r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bcdebf7a2bad5db595e8a0c1abb2ddcb
249dda2fa5e37b8a8f3a8c797193bf0874b6eedc
9b43ec48b16f96449208a0094c4d660806a2a2d344b5862dbff4c393bf3f9f9f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B43EC48B16F96449208A0094C4D660806A2A2D344B5862DBFF4C393BF3F9F9F"
Last-Modified: Thu, 01 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3482
Expires: Sat, 03 Sep 2022 03:29:22 GMT
Date: Sat, 03 Sep 2022 02:31:20 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 03 Sep 2022 01:42:40 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: PzMK-BPOHk9O6B8ljosifgWH_RzTIrBNKWYY6Ch1-xVrV_c3fJx3pA==
Age: 2921
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 03 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Q0OZdnIrN-woLKksM5Nh7wZXtcWyBQvTjDeXnoGzAKzf0PNPnz8bLQ==
age: 4564
X-Firefox-Spdy: h2
apgleadership.com/
199.34.228.59301 Moved Permanently 237 B IP 199.34.228.59:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 141ee6f00724c6612f78b23e34cf50fa
7064cc3012466f290ad28517004b367e42947700
1f4ed20dbcf11a5fb780d4cea0cff9afe7ded2c4f8e0133fb2f4f57728b60b05
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 03 Sep 2022 02:31:21 GMT
Server: Apache
Location: http://www.apgleadership.com/
Content-Length: 237
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 02:31:21 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sat, 03 Sep 2022 01:38:16 GMT
Cache-Control: max-age=3600
Expires: Sat, 03 Sep 2022 02:20:05 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: wHdaRRJNfIQNtY0abPVbgmuuIQ0wYwIsAbepVK6h6RrfgmsocZJ2kQ==
Age: 3184
www.apgleadership.com/
199.34.228.59301 Moved Permanently 366 B IP 199.34.228.59:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 28e1dd59a9ff1a0d662cde44be50e2ca
fff49ade5f402c7b2ac4b5f3a94b679d6aead831
169f637639d5428b7ef96fee35a03b60326593aac35e593161af54e06ce61453
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 03 Sep 2022 02:31:21 GMT
Server: Apache
Set-Cookie: is_mobile=0; path=/; domain=www.apgleadership.com
Vary: X-W-SSL,User-Agent
Location: https://www.apgleadership.com/
X-Host: grn89.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 366
Keep-Alive: timeout=10, max=42
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 21daf45cdda2eb462873226bb5c1f0fb
4d4621bbf1461f35f7e536c1dbd9de71978ffa23
8164c742d013bdc2836cac1167acfe482547347ab6a1daefa15475f694dae057
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3342
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 02:31:21 GMT
Last-Modified: Sat, 03 Sep 2022 01:35:39 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.149.242.76101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.242.76:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2MmqaNjjSsEjCyDbKcDfNw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 2LdtJuVnznc+2RqSZaR7F7NZiqQ=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 64a9e4c1b7b81be67122c089a7c7fca1
f205f79957a029632452ccc068897f286933960c
58ef99944b0f9273f9d3f5bb82de1a39fa6e0a6546073172ac40fd7ed78a6fdb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58EF99944B0F9273F9D3F5BB82DE1A39FA6E0A6546073172AC40FD7ED78A6FDB"
Last-Modified: Thu, 01 Sep 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21580
Expires: Sat, 03 Sep 2022 08:31:01 GMT
Date: Sat, 03 Sep 2022 02:31:21 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 20cc30f2a41f9c5e824ea46460548950
c153b447d44cbbe8f30d7f490605d1a430af20a1
0f8bb96e7dfd8a6bb3d7eae1a958195cb8ca9f20e0ad8cd952c34267ff0625f3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 02:31:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b69e4ee589f24deef7c8a3004daae9d1
e96ab184083a5084569b86b8846a6fa0c3b6af9a
7560417294eeb0f5c955d68bcc9b9eae40d69d1ff4b717a115ca1c614b1f4a17
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 02:31:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 20cc30f2a41f9c5e824ea46460548950
c153b447d44cbbe8f30d7f490605d1a430af20a1
0f8bb96e7dfd8a6bb3d7eae1a958195cb8ca9f20e0ad8cd952c34267ff0625f3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 02:31:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 20cc30f2a41f9c5e824ea46460548950
c153b447d44cbbe8f30d7f490605d1a430af20a1
0f8bb96e7dfd8a6bb3d7eae1a958195cb8ca9f20e0ad8cd952c34267ff0625f3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 02:31:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 20cc30f2a41f9c5e824ea46460548950
c153b447d44cbbe8f30d7f490605d1a430af20a1
0f8bb96e7dfd8a6bb3d7eae1a958195cb8ca9f20e0ad8cd952c34267ff0625f3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 02:31:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn2.editmysite.com/css/sites.css?buildTime=1630432693
151.101.85.46200 OK 30 kB URL HTTP/2 cdn2.editmysite.com/css/sites.css?buildTime=1630432693
IP 151.101.85.46:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash d10158b22b553f723d99dc78eaee6390
80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6
939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e
GET /css/sites.css?buildTime=1630432693 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 29 Aug 2022 23:13:51 GMT
etag: W/"630d482f-347ac"
expires: Tue, 13 Sep 2022 11:01:35 GMT
cache-control: max-age=1209600
x-host: grn69.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 03 Sep 2022 02:31:22 GMT
age: 314986
x-served-by: cache-sjc10083-SJC, cache-bma1641-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1662172282.439106,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 29746
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/social-icons.css?buildtime=1630432693
151.101.85.46200 OK 1.6 kB URL HTTP/2 cdn2.editmysite.com/css/social-icons.css?buildtime=1630432693
IP 151.101.85.46:0
File type ASCII text, with very long lines (13080)
Hash 3f04f9b5521931c6dc265ce2cc081c2e
277c7c76bdac30baef3a6fcc67edb36c78c1d206
81b4e500c74df13e12bcc46a896b896f2f81f20a721c52bb5011e547e9666632
GET /css/social-icons.css?buildtime=1630432693 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 29 Aug 2022 23:13:51 GMT
etag: W/"630d482f-3319"
expires: Tue, 13 Sep 2022 12:16:32 GMT
cache-control: max-age=1209600
x-host: blu134.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 03 Sep 2022 02:31:22 GMT
age: 310489
x-served-by: cache-sjc10046-SJC, cache-bma1641-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1662172282.444852,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1639
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/old/fancybox.css?1630432693
151.101.85.46200 OK 1.2 kB URL HTTP/2 cdn2.editmysite.com/css/old/fancybox.css?1630432693
IP 151.101.85.46:0
File type ASCII text, with very long lines (3910)
Hash b644e92258f4c7c0b4270047652d1e60
93734d52ee9e86a768159e514076051813c39cd9
29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907
GET /css/old/fancybox.css?1630432693 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 22 Aug 2022 20:43:20 GMT
etag: "6303ea68-f47"
expires: Tue, 06 Sep 2022 10:53:28 GMT
cache-control: max-age=1209600
x-host: blu78.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 03 Sep 2022 02:31:22 GMT
age: 920273
x-served-by: cache-sjc10079-SJC, cache-bma1641-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1662172282.448811,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1218
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js
142.250.74.42200 OK 33 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js
IP 142.250.74.42:0
File type ASCII text, with very long lines (32089)
Hash bf899cc5ba60c522341e4d712a5246bf
2c92c54c9919c8b81b4e77a97bfd4d8f202e1a6a
4f8b9bf1630c24cf17444ec093052451c370c9371212db74b4bf8b4fd71a2817
GET /ajax/libs/jquery/1.9.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33018
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 12:12:50 GMT
expires: Tue, 29 Aug 2023 12:12:50 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 397112
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
142.250.74.42200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
IP 142.250.74.42:0
File type ASCII text, with very long lines (65483)
Hash a54a444f20643b131117dc2112cca05f
074964746b12ff1d30f7656310d6154ae1cc98b5
aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830
GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 27 Aug 2022 09:37:50 GMT
expires: Sun, 27 Aug 2023 09:37:50 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 579212
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
marketplace.editmysite.com/uploads/b/marketplace-elements-831251787464926230-1.0.7/assets/uikit.css
151.101.85.46200 OK 28 kB URL HTTP/2 marketplace.editmysite.com/uploads/b/marketplace-elements-831251787464926230-1.0.7/assets/uikit.css
IP 151.101.85.46:0
Hash 1d7cb94fde011f934c3176ec9d38ec58
a85220ab36c16e4e688c905a73ce3f317374e693
356d80a4fa84f829a17dbcb37ccb650888200074b70c7c36b3059d5fbe4be512
GET /uploads/b/marketplace-elements-831251787464926230-1.0.7/assets/uikit.css HTTP/1.1
Host: marketplace.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Wed, 04 Mar 2020 08:36:16 GMT
x-rgw-object-type: Normal
etag: W/"46a7019837bc5a9971ddb244ec32603c"
x-amz-request-id: tx0000000000000032272b7-006285a042-b9fbc20-sfo1
expires: Thu, 01 Sep 2022 07:32:33 GMT
cache-control: max-age=1209600
x-storage-bucket: z7e65
x-storage-object: 7e6513aaeb10a767f0a04183a05d9149fdbf98036f538cb1784fa3f0397cfea4
access-control-allow-origin: *
content-encoding: gzip
fastly-restarts: 1
accept-ranges: bytes
date: Sat, 03 Sep 2022 02:31:22 GMT
via: 1.1 varnish
age: 124664
x-served-by: cache-bma1669-BMA
x-cache: HIT
x-cache-hits: 6
x-timer: S1662172282.449617,VS0,VE1
vary: Accept-Encoding
content-length: 28414
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1630432693&
151.101.85.46200 OK 33 kB URL HTTP/2 cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1630432693&
IP 151.101.85.46:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (64997)
Hash 40ee71f2f2de93b9561845efa9a0cbbc
13451e3fb165d1ad524d9863d8344eab4a2fe353
41a33daf28fc89ce06f3c6a6029d078c20a0f42f07d6ec3dc7127d206dcec5fe
GET /js/lang/en/stl.js?buildTime=1630432693& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Mon, 29 Aug 2022 23:12:57 GMT
etag: "630d47f9-2c44e"
expires: Tue, 13 Sep 2022 12:09:11 GMT
cache-control: max-age=1209600
x-host: grn82.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 03 Sep 2022 02:31:22 GMT
age: 310931
x-served-by: cache-sjc10042-SJC, cache-bma1641-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1662172282.453878,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 32802
X-Firefox-Spdy: h2
marketplace.editmysite.com/uploads/b/marketplace-elements-831251787464926230-1.0.7/assets/custom.css?meowmeow1
151.101.85.46200 OK 199 B URL HTTP/2 marketplace.editmysite.com/uploads/b/marketplace-elements-831251787464926230-1.0.7/assets/custom.css?meowmeow1
IP 151.101.85.46:0
File type ASCII text, with CRLF line terminators
Hash 1a73bbcc9735c9f0048de619e2c32623
7ac209bc75474bfbec63e78a8f14c2f756e117f1
e6d6090cb13aef16d7e7efad846e35c0365604bad044cf41d4fa085a59148185
GET /uploads/b/marketplace-elements-831251787464926230-1.0.7/assets/custom.css?meowmeow1 HTTP/1.1
Host: marketplace.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Wed, 04 Mar 2020 09:27:24 GMT
x-rgw-object-type: Normal
etag: "1f3a447c9879d339591934df3c608e64"
x-amz-request-id: tx000000000000002ef6da8-0062856ea1-b9fbc7f-sfo1
expires: Sat, 10 Sep 2022 14:23:29 GMT
cache-control: max-age=1209600
x-storage-bucket: zbbcf
x-storage-object: bbcf3e9a7962b8e8809a2665afde8831357c909b465eddafde0f2fee139eae69
access-control-allow-origin: *
fastly-restarts: 1
content-encoding: gzip
accept-ranges: bytes
date: Sat, 03 Sep 2022 02:31:22 GMT
via: 1.1 varnish
age: 562073
x-served-by: cache-bma1669-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1662172282.449639,VS0,VE1
vary: Accept-Encoding
content-length: 199
X-Firefox-Spdy: h2
marketplace.editmysite.com/uploads/b/marketplace-elements-831251787464926230-1.0.7/assets/fonts.css?meow
151.101.85.46200 OK 861 B URL HTTP/2 marketplace.editmysite.com/uploads/b/marketplace-elements-831251787464926230-1.0.7/assets/fonts.css?meow
IP 151.101.85.46:0
Hash 44064fc0819eb0a1f5c5ffe2f801a614
2521d0920093335722814bbf8152c05f0041c9a2
193fd533fbfe85915dbbc4c9b25f3115fbe53378a9ac8c93808df3e9a18eaf55
GET /uploads/b/marketplace-elements-831251787464926230-1.0.7/assets/fonts.css?meow HTTP/1.1
Host: marketplace.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Thu, 12 Sep 2019 18:45:52 GMT
x-rgw-object-type: Normal
etag: W/"c88ad1df69957779ff0db8c1b1083fd0"
x-amz-request-id: tx000000000000003556dfb-006285ddfd-b9fbc20-sfo1
expires: Wed, 31 Aug 2022 05:57:37 GMT
cache-control: max-age=1209600
x-storage-bucket: z4f62
x-storage-object: 4f621a902ea9c8be4fec2dca8635b65602da46c0f90c80908a54511036fc00a1
access-control-allow-origin: *
content-encoding: gzip
fastly-restarts: 1
accept-ranges: bytes
date: Sat, 03 Sep 2022 02:31:22 GMT
via: 1.1 varnish
age: 230047
x-served-by: cache-bma1669-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1662172282.449479,VS0,VE2
vary: Accept-Encoding
content-length: 861
X-Firefox-Spdy: h2
marketplace.editmysite.com/uploads/b/marketplace-elements-831251787464926230-1.0.7/assets/slideshow.css
151.101.85.46200 OK 997 B URL HTTP/2 marketplace.editmysite.com/uploads/b/marketplace-elements-831251787464926230-1.0.7/assets/slideshow.css
IP 151.101.85.46:0
Hash 5f04424a8d5282fb4338da269082000e
964548887180e175907d2ade57101b17d35193b8
6dbcc13a1ed77e7122966a7dc3ff321da5c3fdfa618285b17add0860304f2ec0
GET /uploads/b/marketplace-elements-831251787464926230-1.0.7/assets/slideshow.css HTTP/1.1
Host: marketplace.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Thu, 12 Sep 2019 18:45:51 GMT
x-rgw-object-type: Normal
etag: "55f82d841cd46c6b3373330f0c1db0da"
x-amz-request-id: tx0000000000000028a407b-0062852d2f-b9fbc77-sfo1
expires: Mon, 15 Aug 2022 11:28:56 GMT
cache-control: max-age=1209600
x-storage-bucket: z13c7
x-storage-object: 13c72ec3a4e62661f1389bae60485cf69e2aa33b917a45eed9b1825807d9b66a
access-control-allow-origin: *
fastly-restarts: 1
content-encoding: gzip
accept-ranges: bytes
date: Sat, 03 Sep 2022 02:31:22 GMT
via: 1.1 varnish
age: 232551
x-served-by: cache-bma1669-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1662172282.450970,VS0,VE1
vary: Accept-Encoding
content-length: 997
X-Firefox-Spdy: h2
www.apgleadership.com/
199.34.228.59200 OK 51 kB IP 199.34.228.59:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1350), with CRLF, LF line terminators
Hash 5d111f0726167e85c39aa6e462d80eff
dadd8b6b21c418bbadeadfa7b71a5c09cfd277f8
2d7d07cf1e44d03bab749af22908b4c030c0d354b6ab4343838fb4dc3c1dd4a4
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 02:31:22 GMT
Server: Apache
Vary: X-W-SSL,Accept-Encoding,User-Agent
Set-Cookie: is_mobile=0; path=/; domain=www.apgleadership.com
language=en; expires=Sat, 17-Sep-2022 02:31:22 GMT; Max-Age=1209600; path=/
Cache-Control: private
ETag: W/"647e6d53e6e1e732ffc0fb14f399fffa-gzip"
Content-Encoding: gzip
X-Host: blu65.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 50760
Keep-Alive: timeout=10, max=63
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
marketplace.editmysite.com/uploads/b/marketplace-elements-831251787464926230-1.0.7/assets/slidenav.css
151.101.85.46200 OK 686 B URL HTTP/2 marketplace.editmysite.com/uploads/b/marketplace-elements-831251787464926230-1.0.7/assets/slidenav.css
IP 151.101.85.46:0
Hash 8e06519eea4378131efe0b70764b9e39
e21a23bdceb56b599254d028859339cb6c2131ad
c74882d0ca582b2decf65fc614d7a65a0a05d0bf38506a5d7f3571f58b9661d9
GET /uploads/b/marketplace-elements-831251787464926230-1.0.7/assets/slidenav.css HTTP/1.1
Host: marketplace.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Thu, 12 Sep 2019 18:45:52 GMT
x-rgw-object-type: Normal
etag: "dda3e139f3efdd99432f4b3389d6d650"
x-amz-request-id: tx000000000000002fb9638-0062857115-b9fbc29-sfo1
expires: Thu, 01 Sep 2022 07:32:33 GMT
cache-control: max-age=1209600
x-storage-bucket: zc45d
x-storage-object: c45d1fcd58d293a61da578c5ab1cf424bab33f1db8147f1fec470066340048ad
access-control-allow-origin: *
fastly-restarts: 1
content-encoding: gzip
accept-ranges: bytes
date: Sat, 03 Sep 2022 02:31:22 GMT
via: 1.1 varnish
age: 124665
x-served-by: cache-bma1669-BMA
x-cache: HIT
x-cache-hits: 7
x-timer: S1662172282.456316,VS0,VE0
vary: Accept-Encoding
content-length: 686
X-Firefox-Spdy: h2
marketplace.editmysite.com/uploads/b/marketplace-elements-831251787464926230-1.0.7/assets/dotnav.css
151.101.85.46200 OK 842 B URL HTTP/2 marketplace.editmysite.com/uploads/b/marketplace-elements-831251787464926230-1.0.7/assets/dotnav.css
IP 151.101.85.46:0
Hash de8dde190c4954d82386250f35a771bf
f6d91ab209e003229fafa68c1d0479d2e129f3e2
27b01fbc8e39673107b33ba891f91f95d90e9c2c67fbaeccef58563efb037f09
GET /uploads/b/marketplace-elements-831251787464926230-1.0.7/assets/dotnav.css HTTP/1.1
Host: marketplace.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Thu, 12 Sep 2019 18:45:52 GMT
x-rgw-object-type: Normal
etag: "b39a4970a710ad04773db8f628925ee5"
x-amz-request-id: tx000000000000001fcc054-0061a80880-a9f1b25-sfo1
expires: Fri, 16 Sep 2022 10:11:40 GMT
cache-control: max-age=1209600
x-storage-bucket: z755c
x-storage-object: 755c9d633a7f563d1cfa58c1f6550f41fddb997c4df235234fbd6d75e0508d59
access-control-allow-origin: *
fastly-restarts: 1
content-encoding: gzip
accept-ranges: bytes
date: Sat, 03 Sep 2022 02:31:22 GMT
via: 1.1 varnish
age: 58782
x-served-by: cache-bma1669-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1662172282.456423,VS0,VE0
vary: Accept-Encoding
content-length: 842
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 20cc30f2a41f9c5e824ea46460548950
c153b447d44cbbe8f30d7f490605d1a430af20a1
0f8bb96e7dfd8a6bb3d7eae1a958195cb8ca9f20e0ad8cd952c34267ff0625f3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 02:31:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 20cc30f2a41f9c5e824ea46460548950
c153b447d44cbbe8f30d7f490605d1a430af20a1
0f8bb96e7dfd8a6bb3d7eae1a958195cb8ca9f20e0ad8cd952c34267ff0625f3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 02:31:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b69e4ee589f24deef7c8a3004daae9d1
e96ab184083a5084569b86b8846a6fa0c3b6af9a
7560417294eeb0f5c955d68bcc9b9eae40d69d1ff4b717a115ca1c614b1f4a17
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 02:31:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1630432693
151.101.85.46200 OK 159 kB URL HTTP/2 cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1630432693
IP 151.101.85.46:0
File type ASCII text, with very long lines (32007)
Size 159 kB (159020 bytes)
Hash 19fd4a473c58275a9e8110c598292a56
3ff56cbf5a3677387aef743acdf1a8abf822d28d
89b155f71eeef3fb8d9c95ff95288c29a0b5b722d9c0a3dfdeadfea8b8032884
Analyzer Verdict Alert fortinet Malware
GET /js/site/main-customer-accounts-site.js?buildTime=1630432693 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Mon, 22 Aug 2022 20:43:39 GMT
etag: "6303ea7b-82588"
expires: Tue, 06 Sep 2022 10:28:31 GMT
cache-control: max-age=1209600
x-host: blu100.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 03 Sep 2022 02:31:22 GMT
age: 921771
x-served-by: cache-sjc10020-SJC, cache-bma1641-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1662172283.601956,VS0,VE2
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 159020
X-Firefox-Spdy: h2
www.apgleadership.com/files/theme/jquery.ui.totop.js?1593105049
199.34.228.59200 OK 934 B URL HTTP/1.1 www.apgleadership.com/files/theme/jquery.ui.totop.js?1593105049
IP 199.34.228.59:0
File type HTML document, ASCII text, with very long lines (934), with no line terminators
Hash cf7f8d61bc1505d43a970ae462b32363
0ead12203296a2410968efafa0a3094695342491
336a2d20f23e8fca2eb0cb487a69c87fb013e7cd092ec77b9a33aa08b9ebd00a
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/jquery.ui.totop.js?1593105049 HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 02:31:22 GMT
Content-Type: application/javascript
Content-Length: 934
Connection: keep-alive
Last-Modified: Wed, 20 Jan 2021 02:13:07 GMT
ETag: "cf7f8d61bc1505d43a970ae462b32363"
x-amz-request-id: tx00000000000000369074a-00612fd2a4-a8359af-sfo1
X-Storage-Bucket: z336a
X-Storage-Object: 336a2d20f23e8fca2eb0cb487a69c87fb013e7cd092ec77b9a33aa08b9ebd00a
X-Host: blu24.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.apgleadership.com/files/theme/jquery.mCustomScrollbar.concat.min.js?1593105049
199.34.228.59200 OK 13 kB URL HTTP/1.1 www.apgleadership.com/files/theme/jquery.mCustomScrollbar.concat.min.js?1593105049
IP 199.34.228.59:0
File type ASCII text, with very long lines (32011)
Hash 1ddcc410f84948ea0e8cbc287f96f958
f5a8534ca9a01ba30c0111f2cc2ed5a7400455e4
355efc7fdab03d1de6a3c876bf7257fc355791c3b4de6c8b5a945d38581e1433
GET /files/theme/jquery.mCustomScrollbar.concat.min.js?1593105049 HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 02:31:22 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 27 Mar 2019 20:43:26 GMT
ETag: W/"4216d0482a593a488590a999cb93f554"
x-amz-request-id: tx000000000000001b260d9-006165661f-1ff7556-las
X-Storage-Bucket: zc1c8
X-Storage-Object: c1c84bf052ab94b09819dd5e183d3b6088e079a747104bcd5a619c16b71da54c
X-Host: blu49.sf2p.intern.weebly.net
Content-Encoding: gzip
www.apgleadership.com/files/templateArtifacts.js?1630508829
199.34.228.59200 OK 1.6 kB URL HTTP/1.1 www.apgleadership.com/files/templateArtifacts.js?1630508829
IP 199.34.228.59:0
File type exported SGML document, ASCII text, with very long lines (1630)
Hash e0836e8203c22b8e4086f27e91e86f5a
28235e77f5a895c8cd411aff4a6ef4e6f7d419c2
32dbc4a2eeca39a57d35670f00e2cf59e03c279521e47506c56c5c36d8b664b6
Analyzer Verdict Alert fortinet Phishing
GET /files/templateArtifacts.js?1630508829 HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 02:31:22 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: grn139.sf2p.intern.weebly.net
Content-Encoding: gzip
www.apgleadership.com/files/main_style.css?1630508829
199.34.228.59200 OK 14 kB URL HTTP/1.1 www.apgleadership.com/files/main_style.css?1630508829
IP 199.34.228.59:0
File type ASCII text, with very long lines (660)
Hash 4da7b032160fc0a4b9c649dc56f229d8
e17f521d3da04b5a28fbdcbf6df1e91980616ddd
38291c3c8c567c0b0f4dc7b75093f2a3a1ca00bc5afb4df7c7fd567e81f14215
Analyzer Verdict Alert fortinet Phishing
GET /files/main_style.css?1630508829 HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 02:31:22 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: grn77.sf2p.intern.weebly.net
Content-Encoding: gzip
www.apgleadership.com/files/theme/jquery.nicefileinput.min.js?1593105049
199.34.228.59200 OK 1.1 kB URL HTTP/1.1 www.apgleadership.com/files/theme/jquery.nicefileinput.min.js?1593105049
IP 199.34.228.59:0
File type ASCII text, with very long lines (1088), with no line terminators
Hash 6b0e87cf43cd95fb48b5906f5cd80eb2
3404c7e0513d797f33ec0dda3a6fd625d43afee1
3fab86a1865beccce3cfbbcfd9045d4726a7eed3f679a6f4029ff4e8ccfc835c
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/jquery.nicefileinput.min.js?1593105049 HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 02:31:22 GMT
Content-Type: application/javascript
Content-Length: 1088
Connection: keep-alive
Last-Modified: Wed, 20 Jan 2021 02:13:06 GMT
ETag: "6b0e87cf43cd95fb48b5906f5cd80eb2"
x-amz-request-id: tx0000000000001d98c5b44-0060eb97db-131dd7c-las
X-Storage-Bucket: z3fab
X-Storage-Object: 3fab86a1865beccce3cfbbcfd9045d4726a7eed3f679a6f4029ff4e8ccfc835c
X-Host: blu44.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.apgleadership.com/files/theme/jquery.jqtransform.js
199.34.228.59200 OK 4.5 kB URL HTTP/1.1 www.apgleadership.com/files/theme/jquery.jqtransform.js
IP 199.34.228.59:0
File type ASCII text, with very long lines (15381), with no line terminators
Hash b9f0b7d54dee91fe1ccbf389e064e40f
898590252fea8a082e855fbe4bc92905aa68b370
bfa75a5471e9e0cd69f795ad7feb86cc341d571702058b76c70a5926ed593c97
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/jquery.jqtransform.js HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 02:31:22 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 26 Jul 2019 04:12:44 GMT
ETag: W/"54c16b78b05d446f6ead13ba507b3b2e"
x-amz-request-id: tx0000000000000ac15a953-005fab4b79-1317d41-las
X-Storage-Bucket: zf0e9
X-Storage-Object: f0e96eebfcf97d8aa6582e8e446f92728e2d4b615e6469ccdcceaa86f1107c50
X-Host: blu14.sf2p.intern.weebly.net
Content-Encoding: gzip
www.apgleadership.com/files/theme/custom.js?1593105049
199.34.228.59200 OK 1.5 kB URL HTTP/1.1 www.apgleadership.com/files/theme/custom.js?1593105049
IP 199.34.228.59:0
File type ASCII text, with very long lines (1517), with no line terminators
Hash 915eb695b4b913c316e5eaeccff9255a
cfd27638f46ce390e03457381cd1f6078075490f
4b6078894697f667ed7848954bcec514864912645f490091882cffe5b4c416c8
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/custom.js?1593105049 HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 02:31:23 GMT
Content-Type: application/javascript
Content-Length: 1517
Connection: keep-alive
Last-Modified: Thu, 05 Mar 2020 10:32:14 GMT
x-rgw-object-type: Normal
ETag: "915eb695b4b913c316e5eaeccff9255a"
x-amz-request-id: tx0000000000000312ff5a3-00630e9080-c033918-sfo1
X-Storage-Bucket: z4b60
X-Storage-Object: 4b6078894697f667ed7848954bcec514864912645f490091882cffe5b4c416c8
X-Host: grn139.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.apgleadership.com/files/theme/aes.js?1593105049
199.34.228.59200 OK 2.1 kB URL HTTP/1.1 www.apgleadership.com/files/theme/aes.js?1593105049
IP 199.34.228.59:0
File type ASCII text, with very long lines (5592), with no line terminators
Hash 9bd10ea4603c1d544a0c7f5907f7f7b2
bd8d4c36785483cf9b83da33e41d200089981587
c92770a716cae63951f2c67c1941f24caeac772bc0dc26ff79325383058cb893
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/aes.js?1593105049 HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 02:31:23 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 20 Jan 2021 02:13:06 GMT
x-rgw-object-type: Normal
ETag: W/"213f9e97a559e474385e880d4efe46ff"
x-amz-request-id: tx0000000000000075939be-0061b012c6-a9f4046-sfo1
X-Storage-Bucket: z8c73
X-Storage-Object: 8c73fe3643f152e64490a56b2a3a18c90f63c7731d5b4d7031dedcd72811b61a
X-Host: grn70.sf2p.intern.weebly.net
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10676
Expires: Sat, 03 Sep 2022 05:29:19 GMT
Date: Sat, 03 Sep 2022 02:31:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10676
Expires: Sat, 03 Sep 2022 05:29:19 GMT
Date: Sat, 03 Sep 2022 02:31:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10676
Expires: Sat, 03 Sep 2022 05:29:19 GMT
Date: Sat, 03 Sep 2022 02:31:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10676
Expires: Sat, 03 Sep 2022 05:29:19 GMT
Date: Sat, 03 Sep 2022 02:31:23 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7dce7ca4-6ed1-4f00-8943-1ea59bc2cfd0.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7dce7ca4-6ed1-4f00-8943-1ea59bc2cfd0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 940d722cca434f3267ad6a1567b92e7b
8f8d5827588201a2b6aa883cbf812b0db2318df2
33c16b50e7c317df2b91def5625e8e39c8c2ecc75054ee40f82d4b22c80eb831
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7dce7ca4-6ed1-4f00-8943-1ea59bc2cfd0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11776
x-amzn-requestid: 59dcda55-4c16-4842-828d-2588c43178c5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XqdN-FzkIAMFy4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630da8bf-37b930cb3e54dfa21883ead4;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 06:05:51 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: eVOxXB-DBdvXLiSeG8b7tDD2oLU6x_F5EUSh-JjIW7SQJ1j9kOA6hg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 22:00:51 GMT
age: 16232
etag: "8f8d5827588201a2b6aa883cbf812b0db2318df2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e13cf1-38c2-4f82-a50c-b409a24f3af6.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e13cf1-38c2-4f82-a50c-b409a24f3af6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f4cb62c7c522b71c62a97630d8330ef5
950611314b81428b3d80ff8659272cc800cf48b6
3fd0bbf8a1fe8776136d611d6b99b909b71e6af3a13f8794338af2f0026b59ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e13cf1-38c2-4f82-a50c-b409a24f3af6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7975
x-amzn-requestid: 5ed9a360-5a7f-427a-a750-bd8f25214909
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XwpOBEpjIAMFzXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63102259-4b9d2f6e61cc186f78718168;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 03:09:13 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: BU7CFrnTBhvyqoRVp1t-e_ZErBnJA9l4qGkmxOQd10W48IzyIFGFZw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 03:41:59 GMT
age: 82164
etag: "950611314b81428b3d80ff8659272cc800cf48b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe9669117-bdb7-4eca-9f0c-900e888a9a98.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe9669117-bdb7-4eca-9f0c-900e888a9a98.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d9ae49d397bc8300ce0eceda8175a3ad
087b7d14d84ebb179126c9dcd8964d22f24f30ab
b9daa2fc390a97a4bd622dbdec7fe0fff7e6527ffb844a46b9b87b2bd6e0f006
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe9669117-bdb7-4eca-9f0c-900e888a9a98.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13241
x-amzn-requestid: 80083a05-9884-48f8-983b-d4132d7c8a0c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X2eMHFgPIAMF9qg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312771a-16fd2f06541cb4bc027f153f;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zugAT8FgWA5gShTMABbCTZbZzaCXxM6du0zskoXn-LtzDNb5j4ByeA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 22:18:36 GMT
age: 15167
etag: "087b7d14d84ebb179126c9dcd8964d22f24f30ab"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc564d2b6-daa1-414e-bb63-5116a4d51382.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc564d2b6-daa1-414e-bb63-5116a4d51382.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 06ffb5110d8bf50e601e91531f179e62
bb41e58777f4c3ed776a29e0e074f5fbcea5b814
59947d967e6f441c28fd42be2a834b7ba3eb52ab4a01579dab17c9e6fa5d8ed9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc564d2b6-daa1-414e-bb63-5116a4d51382.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8613
x-amzn-requestid: 4944a86f-87d8-434e-ba61-46e5029b0045
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XiVJ0F25IAMFh7A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630a68a5-64ff3e0556b9b1535084fda0;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 18:55:33 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: uzn9-Yz0Bav6AkjZBkGzBqbfVgAr2rvDpfZalJ-mjNaphFC0IerwtQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 03:43:30 GMT
age: 82073
etag: "bb41e58777f4c3ed776a29e0e074f5fbcea5b814"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc55d0c73-4085-42ac-acb4-1ae9b2ffb393.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc55d0c73-4085-42ac-acb4-1ae9b2ffb393.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c199f7fc2a2857dec134bfdb2673e28c
af3989072b658e2de119d006ae4ca1703468913d
e57411ba0221f6ffa7baf7c374ec790959a66d6a683fad40883ef01cf67e35c3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc55d0c73-4085-42ac-acb4-1ae9b2ffb393.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6976
x-amzn-requestid: da379546-9525-4e13-b9f0-a6446839df66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X2eNeG7kIAMF4-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63127722-37399f67565b06e7111095cd;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 21:35:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5SORUPJgJ_gKKs4hSa4EzCCQA6B1dmyO1EC-gCBvFKl2R2hV0mYTeA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 22:39:01 GMT
age: 13942
etag: "af3989072b658e2de119d006ae4ca1703468913d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93ac38e4-a58e-4303-b7a1-e6c19cc7f80e.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93ac38e4-a58e-4303-b7a1-e6c19cc7f80e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8a1a9b226f6556f7ea2f3e990e618c78
72796327f9481a7516aac1fbfd73a36d69f83626
187b68b54b976b7a1a17928e172c9726b5583b650b982eb5cd2378a4ee2aa54d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93ac38e4-a58e-4303-b7a1-e6c19cc7f80e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7332
x-amzn-requestid: ea4ea9b2-b306-449c-814f-f1447d64ad73
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XsLfzHzPIAMFmrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630e5931-362f0ddf533fc7905ab1acb5;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 18:38:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: sGOpvoSHH63xn1qpb-9sG3YzpxdhLPib3pd5xX9Pvq8-hUIP3iNpQg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 ddaf46a95abcfc80e8eae76235e2127c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 06:23:03 GMT
age: 72500
etag: "72796327f9481a7516aac1fbfd73a36d69f83626"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.apgleadership.com/files/theme/baambooLicense.js?1593105049
199.34.228.59200 OK 2.6 kB URL HTTP/1.1 www.apgleadership.com/files/theme/baambooLicense.js?1593105049
IP 199.34.228.59:0
File type ASCII text, with very long lines (16804), with no line terminators
Hash af20515a01dfb7ff4eb36b55a6a542c1
631fc6a2a080a67971f47e424b37785813bde227
84f7a6c223457337c8480ee24581c3133addd4e4ec72b0bc93df6a763f85a3df
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/baambooLicense.js?1593105049 HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 02:31:23 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 17 Feb 2019 17:27:21 GMT
ETag: W/"d368c67a141a1be5af26557128a8e871"
x-amz-request-id: tx0000000000001ea50758f-0060ff5d8e-131dd7c-las
X-Storage-Bucket: z70f0
X-Storage-Object: 70f05c26cbc067126a09fad438bbc4c4f1d5754e4a6523561c081c18134b706e
X-Host: blu44.sf2p.intern.weebly.net
Content-Encoding: gzip
www.apgleadership.com/files/theme/baamboo-jquery.js?1593105049
199.34.228.59200 OK 2.8 kB URL HTTP/1.1 www.apgleadership.com/files/theme/baamboo-jquery.js?1593105049
IP 199.34.228.59:0
File type ASCII text, with very long lines (2837), with no line terminators
Hash 6cdc37686b070d0ad958b41933f79d42
31ee464e60acd84f38cd50ea22c4c36b5c7d7e98
6d6f9c5d6aa3d6e5aaf3b95c4361097e0480285ebf837ed15b4afa2cecb6e32c
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/baamboo-jquery.js?1593105049 HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 02:31:23 GMT
Content-Type: application/javascript
Content-Length: 2837
Connection: keep-alive
Last-Modified: Thu, 07 Feb 2019 10:05:38 GMT
x-rgw-object-type: Normal
ETag: "6cdc37686b070d0ad958b41933f79d42"
x-amz-request-id: tx0000000000000080c21b9-0061b12f66-a9f41e7-sfo1
X-Storage-Bucket: z6d6f
X-Storage-Object: 6d6f9c5d6aa3d6e5aaf3b95c4361097e0480285ebf837ed15b4afa2cecb6e32c
X-Host: grn79.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.apgleadership.com/files/theme/scrollbar.css?1630508829
199.34.228.59200 OK 1.6 kB URL HTTP/1.1 www.apgleadership.com/files/theme/scrollbar.css?1630508829
IP 199.34.228.59:0
File type ASCII text, with very long lines (378)
Hash 1140abf975b67042b4505f6fb27ef042
61d6104ff8ec34ccc2aa72c5b80a66786502d447
f3f9ca0db8d5bb297b79e1e3ebc2c21f3365e23bda05061ade5893a7a9a707b3
GET /files/theme/scrollbar.css?1630508829 HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/files/main_style.css?1630508829
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 02:31:23 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 20 Apr 2020 15:40:38 GMT
ETag: W/"9a7c5ffb48a4a6c3b49827466eccbabf"
x-amz-request-id: tx00000000000004c69d4f4-005f4816b1-1317a98-las
X-Storage-Bucket: z1877
X-Storage-Object: 1877967cf70ca85b6c4bebd7792139b0056b24c44f2162015eee995e1e93aec6
X-Host: blu25.sf2p.intern.weebly.net
Content-Encoding: gzip
www.apgleadership.com/files/theme/fonts/fonts.css?1630508829
199.34.228.59200 OK 2.8 kB URL HTTP/1.1 www.apgleadership.com/files/theme/fonts/fonts.css?1630508829
IP 199.34.228.59:0
Hash 3cdac7e6d2a86aae8dc091402765b719
71247972bef4c73bbb88eb6ba9c79aa73f0c4c3b
7207878a3586fce86503e68cc28acb060425778165610f79294d7893b7d418a4
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/fonts/fonts.css?1630508829 HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/files/main_style.css?1630508829
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 02:31:23 GMT
Content-Type: text/css
Content-Length: 2846
Connection: keep-alive
Last-Modified: Mon, 20 Apr 2020 15:40:36 GMT
x-rgw-object-type: Normal
ETag: "3cdac7e6d2a86aae8dc091402765b719"
x-amz-request-id: tx00000000000002641f2c7-0062fd56c4-c0351b0-sfo1
X-Storage-Bucket: z7207
X-Storage-Object: 7207878a3586fce86503e68cc28acb060425778165610f79294d7893b7d418a4
X-Host: blu134.sf2p.intern.weebly.net
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9c9dd50229c8554642c07b459e70483a
05e222c5400f7ca4aabb9acb2db9b02c4fd35049
6ec6e113e2229be13b53db6349a7664590de5c8293ec3bcf233337551afd7a72
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3248
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 02:31:23 GMT
Last-Modified: Sat, 03 Sep 2022 01:37:15 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
ailabomay.baamboostudio.com/member.baamboostudio.com/X-slider/uploads/f23a3fx15-a66xcd5f6-ci2134jsxms/banner-performance-612f86d43fa62.jpg
104.21.93.112200 OK 72 kB URL HTTP/2 ailabomay.baamboostudio.com/member.baamboostudio.com/X-slider/uploads/f23a3fx15-a66xcd5f6-ci2134jsxms/banner-performance-612f86d43fa62.jpg
IP 104.21.93.112:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 240x240, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=16, height=788, bps=0, PhotometricIntepretation=RGB, description=USS Benfold departs Palau, manufacturer=NIKON CORPORATION, model=NIKON D3100, orientation=upper-left, width=1340], baseline, precision 8, 1340x788, components 3\012- data
Hash 3698d2d0d855eb968db74a776068e906
8e1e287e4e5454b0762aef3d34af2f8d904fc6fc
ce6a9209a2bfd37a7f9f02e9dc4b7d0a68cb9e11ede85c77cf11bdbc25671937
GET /member.baamboostudio.com/X-slider/uploads/f23a3fx15-a66xcd5f6-ci2134jsxms/banner-performance-612f86d43fa62.jpg HTTP/1.1
Host: ailabomay.baamboostudio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 02:31:23 GMT
content-type: image/jpeg
content-length: 72468
last-modified: Wed, 01 Sep 2021 13:57:40 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BZLrk6G2qgJrc4q%2BwsJC5JznmEp8kHlSBL67mMwya9pZB5%2Fe0a9R4m53nR4R7Llfk8MlikKkLpUCA2auBC9Wb8dT1fhrSm%2FwkrxXlioWY1p1IPWim6XIM8Y4KMApPbVLKCqdlB8N3AqoWG%2B5IAw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 744b11a139bbb4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
boocare.weebly.com/files/theme/boocss/vine.css?1630508829
199.34.228.53200 OK 1.2 kB URL HTTP/1.1 boocare.weebly.com/files/theme/boocss/vine.css?1630508829
IP 199.34.228.53:0
Hash 298b228e06526e5d92658e05cb86cf18
adfa733ae3fc10845a22b7594061f9a8b526e26d
9af69d0ae25ba73e1d8913639aff46c78aefc044b0641ad5635ff41bb3db408d
GET /files/theme/boocss/vine.css?1630508829 HTTP/1.1
Host: boocare.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 02:31:23 GMT
Content-Type: text/css; charset=utf-8
Content-Length: 1197
Connection: keep-alive
Last-Modified: Sun, 17 Mar 2019 07:35:24 GMT
x-rgw-object-type: Normal
ETag: "298b228e06526e5d92658e05cb86cf18"
x-amz-request-id: tx000000000000007f0ec43-0061b128ed-a9f1ce7-sfo1
X-Storage-Bucket: z9af6
X-Storage-Object: 9af69d0ae25ba73e1d8913639aff46c78aefc044b0641ad5635ff41bb3db408d
X-Host: grn70.sf2p.intern.weebly.net
Accept-Ranges: bytes
ailabomay.baamboostudio.com/member.baamboostudio.com/X-slider/uploads/f23a3fx15-a66xcd5f6-ci2134jsxms/banner-leadership-mike-iys-v4-right-side-612f95480bce7.jpg
104.21.93.112200 OK 393 kB URL HTTP/2 ailabomay.baamboostudio.com/member.baamboostudio.com/X-slider/uploads/f23a3fx15-a66xcd5f6-ci2134jsxms/banner-leadership-mike-iys-v4-right-side-612f95480bce7.jpg
IP 104.21.93.112:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 1920x1080, components 3\012- data
Size 393 kB (392992 bytes)
Hash 7b5e99d6d8a6892daf40b99ac0213fdb
a91530ab30dcf23828ab2e33fc5c616cfd46190f
05647ff62fc9eb413559bae48a242b619c154d49e3d49e210bee47380e62aef9
GET /member.baamboostudio.com/X-slider/uploads/f23a3fx15-a66xcd5f6-ci2134jsxms/banner-leadership-mike-iys-v4-right-side-612f95480bce7.jpg HTTP/1.1
Host: ailabomay.baamboostudio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 02:31:23 GMT
content-type: image/jpeg
content-length: 392992
last-modified: Wed, 01 Sep 2021 14:59:20 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oITcNiUGeN8gj1fwr3uqFlkVoPaK8vHujA1kAZK8OoVh7UTlDVEQ24hyd%2FsxnCAgCmmv6Vdjx%2FCgYrewzqQdUAzrNyqsV7UZcF5jK4LfX7HoVfEDwDmzAe%2FXvCjBQgeM8sLwgaLW40jVuUSiOno%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 744b11a129b9b4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
marketplace.editmysite.com/uploads/b/marketplace-elements-831251787464926230-1.0.7/assets/fonts/icomoon.ttf?rhcmo
151.101.85.46200 OK 1.8 kB URL HTTP/2 marketplace.editmysite.com/uploads/b/marketplace-elements-831251787464926230-1.0.7/assets/fonts/icomoon.ttf?rhcmo
IP 151.101.85.46:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Hash 7f01a3b7e60c16cbc09d493e9849da41
52673e212f947b8b2fc2f3fb43c67f1353b24eb5
dae9ec53caafeef0a957f338b70ecca0b0458f5b83788aa54d48f4704cdcb02a
GET /uploads/b/marketplace-elements-831251787464926230-1.0.7/assets/fonts/icomoon.ttf?rhcmo HTTP/1.1
Host: marketplace.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.apgleadership.com
Connection: keep-alive
Referer: https://marketplace.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: font/ttf
last-modified: Thu, 29 Aug 2019 08:41:50 GMT
x-rgw-object-type: Normal
etag: "1ddb6fb86bb1227be604a672ad12062c"
x-amz-request-id: tx000000000000002adb8f7-00628541bb-b9fbc20-sfo1
expires: Sun, 04 Sep 2022 12:44:19 GMT
cache-control: max-age=1209600
x-storage-bucket: z6259
x-storage-object: 625997d2f98d39f2f06923885f266152b1f39a90f5a7d7021d2c4f210d5a9947
access-control-allow-origin: *
fastly-restarts: 1
content-encoding: gzip
accept-ranges: bytes
date: Sat, 03 Sep 2022 02:31:23 GMT
via: 1.1 varnish
age: 1086424
x-served-by: cache-bma1669-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1662172284.881419,VS0,VE1
vary: Accept-Encoding
content-length: 1811
X-Firefox-Spdy: h2
ailabomay.baamboostudio.com/member.baamboostudio.com/X-slider/uploads/f23a3fx15-a66xcd5f6-ci2134jsxms/stacey-final-3-612f87cc4df8f.jpg
104.21.93.112200 OK 561 kB URL HTTP/2 ailabomay.baamboostudio.com/member.baamboostudio.com/X-slider/uploads/f23a3fx15-a66xcd5f6-ci2134jsxms/stacey-final-3-612f87cc4df8f.jpg
IP 104.21.93.112:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.0 (Macintosh), datetime=2020:06:15 12:16:49], progressive, precision 8, 1920x1080, components 3\012- data
Size 561 kB (561026 bytes)
Hash 6b24a274124ed7adc8e011a75c981aec
76ccc755ceff14f65f9fab73b6480d25a5060173
74c774d0e1faf7984678e23ef5729d46aef8448e2ee615de41b4155e4143cab8
GET /member.baamboostudio.com/X-slider/uploads/f23a3fx15-a66xcd5f6-ci2134jsxms/stacey-final-3-612f87cc4df8f.jpg HTTP/1.1
Host: ailabomay.baamboostudio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 02:31:23 GMT
content-type: image/jpeg
content-length: 561026
last-modified: Wed, 01 Sep 2021 14:01:48 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e%2FTxr7kQl1uDJLu9VDB4nLi%2F5ma3f0KbDhbEEjgMLrEUMmeL7iX%2F0oftZ9Hp4BpLPonTkMNFkzfQNyeFF3WDJ%2F1HbQzt1ItpZ4yo6VgfNV9%2B3DtE4FlkT7qZVquw1%2FnqgeIRlc7NfABlZkZ6Cm4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 744b11a139c0b4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.apgleadership.com/uploads/1/3/1/1/131116271/published/navigation.png?1587759800
199.34.228.59200 OK 3.8 kB URL HTTP/1.1 www.apgleadership.com/uploads/1/3/1/1/131116271/published/navigation.png?1587759800
IP 199.34.228.59:0
File type PNG image data, 158 x 138, 8-bit colormap, non-interlaced\012- data
Hash 93169956b104ad5b955db7427b29c8a3
70e5682cfb1837346fe51eb35293be242f0928d2
74747414b620b05506221c26dbe644b5253f8f3502316f1f263c91144352647e
Analyzer Verdict Alert fortinet Phishing
GET /uploads/1/3/1/1/131116271/published/navigation.png?1587759800 HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 02:31:23 GMT
Content-Type: image/png
Content-Length: 3776
Connection: keep-alive
Last-Modified: Fri, 24 Apr 2020 20:23:20 GMT
x-rgw-object-type: Normal
ETag: "93169956b104ad5b955db7427b29c8a3"
x-amz-request-id: tx000000000000033fffe82-006312a804-c033918-sfo1
X-Storage-Bucket: z7474
X-Storage-Object: 74747414b620b05506221c26dbe644b5253f8f3502316f1f263c91144352647e
X-Host: blu134.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.apgleadership.com/uploads/1/3/1/1/131116271/hbr_orig.png
199.34.228.59200 OK 16 kB URL HTTP/1.1 www.apgleadership.com/uploads/1/3/1/1/131116271/hbr_orig.png
IP 199.34.228.59:0
File type PNG image data, 300 x 133, 8-bit gray+alpha, non-interlaced\012- data
Hash b1b1d4b9c1b90f9ca7c4a7fc252f36be
6f5808349fa0dd02c2e3d9ef2ce667c331d154e8
bd3d48d4d3476bac6f40e543817ac95b2945ee5933a6141d9adda34ca662148e
GET /uploads/1/3/1/1/131116271/hbr_orig.png HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 02:31:23 GMT
Content-Type: image/png
Content-Length: 15558
Connection: keep-alive
Last-Modified: Thu, 30 Apr 2020 12:57:10 GMT
x-rgw-object-type: Normal
ETag: "b1b1d4b9c1b90f9ca7c4a7fc252f36be"
x-amz-request-id: tx0000000000000342ff931-0063123b86-bfe36ba-sfo1
X-Storage-Bucket: zbd3d
X-Storage-Object: bd3d48d4d3476bac6f40e543817ac95b2945ee5933a6141d9adda34ca662148e
X-Host: blu24.sf2p.intern.weebly.net
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 02:31:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 02:31:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 02:31:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.apgleadership.com/uploads/1/3/1/1/131116271/published/noun-training.png?1587759784
199.34.228.59200 OK 3.8 kB URL HTTP/1.1 www.apgleadership.com/uploads/1/3/1/1/131116271/published/noun-training.png?1587759784
IP 199.34.228.59:0
File type PNG image data, 157 x 137, 8-bit colormap, non-interlaced\012- data
Hash b9ac421b7b62e25f15cdde66a9768390
5ba26dcfe2715935fd23c9a2f30df2631a046a89
dc82b91daf06d436794fa6a4b275e9c7c4d1f63ec3bd71c691ee0e473cbc4640
Analyzer Verdict Alert fortinet Phishing
GET /uploads/1/3/1/1/131116271/published/noun-training.png?1587759784 HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 02:31:23 GMT
Content-Type: image/png
Content-Length: 3765
Connection: keep-alive
Last-Modified: Fri, 24 Apr 2020 20:23:04 GMT
x-rgw-object-type: Normal
ETag: "b9ac421b7b62e25f15cdde66a9768390"
x-amz-request-id: tx000000000000030d388f8-00630d9a72-c0351b0-sfo1
X-Storage-Bucket: zdc82
X-Storage-Object: dc82b91daf06d436794fa6a4b275e9c7c4d1f63ec3bd71c691ee0e473cbc4640
X-Host: blu25.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.apgleadership.com/uploads/1/3/1/1/131116271/editor/aegis-performance-group-logo-colorbg.png?1591106178
199.34.228.59200 OK 11 kB URL HTTP/1.1 www.apgleadership.com/uploads/1/3/1/1/131116271/editor/aegis-performance-group-logo-colorbg.png?1591106178
IP 199.34.228.59:0
File type PNG image data, 246 x 89, 8-bit/color RGBA, non-interlaced\012- data
Hash 9b7291e0a73ddb3564f407a9cb2aa235
31777d5127ec17f85c10383f622f3c12ca5181d6
6fd4137ed5e3b88e9240ee1cdfdce5203c4fd5e13147a1f95cfb866761cc4d9d
GET /uploads/1/3/1/1/131116271/editor/aegis-performance-group-logo-colorbg.png?1591106178 HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 02:31:23 GMT
Content-Type: image/png
Content-Length: 10943
Connection: keep-alive
Last-Modified: Tue, 02 Jun 2020 13:56:18 GMT
x-rgw-object-type: Normal
ETag: "9b7291e0a73ddb3564f407a9cb2aa235"
x-amz-request-id: tx0000000000000321075c0-00630f37b6-bfe36ba-sfo1
X-Storage-Bucket: z6fd4
X-Storage-Object: 6fd4137ed5e3b88e9240ee1cdfdce5203c4fd5e13147a1f95cfb866761cc4d9d
X-Host: blu27.sf2p.intern.weebly.net
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 02:31:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/oxygen/v15/2sDcZG1Wl4LcnbuCJW8zaGW5.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/oxygen/v15/2sDcZG1Wl4LcnbuCJW8zaGW5.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15792, version 1.0\012- data
Hash 94c3db6f7f5df851bc87a5bf309b9a89
986af9276cc364fe0b2a6801d4514fb3cd920cc3
c5c877b2f70eaa51b17f81150decd43027fec02788fec5719be6befb12af115f
GET /s/oxygen/v15/2sDcZG1Wl4LcnbuCJW8zaGW5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.apgleadership.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15792
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Aug 2022 06:26:50 GMT
expires: Wed, 30 Aug 2023 06:26:50 GMT
cache-control: public, max-age=31536000
age: 331473
last-modified: Mon, 09 May 2022 18:30:32 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
142.250.74.163200 OK 46 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Hash c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.apgleadership.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 21:13:12 GMT
expires: Tue, 29 Aug 2023 21:13:12 GMT
cache-control: public, max-age=31536000
age: 364691
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oxygen/v15/2sDcZG1Wl4LcnbuCNWgzaGW5.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/oxygen/v15/2sDcZG1Wl4LcnbuCNWgzaGW5.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 16172, version 1.0\012- data
Hash 891cacadb2d3449b6f342f571dc743ae
e35ea255304a2981b27f6c2822eb4fd8eaa984d5
5740bce57f68562d42e8ca6f6eb70dca3bc33be11ef0361e78274d360f41adc9
GET /s/oxygen/v15/2sDcZG1Wl4LcnbuCNWgzaGW5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.apgleadership.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16172
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 21:34:21 GMT
expires: Tue, 29 Aug 2023 21:34:21 GMT
cache-control: public, max-age=31536000
age: 363422
last-modified: Mon, 09 May 2022 18:30:51 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oxygen/v15/2sDfZG1Wl4LcnbuKjk0m.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/oxygen/v15/2sDfZG1Wl4LcnbuKjk0m.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 16348, version 1.0\012- data
Hash 8dc707b4818131fab44d482b1db5d458
8a0ff82b12fa25391ce17a6ae069d7fe5002f12d
9e64f128d5352d04ea5c87031e4cf1ad204b72a0afb003ece52eeb997d28a570
GET /s/oxygen/v15/2sDfZG1Wl4LcnbuKjk0m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.apgleadership.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16348
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 21:34:21 GMT
expires: Tue, 29 Aug 2023 21:34:21 GMT
cache-control: public, max-age=31536000
age: 363422
last-modified: Mon, 09 May 2022 18:31:32 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/wsnbn/snowday262.js
151.101.85.46200 OK 26 kB URL HTTP/2 cdn2.editmysite.com/js/wsnbn/snowday262.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (2512)
Hash 234327230add9a5a5d61a48829ea4565
7966cc0e4bd76f88ff193c8a99a067de804b7129
bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75
GET /js/wsnbn/snowday262.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 30 Aug 2022 19:50:08 GMT
etag: "630e69f0-124fe"
expires: Thu, 15 Sep 2022 08:38:41 GMT
cache-control: max-age=1209600
x-host: grn123.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 03 Sep 2022 02:31:24 GMT
age: 150763
x-served-by: cache-sjc10034-SJC, cache-bma1641-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1532
x-timer: S1662172284.002062,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 25752
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 02:31:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.apgleadership.com/files/theme/fonts/icomoon.ttf?tste5v
199.34.228.59200 OK 6.0 kB URL HTTP/1.1 www.apgleadership.com/files/theme/fonts/icomoon.ttf?tste5v
IP 199.34.228.59:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Hash 87e1a29327b2b556d8a56b59a94ae668
488446cb3d411443e43a510703c86116abf096a0
4e00f3d97dfaff4567a14b78d329b85ed9a418c28a5c27843b3bd7ce73aa93c4
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/fonts/icomoon.ttf?tste5v HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/files/theme/fonts/fonts.css?1630508829
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 02:31:24 GMT
Content-Type: font/ttf
Content-Length: 6044
Connection: keep-alive
Last-Modified: Tue, 28 May 2019 00:13:53 GMT
ETag: "87e1a29327b2b556d8a56b59a94ae668"
x-amz-request-id: tx00000000000004c5506c1-005f4814ca-131dd7c-las
X-Storage-Bucket: z4e00
X-Storage-Object: 4e00f3d97dfaff4567a14b78d329b85ed9a418c28a5c27843b3bd7ce73aa93c4
X-Host: blu24.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.apgleadership.com/uploads/1/3/1/1/131116271/aegis-performance-group-logo-final.png
199.34.228.59200 OK 11 kB URL HTTP/1.1 www.apgleadership.com/uploads/1/3/1/1/131116271/aegis-performance-group-logo-final.png
IP 199.34.228.59:0
File type PNG image data, 274 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 8a121ef94f09679f2a9aa5fd6588a3a6
302c9d06726a65c635ce8ab2ffd5dd2cef669de5
5fd6f597e5cdea62497860ce226bd1121a04e1f4f2ac37576c93c3cda9e12720
GET /uploads/1/3/1/1/131116271/aegis-performance-group-logo-final.png HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 02:31:24 GMT
Content-Type: image/png
Content-Length: 10909
Connection: keep-alive
Last-Modified: Tue, 24 Mar 2020 01:23:33 GMT
x-rgw-object-type: Normal
ETag: "8a121ef94f09679f2a9aa5fd6588a3a6"
x-amz-request-id: tx0000000000000321e8ea4-00630f7dc2-c03521c-sfo1
X-Storage-Bucket: z5fd6
X-Storage-Object: 5fd6f597e5cdea62497860ce226bd1121a04e1f4f2ac37576c93c3cda9e12720
X-Host: blu134.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.apgleadership.com/uploads/1/3/1/1/131116271/editor/noun-keynote.png?1587759765
199.34.228.59200 OK 2.0 kB URL HTTP/1.1 www.apgleadership.com/uploads/1/3/1/1/131116271/editor/noun-keynote.png?1587759765
IP 199.34.228.59:0
File type PNG image data, 161 x 139, 8-bit colormap, non-interlaced\012- data
Hash 6006978e2365d52207cf9c9f92e7e96f
b93b6b71b85f1f33c560c6974aa714c9d8f0bc92
4074667b768093ecf1575257ecde1de872fe64baae9077917cc6e54f53549ffa
GET /uploads/1/3/1/1/131116271/editor/noun-keynote.png?1587759765 HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 02:31:24 GMT
Content-Type: image/png
Content-Length: 2026
Connection: keep-alive
Last-Modified: Fri, 24 Apr 2020 20:22:45 GMT
x-rgw-object-type: Normal
ETag: "6006978e2365d52207cf9c9f92e7e96f"
x-amz-request-id: tx00000000000002d380fb5-00630898bd-c0351c8-sfo1
X-Storage-Bucket: z4074
X-Storage-Object: 4074667b768093ecf1575257ecde1de872fe64baae9077917cc6e54f53549ffa
X-Host: grn29.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.apgleadership.com/files/theme/img/sidebar_shadow.png?1630508829
199.34.228.59200 OK 3.0 kB URL HTTP/1.1 www.apgleadership.com/files/theme/img/sidebar_shadow.png?1630508829
IP 199.34.228.59:0
File type PNG image data, 13 x 570, 8-bit/color RGBA, non-interlaced\012- data
Hash 20e432d39901d35f7b9da1e8e748ed89
bcb925cb7035080987cd0818751ff1c3f2880667
a72f02490f04594c1a629daaa41fdaf60a253613b362c1c722bb488ef2a2763d
GET /files/theme/img/sidebar_shadow.png?1630508829 HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/files/main_style.css?1630508829
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 02:31:24 GMT
Content-Type: image/png; charset=binary
Content-Length: 2955
Connection: keep-alive
Last-Modified: Mon, 20 Apr 2020 15:40:37 GMT
x-rgw-object-type: Normal
ETag: "20e432d39901d35f7b9da1e8e748ed89"
x-amz-request-id: tx0000000000000313ff2c9-00630eaaa2-c0351c8-sfo1
X-Storage-Bucket: za72f
X-Storage-Object: a72f02490f04594c1a629daaa41fdaf60a253613b362c1c722bb488ef2a2763d
X-Host: blu25.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.apgleadership.com/uploads/1/3/1/1/131116271/nyt-bsa_orig.png
199.34.228.59200 OK 24 kB URL HTTP/1.1 www.apgleadership.com/uploads/1/3/1/1/131116271/nyt-bsa_orig.png
IP 199.34.228.59:0
File type PNG image data, 450 x 152, 8-bit gray+alpha, non-interlaced\012- data
Hash 08bdcfc8c7eb16a71cc1ebe7faed1b99
93d178480bd753b3690f6f79c5ed134db877e7ca
02e707b617347f6d597907d3d7defc24ced1f4446d8a1065b1ac91c7b3744dc2
GET /uploads/1/3/1/1/131116271/nyt-bsa_orig.png HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 02:31:23 GMT
Content-Type: image/png
Content-Length: 23935
Connection: keep-alive
Last-Modified: Thu, 30 Apr 2020 12:58:06 GMT
x-rgw-object-type: Normal
ETag: "08bdcfc8c7eb16a71cc1ebe7faed1b99"
x-amz-request-id: tx00000000000003406cb0a-006312bc7b-bfe27ea-sfo1
X-Storage-Bucket: z02e7
X-Storage-Object: 02e707b617347f6d597907d3d7defc24ced1f4446d8a1065b1ac91c7b3744dc2
X-Host: blu71.sf2p.intern.weebly.net
Accept-Ranges: bytes, bytes
www.apgleadership.com/uploads/1/3/1/1/131116271/the-wall-street-journal-wall-st-journal-logo-png-transparent-wall-street-png-hd-840-521-copy_orig.png
199.34.228.59200 OK 67 kB URL HTTP/1.1 www.apgleadership.com/uploads/1/3/1/1/131116271/the-wall-street-journal-wall-st-journal-logo-png-transparent-wall-street-png-hd-840-521-copy_orig.png
IP 199.34.228.59:0
File type PNG image data, 840 x 521, 8-bit gray+alpha, non-interlaced\012- data
Hash df1c802957603f6ed87435301af3358e
204504cc27ec1bf05b6ac543fefe1bb61a3e6d5f
24580264bdda2040149782dfa4a28252668df149b1444a118abbb6170cb3ff18
GET /uploads/1/3/1/1/131116271/the-wall-street-journal-wall-st-journal-logo-png-transparent-wall-street-png-hd-840-521-copy_orig.png HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 02:31:23 GMT
Content-Type: image/png
Content-Length: 67141
Connection: keep-alive
Last-Modified: Thu, 30 Apr 2020 12:59:31 GMT
x-rgw-object-type: Normal
ETag: "df1c802957603f6ed87435301af3358e"
x-amz-request-id: tx00000000000003072f671-00630d95fc-c0351c8-sfo1
X-Storage-Bucket: z2458
X-Storage-Object: 24580264bdda2040149782dfa4a28252668df149b1444a118abbb6170cb3ff18
X-Host: blu49.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.apgleadership.com/files/theme/key.lic
199.34.228.59200 OK 40 B URL HTTP/1.1 www.apgleadership.com/files/theme/key.lic
IP 199.34.228.59:0
File type ASCII text, with no line terminators
Hash 94afb742713c79513c363b22d185dd2b
fb3e3e938f637ad7ef76f8f7d06861cbcbc79057
b8ef46ed09c8b7123ea5cabaab84709f6e6ce8ce667530c87bf1fe3f3fc82430
Analyzer Verdict Alert fortinet Phishing
GET /files/theme/key.lic HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 02:31:24 GMT
Content-Type: text/plain; charset=us-ascii
Content-Length: 40
Connection: keep-alive
Last-Modified: Wed, 24 Jun 2020 02:26:13 GMT
x-rgw-object-type: Normal
ETag: "94afb742713c79513c363b22d185dd2b"
x-amz-request-id: tx00000000000002c22de48-0063066b24-c0351b0-sfo1
X-Storage-Bucket: zb8ef
X-Storage-Object: b8ef46ed09c8b7123ea5cabaab84709f6e6ce8ce667530c87bf1fe3f3fc82430
X-Host: grn32.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.apgleadership.com/uploads/1/3/1/1/131116271/fast-company_orig.png
199.34.228.59200 OK 12 kB URL HTTP/1.1 www.apgleadership.com/uploads/1/3/1/1/131116271/fast-company_orig.png
IP 199.34.228.59:0
File type PNG image data, 510 x 200, 8-bit gray+alpha, non-interlaced\012- data
Hash fdc9ed034b2e661928918067df73f4b3
ab656f1ce72a96c869bfe849ddebc6fd80cb1f95
6c3a4a27e2c6dae10ab75a7f4fcc8cadc534a4e1ba3b53a24ed84718ecf1e7b3
GET /uploads/1/3/1/1/131116271/fast-company_orig.png HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 02:31:24 GMT
Content-Type: image/png
Content-Length: 11546
Connection: keep-alive
Last-Modified: Thu, 30 Apr 2020 12:57:27 GMT
x-rgw-object-type: Normal
ETag: "fdc9ed034b2e661928918067df73f4b3"
x-amz-request-id: tx0000000000000307ab477-00630d9a72-bfe27ea-sfo1
X-Storage-Bucket: z6c3a
X-Storage-Object: 6c3a4a27e2c6dae10ab75a7f4fcc8cadc534a4e1ba3b53a24ed84718ecf1e7b3
X-Host: blu44.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.apgleadership.com/uploads/1/3/1/1/131116271/si-mono_orig.png
199.34.228.59200 OK 26 kB URL HTTP/1.1 www.apgleadership.com/uploads/1/3/1/1/131116271/si-mono_orig.png
IP 199.34.228.59:0
File type PNG image data, 1100 x 484, 8-bit gray+alpha, non-interlaced\012- data
Hash c6ea128334f0e4529e05364d136366fd
8e562853e3b245454e5e06992af65b245851ca70
a34374172656406822f035548b453e7f0d31eb28566edee9c8c00661141b2e7c
GET /uploads/1/3/1/1/131116271/si-mono_orig.png HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 02:31:24 GMT
Content-Type: image/png
Content-Length: 25664
Connection: keep-alive
Last-Modified: Thu, 30 Apr 2020 12:57:20 GMT
x-rgw-object-type: Normal
ETag: "c6ea128334f0e4529e05364d136366fd"
x-amz-request-id: tx000000000000033b0f4fd-0063123b76-c033918-sfo1
X-Storage-Bucket: za343
X-Storage-Object: a34374172656406822f035548b453e7f0d31eb28566edee9c8c00661141b2e7c
X-Host: blu71.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.apgleadership.com/uploads/1/3/1/1/131116271/mike-and-stacey_orig.png
199.34.228.59200 OK 78 kB URL HTTP/1.1 www.apgleadership.com/uploads/1/3/1/1/131116271/mike-and-stacey_orig.png
IP 199.34.228.59:0
File type PNG image data, 285 x 234, 8-bit/color RGBA, non-interlaced\012- data
Hash 24b3732984f78b9f0e0f56aa21223a49
e4c9943ed423437c7229ceede183a6becb151f7e
04e13f5896fe321be5b9da8382214f4031705addfe9590d69c42771e92548f33
GET /uploads/1/3/1/1/131116271/mike-and-stacey_orig.png HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 02:31:24 GMT
Content-Type: image/png
Content-Length: 78481
Connection: keep-alive
Last-Modified: Wed, 24 Jun 2020 20:19:12 GMT
x-rgw-object-type: Normal
ETag: "24b3732984f78b9f0e0f56aa21223a49"
x-amz-request-id: tx000000000000033b02628-0063123a79-c033918-sfo1
X-Storage-Bucket: z04e1
X-Storage-Object: 04e13f5896fe321be5b9da8382214f4031705addfe9590d69c42771e92548f33
X-Host: grn70.sf2p.intern.weebly.net
Accept-Ranges: bytes
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash bd24126f9ea9e2c8841351c06d3ff992
af4ee7a5a41b303afca8a4680256f2261718949a
1abbb218de343b452b38ffd4a5308864ee162fe775f66b293e0557b09441c989
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 03 Sep 2022 02:31:24 GMT
Last-Modified: Sat, 03 Sep 2022 02:00:10 GMT
Server: ECS (nyb/1D06)
X-Cache: Miss from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -Qz6_jdZJ3okvvDQ0EKJ626CnxHIu96g8ohLs-XwZQG8yxeBXqQzcA==
Age: 1874
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash bd24126f9ea9e2c8841351c06d3ff992
af4ee7a5a41b303afca8a4680256f2261718949a
1abbb218de343b452b38ffd4a5308864ee162fe775f66b293e0557b09441c989
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 03 Sep 2022 02:31:24 GMT
Last-Modified: Sat, 03 Sep 2022 01:10:37 GMT
Server: ECS (nyb/1D17)
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: MhVAcefw_AIUuK6SWWCnJ9jtMaIyC-zrTzCDiAC51VqFs4tXnQMU9A==
Age: 4847
ssl.google-analytics.com/ga.js
216.58.211.8200 OK 17 kB URL HTTP/2 ssl.google-analytics.com/ga.js
IP 216.58.211.8:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Sat, 03 Sep 2022 02:29:20 GMT
expires: Sat, 03 Sep 2022 04:29:20 GMT
cache-control: public, max-age=7200
age: 124
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Sat, 03 Sep 2022 00:41:12 GMT
expires: Sat, 03 Sep 2022 02:41:12 GMT
cache-control: public, max-age=7200
age: 6612
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.apgleadership.com/favicon.ico
199.34.228.59200 OK 4.3 kB URL HTTP/1.1 www.apgleadership.com/favicon.ico
IP 199.34.228.59:0
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Hash d5d88ca6d37f5f3ed94b22b14620c0e3
9c170a8a33bf5e50ce44cb6cca345b29d82c3868
1dc4d9b52819944cf2856ac877ac5eb21834e57364b21c6be185f9c894a56f5b
GET /favicon.ico HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Cookie: is_mobile=0; language=en; _snow_ses.c720=*; _snow_id.c720=321fc0f2-bca5-42b1-8045-4272ca82f2de.1662172282.1.1662172282.1662172282.92437fe5-3790-4d86-8cb7-eb85d3faca7b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 02:31:24 GMT
Content-Type: image/x-icon
Content-Length: 4286
Connection: keep-alive
Last-Modified: Tue, 30 Jun 2020 17:12:49 GMT
x-rgw-object-type: Normal
ETag: "d5d88ca6d37f5f3ed94b22b14620c0e3"
x-amz-request-id: tx0000000000000321e96be-00630f7dcb-c03521c-sfo1
X-Storage-Bucket: z1dc4
X-Storage-Object: 1dc4d9b52819944cf2856ac877ac5eb21834e57364b21c6be185f9c894a56f5b
X-Host: blu13.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.apgleadership.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
199.34.228.59200 OK 348 B URL HTTP/1.1 www.apgleadership.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
IP 199.34.228.59:0
File type JSON data\012- , ASCII text, with very long lines (348), with no line terminators
Hash a944dd688c99d2901d6719be713271c0
4f5454d5d434829baf46671638610791758725d9
adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49
POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1
Host: www.apgleadership.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: https://www.apgleadership.com
Connection: keep-alive
Referer: https://www.apgleadership.com/
Cookie: is_mobile=0; language=en; _snow_ses.c720=*; _snow_id.c720=321fc0f2-bca5-42b1-8045-4272ca82f2de.1662172282.1.1662172282.1662172282.92437fe5-3790-4d86-8cb7-eb85d3faca7b
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 02:31:24 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu93.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 348
Keep-Alive: timeout=10, max=74
Connection: Keep-Alive
Content-Type: application/json
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
44.238.88.40200 OK 0 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 44.238.88.40:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.apgleadership.com/
Origin: https://www.apgleadership.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 02:31:24 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://www.apgleadership.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 5
X-Firefox-Spdy: h2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
44.238.88.40200 OK 2 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 44.238.88.40:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1793
Origin: https://www.apgleadership.com
Connection: keep-alive
Referer: https://www.apgleadership.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Sep 2022 02:31:25 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=0223b711-84cf-4e79-8fd0-42f12b5af0a7; Expires=Sun, 03 Sep 2023 02:31:25 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://www.apgleadership.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7032eb34-1355-4f64-91db-2c4fd70139b1.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7032eb34-1355-4f64-91db-2c4fd70139b1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 85bb0a09818a7c5f9e92e5b0faa057a4
ceb9a1d4efc578ad2bbcd8f99e8bf69e7dbe7aa3
d7e1901bdae487d1c4f4d0c8fdfd090f8f0baff719f319666395f91dc147d250
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7032eb34-1355-4f64-91db-2c4fd70139b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 12612
x-amzn-requestid: c89164ee-6194-4a96-9a7f-b8c03478ef15
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xihm-GiPIAMFglA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630a7c92-7def0f7964f7f0d336810aae;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 20:20:34 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: fEeJ_Zw9Egt6gQYinki1fMzvqdQgixv0iBio2G4KsMppWkYhEB_SCg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 04:06:17 GMT
age: 80713
etag: "ceb9a1d4efc578ad2bbcd8f99e8bf69e7dbe7aa3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Oxygen:400,300,700&subset=latin,latin-ext
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Oxygen:400,300,700&subset=latin,latin-ext
IP 142.250.74.10:0
GET /css?family=Oxygen:400,300,700&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 03 Sep 2022 02:31:22 GMT
date: Sat, 03 Sep 2022 02:31:22 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Raleway:400,300,200,700&subset=latin,latin-ext
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Raleway:400,300,200,700&subset=latin,latin-ext
IP 142.250.74.10:0
GET /css?family=Raleway:400,300,200,700&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 03 Sep 2022 02:31:22 GMT
date: Sat, 03 Sep 2022 02:31:22 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-170835975-1
142.250.74.72200 OK 0 B URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-170835975-1
IP 142.250.74.72:0
GET /gtag/js?id=UA-170835975-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 03 Sep 2022 02:31:22 GMT
expires: Sat, 03 Sep 2022 02:31:22 GMT
cache-control: private, max-age=900
last-modified: Sat, 03 Sep 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41914
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/main.js?buildTime=1630432693
151.101.85.46200 OK 0 B URL HTTP/2 cdn2.editmysite.com/js/site/main.js?buildTime=1630432693
IP 151.101.85.46:0
GET /js/site/main.js?buildTime=1630432693 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.apgleadership.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Mon, 22 Aug 2022 20:43:39 GMT
etag: "6303ea7b-74804"
expires: Tue, 06 Sep 2022 11:45:31 GMT
cache-control: max-age=1209600
x-host: blu99.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 03 Sep 2022 02:31:22 GMT
age: 917151
x-served-by: cache-sjc10060-SJC, cache-bma1641-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1662172282.455834,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 146400
X-Firefox-Spdy: h2