Report - direct-credit-suisse-e1f47.web.app/

Report Overview

Submitted URL
direct-credit-suisse-e1f47.web.app/
IP
199.36.158.100
ASN
#54113 FASTLY
Submitted
2022-12-02 05:56:19
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
12

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	337 B	1.4 kB	34.102.187.140
code.jquery.com	634	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	389 B	31 kB	69.16.175.10
cpnlify-default-rtdb.firebaseio.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	590 B	252 B	34.120.160.131
ipinfo.io	8136	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	437 B	12 kB	34.117.59.81
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.1 kB	93.184.220.29
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	368 B	1.9 kB	104.18.20.226
ocsp.quovadisglobal.com	4610	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.8 kB	17 kB	152.195.132.213
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	330 kB	142.250.74.35
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
ajax.aspnetcdn.com	693	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	404 B	31 kB	152.199.19.160
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	31 kB	34.120.237.76
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	23.36.77.32
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.2 kB	10 kB	142.250.74.131
cdn.jsdelivr.net	439	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	409 B	1.4 kB	151.101.1.229
direct.credit-suisse.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.1 kB	18 kB	198.240.216.40
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.70.239.215
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	398 B	38 kB	142.250.74.72
firebaseinstallations.googleapis.com	529	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	1.8 kB	142.250.74.170
direct-credit-suisse-e1f47.web.app	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	830 B	2.0 kB	199.36.158.100
unpkg.com	11693	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	794 B	1.1 kB	104.16.125.175
region1.google-analytics.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	581 B	216.239.34.36

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2022-12-01	medium	direct-credit-suisse-e1f47.web.app/	Credit Suisse
2022-12-01	medium	direct-credit-suisse-e1f47.web.app/	Credit Suisse

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-02	medium	direct-credit-suisse-e1f47.web.app/	Phishing
2022-12-02	medium	direct-credit-suisse-e1f47.web.app/	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-12-02	medium	direct-credit-suisse-e1f47.web.app	Sinkholed
2022-12-02	medium	direct-credit-suisse-e1f47.web.app	Sinkholed

JavaScript (30)

	URL	Size	First Seen	Last Seen
	direct-credit-suisse-e1f47.web.app/assets/dnmb_interface_browser.js.download	7.6 kB	2023-03-07	2023-03-26
Pretty URL direct-credit-suisse-e1f47.web.app/assets/dnmb_interface_browser.js.download IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:04:05 Last Seen2023-03-26 14:36:00 Times Seen3 Hash 3e71a4ed961e793bcf5f530d064a0ce2 f19ed7d741693ffc231e0a24b1fa8937197fc3d4 84bc79af81af92093d4de5fc1067b82c5699901c67ed945e3943eac0e0068062 Loading...

	cdn.jsdelivr.net/npm/uuid@latest/dist/umd/uuidv4.min.js	1.4 kB	2023-03-07	2024-02-04
Pretty URL cdn.jsdelivr.net/npm/uuid@latest/dist/umd/uuidv4.min.js IP 151.101.1.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:43:32 Last Seen2024-02-04 21:22:22 Times Seen202 Hash 446d2277e6a146a9fbca81cd4ce3f3b8 59d9ff543ea6044e84be895d760541ea0e04cf98 4bbb806e743e21bc9f97b62fc0564e0889b7f31ee9d48c3f2b85d4e00fe629cc Loading...

	direct-credit-suisse-e1f47.web.app/assets/ses.js.download	7.4 kB	2023-03-08	2023-03-14
Pretty URL direct-credit-suisse-e1f47.web.app/assets/ses.js.download IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:14 Last Seen2023-03-14 12:59:46 Times Seen1 Hash d44c224b44ea8718001875c5c123893c 87f3f80f9e985a1018cbcab8923266bdb753dcef b2858841873a802613837b4a0711cc4d3ac910a7cfd053f5145fc744caf56e84 Loading...

	direct-credit-suisse-e1f47.web.app/assets/popper.js.download	21 kB	2023-03-07	2024-04-05
Pretty URL direct-credit-suisse-e1f47.web.app/assets/popper.js.download IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:04:05 Last Seen2024-04-05 14:10:40 Times Seen13 Hash 2514ff0dbf342d8c605b41d0f68cc60d c8d108a28131bc9dac58e26719f1b833b0a9433d 999832c54857ca93b05ad3e5116a49fc77b2b50be987cdea23558d4cd1e897d2 Loading...

	ajax.aspnetcdn.com/ajax/jQuery/jquery-3.3.1.min.js	87 kB	2023-03-07	2024-04-19
Pretty URL ajax.aspnetcdn.com/ajax/jQuery/jquery-3.3.1.min.js IP 152.199.19.160 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 01:24:36 Times Seen105191 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	direct-credit-suisse-e1f47.web.app/login.html?session=1QshlMK5g5dL9440b8DbCyf5ncQezryyoRqfOWGz0OqAxbdL5EBkBw0dx8dvOClHuTay0ZRHU53nHfV8s51eJBTzrlvKHQJsQQ&auth=13b87d4c-8b96-43dc-90cc-67a9fb032725	4.6 kB	2023-03-08	2023-03-11
Pretty URL direct-credit-suisse-e1f47.web.app/login.html?session=1QshlMK5g5dL9440b8DbCyf5ncQezryyoRqfOWGz0OqAxbdL5EBkBw0dx8dvOClHuTay0ZRHU53nHfV8s51eJBTzrlvKHQJsQQ&auth=13b87d4c-8b96-43dc-90cc-67a9fb032725 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:14 Last Seen2023-03-11 23:42:56 Times Seen1 Hash b68e6140e49c4cd8d7ee1e4eca6e9c2c 0af69100560fe2608f70b8718dccb43d8be8086e 4afce25492ebbeea9e6551ba430b606b395540e9406a376a31a4f717271ef576 Loading...

	direct-credit-suisse-e1f47.web.app/assets/framework_pce.js.download	9.8 kB	2023-03-07	2023-03-26
Pretty URL direct-credit-suisse-e1f47.web.app/assets/framework_pce.js.download IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:04:05 Last Seen2023-03-26 14:35:59 Times Seen3 Hash 1aeaa6a7fe13f55e9d3eb9952f9668b8 3cc8d67cfbba083a460a4bda1d55f4269245f905 d1e7886c634d3dba099ece9a8de7728ef32d50487bbf06c0861b1437dca9bdce Loading...

	direct-credit-suisse-e1f47.web.app/login.html?session=1QshlMK5g5dL9440b8DbCyf5ncQezryyoRqfOWGz0OqAxbdL5EBkBw0dx8dvOClHuTay0ZRHU53nHfV8s51eJBTzrlvKHQJsQQ&auth=13b87d4c-8b96-43dc-90cc-67a9fb032725	315 B	2023-03-08	2023-03-14
Pretty URL direct-credit-suisse-e1f47.web.app/login.html?session=1QshlMK5g5dL9440b8DbCyf5ncQezryyoRqfOWGz0OqAxbdL5EBkBw0dx8dvOClHuTay0ZRHU53nHfV8s51eJBTzrlvKHQJsQQ&auth=13b87d4c-8b96-43dc-90cc-67a9fb032725 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:14 Last Seen2023-03-14 12:59:45 Times Seen1 Hash 0520d9f48fb2296852a7d32c509b537f d3fcf72e5942540e0e6494c83f320ee2af51153e 71a4adeb85c0ff9957a9a5e2640fc3f5dcd949cf80950ed385ada1130725e5f4 Loading...

	direct-credit-suisse-e1f47.web.app/assets/saved_resource.html	3.9 kB	2023-03-07	2024-01-08
Pretty URL direct-credit-suisse-e1f47.web.app/assets/saved_resource.html IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:58:24 Last Seen2024-01-08 01:34:59 Times Seen4 Hash d7df2c0b3679043af1d5a6a5c9bde7ff 5f7066f66592d764d77db4244968bd87ecb66b9e 035aa2f60a0ce9c66d0258a1d83eee36199aad8553d51523221347db3f3d2089 Loading...

	direct-credit-suisse-e1f47.web.app/login.html?session=1QshlMK5g5dL9440b8DbCyf5ncQezryyoRqfOWGz0OqAxbdL5EBkBw0dx8dvOClHuTay0ZRHU53nHfV8s51eJBTzrlvKHQJsQQ&auth=13b87d4c-8b96-43dc-90cc-67a9fb032725	1.5 kB	2023-03-08	2023-03-14
Pretty URL direct-credit-suisse-e1f47.web.app/login.html?session=1QshlMK5g5dL9440b8DbCyf5ncQezryyoRqfOWGz0OqAxbdL5EBkBw0dx8dvOClHuTay0ZRHU53nHfV8s51eJBTzrlvKHQJsQQ&auth=13b87d4c-8b96-43dc-90cc-67a9fb032725 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:14 Last Seen2023-03-14 12:59:45 Times Seen1 Hash 064ede2bd57e690f54a879ec7830eea1 93a1dfc708163a11c999602f94186279213174ed e164058ad12d96ae3464af2f5a2dd2fa517f7eee656478de52e2c984f726ec3d Loading...

	direct-credit-suisse-e1f47.web.app/login.html?session=1QshlMK5g5dL9440b8DbCyf5ncQezryyoRqfOWGz0OqAxbdL5EBkBw0dx8dvOClHuTay0ZRHU53nHfV8s51eJBTzrlvKHQJsQQ&auth=13b87d4c-8b96-43dc-90cc-67a9fb032725	3.3 kB	2023-03-08	2023-03-14
Pretty URL direct-credit-suisse-e1f47.web.app/login.html?session=1QshlMK5g5dL9440b8DbCyf5ncQezryyoRqfOWGz0OqAxbdL5EBkBw0dx8dvOClHuTay0ZRHU53nHfV8s51eJBTzrlvKHQJsQQ&auth=13b87d4c-8b96-43dc-90cc-67a9fb032725 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:14 Last Seen2023-03-14 12:59:45 Times Seen1 Hash 19a8e70c66dd3119961ee887fdd05304 f3e7653ee97f38c6736e53db428cbf1ddd271eb2 22ec5f55afc001db9decd978bfa46a8bf139b3cbae56edc472403535a1b187f5 Loading...

	www.gstatic.com/firebasejs/7.3.0/firebase-analytics.js	22 kB	2023-03-07	2023-09-01
Pretty URL www.gstatic.com/firebasejs/7.3.0/firebase-analytics.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:43:32 Last Seen2023-09-01 04:25:55 Times Seen95 Hash 75d95ed7c376b1b07d6787ee09958026 d336bb20db9ce683a01fa5ee0d78a0c63b573166 6685cfe54ddef3255c33d0198352369294fb10139e820a3940080d78906bf7ed Loading...

	direct-credit-suisse-e1f47.web.app/login.html?session=1QshlMK5g5dL9440b8DbCyf5ncQezryyoRqfOWGz0OqAxbdL5EBkBw0dx8dvOClHuTay0ZRHU53nHfV8s51eJBTzrlvKHQJsQQ&auth=13b87d4c-8b96-43dc-90cc-67a9fb032725	109 B	2023-03-08	2023-03-14
Pretty URL direct-credit-suisse-e1f47.web.app/login.html?session=1QshlMK5g5dL9440b8DbCyf5ncQezryyoRqfOWGz0OqAxbdL5EBkBw0dx8dvOClHuTay0ZRHU53nHfV8s51eJBTzrlvKHQJsQQ&auth=13b87d4c-8b96-43dc-90cc-67a9fb032725 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:14 Last Seen2023-03-14 12:59:45 Times Seen1 Hash e3115e7ef57345efd9018137435a51c6 12854a7445cfc38b712c884cce0abc403c85144f 3532d5c26d0686c84bcd95dcf523909f3b3c2c977b61d5c5ecb7185fd5080526 Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 02:00:26 Times Seen36950659 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.gstatic.com/firebasejs/7.3.0/firebase-app.js	12 kB	2023-03-07	2024-01-06
Pretty URL www.gstatic.com/firebasejs/7.3.0/firebase-app.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:43:32 Last Seen2024-01-06 09:09:17 Times Seen153 Hash ae6f233549d09ca82802df93e5477e72 3bba8439112b8368f01030ca1612314d849063bc 98df1d69429a11de8ce7d87e8436a04b0dedc3e5ede509664e10734ffc50854e Loading...

	unpkg.com/axios/dist/axios.min.js	30 kB	2023-03-08	2023-10-31
Pretty URL unpkg.com/axios/dist/axios.min.js IP 104.16.125.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:59 Last Seen2023-10-31 09:32:50 Times Seen5 Hash a73e018d5428a9ff3ea9794da00964e9 59ceac748ce58f546ca2fa0c44a41a87c5191610 c493537a12290bafdb938d453332243c08dea3c718be71a7c5bbff62000cd688 Loading...

	www.googletagmanager.com/gtag/js?l=dataLayer	95 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?l=dataLayer IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:31:28 Last Seen2023-03-08 14:31:28 Times Seen1 Hash 1ad19e976e42543c2eef38549ef428db 72992845c29a9ed4c17830501c7f73d6859229d8 d7271b2aa70899a5e66a08fa4ef54d6c9776a9d39a73edf14ce67954578f6b19 Loading...

	direct-credit-suisse-e1f47.web.app/	577 B	2023-03-07	2023-03-26
Pretty URL direct-credit-suisse-e1f47.web.app/ IP 199.36.158.100 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:43:32 Last Seen2023-03-26 04:14:39 Times Seen3 Hash 3cfd60046ceae8610f0ae33bf3f6a6c4 6502dcb69a1598394d7ce7e4faf142569d70777f 6a7792ac74618f7dc0e348ac5120efa8734303065e04070beeb488223c60c955 Loading...

	direct-credit-suisse-e1f47.web.app/assets/FrdGetData.js.download	106 kB	2023-03-07	2023-03-14
Pretty URL direct-credit-suisse-e1f47.web.app/assets/FrdGetData.js.download IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:04:05 Last Seen2023-03-14 12:59:45 Times Seen1 Hash 2e0b48057181baf983a7d219342c8976 b0101a3ad9e91b22102c7b119b118e9c4e67e8af 83addaada2405ffce9338d178f4c8962406fda637b618a82d390bcb05f41f6b1 Loading...

	direct-credit-suisse-e1f47.web.app/login.html?session=1QshlMK5g5dL9440b8DbCyf5ncQezryyoRqfOWGz0OqAxbdL5EBkBw0dx8dvOClHuTay0ZRHU53nHfV8s51eJBTzrlvKHQJsQQ&auth=13b87d4c-8b96-43dc-90cc-67a9fb032725	421 B	2023-03-08	2023-03-14
Pretty URL direct-credit-suisse-e1f47.web.app/login.html?session=1QshlMK5g5dL9440b8DbCyf5ncQezryyoRqfOWGz0OqAxbdL5EBkBw0dx8dvOClHuTay0ZRHU53nHfV8s51eJBTzrlvKHQJsQQ&auth=13b87d4c-8b96-43dc-90cc-67a9fb032725 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:14 Last Seen2023-03-14 12:59:45 Times Seen1 Hash 5568ab56072fa1db5f78c417f827d1d7 cd4e94098c1a509815bf1abf5bbd2d6edda30a66 43689ce659a0641fa1bb6a38d6bda724ca7e06df74aca963173b1c2144fa92e9 Loading...

	direct-credit-suisse-e1f47.web.app/assets/jquery-3.6.0.min.js.download	90 kB	2023-03-07	2024-04-19
Pretty URL direct-credit-suisse-e1f47.web.app/assets/jquery-3.6.0.min.js.download IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-04-19 01:27:00 Times Seen259733 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	direct-credit-suisse-e1f47.web.app/assets/bootstrap.min.js.download	63 kB	2023-03-07	2024-03-07
Pretty URL direct-credit-suisse-e1f47.web.app/assets/bootstrap.min.js.download IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:04:05 Last Seen2024-03-07 03:36:21 Times Seen52 Hash ef361b630ef5e97d05063a9662854d23 22c4b0b086858615f4b12bd7776a1485ac7021bc 31f6a9ba0076910aeaa5f0c2a7f72c7b2b806a488693cabd0259913aedc55038 Loading...

	direct-credit-suisse-e1f47.web.app/assets/intlTelInput.min.js.download	30 kB	2023-03-07	2023-03-26
Pretty URL direct-credit-suisse-e1f47.web.app/assets/intlTelInput.min.js.download IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:04:05 Last Seen2023-03-26 14:35:59 Times Seen3 Hash 7f1e5aef9abe3ea08a0ce3eee49a899f 72387cfdf83690a4c01b089f3dc7d0c8e5deded6 b8eaeda33e6eefdaf6532e74d42f3cf64d9412cdc88ac72e43d4b6fe9fd50791 Loading...

	direct-credit-suisse-e1f47.web.app/assets/embedded.js.download	51 kB	2023-03-08	2023-03-14
Pretty URL direct-credit-suisse-e1f47.web.app/assets/embedded.js.download IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:14 Last Seen2023-03-14 12:59:46 Times Seen1 Hash eb3f47988ed10f92e3122a9c5ec880a7 bc4ae9b22e3486d7819b73df64badd4825373ecc f0f3f6344c863ce227f6861e08e4a4455dd774d7a32ee77f1028534b8d417e71 Loading...

	direct-credit-suisse-e1f47.web.app/login.html?session=1QshlMK5g5dL9440b8DbCyf5ncQezryyoRqfOWGz0OqAxbdL5EBkBw0dx8dvOClHuTay0ZRHU53nHfV8s51eJBTzrlvKHQJsQQ&auth=13b87d4c-8b96-43dc-90cc-67a9fb032725	10 kB	2023-03-08	2023-03-14
Pretty URL direct-credit-suisse-e1f47.web.app/login.html?session=1QshlMK5g5dL9440b8DbCyf5ncQezryyoRqfOWGz0OqAxbdL5EBkBw0dx8dvOClHuTay0ZRHU53nHfV8s51eJBTzrlvKHQJsQQ&auth=13b87d4c-8b96-43dc-90cc-67a9fb032725 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:14 Last Seen2023-03-14 12:59:45 Times Seen1 Hash d47a26073a4b115f6ce7d2e5a6822f6a c47d3b4d7cffce8c7cc3808807bde3caeb74424a 0bf07bae9ff21b009d1fc525f185ec4849ab3140d5a778c22fa6e2e166b50b81 Loading...

	www.googletagmanager.com/gtag/js?id=G-E64ZWXYFD5&l=dataLayer&cx=c	182 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=G-E64ZWXYFD5&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:31:28 Last Seen2023-03-08 14:31:28 Times Seen1 Hash 1dacd3af778a35a8bc3d58489653ceab d3839e9741a08b9785d89ab1ac367bec0511d13d 4f67dff4a93173f20d166691ce521ae6d5e24f3d5b3143b0b3e2b8387100ed4f Loading...

	direct-credit-suisse-e1f47.web.app/assets/AppMeasurement.min.js.download	34 kB	2023-03-07	2024-04-18
Pretty URL direct-credit-suisse-e1f47.web.app/assets/AppMeasurement.min.js.download IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:44 Last Seen2024-04-18 22:17:38 Times Seen24794 Hash f259ee6445c19c2ce3c64a1b117a4f35 a4c64554f653ab4e5bd5d2d03ce5685bb0a9ddb8 d6b423c91328eec9c218dd8b21ae1e676987d574e5432411a32806e5dd2bde32 Loading...

	direct-credit-suisse-e1f47.web.app/assets/jquery.smartbanner.js.download	9.1 kB	2023-03-08	2023-03-26
Pretty URL direct-credit-suisse-e1f47.web.app/assets/jquery.smartbanner.js.download IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:14 Last Seen2023-03-26 14:36:00 Times Seen3 Hash 64b6ff6e7a34db2e0ee5d027bcfa4675 41e45d970364a4b55a8ea763e095086a0fdbb082 5130260449259e00602dbeddbc22c6a370b6b8fcd0350fae067392a7ec7a9ef1 Loading...

	direct-credit-suisse-e1f47.web.app/login.html?session=1QshlMK5g5dL9440b8DbCyf5ncQezryyoRqfOWGz0OqAxbdL5EBkBw0dx8dvOClHuTay0ZRHU53nHfV8s51eJBTzrlvKHQJsQQ&auth=13b87d4c-8b96-43dc-90cc-67a9fb032725	38 B	2023-03-08	2023-03-14
Pretty URL direct-credit-suisse-e1f47.web.app/login.html?session=1QshlMK5g5dL9440b8DbCyf5ncQezryyoRqfOWGz0OqAxbdL5EBkBw0dx8dvOClHuTay0ZRHU53nHfV8s51eJBTzrlvKHQJsQQ&auth=13b87d4c-8b96-43dc-90cc-67a9fb032725 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:14 Last Seen2023-03-14 12:59:45 Times Seen1 Hash e8754b92d68e2b36e787b59b5fbbdcea f482ccc276c2b892979a9e1914ccf3ae5e26ef65 7d9535107e55e97321132d5cf54b71b1e8e4710247bb73b1908ff97533815756 Loading...

	www.gstatic.com/firebasejs/6.1.1/firebase-auth.js	160 kB	2023-03-07	2024-01-03
Pretty URL www.gstatic.com/firebasejs/6.1.1/firebase-auth.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:29 Last Seen2024-01-03 16:28:40 Times Seen95 Hash ec3583f983613b050682579d60145992 1a3b7f9a6c07e9e5cf5dd3d111b80b0d5c50d143 e01650a2a8c967e5457a964aa0b4202ee3b239c3e4239e1bd7fab961b31187db Loading...

HTTP Transactions (71)

URL IP Response Size

direct-credit-suisse-e1f47.web.app/

199.36.158.100

301 Moved Permanently

0 B

URL HTTP/1.1
direct-credit-suisse-e1f47.web.app/
IP
199.36.158.100:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
openphish	Credit Suisse
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: direct-credit-suisse-e1f47.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Server: Varnish
Retry-After: 0
Location: https://direct-credit-suisse-e1f47.web.app/
Accept-Ranges: bytes
Date: Fri, 02 Dec 2022 05:56:07 GMT
X-Served-By: cache-bma1670-BMA
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1669960567.491772,VS0,VE0
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9003
Expires: Fri, 02 Dec 2022 08:26:10 GMT
Date: Fri, 02 Dec 2022 05:56:07 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 251
Cache-Control: max-age=103156
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:56:07 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 10:35:23 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

direct-credit-suisse-e1f47.web.app/

199.36.158.100

200 OK

1.0 kB

URL HTTP/2
direct-credit-suisse-e1f47.web.app/
IP
199.36.158.100:0
ASN
#54113 FASTLY

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
1.0 kB (1025 bytes)
Hash
49a1ab756ab1ea42056a4f70f52d186f
351cb10b9df4f638c0c43a3e6482e09ee783f34d
70f2342359514abecd58e6bda9f2b21de0381f4f44a315d561ae6f3fb83e66dc

Detections

Analyzer	Verdict	Alert
openphish	Credit Suisse
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: direct-credit-suisse-e1f47.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "6c34d76d3594b31a174919c5524a0347b8b4980bb87c25c87bcf4ea898ca10a7-br"
last-modified: Wed, 30 Nov 2022 20:23:51 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 02 Dec 2022 05:56:07 GMT
x-served-by: cache-bma1672-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1669960568.816786,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1025
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 05:19:51 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2176
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6990
Expires: Fri, 02 Dec 2022 07:52:37 GMT
Date: Fri, 02 Dec 2022 05:56:07 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 2ueBz1+LerjhxvggbYrke4VYQdgJ5CH8dzI7pUp6fSbR5O9DGuAsySLYpajDwG3qoKPy9yXNDHY=
x-amz-request-id: K2Q1KA16ZMNEZW0K
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 05:46:35 GMT
age: 572
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:56:07 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1d4int/8EklPeV1cd0

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1d4int/8EklPeV1cd0
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0e752c2748f5c2db29c6794a9353d34f
b1f27eced5150d81ad459f0083f18339726ac6c4
6e1b897e05e5d6ab13a51b3b5650ba6c80f10cc5e3521685041f62c89338377c

HTTP Headers

POST /s/gts1d4int/8EklPeV1cd0 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:56:07 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn.jsdelivr.net/npm/uuid@latest/dist/umd/uuidv4.min.js

151.101.1.229

200 OK

669 B

URL HTTP/2
cdn.jsdelivr.net/npm/uuid@latest/dist/umd/uuidv4.min.js
IP
151.101.1.229:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (1366), with no line terminators
Size
669 B (669 bytes)
Hash
410a517cf9f3478998f3b01bbcb6fdc9
f3374770c11535a58ef6ac7ff44fea0c2e6f9d35
37ffa90fc1782840938551dbc7a8366efa13f68af2c289e68765a89d8d1c3e48

HTTP Headers

GET /npm/uuid@latest/dist/umd/uuidv4.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://direct-credit-suisse-e1f47.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 8.3.2
x-jsd-version-type: version
etag: W/"556-Wdn/VD6mBE6EvolddgVB6g4Ez5g"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 02 Dec 2022 05:56:08 GMT
age: 26258
x-served-by: cache-fra19158-FRA, cache-bma1660-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 669
X-Firefox-Spdy: h2

ajax.aspnetcdn.com/ajax/jQuery/jquery-3.3.1.min.js

152.199.19.160

200 OK

30 kB

URL HTTP/2
ajax.aspnetcdn.com/ajax/jQuery/jquery-3.3.1.min.js
IP
152.199.19.160:0
ASN
#15133 EDGECAST

File type
ASCII text, with very long lines (65451)
Size
30 kB (30394 bytes)
Hash
a263be51483c81a54aa8c85104a93e55
555a54a73531c553bd2aede6abc25c128b63312e
b2f13ad730928958c09d89e6e32bb6a227c0260d032a39ca464d998a59e57a66

HTTP Headers

GET /ajax/jQuery/jquery-3.3.1.min.js HTTP/1.1
Host: ajax.aspnetcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://direct-credit-suisse-e1f47.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 22962063
cache-control: public,max-age=31536000
content-type: application/javascript
date: Fri, 02 Dec 2022 05:56:08 GMT
etag: "80288516b793d31:0"
last-modified: Mon, 22 Jan 2018 19:27:49 GMT
server: ECAcc (ska/F7A8)
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 30394
X-Firefox-Spdy: h2

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1462 bytes)
Hash
bf59d606ede7ab20019906413ae5c150
a9bd68ea0ffd7b208b554c5eb3fce97e1938d3b6
a480643ca83411152046b1c6efa0a06466f66c4da682d8c8874a7d6b7bf1e9e8

HTTP Headers

POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 05:56:08 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "3B484099CD23F2101F5A61CC6C161CF2CF5E5114"
Expires: Fri, 02 Dec 2022 17:00:00 GMT
Last-Modified: Fri, 02 Dec 2022 05:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 652
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7731d14f6e22b51b-OSL

ocsp.quovadisglobal.com/

152.195.132.213

200 OK

1.8 kB

URL HTTP/1.1
ocsp.quovadisglobal.com/
IP
152.195.132.213:0
ASN
#15133 EDGECAST

File type
data
Size
1.8 kB (1753 bytes)
Hash
ba65716fe1995a68b3de456325afddbe
aaf0d26ca23c5450b92ed891acf4c128a56bf544
9e282254ee6de93845823a9b66e6e74d0c81e9d3d24bd69a3766d9054ed26a68

HTTP Headers

POST / HTTP/1.1
Host: ocsp.quovadisglobal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6480
Cache-Control: max-age=155519,public,no-transform,must-revalidate
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:56:08 GMT
Etag: "aaf0d26ca23c5450b92ed891acf4c128a56bf544"
Expires: Sun, 04 Dec 2022 05:56:07 GMT
Last-Modified: Fri, 02 Dec 2022 04:08:08 GMT
Server: ECAcc (ska/F78F)
X-Cache: HIT
Content-Length: 1753

ocsp.quovadisglobal.com/

152.195.132.213

200 OK

1.8 kB

URL HTTP/1.1
ocsp.quovadisglobal.com/
IP
152.195.132.213:0
ASN
#15133 EDGECAST

File type
data
Size
1.8 kB (1753 bytes)
Hash
e18136fc6fbb533c925da5500621d1c9
edc52fceb406113e19a563cabebe77b6c7179f07
d5dbb16b504ec03fcf52bf83fd3cb6ca8e38527617aae73f0a15d3d51db64661

HTTP Headers

POST / HTTP/1.1
Host: ocsp.quovadisglobal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: max-age=155519,public,no-transform,must-revalidate
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:56:08 GMT
Etag: "edc52fceb406113e19a563cabebe77b6c7179f07"
Expires: Sun, 04 Dec 2022 05:56:07 GMT
Last-Modified: Fri, 02 Dec 2022 05:56:08 GMT
Server: Apache
Content-Length: 1753

ocsp.quovadisglobal.com/

152.195.132.213

200 OK

1.8 kB

URL HTTP/1.1
ocsp.quovadisglobal.com/
IP
152.195.132.213:0
ASN
#15133 EDGECAST

File type
data
Size
1.8 kB (1753 bytes)
Hash
e18136fc6fbb533c925da5500621d1c9
edc52fceb406113e19a563cabebe77b6c7179f07
d5dbb16b504ec03fcf52bf83fd3cb6ca8e38527617aae73f0a15d3d51db64661

HTTP Headers

POST / HTTP/1.1
Host: ocsp.quovadisglobal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: max-age=155519,public,no-transform,must-revalidate
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:56:08 GMT
Etag: "edc52fceb406113e19a563cabebe77b6c7179f07"
Expires: Sun, 04 Dec 2022 05:56:07 GMT
Last-Modified: Fri, 02 Dec 2022 05:56:08 GMT
Server: Apache
Content-Length: 1753

ocsp.quovadisglobal.com/

152.195.132.213

200 OK

1.8 kB

URL HTTP/1.1
ocsp.quovadisglobal.com/
IP
152.195.132.213:0
ASN
#15133 EDGECAST

File type
data
Size
1.8 kB (1753 bytes)
Hash
e18136fc6fbb533c925da5500621d1c9
edc52fceb406113e19a563cabebe77b6c7179f07
d5dbb16b504ec03fcf52bf83fd3cb6ca8e38527617aae73f0a15d3d51db64661

HTTP Headers

POST / HTTP/1.1
Host: ocsp.quovadisglobal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: max-age=155519,public,no-transform,must-revalidate
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:56:08 GMT
Etag: "edc52fceb406113e19a563cabebe77b6c7179f07"
Expires: Sun, 04 Dec 2022 05:56:07 GMT
Last-Modified: Fri, 02 Dec 2022 05:56:08 GMT
Server: Apache
Content-Length: 1753

ocsp.quovadisglobal.com/

152.195.132.213

200 OK

1.8 kB

URL HTTP/1.1
ocsp.quovadisglobal.com/
IP
152.195.132.213:0
ASN
#15133 EDGECAST

File type
data
Size
1.8 kB (1781 bytes)
Hash
4842c2bed720fa1d325b6cffb49c0f82
4ce876fa62130b8db4f48dfb2ab91e8c973c8731
ab7aa8441f1fadf1010e77fdacc10c216bff0ffeef4c93abeda23d523aa80865

HTTP Headers

POST / HTTP/1.1
Host: ocsp.quovadisglobal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: max-age=155519,public,no-transform,must-revalidate
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:56:08 GMT
Etag: "4ce876fa62130b8db4f48dfb2ab91e8c973c8731"
Expires: Sun, 04 Dec 2022 05:56:07 GMT
Last-Modified: Fri, 02 Dec 2022 05:56:08 GMT
Server: Apache
Content-Length: 1781

ocsp.quovadisglobal.com/

152.195.132.213

200 OK

1.8 kB

URL HTTP/1.1
ocsp.quovadisglobal.com/
IP
152.195.132.213:0
ASN
#15133 EDGECAST

File type
data
Size
1.8 kB (1781 bytes)
Hash
4842c2bed720fa1d325b6cffb49c0f82
4ce876fa62130b8db4f48dfb2ab91e8c973c8731
ab7aa8441f1fadf1010e77fdacc10c216bff0ffeef4c93abeda23d523aa80865

HTTP Headers

POST / HTTP/1.1
Host: ocsp.quovadisglobal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: max-age=155519,public,no-transform,must-revalidate
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:56:08 GMT
Etag: "4ce876fa62130b8db4f48dfb2ab91e8c973c8731"
Expires: Sun, 04 Dec 2022 05:56:07 GMT
Last-Modified: Fri, 02 Dec 2022 05:56:08 GMT
Server: Apache
Content-Length: 1781

ocsp.quovadisglobal.com/

152.195.132.213

200 OK

1.8 kB

URL HTTP/1.1
ocsp.quovadisglobal.com/
IP
152.195.132.213:0
ASN
#15133 EDGECAST

File type
data
Size
1.8 kB (1781 bytes)
Hash
4842c2bed720fa1d325b6cffb49c0f82
4ce876fa62130b8db4f48dfb2ab91e8c973c8731
ab7aa8441f1fadf1010e77fdacc10c216bff0ffeef4c93abeda23d523aa80865

HTTP Headers

POST / HTTP/1.1
Host: ocsp.quovadisglobal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: max-age=155519,public,no-transform,must-revalidate
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:56:08 GMT
Etag: "4ce876fa62130b8db4f48dfb2ab91e8c973c8731"
Expires: Sun, 04 Dec 2022 05:56:07 GMT
Last-Modified: Fri, 02 Dec 2022 05:56:08 GMT
Server: Apache
Content-Length: 1781

ocsp.quovadisglobal.com/

152.195.132.213

200 OK

1.8 kB

URL HTTP/1.1
ocsp.quovadisglobal.com/
IP
152.195.132.213:0
ASN
#15133 EDGECAST

File type
data
Size
1.8 kB (1781 bytes)
Hash
4842c2bed720fa1d325b6cffb49c0f82
4ce876fa62130b8db4f48dfb2ab91e8c973c8731
ab7aa8441f1fadf1010e77fdacc10c216bff0ffeef4c93abeda23d523aa80865

HTTP Headers

POST / HTTP/1.1
Host: ocsp.quovadisglobal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: max-age=155519,public,no-transform,must-revalidate
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:56:08 GMT
Etag: "4ce876fa62130b8db4f48dfb2ab91e8c973c8731"
Expires: Sun, 04 Dec 2022 05:56:07 GMT
Last-Modified: Fri, 02 Dec 2022 05:56:08 GMT
Server: Apache
Content-Length: 1781

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
06fc2114946e9805db925bf54fbb908b
2214214619ca63b6cdfad39a231a4aaba6c682c4
884ffbd3c4b70a88cd6b7fb2602b6693e8c1657c8a52a424d46db9e0c671251a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 177
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:56:08 GMT
Last-Modified: Fri, 02 Dec 2022 05:53:11 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 280

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:56:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

direct.credit-suisse.com/dn/p/slogin/css/fonts/cs-icon-font-cb.eot

198.240.216.40

302 Found

330 B

URL HTTP/1.1
direct.credit-suisse.com/dn/p/slogin/css/fonts/cs-icon-font-cb.eot
IP
198.240.216.40:0
ASN
#8729 Credit Suisse Group

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
330 B (330 bytes)
Hash
e76fa91ba2e2e80fcd40374da44a7635
2bc25680b70926621aecee9c4fb5d41f8f615f39
de8c832b7ed32fb858604d7a1c77d291b2ddfe68e450bc8976e6a17d71540670

HTTP Headers

GET /dn/p/slogin/css/fonts/cs-icon-font-cb.eot HTTP/1.1
Host: direct.credit-suisse.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://direct-credit-suisse-e1f47.web.app
Connection: keep-alive
Referer: https://direct-credit-suisse-e1f47.web.app/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Date: Fri, 02 Dec 2022 05:56:08 GMT
Server: Credit Suisse Entry Server
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
X-Content-Type-Options: nosniff
X-Robots-Tag: all
Content-Security-Policy: default-src dnmb: 'self' *.credit-suisse.com *.employee-shares.com; script-src dnmb: 'self' 'unsafe-inline' 'unsafe-eval' *.credit-suisse.com *.employee-shares.com; style-src 'self' 'unsafe-inline' *.credit-suisse.com *.employee-shares.com; img-src 'self' data: blob: *.credit-suisse.com *.employee-shares.com; connect-src 'self' wss: *.credit-suisse.com *.employee-shares.com; font-src 'self' data: ; worker-src 'self' blob: dnmb:; child-src 'self' data: blob: dnmb:;
Location: https://direct.credit-suisse.com/cookie-check?trg=ozERQOOysJHAVyk-IQymqihVBEXGX0tRIO2-eL_2IU0pYAX5IyDzlHaXuYNDF8Zcy5eael82T7ZteYxUpXKgxKK8hat7IbFOclhGF1MAh147vFXJAq8QMGJLAS10vL3L
Content-Length: 330
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: SCDID_S=nx4BHR4AxE6JyZ01OTaLvwvTqRK9JN0fS1y_hfdjO9jC6ok_GPKKoQ$$; path=/; Secure; HttpOnly; SameSite=Lax
X-Permitted-Cross-Domain-Policies: none
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive

direct.credit-suisse.com/dn/p/slogin/css/fonts/cs-icon-font-cb.woff

198.240.216.40

302 Found

330 B

URL HTTP/1.1
direct.credit-suisse.com/dn/p/slogin/css/fonts/cs-icon-font-cb.woff
IP
198.240.216.40:0
ASN
#8729 Credit Suisse Group

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
330 B (330 bytes)
Hash
cf8d2dcf8cf458d42c15f1fd7e22c4ae
5b18c0d3df09e3a7f392add1231775d9f7b837f2
65e266486bcfa25d7aa4f66eaac3f2ee575da1160a13ff0c78534a39f2a60138

HTTP Headers

GET /dn/p/slogin/css/fonts/cs-icon-font-cb.woff HTTP/1.1
Host: direct.credit-suisse.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://direct-credit-suisse-e1f47.web.app
Connection: keep-alive
Referer: https://direct-credit-suisse-e1f47.web.app/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Date: Fri, 02 Dec 2022 05:56:08 GMT
Server: Credit Suisse Entry Server
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
X-Content-Type-Options: nosniff
X-Robots-Tag: all
Content-Security-Policy: default-src dnmb: 'self' *.credit-suisse.com *.employee-shares.com; script-src dnmb: 'self' 'unsafe-inline' 'unsafe-eval' *.credit-suisse.com *.employee-shares.com; style-src 'self' 'unsafe-inline' *.credit-suisse.com *.employee-shares.com; img-src 'self' data: blob: *.credit-suisse.com *.employee-shares.com; connect-src 'self' wss: *.credit-suisse.com *.employee-shares.com; font-src 'self' data: ; worker-src 'self' blob: dnmb:; child-src 'self' data: blob: dnmb:;
Location: https://direct.credit-suisse.com/cookie-check?trg=goZKa57F5eI2rN1D_NSZ4EZJ16BhJ1RJ084QCki5BD9jo1Bz6tdYoJzCFBO7AdXZsHGZ8uZ_JpLQxCEvzZmbYf9UXFbLTbCevsjhl8RzZd7VckxoaNzo2zMcYQJNQCdp
Content-Length: 330
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: SCDID_S=MDeH8p03g_GIycEqwicKECHP-GmH3bqVcmcIy7oe94hTZR4oB2HALw$$; path=/; Secure; HttpOnly; SameSite=Lax
X-Permitted-Cross-Domain-Policies: none
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive

code.jquery.com/jquery-3.6.0.min.js

69.16.175.10

200 OK

31 kB

URL HTTP/2
code.jquery.com/jquery-3.6.0.min.js
IP
69.16.175.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (65447)
Size
31 kB (30875 bytes)
Hash
899f0189aaf034bbba5340f724d91dfa
210ea9de03968edb9d839ba4a0ce2d48666a8ab8
949b6597c5ea907a7ef3c8ca6d5ffc73be2352f9df485b78704e5c4dabac5d0f

HTTP Headers

GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://direct-credit-suisse-e1f47.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 05:56:08 GMT
content-encoding: gzip
content-length: 30875
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15d9d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1669960568.dop218.sk1.t,1669960568.cds238.sk1.hn,1669960568.cds210.sk1.c
X-Firefox-Spdy: h2

direct.credit-suisse.com/dn/p/slogin/css/fonts/cs-icon-font-cb.ttf

198.240.216.40

302 Found

330 B

URL HTTP/1.1
direct.credit-suisse.com/dn/p/slogin/css/fonts/cs-icon-font-cb.ttf
IP
198.240.216.40:0
ASN
#8729 Credit Suisse Group

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
330 B (330 bytes)
Hash
8ad232bfb9e100925db31b90f33b1270
a20b7b2aff53bdbb79c409186c0858b0e49ae09c
10adcd7d571e69b5a5a38163f63d139407d9759f92ff9fe2db1ae7072a0d8608

HTTP Headers

GET /dn/p/slogin/css/fonts/cs-icon-font-cb.ttf HTTP/1.1
Host: direct.credit-suisse.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://direct-credit-suisse-e1f47.web.app
Connection: keep-alive
Referer: https://direct-credit-suisse-e1f47.web.app/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Date: Fri, 02 Dec 2022 05:56:08 GMT
Server: Credit Suisse Entry Server
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
X-Content-Type-Options: nosniff
X-Robots-Tag: all
Content-Security-Policy: default-src dnmb: 'self' *.credit-suisse.com *.employee-shares.com; script-src dnmb: 'self' 'unsafe-inline' 'unsafe-eval' *.credit-suisse.com *.employee-shares.com; style-src 'self' 'unsafe-inline' *.credit-suisse.com *.employee-shares.com; img-src 'self' data: blob: *.credit-suisse.com *.employee-shares.com; connect-src 'self' wss: *.credit-suisse.com *.employee-shares.com; font-src 'self' data: ; worker-src 'self' blob: dnmb:; child-src 'self' data: blob: dnmb:;
Location: https://direct.credit-suisse.com/cookie-check?trg=b3oGYoCfTjmQj9BQm78g6j5ZVNgVGpYBfG4OfaxFr9Qa24JqAA9wpXNncZzqyVpb6J1_uiSUTBakGxrnJp6ZAFOjiG-VvJB3MMVaJxgja1SOo-iBGv0bto2pEYKl3zW2
Content-Length: 330
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: SCDID_S=VbBesnw-ghc61xLDF0qaIErJKoECHQ0MjjUTLctFTxS60hL7lsCMhQ$$; path=/; Secure; HttpOnly; SameSite=Lax
X-Permitted-Cross-Domain-Policies: none
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive

direct.credit-suisse.com/dn/p/slogin/css/fonts/cs-icon-font-cb.svg

198.240.216.40

302 Found

330 B

URL HTTP/1.1
direct.credit-suisse.com/dn/p/slogin/css/fonts/cs-icon-font-cb.svg
IP
198.240.216.40:0
ASN
#8729 Credit Suisse Group

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
330 B (330 bytes)
Hash
c8fd653b67a40fc741171564d5c070e8
0ab1eacc089fcf65dc740d6cac131061575353de
f0a1b24913535f750ce11b738e64740d9dcd3ee9a7dd98c3023d2864b3025f09

HTTP Headers

GET /dn/p/slogin/css/fonts/cs-icon-font-cb.svg HTTP/1.1
Host: direct.credit-suisse.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://direct-credit-suisse-e1f47.web.app
Connection: keep-alive
Referer: https://direct-credit-suisse-e1f47.web.app/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Date: Fri, 02 Dec 2022 05:56:08 GMT
Server: Credit Suisse Entry Server
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
X-Content-Type-Options: nosniff
X-Robots-Tag: all
Content-Security-Policy: default-src dnmb: 'self' *.credit-suisse.com *.employee-shares.com; script-src dnmb: 'self' 'unsafe-inline' 'unsafe-eval' *.credit-suisse.com *.employee-shares.com; style-src 'self' 'unsafe-inline' *.credit-suisse.com *.employee-shares.com; img-src 'self' data: blob: *.credit-suisse.com *.employee-shares.com; connect-src 'self' wss: *.credit-suisse.com *.employee-shares.com; font-src 'self' data: ; worker-src 'self' blob: dnmb:; child-src 'self' data: blob: dnmb:;
Location: https://direct.credit-suisse.com/cookie-check?trg=qkcKLsZlRZJ2PPzG8dQqIUgV7uMVW91_lwK8Sdvv75JFNRwoCqySzNy8kdsUP8E2S_7EJ39WiX9mWxmnFo2s-zu07x4CNRprJ_qK_h7lsSzkx5beI1Z-vuVZ45IlWshK
Content-Length: 330
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: SCDID_S=96DCHCI2Mi1N9-HUeCZaYl4TjYYqxYSRzWWnG-zud3ij_A8s6BvC3w$$; path=/; Secure; HttpOnly; SameSite=Lax
X-Permitted-Cross-Domain-Policies: none
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:56:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:56:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:56:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/firebasejs/6.1.1/firebase-database.js

142.250.74.35

200 OK

48 kB

URL HTTP/2
www.gstatic.com/firebasejs/6.1.1/firebase-database.js
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (65536), with no line terminators
Size
48 kB (47735 bytes)
Hash
5bfd3a1d2d4c274f1cd3a7b8c59af760
2b0ccd97366bd4d62c246d56c301f30893f2d8e7
5ed649d66a13882552107974d1591bd60f9799111e60adb56d8e720ed39ddff6

HTTP Headers

GET /firebasejs/6.1.1/firebase-database.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://direct-credit-suisse-e1f47.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 47735
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 14:45:39 GMT
expires: Wed, 29 Nov 2023 14:45:39 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 06 Jun 2019 21:07:48 GMT
content-type: text/javascript; charset=UTF-8
age: 227429
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:56:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/firebasejs/6.1.1/firebase-auth.js

142.250.74.35

200 OK

51 kB

URL HTTP/2
www.gstatic.com/firebasejs/6.1.1/firebase-auth.js
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size
51 kB (51196 bytes)
Hash
99217f8b4bd38b686c487c355cea9de9
f62878357f16df9f909958ac4540d28116dc5d55
92fa6342aed2bfff5bb56e122e07a00048e7cb3e341a696e3cffca83733ec430

HTTP Headers

GET /firebasejs/6.1.1/firebase-auth.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://direct-credit-suisse-e1f47.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 51196
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 05:54:22 GMT
expires: Sun, 26 Nov 2023 05:54:22 GMT
cache-control: public, max-age=31536000
age: 518506
last-modified: Thu, 06 Jun 2019 21:07:48 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.gstatic.com/firebasejs/7.3.0/firebase-analytics.js

142.250.74.35

200 OK

7.0 kB

URL HTTP/2
www.gstatic.com/firebasejs/7.3.0/firebase-analytics.js
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (21419)
Size
7.0 kB (6955 bytes)
Hash
d846a2e20e468143b8c1d16506676f61
3b7b9b23d118e5fa829b4590dac114729067583b
7ef679e5249b1294f6f4ba12fd2a71001aa3b78944c0c5408fd75cf65d55eb5d

HTTP Headers

GET /firebasejs/7.3.0/firebase-analytics.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://direct-credit-suisse-e1f47.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 6955
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 08:34:48 GMT
expires: Fri, 01 Dec 2023 08:34:48 GMT
cache-control: public, max-age=31536000
age: 76880
last-modified: Thu, 07 Nov 2019 23:11:03 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.gstatic.com/firebasejs/7.3.0/firebase-app.js

142.250.74.35

200 OK

4.1 kB

URL HTTP/2
www.gstatic.com/firebasejs/7.3.0/firebase-app.js
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (12024)
Size
4.1 kB (4111 bytes)
Hash
28c636c993e7e1c9f91062a5ae7e9ad3
77a3eeb7ae16a6296a41bcba68edd9cec7132c0d
549e9eefe09d5f2579ce3e80b0eab78da68113d741c9c78ec82511999d3a97cb

HTTP Headers

GET /firebasejs/7.3.0/firebase-app.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://direct-credit-suisse-e1f47.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 4111
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 14:26:42 GMT
expires: Tue, 28 Nov 2023 14:26:42 GMT
cache-control: public, max-age=31536000
age: 314966
last-modified: Thu, 07 Nov 2019 23:11:03 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 247
Cache-Control: max-age=98088
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:56:08 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 09:10:56 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

www.gstatic.com/firebasejs/5.9.4/firebase.js

142.250.74.35

200 OK

215 kB

URL HTTP/2
www.gstatic.com/firebasejs/5.9.4/firebase.js
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Size
215 kB (215186 bytes)
Hash
0cbab56b1b10298805c7db2779011521
17987abe838240cc51aedaae45ff439109a334c9
c9c1b32cfd6deb4ff5e2fc5b4fec161e225492267f4e5437398dc4d15f63aac7

HTTP Headers

GET /firebasejs/5.9.4/firebase.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://direct-credit-suisse-e1f47.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 215186
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 25 Nov 2022 19:13:27 GMT
expires: Sat, 25 Nov 2023 19:13:27 GMT
cache-control: public, max-age=31536000
age: 556961
last-modified: Thu, 11 Apr 2019 22:18:35 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:56:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

push.services.mozilla.com/

54.70.239.215

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.70.239.215:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: uKKZN6G0v4js2yuNFB04iA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 71IIBTuWFFw5YU5SCnALLWOCRk8=

direct.credit-suisse.com/dn/p/slogin/img/cs/favicon-16x16.png

198.240.216.40

302 Found

322 B

URL HTTP/1.1
direct.credit-suisse.com/dn/p/slogin/img/cs/favicon-16x16.png
IP
198.240.216.40:0
ASN
#8729 Credit Suisse Group

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
322 B (322 bytes)
Hash
9872cd395c43d1b3f603bc64bc7bc7da
1c942292eaa228ae696af34ad30ce3e0165183eb
b0e479c43939d0a13d382ee9c5bd7654267b608a7a1adb8ecc8575ac5ea48460

HTTP Headers

GET /dn/p/slogin/img/cs/favicon-16x16.png HTTP/1.1
Host: direct.credit-suisse.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://direct-credit-suisse-e1f47.web.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Date: Fri, 02 Dec 2022 05:56:09 GMT
Server: Credit Suisse Entry Server
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
X-Content-Type-Options: nosniff
X-Robots-Tag: all
Content-Security-Policy: default-src dnmb: 'self' *.credit-suisse.com *.employee-shares.com; script-src dnmb: 'self' 'unsafe-inline' 'unsafe-eval' *.credit-suisse.com *.employee-shares.com; style-src 'self' 'unsafe-inline' *.credit-suisse.com *.employee-shares.com; img-src 'self' data: blob: *.credit-suisse.com *.employee-shares.com; connect-src 'self' wss: *.credit-suisse.com *.employee-shares.com; font-src 'self' data: ; worker-src 'self' blob: dnmb:; child-src 'self' data: blob: dnmb:;
Location: https://direct.credit-suisse.com/cookie-check?trg=1oYEDo6qTkdt30UPJufw7n7PoPqbQ9ybcoIAZpcx3xjr4r8nydo4HGR9PHtsALflLeWMCk_yQdaG62ME80Cu5ypwuJcGtuKXg8ufdI2gOEjjWdni-gctnw$$
Content-Length: 322
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: SCDID_S=IkHRj1rjv42iHoGBgMFpUXKbh2kKkGwCK2HIW09cgemKdR-O-p5C7w$$; path=/; Secure; HttpOnly; SameSite=Lax
X-Permitted-Cross-Domain-Policies: none
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive

direct.credit-suisse.com/dn/p/slogin/img/cs/favicon-194x194.png

198.240.216.40

302 Found

330 B

URL HTTP/1.1
direct.credit-suisse.com/dn/p/slogin/img/cs/favicon-194x194.png
IP
198.240.216.40:0
ASN
#8729 Credit Suisse Group

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
330 B (330 bytes)
Hash
dd4e226e6b86e7a59006a08f9fd989d8
d0f3906cd198f9ca2b7c3b7d46b96aa972f6de8f
16416eb888df31db786bb6427cf9876c33c161de508d656b76e3d4f48b1a146b

HTTP Headers

GET /dn/p/slogin/img/cs/favicon-194x194.png HTTP/1.1
Host: direct.credit-suisse.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://direct-credit-suisse-e1f47.web.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Date: Fri, 02 Dec 2022 05:56:09 GMT
Server: Credit Suisse Entry Server
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
X-Content-Type-Options: nosniff
X-Robots-Tag: all
Content-Security-Policy: default-src dnmb: 'self' *.credit-suisse.com *.employee-shares.com; script-src dnmb: 'self' 'unsafe-inline' 'unsafe-eval' *.credit-suisse.com *.employee-shares.com; style-src 'self' 'unsafe-inline' *.credit-suisse.com *.employee-shares.com; img-src 'self' data: blob: *.credit-suisse.com *.employee-shares.com; connect-src 'self' wss: *.credit-suisse.com *.employee-shares.com; font-src 'self' data: ; worker-src 'self' blob: dnmb:; child-src 'self' data: blob: dnmb:;
Location: https://direct.credit-suisse.com/cookie-check?trg=_A4uGgdv2VCrY2IIblFVNY9gEW0Lbyn7-x1WIqeUi42caEWM9vuK6LlS5jeX6q097fpCFMAVmVfR97R72_3QY_nK76bsARmD1qR4RPA2hzN7HC7SWlfEcekDfu290ovd
Content-Length: 330
Content-Type: text/html; charset=iso-8859-1
Set-Cookie: SCDID_S=KoHLzfqI3WRbOjmFmiNc1jQq5BPpzvtmpaz7C3Tf6CFoL8IkaGP8xA$$; path=/; Secure; HttpOnly; SameSite=Lax
X-Permitted-Cross-Domain-Policies: none
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:56:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/s/gts1d4/8zRofmzdPas

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1d4/8zRofmzdPas
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
928787913d912ccfb57b94ff920ddd6f
a16f49efe281fae7790855d5dbb935bdd6aa4375
a98416339a34e7ea0631466b676dc11ef24f47044b5b2d1d5d703e6bf71e5300

HTTP Headers

POST /s/gts1d4/8zRofmzdPas HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:56:09 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?l=dataLayer

142.250.74.72

200 OK

38 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?l=dataLayer
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
38 kB (37488 bytes)
Hash
1e3d5c3f68ad9216069bb00e38e2e683
b4eb1e6b6f63044ec74b1b1db57708bc19cbaf4b
38d242d498bf8419eae637872f7957e23cfd8274c53ce86960dc5b748f1b9f2a

HTTP Headers

GET /gtag/js?l=dataLayer HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://direct-credit-suisse-e1f47.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Dec 2022 05:56:09 GMT
expires: Fri, 02 Dec 2022 05:56:09 GMT
cache-control: private, max-age=900
last-modified: Fri, 02 Dec 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 37488
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:56:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

direct.credit-suisse.com/cookie-check?trg=1oYEDo6qTkdt30UPJufw7n7PoPqbQ9ybcoIAZpcx3xjr4r8nydo4HGR9PHtsALflLeWMCk_yQdaG62ME80Cu5ypwuJcGtuKXg8ufdI2gOEjjWdni-gctnw$$

198.240.216.40

302 Found

303 B

URL HTTP/1.1
direct.credit-suisse.com/cookie-check?trg=1oYEDo6qTkdt30UPJufw7n7PoPqbQ9ybcoIAZpcx3xjr4r8nydo4HGR9PHtsALflLeWMCk_yQdaG62ME80Cu5ypwuJcGtuKXg8ufdI2gOEjjWdni-gctnw$$
IP
198.240.216.40:0
ASN
#8729 Credit Suisse Group

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
303 B (303 bytes)
Hash
76abd44ee3357a056c4af15564464661
2573f5d56af2227cc2fe2d6d536c5eef88e4d1ba
82d09bedbb744c4d7364c3da12bb576d1a03154cf2f4f252be76567efad6949f

HTTP Headers

GET /cookie-check?trg=1oYEDo6qTkdt30UPJufw7n7PoPqbQ9ybcoIAZpcx3xjr4r8nydo4HGR9PHtsALflLeWMCk_yQdaG62ME80Cu5ypwuJcGtuKXg8ufdI2gOEjjWdni-gctnw$$ HTTP/1.1
Host: direct.credit-suisse.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://direct-credit-suisse-e1f47.web.app/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Date: Fri, 02 Dec 2022 05:56:09 GMT
Server: Credit Suisse Entry Server
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
X-Content-Type-Options: nosniff
X-Robots-Tag: all
Content-Security-Policy: default-src dnmb: 'self' *.credit-suisse.com *.employee-shares.com; script-src dnmb: 'self' 'unsafe-inline' 'unsafe-eval' *.credit-suisse.com *.employee-shares.com; style-src 'self' 'unsafe-inline' *.credit-suisse.com *.employee-shares.com; img-src 'self' data: blob: *.credit-suisse.com *.employee-shares.com; connect-src 'self' wss: *.credit-suisse.com *.employee-shares.com; font-src 'self' data: ; worker-src 'self' blob: dnmb:; child-src 'self' data: blob: dnmb:;
Location: https://direct.credit-suisse.com/cookie-check/cs/CookieCheckError.html?trg=AviMTQyrxUGdsqoPafA5NhFubSX-Za_G2MH_x3IQneAO4YeI4kmKjJhwufHQVBc-0ceGp14GjGM$
Content-Length: 303
Content-Type: text/html; charset=iso-8859-1
Cache-Control: no-store, no-cache, must-revalidate
X-Permitted-Cross-Domain-Policies: none
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive

direct.credit-suisse.com/cookie-check?trg=_A4uGgdv2VCrY2IIblFVNY9gEW0Lbyn7-x1WIqeUi42caEWM9vuK6LlS5jeX6q097fpCFMAVmVfR97R72_3QY_nK76bsARmD1qR4RPA2hzN7HC7SWlfEcekDfu290ovd

198.240.216.40

302 Found

303 B

URL HTTP/1.1
direct.credit-suisse.com/cookie-check?trg=_A4uGgdv2VCrY2IIblFVNY9gEW0Lbyn7-x1WIqeUi42caEWM9vuK6LlS5jeX6q097fpCFMAVmVfR97R72_3QY_nK76bsARmD1qR4RPA2hzN7HC7SWlfEcekDfu290ovd
IP
198.240.216.40:0
ASN
#8729 Credit Suisse Group

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
303 B (303 bytes)
Hash
7ad55375bda96905ba129396c3103ec3
a30220b0730d8c4053da5a9ad7d00200d4fc0a06
3711396ae1f766d462768be476bc07fd159f3d2bb76b0e2cdaeb0201885f9a1f

HTTP Headers

GET /cookie-check?trg=_A4uGgdv2VCrY2IIblFVNY9gEW0Lbyn7-x1WIqeUi42caEWM9vuK6LlS5jeX6q097fpCFMAVmVfR97R72_3QY_nK76bsARmD1qR4RPA2hzN7HC7SWlfEcekDfu290ovd HTTP/1.1
Host: direct.credit-suisse.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://direct-credit-suisse-e1f47.web.app/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Date: Fri, 02 Dec 2022 05:56:09 GMT
Server: Credit Suisse Entry Server
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
X-Content-Type-Options: nosniff
X-Robots-Tag: all
Content-Security-Policy: default-src dnmb: 'self' *.credit-suisse.com *.employee-shares.com; script-src dnmb: 'self' 'unsafe-inline' 'unsafe-eval' *.credit-suisse.com *.employee-shares.com; style-src 'self' 'unsafe-inline' *.credit-suisse.com *.employee-shares.com; img-src 'self' data: blob: *.credit-suisse.com *.employee-shares.com; connect-src 'self' wss: *.credit-suisse.com *.employee-shares.com; font-src 'self' data: ; worker-src 'self' blob: dnmb:; child-src 'self' data: blob: dnmb:;
Location: https://direct.credit-suisse.com/cookie-check/cs/CookieCheckError.html?trg=AviMTQyrxUGdsqoPafA5NhFubSX-Za_G2MH_x3IQneAO4YeI4kmKjJbk0UNCbmo8MUEbM4dJjL0$
Content-Length: 303
Content-Type: text/html; charset=iso-8859-1
Cache-Control: no-store, no-cache, must-revalidate
X-Permitted-Cross-Domain-Policies: none
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive

ocsp.pki.goog/s/gts1d4/8zRofmzdPas

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1d4/8zRofmzdPas
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
928787913d912ccfb57b94ff920ddd6f
a16f49efe281fae7790855d5dbb935bdd6aa4375
a98416339a34e7ea0631466b676dc11ef24f47044b5b2d1d5d703e6bf71e5300

HTTP Headers

POST /s/gts1d4/8zRofmzdPas HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:56:09 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:56:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:56:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

firebaseinstallations.googleapis.com/v1/projects/cpnlify/installations

142.250.74.170

200 OK

0 B

URL HTTP/2
firebaseinstallations.googleapis.com/v1/projects/cpnlify/installations
IP
142.250.74.170:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /v1/projects/cpnlify/installations HTTP/1.1
Host: firebaseinstallations.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key
Referer: https://direct-credit-suisse-e1f47.web.app/
Origin: https://direct-credit-suisse-e1f47.web.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://direct-credit-suisse-e1f47.web.app
vary: origin, referer, x-origin
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key
access-control-max-age: 3600
date: Fri, 02 Dec 2022 05:56:09 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1d4int/5EXjxzFGjgM

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1d4int/5EXjxzFGjgM
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d046e36c1b2b82b70eb7d4b39611e006
71a94513178052e32d5dd14fdefd93eafdd3b9d3
b221cf3f7248f4d1c9be8a15d2adc9b143a14c48af0ea2250bf56b34aefd22cd

HTTP Headers

POST /s/gts1d4int/5EXjxzFGjgM HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:56:09 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:56:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

direct.credit-suisse.com/cookie-check/cs/CookieCheckError.html?trg=AviMTQyrxUGdsqoPafA5NhFubSX-Za_G2MH_x3IQneAO4YeI4kmKjJbk0UNCbmo8MUEbM4dJjL0$

198.240.216.40

200 OK

1.9 kB

URL HTTP/1.1
direct.credit-suisse.com/cookie-check/cs/CookieCheckError.html?trg=AviMTQyrxUGdsqoPafA5NhFubSX-Za_G2MH_x3IQneAO4YeI4kmKjJbk0UNCbmo8MUEbM4dJjL0$
IP
198.240.216.40:0
ASN
#8729 Credit Suisse Group

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Size
1.9 kB (1923 bytes)
Hash
eeaaa1e93f3c6e86f993d32d863873db
41831692622171d761c7c3d17307db8514319bd6
fb91783e513ec5755d75a7b6cadd8c69b3f846415f3b7a0f464539b739565bb3

HTTP Headers

GET /cookie-check/cs/CookieCheckError.html?trg=AviMTQyrxUGdsqoPafA5NhFubSX-Za_G2MH_x3IQneAO4YeI4kmKjJbk0UNCbmo8MUEbM4dJjL0$ HTTP/1.1
Host: direct.credit-suisse.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://direct-credit-suisse-e1f47.web.app/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 05:56:09 GMT
Server: Credit Suisse Entry Server
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
X-Content-Type-Options: nosniff
X-Robots-Tag: all
Content-Security-Policy: default-src dnmb: 'self' *.credit-suisse.com *.employee-shares.com; script-src dnmb: 'self' 'unsafe-inline' 'unsafe-eval' *.credit-suisse.com *.employee-shares.com; style-src 'self' 'unsafe-inline' *.credit-suisse.com *.employee-shares.com; img-src 'self' data: blob: *.credit-suisse.com *.employee-shares.com; connect-src 'self' wss: *.credit-suisse.com *.employee-shares.com; font-src 'self' data: ; worker-src 'self' blob: dnmb:; child-src 'self' data: blob: dnmb:;
Last-Modified: Wed, 16 Jun 2021 13:25:38 GMT
ETag: "1f2f-5c4e206b91880-gzip"
Accept-Ranges: bytes
Content-Type: text/html
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: no-store, no-cache, must-revalidate
X-Permitted-Cross-Domain-Policies: none
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked

direct.credit-suisse.com/cookie-check/cs/CookieCheckError.html?trg=AviMTQyrxUGdsqoPafA5NhFubSX-Za_G2MH_x3IQneAO4YeI4kmKjJhwufHQVBc-0ceGp14GjGM$

198.240.216.40

200 OK

1.9 kB

URL HTTP/1.1
direct.credit-suisse.com/cookie-check/cs/CookieCheckError.html?trg=AviMTQyrxUGdsqoPafA5NhFubSX-Za_G2MH_x3IQneAO4YeI4kmKjJhwufHQVBc-0ceGp14GjGM$
IP
198.240.216.40:0
ASN
#8729 Credit Suisse Group

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Size
1.9 kB (1923 bytes)
Hash
eeaaa1e93f3c6e86f993d32d863873db
41831692622171d761c7c3d17307db8514319bd6
fb91783e513ec5755d75a7b6cadd8c69b3f846415f3b7a0f464539b739565bb3

HTTP Headers

GET /cookie-check/cs/CookieCheckError.html?trg=AviMTQyrxUGdsqoPafA5NhFubSX-Za_G2MH_x3IQneAO4YeI4kmKjJhwufHQVBc-0ceGp14GjGM$ HTTP/1.1
Host: direct.credit-suisse.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://direct-credit-suisse-e1f47.web.app/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 05:56:09 GMT
Server: Credit Suisse Entry Server
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-XSS-Protection: 1; mode=block
X-Frame-Options: sameorigin
X-Content-Type-Options: nosniff
X-Robots-Tag: all
Content-Security-Policy: default-src dnmb: 'self' *.credit-suisse.com *.employee-shares.com; script-src dnmb: 'self' 'unsafe-inline' 'unsafe-eval' *.credit-suisse.com *.employee-shares.com; style-src 'self' 'unsafe-inline' *.credit-suisse.com *.employee-shares.com; img-src 'self' data: blob: *.credit-suisse.com *.employee-shares.com; connect-src 'self' wss: *.credit-suisse.com *.employee-shares.com; font-src 'self' data: ; worker-src 'self' blob: dnmb:; child-src 'self' data: blob: dnmb:;
Last-Modified: Wed, 16 Jun 2021 13:25:38 GMT
ETag: "1f2f-5c4e206b91880-gzip"
Accept-Ranges: bytes
Content-Type: text/html
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: no-store, no-cache, must-revalidate
X-Permitted-Cross-Domain-Policies: none
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked

cpnlify-default-rtdb.firebaseio.com/.ws?v=5

34.120.160.131

101 Switching Protocols

0 B

URL HTTP/1.1
cpnlify-default-rtdb.firebaseio.com/.ws?v=5
IP
34.120.160.131:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /.ws?v=5 HTTP/1.1
Host: cpnlify-default-rtdb.firebaseio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://direct-credit-suisse-e1f47.web.app
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: GOJraD1GWzYnyHJUmVC05Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Fri, 02 Dec 2022 05:56:09 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xUge/zJ3PNB+R1gdUzjyJiE2Eug=
Strict-Transport-Security: max-age=31556926; includeSubDomains; preload

firebaseinstallations.googleapis.com/v1/projects/cpnlify/installations

142.250.74.170

200 OK

488 B

URL HTTP/2
firebaseinstallations.googleapis.com/v1/projects/cpnlify/installations
IP
142.250.74.170:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (331)
Size
488 B (488 bytes)
Hash
7f2d61ab6c95d4b667c97b01e4bb41e4
db0a9627b0cec345b566083c6f9a0007c5188dca
982e14f74a1548c580ee2d4cc0b4075e677c5765c85d878b11e474679f75f4a4

HTTP Headers

POST /v1/projects/cpnlify/installations HTTP/1.1
Host: firebaseinstallations.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://direct-credit-suisse-e1f47.web.app/
content-type: application/json
x-goog-api-key: AIzaSyDPEubL0PW1RbCDnHLj0Hm3YtC-91zxGh4
Origin: https://direct-credit-suisse-e1f47.web.app
Content-Length: 130
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 02 Dec 2022 05:56:09 GMT
server: ESF
cache-control: private
content-length: 488
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://direct-credit-suisse-e1f47.web.app
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

region1.google-analytics.com/g/collect?v=2&tid=G-E64ZWXYFD5&gtm=2oebu0&_p=1899185667&_fid=dNg8SyfE-hsluN9vrT5FU6&cid=2000224600.1669960568&ul=en-us&sr=1280x1024&_s=1&sid=1669960567&sct=1&seg=0&dl=https%3A%2F%2Fdirect-credit-suisse-e1f47.web.app%2Flogin.html%3Fsession%3D1QshlMK5g5dL9440b8DbCyf5ncQezryyoRqfOWGz0OqAxbdL5EBkBw0dx8dvOClHuTay0ZRHU53nHfV8s51eJBTzrlvKHQJsQQ%26auth%3D13b87d4c-8b96-43dc-90cc-67a9fb032725&dr=https%3A%2F%2Fdirect-credit-suisse-e1f47.web.app%2F&dt=Login%20-%20Credit%20Suisse%20Direct%20%2F%20CSX&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.origin=firebase

216.239.34.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-E64ZWXYFD5&gtm=2oebu0&_p=1899185667&_fid=dNg8SyfE-hsluN9vrT5FU6&cid=2000224600.1669960568&ul=en-us&sr=1280x1024&_s=1&sid=1669960567&sct=1&seg=0&dl=https%3A%2F%2Fdirect-credit-suisse-e1f47.web.app%2Flogin.html%3Fsession%3D1QshlMK5g5dL9440b8DbCyf5ncQezryyoRqfOWGz0OqAxbdL5EBkBw0dx8dvOClHuTay0ZRHU53nHfV8s51eJBTzrlvKHQJsQQ%26auth%3D13b87d4c-8b96-43dc-90cc-67a9fb032725&dr=https%3A%2F%2Fdirect-credit-suisse-e1f47.web.app%2F&dt=Login%20-%20Credit%20Suisse%20Direct%20%2F%20CSX&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.origin=firebase
IP
216.239.34.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-E64ZWXYFD5&gtm=2oebu0&_p=1899185667&_fid=dNg8SyfE-hsluN9vrT5FU6&cid=2000224600.1669960568&ul=en-us&sr=1280x1024&_s=1&sid=1669960567&sct=1&seg=0&dl=https%3A%2F%2Fdirect-credit-suisse-e1f47.web.app%2Flogin.html%3Fsession%3D1QshlMK5g5dL9440b8DbCyf5ncQezryyoRqfOWGz0OqAxbdL5EBkBw0dx8dvOClHuTay0ZRHU53nHfV8s51eJBTzrlvKHQJsQQ%26auth%3D13b87d4c-8b96-43dc-90cc-67a9fb032725&dr=https%3A%2F%2Fdirect-credit-suisse-e1f47.web.app%2F&dt=Login%20-%20Credit%20Suisse%20Direct%20%2F%20CSX&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.origin=firebase HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://direct-credit-suisse-e1f47.web.app
Connection: keep-alive
Referer: https://direct-credit-suisse-e1f47.web.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://direct-credit-suisse-e1f47.web.app
date: Fri, 02 Dec 2022 05:56:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3784
Expires: Fri, 02 Dec 2022 06:59:14 GMT
Date: Fri, 02 Dec 2022 05:56:10 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3784
Expires: Fri, 02 Dec 2022 06:59:14 GMT
Date: Fri, 02 Dec 2022 05:56:10 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3784
Expires: Fri, 02 Dec 2022 06:59:14 GMT
Date: Fri, 02 Dec 2022 05:56:10 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3784
Expires: Fri, 02 Dec 2022 06:59:14 GMT
Date: Fri, 02 Dec 2022 05:56:10 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3784
Expires: Fri, 02 Dec 2022 06:59:14 GMT
Date: Fri, 02 Dec 2022 05:56:10 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb543a0f6-0efe-4518-9420-4eff88edf8e6.jpeg

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb543a0f6-0efe-4518-9420-4eff88edf8e6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4840 bytes)
Hash
60ccdde4ce64b4a3fe6fc2a059b3bde1
5ce119089f4a4cd139b523889b6cd84cd79191f4
2089225a6dc13845ab8e031416920d16952ae1461ca10d72c408ad001ed8f27b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb543a0f6-0efe-4518-9420-4eff88edf8e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4840
x-amzn-requestid: 6bc8fa91-5696-4bc6-b1e7-3c36b2c01801
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGxTFxyoAMFRzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e6e-3e85b78905aaa73726eef85a;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UraCGe--VISONXzaUBpA7vuLuD5l7zihtQIph7LVn1QsS8MjLBbvKw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:48:51 GMT
age: 29239
etag: "5ce119089f4a4cd139b523889b6cd84cd79191f4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

2.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
2.9 kB (2942 bytes)
Hash
b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fw6nrporwF27NW0-vXpaolW79nDXLF2RyS-lqhhp1osHt7q98VpI3g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:34:47 GMT
age: 30083
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6174 bytes)
Hash
b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 07:15:42 GMT
age: 81628
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F40b76495-d9ea-430e-9b62-92b639b122e0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6564 bytes)
Hash
58a28fc1cbcacdb07b3ca175281982b5
9bc47ee49fc070d0997e49a719bd9758685ad583
d3bfcf749c4652cb29f7c82a5d7ba940bd607f9060e49c1c40a112eb3e625bd9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F40b76495-d9ea-430e-9b62-92b639b122e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6564
x-amzn-requestid: e2875cf3-3915-43a5-a724-4de2ca03de56
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGepHOiIAMFTFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-5f7e2a3f609d54a609a12670;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mwGAEu-gPXY5Opwd972VbBA6l33dNk7bPFSyZmciaplQKj2ZuTkQSg==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:47:56 GMT
age: 29294
etag: "9bc47ee49fc070d0997e49a719bd9758685ad583"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ipinfo.io/json?token=3737089960275b

34.117.59.81

200 OK

12 kB

URL HTTP/2
ipinfo.io/json?token=3737089960275b
IP
34.117.59.81:0
ASN
#15169 GOOGLE

File type
data
Size
12 kB (11589 bytes)
Hash
823eab8f7ae2fea38e88472ffed248b0
d63a230776098f1e1ba0fcb7751aa12bee3e4007
0f4fba185a0d34e61d97645901b26dd6c1bba7071b21fd7b0d3b61b0d145d306

HTTP Headers

GET /json?token=3737089960275b HTTP/1.1
Host: ipinfo.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://direct-credit-suisse-e1f47.web.app/
Origin: https://direct-credit-suisse-e1f47.web.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-type: application/json; charset=utf-8
date: Fri, 02 Dec 2022 05:56:09 GMT
x-envoy-upstream-service-time: 2
strict-transport-security: max-age=2592000; includeSubDomains
vary: Accept-Encoding
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5183c67-4568-43c8-a2e7-7b41f5ca064b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4834 bytes)
Hash
cd8ad22c2eb1eb91c76970fa449f1bc4
0de97f3a4964038222bd751e043e413113e6db9d
668f805815aede3bc04f8564bd6aefd56029362bb0aa8a794673eb78ab2d4643

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5183c67-4568-43c8-a2e7-7b41f5ca064b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4834
x-amzn-requestid: 63a0b8b5-5cb3-4a1f-aa46-47c84abe726f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZQrjEeAIAMF3sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6386c7e3-0032799009f893ba79f314db;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 03:02:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bBj-TXtavCuORZ9qBoZeVj-GXeRljAeW-98HY7lTk5_VRSKF4_07VQ==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 04:22:38 GMT
age: 5612
etag: "0de97f3a4964038222bd751e043e413113e6db9d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

unpkg.com/axios/dist/axios.min.js

104.16.125.175

302 Found

0 B

URL HTTP/2
unpkg.com/axios/dist/axios.min.js
IP
104.16.125.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /axios/dist/axios.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://direct-credit-suisse-e1f47.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Fri, 02 Dec 2022 05:56:08 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /axios@1.2.0/dist/axios.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GK8P4J1TXJ64N4NYAJ7SDVKW-fra
cf-cache-status: HIT
age: 378
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7731d1527f51b50c-OSL
X-Firefox-Spdy: h2

unpkg.com/axios@1.2.0/dist/axios.min.js

104.16.125.175

200 OK

0 B

URL HTTP/2
unpkg.com/axios@1.2.0/dist/axios.min.js
IP
104.16.125.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /axios@1.2.0/dist/axios.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://direct-credit-suisse-e1f47.web.app/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 05:56:08 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"7396-Wc6sdIzlj1RsovoMRKQah8UZFhA"
via: 1.1 fly.io
fly-request-id: 01GJGC0D1SRCGJTEVMAF435H8Z-ams
cf-cache-status: HIT
age: 816306
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7731d153e863b50c-OSL
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (30)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations