| r3.o.lencr.org/ |  23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashcd2bda30513692aa11a672c6a599935d a944c3aa26b461063194a4bb95ce427d23a32d03 d975d1eab40c9fe4986ae0675d79e4f982eb9c0e2f503ca72b3bdf0ec9e7dfdc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D975D1EAB40C9FE4986AE0675D79E4F982EB9C0E2F503CA72B3BDF0EC9E7DFDC"
Last-Modified: Tue, 27 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12806
Expires: Thu, 29 Dec 2022 16:53:27 GMT
Date: Thu, 29 Dec 2022 13:20:01 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash259d3eba2ac4ea32f0410a59bd01c18a ab02cd69e6c04e3842ad1778fb0daa6d0e86fddc 0d6ec941dac6d97a0b24c0cf00a5642a4edda68ae5ec8b3019d1ec05f40d2281
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0D6EC941DAC6D97A0B24C0CF00A5642A4EDDA68AE5EC8B3019D1EC05F40D2281"
Last-Modified: Tue, 27 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15276
Expires: Thu, 29 Dec 2022 17:34:37 GMT
Date: Thu, 29 Dec 2022 13:20:01 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ |  35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashff250d3ef3fa45322bf05039a0122a9f b3e7a2c383bce1bab807dbe1a03c375258b51f1d d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 29 Dec 2022 12:35:24 GMT
content-type: application/json
age: 2677
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| zidno.art/rd/u0iWmhY0Ulfy0Fyn2806679DMGE1030 |  5.252.97.114 | 200 OK | 243 B |
URL HTTP/1.1zidno.art/rd/u0iWmhY0Ulfy0Fyn2806679DMGE1030 IP5.252.97.114:0
File typeHTML document, ASCII text Hash45e3305389edc4d26f20f3ed270de653 7adeb5558d16808f2b60fee7258382fb86cd2d79 ced6411122f104b7f8adbbe3cdf5f3d8cba7649a9576e292e77379214d51dd4b
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /rd/u0iWmhY0Ulfy0Fyn2806679DMGE1030 HTTP/1.1
Host: zidno.art
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Date: Thu, 29 Dec 2022 13:12:19 GMT
Content-Length: 243
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash428881081ad357fb55af33ebf9d12c16 29b7be72f76da07db4a03fb1bc57ffe16d520a22 9adff7f91b147b0d93166bc4ece0dd31fd19fd8b2c269a6a596a1e902f49a1fe
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9ADFF7F91B147B0D93166BC4ECE0DD31FD19FD8B2C269A6A596A1E902F49A1FE"
Last-Modified: Wed, 28 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10224
Expires: Thu, 29 Dec 2022 16:10:25 GMT
Date: Thu, 29 Dec 2022 13:20:01 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hashb1fcd419a4245617397846e8d17233f6 2a037ce244587640b27ead9a0ec2af4f862d91b2 e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: i30mJMpjwKe+UH1B3FEQ07JuEhIRJ3uTwcZ0xeAaOXov+W2gJmSmEsrhtLe+kasVG5dtCIXNdzw=
x-amz-request-id: DQQ67WHPN8SEKKY4
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 29 Dec 2022 12:58:46 GMT
age: 1275
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 29 Dec 2022 13:20:01 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Last-Modified, Retry-After, Content-Type, Alert, Pragma, ETag, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 29 Dec 2022 12:33:30 GMT
age: 2792
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| zidno.art/track/u0iWmhY0Ulfy0Fyn2806679DMGE1030 | 5.252.97.114 | 302 Found | 138 B |
URL HTTP/1.1zidno.art/track/u0iWmhY0Ulfy0Fyn2806679DMGE1030 IP5.252.97.114:0
File typeHTML document, ASCII text Hash5364a30be4f91d1f586f453fce667319 0a5a4c49fd66af56c9ada3e061cf01a8ae10a7fb 77a2d50b523a0a8f22138540e8b97804c051ab066898bf2b58b8dcccbef3bc8a
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /track/u0iWmhY0Ulfy0Fyn2806679DMGE1030 HTTP/1.1
Host: zidno.art
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zidno.art/rd/u0iWmhY0Ulfy0Fyn2806679DMGE1030
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Location: https://www.roadsworks.com/yYdLcHWJhTO8DswJHQcYub1vQjYt-7rJttCQph1_zh2XHajqAuGUS2KOEiARPnwUg-Vxt2pA7WygF-L5RkEztw~~
Date: Thu, 29 Dec 2022 13:12:20 GMT
Content-Length: 138
|
|
| ocsp.digicert.com/ |  93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash0a08dc71eb7ba3512abb4d29505eb034 e66404bda80b355bae30b0d4db3daa193a6e4276 357891f99263d30eaded85985217d9627cd60369ee8d01a7eacdb2d0f2d8b2dd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3395
Cache-Control: max-age=161000
Content-Type: application/ocsp-response
Date: Thu, 29 Dec 2022 13:20:02 GMT
Etag: "63ad58a7-1d7"
Expires: Sat, 31 Dec 2022 10:03:22 GMT
Last-Modified: Thu, 29 Dec 2022 09:06:47 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
|
|
| push.services.mozilla.com/ | 34.210.158.59 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP34.210.158.59:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: buCvHxTMp+5fzA1CCMGj5Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: IM4y1dERpPO4KdvPwLllynC+GDc=
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash08d73911366561e2adb625b4e37f86e2 8570989b7e7124a9b0aabfbbd656c312345deb9a cfad086368fb54bc6ac6979061db80a25d6ca4e639f4988a6bd1695fdef09219
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CFAD086368FB54BC6AC6979061DB80A25D6CA4E639F4988A6BD1695FDEF09219"
Last-Modified: Tue, 27 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 29 Dec 2022 19:20:02 GMT
Date: Thu, 29 Dec 2022 13:20:02 GMT
Connection: keep-alive
|
|
| www.roadsworks.com/yYdLcHWJhTO8DswJHQcYub1vQjYt-7rJttCQph1_zh2XHajqAuGUS2KOEiARPnwUg-Vxt2pA7WygF-L5RkEztw~~ | 134.195.89.76 | 302 Found | 0 B |
URL HTTP/1.1www.roadsworks.com/yYdLcHWJhTO8DswJHQcYub1vQjYt-7rJttCQph1_zh2XHajqAuGUS2KOEiARPnwUg-Vxt2pA7WygF-L5RkEztw~~ IP134.195.89.76:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /yYdLcHWJhTO8DswJHQcYub1vQjYt-7rJttCQph1_zh2XHajqAuGUS2KOEiARPnwUg-Vxt2pA7WygF-L5RkEztw~~ HTTP/1.1
Host: www.roadsworks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://zidno.art/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Thu, 29 Dec 2022 13:20:02 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Server: Apache
Location: https://bc6745.ezepo.net/unsubscribe/555/17/3/f24a99027dc3381dd771bd27a5b002bb/?s1=&s2=&s3=
|
|
| ocsp.sca1b.amazontrust.com/ | 143.204.42.165 | 200 OK | 471 B |
URL HTTP/1.1ocsp.sca1b.amazontrust.com/ IP143.204.42.165:0
Hash0b7c7a9d272e8b1cb23585652d5e50ae 7489e7941cd1b1be614685fbbb94c37956357bf6 5019c2305817940a4124f34e97c269aa1b5586d83c0eec0cd72d42e48ec4e1f7
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 29 Dec 2022 13:20:03 GMT
Etag: "63aba8f2-1d7"
Last-Modified: Thu, 29 Dec 2022 13:17:32 GMT
Server: ECS (dcb/7ECB)
X-Cache: Miss from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hNeT1tVyCKu-V2jnz955zfcT4oail87UwfUXNIBOQkYoIo9t_bP-CA==
Age: 151
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash794630798ece5fdc7622c5736cfc8c4c b88d8c63c8c85072202fb76e4106789df8394ff3 aa8225bea6518ce7a35b1dcdd5ae62b217b5720d9d9143f9ae4360e8614c0c18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Dec 2022 13:20:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash794630798ece5fdc7622c5736cfc8c4c b88d8c63c8c85072202fb76e4106789df8394ff3 aa8225bea6518ce7a35b1dcdd5ae62b217b5720d9d9143f9ae4360e8614c0c18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Dec 2022 13:20:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash794630798ece5fdc7622c5736cfc8c4c b88d8c63c8c85072202fb76e4106789df8394ff3 aa8225bea6518ce7a35b1dcdd5ae62b217b5720d9d9143f9ae4360e8614c0c18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Dec 2022 13:20:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.googleapis.com/css?family=Open+Sans:400,300,600,400italic,700,800 | 142.250.74.106 | 200 OK | 1.4 kB |
URL HTTP/2fonts.googleapis.com/css?family=Open+Sans:400,300,600,400italic,700,800 IP142.250.74.106:0
Hasha03ad2b68634657799bebc8ab133c936 6f859ed7f472490c7e88f6deba16817996072ff6 dcf902f16aef6542c66631cfd89470a8e08793c3c531aaf36aa040f6fe96ac0e
GET /css?family=Open+Sans:400,300,600,400italic,700,800 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bc6745.ezepo.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 29 Dec 2022 13:20:03 GMT
date: Thu, 29 Dec 2022 13:20:03 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash2783127a63c78cb5ac02e1a31631bfca a26af5a37bbb43d4258282640749ced026ba9560 cfe19d12b6070f9171129591b54bab634d5582e4d8d83e5c1fbe703d873b8366
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CFE19D12B6070F9171129591B54BAB634D5582E4D8D83E5C1FBE703D873B8366"
Last-Modified: Tue, 27 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15500
Expires: Thu, 29 Dec 2022 17:38:23 GMT
Date: Thu, 29 Dec 2022 13:20:03 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash2783127a63c78cb5ac02e1a31631bfca a26af5a37bbb43d4258282640749ced026ba9560 cfe19d12b6070f9171129591b54bab634d5582e4d8d83e5c1fbe703d873b8366
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CFE19D12B6070F9171129591B54BAB634D5582E4D8D83E5C1FBE703D873B8366"
Last-Modified: Tue, 27 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15500
Expires: Thu, 29 Dec 2022 17:38:23 GMT
Date: Thu, 29 Dec 2022 13:20:03 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash2783127a63c78cb5ac02e1a31631bfca a26af5a37bbb43d4258282640749ced026ba9560 cfe19d12b6070f9171129591b54bab634d5582e4d8d83e5c1fbe703d873b8366
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CFE19D12B6070F9171129591B54BAB634D5582E4D8D83E5C1FBE703D873B8366"
Last-Modified: Tue, 27 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15500
Expires: Thu, 29 Dec 2022 17:38:23 GMT
Date: Thu, 29 Dec 2022 13:20:03 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash2783127a63c78cb5ac02e1a31631bfca a26af5a37bbb43d4258282640749ced026ba9560 cfe19d12b6070f9171129591b54bab634d5582e4d8d83e5c1fbe703d873b8366
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CFE19D12B6070F9171129591B54BAB634D5582E4D8D83E5C1FBE703D873B8366"
Last-Modified: Tue, 27 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15500
Expires: Thu, 29 Dec 2022 17:38:23 GMT
Date: Thu, 29 Dec 2022 13:20:03 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash2783127a63c78cb5ac02e1a31631bfca a26af5a37bbb43d4258282640749ced026ba9560 cfe19d12b6070f9171129591b54bab634d5582e4d8d83e5c1fbe703d873b8366
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CFE19D12B6070F9171129591B54BAB634D5582E4D8D83E5C1FBE703D873B8366"
Last-Modified: Tue, 27 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15500
Expires: Thu, 29 Dec 2022 17:38:23 GMT
Date: Thu, 29 Dec 2022 13:20:03 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc499908a-7598-4043-879d-1339d97e06ca.jpeg | 34.120.237.76 | 200 OK | 9.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc499908a-7598-4043-879d-1339d97e06ca.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash072bfc38a51207e64da8a95094846e60 470d39e8ffbce9c7af86eebdd6065994dc2ebc62 26f5a8bcb9d387ae6b1d835ea9f3bc871f219b9e4e18d499c8d9902d05b54bbf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc499908a-7598-4043-879d-1339d97e06ca.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9826
x-amzn-requestid: e01a4a3d-7a21-4845-9794-62ba502baf09
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: drCPkEx2oAMFSrw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a77d96-32fe9bdf69863a9534d28457;Sampled=0
x-amzn-remapped-date: Sat, 24 Dec 2022 22:30:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0TwRg3Ybxe7Uua_fzQNzj2_PpI31H_Dw3QGXZxdPkXEr_az8FXoqag==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Dec 2022 19:38:58 GMT
age: 63665
etag: "470d39e8ffbce9c7af86eebdd6065994dc2ebc62"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46059ea9-17d4-4278-9387-8af033f275e1.jpeg | 34.120.237.76 | 200 OK | 5.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46059ea9-17d4-4278-9387-8af033f275e1.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashe100e2dc00534d3c6e4a4eccabd256d4 bb36fdbdd2ff78b5eac4becf508470d6f0a3512f 991a44a7aa774e41289f4b3ea2f13d0af69c86756d25763e81c274a9b3420e9a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46059ea9-17d4-4278-9387-8af033f275e1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5687
x-amzn-requestid: 8fe763e5-63f9-4149-b494-4fe1298610f7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d4CXwGfTIAMFdlQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63acb0fe-5958069220e442433e1941ce;Sampled=0
x-amzn-remapped-date: Wed, 28 Dec 2022 21:11:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: MM0AxcUhyYGa6e8s4W_jU0ihtU8pu2geeyxouqllG8ZdZ8PcxPUdJg==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Dec 2022 03:55:16 GMT
age: 33887
etag: "bb36fdbdd2ff78b5eac4becf508470d6f0a3512f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22974a4e-e7eb-49be-8615-4f79a91c4bb6.jpeg | 34.120.237.76 | 200 OK | 8.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22974a4e-e7eb-49be-8615-4f79a91c4bb6.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash92610077962d69499bc84c52779b8d29 80d2c00bce22d931a522dfd7b540e203c888c58e 7770317302c0de6a1c2029343880887cc92d68f6545c54f245b36f73fc31bcbd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22974a4e-e7eb-49be-8615-4f79a91c4bb6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8446
x-amzn-requestid: 172bcf3f-a47f-4527-8374-2b35d4fb445a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dyRQCHdXoAMFyEQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63aa6266-6c395efe55ec3f4816c551bc;Sampled=0
x-amzn-remapped-date: Tue, 27 Dec 2022 03:11:34 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cLIN3mcOa12FtNYbMOj1D6mYl0bUdGUPID2FLIozYomIX-OMqXZaUw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Dec 2022 03:39:25 GMT
age: 34838
etag: "80d2c00bce22d931a522dfd7b540e203c888c58e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e77cad2-6b0d-46d1-a2e4-ce29f7cc173e.jpeg | 34.120.237.76 | 200 OK | 8.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e77cad2-6b0d-46d1-a2e4-ce29f7cc173e.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hasha4adb7268aa0a520dcee9f1d936d16dd 9364105419c6662123999ed11912de21ad32f6ba 6d593122db8b8514db4d3d0d0e6d037f57d39e5aab9a9f493fed359eb4b73b2e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e77cad2-6b0d-46d1-a2e4-ce29f7cc173e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8505
x-amzn-requestid: de8ce29e-7947-4c4f-95f5-14efae45cfda
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d4p9MGW9IAMFqdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63acf054-5cf23dcf7bdbd784373222a9;Sampled=0
x-amzn-remapped-date: Thu, 29 Dec 2022 01:41:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kEM8R4PYVJN8BQXhr9w-osn4-pAjeVnOtinJu1yfvjc5sTEL6LqTeQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Dec 2022 01:51:39 GMT
age: 41304
etag: "9364105419c6662123999ed11912de21ad32f6ba"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f065733-5f7b-4113-9f70-8e9738de50f7.jpeg | 34.120.237.76 | 200 OK | 7.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f065733-5f7b-4113-9f70-8e9738de50f7.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashdb302f2c47edbbb185af9e4a96741d52 c616108fda3390ebd7f67926ba3e35a73b47135c cc9e4fdb361624bb32511b195d4a1677e241502ba013b8f8a114ebb4956019ba
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f065733-5f7b-4113-9f70-8e9738de50f7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6955
x-amzn-requestid: 59f34964-3642-4190-9edb-c2a1de006606
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dhyXGHe0oAMFfSA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a3ca93-4acf45f93b24aebd33be5de1;Sampled=0
x-amzn-remapped-date: Thu, 22 Dec 2022 03:10:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: L4fg8oLUw2_pKOZNCh2YZi3_asUguQHaCtpPeCrUIYyVoAiwQlNqGg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Dec 2022 21:42:23 GMT
age: 56260
etag: "c616108fda3390ebd7f67926ba3e35a73b47135c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F26073be1-1851-4348-a892-ee39e3b6f635.jpeg | 34.120.237.76 | 200 OK | 9.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F26073be1-1851-4348-a892-ee39e3b6f635.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashd9f3c92ff3db8e0ec87e86aa28346ea5 c4cc987d54675d9285b43954ab8f010e5a258d9e 94be9c845c6373424c519720e61e2a1397f7390028d43dcdbf536686a7740b6b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F26073be1-1851-4348-a892-ee39e3b6f635.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9569
x-amzn-requestid: 13baa87a-0f57-48c7-940a-de8e06d60278
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dkUiwFYmIAMFUuQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a4ce11-3cb3500473c3c28d694fd5ad;Sampled=0
x-amzn-remapped-date: Thu, 22 Dec 2022 21:37:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 09jrhYwsh26t_Un3nHuTLOZMwln0vn-6fqUYvoelIAhuF6WIIwQ6jQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Dec 2022 21:41:53 GMT
age: 56290
etag: "c4cc987d54675d9285b43954ab8f010e5a258d9e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hash107c7b24cc9711281977c9e9094da7af 18e6f30a0dbc072380e414236b2a8296e7a7f6f6 c8a97836b9b198c55753dd8e72c0ae03fe473f02f098deb2c4145b677d19be08
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Dec 2022 13:20:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hash107c7b24cc9711281977c9e9094da7af 18e6f30a0dbc072380e414236b2a8296e7a7f6f6 c8a97836b9b198c55753dd8e72c0ae03fe473f02f098deb2c4145b677d19be08
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Dec 2022 13:20:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hash107c7b24cc9711281977c9e9094da7af 18e6f30a0dbc072380e414236b2a8296e7a7f6f6 c8a97836b9b198c55753dd8e72c0ae03fe473f02f098deb2c4145b677d19be08
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Dec 2022 13:20:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| bc6745.ezepo.net/assets/css/style.css | 34.235.193.132 | 200 OK | 71 kB |
URL HTTP/2bc6745.ezepo.net/assets/css/style.css IP34.235.193.132:0
Hashc78e7c62a70d0e38b0a90d6db4ccce9b 6f2d9b549fbab781932e7b0cfb9edf041d5245df 4f9dd1db7ebec9afcef617a8c9c998f4f1bedd7180475e19f757f569bc505228
GET /assets/css/style.css HTTP/1.1
Host: bc6745.ezepo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bc6745.ezepo.net/unsubscribe/555/17/3/f24a99027dc3381dd771bd27a5b002bb/?s1=&s2=&s3=
Cookie: AWSALB=DcqsEotC1pPk0ESJwZhn7Si4EiVRzkoe6qO9vi7RsiSz6uNHhk9z3SRaq2XRgUeyGv+9xzXlpOb1X0hv2tgHyXrZbnXrm/49uqTvwYfaZUDE/GZMNrJq2ZbqqEtX; AWSALBCORS=DcqsEotC1pPk0ESJwZhn7Si4EiVRzkoe6qO9vi7RsiSz6uNHhk9z3SRaq2XRgUeyGv+9xzXlpOb1X0hv2tgHyXrZbnXrm/49uqTvwYfaZUDE/GZMNrJq2ZbqqEtX
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 29 Dec 2022 13:20:03 GMT
content-type: text/css
set-cookie: AWSALB=LXYcvFJ5TZTBhZgctX1/MpPLXKRG4ksA4Qv+g/03WwQ9IQU5vAR+v5F7+LWcgaN9ezTsQDW+Np//C+dETUFixHCv1uTiAHZkld0zpU3QXjog2xguBWpjOUW8KJfj; Expires=Thu, 05 Jan 2023 13:20:03 GMT; Path=/
AWSALBCORS=LXYcvFJ5TZTBhZgctX1/MpPLXKRG4ksA4Qv+g/03WwQ9IQU5vAR+v5F7+LWcgaN9ezTsQDW+Np//C+dETUFixHCv1uTiAHZkld0zpU3QXjog2xguBWpjOUW8KJfj; Expires=Thu, 05 Jan 2023 13:20:03 GMT; Path=/; SameSite=None; Secure
server: nginx/1.6.2
last-modified: Tue, 10 Jul 2018 20:20:49 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| bc6745.ezepo.net/assets/lib/jquery.nanoscroller/css/nanoscroller.css | 34.235.193.132 | 200 OK | 45 kB |
URL HTTP/2bc6745.ezepo.net/assets/lib/jquery.nanoscroller/css/nanoscroller.css IP34.235.193.132:0
Hash780cc8005190f657b2485602f392a46c d39f5e0e1aad15224c9c6ec6a0e46c9a702b3ad0 692fdf7db68120ff0b5a4d173bdc5f770cf81ca917c094689cf2c64dc0e16b4c
GET /assets/lib/jquery.nanoscroller/css/nanoscroller.css HTTP/1.1
Host: bc6745.ezepo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bc6745.ezepo.net/unsubscribe/555/17/3/f24a99027dc3381dd771bd27a5b002bb/?s1=&s2=&s3=
Cookie: AWSALB=DcqsEotC1pPk0ESJwZhn7Si4EiVRzkoe6qO9vi7RsiSz6uNHhk9z3SRaq2XRgUeyGv+9xzXlpOb1X0hv2tgHyXrZbnXrm/49uqTvwYfaZUDE/GZMNrJq2ZbqqEtX; AWSALBCORS=DcqsEotC1pPk0ESJwZhn7Si4EiVRzkoe6qO9vi7RsiSz6uNHhk9z3SRaq2XRgUeyGv+9xzXlpOb1X0hv2tgHyXrZbnXrm/49uqTvwYfaZUDE/GZMNrJq2ZbqqEtX
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 29 Dec 2022 13:20:03 GMT
content-type: text/css
set-cookie: AWSALB=2lBNddO/Br0KNtxLyRLPRDyuJmQ4r56zdeggrtwM+a2zjnyw7e1jJTd6WkMVsvadCTg9ixDFUR7REEp59QGnQtTqhNebAxlDMjFg/IUZDo3uHunC0h3poyUybmaM; Expires=Thu, 05 Jan 2023 13:20:03 GMT; Path=/
AWSALBCORS=2lBNddO/Br0KNtxLyRLPRDyuJmQ4r56zdeggrtwM+a2zjnyw7e1jJTd6WkMVsvadCTg9ixDFUR7REEp59QGnQtTqhNebAxlDMjFg/IUZDo3uHunC0h3poyUybmaM; Expires=Thu, 05 Jan 2023 13:20:03 GMT; Path=/; SameSite=None; Secure
server: nginx/1.6.2
last-modified: Fri, 07 Oct 2016 20:24:12 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| bc6745.ezepo.net/assets/lib/font-awesome/css/font-awesome.min.css | 34.235.193.132 | 200 OK | 22 kB |
URL HTTP/2bc6745.ezepo.net/assets/lib/font-awesome/css/font-awesome.min.css IP34.235.193.132:0
Hashd449640f30a86ecaa65cd7696a9f7da6 0fc5c115e8d75a32e37aaa7fabaad0b063e4f935 4b2886b472f1c40f30096c83dd37ad19040a5026984aa65766d29035d33e6b86
GET /assets/lib/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: bc6745.ezepo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bc6745.ezepo.net/unsubscribe/555/17/3/f24a99027dc3381dd771bd27a5b002bb/?s1=&s2=&s3=
Cookie: AWSALB=DcqsEotC1pPk0ESJwZhn7Si4EiVRzkoe6qO9vi7RsiSz6uNHhk9z3SRaq2XRgUeyGv+9xzXlpOb1X0hv2tgHyXrZbnXrm/49uqTvwYfaZUDE/GZMNrJq2ZbqqEtX; AWSALBCORS=DcqsEotC1pPk0ESJwZhn7Si4EiVRzkoe6qO9vi7RsiSz6uNHhk9z3SRaq2XRgUeyGv+9xzXlpOb1X0hv2tgHyXrZbnXrm/49uqTvwYfaZUDE/GZMNrJq2ZbqqEtX
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 29 Dec 2022 13:20:03 GMT
content-type: text/css
set-cookie: AWSALB=4PqNuJ3lRIcmzJnVY+eU/zSvV+NGa6Kwxstye5SErE+hOfYFgutdkqmi7I9SFEVi71gbHFOZkUZ5EOXvSVxHX9dp8cwpo/ywnHPg0UZVCbflyu7EHdWT+PPRIOIg; Expires=Thu, 05 Jan 2023 13:20:03 GMT; Path=/
AWSALBCORS=4PqNuJ3lRIcmzJnVY+eU/zSvV+NGa6Kwxstye5SErE+hOfYFgutdkqmi7I9SFEVi71gbHFOZkUZ5EOXvSVxHX9dp8cwpo/ywnHPg0UZVCbflyu7EHdWT+PPRIOIg; Expires=Thu, 05 Jan 2023 13:20:03 GMT; Path=/; SameSite=None; Secure
server: nginx/1.6.2
last-modified: Fri, 07 Oct 2016 20:24:12 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hash107c7b24cc9711281977c9e9094da7af 18e6f30a0dbc072380e414236b2a8296e7a7f6f6 c8a97836b9b198c55753dd8e72c0ae03fe473f02f098deb2c4145b677d19be08
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Dec 2022 13:20:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| bc6745.ezepo.net/assets/lib/jquery.niftymodals/css/component.css | 34.235.193.132 | 200 OK | 74 kB |
URL HTTP/2bc6745.ezepo.net/assets/lib/jquery.niftymodals/css/component.css IP34.235.193.132:0
Hash7dff4d772ad295d215b3fdbb2410b4cc 03722b16322e8b03ae2f0a215f5dba0830f1b512 0842ead8eeac1a291ba5968664ae4632410c6eab1b2df7e8e1dc2b8c2c55bcf7
GET /assets/lib/jquery.niftymodals/css/component.css HTTP/1.1
Host: bc6745.ezepo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bc6745.ezepo.net/unsubscribe/555/17/3/f24a99027dc3381dd771bd27a5b002bb/?s1=&s2=&s3=
Cookie: AWSALB=DcqsEotC1pPk0ESJwZhn7Si4EiVRzkoe6qO9vi7RsiSz6uNHhk9z3SRaq2XRgUeyGv+9xzXlpOb1X0hv2tgHyXrZbnXrm/49uqTvwYfaZUDE/GZMNrJq2ZbqqEtX; AWSALBCORS=DcqsEotC1pPk0ESJwZhn7Si4EiVRzkoe6qO9vi7RsiSz6uNHhk9z3SRaq2XRgUeyGv+9xzXlpOb1X0hv2tgHyXrZbnXrm/49uqTvwYfaZUDE/GZMNrJq2ZbqqEtX
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 29 Dec 2022 13:20:03 GMT
content-type: text/css
set-cookie: AWSALB=sBNMDC7OfzRMnz47WlAM5T5hly+0LmICha0s7Lu1JaWr+uTjBnsmcRsMp8+lpm6l0aGRtkkUMKkvUQS0cHUULVnEuEjRk49kdCFo8du6kef0NM1F0VgPx2zSHJ19; Expires=Thu, 05 Jan 2023 13:20:03 GMT; Path=/
AWSALBCORS=sBNMDC7OfzRMnz47WlAM5T5hly+0LmICha0s7Lu1JaWr+uTjBnsmcRsMp8+lpm6l0aGRtkkUMKkvUQS0cHUULVnEuEjRk49kdCFo8du6kef0NM1F0VgPx2zSHJ19; Expires=Thu, 05 Jan 2023 13:20:03 GMT; Path=/; SameSite=None; Secure
server: nginx/1.6.2
last-modified: Tue, 29 Nov 2016 20:43:12 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| bc6745.ezepo.net/assets/img/icons/android-icon-192x192.png | 34.235.193.132 | 200 OK | 5.2 kB |
URL HTTP/2bc6745.ezepo.net/assets/img/icons/android-icon-192x192.png IP34.235.193.132:0
File typePNG image data, 192 x 192, 8-bit colormap, non-interlaced\012- data Hashdb1479e98116167628891ae382c5d00c a082962858542227c701757f17a074d63da96341 49760623e1aee32bbbb5fa91c442372a660973d77ea1f05f0ad99c454b37ae09
GET /assets/img/icons/android-icon-192x192.png HTTP/1.1
Host: bc6745.ezepo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bc6745.ezepo.net/unsubscribe/555/17/3/f24a99027dc3381dd771bd27a5b002bb/?s1=&s2=&s3=
Cookie: AWSALB=3SWCx/G2Tisulyl8s9cTRhA5xEpZpD/AMmLfZ15ddkeOZB6NVjjvkoPis9Qn7qNOTHeinXp/YTPuCQCrbINJCxXIulf1bLDmsmNlLtl4MPUg+w+gfkhOcIKnSLFu; AWSALBCORS=3SWCx/G2Tisulyl8s9cTRhA5xEpZpD/AMmLfZ15ddkeOZB6NVjjvkoPis9Qn7qNOTHeinXp/YTPuCQCrbINJCxXIulf1bLDmsmNlLtl4MPUg+w+gfkhOcIKnSLFu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 29 Dec 2022 13:20:04 GMT
content-type: image/png
content-length: 5153
set-cookie: AWSALB=tixGW/c6HPu8D8s9BCN8g0E7yz0OuJChkd0YWMruWxBJuBje+vjT+0DY/sCfwMrmYT5k6CitWmyPicj5k3yYS4xX80k4nCNJcYqeMODAma9kRccu4YzoYoc86jQ+; Expires=Thu, 05 Jan 2023 13:20:04 GMT; Path=/
AWSALBCORS=tixGW/c6HPu8D8s9BCN8g0E7yz0OuJChkd0YWMruWxBJuBje+vjT+0DY/sCfwMrmYT5k6CitWmyPicj5k3yYS4xX80k4nCNJcYqeMODAma9kRccu4YzoYoc86jQ+; Expires=Thu, 05 Jan 2023 13:20:04 GMT; Path=/; SameSite=None; Secure
server: nginx/1.6.2
last-modified: Fri, 07 Oct 2016 20:24:12 GMT
etag: "57f8046c-1421"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| bc6745.ezepo.net/assets/img/icons/favicon-16x16.png | 34.235.193.132 | 200 OK | 1.2 kB |
URL HTTP/2bc6745.ezepo.net/assets/img/icons/favicon-16x16.png IP34.235.193.132:0
File typePNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data Hasha9c3a6853804c0719309579c9afaf24c dd2dbcee60fb2228c392cc23cb09245a9ce84654 ed19eeeab949536150a34d096459f35190767eba21eff22435a7f4ccd6a1cd03
GET /assets/img/icons/favicon-16x16.png HTTP/1.1
Host: bc6745.ezepo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bc6745.ezepo.net/unsubscribe/555/17/3/f24a99027dc3381dd771bd27a5b002bb/?s1=&s2=&s3=
Cookie: AWSALB=3SWCx/G2Tisulyl8s9cTRhA5xEpZpD/AMmLfZ15ddkeOZB6NVjjvkoPis9Qn7qNOTHeinXp/YTPuCQCrbINJCxXIulf1bLDmsmNlLtl4MPUg+w+gfkhOcIKnSLFu; AWSALBCORS=3SWCx/G2Tisulyl8s9cTRhA5xEpZpD/AMmLfZ15ddkeOZB6NVjjvkoPis9Qn7qNOTHeinXp/YTPuCQCrbINJCxXIulf1bLDmsmNlLtl4MPUg+w+gfkhOcIKnSLFu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 29 Dec 2022 13:20:04 GMT
content-type: image/png
content-length: 1223
set-cookie: AWSALB=b5UGOeeSh0xuAzb6MyJBBul4E6u0PScHiIMEHZ+2V7Abr5+EFZ2P76z6FNdc7HNFddIAnUvGHMOPeVsOWxTSb2KwwLpSqa6kKdVRdSbTQdp1KeVLJR14TfJN1XuB; Expires=Thu, 05 Jan 2023 13:20:04 GMT; Path=/
AWSALBCORS=b5UGOeeSh0xuAzb6MyJBBul4E6u0PScHiIMEHZ+2V7Abr5+EFZ2P76z6FNdc7HNFddIAnUvGHMOPeVsOWxTSb2KwwLpSqa6kKdVRdSbTQdp1KeVLJR14TfJN1XuB; Expires=Thu, 05 Jan 2023 13:20:04 GMT; Path=/; SameSite=None; Secure
server: nginx/1.6.2
last-modified: Fri, 07 Oct 2016 20:24:12 GMT
etag: "57f8046c-4c7"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| bc6745.ezepo.net/assets/lib/jquery/jquery.min.js | 34.235.193.132 | 200 OK | 0 B |
URL HTTP/2bc6745.ezepo.net/assets/lib/jquery/jquery.min.js IP34.235.193.132:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/lib/jquery/jquery.min.js HTTP/1.1
Host: bc6745.ezepo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bc6745.ezepo.net/unsubscribe/555/17/3/f24a99027dc3381dd771bd27a5b002bb/?s1=&s2=&s3=
Cookie: AWSALB=DcqsEotC1pPk0ESJwZhn7Si4EiVRzkoe6qO9vi7RsiSz6uNHhk9z3SRaq2XRgUeyGv+9xzXlpOb1X0hv2tgHyXrZbnXrm/49uqTvwYfaZUDE/GZMNrJq2ZbqqEtX; AWSALBCORS=DcqsEotC1pPk0ESJwZhn7Si4EiVRzkoe6qO9vi7RsiSz6uNHhk9z3SRaq2XRgUeyGv+9xzXlpOb1X0hv2tgHyXrZbnXrm/49uqTvwYfaZUDE/GZMNrJq2ZbqqEtX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 29 Dec 2022 13:20:03 GMT
content-type: application/javascript
set-cookie: AWSALB=hXSwQxGCnyg7q0ad5eJF0eeCqjIQvmH5DjSyVnN6Pnl8T+puMdlJqQYxfi+rGqrzgzyLK2/PzApAZc0UjTwsx/GReJuPYJqieJPMewp9cKjiWsIiQRrDzGUElq/3; Expires=Thu, 05 Jan 2023 13:20:03 GMT; Path=/
AWSALBCORS=hXSwQxGCnyg7q0ad5eJF0eeCqjIQvmH5DjSyVnN6Pnl8T+puMdlJqQYxfi+rGqrzgzyLK2/PzApAZc0UjTwsx/GReJuPYJqieJPMewp9cKjiWsIiQRrDzGUElq/3; Expires=Thu, 05 Jan 2023 13:20:03 GMT; Path=/; SameSite=None; Secure
server: nginx/1.6.2
last-modified: Fri, 07 Oct 2016 20:24:12 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| bc6745.ezepo.net/unsubscribe/functions.js | 34.235.193.132 | 200 OK | 0 B |
URL HTTP/2bc6745.ezepo.net/unsubscribe/functions.js IP34.235.193.132:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /unsubscribe/functions.js HTTP/1.1
Host: bc6745.ezepo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bc6745.ezepo.net/unsubscribe/555/17/3/f24a99027dc3381dd771bd27a5b002bb/?s1=&s2=&s3=
Cookie: AWSALB=DcqsEotC1pPk0ESJwZhn7Si4EiVRzkoe6qO9vi7RsiSz6uNHhk9z3SRaq2XRgUeyGv+9xzXlpOb1X0hv2tgHyXrZbnXrm/49uqTvwYfaZUDE/GZMNrJq2ZbqqEtX; AWSALBCORS=DcqsEotC1pPk0ESJwZhn7Si4EiVRzkoe6qO9vi7RsiSz6uNHhk9z3SRaq2XRgUeyGv+9xzXlpOb1X0hv2tgHyXrZbnXrm/49uqTvwYfaZUDE/GZMNrJq2ZbqqEtX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 29 Dec 2022 13:20:03 GMT
content-type: application/javascript
set-cookie: AWSALB=TwjMYhGdK0Wox4SRS5lOd37bTpti3g8wpAo6t90rbUq7TMgku9yoLu/amiWwrunQTUW2eu0h1/51LnEoX6oEjCRNeHs9O/zKHFlFV9jKQVHc0J+eGRwG8LIg2PWj; Expires=Thu, 05 Jan 2023 13:20:03 GMT; Path=/
AWSALBCORS=TwjMYhGdK0Wox4SRS5lOd37bTpti3g8wpAo6t90rbUq7TMgku9yoLu/amiWwrunQTUW2eu0h1/51LnEoX6oEjCRNeHs9O/zKHFlFV9jKQVHc0J+eGRwG8LIg2PWj; Expires=Thu, 05 Jan 2023 13:20:03 GMT; Path=/; SameSite=None; Secure
server: nginx/1.6.2
last-modified: Thu, 17 Aug 2017 03:03:25 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Raleway:300,200,100 | 142.250.74.106 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Raleway:300,200,100 IP142.250.74.106:0
GET /css?family=Raleway:300,200,100 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bc6745.ezepo.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 29 Dec 2022 13:20:03 GMT
date: Thu, 29 Dec 2022 13:20:03 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| bc6745.ezepo.net/assets/lib/clippy/clipboard.min.js | 34.235.193.132 | 200 OK | 0 B |
URL HTTP/2bc6745.ezepo.net/assets/lib/clippy/clipboard.min.js IP34.235.193.132:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/lib/clippy/clipboard.min.js HTTP/1.1
Host: bc6745.ezepo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bc6745.ezepo.net/unsubscribe/555/17/3/f24a99027dc3381dd771bd27a5b002bb/?s1=&s2=&s3=
Cookie: AWSALB=DcqsEotC1pPk0ESJwZhn7Si4EiVRzkoe6qO9vi7RsiSz6uNHhk9z3SRaq2XRgUeyGv+9xzXlpOb1X0hv2tgHyXrZbnXrm/49uqTvwYfaZUDE/GZMNrJq2ZbqqEtX; AWSALBCORS=DcqsEotC1pPk0ESJwZhn7Si4EiVRzkoe6qO9vi7RsiSz6uNHhk9z3SRaq2XRgUeyGv+9xzXlpOb1X0hv2tgHyXrZbnXrm/49uqTvwYfaZUDE/GZMNrJq2ZbqqEtX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 29 Dec 2022 13:20:03 GMT
content-type: application/javascript
set-cookie: AWSALB=p6iNWccjduyI2X1zRFnu7QxvQyH+bl0D60rWGo0N2A5JqdXKwI1sTeIjIKSziTOYMR9z6aASfcjBRuISbdpIWKHl/fWFHZCtFMm3CjmJLl3PcytheUKjBaFQBHdr; Expires=Thu, 05 Jan 2023 13:20:03 GMT; Path=/
AWSALBCORS=p6iNWccjduyI2X1zRFnu7QxvQyH+bl0D60rWGo0N2A5JqdXKwI1sTeIjIKSziTOYMR9z6aASfcjBRuISbdpIWKHl/fWFHZCtFMm3CjmJLl3PcytheUKjBaFQBHdr; Expires=Thu, 05 Jan 2023 13:20:03 GMT; Path=/; SameSite=None; Secure
server: nginx/1.6.2
last-modified: Fri, 07 Oct 2016 20:24:12 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| bc6745.ezepo.net/assets/lib/jquery.parsley/custom/validation.js | 34.235.193.132 | 200 OK | 0 B |
URL HTTP/2bc6745.ezepo.net/assets/lib/jquery.parsley/custom/validation.js IP34.235.193.132:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/lib/jquery.parsley/custom/validation.js HTTP/1.1
Host: bc6745.ezepo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bc6745.ezepo.net/unsubscribe/555/17/3/f24a99027dc3381dd771bd27a5b002bb/?s1=&s2=&s3=
Cookie: AWSALB=DcqsEotC1pPk0ESJwZhn7Si4EiVRzkoe6qO9vi7RsiSz6uNHhk9z3SRaq2XRgUeyGv+9xzXlpOb1X0hv2tgHyXrZbnXrm/49uqTvwYfaZUDE/GZMNrJq2ZbqqEtX; AWSALBCORS=DcqsEotC1pPk0ESJwZhn7Si4EiVRzkoe6qO9vi7RsiSz6uNHhk9z3SRaq2XRgUeyGv+9xzXlpOb1X0hv2tgHyXrZbnXrm/49uqTvwYfaZUDE/GZMNrJq2ZbqqEtX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 29 Dec 2022 13:20:03 GMT
content-type: application/javascript
set-cookie: AWSALB=8dFoY8/eKeDiZeXPyg77kYqACjnT6UFgLeUvnnWMnLGSLnbi9wU8DT4RiXu9SOuRj2oYbRlt+OHlZlFSp+f8mJ5r3crYYO6zBGvSf6OGnZtpseEitUQxSY8WqBcC; Expires=Thu, 05 Jan 2023 13:20:03 GMT; Path=/
AWSALBCORS=8dFoY8/eKeDiZeXPyg77kYqACjnT6UFgLeUvnnWMnLGSLnbi9wU8DT4RiXu9SOuRj2oYbRlt+OHlZlFSp+f8mJ5r3crYYO6zBGvSf6OGnZtpseEitUQxSY8WqBcC; Expires=Thu, 05 Jan 2023 13:20:03 GMT; Path=/; SameSite=None; Secure
server: nginx/1.6.2
last-modified: Fri, 07 Oct 2016 20:24:12 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| bc6745.ezepo.net/unsubscribe/555/17/3/f24a99027dc3381dd771bd27a5b002bb/?s1=&s2=&s3= | 34.235.193.132 | 200 OK | 0 B |
URL HTTP/2bc6745.ezepo.net/unsubscribe/555/17/3/f24a99027dc3381dd771bd27a5b002bb/?s1=&s2=&s3= IP34.235.193.132:0
GET /unsubscribe/555/17/3/f24a99027dc3381dd771bd27a5b002bb/?s1=&s2=&s3= HTTP/1.1
Host: bc6745.ezepo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://zidno.art/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 29 Dec 2022 13:20:03 GMT
content-type: text/html; charset=UTF-8
set-cookie: AWSALB=DcqsEotC1pPk0ESJwZhn7Si4EiVRzkoe6qO9vi7RsiSz6uNHhk9z3SRaq2XRgUeyGv+9xzXlpOb1X0hv2tgHyXrZbnXrm/49uqTvwYfaZUDE/GZMNrJq2ZbqqEtX; Expires=Thu, 05 Jan 2023 13:20:03 GMT; Path=/
AWSALBCORS=DcqsEotC1pPk0ESJwZhn7Si4EiVRzkoe6qO9vi7RsiSz6uNHhk9z3SRaq2XRgUeyGv+9xzXlpOb1X0hv2tgHyXrZbnXrm/49uqTvwYfaZUDE/GZMNrJq2ZbqqEtX; Expires=Thu, 05 Jan 2023 13:20:03 GMT; Path=/; SameSite=None; Secure
server: nginx/1.6.2
cache-control: max-age=0, must-revalidate
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| bc6745.ezepo.net/assets/lib/jquery.niftymodals/js/jquery.modalEffects.js | 34.235.193.132 | 200 OK | 0 B |
URL HTTP/2bc6745.ezepo.net/assets/lib/jquery.niftymodals/js/jquery.modalEffects.js IP34.235.193.132:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/lib/jquery.niftymodals/js/jquery.modalEffects.js HTTP/1.1
Host: bc6745.ezepo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bc6745.ezepo.net/unsubscribe/555/17/3/f24a99027dc3381dd771bd27a5b002bb/?s1=&s2=&s3=
Cookie: AWSALB=DcqsEotC1pPk0ESJwZhn7Si4EiVRzkoe6qO9vi7RsiSz6uNHhk9z3SRaq2XRgUeyGv+9xzXlpOb1X0hv2tgHyXrZbnXrm/49uqTvwYfaZUDE/GZMNrJq2ZbqqEtX; AWSALBCORS=DcqsEotC1pPk0ESJwZhn7Si4EiVRzkoe6qO9vi7RsiSz6uNHhk9z3SRaq2XRgUeyGv+9xzXlpOb1X0hv2tgHyXrZbnXrm/49uqTvwYfaZUDE/GZMNrJq2ZbqqEtX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 29 Dec 2022 13:20:03 GMT
content-type: application/javascript
set-cookie: AWSALB=m69YA5gusRv+uyI6e+V7VWR9mTfpDARE7RzTlkVYGCberaoisjEM7jqpbBjlI+HxcEZWxtMAUwBmCc8lO92R1TDHRkhZusI+WgFNHa9qz9LGNQvGSQZTLjP73c3L; Expires=Thu, 05 Jan 2023 13:20:03 GMT; Path=/
AWSALBCORS=m69YA5gusRv+uyI6e+V7VWR9mTfpDARE7RzTlkVYGCberaoisjEM7jqpbBjlI+HxcEZWxtMAUwBmCc8lO92R1TDHRkhZusI+WgFNHa9qz9LGNQvGSQZTLjP73c3L; Expires=Thu, 05 Jan 2023 13:20:03 GMT; Path=/; SameSite=None; Secure
server: nginx/1.6.2
last-modified: Tue, 25 Jul 2017 02:31:20 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| bc6745.ezepo.net/assets/js/cleanzone.js | 34.235.193.132 | 200 OK | 0 B |
URL HTTP/2bc6745.ezepo.net/assets/js/cleanzone.js IP34.235.193.132:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/js/cleanzone.js HTTP/1.1
Host: bc6745.ezepo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bc6745.ezepo.net/unsubscribe/555/17/3/f24a99027dc3381dd771bd27a5b002bb/?s1=&s2=&s3=
Cookie: AWSALB=DcqsEotC1pPk0ESJwZhn7Si4EiVRzkoe6qO9vi7RsiSz6uNHhk9z3SRaq2XRgUeyGv+9xzXlpOb1X0hv2tgHyXrZbnXrm/49uqTvwYfaZUDE/GZMNrJq2ZbqqEtX; AWSALBCORS=DcqsEotC1pPk0ESJwZhn7Si4EiVRzkoe6qO9vi7RsiSz6uNHhk9z3SRaq2XRgUeyGv+9xzXlpOb1X0hv2tgHyXrZbnXrm/49uqTvwYfaZUDE/GZMNrJq2ZbqqEtX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 29 Dec 2022 13:20:03 GMT
content-type: application/javascript
set-cookie: AWSALB=BbeSB09C+MwNdeVuoldxgCpJN+GWk87/OpAZ3+VUQbCkFrqHYRGfMqbLGB2RLtpI8R9FBCxKfNGJIZpoYlzd4/tyXMrGMkHRQ2oarXvOyDkPBtitJ4ZaIk/QDLsx; Expires=Thu, 05 Jan 2023 13:20:03 GMT; Path=/
AWSALBCORS=BbeSB09C+MwNdeVuoldxgCpJN+GWk87/OpAZ3+VUQbCkFrqHYRGfMqbLGB2RLtpI8R9FBCxKfNGJIZpoYlzd4/tyXMrGMkHRQ2oarXvOyDkPBtitJ4ZaIk/QDLsx; Expires=Thu, 05 Jan 2023 13:20:03 GMT; Path=/; SameSite=None; Secure
server: nginx/1.6.2
last-modified: Fri, 07 Oct 2016 20:24:12 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| bc6745.ezepo.net/assets/lib/bootstrap/dist/css/bootstrap.min.css | 34.235.193.132 | 200 OK | 0 B |
URL HTTP/2bc6745.ezepo.net/assets/lib/bootstrap/dist/css/bootstrap.min.css IP34.235.193.132:0
GET /assets/lib/bootstrap/dist/css/bootstrap.min.css HTTP/1.1
Host: bc6745.ezepo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bc6745.ezepo.net/unsubscribe/555/17/3/f24a99027dc3381dd771bd27a5b002bb/?s1=&s2=&s3=
Cookie: AWSALB=DcqsEotC1pPk0ESJwZhn7Si4EiVRzkoe6qO9vi7RsiSz6uNHhk9z3SRaq2XRgUeyGv+9xzXlpOb1X0hv2tgHyXrZbnXrm/49uqTvwYfaZUDE/GZMNrJq2ZbqqEtX; AWSALBCORS=DcqsEotC1pPk0ESJwZhn7Si4EiVRzkoe6qO9vi7RsiSz6uNHhk9z3SRaq2XRgUeyGv+9xzXlpOb1X0hv2tgHyXrZbnXrm/49uqTvwYfaZUDE/GZMNrJq2ZbqqEtX
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 29 Dec 2022 13:20:03 GMT
content-type: text/css
set-cookie: AWSALB=I0L0xsRlAW42GFsyxB6OJnTQPI2wPz/Uoo8KGMjcWRPgvzueb0FYeXbulTh+wdeAPB7JGw9yV8CvecyeaJzIqzFroV6tOmjE9TO+nZhljb1BBfPEs2e/RP3fLNdt; Expires=Thu, 05 Jan 2023 13:20:03 GMT; Path=/
AWSALBCORS=I0L0xsRlAW42GFsyxB6OJnTQPI2wPz/Uoo8KGMjcWRPgvzueb0FYeXbulTh+wdeAPB7JGw9yV8CvecyeaJzIqzFroV6tOmjE9TO+nZhljb1BBfPEs2e/RP3fLNdt; Expires=Thu, 05 Jan 2023 13:20:03 GMT; Path=/; SameSite=None; Secure
server: nginx/1.6.2
last-modified: Fri, 07 Oct 2016 20:24:12 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| bc6745.ezepo.net/assets/lib/jquery.parsley/dist/parsley.min.js | 34.235.193.132 | 200 OK | 0 B |
URL HTTP/2bc6745.ezepo.net/assets/lib/jquery.parsley/dist/parsley.min.js IP34.235.193.132:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/lib/jquery.parsley/dist/parsley.min.js HTTP/1.1
Host: bc6745.ezepo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bc6745.ezepo.net/unsubscribe/555/17/3/f24a99027dc3381dd771bd27a5b002bb/?s1=&s2=&s3=
Cookie: AWSALB=DcqsEotC1pPk0ESJwZhn7Si4EiVRzkoe6qO9vi7RsiSz6uNHhk9z3SRaq2XRgUeyGv+9xzXlpOb1X0hv2tgHyXrZbnXrm/49uqTvwYfaZUDE/GZMNrJq2ZbqqEtX; AWSALBCORS=DcqsEotC1pPk0ESJwZhn7Si4EiVRzkoe6qO9vi7RsiSz6uNHhk9z3SRaq2XRgUeyGv+9xzXlpOb1X0hv2tgHyXrZbnXrm/49uqTvwYfaZUDE/GZMNrJq2ZbqqEtX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 29 Dec 2022 13:20:03 GMT
content-type: application/javascript
set-cookie: AWSALB=9gR9Nu/9aHr10d/earoyvnd4v7cvIhjWzKAMGUNjgDOHvazCgx3N59rkQ2OtbvDrJMYZMGqnA6P5eZ/DZJ37H8xnxyTtH84uMI2Yi1DT9kkH/E9ZPMny4Zg1AjpD; Expires=Thu, 05 Jan 2023 13:20:03 GMT; Path=/
AWSALBCORS=9gR9Nu/9aHr10d/earoyvnd4v7cvIhjWzKAMGUNjgDOHvazCgx3N59rkQ2OtbvDrJMYZMGqnA6P5eZ/DZJ37H8xnxyTtH84uMI2Yi1DT9kkH/E9ZPMny4Zg1AjpD; Expires=Thu, 05 Jan 2023 13:20:03 GMT; Path=/; SameSite=None; Secure
server: nginx/1.6.2
last-modified: Fri, 07 Oct 2016 20:24:12 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| bc6745.ezepo.net/assets/lib/jquery.nanoscroller/javascripts/jquery.nanoscroller.js | 34.235.193.132 | 200 OK | 0 B |
URL HTTP/2bc6745.ezepo.net/assets/lib/jquery.nanoscroller/javascripts/jquery.nanoscroller.js IP34.235.193.132:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/lib/jquery.nanoscroller/javascripts/jquery.nanoscroller.js HTTP/1.1
Host: bc6745.ezepo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bc6745.ezepo.net/unsubscribe/555/17/3/f24a99027dc3381dd771bd27a5b002bb/?s1=&s2=&s3=
Cookie: AWSALB=DcqsEotC1pPk0ESJwZhn7Si4EiVRzkoe6qO9vi7RsiSz6uNHhk9z3SRaq2XRgUeyGv+9xzXlpOb1X0hv2tgHyXrZbnXrm/49uqTvwYfaZUDE/GZMNrJq2ZbqqEtX; AWSALBCORS=DcqsEotC1pPk0ESJwZhn7Si4EiVRzkoe6qO9vi7RsiSz6uNHhk9z3SRaq2XRgUeyGv+9xzXlpOb1X0hv2tgHyXrZbnXrm/49uqTvwYfaZUDE/GZMNrJq2ZbqqEtX
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 29 Dec 2022 13:20:03 GMT
content-type: application/javascript
set-cookie: AWSALB=1ezAASmwG7+OjKkNLGnCANUjXElu4qqxrjQQIu2qk97/kVKcu+v0+6RtAs4ufr2tG+PjFL9cW9ZOz0rWvfCX+1DD8MsJzNIBfxZH4t6Jt7vNScAaIa+/SJvaNDGf; Expires=Thu, 05 Jan 2023 13:20:03 GMT; Path=/
AWSALBCORS=1ezAASmwG7+OjKkNLGnCANUjXElu4qqxrjQQIu2qk97/kVKcu+v0+6RtAs4ufr2tG+PjFL9cW9ZOz0rWvfCX+1DD8MsJzNIBfxZH4t6Jt7vNScAaIa+/SJvaNDGf; Expires=Thu, 05 Jan 2023 13:20:03 GMT; Path=/; SameSite=None; Secure
server: nginx/1.6.2
last-modified: Fri, 07 Oct 2016 20:24:12 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Open+Sans+Condensed:300,700 | 142.250.74.106 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Open+Sans+Condensed:300,700 IP142.250.74.106:0
GET /css?family=Open+Sans+Condensed:300,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bc6745.ezepo.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 29 Dec 2022 13:20:03 GMT
date: Thu, 29 Dec 2022 13:20:03 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
0.0.0.0