r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4229cfe19d214d22153fe5833a7b557a
2439958496306a257d266050b4313b9bac51c871
ddfa83afe45b77b508119ac50488a73c3c49a78fa7a64ad983bd4958e0c7a4f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DDFA83AFE45B77B508119AC50488A73C3C49A78FA7A64AD983BD4958E0C7A4F9"
Last-Modified: Fri, 17 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2592
Expires: Sat, 18 Feb 2023 09:10:38 GMT
Date: Sat, 18 Feb 2023 08:27:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 50ffd49bee3840941f9fc33baca23aad
2ff715abc76ea138eff267a64f26eb2dc6365b4a
ff8709095d9b5a7d90ff10b31a6a9d2e071b42e215641d30dce6de6a782bffd6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF8709095D9B5A7D90FF10B31A6A9D2E071B42E215641D30DCE6DE6A782BFFD6"
Last-Modified: Fri, 17 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2791
Expires: Sat, 18 Feb 2023 09:13:57 GMT
Date: Sat, 18 Feb 2023 08:27:26 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Content-Length, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 18 Feb 2023 07:53:23 GMT
content-type: application/json
age: 2043
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5539e12eac82ed8486057f67e18231d3
866778ccdac94dbeff9bc217d4a057079ee71b2a
d82a876ba46480f2caa20e2112941bfb461bdb03e882949b347abb9e8006705f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D82A876BA46480F2CAA20E2112941BFB461BDB03E882949B347ABB9E8006705F"
Last-Modified: Fri, 17 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15952
Expires: Sat, 18 Feb 2023 12:53:18 GMT
Date: Sat, 18 Feb 2023 08:27:26 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: kipWKo/Y+CKOfaRbWxr4lDp/ywCPSE5TeiUa01iB7J82A+W5vZ7Eb0yT7G0OaCMEXATizbgdaUA=
x-amz-request-id: RTNK0C498667P4Y8
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 18 Feb 2023 08:21:26 GMT
age: 360
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 18 Feb 2023 08:27:26 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
crmunson.com/
69.49.235.141200 OK 15 kB IP 69.49.235.141:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (827), with CRLF line terminators
Hash bf9c8982c218add8a9de463247c53407
3a9bf0774fd03af94df997f00e4b24602d32643b
618e4380ed35cfd46086c9a0336a2f5108f630047bc2bb0d064d454dfc7080c1
Analyzer Verdict Alert fortinet Phishing
NIDS Severity Alert suricata high ET PHISHING Possible Phish - Mirrored Website Comment Observed
GET / HTTP/1.1
Host: crmunson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 18 Feb 2023 08:27:02 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.40
X-Powered-By: PHP/5.6.40
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
crmunson.com/css/icons/flaticon.css
69.49.235.141200 OK 11 kB URL HTTP/1.1 crmunson.com/css/icons/flaticon.css
IP 69.49.235.141:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash b82b6f8f50ab8024a4982297abbacc9e
f7df3a094bcee41b4724917916da831606374116
c769e6e4c86d94d767f7be2418ab85f4607de10adc79237b5c364630e64d20ba
GET /css/icons/flaticon.css HTTP/1.1
Host: crmunson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://crmunson.com/
HTTP/1.1 200 OK
Date: Sat, 18 Feb 2023 08:27:03 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.40
Last-Modified: Sun, 19 Jun 2016 22:00:00 GMT
ETag: "2c4b-535a8b5893800"
Accept-Ranges: bytes
Content-Length: 11339
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash e63744e37915212fad693944702dce5b
990fb1fa6ac8998fd4e2511bebc61fc07cafd36d
b428d79c98993419be4242061e1b3ef58d31309f87875535fcf7d5fa242da140
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Feb 2023 08:27:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash e63744e37915212fad693944702dce5b
990fb1fa6ac8998fd4e2511bebc61fc07cafd36d
b428d79c98993419be4242061e1b3ef58d31309f87875535fcf7d5fa242da140
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Feb 2023 08:27:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 06e06b8a5a6fd7eb0580e616478b58b8
c1e3a37c3c6b831fad95fb469ddbcd7154e5a3e8
5b8ac8bdb71711d0ac3c2cff8d21d1fee72f17042acbb70d59dde449b3745429
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Feb 2023 08:27:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, Alert, Content-Length, Backoff, ETag, Cache-Control, Retry-After, Last-Modified, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 18 Feb 2023 08:20:33 GMT
age: 414
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 06e06b8a5a6fd7eb0580e616478b58b8
c1e3a37c3c6b831fad95fb469ddbcd7154e5a3e8
5b8ac8bdb71711d0ac3c2cff8d21d1fee72f17042acbb70d59dde449b3745429
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Feb 2023 08:27:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
crmunson.com/css/bootstrap.offcanvas.min.css
69.49.235.141200 OK 1.8 kB URL HTTP/1.1 crmunson.com/css/bootstrap.offcanvas.min.css
IP 69.49.235.141:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1822), with CRLF line terminators
Hash 99d54bd3620ae387a381dcf95322937f
3ae23877c64450ae3b8c86c474c69185cdb30ec0
97ca541b0f33bd826c7df552b945ff08835d86ad2e46a0d43485c25322c4ae34
GET /css/bootstrap.offcanvas.min.css HTTP/1.1
Host: crmunson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://crmunson.com/
HTTP/1.1 200 OK
Date: Sat, 18 Feb 2023 08:27:03 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.40
Last-Modified: Fri, 30 Jun 2017 22:00:00 GMT
ETag: "720-5533489de3800"
Accept-Ranges: bytes
Content-Length: 1824
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
crmunson.com/css/technology-icon/flaticon.css
69.49.235.141200 OK 11 kB URL HTTP/1.1 crmunson.com/css/technology-icon/flaticon.css
IP 69.49.235.141:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash b82b6f8f50ab8024a4982297abbacc9e
f7df3a094bcee41b4724917916da831606374116
c769e6e4c86d94d767f7be2418ab85f4607de10adc79237b5c364630e64d20ba
GET /css/technology-icon/flaticon.css HTTP/1.1
Host: crmunson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://crmunson.com/
HTTP/1.1 200 OK
Date: Sat, 18 Feb 2023 08:27:03 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.40
Last-Modified: Mon, 20 Jun 2016 22:00:00 GMT
ETag: "2c4b-535bcd3609800"
Accept-Ranges: bytes
Content-Length: 11339
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
crmunson.com/css/responsive.css
69.49.235.141200 OK 11 kB URL HTTP/1.1 crmunson.com/css/responsive.css
IP 69.49.235.141:0
ASN #46606 UNIFIEDLAYER-AS-1
File type assembler source, ASCII text, with CRLF line terminators
Hash d56b434ff5c4ea4fd8cb2f9c61a57224
eb027b39a1bd417031dbf78b7e879e4c9aeb7b00
de3fb70e0bd1b702f5b2842a1b4d2bd3190bc4cdefc71b06cb4658bb0fd8276e
GET /css/responsive.css HTTP/1.1
Host: crmunson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://crmunson.com/
HTTP/1.1 200 OK
Date: Sat, 18 Feb 2023 08:27:03 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.40
Last-Modified: Fri, 21 Dec 2018 23:00:00 GMT
ETag: "2b31-57d9034e8fc00"
Accept-Ranges: bytes
Content-Length: 11057
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ffe8651a83ebc937a53bf14c980c348e
8fe2f9219fbe52ee890533f94dd617da679050a4
96149e604ad1e11ab2b100b60e4605b7213f215b0a788506185def01954cb70f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96149E604AD1E11AB2B100B60E4605B7213F215B0A788506185DEF01954CB70F"
Last-Modified: Fri, 17 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8611
Expires: Sat, 18 Feb 2023 10:50:58 GMT
Date: Sat, 18 Feb 2023 08:27:27 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash e63744e37915212fad693944702dce5b
990fb1fa6ac8998fd4e2511bebc61fc07cafd36d
b428d79c98993419be4242061e1b3ef58d31309f87875535fcf7d5fa242da140
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Feb 2023 08:27:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
crmunson.com/js/popper.min.js
69.49.235.141200 OK 19 kB URL HTTP/1.1 crmunson.com/js/popper.min.js
IP 69.49.235.141:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (18860), with CRLF line terminators
Hash 5f7af23794880b1acd7daedbbd8bcadc
878ce549fe305c1bfe58c1e0fb3e2e2a8653058f
a4fdb686bb2241b8a29e194b0ec6db16f997bde526ae5b37b8ab3c48aaa7a747
Analyzer Verdict Alert fortinet Phishing
GET /js/popper.min.js HTTP/1.1
Host: crmunson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://crmunson.com/
HTTP/1.1 200 OK
Date: Sat, 18 Feb 2023 08:27:03 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.40
Last-Modified: Tue, 15 Aug 2017 22:00:00 GMT
ETag: "4a36-556d1e6917800"
Accept-Ranges: bytes
Content-Length: 18998
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
crmunson.com/css/animate.css
69.49.235.141200 OK 76 kB URL HTTP/1.1 crmunson.com/css/animate.css
IP 69.49.235.141:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 1aaa8beecce19062646761f002462694
682ae6b92a88b8e1424f72070422772030f1030a
213e86422cd9a5571a335fcbfe6222340615bd912b3207f07b07f51865971bf2
GET /css/animate.css HTTP/1.1
Host: crmunson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://crmunson.com/
HTTP/1.1 200 OK
Date: Sat, 18 Feb 2023 08:27:03 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.40
Last-Modified: Sat, 03 Jun 2017 22:00:00 GMT
ETag: "1274f-5511564271800"
Accept-Ranges: bytes
Content-Length: 75599
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
crmunson.com/css/fontawesome-all.min.css
69.49.235.141200 OK 54 kB URL HTTP/1.1 crmunson.com/css/fontawesome-all.min.css
IP 69.49.235.141:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (53568), with CRLF line terminators
Hash a265b3bae0e5f9288d88c7af688719c0
c3e2ff42a07d744e39dd49d637edd3f8174a94e8
839e3134d9e3ae21952d3661d3ebf9ec6ad4e32822f55a6a8c80584fce4e8fe4
GET /css/fontawesome-all.min.css HTTP/1.1
Host: crmunson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://crmunson.com/
HTTP/1.1 200 OK
Date: Sat, 18 Feb 2023 08:27:03 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.40
Last-Modified: Wed, 12 Dec 2018 23:00:00 GMT
ETag: "d1fd-57cdb28569c00"
Accept-Ranges: bytes
Content-Length: 53757
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
crmunson.com/js/particles-code.js
69.49.235.141200 OK 45 kB URL HTTP/1.1 crmunson.com/js/particles-code.js
IP 69.49.235.141:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 200df641b711e5faf5e869662a7d8844
65991b50c88b801f2780bf0fbbdb1da586f335a2
ae9daf28c920a0614c93a0af51c49962bcc11e14a247ab83581c29ed7a65bdba
Analyzer Verdict Alert fortinet Phishing
GET /js/particles-code.js HTTP/1.1
Host: crmunson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://crmunson.com/
HTTP/1.1 200 OK
Date: Sat, 18 Feb 2023 08:27:03 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.40
Last-Modified: Mon, 10 Sep 2018 22:00:00 GMT
ETag: "ae1e-5758b7a851800"
Accept-Ranges: bytes
Content-Length: 44574
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
crmunson.com/css/bootstrap.min.css
69.49.235.141200 OK 141 kB URL HTTP/1.1 crmunson.com/css/bootstrap.min.css
IP 69.49.235.141:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65319), with CRLF line terminators
Size 141 kB (140936 bytes)
Hash e59aa29ac4a3d18d092f6ba813ae1997
c4141255658403c38e1306d2fe196575522d6cc3
9ef4fbe459177af5f4e9647cbe584514fd36c7386af6a1712d03ae4b42e45b24
GET /css/bootstrap.min.css HTTP/1.1
Host: crmunson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://crmunson.com/
HTTP/1.1 200 OK
Date: Sat, 18 Feb 2023 08:27:03 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.40
Last-Modified: Wed, 04 Jul 2018 22:00:00 GMT
ETag: "22688-570338d4f9800"
Accept-Ranges: bytes
Content-Length: 140936
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
crmunson.com/js/bootstrap.min.js
69.49.235.141200 OK 51 kB URL HTTP/1.1 crmunson.com/js/bootstrap.min.js
IP 69.49.235.141:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (50452), with CRLF line terminators
Hash 628139f9a9db718b444a645948714eb1
20e03d4082c74fab27f4240c32e26bd06ba78b39
314c9ebed8f068a011db734de48f92b22edcb6702335451ec99ca37045ba3b4e
Analyzer Verdict Alert fortinet Phishing
GET /js/bootstrap.min.js HTTP/1.1
Host: crmunson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://crmunson.com/
HTTP/1.1 200 OK
Date: Sat, 18 Feb 2023 08:27:03 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.40
Last-Modified: Wed, 04 Jul 2018 22:00:00 GMT
ETag: "c633-570338d4f9800"
Accept-Ranges: bytes
Content-Length: 50739
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
push.services.mozilla.com/
52.43.253.52101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.253.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: p15ZQjm21ixZqd8k3+yIJg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: P3Q5Gby1RAacN9ybmbDh4uiyoU0=
crmunson.com/js/typed.js
69.49.235.141200 OK 7.8 kB IP 69.49.235.141:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash e089649857b69ac2b37521462e262428
55794139d3df790d730cf9b5aa6a62c0170d1a9a
853e1dfe584400576605dd09695f7c4107102fdfd927ae45a807e75b9edab5f3
Analyzer Verdict Alert fortinet Phishing
GET /js/typed.js HTTP/1.1
Host: crmunson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://crmunson.com/
HTTP/1.1 200 OK
Date: Sat, 18 Feb 2023 08:27:03 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.40
Last-Modified: Tue, 03 Oct 2017 22:00:00 GMT
ETag: "1e78-55aab9ccad800"
Accept-Ranges: bytes
Content-Length: 7800
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
crmunson.com/js/smoothscroll.js
69.49.235.141200 OK 4.6 kB URL HTTP/1.1 crmunson.com/js/smoothscroll.js
IP 69.49.235.141:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4388), with CRLF line terminators
Hash b4091c4fa052a58ce23de2984cdee89d
1775ef85d29d00e8bd8bc878e6204875ce83d124
cf9486e595f73bfc1db92cb5927685d43d10604f31c1047398c9d772ad4b54ea
Analyzer Verdict Alert fortinet Phishing
GET /js/smoothscroll.js HTTP/1.1
Host: crmunson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://crmunson.com/
HTTP/1.1 200 OK
Date: Sat, 18 Feb 2023 08:27:03 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.40
Last-Modified: Thu, 24 Sep 2015 22:00:00 GMT
ETag: "11e3-520855a395800"
Accept-Ranges: bytes
Content-Length: 4579
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
crmunson.com/js/scripts.js
69.49.235.141200 OK 3.9 kB URL HTTP/1.1 crmunson.com/js/scripts.js
IP 69.49.235.141:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 1fb507733704f2b6337f05284142a041
ce23b4f7ab78768e0c0501e3b1571d94e2e02c09
aa6b0dd14de43354e634468917ef0af3fd7a1bc589fa4b92344695151df446be
Analyzer Verdict Alert fortinet Phishing
GET /js/scripts.js HTTP/1.1
Host: crmunson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://crmunson.com/
HTTP/1.1 200 OK
Date: Sat, 18 Feb 2023 08:27:03 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.40
Last-Modified: Thu, 27 Jun 2019 22:00:00 GMT
ETag: "f6c-58c55487fd800"
Accept-Ranges: bytes
Content-Length: 3948
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
crmunson.com/js/particles.js
69.49.235.141200 OK 1.5 kB URL HTTP/1.1 crmunson.com/js/particles.js
IP 69.49.235.141:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 7e0aa4773c02cd5aff4c0a6f8df9afab
cea34436d84cc4a204aee43bc28c628e3371a491
a0b92c2f8288581f7f77ecbd03a0420724ec0021d4c3bd506aaaab65d9e6f868
Analyzer Verdict Alert fortinet Phishing
GET /js/particles.js HTTP/1.1
Host: crmunson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://crmunson.com/
HTTP/1.1 200 OK
Date: Sat, 18 Feb 2023 08:27:03 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.40
Last-Modified: Mon, 10 Sep 2018 22:00:00 GMT
ETag: "5ca-5758b7a851800"
Accept-Ranges: bytes
Content-Length: 1482
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
crmunson.com/js/video-bg.js
69.49.235.141200 OK 1.9 kB URL HTTP/1.1 crmunson.com/js/video-bg.js
IP 69.49.235.141:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash d9e65557d6cc476bb494832518a599d3
8ac156cc0059149dc265438a711078f08a18e06b
b21a58c69df22afc6c25f6a7c3a0c194591a21aa2543cafdae8af4e9f1c8e399
Analyzer Verdict Alert fortinet Phishing
GET /js/video-bg.js HTTP/1.1
Host: crmunson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://crmunson.com/
HTTP/1.1 200 OK
Date: Sat, 18 Feb 2023 08:27:03 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.40
Last-Modified: Sat, 03 Nov 2018 23:00:00 GMT
ETag: "770-579ca9c86fc00"
Accept-Ranges: bytes
Content-Length: 1904
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
crmunson.com/css/icons-t/flaticon.css
69.49.235.141200 OK 4.1 kB URL HTTP/1.1 crmunson.com/css/icons-t/flaticon.css
IP 69.49.235.141:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 484c8ffd501c4c1817064b138fcf6cc6
83e79b54487f10ae9f3e5982625db94451fdc143
4986bb3bbd48afb14dd6bff2ac2fbfa54de9b53ea8c69e811916b256dba918c0
GET /css/icons-t/flaticon.css HTTP/1.1
Host: crmunson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://crmunson.com/
HTTP/1.1 200 OK
Date: Sat, 18 Feb 2023 08:27:03 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.40
Last-Modified: Sat, 15 Apr 2017 22:00:00 GMT
ETag: "1004-54d3badedb800"
Accept-Ranges: bytes
Content-Length: 4100
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
crmunson.com/js/jquery.min.js
69.49.235.141200 OK 97 kB URL HTTP/1.1 crmunson.com/js/jquery.min.js
IP 69.49.235.141:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32077), with CRLF line terminators
Hash 618538b4ab9639d444e962729a927f15
dacc1f76630a9708add066819b1aabf8dce01056
27d92130c0321dad5a03760fd5ac98a3d04ed4c94d88418fe6d50da1f7fc5cbe
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery.min.js HTTP/1.1
Host: crmunson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://crmunson.com/
HTTP/1.1 200 OK
Date: Sat, 18 Feb 2023 08:27:03 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.40
Last-Modified: Wed, 21 Jun 2017 22:00:00 GMT
ETag: "17b90-5527f7d4bd800"
Accept-Ranges: bytes
Content-Length: 97168
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
crmunson.com/css/main.css
69.49.235.141200 OK 169 kB URL HTTP/1.1 crmunson.com/css/main.css
IP 69.49.235.141:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Size 169 kB (169063 bytes)
Hash 876730367a95f2aeb82b5c639dee5852
4fc8fd976fa1326d9abe9dbb156a5e2c6f2e3e68
b242de53337429d050a7c98b75dbeaec62bb983f77249e75e391e024edb5b9dd
GET /css/main.css HTTP/1.1
Host: crmunson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://crmunson.com/
HTTP/1.1 200 OK
Date: Sat, 18 Feb 2023 08:27:03 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.40
Last-Modified: Wed, 19 Dec 2018 23:00:00 GMT
ETag: "29467-57d67f93a3c00"
Accept-Ranges: bytes
Content-Length: 169063
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 08d2a5c0c4fd99b381e5d9b61bfc20c0
50db917e90097c318c77e9934b3d618b02a3dd6d
bb303e18974f9f5756b6af298d30bce6a0a22b0a11490e77ce34567d64b4b519
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Feb 2023 08:27:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 08d2a5c0c4fd99b381e5d9b61bfc20c0
50db917e90097c318c77e9934b3d618b02a3dd6d
bb303e18974f9f5756b6af298d30bce6a0a22b0a11490e77ce34567d64b4b519
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Feb 2023 08:27:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Montserrat:300,400,600,700
142.250.74.74200 OK 1.0 kB URL HTTP/2 fonts.googleapis.com/css?family=Montserrat:300,400,600,700
IP 142.250.74.74:0
Hash 243718c2d8668629285db45e6e181df3
c86b60752789edb1fb96b8534be8a5efe387484a
60e1448a5a83375704ba62906c19428fdf4d2af85c9d9af8585a37f324f1e50d
GET /css?family=Montserrat:300,400,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://crmunson.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 18 Feb 2023 08:27:27 GMT
date: Sat, 18 Feb 2023 08:27:27 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2
216.58.207.227200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 35904, version 1.0\012- data
Hash c26b97e7f5bb7a34d190703522d75e16
69d9e5aea0544dbaf9b78c1b65139c03eceece8f
96217f1d27fb909f92b4a6b35a0d3d6775f2f0b4d136d27aee88547d3ed87357
GET /s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://crmunson.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35904
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 12 Feb 2023 07:32:25 GMT
expires: Mon, 12 Feb 2024 07:32:25 GMT
cache-control: public, max-age=31536000
age: 521702
last-modified: Mon, 18 Jul 2022 19:34:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/heebo/v21/NGS6v5_NC0k9P9H2TbE.woff2
216.58.207.227200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/heebo/v21/NGS6v5_NC0k9P9H2TbE.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 27116, version 1.0\012- data
Hash 13c1ac7fc8f934e169620e81471a3a54
d111242b230c54204e9ec061537869f8ce20cb53
b38977ea35fde92fe200fa14ac7cc55e2edce54b998ce9a08734ba1dd9053fed
GET /s/heebo/v21/NGS6v5_NC0k9P9H2TbE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://crmunson.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27116
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 17 Feb 2023 02:08:11 GMT
expires: Sat, 17 Feb 2024 02:08:11 GMT
cache-control: public, max-age=31536000
age: 109156
last-modified: Mon, 11 Jul 2022 20:35:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 08d2a5c0c4fd99b381e5d9b61bfc20c0
50db917e90097c318c77e9934b3d618b02a3dd6d
bb303e18974f9f5756b6af298d30bce6a0a22b0a11490e77ce34567d64b4b519
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 18 Feb 2023 08:27:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
crmunson.com/media/fallback.jpg
69.49.235.141404 Not Found 216 B URL HTTP/1.1 crmunson.com/media/fallback.jpg
IP 69.49.235.141:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash cd38781c37313762f12af0ca0b4aff46
6cb7a9bb9bf685aadd6b0ff229334bc9880777c5
4ca0fe8521d8926edf81181e02d5a9f587f24d291022a6b23d2c73d9f464fbec
GET /media/fallback.jpg HTTP/1.1
Host: crmunson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://crmunson.com/css/main.css
HTTP/1.1 404 Not Found
Date: Sat, 18 Feb 2023 08:27:04 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.40
Content-Length: 216
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
crmunson.com/img/header/curve-layer.svg
69.49.235.141200 OK 550 B URL HTTP/1.1 crmunson.com/img/header/curve-layer.svg
IP 69.49.235.141:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1dac662fc921126048e1e9097c3a4be1
705520c148d9f470b8e9d2673f2161a1f6ee4181
86ad00eee13f07e717ff8bc887c9583bd8d8643fd82e0f8abe73e3fa9a12c209
Analyzer Verdict Alert fortinet Phishing
GET /img/header/curve-layer.svg HTTP/1.1
Host: crmunson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://crmunson.com/css/main.css
HTTP/1.1 200 OK
Date: Sat, 18 Feb 2023 08:27:04 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.40
Last-Modified: Wed, 26 Jun 2019 22:00:00 GMT
ETag: "226-58c412aa87800"
Accept-Ranges: bytes
Content-Length: 550
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml
crmunson.com/favicon.ico
69.49.235.141404 Not Found 209 B IP 69.49.235.141:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 18ffb59b61525f781cf9251045be575d
bd7318b00b15b7a1c8a48524419fa2e5c27a5b6d
b6682cab65d3243b5b75efb7279dbf49491957484780f2ba0a87632cc0e25642
GET /favicon.ico HTTP/1.1
Host: crmunson.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://crmunson.com/
HTTP/1.1 404 Not Found
Date: Sat, 18 Feb 2023 08:27:04 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.6.40
Content-Length: 209
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 517d5d39154208d06675862996f2a78a
2dcfe23611fe04343afacde3b4a23a10f385a79a
9346961872cee9e8714dc306246e81af5c2225a0895b43c28616e343da705156
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9346961872CEE9E8714DC306246E81AF5C2225A0895B43C28616E343DA705156"
Last-Modified: Fri, 17 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5748
Expires: Sat, 18 Feb 2023 10:03:17 GMT
Date: Sat, 18 Feb 2023 08:27:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 517d5d39154208d06675862996f2a78a
2dcfe23611fe04343afacde3b4a23a10f385a79a
9346961872cee9e8714dc306246e81af5c2225a0895b43c28616e343da705156
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9346961872CEE9E8714DC306246E81AF5C2225A0895B43C28616E343DA705156"
Last-Modified: Fri, 17 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5748
Expires: Sat, 18 Feb 2023 10:03:17 GMT
Date: Sat, 18 Feb 2023 08:27:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 517d5d39154208d06675862996f2a78a
2dcfe23611fe04343afacde3b4a23a10f385a79a
9346961872cee9e8714dc306246e81af5c2225a0895b43c28616e343da705156
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9346961872CEE9E8714DC306246E81AF5C2225A0895B43C28616E343DA705156"
Last-Modified: Fri, 17 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5748
Expires: Sat, 18 Feb 2023 10:03:17 GMT
Date: Sat, 18 Feb 2023 08:27:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 517d5d39154208d06675862996f2a78a
2dcfe23611fe04343afacde3b4a23a10f385a79a
9346961872cee9e8714dc306246e81af5c2225a0895b43c28616e343da705156
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9346961872CEE9E8714DC306246E81AF5C2225A0895B43C28616E343DA705156"
Last-Modified: Fri, 17 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5748
Expires: Sat, 18 Feb 2023 10:03:17 GMT
Date: Sat, 18 Feb 2023 08:27:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 517d5d39154208d06675862996f2a78a
2dcfe23611fe04343afacde3b4a23a10f385a79a
9346961872cee9e8714dc306246e81af5c2225a0895b43c28616e343da705156
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9346961872CEE9E8714DC306246E81AF5C2225A0895B43C28616E343DA705156"
Last-Modified: Fri, 17 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5748
Expires: Sat, 18 Feb 2023 10:03:17 GMT
Date: Sat, 18 Feb 2023 08:27:29 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2b480279-2590-4382-81b1-24b027e07e23.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2b480279-2590-4382-81b1-24b027e07e23.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e69d793b99a3580240403d04ac2aa684
4d27074ad95bd4bde2fb79f4b2ecb11434b3c8c8
3ead4940dbccbae1663545f603abf717d3e27726469bbf6939a18cd9c74bbc8b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2b480279-2590-4382-81b1-24b027e07e23.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11525
x-amzn-requestid: 6976315f-a5c5-4268-ba27-ee4407b86407
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AgMITFBioAMFweg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63eff3ce-0b750d8e643e823042d5cf88;Sampled=0
x-amzn-remapped-date: Fri, 17 Feb 2023 21:38:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: L2PzNWMjVRStB_TRH8VDBLhHhnpZdnz3nSfVkMEvrcZgUYI81UifYw==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Feb 2023 21:49:26 GMT
age: 38283
etag: "4d27074ad95bd4bde2fb79f4b2ecb11434b3c8c8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881c24a9-07ee-4126-b2c3-501b0461ee5e.webp
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881c24a9-07ee-4126-b2c3-501b0461ee5e.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9c5a0bab7d34e51ee6476be179b356ba
87917d3cf520d73b7b1029f44505e7700413d51d
136e727a99409218318247b645558fad485ed84bcd90bd43a5895492cb317d89
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881c24a9-07ee-4126-b2c3-501b0461ee5e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6879
x-amzn-requestid: 18c46562-f8d9-4f7f-8ea0-1bb46e206f80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ANnahEWgIAMFwYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e885dc-50a7cfe4693b4efb038ce1a7;Sampled=0
x-amzn-remapped-date: Sun, 12 Feb 2023 06:23:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: K3teFfj79RPIRVaLUr5b2XMz3Jb5g8AeZCce6ZAAZmjOSJWr1QIsNw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Feb 2023 15:50:14 GMT
age: 59835
etag: "87917d3cf520d73b7b1029f44505e7700413d51d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2cc0998-c85a-4eab-ac27-66e20e3ea713.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2cc0998-c85a-4eab-ac27-66e20e3ea713.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6242239a1991442f56dc7a394b593f98
0e3d59976e387eddd3cce4f6bd3a1e7f8c6f3d6f
76827a94de2b9f7b5fc4a6eb200270540c49f43a6cb371b817180cb2de175308
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2cc0998-c85a-4eab-ac27-66e20e3ea713.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7834
x-amzn-requestid: fe59e8b9-9822-406e-a759-2798114ccd13
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AgMS7FyiIAMF3nw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63eff412-791cf56720aeab7908a2a323;Sampled=0
x-amzn-remapped-date: Fri, 17 Feb 2023 21:39:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oN4NdDg7CxO5yxmcHXTHp3o_7kqPDRpZBvL7Aos_SaHxMOSt7Jk3Iw==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Feb 2023 22:30:50 GMT
age: 35799
etag: "0e3d59976e387eddd3cce4f6bd3a1e7f8c6f3d6f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71756792-ffb1-475b-ba11-f70651804cd9.jpeg
34.120.237.76200 OK 2.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71756792-ffb1-475b-ba11-f70651804cd9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2dfa585428849b6dc335e73c289fd739
18a5ba928a944006cf635a0899209beaad9ee86c
c0773286b48e99dc712cbaeafa1f6d44ea6dd47a7c13559ca62de0cff360f1e5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71756792-ffb1-475b-ba11-f70651804cd9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2370
x-amzn-requestid: 68e4d9cf-16c7-4839-a4d5-c83bafafd568
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AgMInHOHIAMFQtg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63eff3d0-1baa23a012c3c20030f03794;Sampled=0
x-amzn-remapped-date: Fri, 17 Feb 2023 21:38:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: B3o-CIsgIzv8Iqe_bK_IRYcOIPPuQOsWP7EFdQIRFh2hp0-L65HiaQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Feb 2023 21:49:28 GMT
age: 38281
etag: "18a5ba928a944006cf635a0899209beaad9ee86c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56003924-e7e6-4f4a-b1d1-31bde499e56a.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56003924-e7e6-4f4a-b1d1-31bde499e56a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 848745d081ceb438f5d304081814c2d1
f736a1755fd9a2b5a5721602ac3b7758abc50396
0762a9fc3b2340aa961897519d33adb7c0f36949abb8a083c6c3b056f2bc1f98
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56003924-e7e6-4f4a-b1d1-31bde499e56a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9894
x-amzn-requestid: f05182eb-fde7-41b5-b8ef-81b3d46e1562
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AgMSDFtEoAMFXXw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63eff40c-74d0ec195c13b0035d470b9d;Sampled=0
x-amzn-remapped-date: Fri, 17 Feb 2023 21:39:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tdschUpwqV9YRKEupELn3CoyKuopQRKqjGljAPPxAyS7GqgXZMqqcg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Feb 2023 21:50:28 GMT
age: 38221
etag: "f736a1755fd9a2b5a5721602ac3b7758abc50396"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e12c8c7-32f8-44a1-8812-88fe3ae9e9cd.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e12c8c7-32f8-44a1-8812-88fe3ae9e9cd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 41cb05102baf97aa4ad58ae9b12e6c97
6317abbf1df9601638280451cacdfba3d7bd97d5
1fe6e178e6e296a863c9f3a0fc773c8677a0f0c1933565be7c3338b7fb61004e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e12c8c7-32f8-44a1-8812-88fe3ae9e9cd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9051
x-amzn-requestid: 0bb8acdf-5677-4e9f-b7f4-881807fa7f8d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AgLzRFXVIAMFjXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63eff347-0637edbe03bc1e4e54fc8a53;Sampled=0
x-amzn-remapped-date: Fri, 17 Feb 2023 21:36:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -3TBEo8XucgjMt_ffKsA18H2iBfL3RFBLFgW_W14wiIdZ6HrGQ0Y7g==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Feb 2023 22:00:34 GMT
age: 37615
etag: "6317abbf1df9601638280451cacdfba3d7bd97d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Heebo:300,400,500,700
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Heebo:300,400,500,700
IP 142.250.74.74:0
GET /css?family=Heebo:300,400,500,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://crmunson.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 18 Feb 2023 08:27:27 GMT
date: Sat, 18 Feb 2023 08:27:27 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Pacifico
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Pacifico
IP 142.250.74.74:0
GET /css?family=Pacifico HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://crmunson.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 18 Feb 2023 08:27:27 GMT
date: Sat, 18 Feb 2023 08:27:27 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Nunito:300,400,700
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Nunito:300,400,700
IP 142.250.74.74:0
GET /css?family=Nunito:300,400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://crmunson.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 18 Feb 2023 08:27:27 GMT
date: Sat, 18 Feb 2023 08:27:27 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2