bijwerken-tfbnk.com
Open in
urlscan Pro
188.114.96.3
Public Scan
Submission Tags: @phish_report
Submission: On May 16 via api from FI — Scanned from NL
Summary
TLS certificate: Issued by GTS CA 1P5 on May 9th 2024. Valid for: 3 months.
This is the only time bijwerken-tfbnk.com was scanned on urlscan.io!
urlscan.io Verdict: No classification
Domain & IP information
IP Address | AS Autonomous System | ||
---|---|---|---|
1 10 | 188.114.96.3 188.114.96.3 | 13335 (CLOUDFLAR...) (CLOUDFLARENET) | |
9 | 1 |
Apex Domain Subdomains |
Transfer | |
---|---|---|
10 |
bijwerken-tfbnk.com
1 redirects
bijwerken-tfbnk.com |
16 KB |
9 | 1 |
Domain | Requested by | |
---|---|---|
10 | bijwerken-tfbnk.com |
1 redirects
bijwerken-tfbnk.com
|
9 | 1 |
This site contains no links.
Subject Issuer | Validity | Valid | |
---|---|---|---|
bijwerken-tfbnk.com GTS CA 1P5 |
2024-05-09 - 2024-08-07 |
3 months | crt.sh |
This page contains 3 frames:
Primary Page:
https://bijwerken-tfbnk.com/web/login.php
Frame ID: 91E5353AAD07CC047ED8D8CC32A8D0EF
Requests: 5 HTTP requests in this frame
Frame:
https://bijwerken-tfbnk.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/1b3559406bc8/main.js
Frame ID: 0F26E5540CB0639AC55C11B37D53B7E2
Requests: 2 HTTP requests in this frame
Frame:
https://bijwerken-tfbnk.com/cdn-cgi/challenge-platform/scripts/jsd/main.js
Frame ID: 7E679539FD7E8A54F34B2A8B8AFA4F88
Requests: 2 HTTP requests in this frame
Screenshot
Page Title
403 ForbiddenPage URL History Show full URLs
- https://bijwerken-tfbnk.com/web/login.php Page URL
- https://bijwerken-tfbnk.com/web/login.php Page URL
Detected technologies
PHP (Programming Languages) ExpandDetected patterns
- \.php(?:$|\?)
Page Statistics
0 Outgoing links
These are links going to different origins than the main page.
Page URL History
This captures the URL locations of the websites, including HTTP redirects and client-side redirects via JavaScript or Meta fields.
- https://bijwerken-tfbnk.com/web/login.php Page URL
- https://bijwerken-tfbnk.com/web/login.php Page URL
Redirected requests
There were HTTP redirect chains for the following requests:
Request Chain 2- https://bijwerken-tfbnk.com/cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP 302
- https://bijwerken-tfbnk.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/1b3559406bc8/main.js
9 HTTP transactions
Method Protocol |
Resource Path |
Size x-fer |
Type MIME-Type |
||||||||||||||||||||||||||||||||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
GET H3 |
login.php
bijwerken-tfbnk.com/web/ |
7 KB 8 KB |
Document
text/html |
||||||||||||||||||||||||||||||||||||||||||||||||||||||
General
Request headers
Response headers
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||
POST H3 |
login.php
bijwerken-tfbnk.com/web/ |
0 913 B |
XHR
text/plain |
||||||||||||||||||||||||||||||||||||||||||||||||||||||
General
Request headers
Response headers
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||
GET H3 |
main.js
bijwerken-tfbnk.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/1b3559406bc8/ Frame 0F26 Redirect Chain
|
8 KB 4 KB |
Script
application/javascript |
||||||||||||||||||||||||||||||||||||||||||||||||||||||
General
Request headers
Response headers
Redirect headers
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||
GET H3 |
favicon.ico
bijwerken-tfbnk.com/ |
548 B 633 B |
Other
text/html |
||||||||||||||||||||||||||||||||||||||||||||||||||||||
General
Request headers
Response headers
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||
POST H3 |
8849b508ccacb8a0
bijwerken-tfbnk.com/cdn-cgi/challenge-platform/h/g/jsd/r/ Frame 0F26 |
0 602 B |
XHR
text/plain |
||||||||||||||||||||||||||||||||||||||||||||||||||||||
General
Request headers
Response headers
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||
GET H3 |
Primary Request
login.php
bijwerken-tfbnk.com/web/ |
2 KB 1017 B |
Document
text/html |
||||||||||||||||||||||||||||||||||||||||||||||||||||||
General
Request headers
Response headers
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||
GET H3 |
main.js
bijwerken-tfbnk.com/cdn-cgi/challenge-platform/scripts/jsd/ Frame 7E67 |
8 KB 0 |
Script
application/javascript |
||||||||||||||||||||||||||||||||||||||||||||||||||||||
General
Request headers
Response headers
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||
POST H3 |
8849b50a9f62b8a0
bijwerken-tfbnk.com/cdn-cgi/challenge-platform/h/g/jsd/r/ Frame 7E67 |
0 601 B |
XHR
text/plain |
||||||||||||||||||||||||||||||||||||||||||||||||||||||
General
Request headers
Response headers
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||
GET H3 |
favicon.ico
bijwerken-tfbnk.com/ |
548 B 0 |
Other
text/html |
||||||||||||||||||||||||||||||||||||||||||||||||||||||
General
Request headers
Response headers
|
Verdicts & Comments Add Verdict or Comment
1 JavaScript Global Variables
These are the non-standard "global" variables defined on the window object. These can be helpful in identifying possible client-side frameworks and code.
object| 011 Cookies
Cookies are little pieces of information stored in the browser of a user. Whenever a user visits the site again, he will also send his cookie values, thus allowing the website to re-identify him even if he changed locations. This is how permanent logins work.
Domain/Path | Expires | Name / Value |
---|---|---|
bijwerken-tfbnk.com/ | Name: zSG9rc0KZgcV8NAWQhjcBRZ86h8 Value: Dic3IFiHqTnu_Fv91GjaMNAbCjg |
|
bijwerken-tfbnk.com/ | Name: GqHfgehFdMerd4hJmx5-NmxZUok Value: 1715845088 |
|
bijwerken-tfbnk.com/ | Name: u6zDtHVh0oquDN5J82HN9_ebLTk Value: 1715931488 |
|
bijwerken-tfbnk.com/ | Name: LtbDTuZk3RzIJjWeYA0NIATDg3M Value: fXKGtO8zK1OdFHnk9zomhZ9Jd1Q |
|
bijwerken-tfbnk.com/ | Name: 27RrJh2rbKRw1gN_4ETYV_RzdbQ Value: WVozN6fNxLEXAKD9MBicrCpV5pw |
|
bijwerken-tfbnk.com/ | Name: boud_LcbA4qQD3DnwzqIV96PW2Y Value: n9l9RFWkAclkyyrhlL_LoKckowE |
|
bijwerken-tfbnk.com/ | Name: 27Fz94fz0GACJsRf9TwzHa4zqKs Value: 1715845095 |
|
bijwerken-tfbnk.com/ | Name: g7xyX1OrFRPhMO0wlSewdOuUUI8 Value: 1715931495 |
|
bijwerken-tfbnk.com/ | Name: PFzL5Udsv2YzKQyOR5b1ByjwL0U Value: kec41OgKy8ABTHFrsazf3uBO3so |
|
bijwerken-tfbnk.com/ | Name: frpA8R4KDBIGZ2i8WHY22lBOgdk Value: Ge-49ncfKNfqSEeP4OQxwX-753c |
|
.bijwerken-tfbnk.com/ | Name: cf_clearance Value: cd5u9uuGBjkDb98990hiCsBL0geKF6P6PdzbTJc_Tj4-1715845096-1.0.1.1-MidGfiALqOw28.f4jIH5RGcXYxv.LqmchRFV0uZcfq1YogACRy9BXPDdzpJVPFY5IJ9Sdfzf5n8HPVuC9lOtyw |
4 Console Messages
A page may trigger messages to the console to be logged. These are often error messages about being unable to load a resource or execute a piece of JavaScript. Sometimes they also provide insight into the technology behind a website.
Source | Level | URL Text |
---|
Security Headers
This page lists any security headers set by the main page. If you want to understand what these mean and how to use them, head on over to this page
Header | Value |
---|---|
X-Content-Type-Options | nosniff nosniff |
X-Frame-Options | SAMEORIGIN |
X-Xss-Protection | 1; mode=block 1; mode=block |
Indicators
This is a term in the security industry to describe indicators such as IPs, Domains, Hashes, etc. This does not imply that any of these indicate malicious activity.
bijwerken-tfbnk.com
188.114.96.3
25fb23868ebf48348f9e438e00cb9b9d9b3a054f32482a781c762cc4f9cc6393
589705ecde73cebc392ebde92d7feb211f0aa9512513aefa5ce6026f40d23a27
6433ae2b07a49f59a13dac8975e6366f2bb7d0049bbcd236763fd3cb8a6b0b86
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
f74e34f5bb16231d4282c99fda1a207b4af2461a20d8d055d1ba88663656173f