Overview

URL athensgoldandsilver.gr/mtb/M&TBank/login.php?country=&iso=&online_id=0022be921081eb9026817403b
IP95.154.242.111
ASNIomart Cloud Services Limited
Location United Kingdom
Report completed2022-09-28 13:21:31 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-28 2 athensgoldandsilver.gr/TSPD/0856addebbab2000ba949201dad9f67efc42df64f349dd0 (...) Phishing
2022-09-28 2 athensgoldandsilver.gr/TSPD/0856addebbab2000ba949201dad9f67efc42df64f349dd0 (...) Phishing
2022-09-28 2 athensgoldandsilver.gr/ruxitagentjs_ICA2SVfhjqrux_10205201218101503.js Phishing
2022-09-28 2 athensgoldandsilver.gr/Assets/scripts/Login/Index.js Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS
Scan Date Severity Indicator Comment
2022-09-28 2 athensgoldandsilver.gr Sinkholed
2022-09-28 2 athensgoldandsilver.gr Sinkholed
2022-09-28 2 athensgoldandsilver.gr Sinkholed
2022-09-28 2 athensgoldandsilver.gr Sinkholed
2022-09-28 2 athensgoldandsilver.gr Sinkholed


Files

No files detected



Passive DNS (12)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS r3.o.lencr.org (4) 344 2020-12-02 08:52:13 UTC 2022-09-28 04:36:09 UTC 23.36.77.32
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-28 17:26:30 UTC 2022-09-28 11:00:28 UTC 143.204.55.36
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-28 04:36:06 UTC 34.117.237.239
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-28 08:57:43 UTC 93.184.220.29
mnemonic passive DNS resources.mtb.com (8) 144011 2014-11-08 14:57:30 UTC 2022-09-28 01:08:34 UTC 192.216.61.78
mnemonic passive DNS asset.mtb.com (1) 246397 2017-02-13 04:24:51 UTC 2022-09-27 23:40:04 UTC 54.230.111.64
mnemonic passive DNS athensgoldandsilver.gr (5) 0 2015-02-19 11:24:57 UTC 2022-09-27 05:40:25 UTC 95.154.242.111 Unknown ranking
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-28 05:13:47 UTC 143.204.55.49
mnemonic passive DNS ocsp.entrust.net (6) 1208 2013-07-24 12:09:14 UTC 2022-09-28 04:47:26 UTC 104.110.10.32
mnemonic passive DNS nexus.ensighten.com (1) 2786 2017-01-29 18:53:16 UTC 2022-09-28 04:59:38 UTC 54.230.111.14
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-28 05:02:28 UTC 35.162.217.251
mnemonic passive DNS img-getpocket.cdn.mozilla.net (7) 1631 2017-09-01 03:40:57 UTC 2022-09-28 08:06:38 UTC 34.120.237.76


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 95.154.242.111

Date UQ / IDS / BL URL IP
2022-09-29 22:12:54 +0000
0 - 0 - 4 athensgoldandsilver.gr/mtb/M&TBank/login.php? (...) 95.154.242.111
2022-09-29 07:38:36 +0000
0 - 0 - 4 athensgoldandsilver.gr/mtb/M&TBank/login.php? (...) 95.154.242.111
2022-09-29 06:07:58 +0000
0 - 0 - 5 athensgoldandsilver.gr/mtb/M&TBank/login.php? (...) 95.154.242.111
2022-09-28 19:12:04 +0000
0 - 0 - 9 athensgoldandsilver.gr/mtb/M&TBank/login.php? (...) 95.154.242.111
2022-09-28 18:23:42 +0000
0 - 0 - 9 athensgoldandsilver.gr/mtb/M&TBank/login.php? (...) 95.154.242.111

Last 5 reports on ASN: Iomart Cloud Services Limited

Date UQ / IDS / BL URL IP
2022-11-30 02:22:42 +0000
0 - 0 - 2 directdeliveriesni.co.uk/the-within-tale-in-c (...) 212.38.183.106
2022-11-29 18:58:27 +0000
0 - 0 - 1 dl.drp.su/updates/searcherbar/SearcherBarN.exe 87.117.231.157
2022-11-29 11:22:18 +0000
0 - 0 - 1 dl.drp.su/updates/searcherbar/SearcherBarN.exe 87.117.231.39
2022-11-29 00:43:51 +0000
0 - 0 - 2 212.38.178.27/ 212.38.178.27
2022-11-28 03:28:37 +0000
0 - 0 - 3 wukmedia.uk/assets/css 109.203.110.182

Last 5 reports on domain: athensgoldandsilver.gr

Date UQ / IDS / BL URL IP
2022-09-29 22:12:54 +0000
0 - 0 - 4 athensgoldandsilver.gr/mtb/M&TBank/login.php? (...) 95.154.242.111
2022-09-29 07:38:36 +0000
0 - 0 - 4 athensgoldandsilver.gr/mtb/M&TBank/login.php? (...) 95.154.242.111
2022-09-29 06:07:58 +0000
0 - 0 - 5 athensgoldandsilver.gr/mtb/M&TBank/login.php? (...) 95.154.242.111
2022-09-28 19:12:04 +0000
0 - 0 - 9 athensgoldandsilver.gr/mtb/M&TBank/login.php? (...) 95.154.242.111
2022-09-28 18:23:42 +0000
0 - 0 - 9 athensgoldandsilver.gr/mtb/M&TBank/login.php? (...) 95.154.242.111

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-11-30 00:38:27 +0000
1 - 0 - 7 assure5c-mtb.com/login.php?online_id=5f21d4ea (...) 34.88.227.185
2022-11-30 00:38:24 +0000
1 - 0 - 6 assure7c-mtb.com/login.php?online_id=889b1627 (...) 34.88.227.185
2022-11-30 00:38:21 +0000
1 - 0 - 5 assure1c-mtb.com/login.php?online_id=ac67116e (...) 34.88.227.185
2022-11-29 23:53:40 +0000
1 - 0 - 6 www.assure1c-mtb.com/login.php?online_id=78ce (...) 34.88.227.185
2022-11-29 23:53:36 +0000
1 - 0 - 6 assure5c-mtb.com/login.php?online_id=db8e4122 (...) 34.88.227.185


JavaScript

Executed Scripts (4)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (38)


Request Response
                                        
                                            GET /mtb/M&TBank/login.php?country=&iso=&online_id=0022be921081eb9026817403b HTTP/1.1 
Host: athensgoldandsilver.gr
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         95.154.242.111
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Wed, 28 Sep 2022 13:21:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (960), with CRLF line terminators
Size:   4772
Md5:    2513a6bc49bd19fcd6d6dd84359c70ac
Sha1:   386c8126147243ee4183ddac9dae7a1c087d0ac9
Sha256: 9a758cfe635f4ec160b47106b09e30de50ab93d88aabc791237a6e14842e6953

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "2A40F957A6B1734AA3F87CFF51B673F0536732DB15B09033DD604879692DF349"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5427
Expires: Wed, 28 Sep 2022 14:51:48 GMT
Date: Wed, 28 Sep 2022 13:21:21 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 28 Sep 2022 13:15:39 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: xfp039x4RVXCr9OmFIRllZTVzbkXq0PmO3wEkuSmRpARmRnTJrJmkQ==
Age: 342


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    1b3053fa528e28810f8a2cc9284cc921
Sha1:   cca9eb471d941881a6b9a1793aecb6c281908f6a
Sha256: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.49
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 28 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wBO9nXm9z8tuD7WJUnG32ErWV5nf69XjllA-cDaZMHLOucjfxFKuog==
age: 28375
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 28 Sep 2022 13:21:21 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /TSPD/0856addebbab2000ba949201dad9f67efc42df64f349dd0cbd91a24e357d5af05b11616b8df1b84b?type=9 HTTP/1.1 
Host: athensgoldandsilver.gr
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://athensgoldandsilver.gr/mtb/M&TBank/login.php?country=&iso=&online_id=0022be921081eb9026817403b

                                         
                                         95.154.242.111
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Wed, 28 Sep 2022 13:21:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size:   1442
Md5:    9c3b59e36a8cc0aa2023435fb8f3e49d
Sha1:   49e883a16efb0d29d0d0f960be159d199dd7abde
Sha256: 64cd6ffc93c4c8659ced2e8674417afb0200b036cb8fb03194b050ff06fd575c

Alerts:
  Blocklists:
    - fortinet: Phishing
    - quad9: Sinkholed
                                        
                                            GET /TSPD/0856addebbab2000ba949201dad9f67efc42df64f349dd0cbd91a24e357d5af05b11616b8df1b84b?type=17 HTTP/1.1 
Host: athensgoldandsilver.gr
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://athensgoldandsilver.gr/mtb/M&TBank/login.php?country=&iso=&online_id=0022be921081eb9026817403b

                                         
                                         95.154.242.111
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Wed, 28 Sep 2022 13:21:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size:   1442
Md5:    9c3b59e36a8cc0aa2023435fb8f3e49d
Sha1:   49e883a16efb0d29d0d0f960be159d199dd7abde
Sha256: 64cd6ffc93c4c8659ced2e8674417afb0200b036cb8fb03194b050ff06fd575c

Alerts:
  Blocklists:
    - fortinet: Phishing
    - quad9: Sinkholed
                                        
                                            GET /ruxitagentjs_ICA2SVfhjqrux_10205201218101503.js HTTP/1.1 
Host: athensgoldandsilver.gr
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://athensgoldandsilver.gr/mtb/M&TBank/login.php?country=&iso=&online_id=0022be921081eb9026817403b

                                         
                                         95.154.242.111
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Wed, 28 Sep 2022 13:21:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size:   1442
Md5:    9c3b59e36a8cc0aa2023435fb8f3e49d
Sha1:   49e883a16efb0d29d0d0f960be159d199dd7abde
Sha256: 64cd6ffc93c4c8659ced2e8674417afb0200b036cb8fb03194b050ff06fd575c

Alerts:
  Blocklists:
    - fortinet: Phishing
    - quad9: Sinkholed
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Wed, 28 Sep 2022 12:29:33 GMT
Expires: Wed, 28 Sep 2022 13:04:06 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5LXviTpCb9Y_ofuKVdg2QA0Ua8sc8zrFoSJ7zHB19exbKfhfqGToqw==
Age: 3108


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.entrust.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.110.10.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
ETag: "07B2F681033959B920B4389FFAF7C1DB39C4C3CE6C02A68616198667B5F83F72"
Last-Modified: Wed, 28 Sep 2022 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3527
Expires: Wed, 28 Sep 2022 14:20:08 GMT
Date: Wed, 28 Sep 2022 13:21:21 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1588
Md5:    32dbf7aa615084fdb80488a6376df338
Sha1:   714311b77d4069edb6c4ef3123443f11b51ae43f
Sha256: 07b2f681033959b920b4389ffaf7c1db39c4c3ce6c02a68616198667b5f83f72
                                        
                                            POST / HTTP/1.1 
Host: ocsp.entrust.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.110.10.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
ETag: "07B2F681033959B920B4389FFAF7C1DB39C4C3CE6C02A68616198667B5F83F72"
Last-Modified: Wed, 28 Sep 2022 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3463
Expires: Wed, 28 Sep 2022 14:19:04 GMT
Date: Wed, 28 Sep 2022 13:21:21 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1588
Md5:    32dbf7aa615084fdb80488a6376df338
Sha1:   714311b77d4069edb6c4ef3123443f11b51ae43f
Sha256: 07b2f681033959b920b4389ffaf7c1db39c4c3ce6c02a68616198667b5f83f72
                                        
                                            POST / HTTP/1.1 
Host: ocsp.entrust.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.110.10.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
ETag: "07B2F681033959B920B4389FFAF7C1DB39C4C3CE6C02A68616198667B5F83F72"
Last-Modified: Wed, 28 Sep 2022 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3487
Expires: Wed, 28 Sep 2022 14:19:28 GMT
Date: Wed, 28 Sep 2022 13:21:21 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1588
Md5:    32dbf7aa615084fdb80488a6376df338
Sha1:   714311b77d4069edb6c4ef3123443f11b51ae43f
Sha256: 07b2f681033959b920b4389ffaf7c1db39c4c3ce6c02a68616198667b5f83f72
                                        
                                            POST / HTTP/1.1 
Host: ocsp.entrust.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.110.10.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
ETag: "97BEC6CDB1F6B356F3B5A506428784908E8C2E90F778384FC918E7D052A8C70D"
Last-Modified: Wed, 28 Sep 2022 08:00:00 UTC
Content-Length: 1585
Cache-Control: public, no-transform, must-revalidate, max-age=3595
Expires: Wed, 28 Sep 2022 14:21:16 GMT
Date: Wed, 28 Sep 2022 13:21:21 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1585
Md5:    9a31687c0281ebdddff93623554203e0
Sha1:   c8c95133db208c3b624fa349b3ed3ad1686cc8ba
Sha256: 97bec6cdb1f6b356f3b5a506428784908e8c2e90f778384fc918e7d052a8c70d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.entrust.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.110.10.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
ETag: "97BEC6CDB1F6B356F3B5A506428784908E8C2E90F778384FC918E7D052A8C70D"
Last-Modified: Wed, 28 Sep 2022 08:00:00 UTC
Content-Length: 1585
Cache-Control: public, no-transform, must-revalidate, max-age=3600
Expires: Wed, 28 Sep 2022 14:21:21 GMT
Date: Wed, 28 Sep 2022 13:21:21 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1585
Md5:    9a31687c0281ebdddff93623554203e0
Sha1:   c8c95133db208c3b624fa349b3ed3ad1686cc8ba
Sha256: 97bec6cdb1f6b356f3b5a506428784908e8c2e90f778384fc918e7d052a8c70d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.entrust.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.110.10.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
ETag: "97BEC6CDB1F6B356F3B5A506428784908E8C2E90F778384FC918E7D052A8C70D"
Last-Modified: Wed, 28 Sep 2022 08:00:00 UTC
Content-Length: 1585
Cache-Control: public, no-transform, must-revalidate, max-age=3567
Expires: Wed, 28 Sep 2022 14:20:48 GMT
Date: Wed, 28 Sep 2022 13:21:21 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1585
Md5:    9a31687c0281ebdddff93623554203e0
Sha1:   c8c95133db208c3b624fa349b3ed3ad1686cc8ba
Sha256: 97bec6cdb1f6b356f3b5a506428784908e8c2e90f778384fc918e7d052a8c70d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4355
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 13:21:21 GMT
Last-Modified: Wed, 28 Sep 2022 12:08:46 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /Assets/scripts/Login/Index.js HTTP/1.1 
Host: athensgoldandsilver.gr
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://athensgoldandsilver.gr/mtb/M&TBank/login.php?country=&iso=&online_id=0022be921081eb9026817403b

                                         
                                         95.154.242.111
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Wed, 28 Sep 2022 13:21:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size:   1442
Md5:    9c3b59e36a8cc0aa2023435fb8f3e49d
Sha1:   49e883a16efb0d29d0d0f960be159d199dd7abde
Sha256: 64cd6ffc93c4c8659ced2e8674417afb0200b036cb8fb03194b050ff06fd575c

Alerts:
  Blocklists:
    - fortinet: Phishing
    - quad9: Sinkholed
                                        
                                            GET /mtbank/OE-Prod/Bootstrap.js HTTP/1.1 
Host: nexus.ensighten.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://athensgoldandsilver.gr/

                                         
                                         54.230.111.14
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 15
Connection: keep-alive
Date: Wed, 28 Sep 2022 13:21:22 GMT
x-amz-replication-status: COMPLETED
Last-Modified: Fri, 22 Jul 2022 23:48:01 GMT
ETag: "ffe905f50d9b47e6353b68513c4d48ac"
x-amz-server-side-encryption: AES256
Cache-Control: no-cache, no-store
x-amz-version-id: aoJA4xuOoFemAhjg4lZAdeni.2iMq5FL
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Error from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Zb1vUo8CHVohjvexOubygMwwljTCiWncmhr-YtUHfqf4ACKMFIS_WQ==


--- Additional Info ---
Magic:  ASCII text
Size:   15
Md5:    ffe905f50d9b47e6353b68513c4d48ac
Sha1:   d2c2ee4201cca3be67abf771ed1f1922fa94d083
Sha256: c0d8671e209f009f9c1ad8153222f942087ec193b7e87f856e60971bd5424633
                                        
                                            GET /r/simple-layout-responsive/css.mtb?v=08132020140516 HTTP/1.1 
Host: resources.mtb.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://athensgoldandsilver.gr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.216.61.78
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Expires: Thu, 28 Sep 2023 13:21:21 GMT
Last-Modified: Wed, 28 Sep 2022 13:21:20 GMT
ETag: "1664371281:dtagent10247220811100421ZWhG"
Vary: User-Agent
X-Srv: M-SC-03
Access-Control-Allow-Origin: *
X-FRAME-OPTIONS: ALLOW-FROM https://mtb.com/
Server-Timing: dtSInfo;desc="0", dtRpid;desc="-1369634552"
Date: Wed, 28 Sep 2022 13:21:21 GMT
ntCoent-Length: 258715
Cache-Control: private
Content-Encoding: gzip
Set-Cookie: dtCookie=v_4_srv_2_sn_E520D9418A8A8C4CC364E3D8ED8C96EF_perc_100000_ol_0_mul_1_app-3Aea7c4b59f27d43eb_1_rcs-3Acss_0; Path=/; Domain=.mtb.com TS019299a7=019f8203fde9daeed265a23a4b497c123efbb18af993f1b4515011e47b8b0caca3fa4588570e7e2b11d2dcc15f7765869ae598f420; Path=/ TS0128739d=019f8203fd350f42f53ffe75b4f1416dd63b8a429993f1b4515011e47b8b0caca3fa458857d8c657c641643a168300d7868d89deb1b9116030d5dd1028147a892763689253; path=/; domain=.mtb.com TSf60233d5027=08affc4e07ab2000f54bbf97a049017becac2781861a9c3b1c6e437500f1a46961f5d5a60ee6f5b808b140bfb31130007e3ba02f4fda7310ea63f582086b90bb4d6297d1b6dababd6f61daf58d551452701f3ca0881ce677cfafcd9472704c30; Path=/
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size:   34708
Md5:    612ef637c25041c445e4fdf710694d70
Sha1:   c4037320ef3bf75754dbba6ffbb712cc8ea947cd
Sha256: d3f9b1bf0a23fba1044ec913042d5068e3445fe37aa9dc4ad2dff2b9fbcfbeef
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DXIivzwSa0K3DEOv6VVC7w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.162.217.251
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: F58J9+Z2sMSY/0+Fcgt4YMLxzVc=

                                        
                                            GET /Assets/img/mtb-logo.svg HTTP/1.1 
Host: resources.mtb.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://athensgoldandsilver.gr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.216.61.78
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Last-Modified: Wed, 21 Sep 2022 01:18:50 GMT
Accept-Ranges: bytes
ETag: "039ed1a58cdd81:0"
X-Srv: M-SC-03
Access-Control-Allow-Origin: *
X-FRAME-OPTIONS: ALLOW-FROM https://mtb.com/
Server-Timing: dtSInfo;desc="0", dtRpid;desc="2078620770"
Date: Wed, 28 Sep 2022 13:21:21 GMT
Content-Length: 2039
Set-Cookie: TSf60233d5027=08affc4e07ab2000b6fd7ee47ed3e0323360a00eea82bf3874454b972e6ccb17ba81995c9bc1c3cd08a1b37a77113000e2a23a621a2e08331faca9d34350437338a60493b5be198c6a6b5daaec36facb072a95c530c77cb4bb68f5006046df18; Path=/


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2039), with no line terminators
Size:   2039
Md5:    f2b901cf895852a0866fe4a16c7f1730
Sha1:   c4240af1ec798477b4e65a185ddbb1b038817da4
Sha256: 5f5b0d9f678fe446631a33a4cbbe891a01b0ed972143702e67ae6617367096ac
                                        
                                            GET /Assets/img/mtb-equalhousinglender.svg HTTP/1.1 
Host: resources.mtb.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://athensgoldandsilver.gr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.216.61.78
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Last-Modified: Wed, 21 Sep 2022 01:18:50 GMT
Accept-Ranges: bytes
ETag: "039ed1a58cdd81:0"
X-Srv: M-SC-03
Access-Control-Allow-Origin: *
X-FRAME-OPTIONS: ALLOW-FROM https://mtb.com/
Server-Timing: dtSInfo;desc="0", dtRpid;desc="-1663891050"
Date: Wed, 28 Sep 2022 13:21:21 GMT
Content-Length: 230
Set-Cookie: TSf60233d5027=08affc4e07ab2000bd22868294cd0fc21b33c034f8886c87d863525a52d4c352051aec90b00b66620825111084113000d2f25b595c97f2df1faca9d34350437384946d54ff7b36ee7e6f49923a9f566e7128f55725f07ec03936b46971e69986; Path=/


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Size:   230
Md5:    916635d10512ae6a1840614a895dcd38
Sha1:   db175de4c42281bb4d239c57d1b95b8e75c529ec
Sha256: d58eb2802f72d0c6b1d944a1335e8fb914af44b51fe16097aad994c15b8cfbad
                                        
                                            GET /r/simple-layout-responsive/js.mtb?v=08132020140516 HTTP/1.1 
Host: resources.mtb.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://athensgoldandsilver.gr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.216.61.78
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Expires: Thu, 28 Sep 2023 13:21:21 GMT
Last-Modified: Wed, 28 Sep 2022 13:21:20 GMT
ETag: "1664371281:dtagent10247220811100421ZWhG"
Vary: User-Agent
X-Srv: M-SC-03
Access-Control-Allow-Origin: *
X-FRAME-OPTIONS: ALLOW-FROM https://mtb.com/
Server-Timing: dtSInfo;desc="0", dtRpid;desc="780015663"
Date: Wed, 28 Sep 2022 13:21:21 GMT
Cteonnt-Length: 322405
Cache-Control: private
Content-Encoding: gzip
Set-Cookie: dtCookie=v_4_srv_4_sn_63718EAF9337D76A46C95B83590AC5BA_perc_100000_ol_0_mul_1_app-3Aea7c4b59f27d43eb_1_rcs-3Acss_0; Path=/; Domain=.mtb.com TS019299a7=019f8203fd329a716ab24a2ad8bcb5a42359782c6e2d49293ad6fb7d6927359a5c2c956d916c4fedc8ef7d7963d06431382b74d317; Path=/ TS0128739d=019f8203fd62acbf52397ef038955584b0279806762d49293ad6fb7d6927359a5c2c956d91438b772608af856cd89d371041f6f81737f0c2e430434acd74f562848e79fcc7; path=/; domain=.mtb.com TSf60233d5027=08affc4e07ab20005981979d287e58551fff5df9d6984aaddf4b736e928a9f7dc51d95317ff34874085210cdb31130008e1c4face459debaea63f582086b90bbd458d9684897cf369b8f9affd7e8932a5e11b18a0b9ea3bc76e07038d37d5c4f; Path=/
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   103531
Md5:    727a0de3144aa33cd4534796486e2363
Sha1:   86ed4f75d976f4f5974724a6a19723798f29386e
Sha256: 4944e8c395c12a394fb7be2e85d249d24381a5848f743a5d63bf2b0edda3bcdc
                                        
                                            GET /Assets/img/mtb-entrust.svg HTTP/1.1 
Host: resources.mtb.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://athensgoldandsilver.gr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.216.61.78
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Last-Modified: Wed, 21 Sep 2022 01:18:50 GMT
Accept-Ranges: bytes
ETag: "039ed1a58cdd81:0"
X-Srv: M-SC-03
Access-Control-Allow-Origin: *
X-FRAME-OPTIONS: ALLOW-FROM https://mtb.com/
Server-Timing: dtSInfo;desc="0", dtRpid;desc="504753667"
Date: Wed, 28 Sep 2022 13:21:21 GMT
Content-Length: 1349
Set-Cookie: TSf60233d5027=08affc4e07ab200036c206627f0f908e95896515691502ad40bf83901306829a40fb1e33e224335b080cf7eb54113000e6843639be5d1b1e1faca9d34350437389035b0ddc0b365ff9fcf8c75b32c2ce34d8e99dfef064307c9a022e3db4dd2a; Path=/


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1349), with no line terminators
Size:   1349
Md5:    9a569ad20708d7453d89fe6c72e7fcdc
Sha1:   60b6a41620583484642f7c826faf8e3c879a6374
Sha256: b2ef3bd17aa6bc2daa7b1209f7848b30c64f3068e43162b09a216639ab430ce5
                                        
                                            GET /assets/fonts/mandtpg-iconfont.woff HTTP/1.1 
Host: resources.mtb.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://athensgoldandsilver.gr
Connection: keep-alive
Referer: https://resources.mtb.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         192.216.61.78
HTTP/1.1 200 OK
Content-Type: APPLICATION/X-WOFF
                                        
Last-Modified: Wed, 21 Sep 2022 01:18:49 GMT
Accept-Ranges: bytes
ETag: "039ed1a58cdd81:0:dtagent10247220811100421ZWhG"
X-Srv: M-SC-03
Access-Control-Allow-Origin: *
X-FRAME-OPTIONS: ALLOW-FROM https://mtb.com/
Timing-Allow-Origin: *
Server-Timing: dtSInfo;desc="0", dtRpid;desc="1027991341", dtTao;desc="1"
Date: Wed, 28 Sep 2022 13:21:21 GMT
Content-Length: 4776
Set-Cookie: dtCookie=v_4_srv_6_sn_324E8FDF6BBBC3AB3488DCD7C3EB59CC_perc_100000_ol_0_mul_1_app-3Aea7c4b59f27d43eb_1_rcs-3Acss_0; Path=/; Domain=.mtb.com TS019299a7=019f8203fd57c0326a5812df2d596412c72fe523e1eac66c59c5a639757b8ab725c7c593bb2932a7940e5572026885e949ea9dad1d; Path=/ TS0128739d=019f8203fd69f962ed928dcd4f7ffebaa6b9efe0e5eac66c59c5a639757b8ab725c7c593bb17c15fd72705287e9ce30d5f5da98eeb94a99bcc5a2eea74794d3764558e3562; path=/; domain=.mtb.com TSf60233d5027=08affc4e07ab2000f2474d2bb2c613413d1154581702ceed0a2f8ab8424f42ac20ac7380b4db218108270128fb1130008c7d7ea2ed0c23c71faca9d3435043733fdac9eacf60c7dc0bfe9625a5755a8766473ecd76bb76ff5f827eb1356d56b2; Path=/


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 4776, version 1.0\012- data
Size:   4776
Md5:    ac13691b89191d11d0e5577eb3cf3d53
Sha1:   0126fa82c0ab022e61b5de74f1fe3e204a905a7b
Sha256: 108d16421ae2ff7fc5157d507dc5b1bf7f62140ba58cf3c723b1f2b7e74c21df
                                        
                                            GET /assets/fonts/mandtbaltoweb-book.woff HTTP/1.1 
Host: resources.mtb.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://athensgoldandsilver.gr
Connection: keep-alive
Referer: https://resources.mtb.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         192.216.61.78
HTTP/1.1 200 OK
Content-Type: APPLICATION/X-WOFF
                                        
Last-Modified: Wed, 21 Sep 2022 01:18:49 GMT
Accept-Ranges: bytes
ETag: "039ed1a58cdd81:0:dtagent10247220811100421ZWhG"
X-Srv: M-SC-03
Access-Control-Allow-Origin: *
X-FRAME-OPTIONS: ALLOW-FROM https://mtb.com/
Timing-Allow-Origin: *
Server-Timing: dtSInfo;desc="0", dtRpid;desc="2069908704", dtTao;desc="1"
Date: Wed, 28 Sep 2022 13:21:21 GMT
Content-Length: 67671
Set-Cookie: dtCookie=v_4_srv_2_sn_53C52166D5100407378EC15242B0D0CC_perc_100000_ol_0_mul_1_app-3Aea7c4b59f27d43eb_1_rcs-3Acss_0; Path=/; Domain=.mtb.com TS019299a7=019f8203fd8d3bd1790dae8858c9c8be578202c48b01d8ffef318507db99c07599961aee03c2a7134ddc281193ee61b80ea2c588b6; Path=/ TS0128739d=019f8203fdebb9d906046435bc0fbc5b27d7fe621901d8ffef318507db99c07599961aee0306d8e075c7c21b2624627d066b76a66711e6c0ba829a4af1754d79e4fbb71733; path=/; domain=.mtb.com TSf60233d5027=08affc4e07ab2000cc90e5eee05bb9067072ef9828442e83064ee76eab844ccfc17f35d67ca19f8f087b88166b113000c6e7e76f3e88243c1faca9d3435043736815c64ecfb811043820193aa8c6bbc067e84c2bf4c8177fd19afcf41512f336; Path=/


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 67671, version 1.0\012- data
Size:   67671
Md5:    6cd469e8613d82d4d07834a5ca7745f0
Sha1:   95347ba0a03d27e1aa91bc17c937d8aefe53e6ff
Sha256: 4029a5a081992259f4e529190b49dbba893931da4e843dd203449f1b9a4509d2
                                        
                                            GET /Documents/html/homepage/favicon.ico HTTP/1.1 
Host: asset.mtb.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://athensgoldandsilver.gr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.64
HTTP/2 200 OK
content-type: image/x-icon
                                        
content-length: 14862
accept-ranges: bytes
cache-control: max-age=3600, no-cache="set-cookie"
content-disposition: inline
content-encoding: gzip
date: Wed, 28 Sep 2022 12:24:48 GMT
last-modified: Wed, 04 May 2022 18:18:59 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-content-type-options: nosniff
x-dispatcher: dispatcher1useast1
x-frame-options: SAMEORIGIN
x-vhost: publish
etag: "3dce-5de33a8b9cac0-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8NxM7Cymy-ZIsuJ0lrP4dKNJ922S0jfBXjPI3P8JL1HoQOIJqOIPkQ==
age: 3393
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 300 x 300, 8-bit/color RGB, non-interlaced\012- data
Size:   14862
Md5:    e82f458a5c1c5353a97401eccc925613
Sha1:   949d6c8d06ca14b52f496c20f63fae269b6708c2
Sha256: cd320f6e4a5ccfb2d08a5aca1d42dc606530d63e3d779038c41865c85568cbf3
                                        
                                            GET /assets/fonts/mandtbaltoweb-medium.woff HTTP/1.1 
Host: resources.mtb.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://athensgoldandsilver.gr
Connection: keep-alive
Referer: https://resources.mtb.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         192.216.61.78
HTTP/1.1 200 OK
Content-Type: APPLICATION/X-WOFF
                                        
Last-Modified: Wed, 21 Sep 2022 01:18:49 GMT
Accept-Ranges: bytes
ETag: "039ed1a58cdd81:0:dtagent10247220811100421ZWhG"
X-Srv: M-SC-03
Access-Control-Allow-Origin: *
X-FRAME-OPTIONS: ALLOW-FROM https://mtb.com/
Timing-Allow-Origin: *
Server-Timing: dtSInfo;desc="0", dtRpid;desc="-88546340", dtTao;desc="1"
Date: Wed, 28 Sep 2022 13:21:21 GMT
Content-Length: 64318
Set-Cookie: dtCookie=v_4_srv_1_sn_394D6A050039B2EC2BCDA6EB1F5D6D67_perc_100000_ol_0_mul_1_app-3Aea7c4b59f27d43eb_1_rcs-3Acss_0; Path=/; Domain=.mtb.com TS019299a7=019f8203fdbf6bf29edf318d61602e09a1e1612878c5712fd4ab0c916c4a40fee34d57ab66b0c685896b0dcc9d054e0b9b8f162037; Path=/ TS0128739d=019f8203fdbdd12a079d5d5f9d1bad90b97194f29cc5712fd4ab0c916c4a40fee34d57ab6691b6bacce5f8b21fa1bc2d13afb28952d0e010104865ac76a0915b1ce1d3e2f6; path=/; domain=.mtb.com TSf60233d5027=08affc4e07ab20000e6192503ab906ddefb78dfb5e3585ee22e0e50423e08849b178028abba4d176080da5c88111300089a0306827e86f771faca9d343504373431b22729eca06c2307a88adcaf1351c5a0ad9f14c811930324babfaf43dfd97; Path=/


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 64318, version 1.0\012- data
Size:   64318
Md5:    b245a55f7e33e1cf4d2477570936ef84
Sha1:   12bf1c1eda6db246778f7c343acebbaad8fa36f4
Sha256: b391b55f950528937beee7687717a4aef81196817834f1c93b099713ff738fbc
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7130
Expires: Wed, 28 Sep 2022 15:20:13 GMT
Date: Wed, 28 Sep 2022 13:21:23 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7130
Expires: Wed, 28 Sep 2022 15:20:13 GMT
Date: Wed, 28 Sep 2022 13:21:23 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7130
Expires: Wed, 28 Sep 2022 15:20:13 GMT
Date: Wed, 28 Sep 2022 13:21:23 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13299
x-amzn-requestid: 926df8b6-beec-470d-b0b3-33be326cd379
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPF8YIAMF3Nw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-343e91e735af43d01fc83ddd;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KmVkKXoPqZmnwFtpKhuox1kJNDoSxMEmYE39_zVPyaeoU4sPqq-_wA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:44:23 GMT
age: 56220
etag: "651600f2ef18cecc2e38370069bbb5e1d86f68e0"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13299
Md5:    ad84ed0c5b2090df7996007514cf1984
Sha1:   651600f2ef18cecc2e38370069bbb5e1d86f68e0
Sha256: a3d0729e1d43afeadd2dd8273c858b8839d9e476f773c8ec9d96b5969a9e0b4a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8500
x-amzn-requestid: af82c8d6-950c-4933-87e3-7bbb15cb1ac8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3HOaoAMFoPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-77e0ecc522de575e40f429b3;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: rD5LsVDLQkaomG1nCGZGihbdlWKMCjUYNC2kRyAjJesJEOEBSj8Q3A==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:47:03 GMT
age: 56060
etag: "9c4692ea64832895fbd107d91f879728b6a440c7"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8500
Md5:    6139c878a7d2bd32c61fc8287996eb5b
Sha1:   9c4692ea64832895fbd107d91f879728b6a440c7
Sha256: 3839df92f0a10c1433d5b576df50c9f7953912ae4f425012262f08ee8a59ce2e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13213
x-amzn-requestid: fe9ec409-2757-4910-8443-5b4d3be7efd3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlATEp8oAMFd9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b9b-3230e97a4fe34413285eb578;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:37:31 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rV80hKsopWPf_A8hKw0kwTOjVN4Bq-5f8oXDP2wluyGwof5yXFe2Bw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:42:47 GMT
age: 56316
etag: "3d4fa8701f17e8818c25584ef5f04bfbee8440cd"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13213
Md5:    62e68c3cd08dd94d910507512a67e85f
Sha1:   3d4fa8701f17e8818c25584ef5f04bfbee8440cd
Sha256: 058d798963f83f5fb88ab728185f755c5353fa981d93e1b6ff869089f501586b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9a3b058-92c9-490e-9cbb-736f7e46510d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7455
x-amzn-requestid: e99c9f33-b72a-4070-80cf-06fb4a87d1df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZG4S6EcAoAMFX1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6332a0df-04122b4a345dbc3f3918af98;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 07:06:07 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Di1kDUlYEc1rv31fHM-OquU_W_LggEzDCTVME5iFJ5KffZcQyN6i2A==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 07:31:39 GMT
age: 20984
etag: "b383135e2ebc23fe80eb0d594b198cb8c89327a5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7455
Md5:    ea3890e460356d6ecc3ba4e405ac2e9e
Sha1:   b383135e2ebc23fe80eb0d594b198cb8c89327a5
Sha256: 8fcff053ce6e5750136bf876bad5b2916935f13ea039912d977928b086f0a48b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 14464
x-amzn-requestid: 6627e07e-034b-432e-ab9e-afe035fa0b9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e9HgIoAMFxUA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5f-7f34c3f6454379724a7ac413;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: J27vcANRhkMUuGwTZjXkO0EF0-UjN-MODVQRKgsc7hJI2S-UPF8Ctw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:40:53 GMT
age: 56430
etag: "bc214d60be395d4cf753216ff8f9691c33d25e75"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   14464
Md5:    aa5cad224dbddd71881bd07255beb4da
Sha1:   bc214d60be395d4cf753216ff8f9691c33d25e75
Sha256: 82935e52aa59929a448d17a5a2d58fda86bb5c25bf6628a05bd904f82517dada
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12016
x-amzn-requestid: ec1b3715-5d0f-4045-aa5b-b70a55c81d72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3EtyIAMFdZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-201dd1ef1426a09965c68dab;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: y3DefdcXJyoDHpJXwz460gfWcv2JUboOFExNQmTFgy30B4mn54Xvuw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:44:30 GMT
age: 56213
etag: "a54803cca7d3c509c195f65961e1110c8ec56f55"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12016
Md5:    4b794c6812cb546de0295e087ebe66a7
Sha1:   a54803cca7d3c509c195f65961e1110c8ec56f55
Sha256: 6a207f75eb3951f3dea5252bc8d185cd604d3d657f15b838774e8087e91f37f5
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F838bed0c-c665-42d6-8c20-1decd709953c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9314
x-amzn-requestid: 0639452b-7f17-4513-aeb1-20b465ed3e93
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3HzCIAMF-vQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-52afa1da17c4557c5e8c3564;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 4mjt2-5F0Chu1G7jShI6rXfTuBMd6JOYxFMtla-EgL7i82SThJnp5w==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:38:41 GMT
age: 56568
etag: "60c873f097c85376797fed366804119f7e9c445e"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9314
Md5:    3c58fdf09a7d552be0c8666522a29de7
Sha1:   60c873f097c85376797fed366804119f7e9c445e
Sha256: 24569f084d3fd428526503bde8b3da64152911934cd5e0e9140c06d954e4bcd9