Report - hrnewshubb.com/?newsletters_link=7749686a886fc594b30f701d5b6e1a3c&history_id=7&subscriber

Report Overview

Submitted URL
hrnewshubb.com/?newsletters_link=7749686a886fc594b30f701d5b6e1a3c&history_id=7&subscriber_id=1
IP
88.99.62.166
ASN
#24940 Hetzner Online GmbH
Submitted
2022-09-21 03:53:30
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
16

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	3.5 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.35
cdn.clkmc.com	141658	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	342 B	13 kB	54.230.111.82
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	328 B	964 B	104.18.32.68
www.thehrdigest.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	433 B	130 kB	35.197.227.153
hrexecutive.com	276744	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	417 B	575 B	54.230.111.120
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
hrnewshubb.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	9.0 kB	579 kB	88.99.62.166
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	52.41.246.187
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	4.2 kB	142.250.74.3
ocsp2.globalsign.com	1544	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	345 B	1.9 kB	104.18.20.226
e1.o.lencr.org	6159	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	326 B	729 B	23.36.77.32
secure.gravatar.com	1671	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	416 B	1.8 kB	192.0.73.2
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.36
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	658 B	1.3 kB	93.184.220.29
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	481 B	22 kB	142.250.74.163
www.hrdive.com	349897	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	474 B	50 kB	104.18.2.43
www.clkmc.com	237002	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	637 B	529 B	50.23.73.34
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	338 B	865 B	143.204.42.156
www.insperity.com	210513	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	431 B	49 kB	141.193.213.20
platform.twitter.com	597	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	904 B	136 kB	93.184.220.66
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	1.2 kB	142.250.74.164
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	61 kB	34.120.237.76
syndication.twitter.com	833	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	445 B	863 B	104.244.42.72
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	441 B	159 kB	142.250.74.163

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-21	medium	hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/	Phishing
2022-09-21	medium	hrnewshubb.com/wp-content/cache/wpo-minify/1658412772/assets/wpo-minify-footer-a8ca32df.min.js	Phishing
2022-09-21	medium	hrnewshubb.com/wp-content/cache/wpo-minify/1658412772/assets/wpo-minify-footer-7b4c2c82.min.js	Phishing
2022-09-21	medium	hrnewshubb.com/wp-content/cache/wpo-minify/1658412772/assets/wpo-minify-header-77476178.min.js	Phishing
2022-09-21	medium	hrnewshubb.com/wp-content/plugins/wpforms-lite/assets/images/submit-spin.svg	Phishing
2022-09-21	medium	hrnewshubb.com/wp-content/themes/jnews/assets/dist/font/fontawesome-webfont.woff2	Phishing
2022-09-21	medium	hrnewshubb.com/wp-content/themes/jnews/assets/dist/font/jegicon.woff	Phishing
2022-09-21	medium	hrnewshubb.com/?ajax-request=jnews	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (28)

	URL	Size	First Seen	Last Seen
	hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/	565 B	2023-03-07	2023-03-17
Pretty URL hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/ IP 88.99.62.166 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:21:54 Last Seen2023-03-17 12:32:34 Times Seen1 Hash 6cb45051d5f809536ea6adb24c8108de 3b91dc3a44c10a5fe7ec1915f3606b479d797104 e1ef98dc13594c627c65145b9d6778877e8959930f1828eb78cbadf774291de9 Loading...

	hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/	567 B	2023-03-07	2023-03-17
Pretty URL hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/ IP 88.99.62.166 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:21:53 Last Seen2023-03-17 12:32:34 Times Seen1 Hash 28b249d23df7a74248927c08090c2403 5543e19937759523cb8f6c09580640d880f7400b d67b9d3561230d0f8c71a5666ed52b26689e5637ca23d025a081c2c1eebb3213 Loading...

	hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/	607 B	2023-03-07	2023-03-17
Pretty URL hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/ IP 88.99.62.166 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:21:53 Last Seen2023-03-17 12:32:34 Times Seen1 Hash 15f97e33db22a7532bf03160a8064b06 0e8d19d5e9eadfffe5757521f8d44735f4c8d34f 62374885333149703ade1995e7f8ab299f21643e696e0e12f2a99124b5004a1a Loading...

	www.google.com/recaptcha/api.js?render=6Ld2emkgAAAAAAyvnrXsNdhVYSjOCQ2Z0u9v6cUy	884 B	2023-03-07	2023-03-17
Pretty URL www.google.com/recaptcha/api.js?render=6Ld2emkgAAAAAAyvnrXsNdhVYSjOCQ2Z0u9v6cUy IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:18:03 Last Seen2023-03-17 12:32:34 Times Seen1 Hash 18d498245ad8781bcc63175c4f109534 e56be5c5d1e544dd3f80df3b4a18dbbacbc70e81 f38cc6cc9307748c8fa2ec00ae5531a0b41eec26180b16b97cdf768cb45495f0 Loading...

	hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/	62 B	2023-03-07	2024-04-18
Pretty URL hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/ IP 88.99.62.166 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12:35 Last Seen2024-04-18 08:37:27 Times Seen172 Hash e545e26151af9280ba01f26083b838a5 bf4c5dba3bcb4175da5166e537dba904c3ed3040 96068d7eb0e720f784a0a3eb1031c1c7e6b10e325220aab983a329bd6dd78da5 Loading...

	platform.twitter.com/widgets.js	99 kB	2023-03-07	2023-03-17
Pretty URL platform.twitter.com/widgets.js IP 93.184.220.66 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:34:45 Last Seen2023-03-17 12:51:43 Times Seen1 Hash f116c7e6b28e2aebeb60ade5bdc8e2b4 ce0bda8b168f6686ced01dd1b7337fd056ffec32 8f4fc0f336126492b535be2e0b29fbb538a3079547d19a81368aec9268a54f26 Loading...

	cdn.clkmc.com/cmc.js	12 kB	2023-03-07	2023-03-17
Pretty URL cdn.clkmc.com/cmc.js IP 54.230.111.82 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:18:03 Last Seen2023-03-17 12:42:53 Times Seen1 Hash 6f4225b2a1f88ef9bb0160c7369ae358 d17425d79ab35a4c3fba5fd9e52906522b12a087 1adf1fd31f6cfa9e40b20edd301bb91570577e870f384250c9d65e164a28a83e Loading...

	hrnewshubb.com/wp-content/cache/wpo-minify/1658412772/assets/wpo-minify-footer-a8ca32df.min.js	85 kB	2023-03-07	2023-03-17
Pretty URL hrnewshubb.com/wp-content/cache/wpo-minify/1658412772/assets/wpo-minify-footer-a8ca32df.min.js IP 88.99.62.166 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:21:53 Last Seen2023-03-17 12:32:34 Times Seen1 Hash 6ddbb6958936ff4dc0a1d8376c378967 54c77348ba216439ba50e6b843df2674a817c01d 9cac413cfaa5c5b7825fddd643b7dd778c1e1f5f736e473c2b460821fc613618 Loading...

	platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fhrnewshubb.com	327 kB	2023-03-07	2023-05-03
Pretty URL platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fhrnewshubb.com IP 93.184.220.66 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:57 Last Seen2023-05-03 22:50:00 Times Seen3 Hash 26599e03fbd14de8182dfc6fb71ab446 00642f9520c1d630f6474a3f910a3444d8e8d589 2af340a08ce2caffa6df9a38412f1df460199ea76e4bc1fe3957cc3ce2962518 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6Ld2emkgAAAAAAyvnrXsNdhVYSjOCQ2Z0u9v6cUy&co=aHR0cHM6Ly9ocm5ld3NodWJiLmNvbTo0NDM.&hl=en&v=zmiYzsHi8INTJBWt2QZC9aM5&size=invisible&cb=xblvcbweyrdp	35 kB	2023-03-07	2023-03-07
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6Ld2emkgAAAAAAyvnrXsNdhVYSjOCQ2Z0u9v6cUy&co=aHR0cHM6Ly9ocm5ld3NodWJiLmNvbTo0NDM.&hl=en&v=zmiYzsHi8INTJBWt2QZC9aM5&size=invisible&cb=xblvcbweyrdp IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:18:14 Last Seen2023-03-07 22:18:14 Times Seen1 Hash 7b9e58064a7ab4ed1089c5fc1b8940a8 a64d7f6c9b4e41b8ccbe72e187bb94eb803af86d b1716a2c2841a53df0b8d33847b516b96adc1b7556809e6aa6ddb6bf80711d37 Loading...

	hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/	826 B	2023-03-07	2023-03-07
Pretty URL hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/ IP 88.99.62.166 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:18:14 Last Seen2023-03-07 22:20:19 Times Seen1 Hash cdc003ff1b3c2aec5483271d2968ebe6 122ff78e136cc2c6ef1e56f95fc76fb823d33355 28c437166e2cff0ff9622dd8b1bb3e29f25f07280c80b2f4678c32eb5c7ce7a6 Loading...

	hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/	781 B	2023-03-07	2023-03-17
Pretty URL hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/ IP 88.99.62.166 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:21:54 Last Seen2023-03-17 12:32:34 Times Seen1 Hash cabfb3edcf2c5630b22bc0bb3a69bb89 9d635874074723603fce76596d0233cd8b1cff52 637c69711943fa0015e4418cd0d27140679ccaa62f30898f5776a0982b173cb7 Loading...

	hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/	1.6 kB	2023-03-07	2024-04-18
Pretty URL hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/ IP 88.99.62.166 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12:35 Last Seen2024-04-18 08:37:28 Times Seen720 Hash de7a35c3dec159ac52c1fa03d483936d 54474627725ca949656bc85026f26fc7a00c8c34 5f0a10ae6f6dad8fa1bdaf05e4d253565d4534bd8b1f99f26a2d39278061579b Loading...

	www.gstatic.com/recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js	397 kB	2023-03-07	2023-03-17
Pretty URL www.gstatic.com/recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js IP 142.250.74.163 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:00:06 Last Seen2023-03-17 12:55:53 Times Seen1 Hash ae7e42b66aa74379f09af0329753f2a3 c286bb007313f9aadb8b51dd749f28cae9addcac 3d94d48861ea4d1585e765d393147dafc3df44e3f33a2150b944bca4815cf9e4 Loading...

	hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/	23 kB	2023-03-07	2023-10-16
Pretty URL hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/ IP 88.99.62.166 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:21:54 Last Seen2023-10-16 11:22:19 Times Seen23 Hash 51cc8f69a2abd133c93946f63a6e75a9 1a4e062bcef42e023bc4336177f13c003db2bb49 c5c83bc4e918ba5af45a5a486928a98f088a17efb6b34ddd436818eb9357b49d Loading...

	hrnewshubb.com/wp-content/cache/wpo-minify/1658412772/assets/wpo-minify-footer-7b4c2c82.min.js	339 kB	2023-03-07	2023-03-17
Pretty URL hrnewshubb.com/wp-content/cache/wpo-minify/1658412772/assets/wpo-minify-footer-7b4c2c82.min.js IP 88.99.62.166 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:21:53 Last Seen2023-03-17 12:32:34 Times Seen1 Hash dcbafd0ab8fb16720f110930d77d7f12 259931b278c7b068b82fc21aa17293b6485b3eef 4355770fcdbbf77be513ab3e62c506c41142780583fb57b11ef9c015f9e1a8bf Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 03:43:29 Times Seen36952123 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/	27 B	2023-03-07	2024-02-24
Pretty URL hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/ IP 88.99.62.166 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12:35 Last Seen2024-02-24 21:24:44 Times Seen103 Hash 43f814a19956be5a11632ef78dab49b3 9317c9b4aedb2dcce253ad66ed080ca58f3ef881 8521c8950ada1be703583d14acc9ba9ef90c3752792f51b1b1bf9b50e4cddac8 Loading...

	hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/	156 B	2023-03-07	2023-03-17
Pretty URL hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/ IP 88.99.62.166 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:21:54 Last Seen2023-03-17 12:32:34 Times Seen1 Hash 41b1a05d3351930a5da3742c012b9c71 7a483444b84cc94f71a2681888b8ef8fada43b81 46256390d0130f7a9a93048d0fe9874e55f523f1796766aa23c5c07df5228add Loading...

	hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/	1.1 kB	2023-03-07	2023-03-17
Pretty URL hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/ IP 88.99.62.166 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:21:54 Last Seen2023-03-17 12:32:34 Times Seen1 Hash 4408bf79bc7ab2db936ace7421856c67 51ac87f1c1378a02081643f26a8faae432291ff9 cb3411ecb1465ed493d3a911a40a6fe2b4d8b0892d5805fdff7223c1a25aa38e Loading...

	hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/	1.4 kB	2023-03-07	2023-03-07
Pretty URL hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/ IP 88.99.62.166 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:18:14 Last Seen2023-03-07 22:18:14 Times Seen1 Hash e15c84e7de9056c931d2632b5fa06042 4afdd7942e196d6b7e1a5b5d3d136c897836fcdd 18ef007355c27bdb06b6b0b1678fc748484bec0eeba538bbb48dafda3495f729 Loading...

	hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/	248 B	2023-03-07	2023-03-07
Pretty URL hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/ IP 88.99.62.166 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:18:14 Last Seen2023-03-07 22:23:07 Times Seen1 Hash a8e2824a7ffd5ef3e553ce1147d527ae 626ceaf850838163afe6a12fc20474908e730fa0 fd54b3130201b9a3c2a7289badbb62338ae6ca0861764e5138e17b1e098ceb30 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6Ld2emkgAAAAAAyvnrXsNdhVYSjOCQ2Z0u9v6cUy&co=aHR0cHM6Ly9ocm5ld3NodWJiLmNvbTo0NDM.&hl=en&v=zmiYzsHi8INTJBWt2QZC9aM5&size=invisible&cb=xblvcbweyrdp	69 B	2023-03-07	2024-04-19
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6Ld2emkgAAAAAAyvnrXsNdhVYSjOCQ2Z0u9v6cUy&co=aHR0cHM6Ly9ocm5ld3NodWJiLmNvbTo0NDM.&hl=en&v=zmiYzsHi8INTJBWt2QZC9aM5&size=invisible&cb=xblvcbweyrdp IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-19 03:15:14 Times Seen99030 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

		Size	First Seen	Last Seen
	#1 Eval - 373012afda9925590aabcb384476d1f6	22 B	2023-03-07	2023-03-08
Pretty Observations First Seen2023-03-07 16:41:22 Last Seen2023-03-08 00:54:42 Times Seen1 Hash 373012afda9925590aabcb384476d1f6 943e9ca21ef20864c8fe55a75ffaaa3f6119c0cf e305e4a9f1526070c2c93d1248512d6460115b8db421e150919978d6f2df61a2 Loading...

	#2 Eval - 4a795f7c1464a2e28290d9274bd4635a	22 B	2023-03-07	2023-03-08
Pretty Observations First Seen2023-03-07 16:41:22 Last Seen2023-03-08 00:54:42 Times Seen1 Hash 4a795f7c1464a2e28290d9274bd4635a 5052026e2c2293d28c8e6bb4d7e80ae8bd29c7cc 45f5e5195f57ae43fbd3dacdbdf1de261f7a716f6241be91b64b0a1e990cdc75 Loading...

	#3 Eval - b10864d231a1296ea1248caabfb160ab	16 kB	2023-03-07	2023-03-08
Pretty Observations First Seen2023-03-07 16:41:22 Last Seen2023-03-08 00:54:42 Times Seen1 Hash b10864d231a1296ea1248caabfb160ab 3aa42f325ca47e4352ea87149ae8d9c0a36a0b52 82b81c86cdae578664003b993458bc63c9de6f989bde32d1671110605cbbb93f Loading...

	#4 Eval - d02073544900fc6539ed972587d65e17	20 kB	2023-03-07	2023-03-07
Pretty Observations First Seen2023-03-07 22:18:14 Last Seen2023-03-07 22:18:14 Times Seen1 Hash d02073544900fc6539ed972587d65e17 c3d3a7202831e525ec2df21a2185f72eee05fede 321acf5f2c5badf152ccfe48277b7e119846206d0ed6de9e599f9eae88d1f6b9 Loading...

	#5 Eval - 7692d33e088b920650c86e58a088fabf	64 B	2023-03-07	2023-03-08
Pretty Observations First Seen2023-03-07 16:41:22 Last Seen2023-03-08 00:54:42 Times Seen1 Hash 7692d33e088b920650c86e58a088fabf bb36a6dbb404f3f373f5826e700e73e6cb38959e 3755a8c0633fef887d8f3e30674dfbef87ddb8b872bf69663731ed531f6a6ed0 Loading...

HTTP Transactions (57)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.36

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
804f8bbb7f556d51a5f52d5ebd5b6eef
922cd7e06df278615a04abb81d811d14596c8180
ef4804d381a34ab67873a7755621081c49c646310e085a9b2356ae07098f6021

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Length, Backoff, Retry-After, Content-Type
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 21 Sep 2022 03:13:30 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _ZISWfV7qCg5aKGrzJuB4HJMRCcgwAfJxvDd9NV3BJvOI22AythRKA==
Age: 2388

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13548
Expires: Wed, 21 Sep 2022 07:39:06 GMT
Date: Wed, 21 Sep 2022 03:53:18 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

143.204.55.35

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 20 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zk6EdeNnWuLkCp5hLSyxXFrBMlvJddyoe_B8W5iRG0wfcaQvVosueQ==
age: 83885
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:53:18 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.36

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 21 Sep 2022 03:03:23 GMT
Cache-Control: max-age=3600
Expires: Wed, 21 Sep 2022 03:33:50 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: R5zdMLV3rZvS9r7KaaJhIcw9aI-ZVYPY4Mt9pbaoCEbt4uEbFZyFrg==
Age: 2997

hrnewshubb.com/?newsletters_link=7749686a886fc594b30f701d5b6e1a3c&history_id=7&subscriber_id=1

88.99.62.166

302 Found

20 B

URL HTTP/1.1
hrnewshubb.com/?newsletters_link=7749686a886fc594b30f701d5b6e1a3c&history_id=7&subscriber_id=1
IP
88.99.62.166:0
ASN
#24940 Hetzner Online GmbH

File type
data
Size
20 B (20 bytes)
Hash
7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

HTTP Headers

GET /?newsletters_link=7749686a886fc594b30f701d5b6e1a3c&history_id=7&subscriber_id=1 HTTP/1.1
Host: hrnewshubb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
Date: Wed, 21 Sep 2022 03:53:18 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Encoding: gzip
Vary: Accept-Encoding
Set-Cookie: PHPSESSID=00d4341399b3c34ef02b6db6d68eb650; path=/
Location: https://hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
edf07cd621f733b0eb50c632387ebf4f
61a082d26501c2c8d481b1676d0de2e585269613
e5c4324e4c55824b86f48bf0b9a1d317a82e7d3c19bdea7a91d78ce98d68a980

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5741
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:53:19 GMT
Last-Modified: Wed, 21 Sep 2022 02:17:38 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/

88.99.62.166

200 OK

27 kB

URL HTTP/1.1
hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/
IP
88.99.62.166:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (23411), with CRLF, LF line terminators
Size
27 kB (26575 bytes)
Hash
fae3ac420088323f59f359b69cdbdfcf
61a893720839196442b2d216639a3d6eab91926d
e575018683591f3b036ec1441b4774d2fff0d526580034db76177a11b83ca32d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/ HTTP/1.1
Host: hrnewshubb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 03:53:19 GMT
Server: Apache
Cache-Control: no-cache
Content-Encoding: gzip
WPO-Cache-Status: cached
Last-Modified: Wed, 21 Sep 2022 03:07:14 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

push.services.mozilla.com/

52.41.246.187

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.41.246.187:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2kA1MrxF9jTdo0nA7P6A5Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: c+a0Q+jKi7Ui7f+X6M1IhPXWyfw=

www.insperity.com/wp-content/uploads/Renew_Culture_leadership_1200x630.jpg

141.193.213.20

200 OK

48 kB

URL HTTP/2
www.insperity.com/wp-content/uploads/Renew_Culture_leadership_1200x630.jpg
IP
141.193.213.20:0
ASN
#209242 Cloudflare London, LLC

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x630, components 3\012- data
Size
48 kB (47883 bytes)
Hash
65cfd0d9ebdb90ea3c677d88b59e7a3a
e3a3ff1de7368b714b8a00ae318dc632d11d8fe0
27d2947d188fbd2086602bae7e13f3973889437ffd8237c985f8400398c8099d

HTTP Headers

GET /wp-content/uploads/Renew_Culture_leadership_1200x630.jpg HTTP/1.1
Host: www.insperity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hrnewshubb.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 21 Sep 2022 03:53:19 GMT
content-type: image/jpeg
content-length: 47883
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=47891, status=webp_bigger
etag: "6290ce63-bb13"
last-modified: Fri, 27 May 2022 13:13:07 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SMYkHsgfU9Of0xuB5JmqfeNCJWYZ5UM2Xs7B%2FFEBAKW0QAQCNE838JNKq%2BYufSMzAkDyku2QE8QhRg0F3ihApe%2By9bBJfnNPxSUUCEeNL5SCU5g34sYj7wFvy6z6hj7K913v"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74dfda6a6efab512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

platform.twitter.com/widgets.js

93.184.220.66

200 OK

29 kB

URL HTTP/1.1
platform.twitter.com/widgets.js
IP
93.184.220.66:0
ASN
#15133 EDGECAST

File type
Unicode text, UTF-8 text, with very long lines (33915)
Size
29 kB (29220 bytes)
Hash
0ccf02d52b75b85c65aa5460aa24aebf
50d1a19cb9ebbd6d42173ce2d963ea4df29e8e5a
d13778acf057777bad23fd020088463d65d2b7baff042cd4529d27faa46daf38

HTTP Headers

GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hrnewshubb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 341
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Wed, 21 Sep 2022 03:53:19 GMT
Etag: "f116c7e6b28e2aebeb60ade5bdc8e2b4+gzip"
Last-Modified: Wed, 31 Aug 2022 20:41:50 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F6FE)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
x-amzn-internal-status: 304
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 29220

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
67b756e82caefc7860b9f2d4a4f40341
adeae15d52089bcca4ca247fc4aebceef8406e34
72ff9f52080a633dc841554f7d4cc70083edd2572b535d84093ae63f0c50b832

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:53:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp2.globalsign.com/gsalphasha2g2

104.18.20.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsalphasha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1423 bytes)
Hash
4561e3a045b242060e847e89d669425a
4fca7db8f44858f8a723d4a16545d46c11621629
ddf5182ad000b004f4e09c9b7f8dfb0ab917e35bb9457656bc5ea13f76ee876d

HTTP Headers

POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 03:53:19 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sun, 25 Sep 2022 02:22:37 GMT
ETag: "4fca7db8f44858f8a723d4a16545d46c11621629"
Last-Modified: Wed, 21 Sep 2022 02:22:38 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3200
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74dfda6a9ddc0b49-OSL

cdn.clkmc.com/cmc.js

54.230.111.82

200 OK

12 kB

URL HTTP/1.1
cdn.clkmc.com/cmc.js
IP
54.230.111.82:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (12012)
Size
12 kB (12013 bytes)
Hash
6f4225b2a1f88ef9bb0160c7369ae358
d17425d79ab35a4c3fba5fd9e52906522b12a087
1adf1fd31f6cfa9e40b20edd301bb91570577e870f384250c9d65e164a28a83e

HTTP Headers

GET /cmc.js HTTP/1.1
Host: cdn.clkmc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hrnewshubb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 12013
Connection: keep-alive
Date: Thu, 15 Sep 2022 17:43:23 GMT
Last-Modified: Thu, 15 Sep 2022 17:42:46 GMT
ETag: "63236416-2eed"
Server: nginx
X-Permitted-Cross-Domain-Policies: none
Expires: Sat, 15 Oct 2022 17:43:23 GMT
Cache-Control: max-age=2592000, public, no-transform
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: q1Z-zVkBnavfEL5bayNW7ys0oMCW5GEGpTr28afhqH9-5K0F9Ddc5Q==
Age: 468596

hrnewshubb.com/wp-content/cache/wpo-minify/1658412772/assets/wpo-minify-header-62ea7310.min.css

88.99.62.166

200 OK

164 kB

URL HTTP/1.1
hrnewshubb.com/wp-content/cache/wpo-minify/1658412772/assets/wpo-minify-header-62ea7310.min.css
IP
88.99.62.166:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (65536), with no line terminators
Size
164 kB (164015 bytes)
Hash
2ee4ece48fb4d5ad7f33e47fedaa31df
ba833ae484d9784737958c537d82996a16f3df34
f9b544b408e4c8e97c5a1086ad33192eafd688c38261712fa1d10dc8829bd734

HTTP Headers

GET /wp-content/cache/wpo-minify/1658412772/assets/wpo-minify-header-62ea7310.min.css HTTP/1.1
Host: hrnewshubb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 03:53:19 GMT
Server: Apache
Last-Modified: Thu, 21 Jul 2022 14:14:23 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css

www.google.com/recaptcha/api.js?render=6Ld2emkgAAAAAAyvnrXsNdhVYSjOCQ2Z0u9v6cUy

142.250.74.164

200 OK

584 B

URL HTTP/2
www.google.com/recaptcha/api.js?render=6Ld2emkgAAAAAAyvnrXsNdhVYSjOCQ2Z0u9v6cUy
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (884), with no line terminators
Size
584 B (584 bytes)
Hash
3f4fac21d5824005c9ecfdd0f5e1f361
1f8e9dd578c1df06e83e6b49824a0c1f45ab185b
b795e225a05fa1113199fa119d688c7db0d95598320892556f0004f9d6d870b3

HTTP Headers

GET /recaptcha/api.js?render=6Ld2emkgAAAAAAyvnrXsNdhVYSjOCQ2Z0u9v6cUy HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hrnewshubb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
expires: Wed, 21 Sep 2022 03:53:19 GMT
date: Wed, 21 Sep 2022 03:53:19 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 584
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

hrnewshubb.com/wp-content/cache/wpo-minify/1658412772/assets/wpo-minify-footer-a23a0eec.min.css

88.99.62.166

200 OK

5.6 kB

URL HTTP/1.1
hrnewshubb.com/wp-content/cache/wpo-minify/1658412772/assets/wpo-minify-footer-a23a0eec.min.css
IP
88.99.62.166:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (40104), with no line terminators
Size
5.6 kB (5579 bytes)
Hash
c98d8d67feb713d57be005f016202fe8
fab805183208ecaf3f0c4b7a04301937e694fd19
85cf67af703ac4a7e8d0fe937b7689cb2ffb59fc8e46ce5e7cfc8a2ff32c4821

HTTP Headers

GET /wp-content/cache/wpo-minify/1658412772/assets/wpo-minify-footer-a23a0eec.min.css HTTP/1.1
Host: hrnewshubb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 03:53:19 GMT
Server: Apache
Last-Modified: Thu, 21 Jul 2022 14:12:59 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5579
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

hrnewshubb.com/wp-content/cache/wpo-minify/1658412772/assets/wpo-minify-footer-a8ca32df.min.js

88.99.62.166

200 OK

26 kB

URL HTTP/1.1
hrnewshubb.com/wp-content/cache/wpo-minify/1658412772/assets/wpo-minify-footer-a8ca32df.min.js
IP
88.99.62.166:0
ASN
#24940 Hetzner Online GmbH

File type
Unicode text, UTF-8 text, with very long lines (24350)
Size
26 kB (25526 bytes)
Hash
765157a824bbc95751c79e2d398eaf79
3b6538b8153f9b6c115d9ad58284ffbd6aceb904
a92b57371fcf770657f5ac1f47c9414b6ca2086a007329278d71947d2ad935fc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/cache/wpo-minify/1658412772/assets/wpo-minify-footer-a8ca32df.min.js HTTP/1.1
Host: hrnewshubb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 03:53:19 GMT
Server: Apache
Last-Modified: Thu, 21 Jul 2022 14:12:59 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 25526
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
bb4bdc4c3c6869c822618f0b9ef1bdc5
6a438b8d9d87aa30e0989ace7fc0d4cafce1f29d
eb762661b0a0ecc4ccdf50229ce134d0062e8d60698b7ed1970c5073b18f31ac

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:53:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hrnewshubb.com/wp-content/cache/wpo-minify/1658412772/assets/wpo-minify-footer-7b4c2c82.min.js

88.99.62.166

200 OK

98 kB

URL HTTP/1.1
hrnewshubb.com/wp-content/cache/wpo-minify/1658412772/assets/wpo-minify-footer-7b4c2c82.min.js
IP
88.99.62.166:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (27762)
Size
98 kB (97559 bytes)
Hash
3cb4962fa3a1bcda19f80c51d185031e
8024f755c6fb577a934e6a54f344c1856adc1d19
d4dbd5ca689bc0292a29b4eb81d1f7576df4f0f1bfa3b19b6120117e6022e16c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/cache/wpo-minify/1658412772/assets/wpo-minify-footer-7b4c2c82.min.js HTTP/1.1
Host: hrnewshubb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 03:53:19 GMT
Server: Apache
Last-Modified: Thu, 21 Jul 2022 14:14:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript

hrnewshubb.com/wp-content/cache/wpo-minify/1658412772/assets/wpo-minify-header-77476178.min.js

88.99.62.166

200 OK

122 kB

URL HTTP/1.1
hrnewshubb.com/wp-content/cache/wpo-minify/1658412772/assets/wpo-minify-header-77476178.min.js
IP
88.99.62.166:0
ASN
#24940 Hetzner Online GmbH

File type
ASCII text, with very long lines (64402)
Size
122 kB (121505 bytes)
Hash
16e251f0a69040981a08dda07e9bb0ff
34c8f89f9fb3a4f1245467035e09e79485b76d62
fd409b919a192d5540c0d9ac0744741d5afb9e19c8670ff323fa17a944c4797b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/cache/wpo-minify/1658412772/assets/wpo-minify-header-77476178.min.js HTTP/1.1
Host: hrnewshubb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 03:53:19 GMT
Server: Apache
Last-Modified: Thu, 21 Jul 2022 14:14:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript

hrnewshubb.com/wp-content/uploads/2022/08/Artboard-57-copy-2.png

88.99.62.166

200 OK

3.7 kB

URL HTTP/1.1
hrnewshubb.com/wp-content/uploads/2022/08/Artboard-57-copy-2.png
IP
88.99.62.166:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 371 x 81, 8-bit colormap, non-interlaced\012- data
Size
3.7 kB (3684 bytes)
Hash
98ca30d4681c1918ba99a8a6d7ad3c98
e28fc543bd1c1a51cdcd1340ad11524b56e65dfe
9f22f9e45f7a236ecc0a37cf3f850bda43b846f38059e6216d4e6b36c0a600a8

HTTP Headers

GET /wp-content/uploads/2022/08/Artboard-57-copy-2.png HTTP/1.1
Host: hrnewshubb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 03:53:19 GMT
Server: Apache
Last-Modified: Thu, 25 Aug 2022 18:48:50 GMT
Accept-Ranges: bytes
Content-Length: 3684
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

hrnewshubb.com/wp-content/plugins/wpforms-lite/assets/images/submit-spin.svg

88.99.62.166

200 OK

341 B

URL HTTP/1.1
hrnewshubb.com/wp-content/plugins/wpforms-lite/assets/images/submit-spin.svg
IP
88.99.62.166:0
ASN
#24940 Hetzner Online GmbH

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (509), with no line terminators
Size
341 B (341 bytes)
Hash
4f30c11c6c945558ac0b1e9b234bde5c
5b4f448644376dca70a372f105313573277cea94
7af0f2313b4d31bcc124db74b6a26865ba93b9f3c3a8fc5c96e03b9d501bf045

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/wpforms-lite/assets/images/submit-spin.svg HTTP/1.1
Host: hrnewshubb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 03:53:19 GMT
Server: Apache
Last-Modified: Thu, 21 Jul 2022 14:02:02 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 341
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml

hrnewshubb.com/wp-content/themes/jnews/assets/dist/image/preloader.gif

88.99.62.166

200 OK

4.4 kB

URL HTTP/1.1
hrnewshubb.com/wp-content/themes/jnews/assets/dist/image/preloader.gif
IP
88.99.62.166:0
ASN
#24940 Hetzner Online GmbH

File type
GIF image data, version 89a, 100 x 75\012- data
Size
4.4 kB (4399 bytes)
Hash
c225d4001dc31c7ff8e290129f436175
b27a1dcbf1accdee9b64db482e72ac3972363915
e2e60e9eae839d6b2e857c708f6d02ae6069141594b941a1590cd5c5435d42f4

HTTP Headers

GET /wp-content/themes/jnews/assets/dist/image/preloader.gif HTTP/1.1
Host: hrnewshubb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hrnewshubb.com/wp-content/cache/wpo-minify/1658412772/assets/wpo-minify-header-62ea7310.min.css
Cookie: cmc_vid=cmc1263239542
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 03:53:20 GMT
Server: Apache
Last-Modified: Wed, 09 Mar 2022 21:55:50 GMT
Accept-Ranges: bytes
Content-Length: 4399
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/gif

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c683e61e63df92799aa274fdac42cd3b
191aeec95861fa8596a90a10c60b22434431c033
898c007bc0e7d5f4d3180c9fe28b88036102ba64912d0773c023e1f4f07d7beb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:53:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c683e61e63df92799aa274fdac42cd3b
191aeec95861fa8596a90a10c60b22434431c033
898c007bc0e7d5f4d3180c9fe28b88036102ba64912d0773c023e1f4f07d7beb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:53:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/spacegrotesk/v12/V8mDoQDjQSkFtoMM3T6r8E7mPbF4C_k3HqU.woff2

142.250.74.163

200 OK

21 kB

URL HTTP/2
fonts.gstatic.com/s/spacegrotesk/v12/V8mDoQDjQSkFtoMM3T6r8E7mPbF4C_k3HqU.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21168, version 1.0\012- data
Size
21 kB (21168 bytes)
Hash
c0851feeb40ae88031f7cbaa837a8604
b34b5ea821589b25f9ab62e30d50d98fdd7dfd93
a6149fd306a56b55b91f5ceb5b62ce0445963e3557072d4aae4dbe1699893130

HTTP Headers

GET /s/spacegrotesk/v12/V8mDoQDjQSkFtoMM3T6r8E7mPbF4C_k3HqU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hrnewshubb.com
Connection: keep-alive
Referer: https://hrnewshubb.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21168
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 03:22:12 GMT
expires: Fri, 15 Sep 2023 03:22:12 GMT
cache-control: public, max-age=31536000
age: 520268
last-modified: Wed, 27 Apr 2022 16:16:32 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c683e61e63df92799aa274fdac42cd3b
191aeec95861fa8596a90a10c60b22434431c033
898c007bc0e7d5f4d3180c9fe28b88036102ba64912d0773c023e1f4f07d7beb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:53:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hrnewshubb.com/wp-content/themes/jnews/assets/dist/font/fontawesome-webfont.woff2

88.99.62.166

200 OK

77 kB

URL HTTP/1.1
hrnewshubb.com/wp-content/themes/jnews/assets/dist/font/fontawesome-webfont.woff2
IP
88.99.62.166:0
ASN
#24940 Hetzner Online GmbH

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/jnews/assets/dist/font/fontawesome-webfont.woff2 HTTP/1.1
Host: hrnewshubb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://hrnewshubb.com/wp-content/cache/wpo-minify/1658412772/assets/wpo-minify-header-62ea7310.min.css
Cookie: cmc_vid=cmc1263239542
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 03:53:20 GMT
Server: Apache
Last-Modified: Wed, 09 Mar 2022 21:55:50 GMT
Accept-Ranges: bytes
Content-Length: 77160
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: font/woff2

hrnewshubb.com/wp-content/themes/jnews/assets/dist/font/jegicon.woff

88.99.62.166

200 OK

7.1 kB

URL HTTP/1.1
hrnewshubb.com/wp-content/themes/jnews/assets/dist/font/jegicon.woff
IP
88.99.62.166:0
ASN
#24940 Hetzner Online GmbH

File type
Web Open Font Format, CFF, length 7144, version 1.0\012- data
Size
7.1 kB (7144 bytes)
Hash
80f6e7a7a6eb44255aeb06a2d5b5ea41
4ded570e00c9c96cc3cf18e770903cb60e360ce4
e2d3127da85763e024971c6192f78becbdf85db231b3d088c9f8b3777d444ede

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/jnews/assets/dist/font/jegicon.woff HTTP/1.1
Host: hrnewshubb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://hrnewshubb.com/wp-content/cache/wpo-minify/1658412772/assets/wpo-minify-header-62ea7310.min.css
Cookie: cmc_vid=cmc1263239542
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 03:53:20 GMT
Server: Apache
Last-Modified: Wed, 09 Mar 2022 21:55:50 GMT
Accept-Ranges: bytes
Content-Length: 7144
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: font/woff

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c683e61e63df92799aa274fdac42cd3b
191aeec95861fa8596a90a10c60b22434431c033
898c007bc0e7d5f4d3180c9fe28b88036102ba64912d0773c023e1f4f07d7beb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:53:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fhrnewshubb.com

93.184.220.66

200 OK

105 kB

URL HTTP/1.1
platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fhrnewshubb.com
IP
93.184.220.66:0
ASN
#15133 EDGECAST

File type
HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size
105 kB (105445 bytes)
Hash
aa228863765c3263e12f1d7c71015518
619739a12e0f16eab26a43a913b35779edea57a6
cf9a241903646ee9b88b76da2bb3e11d16f36246f7bbc53bbe2c98466e5ea12a

HTTP Headers

GET /widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fhrnewshubb.com HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hrnewshubb.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 1753809
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Wed, 21 Sep 2022 03:53:20 GMT
Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
Last-Modified: Wed, 31 Aug 2022 20:40:57 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F706)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105445

hrnewshubb.com/wp-content/uploads/2022/08/ad_728x90.png

88.99.62.166

200 OK

18 kB

URL HTTP/1.1
hrnewshubb.com/wp-content/uploads/2022/08/ad_728x90.png
IP
88.99.62.166:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 728 x 90, 8-bit colormap, non-interlaced\012- data
Size
18 kB (18211 bytes)
Hash
6ed4b2c1f25e07104d10a3d4252bf587
1703ddab0d7b2e7692c0d325ebc7992a745aeec4
40693b8b8aad53c717710dddd10047bcb3d6b0e1aa2180feee00adaa85ec29de

HTTP Headers

GET /wp-content/uploads/2022/08/ad_728x90.png HTTP/1.1
Host: hrnewshubb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/
Cookie: cmc_vid=cmc1263239542; JCS_INENREF=; JCS_INENTIM=1663732400530; _wpss_h_=1; _wpss_p_=N%3A0%20%7C%20
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 03:53:20 GMT
Server: Apache
Last-Modified: Thu, 25 Aug 2022 18:48:53 GMT
Accept-Ranges: bytes
Content-Length: 18211
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

e1.o.lencr.org/

23.36.77.32

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
de10e6b6de1bbead0ec0d7fbd6ae83fe
bfa882565ceb80a72d395e1638f4ec534eb396b4
3b951fb42c7bc019bc02010b4e20c7ae6b9e55773d7e02159ebcdaf661d28319

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "3B951FB42C7BC019BC02010B4E20C7AE6B9E55773D7E02159EBCDAF661D28319"
Last-Modified: Sun, 18 Sep 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16441
Expires: Wed, 21 Sep 2022 08:27:21 GMT
Date: Wed, 21 Sep 2022 03:53:20 GMT
Connection: keep-alive

hrnewshubb.com/wp-content/uploads/2022/08/ad_345x345.jpg

88.99.62.166

200 OK

15 kB

URL HTTP/1.1
hrnewshubb.com/wp-content/uploads/2022/08/ad_345x345.jpg
IP
88.99.62.166:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 345x345, components 3\012- data
Size
15 kB (14694 bytes)
Hash
95d392d17550d6fcbcf58821cbabeef1
4c2a7f1a5e8f8f6efa536fc50af4107156f96789
62739fd4bdf40db5d2896ac6bfe94dae158da0805fc8adde694a4d89be113497

HTTP Headers

GET /wp-content/uploads/2022/08/ad_345x345.jpg HTTP/1.1
Host: hrnewshubb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/
Cookie: cmc_vid=cmc1263239542; JCS_INENREF=; JCS_INENTIM=1663732400530; _wpss_h_=1; _wpss_p_=N%3A0%20%7C%20
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 03:53:20 GMT
Server: Apache
Last-Modified: Thu, 25 Aug 2022 19:00:07 GMT
Accept-Ranges: bytes
Content-Length: 14694
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg

www.hrdive.com/imgproxy/7gvfBZnXafRhhCGMR3yb3f2vyzXc7ZtPTBaXq0VHETA/g:ce/rs:fill:770:364:0/bG9jYWw6Ly8vZGl2ZWltYWdlL1ViZXIuanBn.jpg

104.18.2.43

200 OK

50 kB

URL HTTP/2
www.hrdive.com/imgproxy/7gvfBZnXafRhhCGMR3yb3f2vyzXc7ZtPTBaXq0VHETA/g:ce/rs:fill:770:364:0/bG9jYWw6Ly8vZGl2ZWltYWdlL1ViZXIuanBn.jpg
IP
104.18.2.43:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, orientation=upper-left], progressive, precision 8, 770x364, components 3\012- data
Size
50 kB (49598 bytes)
Hash
403c731a50f7bba888e87acbe9eec756
257ca83e43b01ad2b8a8d5c31f9871109c57d09b
c5e36868473ec8ec20e9a7da3ad068962531f43aad79cd9c890a1de7776e416c

HTTP Headers

GET /imgproxy/7gvfBZnXafRhhCGMR3yb3f2vyzXc7ZtPTBaXq0VHETA/g:ce/rs:fill:770:364:0/bG9jYWw6Ly8vZGl2ZWltYWdlL1ViZXIuanBn.jpg HTTP/1.1
Host: www.hrdive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hrnewshubb.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 21 Sep 2022 03:53:20 GMT
content-type: image/jpeg
content-length: 49598
cache-control: public, max-age=2592000
cf-bgj: imgq:85,h2pri
cf-polished: origSize=51061
content-disposition: inline; filename="Uber.jpg"
expires: Fri, 21 Oct 2022 03:53:20 GMT
via: 1.1 varnish (Varnish/7.1)
x-location: EU
x-request-id: zYRBG9tti5fh6l4uwKX6T
x-varnish: 259726167 257863124
last-modified: Tue, 20 Sep 2022 00:00:56 GMT
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74dfda703995b50f-OSL
X-Firefox-Spdy: h2

www.clkmc.com/api/?vid=1263239542&uid=165271&hid=388133123&cmc_project=HR%20News%20Hubb&utm_source=organic&version=2.36.3&disabled=0&utm_medium=organic&utm_campaign=none&page_url=https%3A%2F%2Fhrnewshubb.com%2F2022%2F09%2F18%2F6-ways-to-fire-up-a-leadership-team-about-company-culture%2F

50.23.73.34

200 OK

19 B

URL HTTP/1.1
www.clkmc.com/api/?vid=1263239542&uid=165271&hid=388133123&cmc_project=HR%20News%20Hubb&utm_source=organic&version=2.36.3&disabled=0&utm_medium=organic&utm_campaign=none&page_url=https%3A%2F%2Fhrnewshubb.com%2F2022%2F09%2F18%2F6-ways-to-fire-up-a-leadership-team-about-company-culture%2F
IP
50.23.73.34:0
ASN
#36351 SOFTLAYER

File type
JSON data\012- , ASCII text, with no line terminators
Size
19 B (19 bytes)
Hash
d7b66fb2006f2728db63fde56b24547d
6128eaed02c4e6ca18bc3496398d715b7a84dc95
31f07c56dbc7456181efc5f90374399d8b9789f5ea7bc8cbe99faad194f2cc1b

HTTP Headers

GET /api/?vid=1263239542&uid=165271&hid=388133123&cmc_project=HR%20News%20Hubb&utm_source=organic&version=2.36.3&disabled=0&utm_medium=organic&utm_campaign=none&page_url=https%3A%2F%2Fhrnewshubb.com%2F2022%2F09%2F18%2F6-ways-to-fire-up-a-leadership-team-about-company-culture%2F HTTP/1.1
Host: www.clkmc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hrnewshubb.com
Connection: keep-alive
Referer: https://hrnewshubb.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 03:53:20 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With
P3P: CP="This is not a P3P policy! See http://www.clkmc.com for more info."
Server: nginx
X-Permitted-Cross-Domain-Policies: none
X-CM-FE: httpfe-02.clickmagick.com
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block

ocsp.digicert.com/

93.184.220.29

200 OK

312 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
312 B (312 bytes)
Hash
0468202d191fdd88d10283654810ed42
f30c9a4976793aee6e2de70ef597b5de31ba4ddc
a5e4c0bf15cb95ab739d0cf21cde8fb54ae732e6a509d1ea042826dec3ae0e2d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5071
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 21 Sep 2022 03:53:20 GMT
Last-Modified: Wed, 21 Sep 2022 02:28:49 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 312

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
b907f1774a0be52fb85a14f770cfd50b
78f1dc84fc21950af2826d8ee21a6ca6a8006174
bb866f650ce317cb58a4baaf6de79936710e29e24abb69e76c07646eff11e47c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 03:53:20 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 17 Sep 2022 18:31:16 GMT
Expires: Sat, 24 Sep 2022 18:31:15 GMT
Etag: "78f1dc84fc21950af2826d8ee21a6ca6a8006174"
Cache-Control: max-age=311274,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74dfda70c913b4fd-OSL

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16298
Expires: Wed, 21 Sep 2022 08:24:58 GMT
Date: Wed, 21 Sep 2022 03:53:20 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16298
Expires: Wed, 21 Sep 2022 08:24:58 GMT
Date: Wed, 21 Sep 2022 03:53:20 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16298
Expires: Wed, 21 Sep 2022 08:24:58 GMT
Date: Wed, 21 Sep 2022 03:53:20 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg

34.120.237.76

200 OK

9.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.2 kB (9201 bytes)
Hash
a692964324dbb9c460a1b855808d02e6
1eef1ab0099d09d1cf965b6e7b55fe2aa4e18e54
3fa9e780d62fffb635064aeed542c8e04923ff943c6080476836fab6c24e2426

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9201
x-amzn-requestid: 6dbfae76-f9ab-4f31-9b62-bcf5d9ce4515
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YxzxlEYcoAMFaQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a333d-7d147481402cc46a751b72ed;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:40:13 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hI3FlJJRAUfr0EAcSvvuJajmyQDwBpTxuQIhYfA0Mtp9JyQgKnoDvA==
via: 1.1 7dcaa43cd0535d889b549e6a30a57aa0.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 21:43:18 GMT
age: 22202
etag: "1eef1ab0099d09d1cf965b6e7b55fe2aa4e18e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60ffb31d-d07d-4e81-9477-522f011ae13e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8861 bytes)
Hash
a504981ee10d8341b64f19001464ae8a
56f228d7358ba9deef000f53214dc7c1dc358109
0ea3b6ed12f3adf9d56e7d9b61f284d28107d99f28ee4e66b4c078a9a1a0cbee

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60ffb31d-d07d-4e81-9477-522f011ae13e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8861
x-amzn-requestid: 873e88ab-7afc-4b14-b428-d90ec2079741
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YO2wuE0AoAMF7Gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631c3804-0d25ab397a16c78907914e23;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 07:08:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: UStTyIXPucbY9WmDl3W5bTyeT-2SJ5CTUjv8TLeexqZtKd1p2sJrNA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 03:25:34 GMT
age: 1666
etag: "56f228d7358ba9deef000f53214dc7c1dc358109"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6b35a1c-f445-4b05-b56e-ce2ad0ef2a9a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.9 kB (6897 bytes)
Hash
8bae3a7a80ff40df1d701dfc925ddeff
91df60162a8322469cada0dd8eb93619f28aec1a
fab10c7ad4658bc191621d9f2042236a7b6e34448ce5215dde5b8d6a64b52952

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6b35a1c-f445-4b05-b56e-ce2ad0ef2a9a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6897
x-amzn-requestid: 280a2e44-c21a-4d78-991b-3328e816d045
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YwWSpE0SoAMFaxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63299daa-55cb53491be78c4d5bed0462;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 11:02:02 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: eNkM22Xu--qgJdsrH-UrTG5-Ie4nAsyLjiMaJ5ZKIz0bbw7cYrvFjw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 02:18:26 GMT
age: 5694
etag: "91df60162a8322469cada0dd8eb93619f28aec1a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d9d6ae0-dc0d-4bab-98fe-eb30bb5f5b2d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11552 bytes)
Hash
370f018032c47c9e5c11e6afa4ffdd1f
639c8d2d6f1cf5fa6d742925ea61386d600dd368
6084e769cbcc679110c174e8031439f80bcfa0027d1c39c7b6626c54692da120

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d9d6ae0-dc0d-4bab-98fe-eb30bb5f5b2d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11552
x-amzn-requestid: 5457ef1c-d92b-4cd5-a704-64c1ff0cb2b3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yxy1mFRXIAMFv5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a31bd-3cd341153ca71b7c069b6ead;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:33:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: X4rDCd0vk2t74s7qjkuMYwmoA8Ul9As6m5KBtDhltneCK6hSDgfXPQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 21:41:04 GMT
age: 22336
etag: "639c8d2d6f1cf5fa6d742925ea61386d600dd368"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

syndication.twitter.com/settings?session_id=1ca764ef8ec19ab49ee99fd6929f91b5a51c28cf

104.244.42.72

200 OK

327 B

URL HTTP/2
syndication.twitter.com/settings?session_id=1ca764ef8ec19ab49ee99fd6929f91b5a51c28cf
IP
104.244.42.72:0
ASN
#13414 TWITTER

File type
JSON data\012- , ASCII text, with very long lines (771), with no line terminators
Size
327 B (327 bytes)
Hash
21b37ea7072f5ae3a8fefdf555c10764
a509a3feca059bd0dc935c1ac59d600db3a68cb1
4d533bada6157ca9a0def76cc78590afd015569b76f1e3444d95be7c5fbd3b5b

HTTP Headers

GET /settings?session_id=1ca764ef8ec19ab49ee99fd6929f91b5a51c28cf HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Wed, 21 Sep 2022 03:53:20 GMT
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Wed, 21 Sep 2022 03:53:20 GMT
content-length: 327
content-encoding: gzip
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 104
x-connection-hash: f284bc7178a5f4f352ce87f223c61b08e8853ac7f4df4ce563093703edffc7ba
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0461a18-eff3-4de5-b1f6-be49fa5db229.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.8 kB (8826 bytes)
Hash
4eb6d1b35f680bfec656941b6167fd23
344c6000dbdafdb5105edc93a082d640c3e95ddc
67fc85fa0f1a55d57ab9db6f4c723fb9116ef3b2c5282dbdd42d9c37396bd7b9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0461a18-eff3-4de5-b1f6-be49fa5db229.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8826
x-amzn-requestid: cf0c711e-4ec9-4f87-a60f-41374262a114
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYweUHIyoAMFYQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202df5-17ad5d4e25a754586e531d05;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:15:01 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OEbpCQXLpTCDZH4OlzVvvsc-bSgbsIoXRgX6f-nKVwJTL5-SVTCHeA==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 21:56:09 GMT
age: 21431
etag: "344c6000dbdafdb5105edc93a082d640c3e95ddc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6be1360-d048-4319-9cac-dfebe92db87f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.3 kB (9271 bytes)
Hash
267173c6b4e4e6ae4a84dc08df92f82f
4183102af1963e1edb3aa572c43aeda7d855e9f5
20487bb2e59f2e6afcaaac3e3c4f1dfec9a8ef761403a44f7f92a6b57d143714

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6be1360-d048-4319-9cac-dfebe92db87f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9271
x-amzn-requestid: b8139dfc-8f24-41e0-9948-56bad215416c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yx0Q-EkZoAMF_sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a3406-4365026f7f832cee0c12e4d7;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:43:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rUeMyRv1DxHKmRAc4s-8GkQELQtAO-_lKHB2tjRYSQUSBMJMmDAZcQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 21:56:09 GMT
age: 21431
etag: "4183102af1963e1edb3aa572c43aeda7d855e9f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.thehrdigest.com/wp-content/uploads/2022/09/importance-and-role-of-people-analytics.jpg

35.197.227.153

200 OK

129 kB

URL HTTP/2
www.thehrdigest.com/wp-content/uploads/2022/09/importance-and-role-of-people-analytics.jpg
IP
35.197.227.153:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 900x449, components 3\012- data
Size
129 kB (128987 bytes)
Hash
5b2e122441cb4cc88c7e6c52ca1f970b
c70155a1ce8799a92d2cf4d5132debd6db073ce5
115240e53b88179e87e7245195f07120ca2bca4e63b436930180b9baee2f9cf4

HTTP Headers

GET /wp-content/uploads/2022/09/importance-and-role-of-people-analytics.jpg HTTP/1.1
Host: www.thehrdigest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hrnewshubb.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:53:20 GMT
content-type: image/jpeg
content-length: 128987
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expect-ct: max-age=7776000, enforce
referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy: 
last-modified: Tue, 20 Sep 2022 10:54:41 GMT
cache-control: max-age=31536000, public
expires: Wed, 20 Sep 2023 10:55:46 GMT
x-httpd: 1
x-cdn-c: static
x-sg-cdn: 1
x-proxy-cache: HIT
host-header: 8441280b0c35cbc1147f8ba998a563a7
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

143.204.42.156

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.156:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
eb39a6764cf6806459bc1472e570b1cd
fdc63cfb85c82a0751d486e876230144de2f7498
109db7c119afd43302ca2ccdea2bc64e3fe097d7d90ea3ecde8414ccc972a381

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Wed, 21 Sep 2022 03:53:20 GMT
Server: ECS (dcb/7F16)
X-Cache: Miss from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: xc1SGB7_mzuB96fRoCsPXB0ind8eHhNARmBzWZRj08CFJPiytsKbcQ==

www.gstatic.com/recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js

142.250.74.163

200 OK

158 kB

URL HTTP/2
www.gstatic.com/recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (581)
Size
158 kB (157726 bytes)
Hash
6519c7c04cf32a57b1c5ee45a73c233e
4939bb921988e9eb13780cc2244f3099776e9bfb
8352dd4e3e0fe82562cdc280c020fc31d2c6d054f7ead441a3b18de8ef04401b

HTTP Headers

GET /recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hrnewshubb.com
Connection: keep-alive
Referer: https://hrnewshubb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 157726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 05:37:29 GMT
expires: Thu, 14 Sep 2023 05:37:29 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 14 Sep 2022 00:24:01 GMT
content-type: text/javascript
age: 598552
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

secure.gravatar.com/avatar/5658ffccee7f0ebfda2b226238b1eb6e?s=80&d=mm&r=g

192.0.73.2

200 OK

1.3 kB

URL HTTP/2
secure.gravatar.com/avatar/5658ffccee7f0ebfda2b226238b1eb6e?s=80&d=mm&r=g
IP
192.0.73.2:0
ASN
#2635 AUTOMATTIC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 80x80, components 3\012- data
Size
1.3 kB (1323 bytes)
Hash
1127a8ec43092614d584219c5bc7f114
d2632fef16f0a845bb730f4f33605af59a9baefe
4faa1d5635283a0d49e1933de318b24491751c9a3ccf2fe404b9137929e3eb86

HTTP Headers

GET /avatar/5658ffccee7f0ebfda2b226238b1eb6e?s=80&d=mm&r=g HTTP/1.1
Host: secure.gravatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hrnewshubb.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 21 Sep 2022 03:53:21 GMT
content-type: image/jpeg
content-length: 1323
last-modified: Wed, 11 Jan 1984 08:00:00 GMT
link: <https://www.gravatar.com/avatar/5658ffccee7f0ebfda2b226238b1eb6e?s=80&d=mm&r=g>; rel="canonical"
access-control-allow-origin: *
content-disposition: inline; filename="5658ffccee7f0ebfda2b226238b1eb6e.png"
expires: Wed, 21 Sep 2022 03:58:21 GMT
cache-control: max-age=300
x-nc: HIT arn 1
accept-ranges: bytes
X-Firefox-Spdy: h2

hrnewshubb.com/wp-content/uploads/2022/08/cropped-Artboard-57-copy-2-32x32.png

88.99.62.166

200 OK

1.1 kB

URL HTTP/1.1
hrnewshubb.com/wp-content/uploads/2022/08/cropped-Artboard-57-copy-2-32x32.png
IP
88.99.62.166:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Size
1.1 kB (1111 bytes)
Hash
4b60b16250313aa7fe5820307f99d252
19fa56227707d66f15f32dd233377206a7d5506d
731062b48b654b79fde7d4bfbf32d2c197a531fc26b16a8d417441e0b27233bb

HTTP Headers

GET /wp-content/uploads/2022/08/cropped-Artboard-57-copy-2-32x32.png HTTP/1.1
Host: hrnewshubb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/
Cookie: cmc_vid=cmc1263239542; JCS_INENREF=; JCS_INENTIM=1663732400530; _wpss_h_=1; _wpss_p_=N%3A0%20%7C%20
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 03:53:21 GMT
Server: Apache
Last-Modified: Thu, 25 Aug 2022 18:49:01 GMT
Accept-Ranges: bytes
Content-Length: 1111
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

hrnewshubb.com/wp-content/uploads/2022/08/cropped-Artboard-57-copy-2-192x192.png

88.99.62.166

200 OK

5.2 kB

URL HTTP/1.1
hrnewshubb.com/wp-content/uploads/2022/08/cropped-Artboard-57-copy-2-192x192.png
IP
88.99.62.166:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 192 x 192, 8-bit colormap, non-interlaced\012- data
Size
5.2 kB (5202 bytes)
Hash
71d0f3df5eacba8512423af88cec52b2
8abf276365e1d1a651db533c2cd8d359f0fde1ac
ee4352e977e15c035ea712b34b58e3e36c4ae523714bd01ebf55f9b22a67599f

HTTP Headers

GET /wp-content/uploads/2022/08/cropped-Artboard-57-copy-2-192x192.png HTTP/1.1
Host: hrnewshubb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/
Cookie: cmc_vid=cmc1263239542; JCS_INENREF=; JCS_INENTIM=1663732400530; _wpss_h_=1; _wpss_p_=N%3A0%20%7C%20
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 21 Sep 2022 03:53:21 GMT
Server: Apache
Last-Modified: Thu, 25 Aug 2022 18:49:00 GMT
Accept-Ranges: bytes
Content-Length: 5202
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

hrnewshubb.com/?ajax-request=jnews

88.99.62.166

403 Forbidden

1.1 kB

URL HTTP/1.1
hrnewshubb.com/?ajax-request=jnews
IP
88.99.62.166:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
1.1 kB (1131 bytes)
Hash
538d037436e84296cb325648c234a6a5
8d3163edd53044a1d5122921e3e5286761e2fc12
a0c1599b29e1d03c34d24e1c7fab93dc127a934a9b693f2ca8c0f9b4152be1b8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

POST /?ajax-request=jnews HTTP/1.1
Host: hrnewshubb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 73
Origin: https://hrnewshubb.com
Connection: keep-alive
Referer: https://hrnewshubb.com/2022/09/18/6-ways-to-fire-up-a-leadership-team-about-company-culture/
Cookie: cmc_vid=cmc1263239542; JCS_INENREF=; JCS_INENTIM=1663732400530; _wpss_h_=1; _wpss_p_=N%3A0%20%7C%20
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 403 Forbidden
Date: Wed, 21 Sep 2022 03:53:20 GMT
Server: Apache
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Content-Encoding: gzip
Vary: Accept-Encoding
Set-Cookie: PHPSESSID=6c2a8ab2ab1ce3487c50bf9d08975839; path=/; secure
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

hrexecutive.com/wp-content/uploads/2022/09/Social.-leadership.-9.19.22.png

54.230.111.120

200 OK

0 B

URL HTTP/2
hrexecutive.com/wp-content/uploads/2022/09/Social.-leadership.-9.19.22.png
IP
54.230.111.120:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2022/09/Social.-leadership.-9.19.22.png HTTP/1.1
Host: hrexecutive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hrnewshubb.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/png
content-length: 259245
date: Tue, 20 Sep 2022 09:09:59 GMT
server: nginx
last-modified: Mon, 19 Sep 2022 17:44:18 GMT
etag: "6328aa72-3f4ad"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
accept-ranges: bytes
x-powered-by: EasyEngine v4.5.3
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kspaZTSwCD07KW0qo1poJVyRvru7Q5oO61wOhO5Oo_2vDeUIw8_TDA==
age: 67402
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (28)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations