r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9641
Expires: Tue, 29 Nov 2022 08:03:29 GMT
Date: Tue, 29 Nov 2022 05:22:48 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3347
Cache-Control: max-age=108260
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 05:22:48 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 11:27:08 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9fce5679881bf302a8978a0b462f01a9
b699fe030ea13ac73813e655c42ed9b531925e2b
a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3040
Expires: Tue, 29 Nov 2022 06:13:28 GMT
Date: Tue, 29 Nov 2022 05:22:48 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 05:19:35 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 193
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: qwueCdjrjLzIAV7eOqSRPB716LA+7+egt60Tz+f8zEZzWI3zaxzJc5MYv4D766ef3oecpB8Fsi4=
x-amz-request-id: MQ6GGV479TFNWXXC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 04:42:22 GMT
age: 2426
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 05:22:48 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
121.241.35.252301 Moved Permanently 178 B URL HTTP/1.1 clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
IP 121.241.35.252:0
ASN #4755 TATA Communications formerly VSNL is Leading ISP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash bd2695f4b079c71dbddde3436286fb9c
733c05da132193d6cf1d8e242d12e2525c03bab4
2e04a18ff185ba5b16f762a0538339bc4049aceaef9738edd43af77d2ceb788b
GET /email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0 HTTP/1.1
Host: clabs.cognition-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 29 Nov 2022 05:22:48 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 05:11:13 GMT
cache-control: public,max-age=3600
age: 695
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5849
Cache-Control: max-age=105696
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 05:22:48 GMT
Etag: "63847a2f-1d7"
Expires: Wed, 30 Nov 2022 10:44:24 GMT
Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.216.192.228101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.216.192.228:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NGE3EC+VRXy+wZc1oerTRw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: TIiUX8Z34Cctu/7j1nIetAV71QE=
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 05:22:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
121.241.35.252404 Not Found 43 kB URL HTTP/1.1 clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
IP 121.241.35.252:0
ASN #4755 TATA Communications formerly VSNL is Leading ISP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (52847)
Hash a564808e937ec9a9d014d167bf63355f
70eb4d4d2424be4f3bf4791dcafde2f3d9d6f011
6818ac3fc205bda7f9d64cebfc236ea70699fdb26a5cf77e5e4dbafd1d414425
GET /email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0 HTTP/1.1
Host: clabs.cognition-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 29 Nov 2022 05:22:49 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/7.4.24
Set-Cookie: a46777567cc038903a95c663c0360f91=ac9000e544d575470e75d8cf39d37cf6; path=/; HttpOnly
mautic_device_id=opvswwptyuhazez6pt64axp; expires=Wed, 29-Nov-2023 05:22:49 GMT; Max-Age=31536000; path=/
mtc_id=796388; path=/
mtc_sid=opvswwptyuhazez6pt64axp; path=/
mautic_referer_id=68025; expires=Tue, 29-Nov-2022 05:52:49 GMT; Max-Age=1800; path=/
Cache-Control: max-age=0, must-revalidate, private
Expires: Tue, 29 Nov 2022 05:22:49 GMT
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 05:22:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 05:22:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 05:22:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13829
Expires: Tue, 29 Nov 2022 09:13:19 GMT
Date: Tue, 29 Nov 2022 05:22:50 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 05:22:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13829
Expires: Tue, 29 Nov 2022 09:13:19 GMT
Date: Tue, 29 Nov 2022 05:22:50 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1ee10f9-36dd-4ca4-986e-a80758149640.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1ee10f9-36dd-4ca4-986e-a80758149640.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 516776052e5e906ea9f42d25bae5cc85
be4c4d01fc67218e26a3e9d27a2f708e639c9d4b
28e70e38cfad65ad8a7a68ab1dc78747c7013a87b854fc35b163cc5765cd0570
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1ee10f9-36dd-4ca4-986e-a80758149640.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8460
x-amzn-requestid: 51416479-3854-4f1a-9d86-35e104c57f6a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnkHuZIAMF-_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852963-180b323d4a45fa2f29f9b1fc;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ieDA8l_Up51cFaB9IExlSs8A5m-H77va1rCVF_WRMg_FN53Xakipuw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:46:55 GMT
age: 27355
etag: "be4c4d01fc67218e26a3e9d27a2f708e639c9d4b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f728a04-45b0-4726-b646-628601e2ebbc.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f728a04-45b0-4726-b646-628601e2ebbc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b7d3821d0bd11c196724846a7b9fe22
5b1700fa9cd4f1aaafda28ac28a0e2086fa8499c
b4f820555c4daf6e112c1a395bc57e22f0ef8e2e4299a0ffbb54e0bf18c87f47
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f728a04-45b0-4726-b646-628601e2ebbc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8578
x-amzn-requestid: 4f948bb9-74db-4a5d-927d-a6b893735531
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFxnWHq-IAMF4LQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637efc95-2f9e98ca2dad65a80e2195c2;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 05:09:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vSvGc0JIh4JOWTlagt4uDD_CDPiWOSfYYEI4lUBPsQb4qJMOEbBcmw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 23:18:30 GMT
age: 21860
etag: "5b1700fa9cd4f1aaafda28ac28a0e2086fa8499c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 83c1fedec73299637cc7dc47c48af758
2e3f7326aeea6be8a34bf2c39b34862c07bfdc41
1fea143e23bb0156062f4c06569824900a67ed83cb99fd635d4c4ab968dc65e9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4916
x-amzn-requestid: b8c80a6c-e3f1-4f20-beb8-27b0af760692
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYcrELFoAMFaeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d450-155cfb365525173c0ede8adb;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Twtw6dO3pjTB9OLi0HliKKCDgCuHRqgtx4PFTczrZQ9f8JztgXZoSg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 03:18:11 GMT
age: 7479
etag: "2e3f7326aeea6be8a34bf2c39b34862c07bfdc41"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cce27a1fe8c0222811a5ce0e7f89e1cb
28c165bac8cf68cd1b0763c311aece00672cb3a5
4530e34a47ef78c2c2b0d34a0511253a61f1927b192ab42f82361002ff10819e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9376
x-amzn-requestid: 265257bd-0177-4e63-879b-e9f99d0d16c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cTZANFW2oAMFlyw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63846ecd-6767ccde3361eb593108603d;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 08:18:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ntQPVFK12XqhVCMlaq0oIDx7k6e2xQdp1Y67W1nG6ayhG1XFekz5CQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 09:53:30 GMT
etag: "28c165bac8cf68cd1b0763c311aece00672cb3a5"
content-type: image/jpeg
age: 70160
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9082acd6-44fd-454b-b215-451cf6d822a1.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9082acd6-44fd-454b-b215-451cf6d822a1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5ab97acd46d3380fa12711c96b3c2d35
b703ea2cc2fcd68e60135ff77d5a5f1b93fac128
aeeaa56714fbd157e788cd24da03d43ede527959e2563e6d7d99489753dee85f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9082acd6-44fd-454b-b215-451cf6d822a1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8106
x-amzn-requestid: 73d1b662-99a8-4ad7-95f9-c0b1ebf7c45a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnQEhQoAMFbLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852961-64954bc92997c9302e291381;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UO4hCMgPgR4-ld-QCKgNPrq4p1gduUSA5R4ffZmnFodBj-1_NcFLmg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:37:21 GMT
age: 27929
etag: "b703ea2cc2fcd68e60135ff77d5a5f1b93fac128"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13829
Expires: Tue, 29 Nov 2022 09:13:19 GMT
Date: Tue, 29 Nov 2022 05:22:50 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 05:22:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7479fbd-640b-4a65-ac00-893210a725b0.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7479fbd-640b-4a65-ac00-893210a725b0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c76e3c4cc159bda9b9e887fcd449ba51
12d90c36bd455b3b859fdb761b6ed49ea9f98f80
fc2aad6b1ec65938249970e01a23d35a19cb9c9acbc3524586dd23f7bdaf9690
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7479fbd-640b-4a65-ac00-893210a725b0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10445
x-amzn-requestid: fb9fc0d4-9f2e-4fab-a259-30300aacdc67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvuDGHaIAMFn_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc659-56786e9b754a48b30b5f79c7;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:06:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fkjT2irjF_lGK2IDx2nzFK13MgMQFXrtUIWv9lR9y-f6VT1bthJfyQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 14:31:14 GMT
age: 53496
etag: "12d90c36bd455b3b859fdb761b6ed49ea9f98f80"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
clabs.cognition-solutions.com/media/css/app.css?v7aff6723
121.241.35.252200 OK 23 kB URL HTTP/1.1 clabs.cognition-solutions.com/media/css/app.css?v7aff6723
IP 121.241.35.252:0
ASN #4755 TATA Communications formerly VSNL is Leading ISP
File type ASCII text, with very long lines (4620)
Hash d7a67d46a7f982f243c933444d97c2af
0fa60718c6368e332e43b64055f9541e97e66ee9
bf7d7f242cd031ab01a19958527e8830f6fa194fef125ba99f3930bff4e1f881
GET /media/css/app.css?v7aff6723 HTTP/1.1
Host: clabs.cognition-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
Cookie: a46777567cc038903a95c663c0360f91=ac9000e544d575470e75d8cf39d37cf6; mautic_device_id=opvswwptyuhazez6pt64axp; mtc_id=796388; mtc_sid=opvswwptyuhazez6pt64axp; mautic_referer_id=68025
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 05:22:50 GMT
Content-Type: text/css
Content-Length: 22634
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 18:51:19 GMT
ETag: "20bd9-5e8937f6a548c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding, Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
clabs.cognition-solutions.com/media/css/libraries.css?v7aff6723
121.241.35.252200 OK 157 kB URL HTTP/1.1 clabs.cognition-solutions.com/media/css/libraries.css?v7aff6723
IP 121.241.35.252:0
ASN #4755 TATA Communications formerly VSNL is Leading ISP
File type ASCII text, with very long lines (3920)
Size 157 kB (157138 bytes)
Hash a3ee25f5abe0370771ac8eefad58ebcc
8d0cda3dfc5e6daeeaaafde01e57aa326a96abd7
8038dfc08c86d8a3d17999a2b1cc2d9ba5e76ed725d60482b73ead3558dec0fb
GET /media/css/libraries.css?v7aff6723 HTTP/1.1
Host: clabs.cognition-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
Cookie: a46777567cc038903a95c663c0360f91=ac9000e544d575470e75d8cf39d37cf6; mautic_device_id=opvswwptyuhazez6pt64axp; mtc_id=796388; mtc_sid=opvswwptyuhazez6pt64axp; mautic_referer_id=68025
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 05:22:50 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 18:51:19 GMT
ETag: "8993a-5e8937f6a548c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding, Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/align.js?v7aff6723
121.241.35.252200 OK 1.4 kB URL HTTP/1.1 clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/align.js?v7aff6723
IP 121.241.35.252:0
ASN #4755 TATA Communications formerly VSNL is Leading ISP
File type ASCII text, with very long lines (324)
Hash 5a5ffbcec75841491138179a5f1d7e10
3c21fd737a46e29c16b69b4a74648b33b1f220f4
76e68a67c3843d1388464984fb7674ecb8702e2abfb9534ea83d220fc105e634
Analyzer Verdict Alert fortinet Phishing
GET /app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/align.js?v7aff6723 HTTP/1.1
Host: clabs.cognition-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
Cookie: a46777567cc038903a95c663c0360f91=ac9000e544d575470e75d8cf39d37cf6; mautic_device_id=opvswwptyuhazez6pt64axp; mtc_id=796388; mtc_sid=opvswwptyuhazez6pt64axp; mautic_referer_id=68025
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 05:22:51 GMT
Content-Type: application/javascript
Content-Length: 1430
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 18:51:18 GMT
ETag: "1031-5e8937f67e37e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding, Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/code_beautifier.js?v7aff6723
121.241.35.252200 OK 28 kB URL HTTP/1.1 clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/code_beautifier.js?v7aff6723
IP 121.241.35.252:0
ASN #4755 TATA Communications formerly VSNL is Leading ISP
File type ASCII text, with very long lines (4242)
Hash 082888fb6fcbcab0c900b8b4626449e5
321d23d40307249ea590cc7bd2630141973b1c93
c534447561288ec97f1866f21ff0f82a3f74d3395862689b43c9ba5a4d3f4f21
Analyzer Verdict Alert fortinet Phishing
GET /app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/code_beautifier.js?v7aff6723 HTTP/1.1
Host: clabs.cognition-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
Cookie: a46777567cc038903a95c663c0360f91=ac9000e544d575470e75d8cf39d37cf6; mautic_device_id=opvswwptyuhazez6pt64axp; mtc_id=796388; mtc_sid=opvswwptyuhazez6pt64axp; mautic_referer_id=68025
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 05:22:51 GMT
Content-Type: application/javascript
Content-Length: 28138
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 18:51:18 GMT
ETag: "214a3-5e8937f67e37e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding, Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/code_view.js?v7aff6723
121.241.35.252200 OK 3.0 kB URL HTTP/1.1 clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/code_view.js?v7aff6723
IP 121.241.35.252:0
ASN #4755 TATA Communications formerly VSNL is Leading ISP
Hash a4ff71ebdf9ae218c889e8dd91dcf42d
4c71940390724d617161d1fffde0426cf3a6da36
8e01b503938110ccf1ba990df185032088906e98caec4b4894af808f99e7a3bd
Analyzer Verdict Alert fortinet Phishing
GET /app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/code_view.js?v7aff6723 HTTP/1.1
Host: clabs.cognition-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
Cookie: a46777567cc038903a95c663c0360f91=ac9000e544d575470e75d8cf39d37cf6; mautic_device_id=opvswwptyuhazez6pt64axp; mtc_id=796388; mtc_sid=opvswwptyuhazez6pt64axp; mautic_referer_id=68025
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 05:22:51 GMT
Content-Type: application/javascript
Content-Length: 3032
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 18:51:18 GMT
ETag: "2855-5e8937f67e37e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding, Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/colors.js?v7aff6723
121.241.35.252200 OK 4.0 kB URL HTTP/1.1 clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/colors.js?v7aff6723
IP 121.241.35.252:0
ASN #4755 TATA Communications formerly VSNL is Leading ISP
File type ASCII text, with very long lines (415)
Hash 8c67daf9070d48a0881c5b4d6072e0b8
38319ed7f461bcc8793a5b984419aa27b763f3e5
ee143b060fb34422c9341f214ecb7ecd7ecd6c15f5bdba52ecfe11694501bbba
Analyzer Verdict Alert fortinet Phishing
GET /app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/colors.js?v7aff6723 HTTP/1.1
Host: clabs.cognition-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
Cookie: a46777567cc038903a95c663c0360f91=ac9000e544d575470e75d8cf39d37cf6; mautic_device_id=opvswwptyuhazez6pt64axp; mtc_id=796388; mtc_sid=opvswwptyuhazez6pt64axp; mautic_referer_id=68025
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 05:22:51 GMT
Content-Type: application/javascript
Content-Length: 3975
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 18:51:18 GMT
ETag: "38c1-5e8937f67e37e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding, Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/font_family.js?v7aff6723
121.241.35.252200 OK 1.9 kB URL HTTP/1.1 clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/font_family.js?v7aff6723
IP 121.241.35.252:0
ASN #4755 TATA Communications formerly VSNL is Leading ISP
Hash 9899a374a46f755addf0056a505389a1
a9cde5ca5000ed76877ca878cf337b020f62d63f
89102786e5d3c4f43347d4f8ab1aca857f128ae1755e581a2cdf36cad390a639
Analyzer Verdict Alert fortinet Phishing
GET /app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/font_family.js?v7aff6723 HTTP/1.1
Host: clabs.cognition-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
Cookie: a46777567cc038903a95c663c0360f91=ac9000e544d575470e75d8cf39d37cf6; mautic_device_id=opvswwptyuhazez6pt64axp; mtc_id=796388; mtc_sid=opvswwptyuhazez6pt64axp; mautic_referer_id=68025
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 05:22:52 GMT
Content-Type: application/javascript
Content-Length: 1887
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 18:51:18 GMT
ETag: "1591-5e8937f67e37e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding, Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/font_size.js?v7aff6723
121.241.35.252200 OK 1.3 kB URL HTTP/1.1 clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/font_size.js?v7aff6723
IP 121.241.35.252:0
ASN #4755 TATA Communications formerly VSNL is Leading ISP
Hash e59c92a727e1b524889cc70881b6f2e6
0cb1df7f479ded4bc77a33afe0d26fe11d7898ee
5eb01fce5b4757f9cd7347f3afdfba4bb631df1432c7febcd8088e76c38e3574
Analyzer Verdict Alert fortinet Phishing
GET /app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/font_size.js?v7aff6723 HTTP/1.1
Host: clabs.cognition-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
Cookie: a46777567cc038903a95c663c0360f91=ac9000e544d575470e75d8cf39d37cf6; mautic_device_id=opvswwptyuhazez6pt64axp; mtc_id=796388; mtc_sid=opvswwptyuhazez6pt64axp; mautic_referer_id=68025
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 05:22:52 GMT
Content-Type: application/javascript
Content-Length: 1340
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 18:51:18 GMT
ETag: "e5e-5e8937f67e37e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding, Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
clabs.cognition-solutions.com/media/js/app.js?v7aff6723
121.241.35.252200 OK 82 kB URL HTTP/1.1 clabs.cognition-solutions.com/media/js/app.js?v7aff6723
IP 121.241.35.252:0
ASN #4755 TATA Communications formerly VSNL is Leading ISP
File type ASCII text, with very long lines (11894)
Hash a03d05ed72c3d5d3430a65e8f3d1fb99
49176d983bb98b50dd626c5a0147fefaae94a9d2
cead81439ef128e74f3a3e65c23bab04cfd726599902848b1e3effcce94ef444
Analyzer Verdict Alert fortinet Phishing
GET /media/js/app.js?v7aff6723 HTTP/1.1
Host: clabs.cognition-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
Cookie: a46777567cc038903a95c663c0360f91=ac9000e544d575470e75d8cf39d37cf6; mautic_device_id=opvswwptyuhazez6pt64axp; mtc_id=796388; mtc_sid=opvswwptyuhazez6pt64axp; mautic_referer_id=68025
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 05:22:51 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 18:51:19 GMT
ETag: "5b8da-5e8937f6aa2ad-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding, Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/froala_editor.js?v7aff6723
121.241.35.252200 OK 82 kB URL HTTP/1.1 clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/froala_editor.js?v7aff6723
IP 121.241.35.252:0
ASN #4755 TATA Communications formerly VSNL is Leading ISP
Hash 04d612f4d6856e7a18ff49bfcc353e0a
5db041c01d2af20eb540f7f1eba41a5e0f07bf07
6f9a3247d645b2dad97775046a12fcae80217321b784ba842216859fde858203
Analyzer Verdict Alert fortinet Phishing
GET /app/bundles/CoreBundle/Assets/js/libraries/froala/froala_editor.js?v7aff6723 HTTP/1.1
Host: clabs.cognition-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
Cookie: a46777567cc038903a95c663c0360f91=ac9000e544d575470e75d8cf39d37cf6; mautic_device_id=opvswwptyuhazez6pt64axp; mtc_id=796388; mtc_sid=opvswwptyuhazez6pt64axp; mautic_referer_id=68025
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 05:22:51 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 18:51:18 GMT
ETag: "626e5-5e8937f67e37e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding, Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/filemanager.js?v7aff6723
121.241.35.252200 OK 1.2 kB URL HTTP/1.1 clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/filemanager.js?v7aff6723
IP 121.241.35.252:0
ASN #4755 TATA Communications formerly VSNL is Leading ISP
Hash e72c13a149fbef12748cab3893c81e54
955a04b2691b9e55c45174e718d7c3925c48fbcc
6a237261ed0eb712b09e634512ac5a2e17f34ab63b2a76271542cd58555beb49
Analyzer Verdict Alert fortinet Phishing
GET /app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/filemanager.js?v7aff6723 HTTP/1.1
Host: clabs.cognition-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
Cookie: a46777567cc038903a95c663c0360f91=ac9000e544d575470e75d8cf39d37cf6; mautic_device_id=opvswwptyuhazez6pt64axp; mtc_id=796388; mtc_sid=opvswwptyuhazez6pt64axp; mautic_referer_id=68025
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 05:22:52 GMT
Content-Type: application/javascript
Content-Length: 1221
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 18:51:18 GMT
ETag: "d7b-5e8937f67e37e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding, Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/image.js?v7aff6723
121.241.35.252200 OK 17 kB URL HTTP/1.1 clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/image.js?v7aff6723
IP 121.241.35.252:0
ASN #4755 TATA Communications formerly VSNL is Leading ISP
File type ASCII text, with very long lines (717)
Hash 3bffa082ef30503268227360b73a81c7
97fc0d5aeb0161a0039b66e4c0aa74602dab546b
2ed9d17cfa51e37bdf32f4e9640ca58ced2270b245439dfa17ac296b38b5b023
Analyzer Verdict Alert fortinet Phishing
GET /app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/image.js?v7aff6723 HTTP/1.1
Host: clabs.cognition-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
Cookie: a46777567cc038903a95c663c0360f91=ac9000e544d575470e75d8cf39d37cf6; mautic_device_id=opvswwptyuhazez6pt64axp; mtc_id=796388; mtc_sid=opvswwptyuhazez6pt64axp; mautic_referer_id=68025
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 05:22:52 GMT
Content-Type: application/javascript
Content-Length: 16839
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 18:51:18 GMT
ETag: "140a7-5e8937f67f31e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding, Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/inline_style.js?v7aff6723
121.241.35.252200 OK 1.1 kB URL HTTP/1.1 clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/inline_style.js?v7aff6723
IP 121.241.35.252:0
ASN #4755 TATA Communications formerly VSNL is Leading ISP
File type ASCII text, with very long lines (302)
Hash 951390a2755973b528fb3edc2b74004e
f0351bc48b1fbda5275fb4b2d519cfc0340267fd
fc440ab8c8cd03f542167c3f0fb420f2d621862a5d9332c702ee7836e926a827
Analyzer Verdict Alert fortinet Phishing
GET /app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/inline_style.js?v7aff6723 HTTP/1.1
Host: clabs.cognition-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
Cookie: a46777567cc038903a95c663c0360f91=ac9000e544d575470e75d8cf39d37cf6; mautic_device_id=opvswwptyuhazez6pt64axp; mtc_id=796388; mtc_sid=opvswwptyuhazez6pt64axp; mautic_referer_id=68025
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 05:22:52 GMT
Content-Type: application/javascript
Content-Length: 1111
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 18:51:18 GMT
ETag: "a8c-5e8937f67f31e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding, Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/link.js?v7aff6723
121.241.35.252200 OK 7.0 kB URL HTTP/1.1 clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/link.js?v7aff6723
IP 121.241.35.252:0
ASN #4755 TATA Communications formerly VSNL is Leading ISP
File type ASCII text, with very long lines (380)
Hash efb9b81c67ad5987f3f22d57e1334da1
66758768c4fef115cfdee9d2e8a6b13a37313460
586cbe3475fdb27432478b2d2df10568904246423edf771470c36ec4f3ac2d96
GET /app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/link.js?v7aff6723 HTTP/1.1
Host: clabs.cognition-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
Cookie: a46777567cc038903a95c663c0360f91=ac9000e544d575470e75d8cf39d37cf6; mautic_device_id=opvswwptyuhazez6pt64axp; mtc_id=796388; mtc_sid=opvswwptyuhazez6pt64axp; mautic_referer_id=68025
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 05:22:52 GMT
Content-Type: application/javascript
Content-Length: 7014
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 18:51:18 GMT
ETag: "7bde-5e8937f67f31e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding, Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/line_breaker.js?v7aff6723
121.241.35.252200 OK 4.1 kB URL HTTP/1.1 clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/line_breaker.js?v7aff6723
IP 121.241.35.252:0
ASN #4755 TATA Communications formerly VSNL is Leading ISP
File type ASCII text, with very long lines (411)
Hash 6c2ab84abe15de8a869a535823d53c0d
dff1ec10fddbeb4486a1738c64b358af507f4872
b7b73f483a2d9b26e02fbcccf3eb2aa923057bb39988d74aebf4a1095321eab4
Analyzer Verdict Alert fortinet Phishing
GET /app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/line_breaker.js?v7aff6723 HTTP/1.1
Host: clabs.cognition-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
Cookie: a46777567cc038903a95c663c0360f91=ac9000e544d575470e75d8cf39d37cf6; mautic_device_id=opvswwptyuhazez6pt64axp; mtc_id=796388; mtc_sid=opvswwptyuhazez6pt64axp; mautic_referer_id=68025
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 05:22:52 GMT
Content-Type: application/javascript
Content-Length: 4060
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 18:51:18 GMT
ETag: "3e46-5e8937f67f31e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding, Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/lists.js?v7aff6723
121.241.35.252200 OK 2.9 kB URL HTTP/1.1 clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/lists.js?v7aff6723
IP 121.241.35.252:0
ASN #4755 TATA Communications formerly VSNL is Leading ISP
Hash 701d9bc9e3999165dcc8e24844337289
e987779e772be08f5fcb86fa40ff426841aa4c04
a16ca8e164dd657cc05001729d509c03db6c7944edd13e3aeff0281d40c49685
Analyzer Verdict Alert fortinet Phishing
GET /app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/lists.js?v7aff6723 HTTP/1.1
Host: clabs.cognition-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
Cookie: a46777567cc038903a95c663c0360f91=ac9000e544d575470e75d8cf39d37cf6; mautic_device_id=opvswwptyuhazez6pt64axp; mtc_id=796388; mtc_sid=opvswwptyuhazez6pt64axp; mautic_referer_id=68025
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 05:22:52 GMT
Content-Type: application/javascript
Content-Length: 2902
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 18:51:18 GMT
ETag: "2aba-5e8937f67f31e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding, Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/paragraph_style.js?v7aff6723
121.241.35.252200 OK 1.5 kB URL HTTP/1.1 clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/paragraph_style.js?v7aff6723
IP 121.241.35.252:0
ASN #4755 TATA Communications formerly VSNL is Leading ISP
Hash f29784ecaf574de92460ee6c57a8099f
8cefd4db645a6fcb2e7b5a485fcd0abbeb176bf9
4d8a1ed716a3617eb9b67749ea40e57ba0a7f79905977046f190f9aa997c51b6
Analyzer Verdict Alert fortinet Phishing
GET /app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/paragraph_style.js?v7aff6723 HTTP/1.1
Host: clabs.cognition-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
Cookie: a46777567cc038903a95c663c0360f91=ac9000e544d575470e75d8cf39d37cf6; mautic_device_id=opvswwptyuhazez6pt64axp; mtc_id=796388; mtc_sid=opvswwptyuhazez6pt64axp; mautic_referer_id=68025
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 05:22:52 GMT
Content-Type: application/javascript
Content-Length: 1518
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 18:51:18 GMT
ETag: "10b4-5e8937f67f31e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding, Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/quote.js?v7aff6723
121.241.35.252200 OK 1.2 kB URL HTTP/1.1 clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/quote.js?v7aff6723
IP 121.241.35.252:0
ASN #4755 TATA Communications formerly VSNL is Leading ISP
Hash 43fa0c377e4bac2257d94f8989af085f
f5e72296640f2c1630903b6b3bf46cbdbca42b8a
4261b55a8fad579ebe36fcae50afb5eab2f3ae3887eb17cd6c19333a78e8eb63
Analyzer Verdict Alert fortinet Phishing
GET /app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/quote.js?v7aff6723 HTTP/1.1
Host: clabs.cognition-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
Cookie: a46777567cc038903a95c663c0360f91=ac9000e544d575470e75d8cf39d37cf6; mautic_device_id=opvswwptyuhazez6pt64axp; mtc_id=796388; mtc_sid=opvswwptyuhazez6pt64axp; mautic_referer_id=68025
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 05:22:52 GMT
Content-Type: application/javascript
Content-Length: 1166
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 18:51:18 GMT
ETag: "d54-5e8937f67f31e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding, Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/quick_insert.js?v7aff6723
121.241.35.252200 OK 3.4 kB URL HTTP/1.1 clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/quick_insert.js?v7aff6723
IP 121.241.35.252:0
ASN #4755 TATA Communications formerly VSNL is Leading ISP
Hash de6ee40e34d135f90ee3e5cde2e19d18
cd838328e4b0d010494475deda33ded11a938ed4
4de6230812010c27dd2936c500b9ad84e1556ed0f72dbf3fa718b01ef60a647d
Analyzer Verdict Alert fortinet Phishing
GET /app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/quick_insert.js?v7aff6723 HTTP/1.1
Host: clabs.cognition-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
Cookie: a46777567cc038903a95c663c0360f91=ac9000e544d575470e75d8cf39d37cf6; mautic_device_id=opvswwptyuhazez6pt64axp; mtc_id=796388; mtc_sid=opvswwptyuhazez6pt64axp; mautic_referer_id=68025
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 05:22:52 GMT
Content-Type: application/javascript
Content-Length: 3418
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 18:51:18 GMT
ETag: "2fed-5e8937f67f31e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding, Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/paragraph_format.js?v7aff6723
121.241.35.252200 OK 2.6 kB URL HTTP/1.1 clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/paragraph_format.js?v7aff6723
IP 121.241.35.252:0
ASN #4755 TATA Communications formerly VSNL is Leading ISP
File type ASCII text, with very long lines (451)
Hash bd34ff54e6142aaf31657f7df4d1f53c
1b4cafc27d32cc9fbf699a1497465a708822f41b
b035417a888dfc95fa8a8fc1fe7ca3b34a840c3faf082f168debc4d06848ebbf
GET /app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/paragraph_format.js?v7aff6723 HTTP/1.1
Host: clabs.cognition-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
Cookie: a46777567cc038903a95c663c0360f91=ac9000e544d575470e75d8cf39d37cf6; mautic_device_id=opvswwptyuhazez6pt64axp; mtc_id=796388; mtc_sid=opvswwptyuhazez6pt64axp; mautic_referer_id=68025
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 05:22:52 GMT
Content-Type: application/javascript
Content-Length: 2575
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 18:51:18 GMT
ETag: "2210-5e8937f67f31e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding, Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/table.js?v7aff6723
121.241.35.252200 OK 24 kB URL HTTP/1.1 clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/table.js?v7aff6723
IP 121.241.35.252:0
ASN #4755 TATA Communications formerly VSNL is Leading ISP
File type ASCII text, with very long lines (356)
Hash 242260e96c925b9802796934ec517f8c
07b5171fc40ba33c6aabfb70a5edb8719e7fa3de
311dc80f31684bfa665914d82833f556900967f68652a9036c0d36d19bb4065f
Analyzer Verdict Alert fortinet Phishing
GET /app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/table.js?v7aff6723 HTTP/1.1
Host: clabs.cognition-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
Cookie: a46777567cc038903a95c663c0360f91=ac9000e544d575470e75d8cf39d37cf6; mautic_device_id=opvswwptyuhazez6pt64axp; mtc_id=796388; mtc_sid=opvswwptyuhazez6pt64axp; mautic_referer_id=68025
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 05:22:53 GMT
Content-Type: application/javascript
Content-Length: 23787
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 18:51:18 GMT
ETag: "1ef9d-5e8937f67f31e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding, Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
clabs.cognition-solutions.com/media/js/libraries.js?v7aff6723
121.241.35.252200 OK 511 kB URL HTTP/1.1 clabs.cognition-solutions.com/media/js/libraries.js?v7aff6723
IP 121.241.35.252:0
ASN #4755 TATA Communications formerly VSNL is Leading ISP
File type HTML document, ASCII text, with very long lines (1987)
Size 511 kB (510644 bytes)
Hash da8380f5f9dc2a130d46ed2900db2e6b
215230eb89e06035b667857258dc1c8d9dae4d10
d751f3d0df1c2868bb4b8584a6373b540fbfea2ccc4da7c9bf2557618d23a589
Analyzer Verdict Alert fortinet Phishing
GET /media/js/libraries.js?v7aff6723 HTTP/1.1
Host: clabs.cognition-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
Cookie: a46777567cc038903a95c663c0360f91=ac9000e544d575470e75d8cf39d37cf6; mautic_device_id=opvswwptyuhazez6pt64axp; mtc_id=796388; mtc_sid=opvswwptyuhazez6pt64axp; mautic_referer_id=68025
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 05:22:51 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 18:51:19 GMT
ETag: "1d8f9f-5e8937f6ab24e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding, Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/dynamic_content.js?v7aff6723
121.241.35.252200 OK 884 B URL HTTP/1.1 clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/dynamic_content.js?v7aff6723
IP 121.241.35.252:0
ASN #4755 TATA Communications formerly VSNL is Leading ISP
Hash e0a29481516c8e15623e5e786bcd088d
e1a181d7f4bb10f847b249cf71a10e9c5abac062
8e620a80ca74ea6670c52bed16c29cf6f8d67229d38f347d67427b2a21ddf9d7
Analyzer Verdict Alert fortinet Phishing
GET /app/bundles/CoreBundle/Assets/js/libraries/froala/plugins/dynamic_content.js?v7aff6723 HTTP/1.1
Host: clabs.cognition-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
Cookie: a46777567cc038903a95c663c0360f91=ac9000e544d575470e75d8cf39d37cf6; mautic_device_id=opvswwptyuhazez6pt64axp; mtc_id=796388; mtc_sid=opvswwptyuhazez6pt64axp; mautic_referer_id=68025
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 05:22:53 GMT
Content-Type: application/javascript
Content-Length: 884
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 18:51:18 GMT
ETag: "83e-5e8937f67e37e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding, Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/ckeditor/adapters/jquery.js?v7aff6723
121.241.35.252200 OK 1.2 kB URL HTTP/1.1 clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/ckeditor/adapters/jquery.js?v7aff6723
IP 121.241.35.252:0
ASN #4755 TATA Communications formerly VSNL is Leading ISP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (517)
Hash d7c5fe75e6a66df41435724c28f44701
c68207dff0b2908a7d86382839bf347c5d3e01ca
e17d0d9e315d8857b8d45323ed7256dfa21c89f21e133791fdf6014f199d9f29
Analyzer Verdict Alert fortinet Phishing
GET /app/bundles/CoreBundle/Assets/js/libraries/ckeditor/adapters/jquery.js?v7aff6723 HTTP/1.1
Host: clabs.cognition-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
Cookie: a46777567cc038903a95c663c0360f91=ac9000e544d575470e75d8cf39d37cf6; mautic_device_id=opvswwptyuhazez6pt64axp; mtc_id=796388; mtc_sid=opvswwptyuhazez6pt64axp; mautic_referer_id=68025
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 05:22:53 GMT
Content-Type: application/javascript
Content-Length: 1199
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 18:51:18 GMT
ETag: "c65-5e8937f669b57-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding, Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 05:22:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v18/mem8YaGs126MiZpBA-UFVZ0e.ttf
216.58.207.195200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v18/mem8YaGs126MiZpBA-UFVZ0e.ttf
IP 216.58.207.195:0
File type TrueType Font data, 17 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Digitized data copyright \251 2010-2011, Google Corporation.Open SansRegular1.10;1ASC;OpenSans-R\012- data
Hash 40026dd33ed500cbf4b802a158a79222
a45c44014b16a83b7bc42322db337060d675840b
917fa4a24241b21a073eebd603d77452b50da28fb80285487b699186cd61a7d5
GET /s/opensans/v18/mem8YaGs126MiZpBA-UFVZ0e.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://clabs.cognition-solutions.com
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18276
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 17:29:35 GMT
expires: Fri, 24 Nov 2023 17:29:35 GMT
cache-control: public, max-age=31536000
age: 388398
last-modified: Tue, 15 Sep 2020 18:09:22 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Ubuntu
142.250.74.10200 OK 925 B URL HTTP/2 fonts.googleapis.com/css?family=Ubuntu
IP 142.250.74.10:0
Hash ccebb5cc9026d1cbefba77275420138e
aaf4826994be5656270f9174675a6ce827ca2468
a370ef22a9f6943c7345283269fbd0e6593c316f0ee82326d2da63c6be5de1ca
GET /css?family=Ubuntu HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 05:22:50 GMT
date: Tue, 29 Nov 2022 05:22:50 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/ckeditor/ckeditor.js?v7aff6723
121.241.35.252200 OK 221 kB URL HTTP/1.1 clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/js/libraries/ckeditor/ckeditor.js?v7aff6723
IP 121.241.35.252:0
ASN #4755 TATA Communications formerly VSNL is Leading ISP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (595)
Size 221 kB (221146 bytes)
Hash 99bb8acacb97699133bb97074f9f6ea6
a8731f64ce37f2fce2c301b6b9e889f00c34cc70
f04aa79531d14ea927a6ffb607601e8b5b532d75b582ff239b3638c50be1394a
Analyzer Verdict Alert fortinet Phishing
GET /app/bundles/CoreBundle/Assets/js/libraries/ckeditor/ckeditor.js?v7aff6723 HTTP/1.1
Host: clabs.cognition-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
Cookie: a46777567cc038903a95c663c0360f91=ac9000e544d575470e75d8cf39d37cf6; mautic_device_id=opvswwptyuhazez6pt64axp; mtc_id=796388; mtc_sid=opvswwptyuhazez6pt64axp; mautic_referer_id=68025
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 05:22:53 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 18:51:18 GMT
ETag: "b60ff-5e8937f669b57-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding, Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
216.58.207.195200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clabs.cognition-solutions.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:53:39 GMT
expires: Tue, 28 Nov 2023 18:53:39 GMT
cache-control: public, max-age=31536000
age: 37755
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto
142.250.74.10200 OK 20 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto
IP 142.250.74.10:0
Hash ca1d131bcb3bdfbd5189b9279b2b2acf
4029a8114e02cdd31a5d5f1434742e8f34fd4766
c9e4873087d68acded2fa5a4ce0f25a6c8ff838ab6d38a74736d84d305f8df1a
GET /css?family=Roboto HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 05:22:50 GMT
date: Tue, 29 Nov 2022 05:22:50 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/css/libraries/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
121.241.35.252200 OK 77 kB URL HTTP/1.1 clabs.cognition-solutions.com/app/bundles/CoreBundle/Assets/css/libraries/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 121.241.35.252:0
ASN #4755 TATA Communications formerly VSNL is Leading ISP
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /app/bundles/CoreBundle/Assets/css/libraries/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: clabs.cognition-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/media/css/libraries.css?v7aff6723
Cookie: a46777567cc038903a95c663c0360f91=ac9000e544d575470e75d8cf39d37cf6; mautic_device_id=opvswwptyuhazez6pt64axp; mtc_id=796388; mtc_sid=opvswwptyuhazez6pt64axp; mautic_referer_id=68025
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 05:22:54 GMT
Content-Type: font/woff2
Content-Length: 77160
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 18:51:18 GMT
ETag: "12d68-5e8937f666c76"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
clabs.cognition-solutions.com/media/images/favicon.ico?v7aff6723
121.241.35.252200 OK 13 kB URL HTTP/1.1 clabs.cognition-solutions.com/media/images/favicon.ico?v7aff6723
IP 121.241.35.252:0
ASN #4755 TATA Communications formerly VSNL is Leading ISP
File type MS Windows icon resource - 1 icon, 64x64, 24 bits/pixel\012- data
Hash 2f5268cde78789978184e8f9c9e2b76e
e123ee3167c7f9355f507b9ad481f6906c15f9e1
67a5904d731636c114513a7df90d4d6bff7a3f690f305ef3487ac84844a5874e
Analyzer Verdict Alert fortinet Phishing
GET /media/images/favicon.ico?v7aff6723 HTTP/1.1
Host: clabs.cognition-solutions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/email/unsubscribe/63848398d2dd2818493025&data=05%7C01robert.james20212@gmail.com%7C9559bb4e5c8a4963038808dad12767ab%7Cfb6AB12ABCDEFGHIJKLMNOPQ47e98204%7C0%7C0%7C638052264436021227%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0=%7C3000%7C%7C%7C&sdata=XKuBtS33eFKVCsmUaYAvvR/cpbkvB/VF6SnmzpnaF+Y=&reserved=0
Cookie: a46777567cc038903a95c663c0360f91=ac9000e544d575470e75d8cf39d37cf6; mautic_device_id=opvswwptyuhazez6pt64axp; mtc_id=796388; mtc_sid=opvswwptyuhazez6pt64axp; mautic_referer_id=68025
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 05:22:54 GMT
Content-Type: image/vnd.microsoft.icon
Content-Length: 12862
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 18:51:19 GMT
ETag: "323e-5e8937f6a73cc"
Accept-Ranges: bytes
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
fonts.googleapis.com/css?family=Lato
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato
IP 142.250.74.10:0
GET /css?family=Lato HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 05:22:50 GMT
date: Tue, 29 Nov 2022 05:22:50 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans
IP 142.250.74.10:0
GET /css?family=Open+Sans HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 05:22:50 GMT
date: Tue, 29 Nov 2022 05:22:50 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat
IP 142.250.74.10:0
GET /css?family=Montserrat HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 05:22:50 GMT
date: Tue, 29 Nov 2022 05:22:50 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Droid+Serif
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Droid+Serif
IP 142.250.74.10:0
GET /css?family=Droid+Serif HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 05:22:50 GMT
date: Tue, 29 Nov 2022 05:22:50 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Bitter
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Bitter
IP 142.250.74.10:0
GET /css?family=Bitter HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 05:22:50 GMT
date: Tue, 29 Nov 2022 05:22:50 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Source+Sans+Pro
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Source+Sans+Pro
IP 142.250.74.10:0
GET /css?family=Source+Sans+Pro HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clabs.cognition-solutions.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 05:22:50 GMT
date: Tue, 29 Nov 2022 05:22:50 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2