www.linkedin.com/company/1724633?mkt_tok=ODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
302 Found 0 B URL User Request GET HTTP/2 www.linkedin.com/company/1724633?mkt_tok=ODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - LinkedIn
GET /company/1724633?mkt_tok=ODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://click.healthcatalyst.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
set-cookie: JSESSIONID=ajax:0132359112985502551; Domain=.www.linkedin.com; Path=/; Secure; SameSite=None
lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; Domain=.linkedin.com; Expires=Wed, 27-Nov-2024 18:43:26 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&20231128184326e9bf9b43-bbcd-4d23-8f45-cecbbc0cde49AQHVCfZwYv2SXSkfgpERYBGQtwne8dg6"; Domain=.www.linkedin.com; Expires=Wed, 27-Nov-2024 18:43:26 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE3MDExOTcwMDY7MjswMjFiqWGPS3IOH8R1jeQGYSWOVt+gU8KR8jW30N+GHvKSig==; Domain=.linkedin.com; Expires=Sun, 26 May 2024 18:43:26 GMT; Path=/; Secure; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2718:u=1:x=1:i=1701197006:t=1701283406:v=2:sig=AQHqD3Sk6jzMqVuarOz0T2Ud_Muj0Tea"; Expires=Wed, 29 Nov 2023 18:43:26 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; connect-src 'self' *.licdn.com *.linkedin.com cdn.linkedin.oribi.io dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ v.clarity.ms/collect *.microsoft.com *.adnxs.com *.tealiumiq.com; script-src 'report-sample' 'sha256-th47JTnh6tX15SUn/I+GGmsOSXpa7dh5Skner77gxlY=' 'sha256-SSoodjUD3LGm2FfFCVHGqEb8D4UM3OOigidT2UKDcYg=' 'sha256-cKTgdnmO6+hXd85a9wKg1effVfVzenUAtUCyOKY9bQE=' 'sha256-DwtT8+ZZKpxH9pqZNAmJ3GdbLAh5SsYaXR3omTXPCns=' 'sha256-sV9jZa797T0QWBzcU/CNd4tpBhTnh+TFdLnfjlitl28=' 'sha256-aa/Q8CRBDSqTQbCIyioPhZaz+G+dbPyu7BzsjInEmiU=' 'sha256-THuVhwbXPeTR0HszASqMOnIyxqEgvGyBwSPBKBF/iMc=' 'sha256-zTIusdVJJeXz9+iox2a+pdDglzbpRpFVRzEwvW4AONk=' 'sha256-iC8MPqNLw0FDnsBf4DlSkFLNTwhkI85aouiAEB819ic=' 'sha256-2EqrEvcPzl8c6/TSGVvaVMEe7lg700MAz/te4/3kTYY=' 'sha256-y5uW69VItKj51mcc7UD9qfptDVUqicZL+bItEpvVNDw=' 'sha256-DatsFGoJ8gFkzzxo47Ou76WZ+3QBPOQHtBu9p9b3DhA=' 'sha256-k95cyM8gFgPziZe5VQ2IvJvBUVyd5zFt2CokIUwqdHE=' 'sha256-PyCXNcEkzRWqbiNr087fizmiBBrq9O6GGD8eV3P09Ik=' 'sha256-2SQ55Erm3CPCb+k03EpNxU9bdV3XL9TnVTriDs7INZ4=' 'sha256-S/KSPe186K/1B0JEjbIXcCdpB97krdzX05S+dHnQjUs=' 'sha256-9pXOIwF4N0gPltLd3AI69lkCjSC2H/Eb3sc5zdmUyYU=' 'sha256-jou6v/Nleyzoc+LXktAv1Fp8M807dVVxy7E/yzVljHc=' 'sha256-6E4e/3dSvj/8JZT2S2yR91mspqM6MyOpKl5lrhHsZa8=' 'sha256-3woF8BZ54TeXM+czaH3aXoaJsVpiamuAKFsXDykAR/Q=' 'sha256-vIfNcKb8ixJg1cfJIoNNYjWcm0lezj1/XpUNFiZyVsU=' 'sha256-cLsHUHFgT/VGX04cZrJ9xgm4HbzTR7ptutkxK+7BlMk=' 'sha256-BwU8jMnQYUhjOpsDVABpfddV/DlP1ZYrFcTumYw7x54=' 'sha256-wz6ika9i3WU3bpUPdhYDZeO/NrDQniDyiscN0LWnyaY=' static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com snap.licdn.com; img-src data: blob: * android-webview-video-poster:; font-src data: *; style-src 'self' 'unsafe-inline' static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com; media-src 'self' *.licdn.com *.lynda.com; worker-src 'self' blob: static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com; frame-src 'self' www.youtube.com/embed/ www.youtube-nocookie.com/embed/ lnkd.demdex.net smartlock.google.com accounts.google.com player.vimeo.com *.linkedin.com www.slideshare.net *.megaphone.fm *.omny.fm *.sounder.fm msit.powerbi.com app.powerbi.com linkedin.github.io *.licdn.com *.adnxs.com acdn.adnxs-simple.com radar.cedexis.com; frame-ancestors 'self' *.www.linkedin.com:*; manifest-src 'self'; report-uri https://www.linkedin.com/security/csp?f=gg
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAYLOstHxkBDHbBJuJ/P9A==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: A9D35B3D7D174CBE989BCC86593686FC Ref B: OSL30EDGE0421 Ref C: 2023-11-28T18:43:26Z
date: Tue, 28 Nov 2023 18:43:26 GMT
content-length: 0
X-Firefox-Spdy: h2
www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
200 OK 13 kB URL User Request GET HTTP/2 www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (38741)
Hash f4810b96d29db75e5af46fe1296d6390
dc4f373799c07f16143f7ba4d803a5133805b94a
7e3ce5356c1d7cc9bc9fb1c3de898d686b3201a139d1ba3a58be39a82d0af1eb
Analyzer Verdict Alert urlquery phishing Phishing - LinkedIn
GET /uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://click.healthcatalyst.com/
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=ajax:0132359112985502551; lang=v=2&lang=en-us; bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; bscookie="v=1&20231128184326e9bf9b43-bbcd-4d23-8f45-cecbbc0cde49AQHVCfZwYv2SXSkfgpERYBGQtwne8dg6"; li_gc=MTswOzE3MDExOTcwMDY7MjswMjFiqWGPS3IOH8R1jeQGYSWOVt+gU8KR8jW30N+GHvKSig==; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2718:u=1:x=1:i=1701197006:t=1701283406:v=2:sig=AQHqD3Sk6jzMqVuarOz0T2Ud_Muj0Tea"
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-length: 12915
content-type: text/html; charset=utf-8
content-encoding: gzip
expires: Thu, 01 Jan 1970 00:00:00 GMT
last-modified: Mon, 27 Nov 2023 15:05:24 PST
vary: Accept-Encoding
set-cookie: li_rm=AQEmvstMANfsBgAAAYwXPkhUYsjnSN6Jc8A2QOqS5hlWkmAxGAPNZB3QTS7Emc91ff4oUKGthStGvY0qCbiIrKJcXbNLM9qkjd-PM35Q8VEJdbeLGs5In1WE; Max-Age=31536000; Expires=Wed, 27 Nov 2024 18:43:26 GMT; SameSite=None; Path=/; Domain=.www.linkedin.com; Secure; HTTPOnly
bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; domain=.linkedin.com; Path=/; Secure; Expires=Wed, 27-Nov-2024 18:43:26 GMT; SameSite=None
bscookie="v=1&20231128184326e9bf9b43-bbcd-4d23-8f45-cecbbc0cde49AQHVCfZwYv2SXSkfgpERYBGQtwne8dg6"; domain=.www.linkedin.com; Path=/; Secure; Expires=Wed, 27-Nov-2024 18:43:26 GMT; HttpOnly; SameSite=None
x-fs-uuid: 00060b3acb4a220774fdd744d720bd88
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; connect-src 'self' *.licdn.com *.linkedin.com cdn.linkedin.oribi.io dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ v.clarity.ms/collect *.microsoft.com *.adnxs.com *.tealiumiq.com; script-src 'report-sample' 'sha256-th47JTnh6tX15SUn/I+GGmsOSXpa7dh5Skner77gxlY=' 'sha256-SSoodjUD3LGm2FfFCVHGqEb8D4UM3OOigidT2UKDcYg=' 'sha256-cKTgdnmO6+hXd85a9wKg1effVfVzenUAtUCyOKY9bQE=' 'sha256-DwtT8+ZZKpxH9pqZNAmJ3GdbLAh5SsYaXR3omTXPCns=' 'sha256-sV9jZa797T0QWBzcU/CNd4tpBhTnh+TFdLnfjlitl28=' 'sha256-aa/Q8CRBDSqTQbCIyioPhZaz+G+dbPyu7BzsjInEmiU=' 'sha256-THuVhwbXPeTR0HszASqMOnIyxqEgvGyBwSPBKBF/iMc=' 'sha256-zTIusdVJJeXz9+iox2a+pdDglzbpRpFVRzEwvW4AONk=' 'sha256-iC8MPqNLw0FDnsBf4DlSkFLNTwhkI85aouiAEB819ic=' 'sha256-2EqrEvcPzl8c6/TSGVvaVMEe7lg700MAz/te4/3kTYY=' 'sha256-y5uW69VItKj51mcc7UD9qfptDVUqicZL+bItEpvVNDw=' 'sha256-DatsFGoJ8gFkzzxo47Ou76WZ+3QBPOQHtBu9p9b3DhA=' 'sha256-k95cyM8gFgPziZe5VQ2IvJvBUVyd5zFt2CokIUwqdHE=' 'sha256-PyCXNcEkzRWqbiNr087fizmiBBrq9O6GGD8eV3P09Ik=' 'sha256-2SQ55Erm3CPCb+k03EpNxU9bdV3XL9TnVTriDs7INZ4=' 'sha256-S/KSPe186K/1B0JEjbIXcCdpB97krdzX05S+dHnQjUs=' 'sha256-9pXOIwF4N0gPltLd3AI69lkCjSC2H/Eb3sc5zdmUyYU=' 'sha256-jou6v/Nleyzoc+LXktAv1Fp8M807dVVxy7E/yzVljHc=' 'sha256-6E4e/3dSvj/8JZT2S2yR91mspqM6MyOpKl5lrhHsZa8=' 'sha256-3woF8BZ54TeXM+czaH3aXoaJsVpiamuAKFsXDykAR/Q=' 'sha256-vIfNcKb8ixJg1cfJIoNNYjWcm0lezj1/XpUNFiZyVsU=' 'sha256-cLsHUHFgT/VGX04cZrJ9xgm4HbzTR7ptutkxK+7BlMk=' 'sha256-BwU8jMnQYUhjOpsDVABpfddV/DlP1ZYrFcTumYw7x54=' 'sha256-wz6ika9i3WU3bpUPdhYDZeO/NrDQniDyiscN0LWnyaY=' static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com snap.licdn.com; img-src data: blob: * android-webview-video-poster:; font-src data: *; style-src 'self' 'unsafe-inline' static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com; media-src 'self' *.licdn.com *.lynda.com; worker-src 'self' blob: static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com; frame-src 'self' www.youtube.com/embed/ www.youtube-nocookie.com/embed/ lnkd.demdex.net smartlock.google.com accounts.google.com player.vimeo.com *.linkedin.com www.slideshare.net *.megaphone.fm *.omny.fm *.sounder.fm msit.powerbi.com app.powerbi.com linkedin.github.io *.licdn.com *.adnxs.com acdn.adnxs-simple.com radar.cedexis.com; frame-ancestors 'self' *.www.linkedin.com:*; manifest-src 'self'; report-uri https://www.linkedin.com/security/csp?f=grl
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAYLOstKIgd0/ddE1yC9iA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 3996DC1DB37341CC8262B1114EB987C2 Ref B: OSL30EDGE0421 Ref C: 2023-11-28T18:43:26Z
date: Tue, 28 Nov 2023 18:43:26 GMT
X-Firefox-Spdy: h2
static.licdn.com/sc/h/2y3qdqw0xpfk3qo1agmkdpn7x
200 OK 27 kB URL GET HTTP/2 static.licdn.com/sc/h/2y3qdqw0xpfk3qo1agmkdpn7x
IP
ASN #20940 Akamai International B.V.
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65528), with no line terminators
Hash a950a7a2748f3b6c2be4446130954fbc
96da4e74d53dd697dfda847448997cf621a475c7
5d10ba7adf9cc820eccc13113fc116160254aa5adfeff8e79d62edba4bc52fb4
GET /sc/h/2y3qdqw0xpfk3qo1agmkdpn7x HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Play
expires: Wed, 09 Oct 2024 22:24:14 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 000607642ab0a0b7a1819fbe797d498a
x-li-fabric: prod-ltx1
x-content-type-options: nosniff
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAYHZCqwoLehgZ++eX1Jig==
content-length: 26826
remote-cache-status: TCP_HIT, TCP_HIT
date: Tue, 28 Nov 2023 18:43:27 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2
static.licdn.com/sc/h/1sjpgjk18flzq8du4cxjl13ch
200 OK 24 kB URL GET HTTP/2 static.licdn.com/sc/h/1sjpgjk18flzq8du4cxjl13ch
IP
ASN #20940 Akamai International B.V.
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 67415238a0ed99286f8261e4a6cdfbe5
86ebb0bbd60d8d6bbdc80aa60bc809f17fa9f6d3
7c3190461704d64cb2fb3bbe447902518dcc8a93536e10b7d3475b8ecb836152
GET /sc/h/1sjpgjk18flzq8du4cxjl13ch HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: Play
expires: Thu, 19 Sep 2024 19:10:57 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: text/css
x-fs-uuid: 000605cf2298b03ba8d14a27ce00ae34
x-li-fabric: prod-lva1
x-content-type-options: nosniff
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAYFzyKYsDuo0UonzgCuNA==
content-length: 24081
remote-cache-status: TCP_HIT, TCP_HIT
date: Tue, 28 Nov 2023 18:43:27 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2
static.licdn.com/sc/h/ccg6j0toh362m9pa9exs90nin
200 OK 776 B URL GET HTTP/2 static.licdn.com/sc/h/ccg6j0toh362m9pa9exs90nin
IP
ASN #20940 Akamai International B.V.
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (2164), with no line terminators
Hash 68225657c41b94dfdd7669563fa18c80
58e43494bc31122f06fcb3aa3764be2883d0618f
72bccd36c17aa93a7bb553557626bb720be60cde2357d817bd03af6be67cf08e
GET /sc/h/ccg6j0toh362m9pa9exs90nin HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Play
expires: Tue, 20 Aug 2024 22:09:59 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 0006037623aac0dedd6a34bb903e50da
x-li-fabric: prod-lor1
x-content-type-options: nosniff
x-li-pop: prod-lor1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAYDdiOqwN7dajS7kD5Q2g==
content-length: 776
remote-cache-status: TCP_HIT, TCP_HIT
date: Tue, 28 Nov 2023 18:43:27 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2
static.licdn.com/sc/h/179r7h6dytjlclq68a906sd4s
200 OK 22 kB URL GET HTTP/2 static.licdn.com/sc/h/179r7h6dytjlclq68a906sd4s
IP
ASN #20940 Akamai International B.V.
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (41541)
Hash 1a385461f30e3f360d31f242fd6b3d98
0c0d69d3d866e93732265776ae44fd02db855d99
f89934ac0709430477b8a664f72035461a08e79aab91944d71d695660d810c13
GET /sc/h/179r7h6dytjlclq68a906sd4s HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Play
expires: Fri, 15 Nov 2024 19:57:36 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 00060a4a6e6852994676a7c51fdb0141
x-li-fabric: prod-lor1
x-content-type-options: nosniff
x-li-pop: prod-lor1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAYKSm5oUplGdqfFH9sBQQ==
content-length: 22037
remote-cache-status: TCP_HIT, TCP_HIT
date: Tue, 28 Nov 2023 18:43:27 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2
static.licdn.com/sc/h/es8jfua30moj789rlzkfx9heo
200 OK 64 kB URL GET HTTP/2 static.licdn.com/sc/h/es8jfua30moj789rlzkfx9heo
IP
ASN #20940 Akamai International B.V.
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash a041ea63e8e2c42dba82d2650b617e66
d8f25b3c769df6ec8ecc2dab2d4a67f255bc9956
bd3580fa64a24a72f97df0f382cb2d529568062394f30db2ade926fc2c92f814
GET /sc/h/es8jfua30moj789rlzkfx9heo HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Play
expires: Thu, 31 Oct 2024 16:42:04 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 00060919f37e604d4645fbf7febc72c6
x-li-fabric: prod-lor1
x-content-type-options: nosniff
x-li-pop: prod-lor1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAYJGfN+YE1GRfv3/rxyxg==
content-length: 64122
remote-cache-status: TCP_HIT, TCP_HIT
date: Tue, 28 Nov 2023 18:43:27 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2
static.licdn.com/sc/h/8z6rxr4cu3kb0bf0f6w0l7uvs
200 OK 57 kB URL GET HTTP/2 static.licdn.com/sc/h/8z6rxr4cu3kb0bf0f6w0l7uvs
IP
ASN #20940 Akamai International B.V.
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 2d65d654153b49b1b18d8f4321ca5082
744f406fafd5882170510fe3e91c566e2b4bea61
60b563ab65efeb6eadf0b815d1808c01b7b71287c4415f357a8701dbc3c47fd3
GET /sc/h/8z6rxr4cu3kb0bf0f6w0l7uvs HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Play
expires: Tue, 26 Nov 2024 19:24:59 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 00060b274200135b17d5e43f64acf9bc
x-li-fabric: prod-lva1
x-content-type-options: nosniff
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAYLJ0IAE1sX1eQ/ZKz5vA==
content-length: 57041
remote-cache-status: TCP_HIT, TCP_HIT
date: Tue, 28 Nov 2023 18:43:27 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2
static.licdn.com/sc/h/473v2cdto9klp3y6gfjcs28u2
200 OK 16 kB URL GET HTTP/2 static.licdn.com/sc/h/473v2cdto9klp3y6gfjcs28u2
IP
ASN #20940 Akamai International B.V.
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
File type C source, Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash 77476e9f4544d16e10921cb9d56067f3
22677d2df42eec873802245ec72bbd8b6896f324
fb9b509d020c4c45ad497de7c4f7d1b22b4e7dc62339927fbf7e32e227932cb7
GET /sc/h/473v2cdto9klp3y6gfjcs28u2 HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Play
expires: Wed, 09 Oct 2024 22:24:14 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 000607642ab06911a68496a4a7b2777b
x-li-fabric: prod-ltx1
x-content-type-options: nosniff
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAYHZCqwaRGmhJakp7J3ew==
content-length: 15685
remote-cache-status: TCP_HIT, TCP_HIT, TCP_HIT
date: Tue, 28 Nov 2023 18:43:27 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2
static.licdn.com/sc/h/55ggxxse8uyjdh2x78ht3j40q
200 OK 5.5 kB URL HEAD HTTP/2 static.licdn.com/sc/h/55ggxxse8uyjdh2x78ht3j40q
IP
ASN #20940 Akamai International B.V.
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
File type PNG image data, 114 x 114, 8-bit/color RGBA, non-interlaced\012- data
Hash e3eae9467d41fa15bc1d2a03a4d47a53
2cdb3230a055bc0b402bdcd4415553c964da1a35
7ebe33084a6e722927ef76ff3c583b1bae3ff27b6a48bf921d5de4aeebb56c62
GET /sc/h/55ggxxse8uyjdh2x78ht3j40q HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: Play
expires: Mon, 13 Nov 2023 10:13:14 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: image/png
x-fs-uuid: 0005ed575eeddc35f2f8b31ba0e49699
x-li-fabric: prod-lva1
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXtV17t3DXy+LMboOSWmQ==
content-length: 5491
remote-cache-status: TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT
x-datastream-cache-status: 1
date: Tue, 28 Nov 2023 18:43:27 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2
static.licdn.com/sc/h/9lb1g1kp916tat669q9r5g2kz
799 B URL GET static.licdn.com/sc/h/9lb1g1kp916tat669q9r5g2kz
IP
ASN #20940 Akamai International B.V.
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
File type MS Windows icon resource - 4 icons, 64x64, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 3d0e5c05903cec0bc8e3fe0cda552745
1b513503c65572f0787a14cc71018bd34f11b661
42a498dc5f62d81801f8e753fc9a50af5bc1aabda8ab8b2960dce48211d7c023
GET /sc/h/9lb1g1kp916tat669q9r5g2kz HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: Play
expires: Thu, 18 Jan 2024 14:35:22 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: image/x-icon
x-fs-uuid: 0005f28ab9f6d1c8aaa7ff931cd84e27
x-li-fabric: prod-ltx1
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXyirn20ciqp/+THNhOJw==
content-length: 799
x-datastream-cache-status: 1
remote-cache-status: TCP_HIT, TCP_HIT
date: Tue, 28 Nov 2023 18:43:27 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2
www.linkedin.com/li/track
200 OK 0 B URL POST HTTP/2 www.linkedin.com/li/track
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - LinkedIn
POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 683
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Cookie: JSESSIONID=ajax:0132359112985502551; lang=v=2&lang=en-us; bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; bscookie="v=1&20231128184326e9bf9b43-bbcd-4d23-8f45-cecbbc0cde49AQHVCfZwYv2SXSkfgpERYBGQtwne8dg6"; li_gc=MTswOzE3MDExOTcwMDY7MjswMjFiqWGPS3IOH8R1jeQGYSWOVt+gU8KR8jW30N+GHvKSig==; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2718:u=1:x=1:i=1701197006:t=1701283406:v=2:sig=AQHqD3Sk6jzMqVuarOz0T2Ud_Muj0Tea"; li_rm=AQEmvstMANfsBgAAAYwXPkhUYsjnSN6Jc8A2QOqS5hlWkmAxGAPNZB3QTS7Emc91ff4oUKGthStGvY0qCbiIrKJcXbNLM9qkjd-PM35Q8VEJdbeLGs5In1WE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAYLOstWtshMMSlCBa8tSg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 97EE1A2B7257420BAAA5D36E6CFF0ED1 Ref B: OSL30EDGE0421 Ref C: 2023-11-28T18:43:27Z
date: Tue, 28 Nov 2023 18:43:27 GMT
content-length: 0
X-Firefox-Spdy: h2
static.licdn.com/sc/h/4k6diadsezedadhkq4uxfxss1
200 OK 64 kB URL HEAD HTTP/2 static.licdn.com/sc/h/4k6diadsezedadhkq4uxfxss1
IP
ASN #20940 Akamai International B.V.
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (1354)
Hash 7554ae17c5023ecc6d0ffc1e8775bc2f
37b39540102e29993f710047ed89bbe3b47a3a2b
6101eea4239ded7503b74732d078de0de0e31d9465de3876b1641802dd299200
GET /sc/h/4k6diadsezedadhkq4uxfxss1 HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: Play
expires: Tue, 03 Oct 2023 14:38:12 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 0005ea224b137fedacd85e93086e645a
x-li-fabric: prod-ltx1
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXqIksTf+2s2F6TCG5kWg==
content-length: 63716
remote-cache-status: TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT
x-datastream-cache-status: 1
date: Tue, 28 Nov 2023 18:43:28 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2
static.licdn.com/sc/h/1gpe377m8n1eq73qveizv5onv
200 OK 13 kB URL HEAD HTTP/2 static.licdn.com/sc/h/1gpe377m8n1eq73qveizv5onv
IP
ASN #20940 Akamai International B.V.
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (7566)
Hash f5629c31bca5301ab5980247effef360
f61db978aa8c26a7001df3f7600515b9f07f5231
c852b1105eb000028e9b27677996f8d4773daa31fa1aaf663cb6ae3a6857a50a
GET /sc/h/1gpe377m8n1eq73qveizv5onv HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
expires: Thu, 20 Oct 2022 17:15:33 GMT
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
cache-control: max-age=31536000, immutable
server: Play
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 0005e71b2f2551c78bb4417189523499
x-li-fabric: prod-lva1
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXnGy8lUceLtEFxiVI0mQ==
content-length: 13154
remote-cache-status: TCP_HIT
x-datastream-cache-status: 1
date: Tue, 28 Nov 2023 18:43:28 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2
www.linkedin.com/li/track
200 OK 0 B URL POST HTTP/2 www.linkedin.com/li/track
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - LinkedIn
POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1342
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Cookie: JSESSIONID=ajax:0132359112985502551; lang=v=2&lang=en-us; bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; bscookie="v=1&20231128184326e9bf9b43-bbcd-4d23-8f45-cecbbc0cde49AQHVCfZwYv2SXSkfgpERYBGQtwne8dg6"; li_gc=MTswOzE3MDExOTcwMDY7MjswMjFiqWGPS3IOH8R1jeQGYSWOVt+gU8KR8jW30N+GHvKSig==; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2718:u=1:x=1:i=1701197006:t=1701283406:v=2:sig=AQHqD3Sk6jzMqVuarOz0T2Ud_Muj0Tea"; li_rm=AQEmvstMANfsBgAAAYwXPkhUYsjnSN6Jc8A2QOqS5hlWkmAxGAPNZB3QTS7Emc91ff4oUKGthStGvY0qCbiIrKJcXbNLM9qkjd-PM35Q8VEJdbeLGs5In1WE; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAYLOstbsniPVw6BP3Mv6g==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: FE61375054564A30819CF4B1E0931B19 Ref B: OSL30EDGE0421 Ref C: 2023-11-28T18:43:28Z
date: Tue, 28 Nov 2023 18:43:27 GMT
content-length: 0
X-Firefox-Spdy: h2
www.linkedin.com/li/track
200 OK 0 B URL POST HTTP/2 www.linkedin.com/li/track
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - LinkedIn
POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1340
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Cookie: JSESSIONID=ajax:0132359112985502551; lang=v=2&lang=en-us; bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; bscookie="v=1&20231128184326e9bf9b43-bbcd-4d23-8f45-cecbbc0cde49AQHVCfZwYv2SXSkfgpERYBGQtwne8dg6"; li_gc=MTswOzE3MDExOTcwMDY7MjswMjFiqWGPS3IOH8R1jeQGYSWOVt+gU8KR8jW30N+GHvKSig==; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2718:u=1:x=1:i=1701197006:t=1701283406:v=2:sig=AQHqD3Sk6jzMqVuarOz0T2Ud_Muj0Tea"; li_rm=AQEmvstMANfsBgAAAYwXPkhUYsjnSN6Jc8A2QOqS5hlWkmAxGAPNZB3QTS7Emc91ff4oUKGthStGvY0qCbiIrKJcXbNLM9qkjd-PM35Q8VEJdbeLGs5In1WE; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAYLOstbuPFvNkZtBCJATQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 60A28A546A0A4D20AFEAE94AF1479921 Ref B: OSL30EDGE0421 Ref C: 2023-11-28T18:43:28Z
date: Tue, 28 Nov 2023 18:43:27 GMT
content-length: 0
X-Firefox-Spdy: h2
static.licdn.com/sc/h/55ggxxse8uyjdh2x78ht3j40q
200 OK 0 B URL HEAD HTTP/2 static.licdn.com/sc/h/55ggxxse8uyjdh2x78ht3j40q
IP
ASN #20940 Akamai International B.V.
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /sc/h/55ggxxse8uyjdh2x78ht3j40q HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.linkedin.com/
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: Play
expires: Mon, 13 Nov 2023 10:13:14 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: image/png
x-fs-uuid: 0005ed575eeddc35f2f8b31ba0e49699
x-li-fabric: prod-lva1
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXtV17t3DXy+LMboOSWmQ==
content-length: 5491
remote-cache-status: TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT
x-datastream-cache-status: 1
date: Tue, 28 Nov 2023 18:43:28 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2
static.licdn.com/sc/h/9lb1g1kp916tat669q9r5g2kz
0 B URL GET static.licdn.com/sc/h/9lb1g1kp916tat669q9r5g2kz
IP
ASN #20940 Akamai International B.V.
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /sc/h/9lb1g1kp916tat669q9r5g2kz HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.linkedin.com/
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: Play
expires: Thu, 18 Jan 2024 14:35:22 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: image/x-icon
x-fs-uuid: 0005f28ab9f6d1c8aaa7ff931cd84e27
x-li-fabric: prod-ltx1
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXyirn20ciqp/+THNhOJw==
content-length: 799
x-datastream-cache-status: 1
remote-cache-status: TCP_HIT, TCP_HIT
date: Tue, 28 Nov 2023 18:43:28 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2
static.licdn.com/sc/h/4k6diadsezedadhkq4uxfxss1
200 OK 0 B URL HEAD HTTP/2 static.licdn.com/sc/h/4k6diadsezedadhkq4uxfxss1
IP
ASN #20940 Akamai International B.V.
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /sc/h/4k6diadsezedadhkq4uxfxss1 HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.linkedin.com/
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: Play
expires: Tue, 03 Oct 2023 14:38:12 GMT
cache-control: max-age=31536000, immutable
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 0005ea224b137fedacd85e93086e645a
x-li-fabric: prod-ltx1
x-li-pop: prod-ltx1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXqIksTf+2s2F6TCG5kWg==
content-length: 63716
remote-cache-status: TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT, TCP_HIT
x-datastream-cache-status: 1
date: Tue, 28 Nov 2023 18:43:28 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2
static.licdn.com/sc/h/1gpe377m8n1eq73qveizv5onv
200 OK 0 B URL HEAD HTTP/2 static.licdn.com/sc/h/1gpe377m8n1eq73qveizv5onv
IP
ASN #20940 Akamai International B.V.
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectstatic-exp1.licdn.com
FingerprintA4:83:15:AF:E8:24:5C:22:E6:8D:67:8F:10:52:F1:9D:B4:3A:90:23
ValidityFri, 17 Mar 2023 00:00:00 GMT - Tue, 19 Mar 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /sc/h/1gpe377m8n1eq73qveizv5onv HTTP/1.1
Host: static.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.linkedin.com/
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
expires: Thu, 20 Oct 2022 17:15:33 GMT
last-modified: Mon, 05 Nov 2012 04:00:51 GMT
cache-control: max-age=31536000, immutable
server: Play
content-encoding: br
x-li-static-content: 1
content-type: text/javascript
x-fs-uuid: 0005e71b2f2551c78bb4417189523499
x-li-fabric: prod-lva1
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
access-control-expose-headers: X-CDN, X-CDN-Client-IP-Version, X-CDN-Proto, X-Cache, X-CDN-RCODE
x-li-uuid: AAXnGy8lUceLtEFxiVI0mQ==
content-length: 13154
remote-cache-status: TCP_HIT
x-datastream-cache-status: 1
date: Tue, 28 Nov 2023 18:43:28 GMT
x-cdn-proto: HTTP2
x-cdn-client-ip-version: IPV4
timing-allow-origin: *
access-control-allow-origin: *
x-cdn: AKAM
X-Firefox-Spdy: h2
www.linkedin.com/li/track
200 OK 0 B URL POST HTTP/2 www.linkedin.com/li/track
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - LinkedIn
POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1351
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Cookie: JSESSIONID=ajax:0132359112985502551; lang=v=2&lang=en-us; bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; bscookie="v=1&20231128184326e9bf9b43-bbcd-4d23-8f45-cecbbc0cde49AQHVCfZwYv2SXSkfgpERYBGQtwne8dg6"; li_gc=MTswOzE3MDExOTcwMDY7MjswMjFiqWGPS3IOH8R1jeQGYSWOVt+gU8KR8jW30N+GHvKSig==; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2718:u=1:x=1:i=1701197006:t=1701283406:v=2:sig=AQHqD3Sk6jzMqVuarOz0T2Ud_Muj0Tea"; li_rm=AQEmvstMANfsBgAAAYwXPkhUYsjnSN6Jc8A2QOqS5hlWkmAxGAPNZB3QTS7Emc91ff4oUKGthStGvY0qCbiIrKJcXbNLM9qkjd-PM35Q8VEJdbeLGs5In1WE; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAYLOstdzSKAhPxdTBlkIg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: F92F55BD01784A948C9B9432017048AA Ref B: OSL30EDGE0421 Ref C: 2023-11-28T18:43:28Z
date: Tue, 28 Nov 2023 18:43:27 GMT
content-length: 0
X-Firefox-Spdy: h2
www.linkedin.com/cookie-consent/
200 OK 0 B URL POST HTTP/2 www.linkedin.com/cookie-consent/
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - LinkedIn
POST /cookie-consent/ HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 74
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Cookie: JSESSIONID=ajax:0132359112985502551; lang=v=2&lang=en-us; bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; bscookie="v=1&20231128184326e9bf9b43-bbcd-4d23-8f45-cecbbc0cde49AQHVCfZwYv2SXSkfgpERYBGQtwne8dg6"; li_gc=MTswOzE3MDExOTcwMDY7MjswMjFiqWGPS3IOH8R1jeQGYSWOVt+gU8KR8jW30N+GHvKSig==; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2718:u=1:x=1:i=1701197006:t=1701283406:v=2:sig=AQHqD3Sk6jzMqVuarOz0T2Ud_Muj0Tea"; li_rm=AQEmvstMANfsBgAAAYwXPkhUYsjnSN6Jc8A2QOqS5hlWkmAxGAPNZB3QTS7Emc91ff4oUKGthStGvY0qCbiIrKJcXbNLM9qkjd-PM35Q8VEJdbeLGs5In1WE; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: li_gc=MTs0MjsxNzAxMTk3MDA4OzI7MDIxdw8I9pqaGwmdcfpTjZ63YgGo72nnbIfMqUclJzi/S0k=; Max-Age=15552000; Expires=Sun, 26 May 2024 18:43:28 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; domain=.linkedin.com; Path=/; Secure; Expires=Wed, 27-Nov-2024 18:43:28 GMT; SameSite=None
bscookie="v=1&20231128184326e9bf9b43-bbcd-4d23-8f45-cecbbc0cde49AQHVCfZwYv2SXSkfgpERYBGQtwne8dg6"; domain=.www.linkedin.com; Path=/; Secure; Expires=Wed, 27-Nov-2024 18:43:28 GMT; HttpOnly; SameSite=None
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; connect-src 'self' *.licdn.com *.linkedin.com cdn.linkedin.oribi.io dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.microsoft.com *.adnxs.com; script-src 'report-sample' 'sha256-SSoodjUD3LGm2FfFCVHGqEb8D4UM3OOigidT2UKDcYg=' 'sha256-cKTgdnmO6+hXd85a9wKg1effVfVzenUAtUCyOKY9bQE=' 'sha256-DwtT8+ZZKpxH9pqZNAmJ3GdbLAh5SsYaXR3omTXPCns=' 'sha256-sV9jZa797T0QWBzcU/CNd4tpBhTnh+TFdLnfjlitl28=' 'sha256-aa/Q8CRBDSqTQbCIyioPhZaz+G+dbPyu7BzsjInEmiU=' 'sha256-THuVhwbXPeTR0HszASqMOnIyxqEgvGyBwSPBKBF/iMc=' 'sha256-zTIusdVJJeXz9+iox2a+pdDglzbpRpFVRzEwvW4AONk=' 'sha256-iC8MPqNLw0FDnsBf4DlSkFLNTwhkI85aouiAEB819ic=' 'sha256-2EqrEvcPzl8c6/TSGVvaVMEe7lg700MAz/te4/3kTYY=' 'sha256-y5uW69VItKj51mcc7UD9qfptDVUqicZL+bItEpvVNDw=' 'sha256-DatsFGoJ8gFkzzxo47Ou76WZ+3QBPOQHtBu9p9b3DhA=' 'sha256-k95cyM8gFgPziZe5VQ2IvJvBUVyd5zFt2CokIUwqdHE=' 'sha256-PyCXNcEkzRWqbiNr087fizmiBBrq9O6GGD8eV3P09Ik=' 'sha256-2SQ55Erm3CPCb+k03EpNxU9bdV3XL9TnVTriDs7INZ4=' 'sha256-S/KSPe186K/1B0JEjbIXcCdpB97krdzX05S+dHnQjUs=' 'sha256-3RIGhhApBii1KY+aW1xk7kFyoQY8vSVE5DfT7E9SJUc=' 'sha256-9pXOIwF4N0gPltLd3AI69lkCjSC2H/Eb3sc5zdmUyYU=' 'sha256-jou6v/Nleyzoc+LXktAv1Fp8M807dVVxy7E/yzVljHc=' 'sha256-6E4e/3dSvj/8JZT2S2yR91mspqM6MyOpKl5lrhHsZa8=' 'sha256-3woF8BZ54TeXM+czaH3aXoaJsVpiamuAKFsXDykAR/Q=' 'sha256-vIfNcKb8ixJg1cfJIoNNYjWcm0lezj1/XpUNFiZyVsU=' 'sha256-cLsHUHFgT/VGX04cZrJ9xgm4HbzTR7ptutkxK+7BlMk=' 'sha256-BwU8jMnQYUhjOpsDVABpfddV/DlP1ZYrFcTumYw7x54=' 'sha256-wz6ika9i3WU3bpUPdhYDZeO/NrDQniDyiscN0LWnyaY=' 'sha256-wy4DvlEW9PHPIGvQJW6Wv4woBSa/0LJHs8LHsBVVXCs=' 'sha256-065A0cJTDQ+hyKvufSL/flW02hIbgLndOINLRWux6To=' 'sha256-Ga5SLB8hPdWUE8Wb6LgZ05D9Z5vrdLAaPbDBW2m3BI8=' static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com snap.licdn.com; img-src data: blob: * android-webview-video-poster:; font-src data: *; style-src 'self' 'unsafe-inline' static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com; media-src 'self' *.licdn.com *.lynda.com; worker-src 'self' blob: static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com; frame-src 'self' www.youtube.com/embed/ www.youtube-nocookie.com/embed/ lnkd.demdex.net smartlock.google.com accounts.google.com player.vimeo.com *.linkedin.com www.slideshare.net *.megaphone.fm *.omny.fm *.sounder.fm msit.powerbi.com app.powerbi.com linkedin.github.io *.licdn.com *.adnxs.com acdn.adnxs-simple.com radar.cedexis.com; frame-ancestors 'self' *.www.linkedin.com:*; manifest-src 'self'; report-uri https://www.linkedin.com/security/csp?f=default
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAYLOstd1B1Y8fDh41d8MA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: AD454B424AB44528B8B5283167F9DDFB Ref B: OSL30EDGE0421 Ref C: 2023-11-28T18:43:28Z
date: Tue, 28 Nov 2023 18:43:28 GMT
content-length: 0
X-Firefox-Spdy: h2
www.linkedin.com/li/track
200 OK 0 B URL POST HTTP/2 www.linkedin.com/li/track
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - LinkedIn
POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1511
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Cookie: JSESSIONID=ajax:0132359112985502551; lang=v=2&lang=en-us; bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; bscookie="v=1&20231128184326e9bf9b43-bbcd-4d23-8f45-cecbbc0cde49AQHVCfZwYv2SXSkfgpERYBGQtwne8dg6"; li_gc=MTswOzE3MDExOTcwMDY7MjswMjFiqWGPS3IOH8R1jeQGYSWOVt+gU8KR8jW30N+GHvKSig==; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2718:u=1:x=1:i=1701197006:t=1701283406:v=2:sig=AQHqD3Sk6jzMqVuarOz0T2Ud_Muj0Tea"; li_rm=AQEmvstMANfsBgAAAYwXPkhUYsjnSN6Jc8A2QOqS5hlWkmAxGAPNZB3QTS7Emc91ff4oUKGthStGvY0qCbiIrKJcXbNLM9qkjd-PM35Q8VEJdbeLGs5In1WE; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAYLOsteSVIOzLKch9QXUg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: C5AFE633511F44DAAA1C80FC28AE8C57 Ref B: OSL30EDGE0421 Ref C: 2023-11-28T18:43:28Z
date: Tue, 28 Nov 2023 18:43:28 GMT
content-length: 0
X-Firefox-Spdy: h2
www.linkedin.com/li/track
200 OK 0 B URL POST HTTP/2 www.linkedin.com/li/track
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - LinkedIn
POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1456
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Cookie: JSESSIONID=ajax:0132359112985502551; lang=v=2&lang=en-us; bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; bscookie="v=1&20231128184326e9bf9b43-bbcd-4d23-8f45-cecbbc0cde49AQHVCfZwYv2SXSkfgpERYBGQtwne8dg6"; li_gc=MTswOzE3MDExOTcwMDY7MjswMjFiqWGPS3IOH8R1jeQGYSWOVt+gU8KR8jW30N+GHvKSig==; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2718:u=1:x=1:i=1701197006:t=1701283406:v=2:sig=AQHqD3Sk6jzMqVuarOz0T2Ud_Muj0Tea"; li_rm=AQEmvstMANfsBgAAAYwXPkhUYsjnSN6Jc8A2QOqS5hlWkmAxGAPNZB3QTS7Emc91ff4oUKGthStGvY0qCbiIrKJcXbNLM9qkjd-PM35Q8VEJdbeLGs5In1WE; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAYLOste7QPHoPb6s1zg6g==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: D2A2153C34554B11AA9B200EBC81B7BC Ref B: OSL30EDGE0421 Ref C: 2023-11-28T18:43:28Z
date: Tue, 28 Nov 2023 18:43:28 GMT
content-length: 0
X-Firefox-Spdy: h2
www.linkedin.com/li/track
200 OK 0 B URL POST HTTP/2 www.linkedin.com/li/track
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - LinkedIn
POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 773
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Cookie: JSESSIONID=ajax:0132359112985502551; lang=v=2&lang=en-us; bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; bscookie="v=1&20231128184326e9bf9b43-bbcd-4d23-8f45-cecbbc0cde49AQHVCfZwYv2SXSkfgpERYBGQtwne8dg6"; li_gc=MTswOzE3MDExOTcwMDY7MjswMjFiqWGPS3IOH8R1jeQGYSWOVt+gU8KR8jW30N+GHvKSig==; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2718:u=1:x=1:i=1701197006:t=1701283406:v=2:sig=AQHqD3Sk6jzMqVuarOz0T2Ud_Muj0Tea"; li_rm=AQEmvstMANfsBgAAAYwXPkhUYsjnSN6Jc8A2QOqS5hlWkmAxGAPNZB3QTS7Emc91ff4oUKGthStGvY0qCbiIrKJcXbNLM9qkjd-PM35Q8VEJdbeLGs5In1WE; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAYLOste30fduKfxCXT2gw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 5AA050942B8643A9AF9E26BA6B65CB3B Ref B: OSL30EDGE0421 Ref C: 2023-11-28T18:43:28Z
date: Tue, 28 Nov 2023 18:43:28 GMT
content-length: 0
X-Firefox-Spdy: h2
www.linkedin.com/li/track
200 OK 0 B URL POST HTTP/2 www.linkedin.com/li/track
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - LinkedIn
POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Csrf-Token: ajax:0132359112985502551
Content-Length: 672
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Cookie: JSESSIONID=ajax:0132359112985502551; lang=v=2&lang=en-us; bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; bscookie="v=1&20231128184326e9bf9b43-bbcd-4d23-8f45-cecbbc0cde49AQHVCfZwYv2SXSkfgpERYBGQtwne8dg6"; li_gc=MTs0MjsxNzAxMTk3MDA4OzI7MDIxdw8I9pqaGwmdcfpTjZ63YgGo72nnbIfMqUclJzi/S0k=; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2718:u=1:x=1:i=1701197006:t=1701283406:v=2:sig=AQHqD3Sk6jzMqVuarOz0T2Ud_Muj0Tea"; li_rm=AQEmvstMANfsBgAAAYwXPkhUYsjnSN6Jc8A2QOqS5hlWkmAxGAPNZB3QTS7Emc91ff4oUKGthStGvY0qCbiIrKJcXbNLM9qkjd-PM35Q8VEJdbeLGs5In1WE; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAYLOstgkyJRLIZ7Hpxb4g==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 667A9D453782402485CD38CAE043B6C0 Ref B: OSL30EDGE0421 Ref C: 2023-11-28T18:43:28Z
date: Tue, 28 Nov 2023 18:43:28 GMT
content-length: 0
X-Firefox-Spdy: h2
www.linkedin.com/li/track
200 OK 0 B URL POST HTTP/2 www.linkedin.com/li/track
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - LinkedIn
POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Csrf-Token: ajax:0132359112985502551
Content-Length: 1361
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Cookie: JSESSIONID=ajax:0132359112985502551; lang=v=2&lang=en-us; bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; bscookie="v=1&20231128184326e9bf9b43-bbcd-4d23-8f45-cecbbc0cde49AQHVCfZwYv2SXSkfgpERYBGQtwne8dg6"; li_gc=MTs0MjsxNzAxMTk3MDA4OzI7MDIxdw8I9pqaGwmdcfpTjZ63YgGo72nnbIfMqUclJzi/S0k=; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2718:u=1:x=1:i=1701197006:t=1701283406:v=2:sig=AQHqD3Sk6jzMqVuarOz0T2Ud_Muj0Tea"; li_rm=AQEmvstMANfsBgAAAYwXPkhUYsjnSN6Jc8A2QOqS5hlWkmAxGAPNZB3QTS7Emc91ff4oUKGthStGvY0qCbiIrKJcXbNLM9qkjd-PM35Q8VEJdbeLGs5In1WE; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAYLOstglwd6m9XyknAoJA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 03EA693E36AF44CA84A6537955A0999C Ref B: OSL30EDGE0421 Ref C: 2023-11-28T18:43:28Z
date: Tue, 28 Nov 2023 18:43:28 GMT
content-length: 0
X-Firefox-Spdy: h2
www.linkedin.com/li/track
200 OK 0 B URL POST HTTP/2 www.linkedin.com/li/track
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - LinkedIn
POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Csrf-Token: ajax:0132359112985502551
Content-Length: 10083
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Cookie: JSESSIONID=ajax:0132359112985502551; lang=v=2&lang=en-us; bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; bscookie="v=1&20231128184326e9bf9b43-bbcd-4d23-8f45-cecbbc0cde49AQHVCfZwYv2SXSkfgpERYBGQtwne8dg6"; li_gc=MTs0MjsxNzAxMTk3MDA4OzI7MDIxdw8I9pqaGwmdcfpTjZ63YgGo72nnbIfMqUclJzi/S0k=; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2718:u=1:x=1:i=1701197006:t=1701283406:v=2:sig=AQHqD3Sk6jzMqVuarOz0T2Ud_Muj0Tea"; li_rm=AQEmvstMANfsBgAAAYwXPkhUYsjnSN6Jc8A2QOqS5hlWkmAxGAPNZB3QTS7Emc91ff4oUKGthStGvY0qCbiIrKJcXbNLM9qkjd-PM35Q8VEJdbeLGs5In1WE; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAYLOstgnz3vqqzISxqVXQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 28696BB1BF9342BE9AB2F7638AAC4EEC Ref B: OSL30EDGE0421 Ref C: 2023-11-28T18:43:28Z
date: Tue, 28 Nov 2023 18:43:28 GMT
content-length: 0
X-Firefox-Spdy: h2
www.linkedin.com/li/track
200 OK 0 B URL POST HTTP/2 www.linkedin.com/li/track
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - LinkedIn
POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Csrf-Token: ajax:0132359112985502551
Content-Length: 787
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Cookie: JSESSIONID=ajax:0132359112985502551; lang=v=2&lang=en-us; bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; bscookie="v=1&20231128184326e9bf9b43-bbcd-4d23-8f45-cecbbc0cde49AQHVCfZwYv2SXSkfgpERYBGQtwne8dg6"; li_gc=MTs0MjsxNzAxMTk3MDA4OzI7MDIxdw8I9pqaGwmdcfpTjZ63YgGo72nnbIfMqUclJzi/S0k=; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2718:u=1:x=1:i=1701197006:t=1701283406:v=2:sig=AQHqD3Sk6jzMqVuarOz0T2Ud_Muj0Tea"; li_rm=AQEmvstMANfsBgAAAYwXPkhUYsjnSN6Jc8A2QOqS5hlWkmAxGAPNZB3QTS7Emc91ff4oUKGthStGvY0qCbiIrKJcXbNLM9qkjd-PM35Q8VEJdbeLGs5In1WE; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAYLOstiSuS4mhN0C5XQ2A==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: A8824ECF189F4FAAB7BEBD688C042453 Ref B: OSL30EDGE0421 Ref C: 2023-11-28T18:43:28Z
date: Tue, 28 Nov 2023 18:43:28 GMT
content-length: 0
X-Firefox-Spdy: h2
www.linkedin.com/li/track
200 OK 0 B URL POST HTTP/2 www.linkedin.com/li/track
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - LinkedIn
POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 11829
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Cookie: JSESSIONID=ajax:0132359112985502551; lang=v=2&lang=en-us; bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; bscookie="v=1&20231128184326e9bf9b43-bbcd-4d23-8f45-cecbbc0cde49AQHVCfZwYv2SXSkfgpERYBGQtwne8dg6"; li_gc=MTs0MjsxNzAxMTk3MDA4OzI7MDIxdw8I9pqaGwmdcfpTjZ63YgGo72nnbIfMqUclJzi/S0k=; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2718:u=1:x=1:i=1701197006:t=1701283406:v=2:sig=AQHqD3Sk6jzMqVuarOz0T2Ud_Muj0Tea"; li_rm=AQEmvstMANfsBgAAAYwXPkhUYsjnSN6Jc8A2QOqS5hlWkmAxGAPNZB3QTS7Emc91ff4oUKGthStGvY0qCbiIrKJcXbNLM9qkjd-PM35Q8VEJdbeLGs5In1WE; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAYLOstjaVD5XqPBMaOCsQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 5CCB215311E14D339939ED5737E9BD64 Ref B: OSL30EDGE0421 Ref C: 2023-11-28T18:43:28Z
date: Tue, 28 Nov 2023 18:43:28 GMT
content-length: 0
X-Firefox-Spdy: h2
fonts.gstatic.com/s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94YtzCwM.ttf
200 OK 27 kB URL GET HTTP/2 fonts.gstatic.com/s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94YtzCwM.ttf
IP
Requested by https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=302&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_12193_532556&as=qxH7Z0vL%2Bo1CftRKtgKOGg&hl=en_US
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type TrueType Font data, 17 tables, 1st "GDEF", 7 names, Microsoft, language 0x409, Copyright 2015 Google LLC. All Rights Reserved.Google Sans MediumRegularGoogle;GoogleSans-Medium\012- data
Hash 9ecc1a07aa9e5e87f04d31b49ca09897
a030a565d2168e505861d6f1de260dc1adf8b77b
ebeace42646aa327b1fa6225f70120658993d4796cc9103484a6f068d3a58a6d
GET /s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94YtzCwM.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://accounts.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27431
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Nov 2023 21:36:53 GMT
expires: Thu, 21 Nov 2024 21:36:53 GMT
cache-control: public, max-age=31536000
age: 507995
last-modified: Mon, 22 Apr 2019 23:43:31 GMT
content-type: font/ttf
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owps.ttf
200 OK 27 kB URL GET HTTP/2 fonts.gstatic.com/s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owps.ttf
IP
Requested by https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=302&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_12193_532556&as=qxH7Z0vL%2Bo1CftRKtgKOGg&hl=en_US
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type TrueType Font data, 17 tables, 1st "GDEF", 7 names, Microsoft, language 0x409, Copyright 2015 Google LLC. All Rights Reserved.Google SansRegularGoogle;GoogleSans-RegularGoogle\012- data
Hash 20f7180ebc95ade510a7fbd4cbdc35b6
6cfc5afa73095577a20461de09d2a8f4b34d80e0
8087cf253743d85d9153ba12ce624c2e460e966c40a61928b3a036a2d452f45a
GET /s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owps.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://accounts.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Nov 2023 23:21:49 GMT
expires: Fri, 22 Nov 2024 23:21:49 GMT
cache-control: public, max-age=31536000
age: 415299
last-modified: Mon, 22 Apr 2019 23:42:54 GMT
content-type: font/ttf
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
platform.linkedin.com/litms/utag/checkpoint-frontend/utag.js?cb=1701196800000
200 OK 42 kB URL GET HTTP/2 platform.linkedin.com/litms/utag/checkpoint-frontend/utag.js?cb=1701196800000
IP
ASN #20940 Akamai International B.V.
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectplatform.linkedin.com
Fingerprint4B:93:3D:B1:BC:00:2B:2E:AE:1F:AE:FD:0C:60:BD:19:AB:04:FE:CC
ValidityWed, 17 May 2023 00:00:00 GMT - Thu, 16 May 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (34128)
Hash db6c2bc7d90fd8644a138ef1a5a12261
9d8caf31e893a4b8e423ba663f7cc3d1f0eafe6a
48b3ee4a9140dc93948400bce8c0dd6ee916abab061d2d4ff3e36af63f8f9851
GET /litms/utag/checkpoint-frontend/utag.js?cb=1701196800000 HTTP/1.1
Host: platform.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Cookie: lang=v=2&lang=en-us; bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; li_gc=MTs0MjsxNzAxMTk3MDA4OzI7MDIxdw8I9pqaGwmdcfpTjZ63YgGo72nnbIfMqUclJzi/S0k=; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2718:u=1:x=1:i=1701197006:t=1701283406:v=2:sig=AQHqD3Sk6jzMqVuarOz0T2Ud_Muj0Tea"
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
etag: "1485a4529309ca2e94363ffa1d9abd44bf30abe1"
server: Play
accept-ranges: bytes
cache-control: max-age=300
last-modified: Tue, 28 Nov 2023 00:48:52 GMT
content-encoding: gzip
content-type: application/javascript; charset=utf-8
x-li-fabric: prod-lor1
x-content-type-options: nosniff
x-li-pop: prod-lor1-x
x-li-proto: http/1.1
x-li-uuid: AAYLOrgW4NfvuxEw6ArkCQ==
content-length: 42150
date: Tue, 28 Nov 2023 18:43:28 GMT
vary: Accept-Encoding
x-cdn-client-ip-version: IPV4
x-cdn: AKAM
X-Firefox-Spdy: h2
www.linkedin.com/litms/api/metadata/user
200 OK 226 B URL GET HTTP/2 www.linkedin.com/litms/api/metadata/user
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (345), with no line terminators
Hash ccb8e9f87744d3b614cadf7b951ae5ea
da1e0528d0b7377a965b569dae93a8ea0e8dbacb
6b6676ca025aaa38464ebd3b1a6c642e3d7feef94b66595fa183f0d76da5f222
Analyzer Verdict Alert urlquery phishing Phishing - LinkedIn
GET /litms/api/metadata/user HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Cookie: JSESSIONID=ajax:0132359112985502551; lang=v=2&lang=en-us; bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; bscookie="v=1&20231128184326e9bf9b43-bbcd-4d23-8f45-cecbbc0cde49AQHVCfZwYv2SXSkfgpERYBGQtwne8dg6"; li_gc=MTs0MjsxNzAxMTk3MDA4OzI7MDIxdw8I9pqaGwmdcfpTjZ63YgGo72nnbIfMqUclJzi/S0k=; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2718:u=1:x=1:i=1701197006:t=1701283406:v=2:sig=AQHqD3Sk6jzMqVuarOz0T2Ud_Muj0Tea"; li_rm=AQEmvstMANfsBgAAAYwXPkhUYsjnSN6Jc8A2QOqS5hlWkmAxGAPNZB3QTS7Emc91ff4oUKGthStGvY0qCbiIrKJcXbNLM9qkjd-PM35Q8VEJdbeLGs5In1WE; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-length: 226
content-type: application/json
content-encoding: gzip
expires: Thu, 01 Jan 1970 00:00:00 GMT
vary: Origin,Accept-Encoding
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; connect-src 'self' *.licdn.com *.linkedin.com cdn.linkedin.oribi.io dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.microsoft.com *.adnxs.com; script-src 'report-sample' 'sha256-SSoodjUD3LGm2FfFCVHGqEb8D4UM3OOigidT2UKDcYg=' 'sha256-cKTgdnmO6+hXd85a9wKg1effVfVzenUAtUCyOKY9bQE=' 'sha256-DwtT8+ZZKpxH9pqZNAmJ3GdbLAh5SsYaXR3omTXPCns=' 'sha256-sV9jZa797T0QWBzcU/CNd4tpBhTnh+TFdLnfjlitl28=' 'sha256-aa/Q8CRBDSqTQbCIyioPhZaz+G+dbPyu7BzsjInEmiU=' 'sha256-THuVhwbXPeTR0HszASqMOnIyxqEgvGyBwSPBKBF/iMc=' 'sha256-zTIusdVJJeXz9+iox2a+pdDglzbpRpFVRzEwvW4AONk=' 'sha256-iC8MPqNLw0FDnsBf4DlSkFLNTwhkI85aouiAEB819ic=' 'sha256-2EqrEvcPzl8c6/TSGVvaVMEe7lg700MAz/te4/3kTYY=' 'sha256-y5uW69VItKj51mcc7UD9qfptDVUqicZL+bItEpvVNDw=' 'sha256-DatsFGoJ8gFkzzxo47Ou76WZ+3QBPOQHtBu9p9b3DhA=' 'sha256-k95cyM8gFgPziZe5VQ2IvJvBUVyd5zFt2CokIUwqdHE=' 'sha256-PyCXNcEkzRWqbiNr087fizmiBBrq9O6GGD8eV3P09Ik=' 'sha256-2SQ55Erm3CPCb+k03EpNxU9bdV3XL9TnVTriDs7INZ4=' 'sha256-S/KSPe186K/1B0JEjbIXcCdpB97krdzX05S+dHnQjUs=' 'sha256-3RIGhhApBii1KY+aW1xk7kFyoQY8vSVE5DfT7E9SJUc=' 'sha256-9pXOIwF4N0gPltLd3AI69lkCjSC2H/Eb3sc5zdmUyYU=' 'sha256-jou6v/Nleyzoc+LXktAv1Fp8M807dVVxy7E/yzVljHc=' 'sha256-6E4e/3dSvj/8JZT2S2yR91mspqM6MyOpKl5lrhHsZa8=' 'sha256-3woF8BZ54TeXM+czaH3aXoaJsVpiamuAKFsXDykAR/Q=' 'sha256-vIfNcKb8ixJg1cfJIoNNYjWcm0lezj1/XpUNFiZyVsU=' 'sha256-cLsHUHFgT/VGX04cZrJ9xgm4HbzTR7ptutkxK+7BlMk=' 'sha256-BwU8jMnQYUhjOpsDVABpfddV/DlP1ZYrFcTumYw7x54=' 'sha256-wz6ika9i3WU3bpUPdhYDZeO/NrDQniDyiscN0LWnyaY=' 'sha256-wy4DvlEW9PHPIGvQJW6Wv4woBSa/0LJHs8LHsBVVXCs=' 'sha256-065A0cJTDQ+hyKvufSL/flW02hIbgLndOINLRWux6To=' 'sha256-Ga5SLB8hPdWUE8Wb6LgZ05D9Z5vrdLAaPbDBW2m3BI8=' static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com snap.licdn.com; img-src data: blob: * android-webview-video-poster:; font-src data: *; style-src 'self' 'unsafe-inline' static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com; media-src 'self' *.licdn.com *.lynda.com; worker-src 'self' blob: static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com; frame-src 'self' www.youtube.com/embed/ www.youtube-nocookie.com/embed/ lnkd.demdex.net smartlock.google.com accounts.google.com player.vimeo.com *.linkedin.com www.slideshare.net *.megaphone.fm *.omny.fm *.sounder.fm msit.powerbi.com app.powerbi.com linkedin.github.io *.licdn.com *.adnxs.com acdn.adnxs-simple.com radar.cedexis.com; frame-ancestors 'self' *.www.linkedin.com:*; manifest-src 'self'; report-uri https://www.linkedin.com/security/csp?f=default
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAYLOstmzxBA5JAv9bwc4Q==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: E149CFEDC1F44466A19C50848CFFD858 Ref B: OSL30EDGE0421 Ref C: 2023-11-28T18:43:28Z
date: Tue, 28 Nov 2023 18:43:28 GMT
X-Firefox-Spdy: h2
www.linkedin.com/li/track
200 OK 0 B URL POST HTTP/2 www.linkedin.com/li/track
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - LinkedIn
POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Csrf-Token: ajax:0132359112985502551
Content-Length: 652
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Cookie: JSESSIONID=ajax:0132359112985502551; lang=v=2&lang=en-us; bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; bscookie="v=1&20231128184326e9bf9b43-bbcd-4d23-8f45-cecbbc0cde49AQHVCfZwYv2SXSkfgpERYBGQtwne8dg6"; li_gc=MTs0MjsxNzAxMTk3MDA4OzI7MDIxdw8I9pqaGwmdcfpTjZ63YgGo72nnbIfMqUclJzi/S0k=; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2718:u=1:x=1:i=1701197006:t=1701283406:v=2:sig=AQHqD3Sk6jzMqVuarOz0T2Ud_Muj0Tea"; li_rm=AQEmvstMANfsBgAAAYwXPkhUYsjnSN6Jc8A2QOqS5hlWkmAxGAPNZB3QTS7Emc91ff4oUKGthStGvY0qCbiIrKJcXbNLM9qkjd-PM35Q8VEJdbeLGs5In1WE; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAYLOstp50XQ+SmZv9+rog==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 4A3172C42A314643862BCAE0D1F8C4F8 Ref B: OSL30EDGE0421 Ref C: 2023-11-28T18:43:28Z
date: Tue, 28 Nov 2023 18:43:28 GMT
content-length: 0
X-Firefox-Spdy: h2
www.linkedin.com/li/track
200 OK 0 B URL POST HTTP/2 www.linkedin.com/li/track
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - LinkedIn
POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 670
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Cookie: JSESSIONID=ajax:0132359112985502551; lang=v=2&lang=en-us; bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; bscookie="v=1&20231128184326e9bf9b43-bbcd-4d23-8f45-cecbbc0cde49AQHVCfZwYv2SXSkfgpERYBGQtwne8dg6"; li_gc=MTs0MjsxNzAxMTk3MDA4OzI7MDIxdw8I9pqaGwmdcfpTjZ63YgGo72nnbIfMqUclJzi/S0k=; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2718:u=1:x=1:i=1701197006:t=1701283406:v=2:sig=AQHqD3Sk6jzMqVuarOz0T2Ud_Muj0Tea"; li_rm=AQEmvstMANfsBgAAAYwXPkhUYsjnSN6Jc8A2QOqS5hlWkmAxGAPNZB3QTS7Emc91ff4oUKGthStGvY0qCbiIrKJcXbNLM9qkjd-PM35Q8VEJdbeLGs5In1WE; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAYLOst0Khf4hyHRVtETEw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: CFA7582339FE4DC3B5182C3DDA99F870 Ref B: OSL30EDGE0421 Ref C: 2023-11-28T18:43:29Z
date: Tue, 28 Nov 2023 18:43:29 GMT
content-length: 0
X-Firefox-Spdy: h2
www.linkedin.com/platform-telemetry/li/apfcDf
400 Bad Request 0 B URL POST HTTP/2 www.linkedin.com/platform-telemetry/li/apfcDf
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - LinkedIn
POST /platform-telemetry/li/apfcDf HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 4882
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Cookie: JSESSIONID=ajax:0132359112985502551; lang=v=2&lang=en-us; bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; bscookie="v=1&20231128184326e9bf9b43-bbcd-4d23-8f45-cecbbc0cde49AQHVCfZwYv2SXSkfgpERYBGQtwne8dg6"; li_gc=MTs0MjsxNzAxMTk3MDA4OzI7MDIxdw8I9pqaGwmdcfpTjZ63YgGo72nnbIfMqUclJzi/S0k=; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2718:u=1:x=1:i=1701197006:t=1701283406:v=2:sig=AQHqD3Sk6jzMqVuarOz0T2Ud_Muj0Tea"; li_rm=AQEmvstMANfsBgAAAYwXPkhUYsjnSN6Jc8A2QOqS5hlWkmAxGAPNZB3QTS7Emc91ff4oUKGthStGvY0qCbiIrKJcXbNLM9qkjd-PM35Q8VEJdbeLGs5In1WE; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 400 Bad Request
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAYLOst2x/w50THsZuUFtg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 4B01EFC7DFE446598D59FD3D441F0A41 Ref B: OSL30EDGE0421 Ref C: 2023-11-28T18:43:29Z
date: Tue, 28 Nov 2023 18:43:29 GMT
content-length: 0
X-Firefox-Spdy: h2
www.linkedin.com/platform-telemetry/li/apfcDf
400 Bad Request 0 B URL POST HTTP/2 www.linkedin.com/platform-telemetry/li/apfcDf
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - LinkedIn
POST /platform-telemetry/li/apfcDf HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 4882
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Cookie: JSESSIONID=ajax:0132359112985502551; lang=v=2&lang=en-us; bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; bscookie="v=1&20231128184326e9bf9b43-bbcd-4d23-8f45-cecbbc0cde49AQHVCfZwYv2SXSkfgpERYBGQtwne8dg6"; li_gc=MTs0MjsxNzAxMTk3MDA4OzI7MDIxdw8I9pqaGwmdcfpTjZ63YgGo72nnbIfMqUclJzi/S0k=; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2718:u=1:x=1:i=1701197006:t=1701283406:v=2:sig=AQHqD3Sk6jzMqVuarOz0T2Ud_Muj0Tea"; li_rm=AQEmvstMANfsBgAAAYwXPkhUYsjnSN6Jc8A2QOqS5hlWkmAxGAPNZB3QTS7Emc91ff4oUKGthStGvY0qCbiIrKJcXbNLM9qkjd-PM35Q8VEJdbeLGs5In1WE; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 400 Bad Request
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAYLOst6k5VlLzOi053r6A==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 55DCA2D69ADA42D7BB5E4C7CC6C03AC2 Ref B: OSL30EDGE0421 Ref C: 2023-11-28T18:43:30Z
date: Tue, 28 Nov 2023 18:43:29 GMT
content-length: 0
X-Firefox-Spdy: h2
www.linkedin.com/li/track
200 OK 0 B URL POST HTTP/2 www.linkedin.com/li/track
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - LinkedIn
POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 670
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Cookie: JSESSIONID=ajax:0132359112985502551; lang=v=2&lang=en-us; bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; bscookie="v=1&20231128184326e9bf9b43-bbcd-4d23-8f45-cecbbc0cde49AQHVCfZwYv2SXSkfgpERYBGQtwne8dg6"; li_gc=MTs0MjsxNzAxMTk3MDA4OzI7MDIxdw8I9pqaGwmdcfpTjZ63YgGo72nnbIfMqUclJzi/S0k=; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2718:u=1:x=1:i=1701197006:t=1701283406:v=2:sig=AQHqD3Sk6jzMqVuarOz0T2Ud_Muj0Tea"; li_rm=AQEmvstMANfsBgAAAYwXPkhUYsjnSN6Jc8A2QOqS5hlWkmAxGAPNZB3QTS7Emc91ff4oUKGthStGvY0qCbiIrKJcXbNLM9qkjd-PM35Q8VEJdbeLGs5In1WE; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAYLOsuSho8eS6B3l/TfUg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 4134776A8EE04FA5B23F7538063E37E0 Ref B: OSL30EDGE0421 Ref C: 2023-11-28T18:43:31Z
date: Tue, 28 Nov 2023 18:43:31 GMT
content-length: 0
X-Firefox-Spdy: h2
www.linkedin.com/li/track
200 OK 0 B URL POST HTTP/2 www.linkedin.com/li/track
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - LinkedIn
POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 670
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Cookie: JSESSIONID=ajax:0132359112985502551; lang=v=2&lang=en-us; bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; bscookie="v=1&20231128184326e9bf9b43-bbcd-4d23-8f45-cecbbc0cde49AQHVCfZwYv2SXSkfgpERYBGQtwne8dg6"; li_gc=MTs0MjsxNzAxMTk3MDA4OzI7MDIxdw8I9pqaGwmdcfpTjZ63YgGo72nnbIfMqUclJzi/S0k=; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2718:u=1:x=1:i=1701197006:t=1701283406:v=2:sig=AQHqD3Sk6jzMqVuarOz0T2Ud_Muj0Tea"; li_rm=AQEmvstMANfsBgAAAYwXPkhUYsjnSN6Jc8A2QOqS5hlWkmAxGAPNZB3QTS7Emc91ff4oUKGthStGvY0qCbiIrKJcXbNLM9qkjd-PM35Q8VEJdbeLGs5In1WE; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAYLOsuxFRj+mlhmTRz/2Q==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 23886364231C4F21ABFEB66F5124C4A2 Ref B: OSL30EDGE0421 Ref C: 2023-11-28T18:43:33Z
date: Tue, 28 Nov 2023 18:43:33 GMT
content-length: 0
X-Firefox-Spdy: h2
www.linkedin.com/li/track
200 OK 0 B URL POST HTTP/2 www.linkedin.com/li/track
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - LinkedIn
POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 670
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Cookie: JSESSIONID=ajax:0132359112985502551; lang=v=2&lang=en-us; bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; bscookie="v=1&20231128184326e9bf9b43-bbcd-4d23-8f45-cecbbc0cde49AQHVCfZwYv2SXSkfgpERYBGQtwne8dg6"; li_gc=MTs0MjsxNzAxMTk3MDA4OzI7MDIxdw8I9pqaGwmdcfpTjZ63YgGo72nnbIfMqUclJzi/S0k=; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2718:u=1:x=1:i=1701197006:t=1701283406:v=2:sig=AQHqD3Sk6jzMqVuarOz0T2Ud_Muj0Tea"; li_rm=AQEmvstMANfsBgAAAYwXPkhUYsjnSN6Jc8A2QOqS5hlWkmAxGAPNZB3QTS7Emc91ff4oUKGthStGvY0qCbiIrKJcXbNLM9qkjd-PM35Q8VEJdbeLGs5In1WE; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAYLOsvPlLjdEnJtdP0sZg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 2F196B71C2AD4778B04ED2212F581A1D Ref B: OSL30EDGE0421 Ref C: 2023-11-28T18:43:35Z
date: Tue, 28 Nov 2023 18:43:35 GMT
content-length: 0
X-Firefox-Spdy: h2
www.linkedin.com/li/track
200 OK 0 B URL POST HTTP/2 www.linkedin.com/li/track
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - LinkedIn
POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 670
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Cookie: JSESSIONID=ajax:0132359112985502551; lang=v=2&lang=en-us; bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; bscookie="v=1&20231128184326e9bf9b43-bbcd-4d23-8f45-cecbbc0cde49AQHVCfZwYv2SXSkfgpERYBGQtwne8dg6"; li_gc=MTs0MjsxNzAxMTk3MDA4OzI7MDIxdw8I9pqaGwmdcfpTjZ63YgGo72nnbIfMqUclJzi/S0k=; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2718:u=1:x=1:i=1701197006:t=1701283406:v=2:sig=AQHqD3Sk6jzMqVuarOz0T2Ud_Muj0Tea"; li_rm=AQEmvstMANfsBgAAAYwXPkhUYsjnSN6Jc8A2QOqS5hlWkmAxGAPNZB3QTS7Emc91ff4oUKGthStGvY0qCbiIrKJcXbNLM9qkjd-PM35Q8VEJdbeLGs5In1WE; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAYLOsvuFlRe4LD6Ga1wHw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 2B06C3FA9A144B2BA708A49F1D9194A4 Ref B: OSL30EDGE0421 Ref C: 2023-11-28T18:43:37Z
date: Tue, 28 Nov 2023 18:43:37 GMT
content-length: 0
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true&authuser=0
200 OK 0 B URL POST HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP
Requested by https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=302&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_12193_532556&as=qxH7Z0vL%2Bo1CftRKtgKOGg&hl=en_US
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Origin: https://accounts.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://accounts.google.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Tue, 28 Nov 2023 18:43:38 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+944; expires=Thu, 27-Nov-2025 18:43:38 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Tue, 28 Nov 2023 18:43:38 GMT
cache-control: private
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true&authuser=0
200 OK 131 B URL POST HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP
Requested by https://accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=302&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_12193_532556&as=qxH7Z0vL%2Bo1CftRKtgKOGg&hl=en_US
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 453
Origin: https://accounts.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://accounts.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Tue, 28 Nov 2023 18:43:38 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+587; expires=Thu, 27-Nov-2025 18:43:38 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Tue, 28 Nov 2023 18:43:38 GMT
X-Firefox-Spdy: h2
www.linkedin.com/li/track
200 OK 0 B URL POST HTTP/2 www.linkedin.com/li/track
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - LinkedIn
POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 670
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Cookie: JSESSIONID=ajax:0132359112985502551; lang=v=2&lang=en-us; bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; bscookie="v=1&20231128184326e9bf9b43-bbcd-4d23-8f45-cecbbc0cde49AQHVCfZwYv2SXSkfgpERYBGQtwne8dg6"; li_gc=MTs0MjsxNzAxMTk3MDA4OzI7MDIxdw8I9pqaGwmdcfpTjZ63YgGo72nnbIfMqUclJzi/S0k=; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2718:u=1:x=1:i=1701197006:t=1701283406:v=2:sig=AQHqD3Sk6jzMqVuarOz0T2Ud_Muj0Tea"; li_rm=AQEmvstMANfsBgAAAYwXPkhUYsjnSN6Jc8A2QOqS5hlWkmAxGAPNZB3QTS7Emc91ff4oUKGthStGvY0qCbiIrKJcXbNLM9qkjd-PM35Q8VEJdbeLGs5In1WE; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAYLOswMpjfbA80qkhfKmQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 407C38CC715742DBA1547F73A0700401 Ref B: OSL30EDGE0421 Ref C: 2023-11-28T18:43:39Z
date: Tue, 28 Nov 2023 18:43:39 GMT
content-length: 0
X-Firefox-Spdy: h2
www.linkedin.com/li/track
200 OK 0 B URL POST HTTP/2 www.linkedin.com/li/track
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - LinkedIn
POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 670
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Cookie: JSESSIONID=ajax:0132359112985502551; lang=v=2&lang=en-us; bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; bscookie="v=1&20231128184326e9bf9b43-bbcd-4d23-8f45-cecbbc0cde49AQHVCfZwYv2SXSkfgpERYBGQtwne8dg6"; li_gc=MTs0MjsxNzAxMTk3MDA4OzI7MDIxdw8I9pqaGwmdcfpTjZ63YgGo72nnbIfMqUclJzi/S0k=; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2718:u=1:x=1:i=1701197006:t=1701283406:v=2:sig=AQHqD3Sk6jzMqVuarOz0T2Ud_Muj0Tea"; li_rm=AQEmvstMANfsBgAAAYwXPkhUYsjnSN6Jc8A2QOqS5hlWkmAxGAPNZB3QTS7Emc91ff4oUKGthStGvY0qCbiIrKJcXbNLM9qkjd-PM35Q8VEJdbeLGs5In1WE; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAYLOswrLZXzDQAcBkxc8g==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 55E01F41898B4662B99ADAE6901A4834 Ref B: OSL30EDGE0421 Ref C: 2023-11-28T18:43:41Z
date: Tue, 28 Nov 2023 18:43:41 GMT
content-length: 0
X-Firefox-Spdy: h2
www.linkedin.com/li/track
200 OK 0 B URL POST HTTP/2 www.linkedin.com/li/track
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectwww.linkedin.com
FingerprintDD:64:0D:6C:03:1D:AA:A9:68:F2:FB:0C:02:7A:52:34:27:C9:FD:D9
ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - LinkedIn
POST /li/track HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 671
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Cookie: JSESSIONID=ajax:0132359112985502551; lang=v=2&lang=en-us; bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; bscookie="v=1&20231128184326e9bf9b43-bbcd-4d23-8f45-cecbbc0cde49AQHVCfZwYv2SXSkfgpERYBGQtwne8dg6"; li_gc=MTs0MjsxNzAxMTk3MDA4OzI7MDIxdw8I9pqaGwmdcfpTjZ63YgGo72nnbIfMqUclJzi/S0k=; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2718:u=1:x=1:i=1701197006:t=1701283406:v=2:sig=AQHqD3Sk6jzMqVuarOz0T2Ud_Muj0Tea"; li_rm=AQEmvstMANfsBgAAAYwXPkhUYsjnSN6Jc8A2QOqS5hlWkmAxGAPNZB3QTS7Emc91ff4oUKGthStGvY0qCbiIrKJcXbNLM9qkjd-PM35Q8VEJdbeLGs5In1WE; li_alerts=e30=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
pragma: no-cache
content-type: text/plain; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: sameorigin
content-security-policy: default-src 'none'; frame-ancestors 'none'; form-action 'none'
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAYLOswr6e11BBaO1sUgEQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 2FAEE83C2333423787E816C4B6D51D64 Ref B: OSL30EDGE0421 Ref C: 2023-11-28T18:43:41Z
date: Tue, 28 Nov 2023 18:43:41 GMT
content-length: 0
X-Firefox-Spdy: h2
ponf.linkedin.com/pixel/tracking.png?reqid=35734d50-7c8e-4df1-90ee-2e678861fb03&pageInstance=urn%3Ali%3Apage%3Acheckpoint_lg_uasLogin%3Bmdzp+1IvTImBDyGSpWltBw%3D%3D&js=enabled
200 OK 43 B URL GET HTTP/2 ponf.linkedin.com/pixel/tracking.png?reqid=35734d50-7c8e-4df1-90ee-2e678861fb03&pageInstance=urn%3Ali%3Apage%3Acheckpoint_lg_uasLogin%3Bmdzp+1IvTImBDyGSpWltBw%3D%3D&js=enabled
IP
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerDigiCert Inc
Subjectponf.linkedin.com
Fingerprint2D:44:F8:1B:0A:DA:84:FE:D5:86:76:F7:5F:F8:46:AE:90:96:11:7F
ValidityTue, 21 Feb 2023 00:00:00 GMT - Tue, 20 Feb 2024 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pixel/tracking.png?reqid=35734d50-7c8e-4df1-90ee-2e678861fb03&pageInstance=urn%3Ali%3Apage%3Acheckpoint_lg_uasLogin%3Bmdzp+1IvTImBDyGSpWltBw%3D%3D&js=enabled HTTP/1.1
Host: ponf.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Cookie: lang=v=2&lang=en-us; bcookie="v=2&9b94f9d6-680c-4cc7-851a-da8698604ff2"; li_gc=MTswOzE3MDExOTcwMDY7MjswMjFiqWGPS3IOH8R1jeQGYSWOVt+gU8KR8jW30N+GHvKSig==; lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2718:u=1:x=1:i=1701197006:t=1701283406:v=2:sig=AQHqD3Sk6jzMqVuarOz0T2Ud_Muj0Tea"
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.20.1
date: Tue, 28 Nov 2023 18:43:19 GMT
content-type: image/gif
X-Firefox-Spdy: h2
accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=302&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_12193_532556&as=qxH7Z0vL%2Bo1CftRKtgKOGg&hl=en_US
200 OK 115 kB URL GET HTTP/2 accounts.google.com/gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=302&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_12193_532556&as=qxH7Z0vL%2Bo1CftRKtgKOGg&hl=en_US
IP
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint1E:A9:E1:96:78:1D:08:FC:96:C8:C2:34:4F:02:D3:3D:FA:9A:D2:6B
ValidityMon, 23 Oct 2023 11:25:04 GMT - Mon, 15 Jan 2024 11:25:03 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (7754)
Size 115 kB (115407 bytes)
Hash b89635d85ad57453fda43fc25d97299d
dc8b8f1912f92f5c4c43fefecfeb923b4b65f38e
43ca01e0e23fb0551c556eaba59b22fe4b05267304aea298ad0940c7b3d45ac1
GET /gsi/button?logo_alignment=center&shape=pill&size=large&text=continue_with&theme=undefined&type=undefined&width=302&client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&iframe_id=gsi_12193_532556&as=qxH7Z0vL%2Bo1CftRKtgKOGg&hl=en_US HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 28 Nov 2023 18:43:28 GMT
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: same-site
content-security-policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, script-src 'nonce-XbcQm7T64Z8F9M-USUTFEw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
accounts.google.com/gsi/status?client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&as=qxH7Z0vL%2Bo1CftRKtgKOGg
200 OK 40 B URL GET HTTP/2 accounts.google.com/gsi/status?client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&as=qxH7Z0vL%2Bo1CftRKtgKOGg
IP
Requested by https://www.linkedin.com/uas/login?session_redirect=%2Fcompany%2F1724633%3Fmkt_tok%3DODgyLVdZSi04MTgAAAGPsHs0-BTyxpOmCvHiQXw6sHdslKHUUY7FvoNZeIOAi3H53pGUUhRULAaw_2LlnAQrxO4i-cD2HsWPtp2p1vfMJn3rRHOw8ScmCYKOwLM
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint1E:A9:E1:96:78:1D:08:FC:96:C8:C2:34:4F:02:D3:3D:FA:9A:D2:6B
ValidityMon, 23 Oct 2023 11:25:04 GMT - Mon, 15 Jan 2024 11:25:03 GMT
File type ASCII text, with no line terminators
Hash 28e09fba4fce9efedea24483f5fe2b66
d620547a19ebbf87eb9506f43e023f5788af3892
05011c407c13c2360890e2682e2b0cce33b4ad2a3b7bd84a477d09f16d60d47b
GET /gsi/status?client_id=990339570472-k6nqn1tpmitg8pui82bfaun3jrpmiuhs.apps.googleusercontent.com&as=qxH7Z0vL%2Bo1CftRKtgKOGg HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.linkedin.com
DNT: 1
Connection: keep-alive
Referer: https://www.linkedin.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json; charset=utf-8
x-content-type-options: nosniff
access-control-allow-origin: https://www.linkedin.com
access-control-allow-credentials: true
access-control-allow-methods: GET
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 28 Nov 2023 18:43:28 GMT
content-disposition: attachment; filename="json.txt"; filename*=UTF-8''json.txt
content-security-policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, script-src 'nonce-H032fFYpjgjAgQ30f_lKSw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
104.17.71.206
216.58.207.227
95.101.11.184
0.0.0.0