpg2tQN427AE3ebaJ6teZ0EMrpGsmXh9W6cwo4nPzIeKl2torqRTjdpzmxHIyVxhTq%2FnU8qd%2F5yqG8QzmGEmYnFig%2BmglV%2F7F5kK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759a2bfcda0abc2-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

pital-css.pages.dev/css/6.js

172.66.47.87

404 Not Found

0 B

URL GET HTTP/2
pital-css.pages.dev/css/6.js
IP
172.66.47.87:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerGoogle Trust Services LLC
Subjectpital-css.pages.dev
FingerprintA3:5F:66:02:DB:E6:9D:59:71:06:C6:0C:40:7A:15:66:FF:28:D2:2F
ValiditySun, 24 Mar 2024 16:31:28 GMT - Sat, 22 Jun 2024 16:31:27 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /css/6.js HTTP/1.1
Host: pital-css.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Wed, 17 Apr 2024 04:22:44 GMT
content-length: 0
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jeCHxERF0i6kg0V2aIwVFdvHc1qR6crDNTCNgLsSNphNaJTGn4FlkiI4TZxal95BFXGb9HEQ8Jaa3VrHuRSWuoB8QPhWsCe%2F0LdXgJ3RSZYUCb02GfcEu0wjTH8rg%2Fgr3JtHGXLS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759a2bfedbcabc2-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

pital-css.pages.dev/css/914a4a6f3a23a11a51feb0d6f6a68751.js

172.66.47.87

404 Not Found

0 B

URL GET HTTP/2
pital-css.pages.dev/css/914a4a6f3a23a11a51feb0d6f6a68751.js
IP
172.66.47.87:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerGoogle Trust Services LLC
Subjectpital-css.pages.dev
FingerprintA3:5F:66:02:DB:E6:9D:59:71:06:C6:0C:40:7A:15:66:FF:28:D2:2F
ValiditySun, 24 Mar 2024 16:31:28 GMT - Sat, 22 Jun 2024 16:31:27 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /css/914a4a6f3a23a11a51feb0d6f6a68751.js HTTP/1.1
Host: pital-css.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Wed, 17 Apr 2024 04:22:44 GMT
content-length: 0
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=57ZIaDOE0jWNqrFfFXIs8eGKVbkXULMdaoqtp%2Ben9KMk1WLYrtLxVWQ3Mb4D0FWBnr%2FM%2B3Jn%2FPMz18tmSU5s0maea3KelWHPnDMMg0uooH5elGYBjADDuS%2BHTxEyrhl7eAPABHZz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759a2bffdc5abc2-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

pital-css.pages.dev/css/2d6b9362638574d196874650cdb28cd6.js

172.66.47.87

404 Not Found

0 B

URL GET HTTP/2
pital-css.pages.dev/css/2d6b9362638574d196874650cdb28cd6.js
IP
172.66.47.87:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerGoogle Trust Services LLC
Subjectpital-css.pages.dev
FingerprintA3:5F:66:02:DB:E6:9D:59:71:06:C6:0C:40:7A:15:66:FF:28:D2:2F
ValiditySun, 24 Mar 2024 16:31:28 GMT - Sat, 22 Jun 2024 16:31:27 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /css/2d6b9362638574d196874650cdb28cd6.js HTTP/1.1
Host: pital-css.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Wed, 17 Apr 2024 04:22:44 GMT
content-length: 0
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=snn4KjlA7mzI5jdZ1aRUJjVYIjZ4ApRV7VxUnKcc9mSueODlx4hZ2SPRccLasPtLNx4N5l3tGDKOW1TM1zYtdvbgS5kf1PwYsTLAwvmwGQxqyHtvEgHkUgcdnv%2Feywom2GuZvjeP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759a2bffdc3abc2-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

pital-css.pages.dev/css/web_properties.js

172.66.47.87

404 Not Found

0 B

URL GET HTTP/2
pital-css.pages.dev/css/web_properties.js
IP
172.66.47.87:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerGoogle Trust Services LLC
Subjectpital-css.pages.dev
FingerprintA3:5F:66:02:DB:E6:9D:59:71:06:C6:0C:40:7A:15:66:FF:28:D2:2F
ValiditySun, 24 Mar 2024 16:31:28 GMT - Sat, 22 Jun 2024 16:31:27 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /css/web_properties.js HTTP/1.1
Host: pital-css.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Wed, 17 Apr 2024 04:22:44 GMT
content-length: 0
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=W5TacKErGNhXfJIIKuURKttnaFjp%2FRDL2%2BV7%2FoDgXDBWXlBGv%2B2qF0Kfruh34QtF1O%2FkmMXi3eywhq2oAlWEcjSY0RaM8sTZQUrRiCEzxxeYkTlxlEmsE5kmnU8VBQ1bsImqVAc7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759a2bfedbbabc2-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

pital-css.pages.dev/css/cp_common.js

172.66.47.87

404 Not Found

0 B

URL GET HTTP/2
pital-css.pages.dev/css/cp_common.js
IP
172.66.47.87:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerGoogle Trust Services LLC
Subjectpital-css.pages.dev
FingerprintA3:5F:66:02:DB:E6:9D:59:71:06:C6:0C:40:7A:15:66:FF:28:D2:2F
ValiditySun, 24 Mar 2024 16:31:28 GMT - Sat, 22 Jun 2024 16:31:27 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /css/cp_common.js HTTP/1.1
Host: pital-css.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Wed, 17 Apr 2024 04:22:44 GMT
content-length: 0
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=b2qMZpu8CeOTemAEFzLBVbNBAmeYqsy8WVtok7BldPh3ED3zwxD3xGRpq%2BxFWCo6QgvwKtlTuPpwhuZFg1BXtNq8lj4RwFOPt%2FhUeytlhzZUpdXxig553KdBXaxtfBjpAxyswfNA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759a2bfcd9dabc2-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

pital-css.pages.dev/css/serverComponent.php

172.66.47.87

200 OK

602 B

URL GET HTTP/2
pital-css.pages.dev/css/serverComponent.php
IP
172.66.47.87:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerGoogle Trust Services LLC
Subjectpital-css.pages.dev
FingerprintA3:5F:66:02:DB:E6:9D:59:71:06:C6:0C:40:7A:15:66:FF:28:D2:2F
ValiditySun, 24 Mar 2024 16:31:28 GMT - Sat, 22 Jun 2024 16:31:27 GMT

File type
ASCII text, with very long lines (601)
Size
602 B (602 bytes)
Hash
0626b9bc7730ff6a1cfffc216aae6a53
fb1ffc1f91553b782ca3c004b66045744a84f16a
6b1e09a13ba7f32b6a863b3bb0134bf9e1f959a53c53d155affe2233c09e1007

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Capital One

HTTP Headers

GET /css/serverComponent.php HTTP/1.1
Host: pital-css.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 17 Apr 2024 04:22:44 GMT
content-type: application/x-httpd-php
content-length: 602
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "12a12e4168846225b06f9ca404d04235"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lFlKY2lRSedSgdUdw0ey9960zzJ8K1fXvTgECsIqD6tsvuompdiFbXJWz%2FZGaBPlRREzQDb%2FFs0%2F7D4vsQqbwXIKJp6gjNSDTFe9TQzC4D4Im2jzX6wLu8w4w919HftZSqw7VlTz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759a2bfcda1abc2-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ecm.capitalone.com/CI_Common/assets/images/logos/capital-one-logo.svg

23.36.79.34

200 OK

1.7 kB

URL GET HTTP/2
ecm.capitalone.com/CI_Common/assets/images/logos/capital-one-logo.svg
IP
23.36.79.34:443
ASN
#20940 Akamai International B.V.

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerDigiCert Inc
Subjectecm.capitalone.com
FingerprintEB:F6:BD:77:65:EE:62:78:14:5F:98:60:A6:56:55:50:0A:7E:93:03
ValidityFri, 23 Jun 2023 00:00:00 GMT - Tue, 25 Jun 2024 23:59:59 GMT

File type
ASCII text, with very long lines (3967), with CRLF line terminators
Size
1.7 kB (1732 bytes)
Hash
f0b7ad81821effc52540e39cafda48f9
33d64bc7001f414f12bd92e740a45e5ced239add
57dfca5b95599a613da940f4a49ab6378fcf0586366a47cae679796930bf0eed

HTTP Headers

GET /CI_Common/assets/images/logos/capital-one-logo.svg HTTP/1.1
Host: ecm.capitalone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Wed, 20 Jan 2021 18:06:43 GMT
etag: W/"f0b7ad81821effc52540e39cafda48f9"
x-amz-server-side-encryption: AES256
x-amz-version-id: 8LzbBBEj8zCeatCBoYuv1q1dFFpTcVNl
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: HdJaUvrAj5VEG9DzlICGcJdU50sF2rvFp9FpZhYE6tYcovP5XqgQKQ==
content-length: 1732
cache-control: max-age=2195152
expires: Sun, 12 May 2024 14:08:36 GMT
date: Wed, 17 Apr 2024 04:22:44 GMT
access-control-request-method: POST,GET,PUT,DELETE
access-control-max-age: 86400
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

pital-css.pages.dev/css/capital-one-logo.svg

172.66.47.87

200 OK

2.2 kB

URL GET HTTP/2
pital-css.pages.dev/css/capital-one-logo.svg
IP
172.66.47.87:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerGoogle Trust Services LLC
Subjectpital-css.pages.dev
FingerprintA3:5F:66:02:DB:E6:9D:59:71:06:C6:0C:40:7A:15:66:FF:28:D2:2F
ValiditySun, 24 Mar 2024 16:31:28 GMT - Sat, 22 Jun 2024 16:31:27 GMT

File type
ASCII text, with very long lines (3967), with CRLF line terminators
Size
2.2 kB (2230 bytes)
Hash
f0b7ad81821effc52540e39cafda48f9
33d64bc7001f414f12bd92e740a45e5ced239add
57dfca5b95599a613da940f4a49ab6378fcf0586366a47cae679796930bf0eed

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Capital One

HTTP Headers

GET /css/capital-one-logo.svg HTTP/1.1
Host: pital-css.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 17 Apr 2024 04:22:44 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"a3358c0d38e4e539eff56b273b093210"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pnVQDcFFapf5f99KATGcd3aiAwrTt87vXipwxEzShpMavHHEg5Oc1AE8Ho%2F16JraWdIUe2GDKtMecYJG8lHmcsqf0o0bzfgKIqJ41NZfrkY08YYtgJ0Q%2FxPJQQ59%2FIblq3U%2FntFN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759a2bfedbaabc2-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

pital-css.pages.dev/css/css.css

172.66.47.87

200 OK

30 kB

URL GET HTTP/2
pital-css.pages.dev/css/css.css
IP
172.66.47.87:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerGoogle Trust Services LLC
Subjectpital-css.pages.dev
FingerprintA3:5F:66:02:DB:E6:9D:59:71:06:C6:0C:40:7A:15:66:FF:28:D2:2F
ValiditySun, 24 Mar 2024 16:31:28 GMT - Sat, 22 Jun 2024 16:31:27 GMT

File type
Unicode text, UTF-8 text, with very long lines (31118), with CRLF line terminators
Size
30 kB (29781 bytes)
Hash
dbfc2de4f7c9f7c851b60b41139ba060
b4157c33443884cc743adfd5abc1763cbe6f5785
20bb6bf4004dac223173ba5b41449186d983e80050dcfddbbc1975ae566a3e47

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Capital One

HTTP Headers

GET /css/css.css HTTP/1.1
Host: pital-css.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 17 Apr 2024 04:22:44 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"c0ef819d6a9fbc48880f9589603841e9"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BXYOzw9eRq23ceDy44O4LeCp0WrgoIoQAQxWdcv%2BDLapJCA86Olkb6wl0cvzbyqLMjkGsEqqfs6K7N388yT9oSySwbPKn9oJhJ6HluZy8KXZ53C3uHdYsG%2Bd69EVrf7XxUXR4ceo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759a2bfddb1abc2-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

pital-css.pages.dev/css/styles.17a600ea31802b45.css

172.66.47.87

404 Not Found

0 B

URL GET HTTP/2
pital-css.pages.dev/css/styles.17a600ea31802b45.css
IP
172.66.47.87:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerGoogle Trust Services LLC
Subjectpital-css.pages.dev
FingerprintA3:5F:66:02:DB:E6:9D:59:71:06:C6:0C:40:7A:15:66:FF:28:D2:2F
ValiditySun, 24 Mar 2024 16:31:28 GMT - Sat, 22 Jun 2024 16:31:27 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /css/styles.17a600ea31802b45.css HTTP/1.1
Host: pital-css.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Wed, 17 Apr 2024 04:22:45 GMT
content-length: 0
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qUD1SWYxhCetALC06RECvlORvlV%2FZbR1mbI%2FyIp0RNRH1Dd3To9TWGfLiL7kg7xt6Vw%2BnTYhsNEnJQt6Qj54PXSw3hWx3M3tf82QEGYfpn0D40NNNU7BNuV8balyARRNoRNf9pRZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759a2c36ea8abd2-CPH
alt-svc: h3=":443"; ma=86400

pital-css.pages.dev/css/smartBanner.js

172.66.47.87

404 Not Found

0 B

URL GET HTTP/2
pital-css.pages.dev/css/smartBanner.js
IP
172.66.47.87:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerGoogle Trust Services LLC
Subjectpital-css.pages.dev
FingerprintA3:5F:66:02:DB:E6:9D:59:71:06:C6:0C:40:7A:15:66:FF:28:D2:2F
ValiditySun, 24 Mar 2024 16:31:28 GMT - Sat, 22 Jun 2024 16:31:27 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /css/smartBanner.js HTTP/1.1
Host: pital-css.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Wed, 17 Apr 2024 04:22:45 GMT
content-length: 0
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BUE3sx5BGGd1zMXaEIUmDHqKKwO%2FKDHP88PN0gYBxmSrDCcu%2BH9BRfXFKNZHKX0u6qKr8bPK8zs3S1jK3fIkcd2PYEIzAGr43etWLZnhvdBo1lGS4A1I631fwhhUhY1uh63KuyRu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759a2c36eaaabd2-CPH
alt-svc: h3=":443"; ma=86400

pital-css.pages.dev/css/styles.d7eeec1c93eef5e61473.css

172.66.47.87

200 OK

20 kB

URL GET HTTP/2
pital-css.pages.dev/css/styles.d7eeec1c93eef5e61473.css
IP
172.66.47.87:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerGoogle Trust Services LLC
Subjectpital-css.pages.dev
FingerprintA3:5F:66:02:DB:E6:9D:59:71:06:C6:0C:40:7A:15:66:FF:28:D2:2F
ValiditySun, 24 Mar 2024 16:31:28 GMT - Sat, 22 Jun 2024 16:31:27 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
20 kB (20264 bytes)
Hash
01aed6b25e0eb3d74a5f15f51752a6a9
c2d806ad5b0ff7c82beca75d2c8f7f1bcc6936b5
0c4f7f58335b6375e7a4500ab43f4057d09ac3017fd5f2f408259fc762b7ab15

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Capital One

HTTP Headers

GET /css/styles.d7eeec1c93eef5e61473.css HTTP/1.1
Host: pital-css.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 17 Apr 2024 04:22:44 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"95f1726e797071ddf54a8c773c726356"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NXOJI07GhaFPlpo3fFjvej4XOFQbBAuiGz9sUdl4ngS0Gg13jCgIYA1R%2BfTRvIkOCmpKnqY04jbeRYhKqDrJbTS2joyQI9GCsDRRtOzK3UiPXYpr4VngItXMhc6YyBixggaHtc0s"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759a2bfcda5abc2-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ecm.capitalone.com/CI_Common/assets/images/footer/social-icons/twitter-social.svg

23.36.79.34

200 OK

734 B

URL GET HTTP/2
ecm.capitalone.com/CI_Common/assets/images/footer/social-icons/twitter-social.svg
IP
23.36.79.34:443
ASN
#20940 Akamai International B.V.

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerDigiCert Inc
Subjectecm.capitalone.com
FingerprintEB:F6:BD:77:65:EE:62:78:14:5F:98:60:A6:56:55:50:0A:7E:93:03
ValidityFri, 23 Jun 2023 00:00:00 GMT - Tue, 25 Jun 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
734 B (734 bytes)
Hash
c2f1acf6f29c52f793f66b65ba91d49f
d045195486c4bfdbefd3e812e7297db69615484d
d1b4860dcce83c4c73736dedeafe3b09403b267d087ef721a35dbffd5e564c68

HTTP Headers

GET /CI_Common/assets/images/footer/social-icons/twitter-social.svg HTTP/1.1
Host: ecm.capitalone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pital-css.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Fri, 28 Jun 2019 00:26:05 GMT
etag: W/"c2f1acf6f29c52f793f66b65ba91d49f"
x-amz-server-side-encryption: AES256
x-amz-version-id: WY8VBzDyq7FctDDX8MrQBW0rTz7Flw8l
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: F1mHLeKG4BRvr_e_szDJGayoY_QMpy8hbuEs6ZbMnujjWfZlF5xVgw==
content-length: 734
cache-control: max-age=2387116
expires: Tue, 14 May 2024 19:28:01 GMT
date: Wed, 17 Apr 2024 04:22:45 GMT
access-control-request-method: POST,GET,PUT,DELETE
access-control-max-age: 86400
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

ecm.capitalone.com/CI_Common/assets/images/footer/social-icons/facebook-social.svg

23.36.79.34

200 OK

282 B

URL GET HTTP/2
ecm.capitalone.com/CI_Common/assets/images/footer/social-icons/facebook-social.svg
IP
23.36.79.34:443
ASN
#20940 Akamai International B.V.

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerDigiCert Inc
Subjectecm.capitalone.com
FingerprintEB:F6:BD:77:65:EE:62:78:14:5F:98:60:A6:56:55:50:0A:7E:93:03
ValidityFri, 23 Jun 2023 00:00:00 GMT - Tue, 25 Jun 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
282 B (282 bytes)
Hash
e43c5a7e7fb8c3c12579162a4986b1ad
7a7c6a4ce7d8fe81778e3407bb710372ac3ea3f9
b312fb49b19387ededa2729f0c384686ce7c83811b0ea0367ef63767e612da03

HTTP Headers

GET /CI_Common/assets/images/footer/social-icons/facebook-social.svg HTTP/1.1
Host: ecm.capitalone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pital-css.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Fri, 28 Jun 2019 00:26:05 GMT
etag: "e43c5a7e7fb8c3c12579162a4986b1ad"
x-amz-server-side-encryption: AES256
x-amz-version-id: sp5rcJ_CixBIFs_Kbc9AtTIkRc82cd4R
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: m9A_MBXvdxEIYVooIZ2U3MdVrBwNM0kLljF2Bso6qGjNP5jsHuJrOg==
vary: Accept-Encoding
content-encoding: gzip
content-length: 282
cache-control: max-age=2501994
expires: Thu, 16 May 2024 03:22:39 GMT
date: Wed, 17 Apr 2024 04:22:45 GMT
access-control-request-method: POST,GET,PUT,DELETE
access-control-max-age: 86400
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

ecm.capitalone.com/CI_Common/assets/images/footer/social-icons/you-tube-social.svg

23.36.79.34

200 OK

295 B

URL GET HTTP/2
ecm.capitalone.com/CI_Common/assets/images/footer/social-icons/you-tube-social.svg
IP
23.36.79.34:443
ASN
#20940 Akamai International B.V.

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerDigiCert Inc
Subjectecm.capitalone.com
FingerprintEB:F6:BD:77:65:EE:62:78:14:5F:98:60:A6:56:55:50:0A:7E:93:03
ValidityFri, 23 Jun 2023 00:00:00 GMT - Tue, 25 Jun 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
295 B (295 bytes)
Hash
0a9ec1ae291522dcb84befe6a44c3830
3236900d0d9801eb93d355a7b9be38b16ea51604
bb29a96bd1b20b9dedd8197ce7f9a29fc742aa6555df924453b5561c6ef3564f

HTTP Headers

GET /CI_Common/assets/images/footer/social-icons/you-tube-social.svg HTTP/1.1
Host: ecm.capitalone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pital-css.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Fri, 28 Jun 2019 00:26:05 GMT
etag: "0a9ec1ae291522dcb84befe6a44c3830"
x-amz-server-side-encryption: AES256
x-amz-version-id: 5PqSeWnBhEvAtcPgf2XAbVZCtyvnbUxM
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: affqkbpplaJMi3ATN52ULnTaxcBLWrrqF2LGAOA7QnUz-X5Y6Bgykg==
vary: Accept-Encoding
content-encoding: gzip
content-length: 295
cache-control: max-age=2573949
expires: Thu, 16 May 2024 23:21:54 GMT
date: Wed, 17 Apr 2024 04:22:45 GMT
access-control-request-method: POST,GET,PUT,DELETE
access-control-max-age: 86400
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

ecm.capitalone.com/CI_Common/assets/images/footer/social-icons/instagram-social.svg

23.36.79.34

200 OK

768 B

URL GET HTTP/2
ecm.capitalone.com/CI_Common/assets/images/footer/social-icons/instagram-social.svg
IP
23.36.79.34:443
ASN
#20940 Akamai International B.V.

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerDigiCert Inc
Subjectecm.capitalone.com
FingerprintEB:F6:BD:77:65:EE:62:78:14:5F:98:60:A6:56:55:50:0A:7E:93:03
ValidityFri, 23 Jun 2023 00:00:00 GMT - Tue, 25 Jun 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
768 B (768 bytes)
Hash
7ff5bca5e93664bc612cc91ae53ac496
6a078cc08d3f7fe2b9f06a6f20cd3b953748f45f
bb4babc75eb6ef45fd42a6fb5f50b059473aaf36c607bef28a4aedb514e238fc

HTTP Headers

GET /CI_Common/assets/images/footer/social-icons/instagram-social.svg HTTP/1.1
Host: ecm.capitalone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pital-css.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Fri, 28 Jun 2019 00:26:05 GMT
etag: W/"7ff5bca5e93664bc612cc91ae53ac496"
x-amz-server-side-encryption: AES256
x-amz-version-id: FUfIizReL1r02BrKB1G0_CUQXIQQ79Tx
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-amz-cf-pop: AMS58-P2
x-amz-cf-id: oTaS95YQqIzgnz6FODaT5omiWGVjB9lZyhav5jaAVG-ktFDHwTCurA==
content-length: 768
cache-control: max-age=2463793
expires: Wed, 15 May 2024 16:45:58 GMT
date: Wed, 17 Apr 2024 04:22:45 GMT
access-control-request-method: POST,GET,PUT,DELETE
access-control-max-age: 86400
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

ecm.capitalone.com/CI_Common/assets/images/footer/social-icons/linkedin-social.svg

23.36.79.34

200 OK

349 B

URL GET HTTP/2
ecm.capitalone.com/CI_Common/assets/images/footer/social-icons/linkedin-social.svg
IP
23.36.79.34:443
ASN
#20940 Akamai International B.V.

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerDigiCert Inc
Subjectecm.capitalone.com
FingerprintEB:F6:BD:77:65:EE:62:78:14:5F:98:60:A6:56:55:50:0A:7E:93:03
ValidityFri, 23 Jun 2023 00:00:00 GMT - Tue, 25 Jun 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
349 B (349 bytes)
Hash
4135a3d131493d86e0db3c8ad0420602
4849488ce3d7aff2ec83435520a70627144cff6a
bb0c33cd3e05dfff3f5fe39c013a2afc5ddd457d3b76b0bc7ee231cf5d0f01f7

HTTP Headers

GET /CI_Common/assets/images/footer/social-icons/linkedin-social.svg HTTP/1.1
Host: ecm.capitalone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pital-css.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Fri, 28 Jun 2019 00:26:05 GMT
etag: "4135a3d131493d86e0db3c8ad0420602"
x-amz-server-side-encryption: AES256
x-amz-version-id: V4.R2G9M5ytZINKkEHFYF7hbdLSExGPo
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: AMS58-P2
x-amz-cf-id: Xf0FUuJz3VIplEVIvm1DhT27QdWeSPsEppkBHIox6Q4z9EsoZ6qojg==
vary: Accept-Encoding
content-encoding: gzip
content-length: 349
cache-control: max-age=2404314
expires: Wed, 15 May 2024 00:14:39 GMT
date: Wed, 17 Apr 2024 04:22:45 GMT
access-control-request-method: POST,GET,PUT,DELETE
access-control-max-age: 86400
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

ecm.capitalone.com/CI_Common/assets/images/footer/www-fdic.svg

23.36.79.34

200 OK

950 B

URL GET HTTP/2
ecm.capitalone.com/CI_Common/assets/images/footer/www-fdic.svg
IP
23.36.79.34:443
ASN
#20940 Akamai International B.V.

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerDigiCert Inc
Subjectecm.capitalone.com
FingerprintEB:F6:BD:77:65:EE:62:78:14:5F:98:60:A6:56:55:50:0A:7E:93:03
ValidityFri, 23 Jun 2023 00:00:00 GMT - Tue, 25 Jun 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
950 B (950 bytes)
Hash
a5b2f8771a99c2670dd5183853596b4f
31d62e53c4839860683ff79e3866278f5ea35616
017d9cf1015d4388c0069e8f2e147d998616605a8fdbb461cd964ff5cda545e3

HTTP Headers

GET /CI_Common/assets/images/footer/www-fdic.svg HTTP/1.1
Host: ecm.capitalone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pital-css.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Fri, 28 Jun 2019 00:26:06 GMT
etag: W/"a5b2f8771a99c2670dd5183853596b4f"
x-amz-server-side-encryption: AES256
x-amz-version-id: 8xRP0pbuqhkFsGgLYTsgGzSHlkx4pEGg
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: q1yB07LJ7z3Um_4RzlJODaKfAHhpzm_y977Wit_gi0rtsTHldTK7IQ==
content-length: 950
cache-control: max-age=2387166
expires: Tue, 14 May 2024 19:28:51 GMT
date: Wed, 17 Apr 2024 04:22:45 GMT
access-control-request-method: POST,GET,PUT,DELETE
access-control-max-age: 86400
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

ecm.capitalone.com/CI_Common/assets/images/footer/www-ehl.svg

23.36.79.34

200 OK

299 B

URL GET HTTP/2
ecm.capitalone.com/CI_Common/assets/images/footer/www-ehl.svg
IP
23.36.79.34:443
ASN
#20940 Akamai International B.V.

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerDigiCert Inc
Subjectecm.capitalone.com
FingerprintEB:F6:BD:77:65:EE:62:78:14:5F:98:60:A6:56:55:50:0A:7E:93:03
ValidityFri, 23 Jun 2023 00:00:00 GMT - Tue, 25 Jun 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
299 B (299 bytes)
Hash
30d0ea03dfc7173265c5896affca1ad9
3eb9550c148d3e49d67c6531a9aa6cf8acd356d0
2d23c63e03fb685ed80f2554da2069dbc431720b6ed4f3f7cce579f52aaa62af

HTTP Headers

GET /CI_Common/assets/images/footer/www-ehl.svg HTTP/1.1
Host: ecm.capitalone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pital-css.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Fri, 28 Jun 2019 00:26:06 GMT
etag: "30d0ea03dfc7173265c5896affca1ad9"
x-amz-server-side-encryption: AES256
x-amz-version-id: Cfpp_Ya_3POEKViDatTY.UH0GBjWHzjx
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: tXk-8_U7nVlelOUVvU95p1MGGDIECSp9J9ohDprjmcYM9alSYesSrw==
vary: Accept-Encoding
content-encoding: gzip
content-length: 299
cache-control: max-age=2557653
expires: Thu, 16 May 2024 18:50:18 GMT
date: Wed, 17 Apr 2024 04:22:45 GMT
access-control-request-method: POST,GET,PUT,DELETE
access-control-max-age: 86400
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2

verified.capitalone.com/auth/favicon.ico

23.59.34.231

200 OK

15 kB

URL GET HTTP/2
verified.capitalone.com/auth/favicon.ico
IP
23.59.34.231:443
ASN
#16625 AKAMAI-AS

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerDigiCert Inc
Subjectverified.capitalone.com
FingerprintA5:49:18:72:93:CF:CF:32:87:3F:3C:F8:E7:96:BB:57:74:87:1D:D4
ValidityFri, 01 Dec 2023 00:00:00 GMT - Tue, 03 Dec 2024 23:59:59 GMT

File type
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Size
15 kB (15086 bytes)
Hash
d27e1739c7477b10ec6917546ae61f1d
bb36ab8bce726ce72a2d74a8529526bca0fa515d
5f2123af80970c0478de7f373c9d861d886e070592ebcd55fa372d8dfc9752ec

HTTP Headers

GET /auth/favicon.ico HTTP/1.1
Host: verified.capitalone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/vnd.microsoft.icon
content-length: 15086
last-modified: Mon, 01 Apr 2024 19:16:49 GMT
etag: "d27e1739c7477b10ec6917546ae61f1d"
x-amz-server-side-encryption: AES256
x-amz-version-id: e7tLb2N1X98mLhptNY0aqJl5RujKX05q
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors 'none'
x-content-type-options: nosniff
strict-transport-security: max-age=31622400; includeSubdomains
x-amz-cf-pop: MXP63-P4
x-amz-cf-id: 7RU0M29RC0HuVp3i_sgN_8aavFpymvUuLdxDpLznxpzSpno1-nncNQ==
date: Wed, 17 Apr 2024 04:22:45 GMT
set-cookie: akacd_phased_release_site_down=1713327825~rv=88~id=188ccc306548368cb5ec6113fecfd482; path=/; Expires=Wed, 17 Apr 2024 04:23:45 GMT; Secure; SameSite=None
x-robots-tag: noindex
cache-control: no-cache, no-store, max-age=0, must-revalidate
x-frame-options: DENY, deny
X-Firefox-Spdy: h2

pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/favicon.ico

0.0.0.0

0 B

URL GET
pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/favicon.ico
IP
0.0.0.0:0
ASN
#0

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Capital One

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

pital-css.pages.dev/css/c0d84295063dcdfcd1cc1f640130de02.js

172.66.47.87

404 Not Found

0 B

URL GET HTTP/2
pital-css.pages.dev/css/c0d84295063dcdfcd1cc1f640130de02.js
IP
172.66.47.87:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerGoogle Trust Services LLC
Subjectpital-css.pages.dev
FingerprintA3:5F:66:02:DB:E6:9D:59:71:06:C6:0C:40:7A:15:66:FF:28:D2:2F
ValiditySun, 24 Mar 2024 16:31:28 GMT - Sat, 22 Jun 2024 16:31:27 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /css/c0d84295063dcdfcd1cc1f640130de02.js HTTP/1.1
Host: pital-css.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Wed, 17 Apr 2024 04:22:44 GMT
content-length: 0
access-control-allow-origin: *
referrer-policy: strict-origin-when-cross-origin
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5%2BCWbjdGEQzciqymykq%2B9Cl8mjm2uJrK%2FhwOKjyuIUOKAI1%2BZwRLjp5%2FnEs3%2BNKPraUQPe7aOHGMAi1WaCb6Mp1l90Wldk%2FQjd2lCuf7ceHsfXkyHvtANcMl%2FDUpHbfaojAAT211"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759a2bfcd9fabc2-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

dev-sqlmfia.pantheonsite.io/sqlcap/jquery.js

23.185.0.3

200 OK

291 kB

URL GET HTTP/2
dev-sqlmfia.pantheonsite.io/sqlcap/jquery.js
IP
23.185.0.3:443
ASN
#54113 FASTLY

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerLet's Encrypt
Subjectpantheonsite.io
Fingerprint23:29:40:F0:5B:2A:65:6E:BF:46:58:A1:10:8F:CF:AE:E4:77:7A:DA
ValidityWed, 24 Jan 2024 20:55:39 GMT - Tue, 23 Apr 2024 20:55:38 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
291 kB (290960 bytes)
Hash
24fa855a7678b1938f16235881e3e80b
67b6c9946134456d67c07765d230130d8679f8c6
f2a84bc4f4cb8ae04162f42f1f3ebed1e05725d9b5bf666b885356c7698a071f

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Capital One

HTTP Headers

GET /sqlcap/jquery.js HTTP/1.1
Host: dev-sqlmfia.pantheonsite.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
content-type: application/x-javascript
etag: W/"65b6cd96-47090"
expires: Wed, 17 Apr 2024 04:22:43 GMT
last-modified: Sun, 28 Jan 2024 21:56:38 GMT
server: nginx
strict-transport-security: max-age=300
x-pantheon-styx-hostname: styx-fe3-a-5bb59f7746-m2lk9
x-styx-req-id: 2322484f-fc72-11ee-a74f-b215eccb84d1
cache-control: no-cache, must-revalidate
date: Wed, 17 Apr 2024 04:22:44 GMT
x-served-by: cache-chi-kigq8000070-CHI, cache-hel1410033-HEL
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1713327764.036998,VS0,VE130
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
X-Firefox-Spdy: h2

pital-css.pages.dev/css/browserDecom.css

172.66.47.87

200 OK

907 B

URL GET HTTP/2
pital-css.pages.dev/css/browserDecom.css
IP
172.66.47.87:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-91fe59a5ffb44a7a84b8b54c5dd538fa.r2.dev/index.html
Certificate
IssuerGoogle Trust Services LLC
Subjectpital-css.pages.dev
FingerprintA3:5F:66:02:DB:E6:9D:59:71:06:C6:0C:40:7A:15:66:FF:28:D2:2F
ValiditySun, 24 Mar 2024 16:31:28 GMT - Sat, 22 Jun 2024 16:31:27 GMT

File type
ASCII text, with very long lines (952), with no line terminators
Size
907 B (907 bytes)
Hash
34229b4b4189050c9d28c2db6247903f
20407685869b3cb942c43ec08bdce76dce8377ab
3be42c9f65f85ecdbb03da6aaf7d8eb257eb8e46babedd8c654f3636eb04b1df

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Capital One

HTTP Headers

GET /css/browserDecom.css HTTP/1.1
Host: pital-css.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 Apr 2024 04:22:44 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"b7718e1fdde95188fb3ae416c8943a07"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wOF74Oz7koVi%2B1c0m5OHkha3TfCzZhFr4b8rqqlH%2Bvgq7AUV9wtrtBoCe8egnT53DMxvGvA93L2h18XbyWO93OSRKMNr%2F2Y%2F6e%2BhCuEC5pk9EHp1msK1%2FX6s2D%2B5kxeunvHPv4qS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759a2bfcda3abc2-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (5)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (37)

URL User Request GET HTTP/1.1

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN