bioamecsa.com/en/GB83ZMWZ33666172412202/cm5laWxsQGR3a2xhdy5jb20=
200 OK 0 B URL User Request GET HTTP/2 bioamecsa.com/en/GB83ZMWZ33666172412202/cm5laWxsQGR3a2xhdy5jb20=
IP
ASN #46606 UNIFIEDLAYER-AS-1
Certificate IssuerLet's Encrypt
Subject*.bioamecsa.com
Fingerprint90:66:7F:80:B2:C6:45:02:A8:3E:76:F6:15:B2:79:59:0D:FE:9C:F9
ValidityThu, 21 Sep 2023 21:10:29 GMT - Wed, 20 Dec 2023 21:10:28 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Microsoft Outlook
GET /en/GB83ZMWZ33666172412202/cm5laWxsQGR3a2xhdy5jb20= HTTP/1.1
Host: bioamecsa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 Nov 2023 20:42:25 GMT
server: nginx/1.23.4
content-type: text/html; charset=UTF-8
content-length: 0
refresh: 0;url=https://theteamsnow.com/Mrneill@dwklaw.com
x-server-cache: false
X-Firefox-Spdy: h2
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8230a47aaaef2e03
61 kB URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8230a47aaaef2e03
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0513a0cd6ea1b9da93305a37a0c560ba
a21003f536d7bd5acbc0bd211be4150e473c6142
6d97e2f426f2adbd53eb831ee12196c6b3a27d75ea2a20b8ff8be1c5341b01eb
GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=8230a47aaaef2e03 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/vm3tc/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 Nov 2023 20:42:26 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
server: cloudflare
cf-ray: 8230a47bbc5c2e03-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400
theteamsnow.com/jm/2eded16f19804e1db0c34d87517fd49d654bf2b6c690c
200 OK 309 kB URL GET HTTP/3 theteamsnow.com/jm/2eded16f19804e1db0c34d87517fd49d654bf2b6c690c
IP
Requested by https://theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
Certificate IssuerGoogle Trust Services LLC
Subjecttheteamsnow.com
FingerprintE6:AD:BD:E4:9C:FC:BE:A6:C6:1E:CA:78:B1:4A:24:61:58:EF:20:E5
ValidityFri, 13 Oct 2023 15:32:28 GMT - Thu, 11 Jan 2024 15:32:27 GMT
File type ASCII text, with very long lines (6357), with no line terminators
Size 309 kB (308702 bytes)
Hash 82ff6e77e3b8f004b23294185e108264
03c685b50fd4587427495348cd1231882a8c48d0
0e230a53a5d5abd125c2a8e1cdd97b32ddd84a9f7fd07c23bff95413886b05fa
GET /jm/2eded16f19804e1db0c34d87517fd49d654bf2b6c690c HTTP/1.1
Host: theteamsnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
Cookie: cf_clearance=mcwR8fKil7aaMXos9YJN7LIfRmEdfYs4y76l1061WJ8-1699476145-0-1-69b0ef05.c399f377.3eb1b0e5-160.0.0; PHPSESSID=57762f15befa01b738239e65e4985bac
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 Nov 2023 20:42:31 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 15 Nov 2023 20:42:31 GMT
last-modified: Wed, 08 Nov 2023 04:56:48 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tCbLl7YSvuthpJF8OO3wcIy33tXsLdciJgKQk6R4NkHPn6XWc25Xm2mSvAnX%2BiV7IbWgToemyvl9RBR98JGqjGZPqSg2fzi5Zw3NeJd3qJ2M783ZgszDxdgMFL61I%2FVLciQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8230a4978dc2d91e-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400
unpkg.com/axios/dist/axios.min.js
302 Found 34 kB URL GET HTTP/2 unpkg.com/axios/dist/axios.min.js
IP
Requested by https://theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /axios/dist/axios.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theteamsnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 08 Nov 2023 20:42:31 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /axios@1.6.1/dist/axios.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01HERAGVD0071Y514FHGFYJK48-fra
cf-cache-status: HIT
age: 241
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8230a497bbf298fa-ARN
X-Firefox-Spdy: h2
theteamsnow.com/Mrneill@dwklaw.com
403 Forbidden 6.7 kB URL User Request GET HTTP/2 theteamsnow.com/Mrneill@dwklaw.com
IP
Certificate IssuerGoogle Trust Services LLC
Subjecttheteamsnow.com
FingerprintE6:AD:BD:E4:9C:FC:BE:A6:C6:1E:CA:78:B1:4A:24:61:58:EF:20:E5
ValidityFri, 13 Oct 2023 15:32:28 GMT - Thu, 11 Jan 2024 15:32:27 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (6766), with no line terminators
Hash 1b198cacb7a71757a9e51a8d1f93834f
b7580f80921dda83fddb78b9daa5132a725beadb
f2e9d7f6cf092ee1264ec559af16d8fe89985cbc1987f20edfb28c89880d902e
Analyzer Verdict Alert urlquery phishing Phishing - Microsoft Outlook
GET /Mrneill@dwklaw.com HTTP/1.1
Host: theteamsnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Wed, 08 Nov 2023 20:42:25 GMT
content-type: text/html; charset=UTF-8
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZyKP5v79jCKVYhqWty%2BM%2FhJLcGfF0wC%2B9IscmqDZz9slOzBpQoPTfhDPbsNRKcxnkcvKIXUUkFpvmaL79aH7xon7oBheUCFtZtSD4t88X0LfS3MHQs232fvk94z9wsglmtw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8230a476e8cf70f7-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
theteamsnow.com/2
200 OK 36 kB IP
Requested by https://theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
Certificate IssuerGoogle Trust Services LLC
Subjecttheteamsnow.com
FingerprintE6:AD:BD:E4:9C:FC:BE:A6:C6:1E:CA:78:B1:4A:24:61:58:EF:20:E5
ValidityFri, 13 Oct 2023 15:32:28 GMT - Thu, 11 Jan 2024 15:32:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /2 HTTP/1.1
Host: theteamsnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
Cookie: cf_clearance=mcwR8fKil7aaMXos9YJN7LIfRmEdfYs4y76l1061WJ8-1699476145-0-1-69b0ef05.c399f377.3eb1b0e5-160.0.0; PHPSESSID=57762f15befa01b738239e65e4985bac
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 Nov 2023 20:42:31 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kSXPingC34Y9mKvhdb81iqE9fB3A269mEqAAZgHmsZPqL1ODtvb4vwvz7ZZxH0Biip0pvT0uBiahlVGfGTEqOhooRwLyU10ZOWyuMVo8FpvCGn200xdF6L4oANV%2BFyepr7k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8230a498c888d91e-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400
theteamsnow.com/ic/2eded16f19804e1db0c34d87517fd49d654bf2b72dcea
200 OK 17 kB URL GET HTTP/3 theteamsnow.com/ic/2eded16f19804e1db0c34d87517fd49d654bf2b72dcea
IP
Requested by https://theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
Certificate IssuerGoogle Trust Services LLC
Subjecttheteamsnow.com
FingerprintE6:AD:BD:E4:9C:FC:BE:A6:C6:1E:CA:78:B1:4A:24:61:58:EF:20:E5
ValidityFri, 13 Oct 2023 15:32:28 GMT - Thu, 11 Jan 2024 15:32:27 GMT
File type MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors\012- data
Hash 12e3dac858061d088023b2bd48e2fa96
e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5
90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21
GET /ic/2eded16f19804e1db0c34d87517fd49d654bf2b72dcea HTTP/1.1
Host: theteamsnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
Cookie: cf_clearance=mcwR8fKil7aaMXos9YJN7LIfRmEdfYs4y76l1061WJ8-1699476145-0-1-69b0ef05.c399f377.3eb1b0e5-160.0.0; PHPSESSID=57762f15befa01b738239e65e4985bac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 Nov 2023 20:42:31 GMT
content-type: image/x-icon
cache-control: public, max-age=604800
expires: Wed, 15 Nov 2023 20:42:31 GMT
last-modified: Wed, 08 Nov 2023 04:56:48 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BmQeUlaP5RXOQ%2FvomSNufiQ8X6o3Uppp69Uv%2BqNTTa8gwkgfsqIf4ZIR8EjFH0pLKknJjpZusK7SA6byNv1FVdXNmqJfVoZ3e25YQK6TOF%2FyXnPDbDdPCvmYycqpOfUDyws%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8230a49b6e07d91e-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400
theteamsnow.com/APP-OCHMTJ/2eded16f19804e1db0c34d87517fd49d654bf2b72dcef
200 OK 105 kB URL GET HTTP/3 theteamsnow.com/APP-OCHMTJ/2eded16f19804e1db0c34d87517fd49d654bf2b72dcef
IP
Requested by https://theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
Certificate IssuerGoogle Trust Services LLC
Subjecttheteamsnow.com
FingerprintE6:AD:BD:E4:9C:FC:BE:A6:C6:1E:CA:78:B1:4A:24:61:58:EF:20:E5
ValidityFri, 13 Oct 2023 15:32:28 GMT - Thu, 11 Jan 2024 15:32:27 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 105 kB (105369 bytes)
Hash 8e6b0f88563f9c33f78bce65cf287df7
ef7765cd2a7d64ed27dd7344702597aff6f8c397
a7057bebfff43e7281ca31da00d40bd88c8d02d1576b9c45891dd56a3853269a
GET /APP-OCHMTJ/2eded16f19804e1db0c34d87517fd49d654bf2b72dcef HTTP/1.1
Host: theteamsnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
Cookie: cf_clearance=mcwR8fKil7aaMXos9YJN7LIfRmEdfYs4y76l1061WJ8-1699476145-0-1-69b0ef05.c399f377.3eb1b0e5-160.0.0; PHPSESSID=57762f15befa01b738239e65e4985bac
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 Nov 2023 20:42:31 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Wed, 15 Nov 2023 20:42:31 GMT
last-modified: Wed, 08 Nov 2023 04:56:48 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WV9ihiVMjgwm%2Fc87kIHUg%2FOSKKIMPBSaUlcnWLGtOgt6XUQLKy%2FekIoubdYVML40MKxZ64Ey5vhd2eFemRjOqYM%2F5LEinUOsyzFich6J90v5ETChwC9RubuUoqUdVsNpmtQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8230a49949dad91e-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400
theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
200 OK 5.5 kB URL User Request GET HTTP/3 theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
IP
Certificate IssuerGoogle Trust Services LLC
Subjecttheteamsnow.com
FingerprintE6:AD:BD:E4:9C:FC:BE:A6:C6:1E:CA:78:B1:4A:24:61:58:EF:20:E5
ValidityFri, 13 Oct 2023 15:32:28 GMT - Thu, 11 Jan 2024 15:32:27 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5541), with no line terminators
Hash 0b318f93ed7acf03c341d53c3fe2222d
1a4c245572e74d8c2a801a612aa6e37a6d2ecb3c
acde3e3118f98b8cddc757082de548139ac73e55a9a068e3c0fb2dfab9c22b8d
GET /beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625 HTTP/1.1
Host: theteamsnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://theteamsnow.com/Mrneill@dwklaw.com?__cf_chl_tk=becuHnwHPZVYEIv7uMNXc0ZYn93YFdvHAbEtMQknCNY-1699476145-0-gaNycGzNDZA
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=mcwR8fKil7aaMXos9YJN7LIfRmEdfYs4y76l1061WJ8-1699476145-0-1-69b0ef05.c399f377.3eb1b0e5-160.0.0; PHPSESSID=57762f15befa01b738239e65e4985bac
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 Nov 2023 20:42:30 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=POVC1AZf99ZHokhTw0N816bC%2BJPJRf%2BNmGLpnrhGxBd76PB6LMAwQjtVbmv%2FLYgacD6I13QXwEKsUaPUgGxBwCVMFM1OqTukryI9VOsql3ZpqRF1OYGOU1bF9WSgTQJdmnE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8230a4967b5fd91e-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400
theteamsnow.com/boot/2eded16f19804e1db0c34d87517fd49d654bf2b6c690b
200 OK 51 kB URL GET HTTP/3 theteamsnow.com/boot/2eded16f19804e1db0c34d87517fd49d654bf2b6c690b
IP
Requested by https://theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
Certificate IssuerGoogle Trust Services LLC
Subjecttheteamsnow.com
FingerprintE6:AD:BD:E4:9C:FC:BE:A6:C6:1E:CA:78:B1:4A:24:61:58:EF:20:E5
ValidityFri, 13 Oct 2023 15:32:28 GMT - Thu, 11 Jan 2024 15:32:27 GMT
File type ASCII text, with very long lines (50758)
Hash 67176c242e1bdc20603c878dee836df3
27a71b00383d61ef3c489326b3564d698fc1227c
56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4
GET /boot/2eded16f19804e1db0c34d87517fd49d654bf2b6c690b HTTP/1.1
Host: theteamsnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
Cookie: cf_clearance=mcwR8fKil7aaMXos9YJN7LIfRmEdfYs4y76l1061WJ8-1699476145-0-1-69b0ef05.c399f377.3eb1b0e5-160.0.0; PHPSESSID=57762f15befa01b738239e65e4985bac
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 Nov 2023 20:42:31 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 15 Nov 2023 20:42:31 GMT
last-modified: Wed, 08 Nov 2023 04:56:48 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IWIfJ4AMVgIpHMd0h%2FicWffDo2LwI476Aotc2gfmQj%2FXJXxgJOY6wFEi%2B%2Fjl6pcLq9D3xsy7BcVqGBBwCmNYETed24ud%2FXi6lfN9%2FsK0Ikaz%2BDFpvXoxvlud8pLQPx4Z3kU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8230a4978dc0d91e-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400
theteamsnow.com/o/2eded16f19804e1db0c34d87517fd49d654bf2b72dd23
200 OK 3.7 kB URL GET HTTP/3 theteamsnow.com/o/2eded16f19804e1db0c34d87517fd49d654bf2b72dd23
IP
Requested by https://theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
Certificate IssuerGoogle Trust Services LLC
Subjecttheteamsnow.com
FingerprintE6:AD:BD:E4:9C:FC:BE:A6:C6:1E:CA:78:B1:4A:24:61:58:EF:20:E5
ValidityFri, 13 Oct 2023 15:32:28 GMT - Thu, 11 Jan 2024 15:32:27 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (3695), with no line terminators
Hash d633a913e6f3b1f45774b9874dfc85e0
5ba1344048578062c93cfddfdf8458477eaca476
c1fbfbd9a81fc4d9c9539a65bdfb4c6738926b8d4681b0346706196413e92714
GET /o/2eded16f19804e1db0c34d87517fd49d654bf2b72dd23 HTTP/1.1
Host: theteamsnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
Cookie: cf_clearance=mcwR8fKil7aaMXos9YJN7LIfRmEdfYs4y76l1061WJ8-1699476145-0-1-69b0ef05.c399f377.3eb1b0e5-160.0.0; PHPSESSID=57762f15befa01b738239e65e4985bac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 Nov 2023 20:42:31 GMT
content-type: image/svg+xml
cache-control: public, max-age=604800
expires: Wed, 15 Nov 2023 20:42:31 GMT
last-modified: Wed, 08 Nov 2023 04:56:48 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R1FPGvCMKWnNroasgcChwrryXjpmeASNj1%2BQ0BPWsDIf21o%2BH1lPw%2Bx9RK2xG%2FvXFZ3j7y0oqSTU3fHOXH6v1JUtDmx32ZBBrxsv8UoOM4iMXi9BE%2BtO880kzY6wxXJWeHo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8230a49939b3d91e-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400
theteamsnow.com/api-as1f?email=rneill@dwklaw.com&data=logo
200 OK 85 B URL GET HTTP/3 theteamsnow.com/api-as1f?email=rneill@dwklaw.com&data=logo
IP
Requested by https://theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
Certificate IssuerGoogle Trust Services LLC
Subjecttheteamsnow.com
FingerprintE6:AD:BD:E4:9C:FC:BE:A6:C6:1E:CA:78:B1:4A:24:61:58:EF:20:E5
ValidityFri, 13 Oct 2023 15:32:28 GMT - Thu, 11 Jan 2024 15:32:27 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 76f02799ff6960e087dcd93f3279bc3c
86ead994ec72b5f5c32f6a56d84f1fe883c52550
4e92beef20a827f260c262eabe3a54c1c54e7501e798592e961186a3a398cc6f
GET /api-as1f?email=rneill@dwklaw.com&data=logo HTTP/1.1
Host: theteamsnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
Cookie: cf_clearance=mcwR8fKil7aaMXos9YJN7LIfRmEdfYs4y76l1061WJ8-1699476145-0-1-69b0ef05.c399f377.3eb1b0e5-160.0.0; PHPSESSID=57762f15befa01b738239e65e4985bac
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 Nov 2023 20:42:31 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UnbdZrx8AEqoT5HfOxJIlqrtY8BIagx5cVY%2FeasPQnz4c%2BKMpvzzm85tXuSJRk4XpbdxTZ3eQuZRzD%2FKq%2BrlVwY7Ypk%2Bp89CFp3A0IL1ZUj1P9lzngzunJAnjAzw%2Boirl4s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8230a49949d2d91e-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400
theteamsnow.com/ASSETS/img/BIMG-654bf2b80d0f1.css
200 OK 306 kB URL GET HTTP/3 theteamsnow.com/ASSETS/img/BIMG-654bf2b80d0f1.css
IP
Requested by https://theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
Certificate IssuerGoogle Trust Services LLC
Subjecttheteamsnow.com
FingerprintE6:AD:BD:E4:9C:FC:BE:A6:C6:1E:CA:78:B1:4A:24:61:58:EF:20:E5
ValidityFri, 13 Oct 2023 15:32:28 GMT - Thu, 11 Jan 2024 15:32:27 GMT
File type PNG image data, 1920 x 1080, 8-bit/color RGBA, non-interlaced\012- data
Size 306 kB (306493 bytes)
Hash 7d07c247e8dfd5bfaf9a7169b5c402bd
392cc7836ca5418f3e65cc67f5680b2a359399dc
345f500582fb5cfc20df5426c6b54bb0bcaa62eb0249a4a661dc9716a9edc006
Analyzer Verdict Alert urlquery phishing Phishing - Microsoft Outlook
GET /ASSETS/img/BIMG-654bf2b80d0f1.css HTTP/1.1
Host: theteamsnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
Cookie: cf_clearance=mcwR8fKil7aaMXos9YJN7LIfRmEdfYs4y76l1061WJ8-1699476145-0-1-69b0ef05.c399f377.3eb1b0e5-160.0.0; PHPSESSID=57762f15befa01b738239e65e4985bac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 Nov 2023 20:42:33 GMT
content-type: image/png
content-length: 306493
cache-control: public, max-age=604800
expires: Wed, 15 Nov 2023 20:42:33 GMT
last-modified: Wed, 08 Nov 2023 04:56:48 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PuU3V5IHdbKD3Y2pjuZShkMrp1kFQc6SApJbluRj7VBpQNeXeTm9gv2Ux5Qh4m%2F5QHT7OCWbzivBytFKfWYWBKeisv9O1vDzbx6S%2BV2dxu6jYQgpZxuvT1VYx07266%2B8z5c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8230a49ebca8d91e-HEL
alt-svc: h3=":443"; ma=86400
theteamsnow.com/api-as1f?email=rneill@dwklaw.com&data=background
200 OK 91 B URL GET HTTP/3 theteamsnow.com/api-as1f?email=rneill@dwklaw.com&data=background
IP
Requested by https://theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
Certificate IssuerGoogle Trust Services LLC
Subjecttheteamsnow.com
FingerprintE6:AD:BD:E4:9C:FC:BE:A6:C6:1E:CA:78:B1:4A:24:61:58:EF:20:E5
ValidityFri, 13 Oct 2023 15:32:28 GMT - Thu, 11 Jan 2024 15:32:27 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 3ec2476958f44791d9d4c9af6ab62ae4
5977e7032b13bcae4c6393d1eb5b5c05f4718741
2494459aa8a09e296085be0731c8c78eb8f32f12e71d8dc2270c0f71dff8fc8c
GET /api-as1f?email=rneill@dwklaw.com&data=background HTTP/1.1
Host: theteamsnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
Cookie: cf_clearance=mcwR8fKil7aaMXos9YJN7LIfRmEdfYs4y76l1061WJ8-1699476145-0-1-69b0ef05.c399f377.3eb1b0e5-160.0.0; PHPSESSID=57762f15befa01b738239e65e4985bac
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 Nov 2023 20:42:32 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E%2BblXaoBgOyBqJZQHv2f9uVOi0UFB%2BfMXo9SrdaHqSqqWt2r1%2BwlXFDMbqu0j0jHHAMR3xtw5DoVUsmumSOO0jvE%2BUE6w73bymR6Xaz4hvf7U%2FslYLkfpU0eoaDwIdrmWbs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8230a49949d5d91e-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400
theteamsnow.com/Mrneill@dwklaw.com
302 Found 5.5 kB URL User Request POST HTTP/3 theteamsnow.com/Mrneill@dwklaw.com
IP
Certificate IssuerGoogle Trust Services LLC
Subjecttheteamsnow.com
FingerprintE6:AD:BD:E4:9C:FC:BE:A6:C6:1E:CA:78:B1:4A:24:61:58:EF:20:E5
ValidityFri, 13 Oct 2023 15:32:28 GMT - Thu, 11 Jan 2024 15:32:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Microsoft Outlook
POST /Mrneill@dwklaw.com HTTP/1.1
Host: theteamsnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://theteamsnow.com/Mrneill@dwklaw.com?__cf_chl_tk=becuHnwHPZVYEIv7uMNXc0ZYn93YFdvHAbEtMQknCNY-1699476145-0-gaNycGzNDZA
Content-Type: application/x-www-form-urlencoded
Content-Length: 3873
Origin: https://theteamsnow.com
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Wed, 08 Nov 2023 20:42:30 GMT
content-type: text/html; charset=UTF-8
location: ./beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
set-cookie: cf_clearance=mcwR8fKil7aaMXos9YJN7LIfRmEdfYs4y76l1061WJ8-1699476145-0-1-69b0ef05.c399f377.3eb1b0e5-160.0.0; path=/; expires=Thu, 07-Nov-24 20:42:29 GMT; domain=.theteamsnow.com; HttpOnly; Secure; SameSite=None
PHPSESSID=57762f15befa01b738239e65e4985bac; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gdMEVHqAOK8Vkzbmo%2B1EU8Hfs6zN20H4K4QVAgjND%2BsLAGtVuDV7rsspb%2Fz36zc1LF6QDd3q9HnPIUVX%2FNxCWT%2FgH9QUsEdf1VKCFsVT2xCot9%2FQIJLHU7DmkTVPSwmN72M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8230a48cedd3d91e-HEL
alt-svc: h3=":443"; ma=86400
theteamsnow.com/jq/2eded16f19804e1db0c34d87517fd49d654bf2b6c6907
200 OK 86 kB URL GET HTTP/3 theteamsnow.com/jq/2eded16f19804e1db0c34d87517fd49d654bf2b6c6907
IP
Requested by https://theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
Certificate IssuerGoogle Trust Services LLC
Subjecttheteamsnow.com
FingerprintE6:AD:BD:E4:9C:FC:BE:A6:C6:1E:CA:78:B1:4A:24:61:58:EF:20:E5
ValidityFri, 13 Oct 2023 15:32:28 GMT - Thu, 11 Jan 2024 15:32:27 GMT
File type ASCII text, with very long lines (32065)
Hash 2f6b11a7e914718e0290410e85366fe9
69bb69e25ca7d5ef0935317584e6153f3fd9a88c
05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
GET /jq/2eded16f19804e1db0c34d87517fd49d654bf2b6c6907 HTTP/1.1
Host: theteamsnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
Cookie: cf_clearance=mcwR8fKil7aaMXos9YJN7LIfRmEdfYs4y76l1061WJ8-1699476145-0-1-69b0ef05.c399f377.3eb1b0e5-160.0.0; PHPSESSID=57762f15befa01b738239e65e4985bac
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 Nov 2023 20:42:31 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 15 Nov 2023 20:42:30 GMT
last-modified: Wed, 08 Nov 2023 04:56:48 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EzMVfRxzS3%2BPyd%2Bg4Da29iw5%2Fpqjs9dud6J97858J9oIU3bLw%2B0V%2Fkunn8CEoVPoD3zuEBb2mSkIh6kpcc7rhhUz7Lm1bXYQX9mRDzUZIktAoWxfh8xKoJRfZ%2B%2BJMZHj7pQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8230a4978dbcd91e-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400
unpkg.com/axios@1.6.1/dist/axios.min.js
200 OK 34 kB URL GET HTTP/2 unpkg.com/axios@1.6.1/dist/axios.min.js
IP
Requested by https://theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (33497)
Hash af64c1f968c73e459a73e1c0de40f298
01f89f3459810156ea4943ccfb21df6652a32467
858bd7db821a6ffaf2ac91014798c35b47794163b90aa0e0c3635fa9458fc272
GET /axios@1.6.1/dist/axios.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://theteamsnow.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 Nov 2023 20:42:31 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"8300-AfifNFmBAVbqSUPM+yHfZlKjJGc"
via: 1.1 fly.io
fly-request-id: 01HEQQYHAN5TDMSAJ4WQGKQV3K-arn
cf-cache-status: HIT
age: 19714
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8230a497ec2498fa-ARN
content-encoding: br
X-Firefox-Spdy: h2
theteamsnow.com/favicon.ico
0 B URL GET theteamsnow.com/favicon.ico
IP
Requested by https://theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
Certificate IssuerGoogle Trust Services LLC
Subjecttheteamsnow.com
FingerprintE6:AD:BD:E4:9C:FC:BE:A6:C6:1E:CA:78:B1:4A:24:61:58:EF:20:E5
ValidityFri, 13 Oct 2023 15:32:28 GMT - Thu, 11 Jan 2024 15:32:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: theteamsnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
Cookie: cf_clearance=mcwR8fKil7aaMXos9YJN7LIfRmEdfYs4y76l1061WJ8-1699476145-0-1-69b0ef05.c399f377.3eb1b0e5-160.0.0; PHPSESSID=57762f15befa01b738239e65e4985bac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
theteamsnow.com/e/2eded16f19804e1db0c34d87517fd49d654bf2b72dd2a
200 OK 513 B URL GET HTTP/3 theteamsnow.com/e/2eded16f19804e1db0c34d87517fd49d654bf2b72dd2a
IP
Requested by https://theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
Certificate IssuerGoogle Trust Services LLC
Subjecttheteamsnow.com
FingerprintE6:AD:BD:E4:9C:FC:BE:A6:C6:1E:CA:78:B1:4A:24:61:58:EF:20:E5
ValidityFri, 13 Oct 2023 15:32:28 GMT - Thu, 11 Jan 2024 15:32:27 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (529), with no line terminators
Hash adc405f5fd089662209870ca5d2106f7
3a8b776df84bf251afc6ddd802cc5bbeddfb0e36
e7bacc97751689afaae192e103fe9851664365c57c7d783560860ad456db7e49
GET /e/2eded16f19804e1db0c34d87517fd49d654bf2b72dd2a HTTP/1.1
Host: theteamsnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
Cookie: cf_clearance=mcwR8fKil7aaMXos9YJN7LIfRmEdfYs4y76l1061WJ8-1699476145-0-1-69b0ef05.c399f377.3eb1b0e5-160.0.0; PHPSESSID=57762f15befa01b738239e65e4985bac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 Nov 2023 20:42:31 GMT
content-type: image/svg+xml
cache-control: public, max-age=604800
expires: Wed, 15 Nov 2023 20:42:31 GMT
last-modified: Wed, 08 Nov 2023 04:56:48 GMT
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fwO8Gq1NXFE6HqqTEWFm2p92kQlbjnm%2FbpW4%2FeKMjLG%2BqL%2Ftj2aOiwrOMQyLJXMgGW4LOzEafy3MkbcBSPjsGRkWrMy6liVLGwjTzXnn%2BchoguuAgailD1L%2ByBb7uiKS5kQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8230a49939b6d91e-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400
theteamsnow.com/ASSETS/img/LIMG-654bf2b7a0283.css
200 OK 1.6 kB URL GET HTTP/3 theteamsnow.com/ASSETS/img/LIMG-654bf2b7a0283.css
IP
Requested by https://theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
Certificate IssuerGoogle Trust Services LLC
Subjecttheteamsnow.com
FingerprintE6:AD:BD:E4:9C:FC:BE:A6:C6:1E:CA:78:B1:4A:24:61:58:EF:20:E5
ValidityFri, 13 Oct 2023 15:32:28 GMT - Thu, 11 Jan 2024 15:32:27 GMT
File type PNG image data, 108 x 24, 8-bit colormap, non-interlaced\012- data
Hash ee236805d05e24861ce1b6b0e7d94b8d
d46828cf9df268ddaf62facf15590a447116aeb8
175986272200fb72da9a598d30016bbda9ddcaa9e6e3f07eb94bc74196d4b805
GET /ASSETS/img/LIMG-654bf2b7a0283.css HTTP/1.1
Host: theteamsnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://theteamsnow.com/beebb091955c06fa68b3eb8afc0bae51654bf2b6b0624PASbeebb091955c06fa68b3eb8afc0bae51654bf2b6b0625
Cookie: cf_clearance=mcwR8fKil7aaMXos9YJN7LIfRmEdfYs4y76l1061WJ8-1699476145-0-1-69b0ef05.c399f377.3eb1b0e5-160.0.0; PHPSESSID=57762f15befa01b738239e65e4985bac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 Nov 2023 20:42:31 GMT
content-type: image/png
content-length: 1637
cache-control: public, max-age=604800
expires: Wed, 15 Nov 2023 20:42:31 GMT
last-modified: Wed, 08 Nov 2023 04:56:48 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qwoehu8BOAIhS9NJgsU0safsntSnxdbDhymzrJ9MP3ElipoU4QJCpkaM%2FzMp0z15r20MBzLVE%2FxlJl5kJSAPodlcxeBjx78f%2BFPqwoFMtQBr9C8y84Up%2FH2xg67foBQWxO0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8230a49c2fb0d91e-HEL
alt-svc: h3=":443"; ma=86400
108.179.232.64
104.17.3.184
188.114.96.1