systaracademy.com/bofa/
200 OK 38 kB IP
ASN #34088 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (64584), with CRLF line terminators
Hash 14c473a2ebc36cc3836349f474b24273
6f42d45e8d5b5c22fadd4445a3a4e37a8fd0815a
6cb9b683c85c693998fe678f975f22090c71f0bb3ab89cce3f30fef88e93f6d2
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
openphish Bank of America
fortinet Phishing
GET /bofa/ HTTP/1.1
Host: systaracademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Mon, 02 Jan 2023 04:55:57 GMT
Server: Apache
Last-Modified: Fri, 28 Oct 2022 10:24:22 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 38487
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 116c0a4485584a949c2edff4a949549f
de064c35dd7ce008d69932915ddb3d04fe7f2eeb
4fc3e38254e220857100a1b2a7c96209fc9d1141ccfb9057181da9745e78fb8e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4FC3E38254E220857100A1B2A7C96209FC9D1141CCFB9057181DA9745E78FB8E"
Last-Modified: Sun, 01 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15491
Expires: Mon, 02 Jan 2023 09:14:08 GMT
Date: Mon, 02 Jan 2023 04:55:57 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8afcbdfc50b3ac9488d629a1a4923b81
933fe7b84c2fbd931da70e92c86fa89110e7cfe7
9857b3b813177c23f90a7e53c7ec1f878362b1da27bc19493bebffc358a4b852
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9857B3B813177C23F90A7E53C7EC1F878362B1DA27BC19493BEBFFC358A4B852"
Last-Modified: Sun, 01 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12509
Expires: Mon, 02 Jan 2023 08:24:26 GMT
Date: Mon, 02 Jan 2023 04:55:57 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 02 Jan 2023 04:47:22 GMT
content-type: application/json
age: 515
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e71f8c03e957e6b1526fc3f1537b3d95
6f1e5a549978b3cc67fa6142fd4bf45d2730bf71
29e3d9e5d2fec1b8e13beafa7970157db0c8b07392c4dd53fc033b609f2fc7ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "29E3D9E5D2FEC1B8E13BEAFA7970157DB0C8B07392C4DD53FC033B609F2FC7AD"
Last-Modified: Sun, 01 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6172
Expires: Mon, 02 Jan 2023 06:38:49 GMT
Date: Mon, 02 Jan 2023 04:55:57 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: HrUwN3b8d+wtmncjX5/EjOyBo2CMaO+lbnsDw4Zh4kDYvJ/197t+pZI/6o7wepkTmOKd6p6kmbY=
x-amz-request-id: ZQEEV237CYBBZA35
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 02 Jan 2023 04:00:20 GMT
age: 3337
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 02 Jan 2023 04:55:57 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
systaracademy.com/bofa/images/bactouch.css
200 OK 28 kB URL HTTP/1.1 systaracademy.com/bofa/images/bactouch.css
IP
ASN #34088 Host Europe GmbH
File type assembler source, ASCII text, with very long lines (972)
Hash abe9c9fe114494eb54703f611200e80f
c905870f35fec6a7c2c0a85e652e4eb4236f1ce7
bfe1f7944851d0ec35561a3978cde6312ab7019447c4c8594c97034eb338568e
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
GET /bofa/images/bactouch.css HTTP/1.1
Host: systaracademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://systaracademy.com/bofa/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 02 Jan 2023 04:55:57 GMT
Server: Apache
Last-Modified: Fri, 28 Oct 2022 10:24:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 28478
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
systaracademy.com/bofa/images/assets-images-global-logos-BofA_rgb-CSX5624a146.svg
200 OK 1.6 kB URL HTTP/1.1 systaracademy.com/bofa/images/assets-images-global-logos-BofA_rgb-CSX5624a146.svg
IP
ASN #34088 Host Europe GmbH
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8fca89216999aaa83cd49cdd64718983
e5ca753509b6419158235c1d4ead6308f5fd2cfe
bb46da660fc18bdd67ba4672ea42c7cd10de00f1a4161e5a5d2f0b61563f201c
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /bofa/images/assets-images-global-logos-BofA_rgb-CSX5624a146.svg HTTP/1.1
Host: systaracademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://systaracademy.com/bofa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 02 Jan 2023 04:55:57 GMT
Server: Apache
Last-Modified: Fri, 28 Oct 2022 10:24:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1603
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml
systaracademy.com/bofa/images/assets-images-site-secure-ah-forgot-common-BofA_symbol_rgb-CSX33067442.svg
200 OK 1.0 kB URL HTTP/1.1 systaracademy.com/bofa/images/assets-images-site-secure-ah-forgot-common-BofA_symbol_rgb-CSX33067442.svg
IP
ASN #34088 Host Europe GmbH
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6ee579729333a40e6ec2e4025bf6fc84
6d5a2a15a37eb8b9d75e3297e77c4a31858fdac2
8bec640ab2c43a35cea153f4f5efd4dfae1c2f0ee98ed637c2d20ab706be4a0f
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /bofa/images/assets-images-site-secure-ah-forgot-common-BofA_symbol_rgb-CSX33067442.svg HTTP/1.1
Host: systaracademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://systaracademy.com/bofa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 02 Jan 2023 04:55:57 GMT
Server: Apache
Last-Modified: Fri, 28 Oct 2022 10:24:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1009
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml
systaracademy.com/bofa/images/secure_lock.png
200 OK 352 B URL HTTP/1.1 systaracademy.com/bofa/images/secure_lock.png
IP
ASN #34088 Host Europe GmbH
File type PNG image data, 16 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash ff8d87768c21ac525aab367845d9bb5b
b696f80765cb074dab1117971569e81448d41ce2
b1f1b36d5a72970f7331a6d62472b2183611314a6535cb5f691a89c0aca8b52e
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
GET /bofa/images/secure_lock.png HTTP/1.1
Host: systaracademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://systaracademy.com/bofa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 02 Jan 2023 04:55:57 GMT
Server: Apache
Last-Modified: Fri, 28 Oct 2022 10:24:30 GMT
Accept-Ranges: bytes
Content-Length: 352
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
systaracademy.com/bofa/images/assets-images-global-footer-eha_logo_1x-CSXc5bd9130.png
200 OK 343 B URL HTTP/1.1 systaracademy.com/bofa/images/assets-images-global-footer-eha_logo_1x-CSXc5bd9130.png
IP
ASN #34088 Host Europe GmbH
File type PNG image data, 12 x 9, 8-bit/color RGBA, non-interlaced\012- data
Hash c577e2bea8cf9b70cc39827debe61198
0b78f70baeed5b061f0d08127d262368da3e62a1
35a77234f396ce2e5cc205ab9dd78c0cef11eaf14e4ef92bb910243021e83147
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
GET /bofa/images/assets-images-global-footer-eha_logo_1x-CSXc5bd9130.png HTTP/1.1
Host: systaracademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://systaracademy.com/bofa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 02 Jan 2023 04:55:57 GMT
Server: Apache
Last-Modified: Fri, 28 Oct 2022 10:24:28 GMT
Accept-Ranges: bytes
Content-Length: 343
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
systaracademy.com/bofa/images/assets-images-site-secure-ah-forgot-common-loader_black-CSX85ecad56.gif
404 Not Found 573 B URL HTTP/1.1 systaracademy.com/bofa/images/assets-images-site-secure-ah-forgot-common-loader_black-CSX85ecad56.gif
IP
ASN #34088 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash f101f18eca8df4b7552d112080adc552
d49f6ec58ee865d30d8cd73cb0664c7bd768450f
06a2a0b389559efdd456b27f4553c07f528a9fa4d53ad812955796056cb9c7e0
GET /bofa/images/assets-images-site-secure-ah-forgot-common-loader_black-CSX85ecad56.gif HTTP/1.1
Host: systaracademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://systaracademy.com/bofa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Mon, 02 Jan 2023 04:55:57 GMT
Server: Apache
Cache-Control: max-age=0, must-revalidate, no-store, nocache, private
0: Pragma
1: no-cache
2: Expires
3: Fri, 01 Jan 1990 00:00:00 GMT
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 573
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
systaracademy.com/bofa/images/assets-images-global-header-secure-lock-CSXa09bf5fc.svg
200 OK 257 B URL HTTP/1.1 systaracademy.com/bofa/images/assets-images-global-header-secure-lock-CSXa09bf5fc.svg
IP
ASN #34088 Host Europe GmbH
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (353), with no line terminators
Hash f7b7b471074c1b70613c4e7372a54d11
33b0c1c900471bb51eb17250a44f5af9e0c410b0
5b5b1d5852445084f5061b607d21702ddfcc1b67eec76aa6cd610c42b1a9cc85
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /bofa/images/assets-images-global-header-secure-lock-CSXa09bf5fc.svg HTTP/1.1
Host: systaracademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://systaracademy.com/bofa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 02 Jan 2023 04:55:57 GMT
Server: Apache
Last-Modified: Fri, 28 Oct 2022 10:24:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 257
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/svg+xml
systaracademy.com/bofa/images/assets-images-global-title-flagscape_red-CSX345e7fd7.svg
200 OK 1.2 kB URL HTTP/1.1 systaracademy.com/bofa/images/assets-images-global-title-flagscape_red-CSX345e7fd7.svg
IP
ASN #34088 Host Europe GmbH
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1709)
Hash cf9353dda4f03236b0404e784729d26c
1860bf478017fad5598ef39c8a69df789679b2d0
39c4b155e3d3ff2ca548cf534afa641b3d961868cf96ab03ad3e9a11d3cadc43
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /bofa/images/assets-images-global-title-flagscape_red-CSX345e7fd7.svg HTTP/1.1
Host: systaracademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://systaracademy.com/bofa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 02 Jan 2023 04:55:57 GMT
Server: Apache
Last-Modified: Fri, 28 Oct 2022 10:24:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1201
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml
systaracademy.com/bofa/images/assets-images-global-header-lock-CSX1f35fd71.png
200 OK 52 kB URL HTTP/1.1 systaracademy.com/bofa/images/assets-images-global-header-lock-CSX1f35fd71.png
IP
ASN #34088 Host Europe GmbH
File type PNG image data, 10 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash a86676a23cf698c92603069a6ee6dc65
54e430c27af1b2bc1cde3b7f4e5cbfe51aaf99e6
38fc756dfdd0689c674e787e6e030549f7f3856e533350aabeb46cce0d2b9b77
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
GET /bofa/images/assets-images-global-header-lock-CSX1f35fd71.png HTTP/1.1
Host: systaracademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://systaracademy.com/bofa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 02 Jan 2023 04:55:57 GMT
Server: Apache
Last-Modified: Fri, 28 Oct 2022 10:24:28 GMT
Accept-Ranges: bytes
Content-Length: 52278
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
systaracademy.com/bofa/cnx-regular.woff2
200 OK 12 kB URL HTTP/1.1 systaracademy.com/bofa/cnx-regular.woff2
IP
ASN #34088 Host Europe GmbH
File type Web Open Font Format (Version 2), TrueType, length 11608, version 1.197\012- data
Hash 46b5329e8e4e5925129ab2c36b336d0f
63cd5fbcbe5331e7d8059a4caee8d2510f834d68
79f02d139cfd07f2a19e0a8831553b3de4627fcab371e18eb776af035465949b
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /bofa/cnx-regular.woff2 HTTP/1.1
Host: systaracademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://systaracademy.com/bofa/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 02 Jan 2023 04:55:57 GMT
Server: Apache
Last-Modified: Fri, 28 Oct 2022 10:24:22 GMT
Accept-Ranges: bytes
Content-Length: 11608
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: font/woff2
systaracademy.com/bofa/cnx-bold.woff2
200 OK 12 kB URL HTTP/1.1 systaracademy.com/bofa/cnx-bold.woff2
IP
ASN #34088 Host Europe GmbH
File type Web Open Font Format (Version 2), TrueType, length 11800, version 1.197\012- data
Hash 79e7bc718644146e98b5d55f19c8ed4a
9d0c5c674b242443a055a654e1ef0fa0e31642e2
d48faa13adcd567a29299db487912dd91fd45f777cadf153520f52023b58cee7
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /bofa/cnx-bold.woff2 HTTP/1.1
Host: systaracademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://systaracademy.com/bofa/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 02 Jan 2023 04:55:57 GMT
Server: Apache
Last-Modified: Fri, 28 Oct 2022 10:24:22 GMT
Accept-Ranges: bytes
Content-Length: 11800
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: font/woff2
systaracademy.com/bofa/images/favicon.ico
200 OK 2.3 kB URL HTTP/1.1 systaracademy.com/bofa/images/favicon.ico
IP
ASN #34088 Host Europe GmbH
File type MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 84ad411392d1e8aee32564a5062a339a
9bb114fc751a45c8775c369ce3cd61f0ce251bf4
6bb865d37abbdb35562e5148e95c46b9ce83043b433a28f17e7e665550e54e0a
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
GET /bofa/images/favicon.ico HTTP/1.1
Host: systaracademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://systaracademy.com/bofa/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 02 Jan 2023 04:55:57 GMT
Server: Apache
Last-Modified: Fri, 28 Oct 2022 10:24:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2266
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/x-icon
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Alert, ETag, Content-Type, Last-Modified, Cache-Control, Expires, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 02 Jan 2023 04:33:35 GMT
age: 1343
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash e2a99db6956684dc306ada584f1907d8
21c3fc85b00308907c1cffcb36b1ba1a4617f613
cf568c4a26fb352228e849b18fbca0f6fd3b3a89055cd5f4fc0cdd11f9b9733e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1937
Cache-Control: max-age=103388
Content-Type: application/ocsp-response
Date: Mon, 02 Jan 2023 04:55:58 GMT
Etag: "63b14d29-1d7"
Expires: Tue, 03 Jan 2023 09:39:06 GMT
Last-Modified: Sun, 01 Jan 2023 09:06:49 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: olID22pJx+sqjlehXRsifA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: eR655TtWhExQuVtkLbjNan7aF6M=
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c4719f10b16aa492c5dbdb8a1bfc20af
21831c11bfc9679c9f0ebc1f6a39284a5d16be56
c8682ee9e025254ee9cd1d9c663a40707cb170c141a328a7de07ded8de06f787
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8682EE9E025254EE9CD1D9C663A40707CB170C141A328A7DE07DED8DE06F787"
Last-Modified: Sun, 01 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12534
Expires: Mon, 02 Jan 2023 08:24:53 GMT
Date: Mon, 02 Jan 2023 04:55:59 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c4719f10b16aa492c5dbdb8a1bfc20af
21831c11bfc9679c9f0ebc1f6a39284a5d16be56
c8682ee9e025254ee9cd1d9c663a40707cb170c141a328a7de07ded8de06f787
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8682EE9E025254EE9CD1D9C663A40707CB170C141A328A7DE07DED8DE06F787"
Last-Modified: Sun, 01 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12534
Expires: Mon, 02 Jan 2023 08:24:53 GMT
Date: Mon, 02 Jan 2023 04:55:59 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c4719f10b16aa492c5dbdb8a1bfc20af
21831c11bfc9679c9f0ebc1f6a39284a5d16be56
c8682ee9e025254ee9cd1d9c663a40707cb170c141a328a7de07ded8de06f787
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8682EE9E025254EE9CD1D9C663A40707CB170C141A328A7DE07DED8DE06F787"
Last-Modified: Sun, 01 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12534
Expires: Mon, 02 Jan 2023 08:24:53 GMT
Date: Mon, 02 Jan 2023 04:55:59 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c4719f10b16aa492c5dbdb8a1bfc20af
21831c11bfc9679c9f0ebc1f6a39284a5d16be56
c8682ee9e025254ee9cd1d9c663a40707cb170c141a328a7de07ded8de06f787
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8682EE9E025254EE9CD1D9C663A40707CB170C141A328A7DE07DED8DE06F787"
Last-Modified: Sun, 01 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12534
Expires: Mon, 02 Jan 2023 08:24:53 GMT
Date: Mon, 02 Jan 2023 04:55:59 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3feedb02-ce8c-47cf-9223-d70aa8de505e.jpeg
200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3feedb02-ce8c-47cf-9223-d70aa8de505e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 38e40811ed578de92f375dfa99e90241
05d0dcb58f1d69aa9bca5530ae4b2520e25cf4ef
1dc48f071b8c2b9445e6d412b972db274806f731a898af6f4574b880ab33b86d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3feedb02-ce8c-47cf-9223-d70aa8de505e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9545
x-amzn-requestid: 5ce1348a-f2ab-4719-a9cb-c10f1dd8cb9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d8I9NEfAoAMFW6Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ae5521-325a74066fade1e25614eb58;Sampled=0
x-amzn-remapped-date: Fri, 30 Dec 2022 03:04:01 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: SMq5cSDDpAyi-7496CQpTbVkuZc_HaQ-PgZ_YJjDFkLjPQ80NdR0GA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 1f41b5f27f3ec2e93db2155dbc56900c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 01 Jan 2023 08:40:14 GMT
age: 72945
etag: "05d0dcb58f1d69aa9bca5530ae4b2520e25cf4ef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0d70b7e-1974-4723-891e-b098c2494df9.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0d70b7e-1974-4723-891e-b098c2494df9.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4beaa41b47b8d7a83ee27374c72d83fb
7cdb4bdf49a3dd32340820ea7b18ff4df6312200
98de607e701402c547df168dae1741a9429c2bbfff8b31405a474a7936c588f0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0d70b7e-1974-4723-891e-b098c2494df9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10523
x-amzn-requestid: 73ae93a0-6482-4f63-b063-d47b23284ce1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d8Dn6Fh2oAMFrDQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ae4c98-4c175ff776540fe904b1f469;Sampled=0
x-amzn-remapped-date: Fri, 30 Dec 2022 02:27:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fg1fJ_o1iLOcmetdhkf7UYt861cJvEjce6p6UgRmOKQYtAA_XWt00Q==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 01 Jan 2023 22:09:22 GMT
age: 24397
etag: "7cdb4bdf49a3dd32340820ea7b18ff4df6312200"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbf86a4d4-d187-4199-b789-48ed7b12b68c.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbf86a4d4-d187-4199-b789-48ed7b12b68c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d632b1666de6a64512941efcbe64cb0e
9f72a2f67a6c0365b7667edc91b2b954847b15e0
d002d7a247939a94c76fe00aa304afa28bfe6bf4827e4fde625593d0f1f3597a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbf86a4d4-d187-4199-b789-48ed7b12b68c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10036
x-amzn-requestid: 41bfcbb1-3cd0-417c-b1c6-954abb968ec3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eFSD5HgeIAMFt6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b1fd4b-55beac627a99008106cf3b12;Sampled=0
x-amzn-remapped-date: Sun, 01 Jan 2023 21:38:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: whcWdhWPD-WHMv2mtmpg72woFBgKySWYreP0VQ9uyD9Nh91HzQuq5g==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 01 Jan 2023 21:58:21 GMT
age: 25058
etag: "9f72a2f67a6c0365b7667edc91b2b954847b15e0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F649080f2-6482-455e-a545-e676f3e25ccb.jpeg
200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F649080f2-6482-455e-a545-e676f3e25ccb.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1396aaf449ebdf802078412dadb62629
0ce4a7cdebab08ae6da21386b8e3eeb22ef8fa79
590aaa2428b715f36c0012b6e630de46e21760d03af492e4a1d0762cea1b61fb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F649080f2-6482-455e-a545-e676f3e25ccb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7929
x-amzn-requestid: ff1837be-1bbb-4a61-bb18-31aa3376a1c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d__ZbG_IoAMFwvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63afdf6f-73adde3b54daa25e17eefb18;Sampled=0
x-amzn-remapped-date: Sat, 31 Dec 2022 07:06:23 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: UYpln1bE0PbRHtzD-YHqaBqiLR07LikJ9SgmsomGtEm5rUU7InjylQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 7545e37b10b5fcf5e3df98185c85194a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 01 Jan 2023 07:37:05 GMT
age: 76734
etag: "0ce4a7cdebab08ae6da21386b8e3eeb22ef8fa79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b277398-f4fa-4af1-a6f3-47dc5a33ccf3.jpeg
200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b277398-f4fa-4af1-a6f3-47dc5a33ccf3.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c0452f1ad1a7813d06adf22e178c5284
615a0072aa450329f48fbf30c921cdb6670b249a
72b733f965c7438896bcd95aac4c9bb10a83a2c35f1c459be488b6751dc1b311
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b277398-f4fa-4af1-a6f3-47dc5a33ccf3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6459
x-amzn-requestid: b972726f-8a3e-4078-a11d-ea03474aed50
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d7a2EGwJIAMFvSw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ae0b59-183339ab019f2cbe168c8744;Sampled=0
x-amzn-remapped-date: Thu, 29 Dec 2022 21:49:13 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: y59ckb1uCbY_b7u8lk9CGep3RI12eiJyikcmfRXvoss6jRT3CbsLFQ==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 de2dd11312f7d5ad3bcd0cb112c7fd0e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 01 Jan 2023 22:21:26 GMT
age: 23673
etag: "615a0072aa450329f48fbf30c921cdb6670b249a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbff09b5-fd04-45ca-959e-83e4f40897df.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbff09b5-fd04-45ca-959e-83e4f40897df.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 02a9375cec16bfe696766c8d373d9b54
2167c2f197dd44558ac2dea500d8b6b3cfa50e83
6f94fe0c817b031d913d53fee6b317148bdabea044102b8f0c9df8a3737d59f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbff09b5-fd04-45ca-959e-83e4f40897df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10696
x-amzn-requestid: 2117681b-ee8b-4881-b860-087a8662a3c2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d7xM1FK7oAMFd4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ae2f1e-5a3648ba2ac7ba01177f361d;Sampled=0
x-amzn-remapped-date: Fri, 30 Dec 2022 00:21:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: q6iynVloHNnImjEwinGPE2aK--d_0Qz8LhHe3a6NqOJhTDhuYjCgrA==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 02 Jan 2023 04:20:33 GMT
age: 2126
etag: "2167c2f197dd44558ac2dea500d8b6b3cfa50e83"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
151.106.35.71
23.33.119.27
35.241.9.150
93.184.220.29