r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 25389646a2daae58c728e01095973033
651619a503a0f21dd5a8135cce5240f51bae1ab5
8ecd890bd13e92a07acabbd187e71d59adc1f896b249ac1165444ea1f9e21bef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8ECD890BD13E92A07ACABBD187E71D59ADC1F896B249AC1165444EA1F9E21BEF"
Last-Modified: Tue, 14 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10453
Expires: Wed, 15 Mar 2023 06:56:19 GMT
Date: Wed, 15 Mar 2023 04:02:06 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 234b80a5a27f3d377e322e680413479d
3da8ba535ec19898f5b83ece48cd4038ac2bf557
370104df5dd8f739601a4be42ae41bb92f365dcf585823a3c14733f7c394e926
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "370104DF5DD8F739601A4BE42AE41BB92F365DCF585823A3C14733F7C394E926"
Last-Modified: Sun, 12 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4915
Expires: Wed, 15 Mar 2023 05:24:01 GMT
Date: Wed, 15 Mar 2023 04:02:06 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Content-Type, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 15 Mar 2023 03:14:15 GMT
content-type: application/json
age: 2871
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash cef8425d927aae677234ca535562b58b
823b45ffe59ac234f49d38516baf528a9daded85
c2d2e2be0e1484259271be471ff46345fd332c071389f9ef92f637e7ee666ea6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2D2E2BE0E1484259271BE471FF46345FD332C071389F9EF92F637E7EE666EA6"
Last-Modified: Tue, 14 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18009
Expires: Wed, 15 Mar 2023 09:02:15 GMT
Date: Wed, 15 Mar 2023 04:02:06 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash b5ba6334e73496995e3e3a9ecd0eb323
ad80d3b7718c28364e8c2004fb38a13a1747e462
aa5abb52515c6383c014aadb63a86c9f798ad64de53c0218616c1fc6d424d2e2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: T/HbYAL2b7KvTgbZHPyc+FF9ty4lpjie3i49Zn1t4rCoaLzKyEHWlSZZOrYbp8a2kc0AOYRCFtg=
x-amz-request-id: ZTZPD81MJ69X9DW3
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 15 Mar 2023 03:20:50 GMT
age: 2476
last-modified: Sat, 18 Feb 2023 20:28:27 GMT
etag: "b5ba6334e73496995e3e3a9ecd0eb323"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 15 Mar 2023 04:02:06 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Length, Retry-After, Content-Type, Expires, Alert, Pragma, ETag, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 15 Mar 2023 03:06:48 GMT
age: 3318
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash fc4a4ceaf4ff1530bd1678221e3ab96b
25cbfa3ed3a3ffa3958b9c5d842879f8f458afd4
89c6e447413c88858dfcb92639e614ceb678f2897e4182e70dab2e445565bc18
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89C6E447413C88858DFCB92639E614CEB678F2897E4182E70DAB2E445565BC18"
Last-Modified: Tue, 14 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11451
Expires: Wed, 15 Mar 2023 07:12:57 GMT
Date: Wed, 15 Mar 2023 04:02:06 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DmmR9IYcNxQdg82HQtomGw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: njLHU4/0x3CHiQbKkpttB3yuf1A=
firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221678839738329%22
200 OK 22 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221678839738329%22
IP
File type JSON data\012- , ASCII text, with very long lines (22067), with no line terminators
Hash e5a112b9e6ff0c2f76f68e46d7d046c3
a481cb772ddfe7e81d74482a96b3f48a2bd1a052
9ffbeb2b1bf07e90c3d2fb576629d41a45796b4f07cadb3fdcb34a69a5737435
GET /v1/buckets/monitor/collections/changes/changeset?_expected=%221678839738329%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Backoff, Alert, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 22067
via: 1.1 google
date: Wed, 15 Mar 2023 03:27:11 GMT
age: 2096
last-modified: Wed, 15 Mar 2023 00:22:18 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8bd8586a0a52f516ac521f2a3752b049
3cfd233164ae5350f2fb61250641b70e788cf58a
8783e071c3f60fbca2bba5260b55a41f1035e150ffd94a66ff6a102ff2bc6783
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8783E071C3F60FBCA2BBA5260B55A41F1035E150FFD94A66FF6A102FF2BC6783"
Last-Modified: Tue, 14 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8713
Expires: Wed, 15 Mar 2023 06:27:21 GMT
Date: Wed, 15 Mar 2023 04:02:08 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8bd8586a0a52f516ac521f2a3752b049
3cfd233164ae5350f2fb61250641b70e788cf58a
8783e071c3f60fbca2bba5260b55a41f1035e150ffd94a66ff6a102ff2bc6783
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8783E071C3F60FBCA2BBA5260B55A41F1035E150FFD94A66FF6A102FF2BC6783"
Last-Modified: Tue, 14 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8713
Expires: Wed, 15 Mar 2023 06:27:21 GMT
Date: Wed, 15 Mar 2023 04:02:08 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8bd8586a0a52f516ac521f2a3752b049
3cfd233164ae5350f2fb61250641b70e788cf58a
8783e071c3f60fbca2bba5260b55a41f1035e150ffd94a66ff6a102ff2bc6783
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8783E071C3F60FBCA2BBA5260B55A41F1035E150FFD94A66FF6A102FF2BC6783"
Last-Modified: Tue, 14 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8713
Expires: Wed, 15 Mar 2023 06:27:21 GMT
Date: Wed, 15 Mar 2023 04:02:08 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ac8b921-692a-475e-9589-2ce0a90c73be.jpeg
200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ac8b921-692a-475e-9589-2ce0a90c73be.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 79087ffbfeb838e32b0d31ccff48dd9f
42adc79429e568163fca3d57f17967d0425bfa0f
bab9c3dac0f2d4090adb6da16f1b3346c89d68a519228c34b6554ed73f55e183
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ac8b921-692a-475e-9589-2ce0a90c73be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8735
x-amzn-requestid: c08c0e78-bfd3-4ab0-bce3-ab66ecddd9bd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ByllIGp8IAMFeCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6410e953-0b9c54cf74084a0b6bc48ee0;Sampled=0
x-amzn-remapped-date: Tue, 14 Mar 2023 21:38:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: h9Pbil3IP7RRP6zTOz8KqmwEJ28RsQ0wzYrQvzSD4sTrkaSRftTK4g==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 b2d3922a177f6cecf9222a78a0a1ad32.cloudfront.net (CloudFront), 1.1 google
date: Tue, 14 Mar 2023 22:00:16 GMT
age: 21712
etag: "42adc79429e568163fca3d57f17967d0425bfa0f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F183a2292-1d6c-4ac4-8da8-7e81516b2a96.jpeg
200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F183a2292-1d6c-4ac4-8da8-7e81516b2a96.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 07a8bf951705e1563b3fbcd932deee47
079ac6f827f60371b8367fd1272babf7512612da
9ef914cf3f82899ebe5b3e962edbc780427f6a38171e13acd0cdd3847c45a915
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F183a2292-1d6c-4ac4-8da8-7e81516b2a96.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7999
x-amzn-requestid: 159f5c4e-7375-4bad-8227-d435b9495409
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BgIdKEPWIAMFVJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64098787-54cc16e84f2e1b947e3e9c9c;Sampled=0
x-amzn-remapped-date: Thu, 09 Mar 2023 07:15:19 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Ezbfj35XeYqMSxZ9ejRBy1iXwgdE1qvwtX4HAK9srI-l7rngMA2brQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 14 Mar 2023 22:00:27 GMT
age: 21701
etag: "079ac6f827f60371b8367fd1272babf7512612da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbce554e3-6f22-46b0-970b-cd10eacace1c.jpeg
200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbce554e3-6f22-46b0-970b-cd10eacace1c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 42a098e7935022da1cc26051284e371b
ec50662db51f11d5a212c95d082d2c4ad61ea5b7
cab9f988aa8a94562fe40aa1e114889a6a6e98bf3fc5490d837429b8361da37f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbce554e3-6f22-46b0-970b-cd10eacace1c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7639
x-amzn-requestid: b2e727fa-550e-4bb1-ba5e-af8c147b8975
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BooGlH4VoAMFb1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640ced5d-4b267bf52064d72410db720c;Sampled=0
x-amzn-remapped-date: Sat, 11 Mar 2023 21:06:37 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: lK_-L93PR-JT95YAgun7YElYd8LJXFmR0Sk1GXadKrR_dzL7Az8o8A==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 9825a45e2b387a61504c0c3df20048ee.cloudfront.net (CloudFront), 1.1 google
date: Tue, 14 Mar 2023 22:04:21 GMT
age: 21467
etag: "ec50662db51f11d5a212c95d082d2c4ad61ea5b7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87df4bcd-c6cd-4a0c-a9f5-dffb7f36d2e4.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87df4bcd-c6cd-4a0c-a9f5-dffb7f36d2e4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash be71491cee9b47dc3ffb23b4fdff25b3
79c7d22c8df6d305f46c5779ccb9f25169d4d111
e785896e5840fb901ddd0118bef3ccad6b59a96d8eef0e8ccd9c95a3c261ba45
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87df4bcd-c6cd-4a0c-a9f5-dffb7f36d2e4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8487
x-amzn-requestid: f904b483-c6ae-4318-9932-4e48d8188585
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BvTpAEUAIAMFUig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640f996c-5905cad6148df52e4f10ecf5;Sampled=0
x-amzn-remapped-date: Mon, 13 Mar 2023 21:45:16 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: iFDVPB-wzZyIG9xYU-f3rnebwRbaWDo90aD520OcgsptZR0vmkc2ew==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 f3ac324bf05099849ebda59e8136db0e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 14 Mar 2023 23:00:00 GMT
age: 18128
etag: "79c7d22c8df6d305f46c5779ccb9f25169d4d111"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9704ccb-9f1b-43f0-b594-88a389d8b357.jpeg
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9704ccb-9f1b-43f0-b594-88a389d8b357.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 257fa1a28c98fd448d0af644a7b18cdb
f54f74948cd1d2c2ce554612d378e885b38660c6
82007b6a7ca6769bcb1b1e92d1d54d827ddbfc8b5e69c4f5d92dabedbe979d5d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9704ccb-9f1b-43f0-b594-88a389d8b357.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13556
x-amzn-requestid: 94ed525d-db86-4a55-91b6-d88c2f429b24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ByllJHlyoAMFo-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6410e953-315ea1a843089a300ecef5fa;Sampled=0
x-amzn-remapped-date: Tue, 14 Mar 2023 21:38:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 8z1Ey7HNu_kKU05OL_Dyg_dTvvUrWM_mLwRMj_VjuVc3fHQhznsKmw==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 548adcda884eed02304ba5d6a1d7f514.cloudfront.net (CloudFront), 1.1 google
date: Tue, 14 Mar 2023 22:00:16 GMT
age: 21712
etag: "f54f74948cd1d2c2ce554612d378e885b38660c6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46ed914d-236a-4f6e-86c7-a112a0133c6d.jpeg
200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46ed914d-236a-4f6e-86c7-a112a0133c6d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 536d6025f05da23ee47e137ff34e02e9
352e504f6b0d3865f1c14d47af69838e7697706d
3779337aee1dae557e1283225a800607821673d324101efc5ba9842fc0946cd9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46ed914d-236a-4f6e-86c7-a112a0133c6d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5476
x-amzn-requestid: fc26925c-0ae3-4798-ac80-e7d1906aa0cc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BwEcOEc3oAMF7Vw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640fe781-164ca01b3efd47582a0df9fc;Sampled=0
x-amzn-remapped-date: Tue, 14 Mar 2023 03:18:25 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: du6UPQYnnRlqYllPkr-KuelzKAv_JdPQ_2yH6xMXcfyM9NONEhDtLw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 c5c7edc18be1805f007e0576da02e554.cloudfront.net (CloudFront), 1.1 google
date: Tue, 14 Mar 2023 05:58:50 GMT
age: 79398
etag: "352e504f6b0d3865f1c14d47af69838e7697706d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/event
200 OK 191 B URL HTTP/1.1 maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/event
IP
File type ASCII text, with no line terminators
Hash 2d5d169b7afabb783f8994c576f005cb
d3c1f326303b3cd98f892a5ab28cea82222d058b
384d036f62eab523e123b0e2c033bdee06077fdf041c564ce56f956e6219fb24
Analyzer Verdict Alert fortinet Phishing
GET /comsx/Sign%20in%20to%20XFINITY_files/event HTTP/1.1
Host: maryannmoise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maryannmoise.com/comsx/
HTTP/1.1 200 OK
Date: Wed, 15 Mar 2023 04:02:54 GMT
Server: Apache/2.4.56 (cPanel) OpenSSL/1.1.1t mod_bwlimited/1.4
Last-Modified: Thu, 23 Feb 2017 01:59:36 GMT
ETag: "18a91d2-bf-54928f70e9200"
Accept-Ranges: bytes
Content-Length: 191
Keep-Alive: timeout=30, max=100
Connection: Keep-Alive
maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/rta.js
200 OK 168 B URL HTTP/1.1 maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/rta.js
IP
File type Unicode text, UTF-8 (with BOM) text, with no line terminators
Hash cf8059bd98746a031879c027d0675200
5b36326aeac50dd7fbf8a910775b32beccc12d5a
00fb70d9832d4974eacda5d97b5ede63153bebe471109491dc6807db6ceca3a7
Analyzer Verdict Alert fortinet Phishing
GET /comsx/Sign%20in%20to%20XFINITY_files/rta.js HTTP/1.1
Host: maryannmoise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maryannmoise.com/comsx/
HTTP/1.1 200 OK
Date: Wed, 15 Mar 2023 04:02:54 GMT
Server: Apache/2.4.56 (cPanel) OpenSSL/1.1.1t mod_bwlimited/1.4
Last-Modified: Thu, 23 Feb 2017 01:59:36 GMT
ETag: "18a91ec-a8-54928f70e9200"
Accept-Ranges: bytes
Content-Length: 168
Keep-Alive: timeout=30, max=100
Connection: Keep-Alive
Content-Type: application/javascript
maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/segments.js
200 OK 39 B URL HTTP/1.1 maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/segments.js
IP
Hash 9c5453ce3943ebf709c68c4358907916
25c057fa107fca0917c7dca9f432cdce93ce2316
c47bb8af6317ddc64116b9fa30f3d2d46ea6b759789556c003a08fd57c0f6e8a
Analyzer Verdict Alert fortinet Phishing
GET /comsx/Sign%20in%20to%20XFINITY_files/segments.js HTTP/1.1
Host: maryannmoise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maryannmoise.com/comsx/
HTTP/1.1 200 OK
Date: Wed, 15 Mar 2023 04:02:54 GMT
Server: Apache/2.4.56 (cPanel) OpenSSL/1.1.1t mod_bwlimited/1.4
Last-Modified: Thu, 23 Feb 2017 01:59:36 GMT
ETag: "18a91f4-27-54928f70e9200"
Accept-Ranges: bytes
Content-Length: 39
Keep-Alive: timeout=30, max=100
Connection: Keep-Alive
Content-Type: application/javascript
maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/data.json
200 OK 295 B URL HTTP/1.1 maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/data.json
IP
Hash c4e699111d8c5ee41a03610b94ff02d5
7b4ec667ab9d73b69d752931fa675eca988ac1be
f1aa6a629871c08a077cba94a653cb0c2ace627617e442adccbf6712972bf0df
Analyzer Verdict Alert fortinet Phishing
GET /comsx/Sign%20in%20to%20XFINITY_files/data.json HTTP/1.1
Host: maryannmoise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maryannmoise.com/comsx/
HTTP/1.1 200 OK
Date: Wed, 15 Mar 2023 04:02:54 GMT
Server: Apache/2.4.56 (cPanel) OpenSSL/1.1.1t mod_bwlimited/1.4
Last-Modified: Thu, 23 Feb 2017 01:59:36 GMT
ETag: "18a9215-127-54928f70e9200"
Accept-Ranges: bytes
Content-Length: 295
Keep-Alive: timeout=30, max=99
Connection: Keep-Alive
Content-Type: application/json
maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/comcastVisIDAthena.js
200 OK 18 kB URL HTTP/1.1 maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/comcastVisIDAthena.js
IP
File type ASCII text, with very long lines (815), with CRLF line terminators
Hash 4ff1cfd3240ea3e8eed8d96e31152dc2
97ed8e13c3b52da3ea4865af48b219c8e540e5ac
c1d1eb4e35d0cfa8617262918737bcb8804dd0720cdca026da2087166ac7ba71
Analyzer Verdict Alert fortinet Phishing
GET /comsx/Sign%20in%20to%20XFINITY_files/comcastVisIDAthena.js HTTP/1.1
Host: maryannmoise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maryannmoise.com/comsx/
HTTP/1.1 200 OK
Date: Wed, 15 Mar 2023 04:02:54 GMT
Server: Apache/2.4.56 (cPanel) OpenSSL/1.1.1t mod_bwlimited/1.4
Last-Modified: Thu, 23 Feb 2017 01:59:36 GMT
ETag: "18a9216-4446-54928f70e9200"
Accept-Ranges: bytes
Content-Length: 17478
Keep-Alive: timeout=30, max=100
Connection: Keep-Alive
Content-Type: application/javascript
maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/1203273213x32.js
200 OK 2.7 kB URL HTTP/1.1 maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/1203273213x32.js
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (403)
Hash 026533413b3d09d51db59238995299c1
8299098d71a0d18d7bf7279f0d71bed0345c0ec2
62079f9953d5a6dc3240039aa842881f9171f4c3f2bc664629aaf5f2c537214c
Analyzer Verdict Alert fortinet Phishing
GET /comsx/Sign%20in%20to%20XFINITY_files/1203273213x32.js HTTP/1.1
Host: maryannmoise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maryannmoise.com/comsx/
HTTP/1.1 200 OK
Date: Wed, 15 Mar 2023 04:02:54 GMT
Server: Apache/2.4.56 (cPanel) OpenSSL/1.1.1t mod_bwlimited/1.4
Last-Modified: Thu, 23 Feb 2017 01:59:36 GMT
ETag: "18a9202-aa7-54928f70e9200"
Accept-Ranges: bytes
Content-Length: 2727
Keep-Alive: timeout=30, max=99
Connection: Keep-Alive
Content-Type: application/javascript
maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/styles-light.css
200 OK 51 kB URL HTTP/1.1 maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/styles-light.css
IP
File type ASCII text, with very long lines (50848), with no line terminators
Hash 46ad0dca51a657b2f6d4302e8af335ac
56f30d2a99c33270a368df39b0fac6a6321f72f4
7744a06830d6b63ba7fc3b5f7649f8f06959e3c31118cf324d3e36e5433915ed
GET /comsx/Sign%20in%20to%20XFINITY_files/styles-light.css HTTP/1.1
Host: maryannmoise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maryannmoise.com/comsx/
HTTP/1.1 200 OK
Date: Wed, 15 Mar 2023 04:02:54 GMT
Server: Apache/2.4.56 (cPanel) OpenSSL/1.1.1t mod_bwlimited/1.4
Last-Modified: Thu, 23 Feb 2017 01:59:36 GMT
ETag: "18a91f3-c6a0-54928f70e9200"
Accept-Ranges: bytes
Content-Length: 50848
Keep-Alive: timeout=30, max=100
Connection: Keep-Alive
Content-Type: text/css
maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/150582-10.js
200 OK 898 B URL HTTP/1.1 maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/150582-10.js
IP
File type HTML document text\012- exported SGML document, ASCII text, with very long lines (728)
Hash 5de2cd9adefd2a264bc1e881d19827f0
07046ae6c3a9449fd68bd4e0a4f59e7626f30854
af216babd9b5c43a2e6cdedc5d7497f154b3055216272d4a53af26be49bcd53f
Analyzer Verdict Alert fortinet Phishing
GET /comsx/Sign%20in%20to%20XFINITY_files/150582-10.js HTTP/1.1
Host: maryannmoise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maryannmoise.com/comsx/
HTTP/1.1 200 OK
Date: Wed, 15 Mar 2023 04:02:54 GMT
Server: Apache/2.4.56 (cPanel) OpenSSL/1.1.1t mod_bwlimited/1.4
Last-Modified: Thu, 23 Feb 2017 01:59:36 GMT
ETag: "18a922e-382-54928f70e9200"
Accept-Ranges: bytes
Content-Length: 898
Keep-Alive: timeout=30, max=98
Connection: Keep-Alive
Content-Type: application/javascript
maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/150582-15.js
200 OK 3.0 kB URL HTTP/1.1 maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/150582-15.js
IP
File type HTML document text\012- exported SGML document, ASCII text, with very long lines (2808)
Hash 3884f03746032fe3fb6b327134090769
b2e5801b7814f320f0364ab04d98f16e429a987d
c7b6ae528e00b64960dd07aa40cd199c946f089e789df34e47c1de507879302b
Analyzer Verdict Alert fortinet Phishing
GET /comsx/Sign%20in%20to%20XFINITY_files/150582-15.js HTTP/1.1
Host: maryannmoise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maryannmoise.com/comsx/
HTTP/1.1 200 OK
Date: Wed, 15 Mar 2023 04:02:54 GMT
Server: Apache/2.4.56 (cPanel) OpenSSL/1.1.1t mod_bwlimited/1.4
Last-Modified: Thu, 23 Feb 2017 01:59:36 GMT
ETag: "18a9230-ba2-54928f70e9200"
Accept-Ranges: bytes
Content-Length: 2978
Keep-Alive: timeout=30, max=99
Connection: Keep-Alive
Content-Type: application/javascript
maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/1647526060x32.js
200 OK 1.4 kB URL HTTP/1.1 maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/1647526060x32.js
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (433)
Hash db5bdae32033752bd8574dc96ee4c96c
59c8ea77207eff9f8dbf9b6cbf156c6329cbf931
853efa16d425ff8c75c2bd4c74459ef9b555ceaae1a22d4aae0c36f95cad4351
Analyzer Verdict Alert fortinet Phishing
GET /comsx/Sign%20in%20to%20XFINITY_files/1647526060x32.js HTTP/1.1
Host: maryannmoise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maryannmoise.com/comsx/
HTTP/1.1 200 OK
Date: Wed, 15 Mar 2023 04:02:54 GMT
Server: Apache/2.4.56 (cPanel) OpenSSL/1.1.1t mod_bwlimited/1.4
Last-Modified: Thu, 23 Feb 2017 01:59:36 GMT
ETag: "18a920c-58c-54928f70e9200"
Accept-Ranges: bytes
Content-Length: 1420
Keep-Alive: timeout=30, max=98
Connection: Keep-Alive
Content-Type: application/javascript
maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/11648.js
200 OK 26 kB URL HTTP/1.1 maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/11648.js
IP
File type HTML document text\012- C source, ASCII text, with very long lines (25399)
Hash 04873a9ac5cdc1c90fcfb18a21e04136
2703ddd39416a70ada985452107e5b543ee89a0a
d7e781eaa55fbe21f653b0d2b807adc6af016ba9170ccd35fd44b3176786c80c
Analyzer Verdict Alert fortinet Phishing
GET /comsx/Sign%20in%20to%20XFINITY_files/11648.js HTTP/1.1
Host: maryannmoise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maryannmoise.com/comsx/
HTTP/1.1 200 OK
Date: Wed, 15 Mar 2023 04:02:54 GMT
Server: Apache/2.4.56 (cPanel) OpenSSL/1.1.1t mod_bwlimited/1.4
Last-Modified: Thu, 23 Feb 2017 01:59:36 GMT
ETag: "18a9233-63a4-54928f70e9200"
Accept-Ranges: bytes
Content-Length: 25508
Keep-Alive: timeout=30, max=99
Connection: Keep-Alive
Content-Type: application/javascript
maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/asc.txt
200 OK 17 B URL HTTP/1.1 maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/asc.txt
IP
File type ASCII text, with no line terminators
Hash 92ecce91e58ca501e89410701805ffd2
fbc2f9374e8f5aebbc0a9ebeaeb836dfe2ee8803
af2d3351d5bb6b63e81eb19140f27324fd7b0ba94dc7c39b6154461243e4986e
Analyzer Verdict Alert fortinet Phishing
GET /comsx/Sign%20in%20to%20XFINITY_files/asc.txt HTTP/1.1
Host: maryannmoise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maryannmoise.com/comsx/
HTTP/1.1 200 OK
Date: Wed, 15 Mar 2023 04:02:54 GMT
Server: Apache/2.4.56 (cPanel) OpenSSL/1.1.1t mod_bwlimited/1.4
Last-Modified: Thu, 23 Feb 2017 01:59:36 GMT
ETag: "18a91ce-11-54928f70e9200"
Accept-Ranges: bytes
Content-Length: 17
Keep-Alive: timeout=30, max=98
Connection: Keep-Alive
Content-Type: text/plain
maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/scripts-responsive.js
200 OK 3.9 kB URL HTTP/1.1 maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/scripts-responsive.js
IP
File type ASCII text, with very long lines (3906), with no line terminators
Hash b9e47f9f8aac844ec80a9ba6ff6e7a74
cbf073ac21eaa5de906e1fcce023c64c3829c648
aef3124abf7a9f765f36093acf39e804987e52e1a1c241700441949ea52a7673
Analyzer Verdict Alert fortinet Phishing
GET /comsx/Sign%20in%20to%20XFINITY_files/scripts-responsive.js HTTP/1.1
Host: maryannmoise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maryannmoise.com/comsx/
HTTP/1.1 200 OK
Date: Wed, 15 Mar 2023 04:02:54 GMT
Server: Apache/2.4.56 (cPanel) OpenSSL/1.1.1t mod_bwlimited/1.4
Last-Modified: Thu, 23 Feb 2017 01:59:36 GMT
ETag: "18a9201-f42-54928f70e9200"
Accept-Ranges: bytes
Content-Length: 3906
Keep-Alive: timeout=30, max=98
Connection: Keep-Alive
Content-Type: application/javascript
maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/moatad_002.js
200 OK 182 kB URL HTTP/1.1 maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/moatad_002.js
IP
File type ASCII text, with very long lines (554)
Size 182 kB (182301 bytes)
Hash 941a402bcb3a12f11ff32f50060a4f99
ecd237a5bc7d0995bf036e31eeabb97c6dd8c50d
894acd20e24fda4995bf56b9c7f5b0f2a634febf91db251a2adcbf6f6915e6f5
Analyzer Verdict Alert fortinet Phishing
GET /comsx/Sign%20in%20to%20XFINITY_files/moatad_002.js HTTP/1.1
Host: maryannmoise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maryannmoise.com/comsx/
HTTP/1.1 200 OK
Date: Wed, 15 Mar 2023 04:02:54 GMT
Server: Apache/2.4.56 (cPanel) OpenSSL/1.1.1t mod_bwlimited/1.4
Last-Modified: Thu, 23 Feb 2017 01:59:36 GMT
ETag: "18a91ef-2c81d-54928f70e9200"
Accept-Ranges: bytes
Content-Length: 182301
Keep-Alive: timeout=30, max=99
Connection: Keep-Alive
Content-Type: application/javascript
status.geotrust.com/
200 OK 471 B IP
Hash 3aca2ee224dcee2071f0a8909e93a7b4
4abf1ea8e4d95d839fdeb9c5d4c00765aea664ed
a280fbb9edce11d77df7b6f12656c5c3bf3a338d78a631c147ff1f422e3cf11a
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6063
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 15 Mar 2023 04:02:14 GMT
Last-Modified: Wed, 15 Mar 2023 02:21:11 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 471
z.moatads.com/comcastapn56341864860/moatad.js
200 OK 0 B URL HTTP/2 z.moatads.com/comcastapn56341864860/moatad.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /comcastapn56341864860/moatad.js HTTP/1.1
Host: z.moatads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://maryannmoise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: DgrV/yUP0cYZJ24pT7Z5LVkFATYFOX23OVuFadPO2EW++SB5KZZT2R0SCmVojLGlVbLec6pGXtw=
x-amz-request-id: CA2DQ7A5WM2MGH3Y
last-modified: Mon, 11 May 2020 15:59:42 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
accept-ranges: bytes
content-type: application/x-javascript
server: AmazonS3
content-length: 0
cache-control: max-age=51883
date: Wed, 15 Mar 2023 04:02:14 GMT
X-Firefox-Spdy: h2
maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/jquery-1.js
200 OK 94 kB URL HTTP/1.1 maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/jquery-1.js
IP
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)
Hash 25721ced154b3a99e818431446d7506d
3f1b0e9e54af1af2db2c8a639530448723462151
ff4e4975ef403004f8fe8e59008db7ad47f54b10d84c72eb90e728d1ec9157ce
Analyzer Verdict Alert fortinet Phishing
GET /comsx/Sign%20in%20to%20XFINITY_files/jquery-1.js HTTP/1.1
Host: maryannmoise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maryannmoise.com/comsx/
HTTP/1.1 200 OK
Date: Wed, 15 Mar 2023 04:02:54 GMT
Server: Apache/2.4.56 (cPanel) OpenSSL/1.1.1t mod_bwlimited/1.4
Last-Modified: Thu, 23 Feb 2017 01:59:36 GMT
ETag: "18a91ff-16f44-54928f70e9200"
Accept-Ranges: bytes
Content-Length: 94020
Keep-Alive: timeout=30, max=97
Connection: Keep-Alive
Content-Type: application/javascript
maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/omniture_visId.js
200 OK 83 kB URL HTTP/1.1 maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/omniture_visId.js
IP
File type ASCII text, with very long lines (707), with CRLF line terminators
Hash e97a8791094937eca04430b8fd76550b
69fac7a4b26fdd0e5ea9c7b679435c80857efb1f
0d511486e7d3d6543bce126133d47c2805c5e4f0ff4c6d6eefabd5d6e678bf99
Analyzer Verdict Alert fortinet Phishing
GET /comsx/Sign%20in%20to%20XFINITY_files/omniture_visId.js HTTP/1.1
Host: maryannmoise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maryannmoise.com/comsx/
HTTP/1.1 200 OK
Date: Wed, 15 Mar 2023 04:02:55 GMT
Server: Apache/2.4.56 (cPanel) OpenSSL/1.1.1t mod_bwlimited/1.4
Last-Modified: Thu, 23 Feb 2017 01:59:36 GMT
ETag: "18a91e7-14390-54928f70e9200"
Accept-Ranges: bytes
Content-Length: 82832
Keep-Alive: timeout=30, max=97
Connection: Keep-Alive
Content-Type: application/javascript
maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/Oscars_SignIn_300x250.jpg
200 OK 36 kB URL HTTP/1.1 maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/Oscars_SignIn_300x250.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x250, components 3\012- data
Hash a98fbe346dd7c66a4ca5f1f77aa75e44
ee1c12063d821ba884efe2afedd6cab81c825363
de3e0d54441cd6afe0d7d2afcb95eadf8fec5cb23ecd47a796c3818fe7fb8f4d
GET /comsx/Sign%20in%20to%20XFINITY_files/Oscars_SignIn_300x250.jpg HTTP/1.1
Host: maryannmoise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maryannmoise.com/comsx/
HTTP/1.1 200 OK
Date: Wed, 15 Mar 2023 04:02:55 GMT
Server: Apache/2.4.56 (cPanel) OpenSSL/1.1.1t mod_bwlimited/1.4
Last-Modified: Thu, 23 Feb 2017 01:59:36 GMT
ETag: "18a9206-8aba-54928f70e9200"
Accept-Ranges: bytes
Content-Length: 35514
Keep-Alive: timeout=30, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/moatad.js
200 OK 182 kB URL HTTP/1.1 maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/moatad.js
IP
File type ASCII text, with very long lines (554)
Size 182 kB (182301 bytes)
Hash 941a402bcb3a12f11ff32f50060a4f99
ecd237a5bc7d0995bf036e31eeabb97c6dd8c50d
894acd20e24fda4995bf56b9c7f5b0f2a634febf91db251a2adcbf6f6915e6f5
Analyzer Verdict Alert fortinet Phishing
GET /comsx/Sign%20in%20to%20XFINITY_files/moatad.js HTTP/1.1
Host: maryannmoise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maryannmoise.com/comsx/
HTTP/1.1 200 OK
Date: Wed, 15 Mar 2023 04:02:54 GMT
Server: Apache/2.4.56 (cPanel) OpenSSL/1.1.1t mod_bwlimited/1.4
Last-Modified: Thu, 23 Feb 2017 01:59:36 GMT
ETag: "18a9222-2c81d-54928f70e9200"
Accept-Ranges: bytes
Content-Length: 182301
Keep-Alive: timeout=30, max=97
Connection: Keep-Alive
Content-Type: application/javascript
maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/u.gif
200 OK 42 B URL HTTP/1.1 maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/u.gif
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /comsx/Sign%20in%20to%20XFINITY_files/u.gif HTTP/1.1
Host: maryannmoise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maryannmoise.com/comsx/
HTTP/1.1 200 OK
Date: Wed, 15 Mar 2023 04:02:55 GMT
Server: Apache/2.4.56 (cPanel) OpenSSL/1.1.1t mod_bwlimited/1.4
Last-Modified: Thu, 23 Feb 2017 01:59:36 GMT
ETag: "18a9203-2a-54928f70e9200"
Accept-Ranges: bytes
Content-Length: 42
Keep-Alive: timeout=30, max=95
Connection: Keep-Alive
Content-Type: image/gif
maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/event.gif
200 OK 42 B URL HTTP/1.1 maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/event.gif
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /comsx/Sign%20in%20to%20XFINITY_files/event.gif HTTP/1.1
Host: maryannmoise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maryannmoise.com/comsx/
HTTP/1.1 200 OK
Date: Wed, 15 Mar 2023 04:02:55 GMT
Server: Apache/2.4.56 (cPanel) OpenSSL/1.1.1t mod_bwlimited/1.4
Last-Modified: Thu, 23 Feb 2017 01:59:36 GMT
ETag: "18a9200-2a-54928f70e9200"
Accept-Ranges: bytes
Content-Length: 42
Keep-Alive: timeout=30, max=96
Connection: Keep-Alive
Content-Type: image/gif
maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/all.js
200 OK 199 kB URL HTTP/1.1 maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/all.js
IP
File type ASCII text, with very long lines (18053)
Size 199 kB (198957 bytes)
Hash bc6c96975ece396c2410a11de12aa324
dc29df9842c22f28b858e6384b9339e2632ce3fc
1cbf11d576a004a0f2bf7baa71c045dd94d4b0eb3e4c848df0bd75dcb144c5f7
Analyzer Verdict Alert fortinet Phishing
GET /comsx/Sign%20in%20to%20XFINITY_files/all.js HTTP/1.1
Host: maryannmoise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maryannmoise.com/comsx/
HTTP/1.1 200 OK
Date: Wed, 15 Mar 2023 04:02:55 GMT
Server: Apache/2.4.56 (cPanel) OpenSSL/1.1.1t mod_bwlimited/1.4
Last-Modified: Thu, 23 Feb 2017 01:59:36 GMT
ETag: "18a9207-3092d-54928f70e9200"
Accept-Ranges: bytes
Content-Length: 198957
Keep-Alive: timeout=30, max=97
Connection: Keep-Alive
Content-Type: application/javascript
us-ads.openx.net/w/1.0/jstag
200 OK 18 kB URL HTTP/2 us-ads.openx.net/w/1.0/jstag
IP
File type ASCII text, with very long lines (12594)
Hash f91c1928b63eb8f6cf7ea699e66671ab
09ae4cf8ab18ad9238cb452171581b5f1e77a27a
f53cf00dd688f62d7af9f96e4d22c229ee416b8464de6fc7a8b373bddf6be55c
GET /w/1.0/jstag HTTP/1.1
Host: us-ads.openx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://maryannmoise.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
server: OXGW/0.0.0
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Wed, 15 Mar 2023 05:02:14 GMT
date: Wed, 15 Mar 2023 04:02:14 GMT
content-type: text/javascript
content-length: 18072
content-encoding: gzip
cache-control: max-age=3600
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/seal.png
200 OK 3.1 kB URL HTTP/1.1 maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/seal.png
IP
File type PNG image data, 142 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash be19bc645a5d70db58e4317fb1f7f791
8c38f471f3e6d17af148acaab219db7e3e4a8d23
6ab85bc152133401e0ad5ca069990f4a76413499820d4ba95a0dadb063bcc8b8
GET /comsx/Sign%20in%20to%20XFINITY_files/seal.png HTTP/1.1
Host: maryannmoise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maryannmoise.com/comsx/
HTTP/1.1 200 OK
Date: Wed, 15 Mar 2023 04:02:55 GMT
Server: Apache/2.4.56 (cPanel) OpenSSL/1.1.1t mod_bwlimited/1.4
Last-Modified: Thu, 23 Feb 2017 01:59:36 GMT
ETag: "18a9213-c13-54928f70e9200"
Accept-Ranges: bytes
Content-Length: 3091
Keep-Alive: timeout=30, max=94
Connection: Keep-Alive
Content-Type: image/png
status.geotrust.com/
200 OK 471 B IP
Hash 3aca2ee224dcee2071f0a8909e93a7b4
4abf1ea8e4d95d839fdeb9c5d4c00765aea664ed
a280fbb9edce11d77df7b6f12656c5c3bf3a338d78a631c147ff1f422e3cf11a
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6061
Cache-Control: max-age=128022
Content-Type: application/ocsp-response
Date: Wed, 15 Mar 2023 04:02:14 GMT
Etag: "64107caf-1d7"
Expires: Thu, 16 Mar 2023 15:35:56 GMT
Last-Modified: Tue, 14 Mar 2023 13:54:55 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 471
maryannmoise.com/comsx/
200 OK 33 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6168)
Hash ba8ec113806cb0e79bae3434e6238213
0cd3f198873e6a0f9be82a9acfe07d4f7b041734
648daef874b30314788fc6c81e4472a77f329d1e49f0e0e45dac11fc59697f18
Analyzer Verdict Alert openphish Comcast Corporation
fortinet Phishing
GET /comsx/ HTTP/1.1
Host: maryannmoise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 15 Mar 2023 04:02:47 GMT
Server: Apache/2.4.56 (cPanel) OpenSSL/1.1.1t mod_bwlimited/1.4
X-Powered-By: PHP/5.5.38
Keep-Alive: timeout=30, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html
optimized-by.rubiconproject.com/a/11648/36314/150582-10.js?&cb=0.7300341636407711&tk_st=1&rp_s=c&p_exp=1&p_pos=atf&p_screen_res=1280x1024&ad_slot=36314_10
307 Temporary Redirect 0 B URL HTTP/1.1 optimized-by.rubiconproject.com/a/11648/36314/150582-10.js?&cb=0.7300341636407711&tk_st=1&rp_s=c&p_exp=1&p_pos=atf&p_screen_res=1280x1024&ad_slot=36314_10
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /a/11648/36314/150582-10.js?&cb=0.7300341636407711&tk_st=1&rp_s=c&p_exp=1&p_pos=atf&p_screen_res=1280x1024&ad_slot=36314_10 HTTP/1.1
Host: optimized-by.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maryannmoise.com/
HTTP/1.1 307 Temporary Redirect
Date: Wed, 15 Mar 2023 04:02:15 GMT
Content-Length: 0
Connection: keep-alive
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
Location: http://vast.rubiconproject.com/a/11648/36314/150582-10.js?tk_vps=2&&cb=0.7300341636407711&tk_st=1&rp_s=c&p_exp=1&p_pos=atf&p_screen_res=1280x1024&ad_slot=36314_10
X-Forwarded-For: 91.90.42.154
X-Forwarded-Proto: http
X-Forwarded-Port: 80
Host: optimized-by.rubiconproject.com
X-Amzn-Trace-Id: Root=1-64114347-34befd8f4edf143b54d42b88
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://maryannmoise.com/
maryannmoise.com/static/fonts/Xfinity-Standard/XfinityStandard-ExtraLight.woff2
500 Internal Server Error 0 B URL HTTP/1.1 maryannmoise.com/static/fonts/Xfinity-Standard/XfinityStandard-ExtraLight.woff2
IP
Analyzer Verdict Alert fortinet Phishing
GET /static/fonts/Xfinity-Standard/XfinityStandard-ExtraLight.woff2 HTTP/1.1
Host: maryannmoise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/styles-light.css
HTTP/1.1 500 Internal Server Error
Date: Wed, 15 Mar 2023 04:02:55 GMT
Server: Apache/2.4.56 (cPanel) OpenSSL/1.1.1t mod_bwlimited/1.4
X-Powered-By: PHP/5.5.38
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html
maryannmoise.com/static/fonts/Xfinity-Standard/XfinityStandard-Regular.woff2
500 Internal Server Error 0 B URL HTTP/1.1 maryannmoise.com/static/fonts/Xfinity-Standard/XfinityStandard-Regular.woff2
IP
Analyzer Verdict Alert fortinet Phishing
GET /static/fonts/Xfinity-Standard/XfinityStandard-Regular.woff2 HTTP/1.1
Host: maryannmoise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://maryannmoise.com/comsx/Sign%20in%20to%20XFINITY_files/styles-light.css
HTTP/1.1 500 Internal Server Error
Date: Wed, 15 Mar 2023 04:02:55 GMT
Server: Apache/2.4.56 (cPanel) OpenSSL/1.1.1t mod_bwlimited/1.4
X-Powered-By: PHP/5.5.38
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html
199.204.248.137
23.38.201.146
18.192.190.69
0.0.0.0