r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8301
Expires: Mon, 30 Jan 2023 01:59:59 GMT
Date: Sun, 29 Jan 2023 23:41:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3eb88dea4fe00db1182370e72683c3ab
ca520abf1e91bfd2aef40c6a1270a911071e8922
d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8010
Expires: Mon, 30 Jan 2023 01:55:08 GMT
Date: Sun, 29 Jan 2023 23:41:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3019
Expires: Mon, 30 Jan 2023 00:31:57 GMT
Date: Sun, 29 Jan 2023 23:41:38 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 29 Jan 2023 23:35:38 GMT
content-type: application/json
age: 360
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +P9hQt3A25YtSU4O9iKJxnJTFgYSkG3aCXZYsgmamnAFM86n1ZK8t7GAce2d+X63OYhsqQDsSAMf5UMJg3Uw+g==
x-amz-request-id: 4GNS6ZAX44D4JDXC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 29 Jan 2023 23:21:34 GMT
age: 1204
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
interfinb.com/
199.188.200.50301 Moved Permanently 707 B IP 199.188.200.50:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
keep-alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Sun, 29 Jan 2023 23:41:38 GMT
server: LiteSpeed
location: https://interfinb.com/
x-turbo-charged-by: LiteSpeed
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 23:41:38 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 29 Jan 2023 22:41:41 GMT
age: 3597
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 6429f7b73780134a6eae5374efaa9d54
35caf7926096c7258cfb4f3d8c5c3bfcc1279b3f
11e5fad95c951e329abeb98dfa4680fcc64e93f7b666588c832348138f1a9790
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 23:41:38 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 26 Jan 2023 14:32:47 GMT
Expires: Thu, 02 Feb 2023 14:32:46 GMT
Etag: "35caf7926096c7258cfb4f3d8c5c3bfcc1279b3f"
Cache-Control: max-age=312067,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7915d1dd7bddb505-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6527
Expires: Mon, 30 Jan 2023 01:30:26 GMT
Date: Sun, 29 Jan 2023 23:41:39 GMT
Connection: keep-alive
push.services.mozilla.com/
54.200.77.111101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.200.77.111:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: oDtacjWkzjm7HR4TWwQRTQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: YYyWb256xk6PtyX1q8OTp63L0Jk=
ocsp.globalsign.com/gsrsaovsslca2018
151.101.130.133200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 151.101.130.133:0
Hash 1891a42d8b44578eb34b95c6532efa5e
d193bdc0e0c5a995b46c74f54b636aa1bbc58457
c30eae6c4cfe726e950f1693a0fa351eebc195d91c6714bceebdd9ff04b635e3
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1432
Server: nginx
Content-Type: application/ocsp-response
Expires: Thu, 02 Feb 2023 22:54:16 GMT
ETag: "d193bdc0e0c5a995b46c74f54b636aa1bbc58457"
Last-Modified: Sun, 29 Jan 2023 22:54:17 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sun, 29 Jan 2023 23:41:39 GMT
Age: 2842
X-Served-By: cache-qpg1259-QPG, cache-bma1670-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 2, 5
X-Timer: S1675035699.393050,VS0,VE0
translate.yandex.net/website-widget/v1/widget.js?widgetId=ytWidget&pageLang=en&widgetTheme=dark&autoMode=true
213.180.204.194200 OK 13 kB URL HTTP/2 translate.yandex.net/website-widget/v1/widget.js?widgetId=ytWidget&pageLang=en&widgetTheme=dark&autoMode=true
IP 213.180.204.194:0
Hash d243477bd789cd470f519c35d2e85ec9
184d58c916e1924648f7c607eb2830b156e807f2
afc5be0a6aa2dad8695a6d0d0b53091e8405f189b9487cb0b85fa6a43c0c435c
GET /website-widget/v1/widget.js?widgetId=ytWidget&pageLang=en&widgetTheme=dark&autoMode=true HTTP/1.1
Host: translate.yandex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 12562
content-language: en
content-type: application/javascript; charset=utf-8
date: Sun, 29 Jan 2023 23:41:39 GMT
referrer-policy: no-referrer-when-downgrade
set-cookie: _yasc=viK8qLJHdsDR4PsMWzqqMhMj1D7BP7/jIFL9l26RwRvttyWtf2+k2wm8jiEB; domain=.yandex.net; path=/; expires=Wed, 26-Jan-2033 23:41:39 GMT; secure
vary: Accept-Language
X-Firefox-Spdy: h2
interfinb.com/css/bootstrap.min.css
199.188.200.50200 OK 16 kB URL HTTP/2 interfinb.com/css/bootstrap.min.css
IP 199.188.200.50:0
File type ASCII text, with very long lines (65009)
Hash 1a8d38522d7bd81676dc68825ed90a11
640e0f326b8d8f78d964985f8b5bcd247a1cfec3
3854f7b758dcf28b23ecbd443a05a4227cd2ece4bd03f16fd13756341161ee08
GET /css/bootstrap.min.css HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: text/css
last-modified: Tue, 01 Mar 2016 19:05:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 16421
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/
199.188.200.50200 OK 6.4 kB IP 199.188.200.50:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (581), with CRLF, LF line terminators
Hash 3e544e57a9389c10ac06db74525aa0e3
efbb0fcdc38bec26ab6b90171965156dfe8d4a65
cd9676aa92cde6d53f1bddb53c237b98eade217b510536c2d9977d8c7c7c793e
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.2.34
set-cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
content-encoding: br
vary: Accept-Encoding
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/css/owl.transitions.css
199.188.200.50200 OK 652 B URL HTTP/2 interfinb.com/css/owl.transitions.css
IP 199.188.200.50:0
Hash 2ed21aa96cf87b0c0284ccc8c32da2a0
24632a081fbdb19ae4962d8aaa720c08f0249acf
5fe9880a5013fa216f1d57c448d657b4beae1ddc74568d8b3d3718633e9c31b3
GET /css/owl.transitions.css HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: text/css
last-modified: Tue, 15 Apr 2014 04:33:26 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 652
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/css/meanmenu.min.css
199.188.200.50200 OK 770 B URL HTTP/2 interfinb.com/css/meanmenu.min.css
IP 199.188.200.50:0
File type ASCII text, with CRLF line terminators
Hash b0dd12983ea1769cdc0587fe7873fa66
f69c2451661ec5c8fccf710e92d730ff712e17dc
9c9a0cf7be6771cf74d48f453b3e7f3b6750363887e5ef670c0fc81a838018b6
GET /css/meanmenu.min.css HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: text/css
last-modified: Wed, 25 Jul 2018 19:35:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 770
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/css/font-awesome.min.css
199.188.200.50200 OK 5.9 kB URL HTTP/2 interfinb.com/css/font-awesome.min.css
IP 199.188.200.50:0
File type ASCII text, with very long lines (27327)
Hash 1d8267d35fd4b26e0b38f094bd9419ac
5dbe6b38d377009ac67e2e80c8cb07e8d6a4e202
0da155482828bf61d6ed7dc8b29d126245dd4a3424c8909d4db4ce3ef7555c20
GET /css/font-awesome.min.css HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: text/css
last-modified: Thu, 25 Feb 2016 00:45:24 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5886
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/css/icon.css
199.188.200.50200 OK 1.5 kB URL HTTP/2 interfinb.com/css/icon.css
IP 199.188.200.50:0
Hash f3a19af1ec3fb0c79e2684ff6d04bf44
fc7d1f0c6ffaba98456159e4ae1d82503aab7d05
5b05b42b721f88dc9ecebd38b9804c46596f4846f1801e3e319228b28f7c7d8a
GET /css/icon.css HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: text/css
last-modified: Sun, 24 Feb 2019 19:25:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1526
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/css/flaticon.css
199.188.200.50200 OK 1.2 kB URL HTTP/2 interfinb.com/css/flaticon.css
IP 199.188.200.50:0
Hash 0ba834bb9d93129d494fda6669cc2430
57d04ec2b6dd75361a50064bd0cb0da9d8bd79f7
237a71e1abc84490e5641569b254c03f202beed68f51a08e62cff3bfe2c1f854
GET /css/flaticon.css HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: text/css
last-modified: Tue, 14 Aug 2018 16:38:30 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1160
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/css/venobox.css
199.188.200.50200 OK 1.2 kB URL HTTP/2 interfinb.com/css/venobox.css
IP 199.188.200.50:0
Hash 251ff0939db77c9daac1b93f13419ee5
39a32597690f9a221aa65cee00b2761b6a764c5d
7c63dbef7c944f9e99505c5e8efd3607a3edc591577a8161b3efc30fb41476fc
GET /css/venobox.css HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: text/css
last-modified: Tue, 09 Jan 2018 00:35:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1241
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/css/magnific.min.css
199.188.200.50200 OK 1.5 kB URL HTTP/2 interfinb.com/css/magnific.min.css
IP 199.188.200.50:0
File type ASCII text, with CRLF line terminators
Hash 982320dc260b08b77f00239277753a1e
fdda2255e383803d702ef3c532ad37a34d708a61
bd53f3d090b7ecba4f657f67534c15bdbf6590b5656496005e3de1eed729a605
GET /css/magnific.min.css HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: text/css
last-modified: Wed, 06 Dec 2017 20:05:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1459
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/style.css
199.188.200.50200 OK 12 kB IP 199.188.200.50:0
File type ASCII text, with CRLF line terminators
Hash 8d26796fa69888ea566a505d0efba00b
f2f20b61ad7f1aebb3749220797a18566d70012b
9fa7e6449433e1d83b8de639a65ee1a16e64d143e52004ceff05d6d8f44523bb
GET /style.css HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: text/css
last-modified: Mon, 04 Mar 2019 17:21:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12287
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
code.tidio.co/qzaovq6tsvozc6e3bbhdcwpgocvipygl.js
172.67.72.223302 Found 8.7 kB URL HTTP/2 code.tidio.co/qzaovq6tsvozc6e3bbhdcwpgocvipygl.js
IP 172.67.72.223:0
Hash d4cc01197a34a40140e7f29d5e64e200
52b7e5d29d7adcca90b6a8a0d78f2720f87432a9
34786a94bfde04dac49257ca613cc3ba60565b4bc3d760a91ed6c519c556a8bb
GET /qzaovq6tsvozc6e3bbhdcwpgocvipygl.js HTTP/1.1
Host: code.tidio.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 29 Jan 2023 23:41:39 GMT
content-type: text/html
location: https://widget-v4.tidiochat.com/1_137_1/static/js/render.d653de6259cab871576f.js
cache-control: public, s-maxage=300, max-age=0
widget-cache-status: HIT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8vaof6yjQZAQsXQhYCy7XiHxooDONpt9xnHaME1brzcdmnpCAXZK1yJkpq6t8VMACTVEq8D7nsWo7qbQDpowK6ClSGfF1bWcRA0fj8WpxqSuhO9CqpbNX7nvg7OOQsA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7915d1e0cd3c0b65-OSL
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat:400,500,600,700,800|Open+Sans:400,400i,600,700
142.250.74.106200 OK 1.5 kB URL HTTP/2 fonts.googleapis.com/css?family=Montserrat:400,500,600,700,800|Open+Sans:400,400i,600,700
IP 142.250.74.106:0
Hash f5dcf35e3d4395699473677044b2dc06
5a7c8214ff4cadab7accb8d0d0d60b00f37bda6f
c0233dfa222b1a77b9c10382d97496c497b71bd6c6a41213dbe6985a6f200f5b
GET /css?family=Montserrat:400,500,600,700,800|Open+Sans:400,400i,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 29 Jan 2023 23:41:39 GMT
date: Sun, 29 Jan 2023 23:41:39 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
interfinb.com/js/vendor/modernizr-2.8.3.min.js
199.188.200.50200 OK 6.0 kB URL HTTP/2 interfinb.com/js/vendor/modernizr-2.8.3.min.js
IP 199.188.200.50:0
File type HTML document, ASCII text, with very long lines (14856)
Hash d28a3a6cc89f8d1af1c4f354ee0013cb
457bc78a4d6fb63dfd01b69ff45c8b7afe41f356
1e6321e05015600b85c1b3c56a62e073fd2c1a56a24b8a2bdc28d7ce80df7f24
Analyzer Verdict Alert fortinet Phishing
GET /js/vendor/modernizr-2.8.3.min.js HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: application/javascript
last-modified: Tue, 12 Jan 2016 17:12:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6009
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/img/card.png
199.188.200.50200 OK 2.3 kB URL HTTP/2 interfinb.com/img/card.png
IP 199.188.200.50:0
File type PNG image data, 240 x 208, 8-bit/color RGBA, non-interlaced\012- data
Hash fca91832bf80b4a41fc6449e07b6d44a
5f743f1d4a8274241435816f7a761c740a748f72
b9b13862e3e2d7bebe8e09ba5d4d6d0ec1654102cb1012a0f6f1e68754192c11
GET /img/card.png HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: image/png
last-modified: Wed, 25 Mar 2020 15:04:02 GMT
accept-ranges: bytes
content-length: 2325
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/img/bank.png
199.188.200.50200 OK 2.6 kB URL HTTP/2 interfinb.com/img/bank.png
IP 199.188.200.50:0
File type PNG image data, 240 x 208, 8-bit/color RGBA, non-interlaced\012- data
Hash da7eecfddc7734de9cf4251d843d3104
d7f0b7a33d1d0f65a7657f5886ea317aa83a8d1c
16a91a297177b77a6e607b79ff2668a13daaac8d353a4bd56ed031c298cbb559
GET /img/bank.png HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: image/png
last-modified: Wed, 25 Mar 2020 15:06:40 GMT
accept-ranges: bytes
content-length: 2607
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/img/service/s1.jpg
199.188.200.50200 OK 30 kB URL HTTP/2 interfinb.com/img/service/s1.jpg
IP 199.188.200.50:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 500x640, components 3\012- data
Hash 9a8a845e4ba5547743ff575d18aef753
952e5996509cdd784b95674d323e5c4d1ddea6ee
2c741e4ff8339e50bfbe38a97172c095d5ebd0ee4d282aa07f3376773874fc95
GET /img/service/s1.jpg HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: image/jpeg
last-modified: Thu, 20 Sep 2018 20:46:40 GMT
accept-ranges: bytes
content-length: 29922
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/js/venobox.min.js
199.188.200.50200 OK 1.8 kB URL HTTP/2 interfinb.com/js/venobox.min.js
IP 199.188.200.50:0
File type ASCII text, with very long lines (5436)
Hash 648dab78260f741a40a3bd45a3d378a0
5380c273a1247bf96d7f2c2ff7c54197bc37864e
18f14f657dba5a29745f68610212050e5e4d7f23b2a9794f1066e108799ccb2d
Analyzer Verdict Alert fortinet Phishing
GET /js/venobox.min.js HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: application/javascript
last-modified: Thu, 25 Feb 2016 23:38:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1802
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/js/magnific.min.js
199.188.200.50200 OK 7.1 kB URL HTTP/2 interfinb.com/js/magnific.min.js
IP 199.188.200.50:0
File type ASCII text, with very long lines (20092), with CRLF line terminators
Hash 2f59fe341438ca8ba2d54e82a0ea4b8b
1d9e6d29c5ac1015d47b3b880158394d4fa7ba84
04cc707f8b94cc8913e93c12284861f49651750f4e40bec6d5b545ee198edb6a
Analyzer Verdict Alert fortinet Phishing
GET /js/magnific.min.js HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: application/javascript
last-modified: Wed, 04 Oct 2017 05:37:26 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7050
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/js/main.js
199.188.200.50200 OK 1.8 kB IP 199.188.200.50:0
File type ASCII text, with CRLF line terminators
Hash 052ea5c8f19071f96d6967d667d35d34
fa84cefc4101a33eb41c48510427b48b1569c67f
abde618068dc4ed790af52d6c7fa6b577c8d4d70618bd620ac4bb7f3a08c380b
Analyzer Verdict Alert fortinet Phishing
GET /js/main.js HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: application/javascript
last-modified: Mon, 15 Oct 2018 00:52:12 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1843
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/css/responsive.css
199.188.200.50200 OK 2.7 kB URL HTTP/2 interfinb.com/css/responsive.css
IP 199.188.200.50:0
File type ASCII text, with CRLF line terminators
Hash f95f54fac838435e9cc82976cb0437ce
539946cb6a25a6f6465a050df3b850d8fdd90d81
988a9b569c8730e4179bf8db6950a19be38f976709d69572e53a3716f20bca55
GET /css/responsive.css HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: text/css
last-modified: Sat, 20 Oct 2018 05:12:20 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2726
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/img/logo/logo2.png
199.188.200.50200 OK 16 kB URL HTTP/2 interfinb.com/img/logo/logo2.png
IP 199.188.200.50:0
File type PNG image data, 265 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash ea11da2d9e77589f14a155f1aed27464
1cb6bbfcafe8e146452ec1838569957dfe11d560
0bc8461cfea1446a5be156941767808eab7d39d88fca0380cfe419384c16950d
GET /img/logo/logo2.png HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: image/png
last-modified: Wed, 31 Mar 2021 16:03:40 GMT
accept-ranges: bytes
content-length: 16020
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 23:41:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.67200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://interfinb.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 18:52:41 GMT
expires: Tue, 23 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 535739
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.67200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://interfinb.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 07:08:09 GMT
expires: Sat, 27 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 232411
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2
142.250.74.67200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 17820, version 1.0\012- data
Hash 3d5107abaf7bf4df5478bd04625c0929
b04d394caabf6ea3e500b74781dc2bfd54f3c18d
9ad0a22b0c58240a7a92b4c01aa31f39a5918dea6a8fdfa77e63042abc4fca31
GET /s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://interfinb.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17820
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 10:06:04 GMT
expires: Mon, 29 Jan 2024 10:06:04 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:13:12 GMT
content-type: font/woff2
age: 48936
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 23:41:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
interfinb.com/img/logo/logo.png
199.188.200.50200 OK 16 kB URL HTTP/2 interfinb.com/img/logo/logo.png
IP 199.188.200.50:0
File type PNG image data, 265 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash ea11da2d9e77589f14a155f1aed27464
1cb6bbfcafe8e146452ec1838569957dfe11d560
0bc8461cfea1446a5be156941767808eab7d39d88fca0380cfe419384c16950d
GET /img/logo/logo.png HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: image/png
last-modified: Wed, 31 Mar 2021 16:03:26 GMT
accept-ranges: bytes
content-length: 16020
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2656
Expires: Mon, 30 Jan 2023 00:25:56 GMT
Date: Sun, 29 Jan 2023 23:41:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2656
Expires: Mon, 30 Jan 2023 00:25:56 GMT
Date: Sun, 29 Jan 2023 23:41:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2656
Expires: Mon, 30 Jan 2023 00:25:56 GMT
Date: Sun, 29 Jan 2023 23:41:40 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b7a437-43da-4218-a8ea-3aa936541e3f.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b7a437-43da-4218-a8ea-3aa936541e3f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f0729af7c574710c33356c8c3c7757d6
aec801b4158398d2d3222e7247532a1b0ba446e3
057d2ed0960c8d83dda10de975594b21ddeaaf8dcc07a106f3b3c121afb90e57
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b7a437-43da-4218-a8ea-3aa936541e3f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8159
x-amzn-requestid: 52245e9a-4ea7-470c-ad88-1051471fc543
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fbvBxGv2oAMFfLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4920b-6b6d100e11edfa5307b67933;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 03:10:03 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Qgh4eyT_OHA_N3vH7o37gjmjUpRyJMXzG3pyvKH8pnxjWxu8ykXIRw==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 03:56:29 GMT
age: 71111
etag: "aec801b4158398d2d3222e7247532a1b0ba446e3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55e9b24d-3c7c-46d8-89b7-084483cc3d1d.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55e9b24d-3c7c-46d8-89b7-084483cc3d1d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5190c0bdc6abe0ee258e9f8c20ddaf51
d60f280f8a742480527dbc32d08f321f972d4fcf
874b38a04aa3736e65aaef72da2cc2efceb208618267107a495bdfe51ec58e58
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55e9b24d-3c7c-46d8-89b7-084483cc3d1d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12507
x-amzn-requestid: 85c9adcd-b997-48ca-bbfb-ccdeaf3e8cfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhklyFaJoAMFqKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e7be-2bcdd8c353d8429d2b1e95f6;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:40:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UDJKl99GiUxTW_EgWFDjLaJZbKFhfaJR-XRLsbQphwHuCXczDlxrDA==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:54:37 GMT
age: 6423
etag: "d60f280f8a742480527dbc32d08f321f972d4fcf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: f644ca78-a07a-43d1-96e4-95bcdecff7fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPGLfFtOIAMFp7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf83e2-202ca7160544acd24259bd5d;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:08:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xRwqrWS66l4qJfg2HnGphN1dbrIUod9XKW3zTk_-Km9AQRPyV2UqWg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 20:46:17 GMT
age: 10523
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e1c93b4-807b-47ea-82fe-50d8216b163c.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e1c93b4-807b-47ea-82fe-50d8216b163c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f49153c1aade8aa30bc6c84db4fa09d7
5cce4e085c87e7fbe82907694a36a91cc1bc9bfc
3285916959352e77cdbea34515dad3b3a0315b74bca7f45a8e5a2de4661203e2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e1c93b4-807b-47ea-82fe-50d8216b163c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6646
x-amzn-requestid: c8a7d4b9-1a13-41c1-8391-853f03f3150c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fbvRsHiaIAMF4Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d49271-634529cc6844e70829b5750f;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 03:11:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PXMbaFBZrgdsIRduRmCb8ALPII3zv7dTT4Ikn2B_Waxz3wLcp2giKQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 03:49:27 GMT
age: 71533
etag: "5cce4e085c87e7fbe82907694a36a91cc1bc9bfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80079413-a219-4943-96b4-3e14e10bb5ba.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80079413-a219-4943-96b4-3e14e10bb5ba.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 36ff8d0c9899da25e80edbb858b164de
3e2491c5465f3c427a11c32bdfee27767559bb3f
b060501c6d82e97bd4826a62b790d58cd9d7ece8e1590267bc9b48033f3ce9b1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80079413-a219-4943-96b4-3e14e10bb5ba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7223
x-amzn-requestid: b05a1db9-29e2-42d0-9eca-9a0f462c87c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj3IHtpIAMFUkw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e693-7e13d93143b5e666313a4b8f;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: y8z-TFrhe0-x-KHZd2pIVITumrB18bqIzK_vX9em0eEpt3U8i0sozA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:53:07 GMT
age: 6513
etag: "3e2491c5465f3c427a11c32bdfee27767559bb3f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf294e5c-6457-4bdc-b8e4-6cde89bb64f8.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf294e5c-6457-4bdc-b8e4-6cde89bb64f8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 029e272400d7190359cd2eabbf418188
6300f72a4e44444fc9e4027fb47a85122650b0f2
ef353caae33db21140027a07d1bf3956c2476baaa69c12c1de3c369ac69b13dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf294e5c-6457-4bdc-b8e4-6cde89bb64f8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6927
x-amzn-requestid: 6749dadd-1cbd-4e35-9dae-20337098eccf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPGjtGWwoAMF87Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf847d-3c470030501c0e572e9f2560;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:10:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AZgJTalW0bIj3KeZYEB5vTy9yVErnDqk8EC2Si8WWFnOjzMiqc8mxw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:15:27 GMT
age: 5173
etag: "6300f72a4e44444fc9e4027fb47a85122650b0f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
interfinb.com/js/owl.carousel.min.js
199.188.200.50200 OK 10 kB URL HTTP/2 interfinb.com/js/owl.carousel.min.js
IP 199.188.200.50:0
File type ASCII text, with very long lines (32068)
Hash c5ab7705dea5ddb6d30090d2ad7e6682
3714f59200b94de16cecf505ea6916450106cd06
351617f04b0f83670ecb6e44125667a7dbd6f44499a15310c5ef01a9ba030aa3
Analyzer Verdict Alert fortinet Phishing
GET /js/owl.carousel.min.js HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: application/javascript
last-modified: Fri, 27 Jun 2014 04:51:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10319
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/js/bootstrap.min.js
199.188.200.50200 OK 9.5 kB URL HTTP/2 interfinb.com/js/bootstrap.min.js
IP 199.188.200.50:0
File type ASCII text, with very long lines (32056)
Hash aa828ba86d6e0a05512e7c61d022df98
c0af2c67663dc68867c96cbe9b45a90dadf3d92f
a25c2f88e3fc81954d0c31d6fab7ef26def52532a879eabf2be4d4d5d6b78fe0
Analyzer Verdict Alert fortinet Phishing
GET /js/bootstrap.min.js HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: application/javascript
last-modified: Tue, 01 Mar 2016 19:05:34 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9522
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/img/transfer.png
199.188.200.50200 OK 7.3 kB URL HTTP/2 interfinb.com/img/transfer.png
IP 199.188.200.50:0
File type PNG image data, 240 x 208, 8-bit/color RGBA, non-interlaced\012- data
Hash 50fed12cfbece5fb99310b4c5286403d
e8b0150ae3a401f94c22817ae3e0a8ee1565acc4
e487c1899046d980adefd590ab203e3d2121a33cd7690be8fa5cb36795d5733f
GET /img/transfer.png HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: image/png
last-modified: Wed, 25 Mar 2020 15:02:58 GMT
accept-ranges: bytes
content-length: 7275
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/img/register.png
199.188.200.50200 OK 13 kB URL HTTP/2 interfinb.com/img/register.png
IP 199.188.200.50:0
File type PNG image data, 600 x 600, 8-bit/color RGBA, non-interlaced\012- data
Hash 8023a7565daf1ef89f49c682c2419327
9f2ed7add215e57f8cb298e642beb1c99394da91
e0366ee56ee0a3addbe47c9d82629575406b937b42aa0a3324ceb5762bd97dfd
GET /img/register.png HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: image/png
last-modified: Wed, 25 Mar 2020 13:20:18 GMT
accept-ranges: bytes
content-length: 13445
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/js/jquery.counterup.min.js
199.188.200.50200 OK 422 B URL HTTP/2 interfinb.com/js/jquery.counterup.min.js
IP 199.188.200.50:0
File type ASCII text, with very long lines (917)
Hash 0ff23740be53e4a59099cf8b6b7f3a60
1f451663eae12205577c1c3250fee1d0a0ca75b0
298e88d64b15775d163f348363dbfcb1bb94ebbdbd2290df69904dfcba43c175
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery.counterup.min.js HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: application/javascript
last-modified: Sun, 10 Jul 2016 10:23:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 422
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/js/waypoints.js
199.188.200.50200 OK 2.5 kB URL HTTP/2 interfinb.com/js/waypoints.js
IP 199.188.200.50:0
File type ASCII text, with very long lines (7808), with CRLF line terminators
Hash ad6b080ac59ba98eef5f14bf994ba2fd
40560927d531a59fa0cbdc24a5855951a3988f08
68b703a9aa76b7583d1d22f051f026652bebeaa98307da5b3c8e5d437f7923c1
Analyzer Verdict Alert fortinet Phishing
GET /js/waypoints.js HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: application/javascript
last-modified: Sat, 16 Apr 2016 20:11:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2469
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/js/isotope.pkgd.min.js
199.188.200.50200 OK 11 kB URL HTTP/2 interfinb.com/js/isotope.pkgd.min.js
IP 199.188.200.50:0
File type ASCII text, with very long lines (32031), with CRLF line terminators
Hash 3783f94cbb37261d45ac028213cf5750
de17e597b1ae4a16a424ac1305e78576dbe2ee23
9ac301d3242a4bba3c667cefc3dceaacba553b7b36d6539ad7a55fc2fd899158
Analyzer Verdict Alert fortinet Phishing
GET /js/isotope.pkgd.min.js HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: application/javascript
last-modified: Sat, 16 Jul 2016 09:04:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10783
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/js/jquery.meanmenu.js
199.188.200.50200 OK 3.3 kB URL HTTP/2 interfinb.com/js/jquery.meanmenu.js
IP 199.188.200.50:0
File type ASCII text, with CRLF line terminators
Hash 8c19d1c2e623376e806b557822a181ec
984773b7ef2f5ab5b06dcc0643268139311f5d1a
779dd90ca482ba2989be3363b31b23b214351ca20d465b4e89508c2fceedf9b1
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery.meanmenu.js HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: application/javascript
last-modified: Sat, 29 Aug 2015 01:28:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3263
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/js/form-validator.min.js
199.188.200.50200 OK 1.9 kB URL HTTP/2 interfinb.com/js/form-validator.min.js
IP 199.188.200.50:0
File type ASCII text, with very long lines (5862)
Hash 4a0b7fd9db204e0a8fb4f2d156f115d2
21ff7c15767ae4cb90a5e40237b8da3ead26b24b
be50e018c9b00c3d5599312adeb7582741bec109dd57a12f9d6f8b580f7aa716
Analyzer Verdict Alert fortinet Phishing
GET /js/form-validator.min.js HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: application/javascript
last-modified: Sun, 06 Dec 2015 09:36:28 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1913
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/js/plugins.js
199.188.200.50200 OK 1.2 kB URL HTTP/2 interfinb.com/js/plugins.js
IP 199.188.200.50:0
File type Unicode text, UTF-8 text, with very long lines (1872)
Hash 7e763b10ea80b3c60be7a68d1174e56c
283b817c8628716775641693a515dc1eaf9cbb7d
3935c2b4c6ecb6a0b0625e552cffc1031030a9a8c666287cc5823187c7e37e19
Analyzer Verdict Alert fortinet Phishing
GET /js/plugins.js HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: application/javascript
last-modified: Tue, 01 Mar 2016 19:15:16 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1155
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/js/jquery.stellar.min.js
199.188.200.50200 OK 3.2 kB URL HTTP/2 interfinb.com/js/jquery.stellar.min.js
IP 199.188.200.50:0
File type ASCII text, with very long lines (12492), with CRLF line terminators
Hash e7a96375d76bd6930ddd727f14fffd29
ada74e79e0240f268a072d4f46fb61ac0e2d3030
7b5c1e3409e88b042eea26f2f61815da9a6f6e09369f69485ef69654426f7aaf
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery.stellar.min.js HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: application/javascript
last-modified: Wed, 04 Oct 2017 05:22:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3184
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/js/vendor/jquery-1.12.4.min.js
199.188.200.50200 OK 33 kB URL HTTP/2 interfinb.com/js/vendor/jquery-1.12.4.min.js
IP 199.188.200.50:0
File type ASCII text, with very long lines (32060)
Hash 90e82bff109601fbc3d53e02a13c4745
fc61efedca365105715886cb468b27f1382cc642
100265d79b3d919af50ee00973e911a8473d063e6baa02ffa485e96da9bed09b
Analyzer Verdict Alert fortinet Phishing
GET /js/vendor/jquery-1.12.4.min.js HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: application/javascript
last-modified: Tue, 12 Jan 2016 17:12:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 32931
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/img/support.png
199.188.200.50200 OK 22 kB URL HTTP/2 interfinb.com/img/support.png
IP 199.188.200.50:0
File type PNG image data, 600 x 600, 8-bit/color RGBA, non-interlaced\012- data
Hash e20d69c2993d8dbda1c2c595cf781a9c
666085e4f24d699bbcea5cd75541db76dd244651
759d88687e6099dce7638df4cf6579bbf4082c23b9652339182971101f643f22
GET /img/support.png HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: image/png
last-modified: Wed, 25 Mar 2020 13:19:04 GMT
accept-ranges: bytes
content-length: 22451
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/img/banking.png
199.188.200.50200 OK 36 kB URL HTTP/2 interfinb.com/img/banking.png
IP 199.188.200.50:0
File type PNG image data, 600 x 600, 8-bit/color RGBA, non-interlaced\012- data
Hash 10bc5a62a358cc20fbd62a8c951ad904
dc181086db5d764340332b15dbf665a0bc6aed7e
1b36d2abde54df223eab47a4605dfcde59f30ea0d2e7888f28e07a00fa44bee3
GET /img/banking.png HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: image/png
last-modified: Wed, 25 Mar 2020 13:21:32 GMT
accept-ranges: bytes
content-length: 35658
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/img/slider/s4.jpg
199.188.200.50200 OK 51 kB URL HTTP/2 interfinb.com/img/slider/s4.jpg
IP 199.188.200.50:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x950, components 3\012- data
Hash ea9f5d60a2785c751ec4ff6738a5b958
0a9ca8bccf1fd988c3cea76582d002806d41399f
7a32f97d2a8aa33899a7d60588402450abc98e0d8a517048aa588b38e33154ea
GET /img/slider/s4.jpg HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: image/jpeg
last-modified: Fri, 21 Sep 2018 23:26:24 GMT
accept-ranges: bytes
content-length: 51017
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/img/scam.png
199.188.200.50200 OK 70 kB URL HTTP/2 interfinb.com/img/scam.png
IP 199.188.200.50:0
File type PNG image data, 600 x 600, 8-bit/color RGBA, non-interlaced\012- data
Hash 7eecc9045c65d6a8107afa6720430b8b
546f22484af3bae8a675d45a2ab7d7aad31e8208
1de416d3ca133fe38b076d197bbb59b2047fd848e039d5247f3bfb4c234b7686
GET /img/scam.png HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: image/png
last-modified: Wed, 25 Mar 2020 13:17:06 GMT
accept-ranges: bytes
content-length: 69811
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/img/slider/s3.jpg
199.188.200.50200 OK 78 kB URL HTTP/2 interfinb.com/img/slider/s3.jpg
IP 199.188.200.50:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x950, components 3\012- data
Hash 3850ca1fb777697e91e57892b069dbe9
7f5cc9f088875c363927b796e37a97f32bab5246
63b33f866f654f1c918ad7c04ba8f88c8e03cb29eb5e860dfb344dd2f0acc9ff
GET /img/slider/s3.jpg HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:39 GMT
content-type: image/jpeg
last-modified: Fri, 21 Sep 2018 23:25:50 GMT
accept-ranges: bytes
content-length: 77654
date: Sun, 29 Jan 2023 23:41:39 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/img/background/ag1.jpg
199.188.200.50200 OK 28 kB URL HTTP/2 interfinb.com/img/background/ag1.jpg
IP 199.188.200.50:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", baseline, precision 8, 715x250, components 3\012- data
Hash f0892d98a5f8cd4d9f204aa3e5dccbc2
be53b668fb3f50a1845c571d018d270eef4ab3cb
242561288398d5ec9c665b94d9d1732dded3cbff552b45cb05d53ff3f3e01237
GET /img/background/ag1.jpg HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/style.css
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:40 GMT
content-type: image/jpeg
last-modified: Wed, 10 Jul 2019 07:38:08 GMT
accept-ranges: bytes
content-length: 27675
date: Sun, 29 Jan 2023 23:41:40 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
widget-v4.tidiochat.com//tururu.mp3
172.67.71.3206 Partial Content 7.2 kB URL HTTP/2 widget-v4.tidiochat.com//tururu.mp3
IP 172.67.71.3:0
File type MPEG ADTS, layer III, v1, 64 kbps, 44.1 kHz, Monaural\012- data
Hash 5061b4d134a7b4d5d744f9a127b757a8
c5e240ac60d3914cb3836ba6652105c67720b845
12c7687514ca85ba2157ed61914ac526bb9dd15cb5a2a2d9e4d88f919349284f
GET //tururu.mp3 HTTP/1.1
Host: widget-v4.tidiochat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Sun, 29 Jan 2023 23:41:40 GMT
content-type: audio/mpeg
content-length: 7224
last-modified: Tue, 10 Jan 2023 09:08:45 GMT
etag: "63bd2b1d-1c38"
expires: Wed, 01 Feb 2023 20:36:43 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 961497
content-range: bytes 0-7223/7224
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=at5rYmiQEzWjZ8su366PGS08zggyPlWTEl8SkCTgBBZVhielQjb%2BjbfkCWt4PLocFES0TUAhnUfFUe3egHcaPcoSD%2FbJkyKd3mUJ4e0pKiwNO2K2507%2FDyMrV2rd4EC7mADzPnWGGH%2BY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7915d1eb2d22b529-OSL
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
151.101.130.133200 OK 940 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 151.101.130.133:0
Hash 593317ff6744d063af7d76e21bed1bab
414538bbf37a7c5277553bab2b50ae8ecd256917
062f3af4e94d9c762ee99795f6648156e5a0fdb8810d4ac37e7f2daeec121e66
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 940
Server: nginx
Content-Type: application/ocsp-response
Expires: Thu, 02 Feb 2023 21:06:25 GMT
ETag: "414538bbf37a7c5277553bab2b50ae8ecd256917"
Last-Modified: Sun, 29 Jan 2023 21:06:26 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sun, 29 Jan 2023 23:41:40 GMT
Age: 1019
X-Served-By: cache-qpg1273-QPG, cache-bma1670-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 4, 94
X-Timer: S1675035701.994453,VS0,VE0
interfinb.com/fonts/Flaticon.woff
199.188.200.50200 OK 54 kB URL HTTP/2 interfinb.com/fonts/Flaticon.woff
IP 199.188.200.50:0
File type Web Open Font Format, TrueType, length 54264, version 0.0\012- data
Hash 06cfc367dc75220b432c81b63880c017
812ef6c2a01406e3436e513c9f4a25bfad07567e
ce70864d617df7526d9d2ae9bab27c5ab2199479b90beaff3c3e54786d901e26
Analyzer Verdict Alert fortinet Phishing
GET /fonts/Flaticon.woff HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://interfinb.com/css/flaticon.css
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:40 GMT
content-type: font/woff
last-modified: Thu, 23 Jun 2016 00:37:32 GMT
accept-ranges: bytes
content-length: 54264
date: Sun, 29 Jan 2023 23:41:40 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/fonts/Linearicons-Free54e9.woff2?w118d
199.188.200.50200 OK 22 kB URL HTTP/2 interfinb.com/fonts/Linearicons-Free54e9.woff2?w118d
IP 199.188.200.50:0
File type Web Open Font Format (Version 2), TrueType, length 21780, version 1.0\012- data
Hash 03e91f122aa5fd425abbe23c85546eb0
c87a3db06c5db4e75e639382f174eafa439aeb27
296945e5922e764eef17b1b4a3ee3e60dc202b3c7f074150b62158915bf74e33
Analyzer Verdict Alert fortinet Phishing
GET /fonts/Linearicons-Free54e9.woff2?w118d HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://interfinb.com/css/icon.css
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:40 GMT
content-type: font/woff2
last-modified: Sun, 24 May 2015 03:30:36 GMT
accept-ranges: bytes
content-length: 21780
date: Sun, 29 Jan 2023 23:41:40 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/fonts/fontawesome-webfont3295.woff2?v=4.5.0
199.188.200.50200 OK 77 kB URL HTTP/2 interfinb.com/fonts/fontawesome-webfont3295.woff2?v=4.5.0
IP 199.188.200.50:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /fonts/fontawesome-webfont3295.woff2?v=4.5.0 HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://interfinb.com/css/font-awesome.min.css
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:40 GMT
content-type: font/woff2
last-modified: Fri, 23 Dec 2016 01:50:34 GMT
accept-ranges: bytes
content-length: 77160
date: Sun, 29 Jan 2023 23:41:40 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
interfinb.com/img/logo/favicon.png
199.188.200.50200 OK 19 kB URL HTTP/2 interfinb.com/img/logo/favicon.png
IP 199.188.200.50:0
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 5b332a7da1e06c74e4c1b3b24f6e328d
754a2ed04c64cc8d183e07cd913709779aac2038
a8f4146c72e2dc70b2aad4cce7e6f93a39a37e44fec07e5366e662a8954a9af0
GET /img/logo/favicon.png HTTP/1.1
Host: interfinb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Cookie: PHPSESSID=69f2d266c52a2b081b3ff1501b033242
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 23:41:41 GMT
content-type: image/png
last-modified: Wed, 31 Mar 2021 16:03:58 GMT
accept-ranges: bytes
content-length: 19397
date: Sun, 29 Jan 2023 23:41:41 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
yastatic.net/s3/translate/v83.0/dist/scripts/addons/tr_page.js
178.154.131.215200 OK 82 kB URL HTTP/2 yastatic.net/s3/translate/v83.0/dist/scripts/addons/tr_page.js
IP 178.154.131.215:0
File type Unicode text, UTF-8 text, with very long lines (65516), with no line terminators
Hash 7c49d2a541c1ed79825c57a760231993
29b706c3b0a56c0870871d26539bebd4412cb374
14da8e4ccb591c06ad256a9a17258d40ca4e75266d4260ac1f1e970059674d35
GET /s3/translate/v83.0/dist/scripts/addons/tr_page.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Sun, 29 Jan 2023 23:41:41 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=31556952
content-encoding: br
etag: W/"be199fbccfe4b36f6e885a833944e401"
expires: Tue, 30 Jan 2024 05:28:05 GMT
last-modified: Wed, 25 Jan 2023 17:51:58 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-nginx-request-id: c2209185dc43bb6a
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash d3e7b97fff0f5d26b83ad0bbc5731b6f
331d5a18a37992291d097d3cd9f3469557cfe2b8
a37999855e5d0326805693d7f82c582339bcefe65131684a46218f86ce84a2b6
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 29 Jan 2023 23:41:41 GMT
Last-Modified: Sun, 29 Jan 2023 22:02:16 GMT
Server: ECS (nyb/1DD2)
X-Cache: Miss from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: VLqG92o72mr8Q75MZI7tuKVqLWACNjv7dpaaZfGb8kiGg5Iu8VKM6Q==
Age: 5965
socket.tidio.co/socket.io/?ppk=qzaovq6tsvozc6e3bbhdcwpgocvipygl&device=desktop&EIO=3&transport=websocket
99.81.183.85101 Switching Protocols 0 B URL HTTP/1.1 socket.tidio.co/socket.io/?ppk=qzaovq6tsvozc6e3bbhdcwpgocvipygl&device=desktop&EIO=3&transport=websocket
IP 99.81.183.85:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket.io/?ppk=qzaovq6tsvozc6e3bbhdcwpgocvipygl&device=desktop&EIO=3&transport=websocket HTTP/1.1
Host: socket.tidio.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://interfinb.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: BQSsyItsK75vcA8DEjWl5A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Sun, 29 Jan 2023 23:41:41 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: FYj1FQ8DkJjo5ETKYXbrD7o4jFQ=
Sec-WebSocket-Extensions: permessage-deflate
fonts.gstatic.com/s/mulish/v12/1Ptvg83HX_SGhgqk3wot.woff2
142.250.74.67200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/mulish/v12/1Ptvg83HX_SGhgqk3wot.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 27428, version 1.0\012- data
Hash e6d08c334958c128b793b570a7dce066
081111500e97a7663ff936f847e050fee6b8be2b
8da72dacca3725d500bc789e5f506c76367804eecc46c4249ce0ff822d7a147e
GET /s/mulish/v12/1Ptvg83HX_SGhgqk3wot.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://interfinb.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27428
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 18:29:06 GMT
expires: Mon, 29 Jan 2024 18:29:06 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:57:51 GMT
content-type: font/woff2
age: 18755
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 5d97de74ccf2a176dbb479781e670d3b
c7b9a2cc32b20ded7a7e51907ed35c5e864158f9
d1fc0a0068a630be8fd6e727903ba46edd91755a8ac9e8061a5d1662c8d80bc0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2307
Cache-Control: max-age=163313
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 23:41:42 GMT
Etag: "63d6d624-118"
Expires: Tue, 31 Jan 2023 21:03:35 GMT
Last-Modified: Sun, 29 Jan 2023 20:25:08 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 280
cdnjs.cloudflare.com/ajax/libs/twemoji/12.1.1/72x72/1f44b.png
104.17.24.14200 OK 1.2 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/twemoji/12.1.1/72x72/1f44b.png
IP 104.17.24.14:0
File type PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Hash 249700cd3fa4534212fa4219acd48b45
331d8aa072822712ba35d8edf79fd24e5951f81b
dc27ba826e9df6489195841a415c2da861fff1163b04ad2cd821d490009edcbf
GET /ajax/libs/twemoji/12.1.1/72x72/1f44b.png HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interfinb.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:41:42 GMT
content-type: image/png; charset=utf-8
content-length: 1224
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5fdd6306-505"
last-modified: Sat, 19 Dec 2020 02:18:46 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 914177
expires: Fri, 19 Jan 2024 23:41:42 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F4Lketm1wQ40DUf5b%2Fd7zpziZwXhUTKveAlSWheYM8Q6WXQ68k%2BEZ9VVhs9jrd%2Bn2nJsxABe1cX0hdqKSyhmOKw6CJvKUqs%2FTpWKhusy11S4O6YY1s5Ok%2BhywL9A1P0DxM6Qc%2BOc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7915d1f29dc8b50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 5d97de74ccf2a176dbb479781e670d3b
c7b9a2cc32b20ded7a7e51907ed35c5e864158f9
d1fc0a0068a630be8fd6e727903ba46edd91755a8ac9e8061a5d1662c8d80bc0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2307
Cache-Control: max-age=163313
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 23:41:42 GMT
Etag: "63d6d624-118"
Expires: Tue, 31 Jan 2023 21:03:35 GMT
Last-Modified: Sun, 29 Jan 2023 20:25:08 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 280
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57d55e9c-b793-48b6-9641-536d9d4b8a49.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57d55e9c-b793-48b6-9641-536d9d4b8a49.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ce4f845d4cdd467b4c82d8fbeb9ae0b
68257cdadb6e13a8f7f5e2354aca225286107a79
243b58df1616fd8b78c11302dbf90c97ecb6a3b289abe5f3439252cdbf304892
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57d55e9c-b793-48b6-9641-536d9d4b8a49.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9150
x-amzn-requestid: 2b8949c8-5c97-49f5-8784-85daa42adff1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj4NF1moAMFQ9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e69a-2ab06022306835b013c1e46f;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NEYfOHRSbqSqgj9m4A-z6jFKKbaiYC9DKmggHLFvSAK88FMnfXMn1Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:23:20 GMT
age: 4707
etag: "68257cdadb6e13a8f7f5e2354aca225286107a79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
widget-v4.tidiochat.com/1_137_1/static/js/chunk-WidgetIframe-d653de6259cab871576f.js
172.67.71.3200 OK 0 B URL HTTP/2 widget-v4.tidiochat.com/1_137_1/static/js/chunk-WidgetIframe-d653de6259cab871576f.js
IP 172.67.71.3:0
GET /1_137_1/static/js/chunk-WidgetIframe-d653de6259cab871576f.js HTTP/1.1
Host: widget-v4.tidiochat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:41:40 GMT
content-type: application/javascript
last-modified: Fri, 27 Jan 2023 08:23:15 GMT
vary: Accept-Encoding
etag: W/"63d389f3-563bd"
cache-control: max-age=691200
cf-cache-status: HIT
age: 4575
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qxmLk6I150L%2FseQinn5TaDPLYYbJiuImGDdMHcIxVzUqvm4ezXql5ohOOvU1haxTQRhk9ptU57KlX85i%2Fjzh3lTjNmTPh91ff2R5Mj%2F%2BYXPSWlpSFFdTNHVKG9Na9uYgmvzcguWJRb4d"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7915d1eb0d17b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
widget-v4.tidiochat.com/1_137_1/static/js/widget.d653de6259cab871576f.js
172.67.71.3200 OK 0 B URL HTTP/2 widget-v4.tidiochat.com/1_137_1/static/js/widget.d653de6259cab871576f.js
IP 172.67.71.3:0
GET /1_137_1/static/js/widget.d653de6259cab871576f.js HTTP/1.1
Host: widget-v4.tidiochat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 23:41:41 GMT
content-type: application/javascript
last-modified: Fri, 27 Jan 2023 08:23:15 GMT
vary: Accept-Encoding
etag: W/"63d389f3-83bda"
cache-control: max-age=691200
cf-cache-status: HIT
age: 4610
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pm2cpV%2FwWlRk3ujxbmjCH0IcJ%2BxULnQWyMSEmCKgiKKPYpLSn6c5i7qRV4o4r77psIWiYvGRT%2FyO%2FZ8C%2FNytiOzyTxfK2ZykzwJV7h1erd%2BRFwXKBDhKrJ4uKTkcfgjsVYtR3zwreInw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7915d1eb5d57b529-OSL
content-encoding: br
X-Firefox-Spdy: h2