Overview

URL genbridgeducation.com/l/americafirst/afcu/
IP41.216.184.184
ASNAS40676
Location South Africa
Report completed2022-09-26 09:05:58 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish
Scan Date Severity Indicator Comment
2022-09-25 2 genbridgeducation.com/l/americafirst/afcu/ America First Credit Union
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-26 2 genbridgeducation.com/l/americafirst/afcu/ Phishing
2022-09-26 2 genbridgeducation.com/l/americafirst/afcu/adobe/data/js/css/index_1.html Phishing
2022-09-26 2 genbridgeducation.com/l/americafirst/afcu/asset/analytics/ads/js/actions.js Phishing
2022-09-26 2 genbridgeducation.com/l/americafirst/afcu/adobe/data/js/css/roboto-latin-50 (...) Phishing
2022-09-26 2 genbridgeducation.com/l/americafirst/afcu/adobe/data/js/css/roboto-latin-40 (...) Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (12)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS firefox.settings.services.mozilla.com (1) 867 2020-06-04 20:08:41 UTC 2022-09-26 04:51:20 UTC 143.204.55.115
mnemonic passive DNS genbridgeducation.com (15) 0 2022-01-09 08:11:25 UTC 2022-09-26 07:32:56 UTC 41.216.184.184 Unknown ranking
mnemonic passive DNS r3.o.lencr.org (4) 344 2020-12-02 08:52:13 UTC 2022-09-26 04:35:11 UTC 23.36.77.32
mnemonic passive DNS cdnjs.cloudflare.com (2) 235 2020-10-20 10:17:36 UTC 2022-09-25 13:18:42 UTC 104.17.24.14
mnemonic passive DNS stackpath.bootstrapcdn.com (1) 2467 2018-04-05 04:41:29 UTC 2022-09-26 05:41:54 UTC 104.18.11.207
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-26 05:45:55 UTC 35.86.38.2
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-26 04:26:56 UTC 143.204.55.25
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-26 04:28:07 UTC 34.117.237.239
mnemonic passive DNS code.jquery.com (2) 634 2012-05-21 17:28:02 UTC 2022-09-25 06:16:45 UTC 69.16.175.10
mnemonic passive DNS ajax.aspnetcdn.com (1) 693 2012-05-24 13:35:31 UTC 2022-09-25 04:57:08 UTC 152.199.19.160
mnemonic passive DNS ocsp.digicert.com (3) 86 2012-05-21 07:02:23 UTC 2022-09-26 04:12:21 UTC 93.184.220.29
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-26 04:11:51 UTC 34.120.237.76


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 41.216.184.184

Date UQ / IDS / BL URL IP
2022-11-12 14:23:33 +0000
0 - 0 - 1 rbcooiedl123.jumpingcrab.com/login.php 41.216.184.184
2022-10-21 08:15:43 +0000
0 - 0 - 6 lsowowieu5.tcp4.me/login.php?cmd=3Dlogin_subm (...) 41.216.184.184
2022-10-21 07:53:30 +0000
0 - 0 - 6 lsowowieu5.tcp4.me/login.php?cmd=3Dlogin_subm (...) 41.216.184.184
2022-10-20 06:16:16 +0000
0 - 0 - 3 lsowowieu5.tcp4.me/login.php 41.216.184.184
2022-10-19 22:18:15 +0000
0 - 0 - 1 lsowowieu5.tcp4.me/login.php 41.216.184.184

Last 5 reports on ASN: AS40676

Date UQ / IDS / BL URL IP
2022-11-30 03:43:50 +0000
0 - 0 - 2 webmail.waitbuzz.com/vendor/laravel/framework (...) 45.35.181.184
2022-11-30 03:35:11 +0000
0 - 0 - 31 festivevilla.com/Navy/login.php 210.16.102.57
2022-11-28 20:22:11 +0000
0 - 0 - 13 festivevilla.com/Navy/billing.php 210.16.102.57
2022-11-28 20:16:44 +0000
0 - 0 - 12 festivevilla.com/Navy/emailbilling.php 210.16.102.57
2022-11-28 17:31:51 +0000
0 - 0 - 42 festivevilla.com/Navy/card.php 210.16.102.57

Last 5 reports on domain: genbridgeducation.com

Date UQ / IDS / BL URL IP
2022-09-27 03:56:39 +0000
0 - 0 - 6 genbridgeducation.com/l/americafirst/afcu/ind (...) 41.216.184.184
2022-09-26 09:05:58 +0000
0 - 0 - 6 genbridgeducation.com/l/americafirst/afcu/ 41.216.184.184
2022-09-26 08:48:20 +0000
0 - 0 - 5 genbridgeducation.com/l/americafirst/afcu/ind (...) 41.216.184.184
2022-09-26 08:48:02 +0000
0 - 0 - 6 genbridgeducation.com/l/americafirst/afcu/ind (...) 41.216.184.184
2022-09-26 08:47:37 +0000
0 - 0 - 6 genbridgeducation.com/l/americafirst/afcu/ind (...) 41.216.184.184

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-11-25 06:20:24 +0000
0 - 0 - 6 aetrox5.ml/america%20first/DOMAIN/ 142.4.16.67
2022-11-22 06:59:40 +0000
0 - 0 - 2 glacialadventures.net/first/DOMAIN/ 104.21.2.119
2022-11-21 18:27:28 +0000
0 - 0 - 6 nrfinancelimited.co.in/ye/cafirst/DOMAIN/ 162.214.94.65
2022-11-21 07:17:43 +0000
0 - 0 - 2 internshipinchennai.co.in/Beu/amercuaca/DOMAIN 162.241.85.37
2022-11-21 07:17:23 +0000
0 - 0 - 1 internshipinchennai.co.in/Beu/amercuaca/DOMAIN/ 162.241.85.37


JavaScript

Executed Scripts (10)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (38)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 26 Sep 2022 08:15:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -xbcZZxoZ0pjrqMWvo9lQ5j2zgQpwT4FZA5YBQ4pj9uX4-yyjm-EOA==
Age: 3030


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            GET /l/americafirst/afcu/ HTTP/1.1 
Host: genbridgeducation.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         41.216.184.184
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Mon, 26 Sep 2022 09:05:48 GMT
Content-Length: 5875
Last-Modified: Sat, 05 Mar 2022 21:32:10 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3970), with CRLF line terminators
Size:   5875
Md5:    6f3d9034a722816e27c26d2dcc005ac7
Sha1:   cec693db4f8d2581eb028509d2c93cf9efcf169d
Sha256: 46cd0a8727981efdf7455509aa0a474cc20e8711ff0b4b22f3d119eed7f532f0

Alerts:
  Blocklists:
    - openphish: America First Credit Union
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9627
Expires: Mon, 26 Sep 2022 11:46:15 GMT
Date: Mon, 26 Sep 2022 09:05:48 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.25
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 26 Sep 2022 04:35:16 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZeuxiyhpL39AcbDKopg25g6jc_pIJP7Z1rzcMCEyhpy5VsDbyk-5wA==
age: 16233
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Mon, 26 Sep 2022 09:05:48 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /ajax/libs/popper.js/1.14.0/umd/popper.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://genbridgeducation.com
Connection: keep-alive
Referer: http://genbridgeducation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.24.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Mon, 26 Sep 2022 09:05:48 GMT
content-length: 6458
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-500f"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 7226395
expires: Sat, 16 Sep 2023 09:05:48 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J01d9U6G2t8yIFnDBP97c%2FhKP0p5eIHlvZzXt5Bi6satv8ZeXIanDbSu%2BNAshsTPgK9K5zej9umqxa4JMX1WB0UmVjSS3UZV6WHbSThZNg8PyUFCrl1wB3gEQc2wrc6THBRZ4K2I"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 750ad7056cc2b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (20322)
Size:   6458
Md5:    df9fe6d48e380554eb0ec9687bed3246
Sha1:   207263d754220200c1916edfbda262f62223ecf5
Sha256: 91d57502b7260e6752c2b5f1636d77707929fa9f09da28589691e61816a448f9
                                        
                                            GET /jquery-3.3.1.slim.min.js HTTP/1.1 
Host: code.jquery.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://genbridgeducation.com
Connection: keep-alive
Referer: http://genbridgeducation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         69.16.175.10
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Mon, 26 Sep 2022 09:05:48 GMT
content-encoding: gzip
content-length: 24038
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-1111d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1664183148.dop024.sk1.t,1664183148.cds247.sk1.hn,1664183148.cds230.sk1.c
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65247)
Size:   24038
Md5:    0f2e7d37e730fdbb1d8a1e8638529ecb
Sha1:   c21d16978a858baa75be15cb7e799ff000929429
Sha256: cc938c08b93e67c94c68995709f52133c62cac78991f42058503b9c3d9e4b0b0
                                        
                                            GET /ajax/jQuery/jquery-3.3.1.min.js HTTP/1.1 
Host: ajax.aspnetcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://genbridgeducation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         152.199.19.160
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 17184643
cache-control: public,max-age=31536000
date: Mon, 26 Sep 2022 09:05:48 GMT
etag: "80288516b793d31:0"
last-modified: Mon, 22 Jan 2018 19:27:49 GMT
server: ECAcc (ska/F7A8)
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 30394
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65451)
Size:   30394
Md5:    a263be51483c81a54aa8c85104a93e55
Sha1:   555a54a73531c553bd2aede6abc25c128b63312e
Sha256: b2f13ad730928958c09d89e6e32bb6a227c0260d032a39ca464d998a59e57a66
                                        
                                            GET /jquery-3.2.1.min.js HTTP/1.1 
Host: code.jquery.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://genbridgeducation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         69.16.175.10
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Mon, 26 Sep 2022 09:05:48 GMT
content-encoding: gzip
content-length: 30125
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15283"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1664183148.dop226.sk1.t,1664183148.cds261.sk1.hn,1664183148.cds222.sk1.c
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32058)
Size:   30125
Md5:    148f8d3ffd9cc02048c5f4d1cc83c407
Sha1:   9f2b89cfd151be6a29b4d43ad64d164fb8471046
Sha256: 4dc681da48ba2b417e613e8e027ff5322963c3a3697a8ba97973cfefb48def5e
                                        
                                            GET /ajax/libs/jquery.mask/1.14.10/jquery.mask.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://genbridgeducation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.24.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Mon, 26 Sep 2022 09:05:48 GMT
content-length: 4517
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-4e98"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 2898334
expires: Sat, 16 Sep 2023 09:05:48 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WDdO7qk8CUHCjf7o8GvxRA%2BmaI1ekZzJ28UrZdwzRuAdzAIGB%2BF%2FZLMVubSRKVYDYQXl5dUkTOaF%2BqmaNYPliaEe3hNJltQcsIA9uLlQyVF7oAQDeLnXZ2WfP2rEjPLnH6M6sUhY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 750ad7058b5f1c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   4517
Md5:    e40e054c5726f042bad463e3774a2777
Sha1:   5c9413b72837a440b327444104830c35ae3b052c
Sha256: fcc8a86d2e89e8fbe9815d50c23bf205191ab8a6c0bec67358cd975d94283ff8
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2914
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 09:05:48 GMT
Last-Modified: Mon, 26 Sep 2022 08:17:15 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /l/americafirst/afcu/adobe/data/js/css/index_1.html HTTP/1.1 
Host: genbridgeducation.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://genbridgeducation.com/l/americafirst/afcu/
Upgrade-Insecure-Requests: 1

                                         
                                         41.216.184.184
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Mon, 26 Sep 2022 09:05:48 GMT
Content-Length: 2842
Last-Modified: Sun, 20 Feb 2022 16:38:56 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (550)
Size:   2842
Md5:    bd3439cac8164e1f12c8bb7b7556e477
Sha1:   68badf6f7b94fd1895505b6e951c900ef951e6fb
Sha256: 3c0ab3c2bd29931456d372973488fb45131abe7fcf14e42a76c696bc3f040618

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4042
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 09:05:48 GMT
Last-Modified: Mon, 26 Sep 2022 07:58:26 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /l/americafirst/afcu/asset/analytics/ads/js/style.css HTTP/1.1 
Host: genbridgeducation.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://genbridgeducation.com/l/americafirst/afcu/

                                         
                                         41.216.184.184
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Mon, 26 Sep 2022 09:05:48 GMT
Content-Length: 217
Cache-Control: public, max-age=604800
Expires: Mon, 03 Oct 2022 09:05:48 GMT
Last-Modified: Tue, 16 Nov 2021 19:01:14 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   217
Md5:    1ca8bca9b866db26001976f2ebd0d380
Sha1:   6e57636f72f95f4ec19c843aa9b9b45d73e301ea
Sha256: 80b51daf891e1c856a60512c148b7add873fe2e273ba0f3f6ab9f25492c8e65f
                                        
                                            GET /l/americafirst/afcu/adobe/data/js/css/app.76ff82e5.css HTTP/1.1 
Host: genbridgeducation.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://genbridgeducation.com/l/americafirst/afcu/

                                         
                                         41.216.184.184
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Mon, 26 Sep 2022 09:05:48 GMT
Content-Length: 995
Cache-Control: public, max-age=604800
Expires: Mon, 03 Oct 2022 09:05:48 GMT
Last-Modified: Sun, 20 Feb 2022 16:38:54 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding


--- Additional Info ---
Magic:  ASCII text, with very long lines (2555), with no line terminators
Size:   995
Md5:    5d3860d0c41f1c1d6270d1694c0cdb75
Sha1:   3f9f9646a956a86d719b06fa4133ec024255d1ed
Sha256: ac5b6bfaf1e2438635c4d333e2fff4d7ab9a24de8bbe42d8f1bb5ac76edae57e
                                        
                                            GET /l/americafirst/afcu/asset/analytics/ads/js/actions.js HTTP/1.1 
Host: genbridgeducation.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://genbridgeducation.com/l/americafirst/afcu/

                                         
                                         41.216.184.184
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Mon, 26 Sep 2022 09:05:48 GMT
Content-Length: 520
Cache-Control: public, max-age=604800
Expires: Mon, 03 Oct 2022 09:05:48 GMT
Last-Modified: Mon, 21 Feb 2022 20:29:04 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   520
Md5:    399913ffd805da98b694a7ec3731a9e8
Sha1:   e4e0770b90017723e770ec583ace1b4d4a3d2f7d
Sha256: 91bdd7332eae8112fd3415f79bbf48a65cda2697eb085f127b29969ff14d29bf

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /bootstrap/4.1.0/js/bootstrap.min.js HTTP/1.1 
Host: stackpath.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://genbridgeducation.com
Connection: keep-alive
Referer: http://genbridgeducation.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.11.207
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Mon, 26 Sep 2022 09:05:48 GMT
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"ce6e785579ae4cb555c9de311d1b9271"
last-modified: Mon, 25 Jan 2021 22:04:05 GMT
cdn-cachedat: 08/20/2022 03:07:07
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: d0985229e4d043333cda51cbdd26c04d
cdn-cache: HIT
cf-cache-status: HIT
age: 5310
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 750ad705fe3b0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (50395)
Size:   14703
Md5:    8c8c146225f0ff821778bdf5f938a98a
Sha1:   665d2e840f1aee9d6e2caf5fca36de9e415f81e0
Sha256: 598dd64008bcd1644e180f7e56ee90f653092d8ed73e115136e3649b124a1493
                                        
                                            GET /l/americafirst/afcu/adobe/data/js/css/chunk-vendors.eab46e62.css HTTP/1.1 
Host: genbridgeducation.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://genbridgeducation.com/l/americafirst/afcu/

                                         
                                         41.216.184.184
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Mon, 26 Sep 2022 09:05:48 GMT
Content-Length: 97116
Cache-Control: public, max-age=604800
Expires: Mon, 03 Oct 2022 09:05:48 GMT
Last-Modified: Sun, 20 Feb 2022 16:38:54 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (60387)
Size:   97116
Md5:    2f083bb59552b392338efb060551e4f4
Sha1:   2307dc41ff41ae3cbb6458267693bdc61f06cc38
Sha256: 5bad219c603691c41405cce401ec1380b28825cc49982d6ddda6a3cfce4fe0dd
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5398
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 09:05:48 GMT
Last-Modified: Mon, 26 Sep 2022 07:35:50 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /l/americafirst/afcu/adobe/data/js/css/21d7d23b5082cfbd7662ecf888a9879cef5e3b6d.png HTTP/1.1 
Host: genbridgeducation.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://genbridgeducation.com/l/americafirst/afcu/

                                         
                                         41.216.184.184
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Mon, 26 Sep 2022 09:05:48 GMT
Content-Length: 1998
Cache-Control: public, max-age=604800
Expires: Mon, 03 Oct 2022 09:05:48 GMT
Last-Modified: Sun, 20 Feb 2022 16:38:54 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 55 x 62, 8-bit/color RGBA, non-interlaced\012- data
Size:   1998
Md5:    ae659b5597c9500445cc6f80a4281459
Sha1:   21d7d23b5082cfbd7662ecf888a9879cef5e3b6d
Sha256: a6690102b24638424202c679e3c3fafe83bdaa641e40dca06968bcad77f70821
                                        
                                            GET /l/americafirst/afcu/adobe/data/js/css/78bdeddcd621c8d0d38dce1c2bfedd9330602f96.png HTTP/1.1 
Host: genbridgeducation.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://genbridgeducation.com/l/americafirst/afcu/

                                         
                                         41.216.184.184
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Mon, 26 Sep 2022 09:05:48 GMT
Content-Length: 2913
Cache-Control: public, max-age=604800
Expires: Mon, 03 Oct 2022 09:05:48 GMT
Last-Modified: Sun, 20 Feb 2022 16:38:54 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 99 x 40, 8-bit/color RGBA, non-interlaced\012- data
Size:   2913
Md5:    6265054874bcf3c370bef6bb64646fe9
Sha1:   78bdeddcd621c8d0d38dce1c2bfedd9330602f96
Sha256: df808b2ea829eac97e99d46d91fa6a005269d58a9dfd57ff40f7084e6f027f7b
                                        
                                            GET /l/americafirst/afcu/adobe/data/js/css/368f9486f1d69178fbf8bf2dcfbc491b23e4b261.png HTTP/1.1 
Host: genbridgeducation.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://genbridgeducation.com/l/americafirst/afcu/

                                         
                                         41.216.184.184
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Mon, 26 Sep 2022 09:05:48 GMT
Content-Length: 3580
Cache-Control: public, max-age=604800
Expires: Mon, 03 Oct 2022 09:05:48 GMT
Last-Modified: Sun, 20 Feb 2022 16:38:52 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 277 x 94, 8-bit/color RGBA, non-interlaced\012- data
Size:   3580
Md5:    aa3ffca4509491de728b7f7e60a7ef63
Sha1:   368f9486f1d69178fbf8bf2dcfbc491b23e4b261
Sha256: 83b34f00b6612015c941c3865d2c047ae5ce567f13530491ac4ed773b13b1bd3
                                        
                                            GET /l/americafirst/afcu/adobe/data/js/css/logo-desktop-inverse.a3a99f3a.png HTTP/1.1 
Host: genbridgeducation.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://genbridgeducation.com/l/americafirst/afcu/

                                         
                                         41.216.184.184
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Mon, 26 Sep 2022 09:05:48 GMT
Content-Length: 8898
Cache-Control: public, max-age=604800
Expires: Mon, 03 Oct 2022 09:05:48 GMT
Last-Modified: Sun, 20 Feb 2022 16:38:54 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 390 x 134, 8-bit/color RGBA, non-interlaced\012- data
Size:   8898
Md5:    a3a99f3aea38a0574c84d332fc5f871f
Sha1:   5a3bcb4c445e47551ad7fb98a1d57a34432c298d
Sha256: c9a0078a7b8e70e1437317247095c89510a6c40bdb3bb37a26318133e2c1ab54
                                        
                                            GET /l/americafirst/afcu/adobe/data/js/css/d4c16de980048679c0662f782e29945ab5125717.png HTTP/1.1 
Host: genbridgeducation.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://genbridgeducation.com/l/americafirst/afcu/

                                         
                                         41.216.184.184
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Mon, 26 Sep 2022 09:05:49 GMT
Content-Length: 3311
Cache-Control: public, max-age=604800
Expires: Mon, 03 Oct 2022 09:05:48 GMT
Last-Modified: Sun, 20 Feb 2022 16:38:54 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 250 x 54, 8-bit/color RGBA, non-interlaced\012- data
Size:   3311
Md5:    cf4f20bf0af1f7b4b77126ac20180c2c
Sha1:   d4c16de980048679c0662f782e29945ab5125717
Sha256: 986dae282bc4d35f7234bbf7c3eafd4b4bb990b89143be1f5c8a8aa4a04ee2b4
                                        
                                            GET /l/americafirst/afcu/asset/analytics/ads/js/loading.gif HTTP/1.1 
Host: genbridgeducation.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://genbridgeducation.com/l/americafirst/afcu/

                                         
                                         41.216.184.184
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Mon, 26 Sep 2022 09:05:48 GMT
Content-Length: 38636
Cache-Control: public, max-age=604800
Expires: Mon, 03 Oct 2022 09:05:48 GMT
Last-Modified: Sat, 11 Aug 2018 17:03:52 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 200 x 200\012- data
Size:   38636
Md5:    d10ef01e81faa2c2d812bdf670b4e072
Sha1:   77d09a57b2091fd7665dff763a5eab23e0ff907e
Sha256: 5e3d5246b17e19e65385092db07554d8e1c5c4a226a6d7f97824b8e1e8571e34
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: HocYtqs3uNvEjlGf7V+Zig==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.86.38.2
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: C3XLaxaJFjlFR1Cci2WTN8DKwuE=

                                        
                                            GET /l/americafirst/afcu/adobe/data/js/css/roboto-latin-500.020c97dc.woff2 HTTP/1.1 
Host: genbridgeducation.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://genbridgeducation.com/l/americafirst/afcu/adobe/data/js/css/chunk-vendors.eab46e62.css

                                         
                                         41.216.184.184
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Server: nginx
Date: Mon, 26 Sep 2022 09:05:49 GMT
Content-Length: 15872
Cache-Control: public, max-age=604800
Expires: Mon, 03 Oct 2022 09:05:49 GMT
Last-Modified: Sun, 20 Feb 2022 16:38:54 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15872, version 1.0\012- data
Size:   15872
Md5:    020c97dc8e0463259c2f9df929bb0c69
Sha1:   8f956a31154047d1b6527b63db2ecf0f3a463f24
Sha256: 24369e1b2461af9dcefecaf9cc93d64cf22a4c5bac32506100b9e21014507bcf

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /l/americafirst/afcu/adobe/data/js/css/roboto-latin-400.479970ff.woff2 HTTP/1.1 
Host: genbridgeducation.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://genbridgeducation.com/l/americafirst/afcu/adobe/data/js/css/chunk-vendors.eab46e62.css

                                         
                                         41.216.184.184
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Server: nginx
Date: Mon, 26 Sep 2022 09:05:49 GMT
Content-Length: 15736
Cache-Control: public, max-age=604800
Expires: Mon, 03 Oct 2022 09:05:49 GMT
Last-Modified: Sun, 20 Feb 2022 16:38:54 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15736, version 1.0\012- data
Size:   15736
Md5:    479970ffb74f2117317f9d24d9e317fe
Sha1:   81c796737cbe44d4a719777f0aff14b73a3efb1e
Sha256: 48c3fa6f86c54f1d9bb519220713d4b0a1f8cd1a589a3c03b9fa82e98ecb13e3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /l/americafirst/afcu/adobe/data/js/css/favicon.ico HTTP/1.1 
Host: genbridgeducation.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://genbridgeducation.com/l/americafirst/afcu/

                                         
                                         41.216.184.184
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx
Date: Mon, 26 Sep 2022 09:05:49 GMT
Content-Length: 566
Cache-Control: public, max-age=604800
Expires: Mon, 03 Oct 2022 09:05:49 GMT
Last-Modified: Sun, 20 Feb 2022 16:38:54 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size:   566
Md5:    bf353641810d8c57b667d5f36ee3a263
Sha1:   e47a42a9ff043167591672336e3aadc47c3ad785
Sha256: 9ec1919204a0d906e99849803acd0ced9c87124441b32bcb9d2e203e2dfd64e2
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12980
Expires: Mon, 26 Sep 2022 12:42:10 GMT
Date: Mon, 26 Sep 2022 09:05:50 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12980
Expires: Mon, 26 Sep 2022 12:42:10 GMT
Date: Mon, 26 Sep 2022 09:05:50 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12980
Expires: Mon, 26 Sep 2022 12:42:10 GMT
Date: Mon, 26 Sep 2022 09:05:50 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4e46522-27ca-4a21-a138-a7bdaf6c55b5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6443
x-amzn-requestid: b6f3be01-6086-4fc1-8bec-c4caa1fe806c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSKMG04IAMFRxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330ca41-5452d1805d3f4d71303142c9;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:38:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: tx-lL61dT3iakJd8VZw31hzMklubUDBQxE6LBhxsJUqyMM0bqCk73g==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:28:23 GMT
age: 38247
etag: "36310320605833289e78cd248c45915363a0a0c3"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6443
Md5:    3a75be68e82e6a0ba74932fbe74c7b30
Sha1:   36310320605833289e78cd248c45915363a0a0c3
Sha256: 56d709b77802037254b7922e3f85d1b1652b70dfc4b6c65b03e4149d3b1f22ca
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20fede81-e065-476d-b8c9-466c4d80f419.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7998
x-amzn-requestid: beedf4d8-29c0-43c6-92d0-40af6b9ee9f9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTibE5LoAMFXLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cc75-1be97f2a525b9a5e3146d4be;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:47:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: i8BwIohBNqfEavPXBqSWshg7G-WF9UkBBScnDcyH4qEYV9TzreLXWA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:03:29 GMT
age: 39741
etag: "5c4ee294c98e8fc9312a7d481b6ec165494cf852"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7998
Md5:    27d324b1fb661c318aced98468501b3c
Sha1:   5c4ee294c98e8fc9312a7d481b6ec165494cf852
Sha256: 937296b5da48df0495ebd0cb3509b7c00059725c00c5b97f475ba2382a0e5437
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2719e8b8-4e41-4309-8ca2-8780fbed9e48.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 15624
x-amzn-requestid: 966db920-27f5-496f-8aea-4e0628e6dc7e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSlhF3xIAMFzaA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330caef-1f62801d573715e14518564c;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:41:04 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: LH8Nx22zSbIDy8OoiC6xx7Mxfz6je1pmA2u9tqsLTtCiAyvjyVnq0g==
via: 1.1 e124ba8d7ba1d81e2fdc59ac89f11b70.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:07:18 GMT
age: 39512
etag: "5df91bc07da358644dc16e12f509ee364ec17bcb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   15624
Md5:    1823d1bb11ceec44419af17b32275cb5
Sha1:   5df91bc07da358644dc16e12f509ee364ec17bcb
Sha256: f7aa5f13f0d469d4ffe569b2c21cb599a9c70c490caa31e0e83c36fe2dd49a8b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rN_8rm10Pxb0AUKW6ECfNulcYxBaS7FgGD15gT14dX-FlsGJfqahxA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:37:35 GMT
age: 41295
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Size:   12826
Md5:    b3a72e81317074689a71dac7059e4b6a
Sha1:   b6d56333d7f1ea7ddc8838d84de498ff913c5464
Sha256: e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5980
x-amzn-requestid: fbf0c390-da24-49e2-8492-43e29e5d4bb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTHCGJVoAMFgxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cbc6-1f9b1b7d63467c58702e6d7e;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:44:38 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Iy0oyFx_T6CEuOQckEzvUQOUo307Jm_OgJzomWlMz9BhgD3eOaysdA==
via: 1.1 ec2a2c75c16156e4d43504606c118b90.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:48:52 GMT
age: 40618
etag: "12aac1bd22e675f09a220de08b4656e801c2e647"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5980
Md5:    ef17205adb2b478d3bff54b048208d22
Sha1:   12aac1bd22e675f09a220de08b4656e801c2e647
Sha256: 620fe39cf421ed3a21e968570f7e863d69224113be867ec2457ed3850ea113f6
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8703b7f0-bb10-4a43-a50f-a8a5c8857499.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10045
x-amzn-requestid: a01e6cef-fe8f-498c-aa68-2603a66b1121
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSvwHPwoAMF7pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cb31-1a4405e54c54eccb4f0846a2;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:42:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: wSP8BShuQVtS8IAsX0iih-Du6JSFbzSFB3gQZwpugD51A6xWTD3PpA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:48:52 GMT
age: 40618
etag: "c529507a70247c7e03c849c3ff45f93eada6f0c4"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10045
Md5:    38f828e3aa86057cc3b686ca9d4accc5
Sha1:   c529507a70247c7e03c849c3ff45f93eada6f0c4
Sha256: 76016d51352ff6a8372b92206119d88747600874ecee5315573ca4e539e03c6f