Overview

URL athensgoldandsilver.gr/mtb/M&TBank/login.php?country=3D{{countr=
IP95.154.242.111
ASNIomart Cloud Services Limited
Location United Kingdom
Report completed2022-09-27 01:33:49 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-27 2 athensgoldandsilver.gr/TSPD/0856addebbab2000ba949201dad9f67efc42df64f349dd0 (...) Phishing
2022-09-27 2 athensgoldandsilver.gr/ruxitagentjs_ICA2SVfhjqrux_10205201218101503.js Phishing
2022-09-27 2 athensgoldandsilver.gr/Assets/scripts/Login/Index.js Phishing
2022-09-27 2 athensgoldandsilver.gr/TSPD/0856addebbab2000ba949201dad9f67efc42df64f349dd0 (...) Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (12)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-09-26 04:35:11 UTC 23.36.77.32
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-26 04:26:56 UTC 143.204.55.49
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-26 04:28:07 UTC 34.117.237.239
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-26 22:11:41 UTC 93.184.220.29
mnemonic passive DNS athensgoldandsilver.gr (5) 0 2015-02-19 11:24:57 UTC 2022-09-26 19:10:45 UTC 95.154.242.111 Unknown ranking
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-28 17:26:30 UTC 2022-09-26 18:38:08 UTC 143.204.55.35
mnemonic passive DNS resources.mtb.com (8) 144011 2014-11-08 14:57:30 UTC 2022-09-26 04:21:13 UTC 24.75.29.77
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-26 05:45:55 UTC 44.242.41.15
mnemonic passive DNS asset.mtb.com (1) 246397 2017-02-13 04:24:51 UTC 2022-09-26 04:21:17 UTC 54.230.111.64
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-26 12:15:18 UTC 34.120.237.76
mnemonic passive DNS ocsp.entrust.net (7) 1208 2013-07-24 12:09:14 UTC 2022-09-26 04:27:18 UTC 104.110.10.32
mnemonic passive DNS nexus.ensighten.com (1) 2786 2017-01-29 18:53:16 UTC 2022-09-26 06:26:22 UTC 54.230.111.14


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 95.154.242.111

Date UQ / IDS / BL URL IP
2022-09-29 22:12:54 +0000
0 - 0 - 4 athensgoldandsilver.gr/mtb/M&TBank/login.php? (...) 95.154.242.111
2022-09-29 07:38:36 +0000
0 - 0 - 4 athensgoldandsilver.gr/mtb/M&TBank/login.php? (...) 95.154.242.111
2022-09-29 06:07:58 +0000
0 - 0 - 5 athensgoldandsilver.gr/mtb/M&TBank/login.php? (...) 95.154.242.111
2022-09-28 19:12:04 +0000
0 - 0 - 9 athensgoldandsilver.gr/mtb/M&TBank/login.php? (...) 95.154.242.111
2022-09-28 18:23:42 +0000
0 - 0 - 9 athensgoldandsilver.gr/mtb/M&TBank/login.php? (...) 95.154.242.111

Last 5 reports on ASN: Iomart Cloud Services Limited

Date UQ / IDS / BL URL IP
2022-12-03 14:13:03 +0000
0 - 0 - 1 dl.driverpack.io/17-online/DriverPack-17-Onli (...) 87.117.231.157
2022-12-03 09:38:27 +0000
0 - 0 - 10 digswellpreschool.co.uk/ 5.77.32.179
2022-12-01 05:19:10 +0000
0 - 0 - 1 cleoltd.com/ 217.194.210.198
2022-11-30 06:47:27 +0000
0 - 0 - 18 espcoachworks.com/ 62.233.121.45
2022-11-30 02:22:42 +0000
0 - 0 - 2 directdeliveriesni.co.uk/the-within-tale-in-c (...) 212.38.183.106

Last 5 reports on domain: athensgoldandsilver.gr

Date UQ / IDS / BL URL IP
2022-09-29 22:12:54 +0000
0 - 0 - 4 athensgoldandsilver.gr/mtb/M&TBank/login.php? (...) 95.154.242.111
2022-09-29 07:38:36 +0000
0 - 0 - 4 athensgoldandsilver.gr/mtb/M&TBank/login.php? (...) 95.154.242.111
2022-09-29 06:07:58 +0000
0 - 0 - 5 athensgoldandsilver.gr/mtb/M&TBank/login.php? (...) 95.154.242.111
2022-09-28 19:12:04 +0000
0 - 0 - 9 athensgoldandsilver.gr/mtb/M&TBank/login.php? (...) 95.154.242.111
2022-09-28 18:23:42 +0000
0 - 0 - 9 athensgoldandsilver.gr/mtb/M&TBank/login.php? (...) 95.154.242.111

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-12-03 21:56:54 +0000
0 - 0 - 1 763view.ml/M&/login/ses/session_index 45.133.200.3
2022-12-03 21:56:34 +0000
0 - 0 - 2 763view.ml/M&/ 45.133.200.3
2022-12-03 18:18:35 +0000
0 - 0 - 1 763view.ml/M&/login/ses/session_index 45.133.200.3
2022-12-03 18:18:19 +0000
0 - 0 - 2 763view.ml/M&/ 45.133.200.3
2022-12-03 05:07:02 +0000
0 - 0 - 1 idue.dvrlists.com/login/index.php 40.76.140.221


JavaScript

Executed Scripts (4)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (39)


Request Response
                                        
                                            GET /mtb/M&TBank/login.php?country=3D{{countr= HTTP/1.1 
Host: athensgoldandsilver.gr
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         95.154.242.111
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Tue, 27 Sep 2022 01:33:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (960), with CRLF line terminators
Size:   4772
Md5:    2513a6bc49bd19fcd6d6dd84359c70ac
Sha1:   386c8126147243ee4183ddac9dae7a1c087d0ac9
Sha256: 9a758cfe635f4ec160b47106b09e30de50ab93d88aabc791237a6e14842e6953
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-stale=0
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 27 Sep 2022 01:03:16 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Etzd9aNBZeIEoQ3c84C5wAWYatYNBeQXu3eoiVnKCGyUWlyfMRxu3w==
Age: 1822


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9256
Expires: Tue, 27 Sep 2022 04:07:54 GMT
Date: Tue, 27 Sep 2022 01:33:38 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.49
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 26 Sep 2022 04:35:16 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: FkEEM4AGW_EdUY6hInolVRTO28ubuuaTpn9Q7wmL8HyFDHWrP8xh6g==
age: 75503
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 27 Sep 2022 01:33:38 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.entrust.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.110.10.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
ETag: "4B9E0428E9881F0638540AB282DF7E9138567F9708C8E53C218F857F2FE5B855"
Last-Modified: Mon, 26 Sep 2022 23:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=2306
Expires: Tue, 27 Sep 2022 02:12:04 GMT
Date: Tue, 27 Sep 2022 01:33:38 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1588
Md5:    98a711494b388326e74f75f498c6c689
Sha1:   74be2cb7c25680d1badc9859c528e80b76106b8e
Sha256: 4b9e0428e9881f0638540ab282df7e9138567f9708c8e53c218f857f2fe5b855
                                        
                                            POST / HTTP/1.1 
Host: ocsp.entrust.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.110.10.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
ETag: "4B9E0428E9881F0638540AB282DF7E9138567F9708C8E53C218F857F2FE5B855"
Last-Modified: Mon, 26 Sep 2022 23:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=2239
Expires: Tue, 27 Sep 2022 02:10:57 GMT
Date: Tue, 27 Sep 2022 01:33:38 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1588
Md5:    98a711494b388326e74f75f498c6c689
Sha1:   74be2cb7c25680d1badc9859c528e80b76106b8e
Sha256: 4b9e0428e9881f0638540ab282df7e9138567f9708c8e53c218f857f2fe5b855
                                        
                                            POST / HTTP/1.1 
Host: ocsp.entrust.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.110.10.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
ETag: "4B9E0428E9881F0638540AB282DF7E9138567F9708C8E53C218F857F2FE5B855"
Last-Modified: Mon, 26 Sep 2022 23:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=2239
Expires: Tue, 27 Sep 2022 02:10:57 GMT
Date: Tue, 27 Sep 2022 01:33:38 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1588
Md5:    98a711494b388326e74f75f498c6c689
Sha1:   74be2cb7c25680d1badc9859c528e80b76106b8e
Sha256: 4b9e0428e9881f0638540ab282df7e9138567f9708c8e53c218f857f2fe5b855
                                        
                                            POST / HTTP/1.1 
Host: ocsp.entrust.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.110.10.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
ETag: "78D7BECE33E824F84B460606B2CB07091EDF49D620B78908D1E053426C91B0EF"
Last-Modified: Mon, 26 Sep 2022 20:00:00 UTC
Content-Length: 1585
Cache-Control: public, no-transform, must-revalidate, max-age=3548
Expires: Tue, 27 Sep 2022 02:32:47 GMT
Date: Tue, 27 Sep 2022 01:33:39 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1585
Md5:    4ef0cd4da22ffd7f25414aff75a13fde
Sha1:   a0f02ce54c8ec489b71d63374dd9ab8e60467298
Sha256: 78d7bece33e824f84b460606b2cb07091edf49d620b78908d1e053426c91b0ef
                                        
                                            POST / HTTP/1.1 
Host: ocsp.entrust.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.110.10.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
ETag: "78D7BECE33E824F84B460606B2CB07091EDF49D620B78908D1E053426C91B0EF"
Last-Modified: Mon, 26 Sep 2022 20:00:00 UTC
Content-Length: 1585
Cache-Control: public, no-transform, must-revalidate, max-age=3548
Expires: Tue, 27 Sep 2022 02:32:47 GMT
Date: Tue, 27 Sep 2022 01:33:39 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1585
Md5:    4ef0cd4da22ffd7f25414aff75a13fde
Sha1:   a0f02ce54c8ec489b71d63374dd9ab8e60467298
Sha256: 78d7bece33e824f84b460606b2cb07091edf49d620b78908d1e053426c91b0ef
                                        
                                            POST / HTTP/1.1 
Host: ocsp.entrust.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.110.10.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
ETag: "78D7BECE33E824F84B460606B2CB07091EDF49D620B78908D1E053426C91B0EF"
Last-Modified: Mon, 26 Sep 2022 20:00:00 UTC
Content-Length: 1585
Cache-Control: public, no-transform, must-revalidate, max-age=3591
Expires: Tue, 27 Sep 2022 02:33:30 GMT
Date: Tue, 27 Sep 2022 01:33:39 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1585
Md5:    4ef0cd4da22ffd7f25414aff75a13fde
Sha1:   a0f02ce54c8ec489b71d63374dd9ab8e60467298
Sha256: 78d7bece33e824f84b460606b2cb07091edf49d620b78908d1e053426c91b0ef
                                        
                                            GET /TSPD/0856addebbab2000ba949201dad9f67efc42df64f349dd0cbd91a24e357d5af05b11616b8df1b84b?type=9 HTTP/1.1 
Host: athensgoldandsilver.gr
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://athensgoldandsilver.gr/mtb/M&TBank/login.php?country=3D{{countr=

                                         
                                         95.154.242.111
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Tue, 27 Sep 2022 01:33:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size:   1440
Md5:    e3a1548f7454ed31dcff8e6d1b1855a1
Sha1:   2fdf521844afa0c7b4d34b4796ea7a656e450e58
Sha256: dbc5b2abb613d3f6d0e9b0728073533b876348d63f391009fdfe65695fe48f0d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /ruxitagentjs_ICA2SVfhjqrux_10205201218101503.js HTTP/1.1 
Host: athensgoldandsilver.gr
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://athensgoldandsilver.gr/mtb/M&TBank/login.php?country=3D{{countr=

                                         
                                         95.154.242.111
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Tue, 27 Sep 2022 01:33:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size:   1440
Md5:    e3a1548f7454ed31dcff8e6d1b1855a1
Sha1:   2fdf521844afa0c7b4d34b4796ea7a656e450e58
Sha256: dbc5b2abb613d3f6d0e9b0728073533b876348d63f391009fdfe65695fe48f0d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /Assets/scripts/Login/Index.js HTTP/1.1 
Host: athensgoldandsilver.gr
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://athensgoldandsilver.gr/mtb/M&TBank/login.php?country=3D{{countr=

                                         
                                         95.154.242.111
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Tue, 27 Sep 2022 01:33:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size:   1440
Md5:    e3a1548f7454ed31dcff8e6d1b1855a1
Sha1:   2fdf521844afa0c7b4d34b4796ea7a656e450e58
Sha256: dbc5b2abb613d3f6d0e9b0728073533b876348d63f391009fdfe65695fe48f0d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /TSPD/0856addebbab2000ba949201dad9f67efc42df64f349dd0cbd91a24e357d5af05b11616b8df1b84b?type=17 HTTP/1.1 
Host: athensgoldandsilver.gr
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://athensgoldandsilver.gr/mtb/M&TBank/login.php?country=3D{{countr=

                                         
                                         95.154.242.111
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Tue, 27 Sep 2022 01:33:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size:   1440
Md5:    e3a1548f7454ed31dcff8e6d1b1855a1
Sha1:   2fdf521844afa0c7b4d34b4796ea7a656e450e58
Sha256: dbc5b2abb613d3f6d0e9b0728073533b876348d63f391009fdfe65695fe48f0d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /mtbank/OE-Prod/Bootstrap.js HTTP/1.1 
Host: nexus.ensighten.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://athensgoldandsilver.gr/

                                         
                                         54.230.111.14
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Length: 15
Connection: keep-alive
Date: Tue, 27 Sep 2022 01:33:40 GMT
x-amz-replication-status: COMPLETED
Last-Modified: Fri, 22 Jul 2022 23:48:01 GMT
ETag: "ffe905f50d9b47e6353b68513c4d48ac"
x-amz-server-side-encryption: AES256
Cache-Control: no-cache, no-store
x-amz-version-id: aoJA4xuOoFemAhjg4lZAdeni.2iMq5FL
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Error from cloudfront
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: XxRtXz2aGrvLQYGPdGOp7IVkyt9ZUJ9USQm-MML_MkvMejYqbymRoA==


--- Additional Info ---
Magic:  ASCII text
Size:   15
Md5:    ffe905f50d9b47e6353b68513c4d48ac
Sha1:   d2c2ee4201cca3be67abf771ed1f1922fa94d083
Sha256: c0d8671e209f009f9c1ad8153222f942087ec193b7e87f856e60971bd5424633
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Tue, 27 Sep 2022 01:10:46 GMT
Expires: Tue, 27 Sep 2022 01:47:09 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: e7ExTWT1c_DP8jZxvWMn86AMPWcPQUzB9vW4zZAoIk0cXtCXFkq44g==
Age: 1373


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /r/simple-layout-responsive/css.mtb?v=08132020140516 HTTP/1.1 
Host: resources.mtb.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://athensgoldandsilver.gr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         24.75.29.77
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Expires: Wed, 27 Sep 2023 01:33:38 GMT
Last-Modified: Tue, 27 Sep 2022 01:33:37 GMT
ETag: "1664242418:dtagent10247220811100421ZWhG"
Vary: User-Agent
X-Srv: B-SC-01
Access-Control-Allow-Origin: *
X-FRAME-OPTIONS: ALLOW-FROM https://mtb.com/
Server-Timing: dtSInfo;desc="0", dtRpid;desc="-1556326526"
Date: Tue, 27 Sep 2022 01:33:38 GMT
Cteonnt-Length: 258715
Cache-Control: private
Content-Encoding: gzip
Set-Cookie: dtCookie=v_4_srv_11_sn_B319480C122F9D1BB8FD06EA1BCF9F12_perc_100000_ol_0_mul_1_app-3Aea7c4b59f27d43eb_1_rcs-3Acss_0; Path=/; Domain=.mtb.com TS019299a7=01fb46a926948c6a86977646a21f6f241134f084f46b666368ff8f9f9bc570ba9dff51b47f879a0c5bb1bc3171bd91beb34b829389; Path=/ TS0128739d=01fb46a926412db98deb460778b11cf644602b03ea6b666368ff8f9f9bc570ba9dff51b47fe8c076b985a721b5e3e80660db15094e54788d617fa125533fbe8acbfdb24ee4; path=/; domain=.mtb.com TSea15929a027=0856addebbab2000a6c86255bf4eafc5373201d64a39522c8d12c8eb9e60d95f722c10c233cffadc088318ac32113000459bf3597a060c3a264b4984773235084401a3f4cb85b7cd8de790f3f03cb0c8ef990fd96d85d370c0b27bca0fd65b42; Path=/
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size:   34708
Md5:    dea96768b0391a33311f34f0338c270e
Sha1:   d34315a2069eddf5ceb828e4421f8355bf712fa0
Sha256: 58f9206909a26235f1b4847e2f34fdb73b727103cd62490f23927648d08838f3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5479
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 01:33:39 GMT
Last-Modified: Tue, 27 Sep 2022 00:02:20 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /Assets/img/mtb-equalhousinglender.svg HTTP/1.1 
Host: resources.mtb.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://athensgoldandsilver.gr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         24.75.29.77
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Last-Modified: Wed, 21 Sep 2022 01:09:32 GMT
Accept-Ranges: bytes
ETag: "02e55ce56cdd81:0"
X-Srv: B-SC-01
Access-Control-Allow-Origin: *
X-FRAME-OPTIONS: ALLOW-FROM https://mtb.com/
Server-Timing: dtSInfo;desc="0", dtRpid;desc="1777273759"
Date: Tue, 27 Sep 2022 01:33:38 GMT
Content-Length: 230
Set-Cookie: TSea15929a027=0856addebbab200066b42f66f584fafc2348b0e86322e2af71bcc79ac0c3152d112e50dafd8416d10839800c0111300084690df313a8820c264b49847732350819ab8e2952dc017db0a31b75354ef48166202865a3986b9a4c902e5bd4f3c251; Path=/


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Size:   230
Md5:    916635d10512ae6a1840614a895dcd38
Sha1:   db175de4c42281bb4d239c57d1b95b8e75c529ec
Sha256: d58eb2802f72d0c6b1d944a1335e8fb914af44b51fe16097aad994c15b8cfbad
                                        
                                            GET /Assets/img/mtb-logo.svg HTTP/1.1 
Host: resources.mtb.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://athensgoldandsilver.gr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         24.75.29.77
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Last-Modified: Wed, 21 Sep 2022 01:09:32 GMT
Accept-Ranges: bytes
ETag: "02e55ce56cdd81:0"
X-Srv: B-SC-01
Access-Control-Allow-Origin: *
X-FRAME-OPTIONS: ALLOW-FROM https://mtb.com/
Server-Timing: dtSInfo;desc="0", dtRpid;desc="-2069031339"
Date: Tue, 27 Sep 2022 01:33:38 GMT
Content-Length: 2039
Set-Cookie: TSea15929a027=0856addebbab20008f9f6be2d732a6f70dd0fd72a263e4d818390d08a018c45d78f385dfe56b16140866b30be9113000534c750e951d77eb264b4984773235080664577be08c219424d8b0fd185909654ae2e9feb1ce0f8309f943f8cc66cc48; Path=/


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2039), with no line terminators
Size:   2039
Md5:    f2b901cf895852a0866fe4a16c7f1730
Sha1:   c4240af1ec798477b4e65a185ddbb1b038817da4
Sha256: 5f5b0d9f678fe446631a33a4cbbe891a01b0ed972143702e67ae6617367096ac
                                        
                                            GET /r/simple-layout-responsive/js.mtb?v=08132020140516 HTTP/1.1 
Host: resources.mtb.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://athensgoldandsilver.gr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         24.75.29.77
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
                                        
Expires: Wed, 27 Sep 2023 01:33:38 GMT
Last-Modified: Tue, 27 Sep 2022 01:33:37 GMT
ETag: "1664242418:dtagent10247220811100421ZWhG"
Vary: User-Agent
X-Srv: B-SC-01
Access-Control-Allow-Origin: *
X-FRAME-OPTIONS: ALLOW-FROM https://mtb.com/
Server-Timing: dtSInfo;desc="0", dtRpid;desc="-116551684"
Date: Tue, 27 Sep 2022 01:33:38 GMT
Cteonnt-Length: 322405
Cache-Control: private
Content-Encoding: gzip
Set-Cookie: dtCookie=v_4_srv_11_sn_B33F0AC2799D19A4AE98BCE03B1D673D_perc_100000_ol_0_mul_1_app-3Aea7c4b59f27d43eb_1_rcs-3Acss_0; Path=/; Domain=.mtb.com TS019299a7=01fb46a92609d0d5ff612fd84a617020b8527074cb674153888770c4948721bc8b75c99c28d8ca756b54ebef116bb148751faa7ff6; Path=/ TS0128739d=01fb46a92664249adcf4133f08792cf3c1e00e4d83674153888770c4948721bc8b75c99c28746401d9dbdcc607e5eea5baf601f9182cc24ac11d1625c16a0f4096fdae4be3; path=/; domain=.mtb.com TSea15929a027=0856addebbab2000aacf3dea0a42c38e24bd55bfc0e376f9bd362c6f656e705594f538d0c594daaf081be8fca81130008b55e610e7f71d1c264b498477323508dd155d2f564846b4cae6d2234f0857f0e9922c2fd0a8bd5e3b6841a70fd13bfa; Path=/
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   103533
Md5:    08b250830e37bab4db49f49dcfa521aa
Sha1:   196ea486f29834f4f74c9415c3952b725055c866
Sha256: 9b41dafbfb1b1f1d091bcb7593dbdae2d91dddb1c00bbb00eea511b7c9c92443
                                        
                                            GET /Assets/img/mtb-entrust.svg HTTP/1.1 
Host: resources.mtb.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://athensgoldandsilver.gr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         24.75.29.77
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Last-Modified: Wed, 21 Sep 2022 01:09:32 GMT
Accept-Ranges: bytes
ETag: "02e55ce56cdd81:0"
X-Srv: B-SC-01
Access-Control-Allow-Origin: *
X-FRAME-OPTIONS: ALLOW-FROM https://mtb.com/
Server-Timing: dtSInfo;desc="0", dtRpid;desc="1766197073"
Date: Tue, 27 Sep 2022 01:33:38 GMT
Content-Length: 1349
Set-Cookie: TSea15929a027=0856addebbab2000e1aa560d3d60bb43fbc308686ee11b514cdaf8943f69b49731db5bb8f5eb165908562db34b1130004490260935eeb771264b49847732350801ca291f72d9751a36d2e3ff28086f0009004173cb0319396d53af8e03e2b5ae; Path=/


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1349), with no line terminators
Size:   1349
Md5:    9a569ad20708d7453d89fe6c72e7fcdc
Sha1:   60b6a41620583484642f7c826faf8e3c879a6374
Sha256: b2ef3bd17aa6bc2daa7b1209f7848b30c64f3068e43162b09a216639ab430ce5
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: bwqwvnjQ0HvHQDsj0ned3g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         44.242.41.15
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 2rT/2RRwp2v7Ar5e/kR1Z6J0OK4=

                                        
                                            GET /assets/fonts/mandtpg-iconfont.woff HTTP/1.1 
Host: resources.mtb.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://athensgoldandsilver.gr
Connection: keep-alive
Referer: https://resources.mtb.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         24.75.29.77
HTTP/1.1 200 OK
Content-Type: APPLICATION/X-WOFF
                                        
Last-Modified: Wed, 21 Sep 2022 01:09:31 GMT
Accept-Ranges: bytes
ETag: "02e55ce56cdd81:0:dtagent10247220811100421ZWhG"
X-Srv: B-SC-01
Access-Control-Allow-Origin: *
X-FRAME-OPTIONS: ALLOW-FROM https://mtb.com/
Timing-Allow-Origin: *
Server-Timing: dtSInfo;desc="0", dtRpid;desc="666007336", dtTao;desc="1"
Date: Tue, 27 Sep 2022 01:33:38 GMT
Content-Length: 4776
Set-Cookie: dtCookie=v_4_srv_1_sn_098D500658B3D9DCC3764722C6AAF3E2_perc_100000_ol_0_mul_1_app-3Aea7c4b59f27d43eb_1_rcs-3Acss_0; Path=/; Domain=.mtb.com TS019299a7=01fb46a926545a05038aacc0f2ddebba24eaee9ff8853d88a4480145d6fbbc2b8e9a48d92aed99f919715d56c62866b79253a68f2a; Path=/ TS0128739d=01fb46a926cc5850fa03c10dc5aa97ee1478916ce9853d88a4480145d6fbbc2b8e9a48d92a585af8afea4689de114977090989a5b9cde0cac1113fd1c0907ef78203cb8cb2; path=/; domain=.mtb.com TSea15929a027=0856addebbab200033e859a032bb7602892c6c5d0ccd228eac742ce1a31b4dec278e9993261dd97708f3c25d061130007359f23ca7ea35b2264b4984773235088bf9cb319bc4e24dcab61d4a26c6c4547dd59bd08a8082f5853a64cd8f62743b; Path=/


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 4776, version 1.0\012- data
Size:   4776
Md5:    ac13691b89191d11d0e5577eb3cf3d53
Sha1:   0126fa82c0ab022e61b5de74f1fe3e204a905a7b
Sha256: 108d16421ae2ff7fc5157d507dc5b1bf7f62140ba58cf3c723b1f2b7e74c21df
                                        
                                            GET /assets/fonts/mandtbaltoweb-medium.woff HTTP/1.1 
Host: resources.mtb.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://athensgoldandsilver.gr
Connection: keep-alive
Referer: https://resources.mtb.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         24.75.29.77
HTTP/1.1 200 OK
Content-Type: APPLICATION/X-WOFF
                                        
Last-Modified: Wed, 21 Sep 2022 01:09:31 GMT
Accept-Ranges: bytes
ETag: "02e55ce56cdd81:0:dtagent10247220811100421ZWhG"
X-Srv: B-SC-01
Access-Control-Allow-Origin: *
X-FRAME-OPTIONS: ALLOW-FROM https://mtb.com/
Timing-Allow-Origin: *
Server-Timing: dtSInfo;desc="0", dtRpid;desc="-1366808151", dtTao;desc="1"
Date: Tue, 27 Sep 2022 01:33:38 GMT
Content-Length: 64318
Set-Cookie: dtCookie=v_4_srv_9_sn_FE0AF9871FA2F3CB3FCA6A13BCC950B7_perc_100000_ol_0_mul_1_app-3Aea7c4b59f27d43eb_1_rcs-3Acss_0; Path=/; Domain=.mtb.com TS019299a7=01fb46a92621b504ab85b7d30fb8d3649097643eacb99a30785b924d03d306a6dded7e97992e73e23550910e0c639aebc2d7b1ca0b; Path=/ TS0128739d=01fb46a926b21b98d748d009c33bcee6d3c6197cfdb99a30785b924d03d306a6dded7e9799c3b5268d72df5ff23ac2ec1cb430789d8a4c65e479ee25ab76f36f5298032e4a; path=/; domain=.mtb.com TSea15929a027=0856addebbab20000ae0a278c7cc214b1d2668174525187da5627e5a8137bfaa6b7f30d65b4dab5008869221db1130009c7e69e2a620276b264b498477323508c8bcd9ff4217bae3f3f3cd822c25e66bfbb5957a3ce83da59c51e3243cc7c2c5; Path=/


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 64318, version 1.0\012- data
Size:   64318
Md5:    b245a55f7e33e1cf4d2477570936ef84
Sha1:   12bf1c1eda6db246778f7c343acebbaad8fa36f4
Sha256: b391b55f950528937beee7687717a4aef81196817834f1c93b099713ff738fbc
                                        
                                            GET /assets/fonts/mandtbaltoweb-book.woff HTTP/1.1 
Host: resources.mtb.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://athensgoldandsilver.gr
Connection: keep-alive
Referer: https://resources.mtb.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         24.75.29.77
HTTP/1.1 200 OK
Content-Type: APPLICATION/X-WOFF
                                        
Last-Modified: Wed, 21 Sep 2022 01:09:31 GMT
Accept-Ranges: bytes
ETag: "02e55ce56cdd81:0:dtagent10247220811100421ZWhG"
X-Srv: B-SC-01
Access-Control-Allow-Origin: *
X-FRAME-OPTIONS: ALLOW-FROM https://mtb.com/
Timing-Allow-Origin: *
Server-Timing: dtSInfo;desc="0", dtRpid;desc="-509264115", dtTao;desc="1"
Date: Tue, 27 Sep 2022 01:33:38 GMT
Content-Length: 67671
Set-Cookie: dtCookie=v_4_srv_1_sn_039E935DB530558C0CDCA9130E7992FD_perc_100000_ol_0_mul_1_app-3Aea7c4b59f27d43eb_1_rcs-3Acss_0; Path=/; Domain=.mtb.com TS019299a7=01fb46a926088080a6d59f50d5f18d7b59105b8cb6d93d6a6b5cf79ec7044d5da1549112fffa297d930d417864dd20f017349f6b34; Path=/ TS0128739d=01fb46a926c6740952ae8aa6f17eb3575a2caacb76d93d6a6b5cf79ec7044d5da1549112ffbc61a11346e5d4ca9c8aca1ff121e0e04428d452a0d60f1eb2ffa80fa486af88; path=/; domain=.mtb.com TSea15929a027=0856addebbab2000947530714921c2007bcc02bbfb2961494ac38cf31f1e3df801ab1c67d5a55bbc087626261c113000a914ac4b27d649e3264b4984773235087195865bb11746850a47c2788c1059e0809be672ae1601bc8a002d4bc97ad5dc; Path=/


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 67671, version 1.0\012- data
Size:   67671
Md5:    6cd469e8613d82d4d07834a5ca7745f0
Sha1:   95347ba0a03d27e1aa91bc17c937d8aefe53e6ff
Sha256: 4029a5a081992259f4e529190b49dbba893931da4e843dd203449f1b9a4509d2
                                        
                                            POST / HTTP/1.1 
Host: ocsp.entrust.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.110.10.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
ETag: "AEDB712ED271A200E34CC891A82C3AF9C70D76A4C1F16E8EBC3D4BD3E3FA747A"
Last-Modified: Mon, 26 Sep 2022 15:00:00 UTC
Content-Length: 1585
Cache-Control: public, no-transform, must-revalidate, max-age=3541
Expires: Tue, 27 Sep 2022 02:32:41 GMT
Date: Tue, 27 Sep 2022 01:33:40 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1585
Md5:    f34f09e3e98315df9385a44731e7cdb0
Sha1:   fd18e9ad354933ceb1e5befb31bdb0987d92fe1d
Sha256: aedb712ed271a200e34cc891a82c3af9c70d76a4c1f16e8ebc3d4bd3e3fa747a
                                        
                                            GET /Documents/html/homepage/favicon.ico HTTP/1.1 
Host: asset.mtb.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://athensgoldandsilver.gr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.64
HTTP/2 200 OK
content-type: image/x-icon
                                        
content-length: 14862
accept-ranges: bytes
content-disposition: inline
content-encoding: gzip
last-modified: Wed, 04 May 2022 18:18:59 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-content-type-options: nosniff
x-dispatcher: dispatcher1useast1
x-frame-options: SAMEORIGIN
x-vhost: publish
date: Tue, 27 Sep 2022 01:33:31 GMT
cache-control: max-age=3600, no-cache="set-cookie"
etag: "3dce-5de33a8b9cac0-gzip"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dhK77_qM3qcWJjrWBnzIQJfHDSQUwLJ8XNu5WDBM90RC9yimrnuvgQ==
age: 2988
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 300 x 300, 8-bit/color RGB, non-interlaced\012- data
Size:   14862
Md5:    e82f458a5c1c5353a97401eccc925613
Sha1:   949d6c8d06ca14b52f496c20f63fae269b6708c2
Sha256: cd320f6e4a5ccfb2d08a5aca1d42dc606530d63e3d779038c41865c85568cbf3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2927
Expires: Tue, 27 Sep 2022 02:22:27 GMT
Date: Tue, 27 Sep 2022 01:33:40 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2927
Expires: Tue, 27 Sep 2022 02:22:27 GMT
Date: Tue, 27 Sep 2022 01:33:40 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2927
Expires: Tue, 27 Sep 2022 02:22:27 GMT
Date: Tue, 27 Sep 2022 01:33:40 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2927
Expires: Tue, 27 Sep 2022 02:22:27 GMT
Date: Tue, 27 Sep 2022 01:33:40 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06b0646c-a8d3-4b51-ba84-a3c3dff2883c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7128
x-amzn-requestid: 5806782b-498e-427b-be73-a94695e3cacf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlPfFn4IAMFwMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bfc-07a420d631e463286c1dafa0;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:39:08 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: dVs6mb-XGvvd4DXu8yFwO11iheR3QU3O3jFpxjcHZnWCc6jlXpx0Rg==
via: 1.1 6c90b631453c435bd0022caa657b67e8.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:51:54 GMT
age: 13306
etag: "4dbd2da7f7c45a97e3f6f6544ed428e892227cc3"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7128
Md5:    4197a8a505b360b0c43142faf8cb7f48
Sha1:   4dbd2da7f7c45a97e3f6f6544ed428e892227cc3
Sha256: 434039a91ec37c8ff827c78f7613aa4f6416ded182b01140048a52654a2de4ce
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fda34e4-86f9-4fb4-94af-575d6201fccb.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5383
x-amzn-requestid: 9c49e638-4bc7-4283-b0fc-f488fd92bd2c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7zT3HZ4oAMFVew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e327e-669996c326605d130e3099ac;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 22:26:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6O0O2Z791hRcK9j718v8_m4EGIJ62RFJqzG4AgvbD1-yqC6pJylRWg==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 23:27:03 GMT
age: 7597
etag: "481ec2135ca0a96484c36cced30776c871aedf8f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5383
Md5:    e6c9691e104001fe54d3c6273b7b8596
Sha1:   481ec2135ca0a96484c36cced30776c871aedf8f
Sha256: f9e5e087d8b6e9b357c9f93b00c5919d89d90ac9b48d2dcd1ac72bf775a5cf49
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F14ab4d12-a7de-4708-a657-df4600198640.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8255
x-amzn-requestid: 3bf29c4a-406a-4645-ad18-44cd6f05d457
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4VnFEV-IAMFQMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ccfc6-3eaa337d1e1c1b6d5e951419;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:12:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qkOlqM6tJ90H9572YLE0J-s79edBSceM5hLbJtyyuH86xdW8juoktA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 13:28:31 GMT
age: 43509
etag: "04a0665f771562c3e56ac3542abe5bd3c4c1a6b5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8255
Md5:    fa70ece15044b7318cb11ae5e37a64e7
Sha1:   04a0665f771562c3e56ac3542abe5bd3c4c1a6b5
Sha256: 8c974283b2ba0058114404af3e4818daa8cc56f270cb8a46f5f2f54de9d2f0e1
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2517fd65-65c6-43b1-93a6-b1205ba3f0f8.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7455
x-amzn-requestid: 0887cd56-f324-46cf-a086-709e1c66f354
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGBTdHmhoAMFvIw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633248e2-42391706084f335228fe3994;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 00:50:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: vx-yM_jeJvOaa1UizK5OoDJFkvKnajg2ezLF2l2qnN_OhdTE6I4taQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:05:55 GMT
etag: "1a26007f761e439db575fb80fb403031260aecf4"
age: 1665
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7455
Md5:    5274e770cb5a704916c8965659709f4a
Sha1:   1a26007f761e439db575fb80fb403031260aecf4
Sha256: e36e8be75c92feb9b416a46c5918356d8f9694894a799b7c10de21034d33d5ef
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3823d156-2245-40a3-a9a3-7cb4a5c4a14d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7716
x-amzn-requestid: 1cf0b1c7-4611-40bf-b72a-412ebd03ef79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y2KguFL7IAMFzKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632bf137-2b7c15d3071e0266586fd17d;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 05:23:03 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5XZZKUgjmv2njI3xAPo57u0fBKEGqPmMUcWxHYzoSAaVjIIA2Oi0Aw==
via: 1.1 d042f60a962591f741406f28a8170c5a.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 22:03:16 GMT
age: 12624
etag: "2b53c4f836970501a682dae07235215c487d35cc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7716
Md5:    8ef8d9284ebd57a7cf76ceb762291356
Sha1:   2b53c4f836970501a682dae07235215c487d35cc
Sha256: 3529ab97ab2214ee9c67ee234beac96cd40f0bd6092b92b71c60956ed5710b41
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9163
x-amzn-requestid: 8ccd9b1f-bef9-4591-be32-e6dd98f4ee78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlKpEZrIAMFS1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bdd-4a40b9c8281b64c725fec0f1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:38:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Lf6qqokEw32egp3ofmJGtUTAt3RD2f9rVq5gskbhrk_VFGweeo0oCQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:49:18 GMT
age: 13462
etag: "84f5a4c8b38acde814bc790e5b514347718d5bb9"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9163
Md5:    deb8d1e3b6d7fbc8c8ba478269621676
Sha1:   84f5a4c8b38acde814bc790e5b514347718d5bb9
Sha256: ed14fa766f0708b4166e83b61f160db5671af430917b7c67184bf18d9208742b