signin.awscloudstorage.com/
35.209.255.77301 Moved Permanently 162 B URL HTTP/1.1 signin.awscloudstorage.com/
IP 35.209.255.77:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: signin.awscloudstorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 03 Feb 2023 19:46:07 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://signin.awscloudstorage.com/
Host-Header: 8441280b0c35cbc1147f8ba998a563a7
X-HTTPS-Enforce: 1
X-Proxy-Cache-Info: DT:1
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13788
Expires: Fri, 03 Feb 2023 23:35:55 GMT
Date: Fri, 03 Feb 2023 19:46:07 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16298
Expires: Sat, 04 Feb 2023 00:17:45 GMT
Date: Fri, 03 Feb 2023 19:46:07 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 03 Feb 2023 19:36:11 GMT
content-type: application/json
age: 597
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11156
Expires: Fri, 03 Feb 2023 22:52:04 GMT
Date: Fri, 03 Feb 2023 19:46:08 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: YMFBHYBnUN/Z49PHil+rmfUaqTefEB7JhAVBYKiGW26qZ1kHy+0uC9LZ8KOda2GVgl0sGPtLza8=
x-amz-request-id: T5B2NQJ3NXGEEHT9
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 03 Feb 2023 19:23:40 GMT
age: 1348
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 19:46:08 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 03 Feb 2023 19:07:19 GMT
age: 2329
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10048
Expires: Fri, 03 Feb 2023 22:33:36 GMT
Date: Fri, 03 Feb 2023 19:46:08 GMT
Connection: keep-alive
push.services.mozilla.com/
52.26.56.94101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.26.56.94:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: GwMyZOdMN2mrhkWxlx4wbA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 5UwWXfx1ItrH7SOj/cORNabAJXQ=
signin.awscloudstorage.com/static/security_key.png
35.209.255.77200 OK 1.0 kB URL HTTP/2 signin.awscloudstorage.com/static/security_key.png
IP 35.209.255.77:0
File type PNG image data, 109 x 36, 8-bit/color RGBA, non-interlaced\012- data
Hash 76654828297da8028be9aa14b5925877
416daccb527bc159e14cd60cb34e588eb3674cb8
e727a7dab07096b847b698ac87f70983cc71dd9332f3b9299caa8df4cbd9818f
GET /static/security_key.png HTTP/1.1
Host: signin.awscloudstorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://signin.awscloudstorage.com/signin?redirect_uri=https%3A%2F%2Fus-west-2.amazoncloudstorage.com%2Fcloudwatch%2Fhome%3Fregion%3Dus-west-2%26state%3DhashArgs%2523s%253DAlarms%2526alarm%253DStorageLimitExceededAlarm%26isauthcode%3Dtrue&client_id=arn%3Aaws%3Aiam%3A%3A015428540659%3Auser%2Fcloudwatch&forceMobileApp=0&code_challenge=NJ4T6TCMMQYdo0iXM7SQuoLaaYS2T_v8bMb6_g8xLhk&code_challenge_method=SHA-256&r=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 19:46:09 GMT
content-type: image/png
content-length: 1038
last-modified: Thu, 02 Feb 2023 22:03:39 GMT
etag: "63dc333b-40e"
expires: Sat, 03 Feb 2024 19:46:09 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
signin.awscloudstorage.com/static/authenticator_app.png
35.209.255.77200 OK 2.4 kB URL HTTP/2 signin.awscloudstorage.com/static/authenticator_app.png
IP 35.209.255.77:0
File type PNG image data, 112 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash fb7fd82ccdcd335d75831b9d07ef552e
c904ecbb84f595b0dd70515f3874b3bdcd7e9cfc
07975cad1166f7c2927546af0ca6f3ff24932cbb9e892a3a6b55e32d3f2aec39
GET /static/authenticator_app.png HTTP/1.1
Host: signin.awscloudstorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://signin.awscloudstorage.com/signin?redirect_uri=https%3A%2F%2Fus-west-2.amazoncloudstorage.com%2Fcloudwatch%2Fhome%3Fregion%3Dus-west-2%26state%3DhashArgs%2523s%253DAlarms%2526alarm%253DStorageLimitExceededAlarm%26isauthcode%3Dtrue&client_id=arn%3Aaws%3Aiam%3A%3A015428540659%3Auser%2Fcloudwatch&forceMobileApp=0&code_challenge=NJ4T6TCMMQYdo0iXM7SQuoLaaYS2T_v8bMb6_g8xLhk&code_challenge_method=SHA-256&r=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 19:46:09 GMT
content-type: image/png
content-length: 2376
last-modified: Thu, 02 Feb 2023 22:03:39 GMT
etag: "63dc333b-948"
expires: Sat, 03 Feb 2024 19:46:09 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
signin.awscloudstorage.com/static/Site-Merch_GlobalCampaigns_MachineLearning_SageMaker-Fridays_Console-Sign-In%20(1).aba723bab2d09050e878e7d451356f878eda87be.png
35.209.255.77200 OK 31 kB URL HTTP/2 signin.awscloudstorage.com/static/Site-Merch_GlobalCampaigns_MachineLearning_SageMaker-Fridays_Console-Sign-In%20(1).aba723bab2d09050e878e7d451356f878eda87be.png
IP 35.209.255.77:0
File type PNG image data, 570 x 450, 8-bit/color RGB, non-interlaced\012- data
Hash 076c81c0cdd7914b2b3de6800581d55a
aba723bab2d09050e878e7d451356f878eda87be
024920b3c59c7696d6b6ce158d033ed78f0696bc4f4151caa73a2b06c2002552
GET /static/Site-Merch_GlobalCampaigns_MachineLearning_SageMaker-Fridays_Console-Sign-In%20(1).aba723bab2d09050e878e7d451356f878eda87be.png HTTP/1.1
Host: signin.awscloudstorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://signin.awscloudstorage.com/signin?redirect_uri=https%3A%2F%2Fus-west-2.amazoncloudstorage.com%2Fcloudwatch%2Fhome%3Fregion%3Dus-west-2%26state%3DhashArgs%2523s%253DAlarms%2526alarm%253DStorageLimitExceededAlarm%26isauthcode%3Dtrue&client_id=arn%3Aaws%3Aiam%3A%3A015428540659%3Auser%2Fcloudwatch&forceMobileApp=0&code_challenge=NJ4T6TCMMQYdo0iXM7SQuoLaaYS2T_v8bMb6_g8xLhk&code_challenge_method=SHA-256&r=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 19:46:09 GMT
content-type: image/png
content-length: 31275
last-modified: Thu, 02 Feb 2023 22:03:39 GMT
etag: "63dc333b-7a2b"
expires: Sat, 03 Feb 2024 19:46:09 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10804
Expires: Fri, 03 Feb 2023 22:46:14 GMT
Date: Fri, 03 Feb 2023 19:46:10 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10804
Expires: Fri, 03 Feb 2023 22:46:14 GMT
Date: Fri, 03 Feb 2023 19:46:10 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10804
Expires: Fri, 03 Feb 2023 22:46:14 GMT
Date: Fri, 03 Feb 2023 19:46:10 GMT
Connection: keep-alive
signin.awscloudstorage.com/signin?redirect_uri=https%3A%2F%2Fus-west-2.amazoncloudstorage.com%2Fcloudwatch%2Fhome%3Fregion%3Dus-west-2%26state%3DhashArgs%2523s%253DAlarms%2526alarm%253DStorageLimitExceededAlarm%26isauthcode%3Dtrue&client_id=arn%3Aaws%3Aiam%3A%3A015428540659%3Auser%2Fcloudwatch&forceMobileApp=0&code_challenge=NJ4T6TCMMQYdo0iXM7SQuoLaaYS2T_v8bMb6_g8xLhk&code_challenge_method=SHA-256&r=1
35.209.255.77200 OK 20 kB URL HTTP/2 signin.awscloudstorage.com/signin?redirect_uri=https%3A%2F%2Fus-west-2.amazoncloudstorage.com%2Fcloudwatch%2Fhome%3Fregion%3Dus-west-2%26state%3DhashArgs%2523s%253DAlarms%2526alarm%253DStorageLimitExceededAlarm%26isauthcode%3Dtrue&client_id=arn%3Aaws%3Aiam%3A%3A015428540659%3Auser%2Fcloudwatch&forceMobileApp=0&code_challenge=NJ4T6TCMMQYdo0iXM7SQuoLaaYS2T_v8bMb6_g8xLhk&code_challenge_method=SHA-256&r=1
IP 35.209.255.77:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (606)
Hash cc6434c43eced293454963353c683480
0de77f0e4d170994ad69465f59b90a9943b73c0d
e8a95aa15e86d773bc4ed0cb74b8ffd70504926f358d42d3c91bf95804ee1804
GET /signin?redirect_uri=https%3A%2F%2Fus-west-2.amazoncloudstorage.com%2Fcloudwatch%2Fhome%3Fregion%3Dus-west-2%26state%3DhashArgs%2523s%253DAlarms%2526alarm%253DStorageLimitExceededAlarm%26isauthcode%3Dtrue&client_id=arn%3Aaws%3Aiam%3A%3A015428540659%3Auser%2Fcloudwatch&forceMobileApp=0&code_challenge=NJ4T6TCMMQYdo0iXM7SQuoLaaYS2T_v8bMb6_g8xLhk&code_challenge_method=SHA-256&r=1 HTTP/1.1
Host: signin.awscloudstorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://signin.awscloudstorage.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 19:46:08 GMT
content-type: text/html
vary: Accept-Encoding
last-modified: Thu, 02 Feb 2023 22:03:39 GMT
etag: W/"16668-5f3bebcba0858"
x-httpd-modphp: 1
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w0Zm5V0TQxsQ7917U3fdhS_n7qKE143PuhI2JmNCDM_Pf0yPLyW6yA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 04:53:21 GMT
age: 53569
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9ab97f766ee1ed6ebbb2b3889a9157b4
f87f165404dec4d65531e6e25146cb77601f3616
f3d0f76f956371b1733a526f10a8253fc3396a459d7af59380d8e8db7dee8ec2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14071
x-amzn-requestid: 40cb363f-2c4d-4361-9fe1-10e4c8b2fe29
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fiTo4Ek2oAMFs6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d73305-6cb63d3c49f9f84e639467f6;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 03:01:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aTs6L8dJENFRdtBn7ggAbY5yaYRAzSY2B0bmElV4YNPrJg-KRDAyNA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:46:56 GMT
age: 79154
etag: "f87f165404dec4d65531e6e25146cb77601f3616"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e706db8a6107758a148463e916f2532d
4b0b8cb5ced3e3e67b0320a3bbaecd2176e21b81
673f18036a53f8ff297ef6a63fd094e7c41d90f3960f0e687a741cc7dd3f6172
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6791
x-amzn-requestid: 665115ea-728e-4a55-aaf8-b09db3fa67a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffl96FIzIAMFYGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d61d25-0abbd7262ca10b7a7d2bf9eb;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 07:15:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nPgaBSGyLJQnN0ofVRFniW2LqzgKVWchSKYSjYCmuPtpL9Ner81ARQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 19:18:09 GMT
age: 1681
etag: "4b0b8cb5ced3e3e67b0320a3bbaecd2176e21b81"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2a6aaf87a867f93dc9268a8b27973b97
f52ccbe6cbced1994acb13a00b05436553b6813e
3fbd7441712035f4d53c17eec93bc278e6c072043f3b5a721cac349fc0dabe77
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10166
x-amzn-requestid: 54fe0d12-360f-4d97-bcf3-b24747d956aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fY_4zHEcoAMF1iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d379d1-4ba89e44005f616a0ed3ed24;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 07:14:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: G0R-0w9HtLB5OXb-w-RyR9QCnrddkS29FqF_GeAQa1CRWkqaUJwQoA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:27:53 GMT
age: 76697
etag: "f52ccbe6cbced1994acb13a00b05436553b6813e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3490571dd2de0a747987b9a0e18cccc8
18e9f8f160d3515f1cb31fc7538ac762a6cab344
1c071d7f3b288b29254500f94f19c0db0633c6aa90812f2e92c4f64992f5221a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10796
x-amzn-requestid: 5c9b1a83-c99a-44b9-9a90-5edd7ef1e225
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi0XKG93oAMFtsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76760-01bf754d6c725c3275c02a1b;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 06:44:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vUJO-Pt9Hi1ndrCQQT1nNCGT7oDOYBpA8-EawHanESoZAsZv32dQdg==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 00:25:04 GMT
age: 69666
etag: "18e9f8f160d3515f1cb31fc7538ac762a6cab344"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
signin.awscloudstorage.com/static/u2f-mfa.css
35.209.255.77200 OK 0 B URL HTTP/2 signin.awscloudstorage.com/static/u2f-mfa.css
IP 35.209.255.77:0
GET /static/u2f-mfa.css HTTP/1.1
Host: signin.awscloudstorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://signin.awscloudstorage.com/signin?redirect_uri=https%3A%2F%2Fus-west-2.amazoncloudstorage.com%2Fcloudwatch%2Fhome%3Fregion%3Dus-west-2%26state%3DhashArgs%2523s%253DAlarms%2526alarm%253DStorageLimitExceededAlarm%26isauthcode%3Dtrue&client_id=arn%3Aaws%3Aiam%3A%3A015428540659%3Auser%2Fcloudwatch&forceMobileApp=0&code_challenge=NJ4T6TCMMQYdo0iXM7SQuoLaaYS2T_v8bMb6_g8xLhk&code_challenge_method=SHA-256&r=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 19:46:09 GMT
content-type: text/css
last-modified: Thu, 02 Feb 2023 22:03:39 GMT
vary: Accept-Encoding
etag: W/"63dc333b-559"
expires: Sat, 03 Feb 2024 19:46:09 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
signin.awscloudstorage.com/static/privatelink_unauth.svg
35.209.255.77200 OK 0 B URL HTTP/2 signin.awscloudstorage.com/static/privatelink_unauth.svg
IP 35.209.255.77:0
Analyzer Verdict Alert fortinet Phishing
GET /static/privatelink_unauth.svg HTTP/1.1
Host: signin.awscloudstorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://signin.awscloudstorage.com/signin?redirect_uri=https%3A%2F%2Fus-west-2.amazoncloudstorage.com%2Fcloudwatch%2Fhome%3Fregion%3Dus-west-2%26state%3DhashArgs%2523s%253DAlarms%2526alarm%253DStorageLimitExceededAlarm%26isauthcode%3Dtrue&client_id=arn%3Aaws%3Aiam%3A%3A015428540659%3Auser%2Fcloudwatch&forceMobileApp=0&code_challenge=NJ4T6TCMMQYdo0iXM7SQuoLaaYS2T_v8bMb6_g8xLhk&code_challenge_method=SHA-256&r=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 19:46:09 GMT
content-type: image/svg+xml
last-modified: Thu, 02 Feb 2023 22:03:39 GMT
vary: Accept-Encoding
etag: W/"63dc333b-b81"
expires: Sat, 03 Feb 2024 19:46:09 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
signin.awscloudstorage.com/static/metrics-helper-jquery.js
35.209.255.77200 OK 0 B URL HTTP/2 signin.awscloudstorage.com/static/metrics-helper-jquery.js
IP 35.209.255.77:0
Analyzer Verdict Alert fortinet Phishing
GET /static/metrics-helper-jquery.js HTTP/1.1
Host: signin.awscloudstorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://signin.awscloudstorage.com/signin?redirect_uri=https%3A%2F%2Fus-west-2.amazoncloudstorage.com%2Fcloudwatch%2Fhome%3Fregion%3Dus-west-2%26state%3DhashArgs%2523s%253DAlarms%2526alarm%253DStorageLimitExceededAlarm%26isauthcode%3Dtrue&client_id=arn%3Aaws%3Aiam%3A%3A015428540659%3Auser%2Fcloudwatch&forceMobileApp=0&code_challenge=NJ4T6TCMMQYdo0iXM7SQuoLaaYS2T_v8bMb6_g8xLhk&code_challenge_method=SHA-256&r=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 19:46:08 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 22:03:39 GMT
vary: Accept-Encoding
etag: W/"63dc333b-11f"
expires: Sat, 03 Feb 2024 19:46:08 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
signin.awscloudstorage.com/static/fwcim-cdn-prod.js
35.209.255.77200 OK 0 B URL HTTP/2 signin.awscloudstorage.com/static/fwcim-cdn-prod.js
IP 35.209.255.77:0
Analyzer Verdict Alert fortinet Phishing
GET /static/fwcim-cdn-prod.js HTTP/1.1
Host: signin.awscloudstorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://signin.awscloudstorage.com/signin?redirect_uri=https%3A%2F%2Fus-west-2.amazoncloudstorage.com%2Fcloudwatch%2Fhome%3Fregion%3Dus-west-2%26state%3DhashArgs%2523s%253DAlarms%2526alarm%253DStorageLimitExceededAlarm%26isauthcode%3Dtrue&client_id=arn%3Aaws%3Aiam%3A%3A015428540659%3Auser%2Fcloudwatch&forceMobileApp=0&code_challenge=NJ4T6TCMMQYdo0iXM7SQuoLaaYS2T_v8bMb6_g8xLhk&code_challenge_method=SHA-256&r=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 19:46:08 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 22:03:39 GMT
vary: Accept-Encoding
etag: W/"63dc333b-38ff2"
expires: Sat, 03 Feb 2024 19:46:08 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
signin.awscloudstorage.com/static/u2f-api.js
35.209.255.77200 OK 0 B URL HTTP/2 signin.awscloudstorage.com/static/u2f-api.js
IP 35.209.255.77:0
Analyzer Verdict Alert fortinet Phishing
GET /static/u2f-api.js HTTP/1.1
Host: signin.awscloudstorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://signin.awscloudstorage.com/signin?redirect_uri=https%3A%2F%2Fus-west-2.amazoncloudstorage.com%2Fcloudwatch%2Fhome%3Fregion%3Dus-west-2%26state%3DhashArgs%2523s%253DAlarms%2526alarm%253DStorageLimitExceededAlarm%26isauthcode%3Dtrue&client_id=arn%3Aaws%3Aiam%3A%3A015428540659%3Auser%2Fcloudwatch&forceMobileApp=0&code_challenge=NJ4T6TCMMQYdo0iXM7SQuoLaaYS2T_v8bMb6_g8xLhk&code_challenge_method=SHA-256&r=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 19:46:08 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 22:03:39 GMT
vary: Accept-Encoding
etag: W/"63dc333b-2451"
expires: Sat, 03 Feb 2024 19:46:08 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
signin.awscloudstorage.com/static/components.css
35.209.255.77200 OK 0 B URL HTTP/2 signin.awscloudstorage.com/static/components.css
IP 35.209.255.77:0
GET /static/components.css HTTP/1.1
Host: signin.awscloudstorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://signin.awscloudstorage.com/signin?redirect_uri=https%3A%2F%2Fus-west-2.amazoncloudstorage.com%2Fcloudwatch%2Fhome%3Fregion%3Dus-west-2%26state%3DhashArgs%2523s%253DAlarms%2526alarm%253DStorageLimitExceededAlarm%26isauthcode%3Dtrue&client_id=arn%3Aaws%3Aiam%3A%3A015428540659%3Auser%2Fcloudwatch&forceMobileApp=0&code_challenge=NJ4T6TCMMQYdo0iXM7SQuoLaaYS2T_v8bMb6_g8xLhk&code_challenge_method=SHA-256&r=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 19:46:08 GMT
content-type: text/css
last-modified: Thu, 02 Feb 2023 22:03:39 GMT
vary: Accept-Encoding
etag: W/"63dc333b-5fb9e"
expires: Sat, 03 Feb 2024 19:46:08 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
signin.awscloudstorage.com/static/utilities.css
35.209.255.77200 OK 0 B URL HTTP/2 signin.awscloudstorage.com/static/utilities.css
IP 35.209.255.77:0
GET /static/utilities.css HTTP/1.1
Host: signin.awscloudstorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://signin.awscloudstorage.com/signin?redirect_uri=https%3A%2F%2Fus-west-2.amazoncloudstorage.com%2Fcloudwatch%2Fhome%3Fregion%3Dus-west-2%26state%3DhashArgs%2523s%253DAlarms%2526alarm%253DStorageLimitExceededAlarm%26isauthcode%3Dtrue&client_id=arn%3Aaws%3Aiam%3A%3A015428540659%3Auser%2Fcloudwatch&forceMobileApp=0&code_challenge=NJ4T6TCMMQYdo0iXM7SQuoLaaYS2T_v8bMb6_g8xLhk&code_challenge_method=SHA-256&r=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 19:46:09 GMT
content-type: text/css
last-modified: Thu, 02 Feb 2023 22:03:39 GMT
vary: Accept-Encoding
etag: W/"63dc333b-ddc"
expires: Sat, 03 Feb 2024 19:46:09 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
signin.awscloudstorage.com/static/aws-signin.css
35.209.255.77200 OK 0 B URL HTTP/2 signin.awscloudstorage.com/static/aws-signin.css
IP 35.209.255.77:0
GET /static/aws-signin.css HTTP/1.1
Host: signin.awscloudstorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://signin.awscloudstorage.com/signin?redirect_uri=https%3A%2F%2Fus-west-2.amazoncloudstorage.com%2Fcloudwatch%2Fhome%3Fregion%3Dus-west-2%26state%3DhashArgs%2523s%253DAlarms%2526alarm%253DStorageLimitExceededAlarm%26isauthcode%3Dtrue&client_id=arn%3Aaws%3Aiam%3A%3A015428540659%3Auser%2Fcloudwatch&forceMobileApp=0&code_challenge=NJ4T6TCMMQYdo0iXM7SQuoLaaYS2T_v8bMb6_g8xLhk&code_challenge_method=SHA-256&r=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 19:46:09 GMT
content-type: text/css
last-modified: Thu, 02 Feb 2023 22:03:39 GMT
vary: Accept-Encoding
etag: W/"63dc333b-ac0b"
expires: Sat, 03 Feb 2024 19:46:09 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
signin.awscloudstorage.com/static/secondary_button.css
35.209.255.77200 OK 0 B URL HTTP/2 signin.awscloudstorage.com/static/secondary_button.css
IP 35.209.255.77:0
GET /static/secondary_button.css HTTP/1.1
Host: signin.awscloudstorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://signin.awscloudstorage.com/signin?redirect_uri=https%3A%2F%2Fus-west-2.amazoncloudstorage.com%2Fcloudwatch%2Fhome%3Fregion%3Dus-west-2%26state%3DhashArgs%2523s%253DAlarms%2526alarm%253DStorageLimitExceededAlarm%26isauthcode%3Dtrue&client_id=arn%3Aaws%3Aiam%3A%3A015428540659%3Auser%2Fcloudwatch&forceMobileApp=0&code_challenge=NJ4T6TCMMQYdo0iXM7SQuoLaaYS2T_v8bMb6_g8xLhk&code_challenge_method=SHA-256&r=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 19:46:09 GMT
content-type: text/css
last-modified: Thu, 02 Feb 2023 22:03:39 GMT
vary: Accept-Encoding
etag: W/"63dc333b-189"
expires: Sat, 03 Feb 2024 19:46:09 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
signin.awscloudstorage.com/static/awsc-panorama.js
35.209.255.77200 OK 0 B URL HTTP/2 signin.awscloudstorage.com/static/awsc-panorama.js
IP 35.209.255.77:0
Analyzer Verdict Alert fortinet Phishing
GET /static/awsc-panorama.js HTTP/1.1
Host: signin.awscloudstorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://signin.awscloudstorage.com/signin?redirect_uri=https%3A%2F%2Fus-west-2.amazoncloudstorage.com%2Fcloudwatch%2Fhome%3Fregion%3Dus-west-2%26state%3DhashArgs%2523s%253DAlarms%2526alarm%253DStorageLimitExceededAlarm%26isauthcode%3Dtrue&client_id=arn%3Aaws%3Aiam%3A%3A015428540659%3Auser%2Fcloudwatch&forceMobileApp=0&code_challenge=NJ4T6TCMMQYdo0iXM7SQuoLaaYS2T_v8bMb6_g8xLhk&code_challenge_method=SHA-256&r=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 19:46:08 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 22:03:39 GMT
vary: Accept-Encoding
etag: W/"63dc333b-2f38d"
expires: Sat, 03 Feb 2024 19:46:08 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
signin.awscloudstorage.com/static/request-parameters.js
35.209.255.77200 OK 0 B URL HTTP/2 signin.awscloudstorage.com/static/request-parameters.js
IP 35.209.255.77:0
Analyzer Verdict Alert fortinet Phishing
GET /static/request-parameters.js HTTP/1.1
Host: signin.awscloudstorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://signin.awscloudstorage.com/signin?redirect_uri=https%3A%2F%2Fus-west-2.amazoncloudstorage.com%2Fcloudwatch%2Fhome%3Fregion%3Dus-west-2%26state%3DhashArgs%2523s%253DAlarms%2526alarm%253DStorageLimitExceededAlarm%26isauthcode%3Dtrue&client_id=arn%3Aaws%3Aiam%3A%3A015428540659%3Auser%2Fcloudwatch&forceMobileApp=0&code_challenge=NJ4T6TCMMQYdo0iXM7SQuoLaaYS2T_v8bMb6_g8xLhk&code_challenge_method=SHA-256&r=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 19:46:08 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 22:03:39 GMT
vary: Accept-Encoding
etag: W/"63dc333b-107"
expires: Sat, 03 Feb 2024 19:46:08 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
signin.awscloudstorage.com/static/init-fwcim.js
35.209.255.77200 OK 0 B URL HTTP/2 signin.awscloudstorage.com/static/init-fwcim.js
IP 35.209.255.77:0
Analyzer Verdict Alert fortinet Phishing
GET /static/init-fwcim.js HTTP/1.1
Host: signin.awscloudstorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://signin.awscloudstorage.com/signin?redirect_uri=https%3A%2F%2Fus-west-2.amazoncloudstorage.com%2Fcloudwatch%2Fhome%3Fregion%3Dus-west-2%26state%3DhashArgs%2523s%253DAlarms%2526alarm%253DStorageLimitExceededAlarm%26isauthcode%3Dtrue&client_id=arn%3Aaws%3Aiam%3A%3A015428540659%3Auser%2Fcloudwatch&forceMobileApp=0&code_challenge=NJ4T6TCMMQYdo0iXM7SQuoLaaYS2T_v8bMb6_g8xLhk&code_challenge_method=SHA-256&r=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 19:46:08 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 22:03:39 GMT
vary: Accept-Encoding
etag: W/"63dc333b-48"
expires: Sat, 03 Feb 2024 19:46:08 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
signin.awscloudstorage.com/static/external_link.css
35.209.255.77200 OK 0 B URL HTTP/2 signin.awscloudstorage.com/static/external_link.css
IP 35.209.255.77:0
GET /static/external_link.css HTTP/1.1
Host: signin.awscloudstorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://signin.awscloudstorage.com/signin?redirect_uri=https%3A%2F%2Fus-west-2.amazoncloudstorage.com%2Fcloudwatch%2Fhome%3Fregion%3Dus-west-2%26state%3DhashArgs%2523s%253DAlarms%2526alarm%253DStorageLimitExceededAlarm%26isauthcode%3Dtrue&client_id=arn%3Aaws%3Aiam%3A%3A015428540659%3Auser%2Fcloudwatch&forceMobileApp=0&code_challenge=NJ4T6TCMMQYdo0iXM7SQuoLaaYS2T_v8bMb6_g8xLhk&code_challenge_method=SHA-256&r=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 19:46:09 GMT
content-type: text/css
last-modified: Thu, 02 Feb 2023 22:03:39 GMT
vary: Accept-Encoding
etag: W/"63dc333b-198"
expires: Sat, 03 Feb 2024 19:46:09 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
signin.awscloudstorage.com/
35.209.255.77200 OK 0 B URL HTTP/2 signin.awscloudstorage.com/
IP 35.209.255.77:0
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: signin.awscloudstorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 19:46:08 GMT
content-type: text/html
vary: Accept-Encoding
last-modified: Thu, 02 Feb 2023 22:28:54 GMT
etag: W/"1c3-5f3bf170ca26d"
x-httpd-modphp: 1
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
signin.awscloudstorage.com/static/constants.js
35.209.255.77200 OK 0 B URL HTTP/2 signin.awscloudstorage.com/static/constants.js
IP 35.209.255.77:0
Analyzer Verdict Alert fortinet Phishing
GET /static/constants.js HTTP/1.1
Host: signin.awscloudstorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://signin.awscloudstorage.com/signin?redirect_uri=https%3A%2F%2Fus-west-2.amazoncloudstorage.com%2Fcloudwatch%2Fhome%3Fregion%3Dus-west-2%26state%3DhashArgs%2523s%253DAlarms%2526alarm%253DStorageLimitExceededAlarm%26isauthcode%3Dtrue&client_id=arn%3Aaws%3Aiam%3A%3A015428540659%3Auser%2Fcloudwatch&forceMobileApp=0&code_challenge=NJ4T6TCMMQYdo0iXM7SQuoLaaYS2T_v8bMb6_g8xLhk&code_challenge_method=SHA-256&r=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 19:46:08 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 22:03:39 GMT
vary: Accept-Encoding
etag: W/"63dc333b-5ef"
expires: Sat, 03 Feb 2024 19:46:08 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
signin.awscloudstorage.com/static/AWSMarketingTargetServiceAnalyticsClientSignin.js
35.209.255.77200 OK 0 B URL HTTP/2 signin.awscloudstorage.com/static/AWSMarketingTargetServiceAnalyticsClientSignin.js
IP 35.209.255.77:0
Analyzer Verdict Alert fortinet Phishing
GET /static/AWSMarketingTargetServiceAnalyticsClientSignin.js HTTP/1.1
Host: signin.awscloudstorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://signin.awscloudstorage.com/signin?redirect_uri=https%3A%2F%2Fus-west-2.amazoncloudstorage.com%2Fcloudwatch%2Fhome%3Fregion%3Dus-west-2%26state%3DhashArgs%2523s%253DAlarms%2526alarm%253DStorageLimitExceededAlarm%26isauthcode%3Dtrue&client_id=arn%3Aaws%3Aiam%3A%3A015428540659%3Auser%2Fcloudwatch&forceMobileApp=0&code_challenge=NJ4T6TCMMQYdo0iXM7SQuoLaaYS2T_v8bMb6_g8xLhk&code_challenge_method=SHA-256&r=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 19:46:08 GMT
content-type: application/javascript
last-modified: Thu, 02 Feb 2023 22:03:39 GMT
vary: Accept-Encoding
etag: W/"63dc333b-11bba"
expires: Sat, 03 Feb 2024 19:46:08 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
signin.awscloudstorage.com/static/grid.css
35.209.255.77200 OK 0 B URL HTTP/2 signin.awscloudstorage.com/static/grid.css
IP 35.209.255.77:0
GET /static/grid.css HTTP/1.1
Host: signin.awscloudstorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://signin.awscloudstorage.com/signin?redirect_uri=https%3A%2F%2Fus-west-2.amazoncloudstorage.com%2Fcloudwatch%2Fhome%3Fregion%3Dus-west-2%26state%3DhashArgs%2523s%253DAlarms%2526alarm%253DStorageLimitExceededAlarm%26isauthcode%3Dtrue&client_id=arn%3Aaws%3Aiam%3A%3A015428540659%3Auser%2Fcloudwatch&forceMobileApp=0&code_challenge=NJ4T6TCMMQYdo0iXM7SQuoLaaYS2T_v8bMb6_g8xLhk&code_challenge_method=SHA-256&r=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 19:46:08 GMT
content-type: text/css
last-modified: Thu, 02 Feb 2023 22:03:39 GMT
vary: Accept-Encoding
etag: W/"63dc333b-4937"
expires: Sat, 03 Feb 2024 19:46:08 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
signin.awscloudstorage.com/favicon.ico
35.209.255.77404 Not Found 0 B URL HTTP/2 signin.awscloudstorage.com/favicon.ico
IP 35.209.255.77:0
GET /favicon.ico HTTP/1.1
Host: signin.awscloudstorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://signin.awscloudstorage.com/signin?redirect_uri=https%3A%2F%2Fus-west-2.amazoncloudstorage.com%2Fcloudwatch%2Fhome%3Fregion%3Dus-west-2%26state%3DhashArgs%2523s%253DAlarms%2526alarm%253DStorageLimitExceededAlarm%26isauthcode%3Dtrue&client_id=arn%3Aaws%3Aiam%3A%3A015428540659%3Auser%2Fcloudwatch&forceMobileApp=0&code_challenge=NJ4T6TCMMQYdo0iXM7SQuoLaaYS2T_v8bMb6_g8xLhk&code_challenge_method=SHA-256&r=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 03 Feb 2023 19:46:09 GMT
content-type: text/html
vary: Accept-Encoding
x-httpd-modphp: 1
host-header: 6b7412fb82ca5edfd0917e3957f05d89
x-proxy-cache: EXPIRED
x-proxy-cache-info: 0 NC:000000 UP:
content-encoding: br
X-Firefox-Spdy: h2