r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7af19a5145a4ee99bdf18831bad04bfd
7bdd2a4785b999ef54a2644211d2b2b7190fb8e1
3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0"
Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6215
Expires: Fri, 31 Mar 2023 10:24:19 GMT
Date: Fri, 31 Mar 2023 08:40:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cca063332ba9a89eadd62a8dd7f81a9b
d473b2a7a32c964599ff3bac8f98fa578f03d1d1
02fb74c7c695ad99f7f2fd7c02ae2b88e2da1c5db339f883333d9090291931dc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02FB74C7C695AD99F7F2FD7C02AE2B88E2DA1C5DB339F883333D9090291931DC"
Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8274
Expires: Fri, 31 Mar 2023 10:58:38 GMT
Date: Fri, 31 Mar 2023 08:40:44 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 7f03faaba3392caae6dae54467bfdf6d
57ea1f14e8bfbcca8190c706d708c9fda12442c1
02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 31 Mar 2023 08:16:10 GMT
content-type: application/json
age: 1474
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 76218c893040d958ae1c4231cdd2133c
6a7b336dee91d4aec26ace0a5883ecdfac52e68f
d35492b04d16ed00e9e195e7c84c99aa6a2b8a93abeb656baae0918986f0a7e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D35492B04D16ED00E9E195E7C84C99AA6A2B8A93ABEB656BAAE0918986F0A7E4"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6623
Expires: Fri, 31 Mar 2023 10:31:07 GMT
Date: Fri, 31 Mar 2023 08:40:44 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Pu5LkbEJVLW4tPQUr+VdFnPBYhRcPKrLJfxZll8nzHpd1NDBFaxWLbZrRppUKeRosCNMZ8020TM=
x-amz-request-id: RMW4M25ZXTJF0XWT
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 31 Mar 2023 08:34:01 GMT
age: 403
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 08:40:44 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Backoff, Last-Modified, Alert, Content-Length, Pragma, Cache-Control, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 31 Mar 2023 08:17:26 GMT
age: 1398
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 782ca4845ea5e0ec981e33231b1e61cb
032116b75e124c57877524e9e4f523b6d7c65820
94d007862fc7a4cd67f582ff22f2339619177435559c1dd5075a08c7240f3520
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94D007862FC7A4CD67F582FF22F2339619177435559C1DD5075A08C7240F3520"
Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19180
Expires: Fri, 31 Mar 2023 14:00:24 GMT
Date: Fri, 31 Mar 2023 08:40:44 GMT
Connection: keep-alive
push.services.mozilla.com/
52.35.3.113101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.35.3.113:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: G+G1zKVlVrl1eJZ5Ng72YQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: cQHsC/4SnFYBS2Y2wVt5/mdf3mg=
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash fddcb9f185e28dc8bcd148ad39e2a97b
5bbd88f46e1599caeecdbe64cf0d5d21b1e47eb7
cd397af7c1ac10c382ec8c17af2f90a79f11c817dca00918d8f16b93176d85c3
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "CD397AF7C1AC10C382EC8C17AF2F90A79F11C817DCA00918D8F16B93176D85C3"
Last-Modified: Thu, 30 Mar 2023 23:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=2950
Expires: Fri, 31 Mar 2023 09:29:55 GMT
Date: Fri, 31 Mar 2023 08:40:45 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash fddcb9f185e28dc8bcd148ad39e2a97b
5bbd88f46e1599caeecdbe64cf0d5d21b1e47eb7
cd397af7c1ac10c382ec8c17af2f90a79f11c817dca00918d8f16b93176d85c3
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "CD397AF7C1AC10C382EC8C17AF2F90A79F11C817DCA00918D8F16B93176D85C3"
Last-Modified: Thu, 30 Mar 2023 23:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=2950
Expires: Fri, 31 Mar 2023 09:29:55 GMT
Date: Fri, 31 Mar 2023 08:40:45 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash fddcb9f185e28dc8bcd148ad39e2a97b
5bbd88f46e1599caeecdbe64cf0d5d21b1e47eb7
cd397af7c1ac10c382ec8c17af2f90a79f11c817dca00918d8f16b93176d85c3
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "CD397AF7C1AC10C382EC8C17AF2F90A79F11C817DCA00918D8F16B93176D85C3"
Last-Modified: Thu, 30 Mar 2023 23:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=2950
Expires: Fri, 31 Mar 2023 09:29:55 GMT
Date: Fri, 31 Mar 2023 08:40:45 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash fddcb9f185e28dc8bcd148ad39e2a97b
5bbd88f46e1599caeecdbe64cf0d5d21b1e47eb7
cd397af7c1ac10c382ec8c17af2f90a79f11c817dca00918d8f16b93176d85c3
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "CD397AF7C1AC10C382EC8C17AF2F90A79F11C817DCA00918D8F16B93176D85C3"
Last-Modified: Thu, 30 Mar 2023 23:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=2950
Expires: Fri, 31 Mar 2023 09:29:55 GMT
Date: Fri, 31 Mar 2023 08:40:45 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash fddcb9f185e28dc8bcd148ad39e2a97b
5bbd88f46e1599caeecdbe64cf0d5d21b1e47eb7
cd397af7c1ac10c382ec8c17af2f90a79f11c817dca00918d8f16b93176d85c3
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "CD397AF7C1AC10C382EC8C17AF2F90A79F11C817DCA00918D8F16B93176D85C3"
Last-Modified: Thu, 30 Mar 2023 23:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=2950
Expires: Fri, 31 Mar 2023 09:29:55 GMT
Date: Fri, 31 Mar 2023 08:40:45 GMT
Connection: keep-alive
www1.bac-assets.com/homepage/spa-assets/images/assets-images-site-hp-assets-offers-ME_Batch1_Gen_L1_Tile_243x105.webp
192.229.233.230200 OK 728 B URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/images/assets-images-site-hp-assets-offers-ME_Batch1_Gen_L1_Tile_243x105.webp
IP 192.229.233.230:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 243x105, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash df9f3bf8aa5865301323a569fe62fbe7
93bb04e936f1a56defb6e7bc88e08d24815f5f39
5314ce08621ae1844b4ef0c672d68effcb3ade4009909fdf835c97166fda7500
GET /homepage/spa-assets/images/assets-images-site-hp-assets-offers-ME_Batch1_Gen_L1_Tile_243x105.webp HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://toddfosterlaw.sunstyledesign.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 870797
cache-control: max-age=26920000, public
content-type: application/octet-stream
date: Fri, 31 Mar 2023 08:40:45 GMT
etag: "2d8-55f85f12b7740"
expires: Fri, 31 Mar 2023 08:40:46 GMT
last-modified: Mon, 04 Dec 2017 16:09:25 GMT
server: ECS (ska/F710)
strict-transport-security: max-age=31536000
x-boa-requestid: ZBlTAPpk62RUqkEbINM5AAAAAkE
x-cache: HIT
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 728
X-Firefox-Spdy: h2
toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/loginweb.php?sslmode=true&access_token=iX33msQLJVDvg6xRSW7O1ndLR5kVvVZOT2RfvI0eDEKTKhLDdSregE07Kl2gh14a4VqzErOh5ybQPXt3
66.71.253.10200 OK 280 kB URL HTTP/1.1 toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/loginweb.php?sslmode=true&access_token=iX33msQLJVDvg6xRSW7O1ndLR5kVvVZOT2RfvI0eDEKTKhLDdSregE07Kl2gh14a4VqzErOh5ybQPXt3
IP 66.71.253.10:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (63839)
Size 280 kB (280447 bytes)
Hash 56173a63e1efbb00b3a82d68796569a2
722c7e0e51cd0dd1db637990ddbd4a9f05c87667
817c7dfa26b7dc8fc277ba06261f3f77adb32d7dbb5e300893cd402f2da9d044
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
NIDS Severity Alert suricata medium ET PHISHING Suspicious HTML Decimal Obfuscated Title - Possible Phishing Landing Apr 19 2017
GET /buyye/SUPPORT/loginweb.php?sslmode=true&access_token=iX33msQLJVDvg6xRSW7O1ndLR5kVvVZOT2RfvI0eDEKTKhLDdSregE07Kl2gh14a4VqzErOh5ybQPXt3 HTTP/1.1
Host: toddfosterlaw.sunstyledesign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 08:40:44 GMT
Server: Apache
Keep-Alive: timeout=5
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/css/33986123.css
66.71.253.10200 OK 586 kB URL HTTP/1.1 toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/css/33986123.css
IP 66.71.253.10:0
File type ASCII text, with very long lines (62121), with CR, LF line terminators
Size 586 kB (585489 bytes)
Hash 56428a6bd7c12690a98fa93dfaefedd0
b737fbd40012e6e2bc248f6be08678ee8adf4679
323cf48f0db1f06fbff9d31141d2b864a72b2eef057e0f4aec77e1ab97cff051
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
GET /buyye/SUPPORT/css/33986123.css HTTP/1.1
Host: toddfosterlaw.sunstyledesign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/loginweb.php?sslmode=true&access_token=iX33msQLJVDvg6xRSW7O1ndLR5kVvVZOT2RfvI0eDEKTKhLDdSregE07Kl2gh14a4VqzErOh5ybQPXt3
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 08:40:44 GMT
Server: Apache
Last-Modified: Fri, 08 Nov 2019 06:14:58 GMT
Accept-Ranges: bytes
Content-Length: 585489
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/images/assets-images-global-get-app-modal-Download_on_the_App_Store_Badge_US-UK_RGB_blk_092917-CSXd8fd3663.svg
66.71.253.10200 OK 7.3 kB URL HTTP/1.1 toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/images/assets-images-global-get-app-modal-Download_on_the_App_Store_Badge_US-UK_RGB_blk_092917-CSXd8fd3663.svg
IP 66.71.253.10:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (7318), with no line terminators
Hash 40db11c8ecf6a87ed4c2e1c22c80c44f
0aa261a4b0254f8374e11a34077067e6148505f2
3f1ea5c409c0d00088df9790fa7698929b4b8d242ec4372ab83fa8c3b969c692
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /buyye/SUPPORT/images/assets-images-global-get-app-modal-Download_on_the_App_Store_Badge_US-UK_RGB_blk_092917-CSXd8fd3663.svg HTTP/1.1
Host: toddfosterlaw.sunstyledesign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/loginweb.php?sslmode=true&access_token=iX33msQLJVDvg6xRSW7O1ndLR5kVvVZOT2RfvI0eDEKTKhLDdSregE07Kl2gh14a4VqzErOh5ybQPXt3
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 08:40:45 GMT
Server: Apache
Last-Modified: Fri, 08 Nov 2019 06:17:22 GMT
Accept-Ranges: bytes
Content-Length: 7318
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/svg+xml
toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/images/assets-images-site-homepage-logos-new_merrill_desktop_logo-CSX5347e4ce.svg
66.71.253.10200 OK 5.8 kB URL HTTP/1.1 toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/images/assets-images-site-homepage-logos-new_merrill_desktop_logo-CSX5347e4ce.svg
IP 66.71.253.10:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2727)
Hash d3cc6af9faa7069724de8030ffd29173
8d3d23de9b40ee0e7d12e3f32158a9d4ccb07b95
2d9705dc449a9757f9b36ace6d7479eabcf2a90b210b400d49f7f8e7e4837d2e
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /buyye/SUPPORT/images/assets-images-site-homepage-logos-new_merrill_desktop_logo-CSX5347e4ce.svg HTTP/1.1
Host: toddfosterlaw.sunstyledesign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/loginweb.php?sslmode=true&access_token=iX33msQLJVDvg6xRSW7O1ndLR5kVvVZOT2RfvI0eDEKTKhLDdSregE07Kl2gh14a4VqzErOh5ybQPXt3
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 08:40:45 GMT
Server: Apache
Last-Modified: Fri, 08 Nov 2019 06:17:24 GMT
Accept-Ranges: bytes
Content-Length: 5791
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/svg+xml
toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/images/assets-images-site-hp-assets-highlights-consumer-merrill-en-merrill_rebrand_logo1.svg
66.71.253.10200 OK 14 kB URL HTTP/1.1 toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/images/assets-images-site-hp-assets-highlights-consumer-merrill-en-merrill_rebrand_logo1.svg
IP 66.71.253.10:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (7267)
Hash 42fc15041dc237e91c6971e863c7f241
0737f3ced75d647a489447c871b43b6034cb9964
637f24f45d4640101ad59c9467921a9451dfeb40670e8a2526424ba8f2033a3e
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /buyye/SUPPORT/images/assets-images-site-hp-assets-highlights-consumer-merrill-en-merrill_rebrand_logo1.svg HTTP/1.1
Host: toddfosterlaw.sunstyledesign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/loginweb.php?sslmode=true&access_token=iX33msQLJVDvg6xRSW7O1ndLR5kVvVZOT2RfvI0eDEKTKhLDdSregE07Kl2gh14a4VqzErOh5ybQPXt3
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 08:40:45 GMT
Server: Apache
Last-Modified: Fri, 08 Nov 2019 07:23:32 GMT
Accept-Ranges: bytes
Content-Length: 13929
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/svg+xml
toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/images/assets-images-site-hp-assets-highlights-consumer-other-en-hl_ntb-03_icon_arp7dcrm_e.svg
66.71.253.10200 OK 960 B URL HTTP/1.1 toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/images/assets-images-site-hp-assets-highlights-consumer-other-en-hl_ntb-03_icon_arp7dcrm_e.svg
IP 66.71.253.10:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (777)
Hash 1d47a2bf4ae35590dddbbde476b658a9
1470dca1bb2aeeadc4fc5e16bcd8038aad40b768
a7b87f6d0c31b6bae2aa79345a350ef5ab61ceb04a83bd7088054f6cac9ab3fd
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /buyye/SUPPORT/images/assets-images-site-hp-assets-highlights-consumer-other-en-hl_ntb-03_icon_arp7dcrm_e.svg HTTP/1.1
Host: toddfosterlaw.sunstyledesign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/loginweb.php?sslmode=true&access_token=iX33msQLJVDvg6xRSW7O1ndLR5kVvVZOT2RfvI0eDEKTKhLDdSregE07Kl2gh14a4VqzErOh5ybQPXt3
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 08:40:45 GMT
Server: Apache
Last-Modified: Fri, 17 Jul 2020 07:27:36 GMT
Accept-Ranges: bytes
Content-Length: 960
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/svg+xml
www1.bac-assets.com/hp-assets/spa-assets/images/assets-images-site-hp-assets-mastheads-consumer-cards-en-4-card-pr2_arllmbb5-e.webp
192.229.233.230404 Not Found 5.9 kB URL HTTP/2 www1.bac-assets.com/hp-assets/spa-assets/images/assets-images-site-hp-assets-mastheads-consumer-cards-en-4-card-pr2_arllmbb5-e.webp
IP 192.229.233.230:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (695)
Hash 6d24258adff1d15be9b869205bdc3103
03d411278bde676bb7132325e61cf8052725e6bf
3619992e8edd7cdcfc5f0326be785065a240f8022a689a905f7abefe7f44b20e
GET /hp-assets/spa-assets/images/assets-images-site-hp-assets-mastheads-consumer-cards-en-4-card-pr2_arllmbb5-e.webp HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://toddfosterlaw.sunstyledesign.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
accept-ranges: bytes
content-type: text/html
date: Fri, 31 Mar 2023 08:40:45 GMT
etag: "16fa-5c016c9cca9c0"
last-modified: Fri, 16 Apr 2021 13:16:31 GMT
server: ECS (ska/F708)
set-cookie: TS01794157=01b1335154998ac51bacda57cd720e2968de60ad8d943f46cbf99c448f320e6d4d5f0f4a5e9fd748d04229a7180e4d19bf04011bdb; Path=/; Secure; HTTPOnly
strict-transport-security: max-age=31536000
x-boa-requestid: ZCacjUFDBJ18hJCNMGN9gAAAAL0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 5882
X-Firefox-Spdy: h2
www1.bac-assets.com/hp-assets/spa-assets/images/assets-images-site-hp-assets-mastheads-consumer-cards-en-4-card-tr2_arllmbb5-e.webp
192.229.233.230404 Not Found 5.9 kB URL HTTP/2 www1.bac-assets.com/hp-assets/spa-assets/images/assets-images-site-hp-assets-mastheads-consumer-cards-en-4-card-tr2_arllmbb5-e.webp
IP 192.229.233.230:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (695)
Hash 6d24258adff1d15be9b869205bdc3103
03d411278bde676bb7132325e61cf8052725e6bf
3619992e8edd7cdcfc5f0326be785065a240f8022a689a905f7abefe7f44b20e
GET /hp-assets/spa-assets/images/assets-images-site-hp-assets-mastheads-consumer-cards-en-4-card-tr2_arllmbb5-e.webp HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://toddfosterlaw.sunstyledesign.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
accept-ranges: bytes
content-type: text/html
date: Fri, 31 Mar 2023 08:40:45 GMT
etag: "16fa-5c016c9cca9c0"
last-modified: Fri, 16 Apr 2021 13:16:31 GMT
server: ECS (ska/F713)
set-cookie: TS01794157=01c9d1a3a0c8dec91a4f09a9c6467403a37b32a5dcf6e36685f11b4043cbb7a89a940a5f5d7287f12fabb8a135d81bfa638410db2e; Path=/; Secure; HTTPOnly
strict-transport-security: max-age=31536000
x-boa-requestid: ZCacjQns8EEiLz9sXtjBfAAAAF8
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 5882
X-Firefox-Spdy: h2
toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/images/assets-images-global-logos-bac-logo-v2-CSX3648cbbb.svg
66.71.253.10200 OK 3.5 kB URL HTTP/1.1 toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/images/assets-images-global-logos-bac-logo-v2-CSX3648cbbb.svg
IP 66.71.253.10:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8501eddc227a8cd862db80fab40d73a6
ccc48cb6808011e2ed77a18e2646cf6e573a36d1
7e6ce497138ce47d8ab66d70c46d245e1261d7f2d3f1db3556eec0ca1c82e2ec
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /buyye/SUPPORT/images/assets-images-global-logos-bac-logo-v2-CSX3648cbbb.svg HTTP/1.1
Host: toddfosterlaw.sunstyledesign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/loginweb.php?sslmode=true&access_token=iX33msQLJVDvg6xRSW7O1ndLR5kVvVZOT2RfvI0eDEKTKhLDdSregE07Kl2gh14a4VqzErOh5ybQPXt3
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 08:40:45 GMT
Server: Apache
Last-Modified: Fri, 08 Nov 2019 06:17:22 GMT
Accept-Ranges: bytes
Content-Length: 3472
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/svg+xml
toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/images/assets-images-site-homepage-icons-calendar-CSXef62d939.svg
66.71.253.10200 OK 1.2 kB URL HTTP/1.1 toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/images/assets-images-site-homepage-icons-calendar-CSXef62d939.svg
IP 66.71.253.10:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1191), with no line terminators
Hash e43b829f9978a200921730c6af362a0b
d8f9f37123a55f5be33b6709474b5d02c42f8ee4
79266c36aad7737b74bb1a73c53b99e51c2cda5f7e5ac1e9c5f6178e5181159d
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /buyye/SUPPORT/images/assets-images-site-homepage-icons-calendar-CSXef62d939.svg HTTP/1.1
Host: toddfosterlaw.sunstyledesign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/loginweb.php?sslmode=true&access_token=iX33msQLJVDvg6xRSW7O1ndLR5kVvVZOT2RfvI0eDEKTKhLDdSregE07Kl2gh14a4VqzErOh5ybQPXt3
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 08:40:45 GMT
Server: Apache
Last-Modified: Fri, 08 Nov 2019 06:17:22 GMT
Accept-Ranges: bytes
Content-Length: 1191
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/svg+xml
toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/images/assets-images-global-get-app-modal-google-play-badge-CSX89f9024.svg
66.71.253.10200 OK 5.0 kB URL HTTP/1.1 toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/images/assets-images-global-get-app-modal-google-play-badge-CSX89f9024.svg
IP 66.71.253.10:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4993), with no line terminators
Hash d44334d84df12f4539734b402b40cc34
c46223399876b228fb4d6b57b8b7c63566bf2b31
1fb7690d7f2b1b600dbea5fbfce96198cae49ad0009fee412d96bc462a27eea9
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /buyye/SUPPORT/images/assets-images-global-get-app-modal-google-play-badge-CSX89f9024.svg HTTP/1.1
Host: toddfosterlaw.sunstyledesign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/loginweb.php?sslmode=true&access_token=iX33msQLJVDvg6xRSW7O1ndLR5kVvVZOT2RfvI0eDEKTKhLDdSregE07Kl2gh14a4VqzErOh5ybQPXt3
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 08:40:45 GMT
Server: Apache
Last-Modified: Fri, 08 Nov 2019 06:17:22 GMT
Accept-Ranges: bytes
Content-Length: 4993
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/svg+xml
toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/images/assets-images-site-homepage-icons-get_app_interstitial_lock-CSX6d401b45.svg
66.71.253.10200 OK 587 B URL HTTP/1.1 toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/images/assets-images-site-homepage-icons-get_app_interstitial_lock-CSX6d401b45.svg
IP 66.71.253.10:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (587), with no line terminators
Hash a7f2c7550ccc79e1d25dbfe6c756d2c1
3309818c64af0c7d39f36974049b0a48441565e8
46344c37451bf1505050f5ca9096e1d16686172250401bb04558f13eb5bb04f8
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /buyye/SUPPORT/images/assets-images-site-homepage-icons-get_app_interstitial_lock-CSX6d401b45.svg HTTP/1.1
Host: toddfosterlaw.sunstyledesign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/loginweb.php?sslmode=true&access_token=iX33msQLJVDvg6xRSW7O1ndLR5kVvVZOT2RfvI0eDEKTKhLDdSregE07Kl2gh14a4VqzErOh5ybQPXt3
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 08:40:45 GMT
Server: Apache
Last-Modified: Fri, 08 Nov 2019 06:17:22 GMT
Accept-Ranges: bytes
Content-Length: 587
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/svg+xml
www1.bac-assets.com/hp-assets/spa-assets/images/assets-images-site-hp-assets-mastheads-consumer-cards-en-4-card-cr2_arllmbb5-e.webp
192.229.233.230404 Not Found 5.9 kB URL HTTP/2 www1.bac-assets.com/hp-assets/spa-assets/images/assets-images-site-hp-assets-mastheads-consumer-cards-en-4-card-cr2_arllmbb5-e.webp
IP 192.229.233.230:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (695)
Hash 6d24258adff1d15be9b869205bdc3103
03d411278bde676bb7132325e61cf8052725e6bf
3619992e8edd7cdcfc5f0326be785065a240f8022a689a905f7abefe7f44b20e
GET /hp-assets/spa-assets/images/assets-images-site-hp-assets-mastheads-consumer-cards-en-4-card-cr2_arllmbb5-e.webp HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://toddfosterlaw.sunstyledesign.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
accept-ranges: bytes
content-type: text/html
date: Fri, 31 Mar 2023 08:40:45 GMT
etag: "16fa-5c016c9cca9c0"
last-modified: Fri, 16 Apr 2021 13:16:31 GMT
server: ECS (ska/F70B)
set-cookie: TS01794157=013d7705653011cf3dd2b92364558d1c273590f48e7a958e9fe9e93e7e3816c8976fd7ce56c0c8fe3ee1aa0dabeaf60a429f41ed9c; Path=/; Secure; HTTPOnly
strict-transport-security: max-age=31536000
x-boa-requestid: ZCacjb7nqddSoogXV4pocAAAAVY
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 5882
X-Firefox-Spdy: h2
www1.bac-assets.com/hp-assets/spa-assets/images/assets-images-site-hp-assets-mastheads-consumer-cards-en-4-card-nr2_arllmbb5-e.webp
192.229.233.230404 Not Found 5.9 kB URL HTTP/2 www1.bac-assets.com/hp-assets/spa-assets/images/assets-images-site-hp-assets-mastheads-consumer-cards-en-4-card-nr2_arllmbb5-e.webp
IP 192.229.233.230:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (695)
Hash 6d24258adff1d15be9b869205bdc3103
03d411278bde676bb7132325e61cf8052725e6bf
3619992e8edd7cdcfc5f0326be785065a240f8022a689a905f7abefe7f44b20e
GET /hp-assets/spa-assets/images/assets-images-site-hp-assets-mastheads-consumer-cards-en-4-card-nr2_arllmbb5-e.webp HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://toddfosterlaw.sunstyledesign.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
accept-ranges: bytes
content-type: text/html
date: Fri, 31 Mar 2023 08:40:45 GMT
etag: "16fa-5c016c9cca9c0"
last-modified: Fri, 16 Apr 2021 13:16:31 GMT
server: ECS (ska/F71D)
set-cookie: TS01794157=01b13351546dc16f18f7b1c30221491ce9bc3bb1879d311922fdbeca32f7d36c83e317b476907ba5802b025b7cb71ca0a710d6664c; Path=/; Secure; HTTPOnly
strict-transport-security: max-age=31536000
x-boa-requestid: ZCacjRxSpgMg51Ok5CssIgAAAEQ
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 5882
X-Firefox-Spdy: h2
toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/images/jdpower.png
66.71.253.10200 OK 20 kB URL HTTP/1.1 toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/images/jdpower.png
IP 66.71.253.10:0
File type PNG image data, 100 x 101, 8-bit/color RGBA, non-interlaced\012- data
Hash 9dc77c0ad5d86af8bc0ce8534df119f9
8f613dafde65e48b79f591abb9cd17f3674488b4
63b36fc2d96a85f37d1b05907fc5274ffc0a4c43224abd457d74ec847d6208e6
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
GET /buyye/SUPPORT/images/jdpower.png HTTP/1.1
Host: toddfosterlaw.sunstyledesign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/loginweb.php?sslmode=true&access_token=iX33msQLJVDvg6xRSW7O1ndLR5kVvVZOT2RfvI0eDEKTKhLDdSregE07Kl2gh14a4VqzErOh5ybQPXt3
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 08:40:45 GMT
Server: Apache
Last-Modified: Fri, 17 Jul 2020 07:25:56 GMT
Accept-Ranges: bytes
Content-Length: 19535
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/images/assets-images-site-homepage-icons-get_app_interstitial_icon-CSXbef49635.svg
66.71.253.10200 OK 37 kB URL HTTP/1.1 toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/images/assets-images-site-homepage-icons-get_app_interstitial_icon-CSXbef49635.svg
IP 66.71.253.10:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 1c7530637540557e2a818d755bb4b7ad
3121c1c647b9bb50960e4ca0e6f39835a5bc0fb6
ddc2154c0d608206ff9c64e5acb6e38a3f153e8a9939d846763ddf701424456d
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /buyye/SUPPORT/images/assets-images-site-homepage-icons-get_app_interstitial_icon-CSXbef49635.svg HTTP/1.1
Host: toddfosterlaw.sunstyledesign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/loginweb.php?sslmode=true&access_token=iX33msQLJVDvg6xRSW7O1ndLR5kVvVZOT2RfvI0eDEKTKhLDdSregE07Kl2gh14a4VqzErOh5ybQPXt3
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 08:40:45 GMT
Server: Apache
Last-Modified: Fri, 08 Nov 2019 06:17:22 GMT
Accept-Ranges: bytes
Content-Length: 37062
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/svg+xml
toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/images/assets-images-site-homepage-sign-in-module-hp-url-example-CSX3e076ebf.png
66.71.253.10200 OK 4.1 kB URL HTTP/1.1 toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/images/assets-images-site-homepage-sign-in-module-hp-url-example-CSX3e076ebf.png
IP 66.71.253.10:0
File type PNG image data, 522 x 31, 8-bit/color RGB, non-interlaced\012- data
Hash 8e1041b5b2d8242c565725caf3adc033
96d3d32bc0b0f07acd69046e655ceeb05c5444ea
6d7ac293ab6a5f1f5bddc8d4e59602950fbfa5434d1b50e1a840eab9dd6b4b7c
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
GET /buyye/SUPPORT/images/assets-images-site-homepage-sign-in-module-hp-url-example-CSX3e076ebf.png HTTP/1.1
Host: toddfosterlaw.sunstyledesign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/loginweb.php?sslmode=true&access_token=iX33msQLJVDvg6xRSW7O1ndLR5kVvVZOT2RfvI0eDEKTKhLDdSregE07Kl2gh14a4VqzErOh5ybQPXt3
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 08:40:46 GMT
Server: Apache
Last-Modified: Fri, 08 Nov 2019 06:17:24 GMT
Accept-Ranges: bytes
Content-Length: 4102
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14421
Expires: Fri, 31 Mar 2023 12:41:07 GMT
Date: Fri, 31 Mar 2023 08:40:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14421
Expires: Fri, 31 Mar 2023 12:41:07 GMT
Date: Fri, 31 Mar 2023 08:40:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14421
Expires: Fri, 31 Mar 2023 12:41:07 GMT
Date: Fri, 31 Mar 2023 08:40:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14421
Expires: Fri, 31 Mar 2023 12:41:07 GMT
Date: Fri, 31 Mar 2023 08:40:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14421
Expires: Fri, 31 Mar 2023 12:41:07 GMT
Date: Fri, 31 Mar 2023 08:40:46 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5ac5665-fe23-4026-a00b-567f98678f9e.webp
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5ac5665-fe23-4026-a00b-567f98678f9e.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e55c2ccec92fa37b631f5616ba5e1b77
c3f1113bad672968f22e63693ef4481f7f5616fe
10bfe1a2cf0b6e0a2a548935a1afc061fc61990a121a84580f3969df68b7974c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5ac5665-fe23-4026-a00b-567f98678f9e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10706
x-amzn-requestid: 2e382033-306f-40ed-b259-76790e5e3ac9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUlmGujoAMFamQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-3856db4579fce52a18219166;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: pcFiVnrSVAh6gQ3VuQDE32650Yoj5bcTJrishSOFVpR3DHh4lUvdag==
via: 1.1 8ead054384c1626556ee4410cad35692.cloudfront.net (CloudFront), 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 22:05:16 GMT
age: 38130
etag: "c3f1113bad672968f22e63693ef4481f7f5616fe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ef54a1ed997cc09495edb102ccdf6803
f5637efb37b5eecff77e60e6bcf5f599991f334f
fa76d7a82dc15baf02b207cea874d1332c20a0ebe1eea99929a6f2746608412c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8745
x-amzn-requestid: e1d8dab6-4c15-4752-b528-21854c93a11c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguJ5Hy5oAMFyAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235d72-4bd62c8472f7257a155b2a80;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:34:42 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: YJQbVC3HpHtLrNiTzsUmCOMIWgRik2lIhvpAz0DfmUNSznCXw6ipYw==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 60b744e5b364d04abea9fa6686121242.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 06:47:32 GMT
age: 6794
etag: "f5637efb37b5eecff77e60e6bcf5f599991f334f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/images/favicon1.ico
66.71.253.10200 OK 15 kB URL HTTP/1.1 toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/images/favicon1.ico
IP 66.71.253.10:0
File type MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash f5cf9991c119848718497291eedfdf12
00aadfc922701304d16aa1d7b888aea549e87578
d5bba1cae66759adfee0d50ab0419e6bb19a48f8c360e4be8e582ba75e7a1402
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
fortinet Phishing
GET /buyye/SUPPORT/images/favicon1.ico HTTP/1.1
Host: toddfosterlaw.sunstyledesign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/loginweb.php?sslmode=true&access_token=iX33msQLJVDvg6xRSW7O1ndLR5kVvVZOT2RfvI0eDEKTKhLDdSregE07Kl2gh14a4VqzErOh5ybQPXt3
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 08:40:46 GMT
Server: Apache
Last-Modified: Fri, 08 Nov 2019 06:54:10 GMT
Accept-Ranges: bytes
Content-Length: 15086
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/x-icon
toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/images/192x192-CSXafb7d716.png
66.71.253.10200 OK 8.4 kB URL HTTP/1.1 toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/images/192x192-CSXafb7d716.png
IP 66.71.253.10:0
File type PNG image data, 192 x 192, 8-bit/color RGB, non-interlaced\012- data
Hash 67af3bbd46f9947739538d49395d573d
03a34b0aa432274f88862b27ab109f8e26311e72
b47bfe9d7333188f5b2f8690785ccd966d882c2364a5e4e5ae293e02554ad8d8
Analyzer Verdict Alert urlquery phishing Phishing - Bank of America
urlquery phishing Phishing - Bank of America
GET /buyye/SUPPORT/images/192x192-CSXafb7d716.png HTTP/1.1
Host: toddfosterlaw.sunstyledesign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://toddfosterlaw.sunstyledesign.com/buyye/SUPPORT/loginweb.php?sslmode=true&access_token=iX33msQLJVDvg6xRSW7O1ndLR5kVvVZOT2RfvI0eDEKTKhLDdSregE07Kl2gh14a4VqzErOh5ybQPXt3
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 08:40:46 GMT
Server: Apache
Last-Modified: Fri, 08 Nov 2019 06:52:54 GMT
Accept-Ranges: bytes
Content-Length: 8354
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36630e1b-1c89-4e55-ac67-f104436fd02c.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36630e1b-1c89-4e55-ac67-f104436fd02c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 45a4bac8a91b725def9099fd6f720285
134ace682a567c7e385817c8f8af0d49acfde847
3d60e54132cbbba19ce8ad4bdf79a4b3b6ae74573f45bf4f080a283aa250b53c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36630e1b-1c89-4e55-ac67-f104436fd02c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8358
x-amzn-requestid: 8069495f-4ea5-4975-8369-fc4db9199774
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUllH2fIAMFdlw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-2e5418a132076d0569e30de6;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: z4Jd4oIn19s5lhDNYlrrh6RlxDz7mxCg1KJKUyFfJfqZsymvADn88g==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 6a6653dfb47ccc5082f2a5b9d0d168ce.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:47:31 GMT
age: 39195
etag: "134ace682a567c7e385817c8f8af0d49acfde847"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F067b6c49-6e52-4dcc-af72-f7292299f912.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F067b6c49-6e52-4dcc-af72-f7292299f912.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 876e5464aba1639f3b07b07d1d694514
93885a6205be71d16187782b1803f53d5c8538cb
6e2b6b15f462922a9e8260f55cfcd94d488d1a48435458db43270ea3b825d8c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F067b6c49-6e52-4dcc-af72-f7292299f912.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13775
x-amzn-requestid: 43d1a1f3-b189-4fcd-a298-429123d1921b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUloF9woAMFU4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-13778451622503253ea252eb;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: bXA995GxGti4_AzSi9F19ZNvUwm5_ZSBw0BB0lRIfNHcmX7Ajt6bSg==
via: 1.1 8731d2a1a7d15f67b588bf58f652f9f0.cloudfront.net (CloudFront), 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:46:36 GMT
age: 39250
etag: "93885a6205be71d16187782b1803f53d5c8538cb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8600e41520408df4865627256a0a0736
dffeaf1a8f73ae9f6247b9dc7f05301fefc00aef
9163d80d7b6087b804e6682a50d4f66339d339894cf1c5808f2e5c2e0b3de930
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5806
x-amzn-requestid: cee5b166-592b-405e-b5f1-e36eb249ec59
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUllFFooAMFQ2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-01840fa47177285667bca060;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Jktkwc3JLU31AY5B5pC5JTjPGARjflqoJRZiD6IpF5-10IO6UNlH_Q==
via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 adc2002956acc4d61bfbf3b973fdf246.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:46:33 GMT
age: 39253
etag: "dffeaf1a8f73ae9f6247b9dc7f05301fefc00aef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8a2b8f737604b7983cf686c82599dc73
aa63be93c4cd641f09ce0d5144ef60aab21caed1
78835586bfd170fee7e6f70b2b426ed186f5aeae969459c6dcbf527ba9c0deec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6380
x-amzn-requestid: 0a129a69-0720-47a0-8b0e-b3200de24204
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUn6E19IAMF9SQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260165-564474a42e79d1dc4eb9558f;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:45 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 3paQf8BhyRcZoZNox8660Zyzz0WaiQxJuHmDbj4wpo-rgbDdkxrYgQ==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 b48dedcc55e63f14261aa92cf2d61522.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:47:23 GMT
age: 39203
etag: "aa63be93c4cd641f09ce0d5144ef60aab21caed1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-regular/cnx-regular.woff2
192.229.233.230404 Not Found 5.9 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-regular/cnx-regular.woff2
IP 192.229.233.230:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (695)
Hash 6d24258adff1d15be9b869205bdc3103
03d411278bde676bb7132325e61cf8052725e6bf
3619992e8edd7cdcfc5f0326be785065a240f8022a689a905f7abefe7f44b20e
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-regular/cnx-regular.woff2 HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://toddfosterlaw.sunstyledesign.com
Connection: keep-alive
Referer: http://toddfosterlaw.sunstyledesign.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
accept-ranges: bytes
cache-control: max-age=31536000, public
content-type: text/html
date: Fri, 31 Mar 2023 08:40:46 GMT
etag: "16fa-5c016c9cca9c0"
expires: Sat, 30 Mar 2024 08:40:46 GMT
last-modified: Fri, 16 Apr 2021 13:16:31 GMT
server: ECS (ska/F6FC)
set-cookie: TS01794157=01cc89cf202235c0bd3d567060386e0d4bb0f8423c7c4c104d3bac8fbc0afea38d9ccab4543e80ec83ab9ec6c953acf6f12cad0491; Path=/; Secure; HTTPOnly
strict-transport-security: max-age=31536000
x-boa-requestid: ZCacjjxregujFITFKXKNuwAAABU
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 5882
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-medium/cnx-medium.woff2
192.229.233.230404 Not Found 5.9 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-medium/cnx-medium.woff2
IP 192.229.233.230:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (695)
Hash 6d24258adff1d15be9b869205bdc3103
03d411278bde676bb7132325e61cf8052725e6bf
3619992e8edd7cdcfc5f0326be785065a240f8022a689a905f7abefe7f44b20e
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-medium/cnx-medium.woff2 HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://toddfosterlaw.sunstyledesign.com
Connection: keep-alive
Referer: http://toddfosterlaw.sunstyledesign.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
accept-ranges: bytes
cache-control: max-age=31536000, public
content-type: text/html
date: Fri, 31 Mar 2023 08:40:46 GMT
etag: "16fa-5c016c9cca9c0"
expires: Sat, 30 Mar 2024 08:40:46 GMT
last-modified: Fri, 16 Apr 2021 13:16:31 GMT
server: ECS (ska/F71D)
set-cookie: TS01794157=01b13351549d6c987591ace08df8386e220e2ce4d9e236524ab739a7f4e1cb9cd69a3ce360e554f898d773a13d7a04e38473f6101b; Path=/; Secure; HTTPOnly
strict-transport-security: max-age=31536000
x-boa-requestid: ZCacjiatLrpKv64AtzoNwAAAAbI
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 5882
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-light/cnx-light.woff2
192.229.233.230404 Not Found 5.9 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-light/cnx-light.woff2
IP 192.229.233.230:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (695)
Hash 6d24258adff1d15be9b869205bdc3103
03d411278bde676bb7132325e61cf8052725e6bf
3619992e8edd7cdcfc5f0326be785065a240f8022a689a905f7abefe7f44b20e
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-light/cnx-light.woff2 HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://toddfosterlaw.sunstyledesign.com
Connection: keep-alive
Referer: http://toddfosterlaw.sunstyledesign.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
accept-ranges: bytes
cache-control: max-age=31536000, public
content-type: text/html
date: Fri, 31 Mar 2023 08:40:46 GMT
etag: "16fa-5c016c9cca9c0"
expires: Sat, 30 Mar 2024 08:40:46 GMT
last-modified: Fri, 16 Apr 2021 13:16:31 GMT
server: ECS (ska/F713)
set-cookie: TS01794157=01c97de39cd736b857ff8bebc5f4de12bcee12956402027c443fb9049f17b3e76cd8c84cfd6eb6ba9614e82c4f9f1ea44b0d821834; Path=/; Secure; HTTPOnly
strict-transport-security: max-age=31536000
x-boa-requestid: ZCacjqzCcW7faoel5s4ixQAAAO4
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 5882
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-regular/cnx-regular.woff
192.229.233.230404 Not Found 5.9 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-regular/cnx-regular.woff
IP 192.229.233.230:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (695)
Hash 6d24258adff1d15be9b869205bdc3103
03d411278bde676bb7132325e61cf8052725e6bf
3619992e8edd7cdcfc5f0326be785065a240f8022a689a905f7abefe7f44b20e
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-regular/cnx-regular.woff HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://toddfosterlaw.sunstyledesign.com
Connection: keep-alive
Referer: http://toddfosterlaw.sunstyledesign.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
accept-ranges: bytes
cache-control: max-age=31536000, public
content-type: text/html
date: Fri, 31 Mar 2023 08:40:47 GMT
etag: "16fa-5c016c9cca9c0"
expires: Sat, 30 Mar 2024 08:40:47 GMT
last-modified: Fri, 16 Apr 2021 13:16:31 GMT
server: ECS (ska/F71A)
set-cookie: TS01794157=01a461ada8b733dd2b9be515361eeae8ea4dd24c50fe161eef000e163b0688753fb46b7d813d26d5b0d3dbe496404181b23dccbbc6; Path=/; Secure; HTTPOnly
strict-transport-security: max-age=31536000
x-boa-requestid: ZCacjxxSpgMg51Ok5CssLwAAACU
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 5882
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-medium/cnx-medium.woff
192.229.233.230404 Not Found 5.9 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-medium/cnx-medium.woff
IP 192.229.233.230:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (695)
Hash 6d24258adff1d15be9b869205bdc3103
03d411278bde676bb7132325e61cf8052725e6bf
3619992e8edd7cdcfc5f0326be785065a240f8022a689a905f7abefe7f44b20e
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-medium/cnx-medium.woff HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://toddfosterlaw.sunstyledesign.com
Connection: keep-alive
Referer: http://toddfosterlaw.sunstyledesign.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
accept-ranges: bytes
cache-control: max-age=31536000, public
content-type: text/html
date: Fri, 31 Mar 2023 08:40:47 GMT
etag: "16fa-5c016c9cca9c0"
expires: Sat, 30 Mar 2024 08:40:47 GMT
last-modified: Fri, 16 Apr 2021 13:16:31 GMT
server: ECS (ska/F711)
set-cookie: TS01794157=01cc89cf20868fc41c837aceb325d8965e702c8b486c1f824779e7e0ec429cd0b30fe4d619fddd71af4d43730ded2e6a5abdc165bb; Path=/; Secure; HTTPOnly
strict-transport-security: max-age=31536000
x-boa-requestid: ZCacj77nqddSoogXV4pojgAAAUc
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 5882
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-light/cnx-light.woff
192.229.233.230404 Not Found 5.9 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-light/cnx-light.woff
IP 192.229.233.230:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (695)
Hash 6d24258adff1d15be9b869205bdc3103
03d411278bde676bb7132325e61cf8052725e6bf
3619992e8edd7cdcfc5f0326be785065a240f8022a689a905f7abefe7f44b20e
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-light/cnx-light.woff HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://toddfosterlaw.sunstyledesign.com
Connection: keep-alive
Referer: http://toddfosterlaw.sunstyledesign.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
accept-ranges: bytes
cache-control: max-age=31536000, public
content-type: text/html
date: Fri, 31 Mar 2023 08:40:47 GMT
etag: "16fa-5c016c9cca9c0"
expires: Sat, 30 Mar 2024 08:40:47 GMT
last-modified: Fri, 16 Apr 2021 13:16:31 GMT
server: ECS (ska/F71D)
set-cookie: TS01794157=01a461ada81e6b6df8001fee61c05440a94ba5097127ae81ee760181f7a286d2773f8d6b076dcd298b17bffb1f67b0aa3d845fbf1d; Path=/; Secure; HTTPOnly
strict-transport-security: max-age=31536000
x-boa-requestid: ZCacj0rAg0GlUufYtTq8kAAAAXU
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 5882
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-regular/cnx-regular.ttf
192.229.233.230404 Not Found 5.9 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-regular/cnx-regular.ttf
IP 192.229.233.230:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (695)
Hash 6d24258adff1d15be9b869205bdc3103
03d411278bde676bb7132325e61cf8052725e6bf
3619992e8edd7cdcfc5f0326be785065a240f8022a689a905f7abefe7f44b20e
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-regular/cnx-regular.ttf HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://toddfosterlaw.sunstyledesign.com
Connection: keep-alive
Referer: http://toddfosterlaw.sunstyledesign.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
accept-ranges: bytes
cache-control: max-age=31536000, public
content-type: text/html
date: Fri, 31 Mar 2023 08:40:47 GMT
etag: "16fa-5c016c9cca9c0"
expires: Sat, 30 Mar 2024 08:40:47 GMT
last-modified: Fri, 16 Apr 2021 13:16:31 GMT
server: ECS (ska/F709)
set-cookie: TS01794157=01b13351541b780392953b745e5560d304c0b21d8fd41caa2641c03e681d0e506972a8b223b64c0f78d163dcf38e2c0b720cf107b5; Path=/; Secure; HTTPOnly
strict-transport-security: max-age=31536000
x-boa-requestid: ZCacjxxSpgMg51Ok5CssQAAAAAQ
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 5882
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-medium/cnx-medium.ttf
192.229.233.230404 Not Found 5.9 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-medium/cnx-medium.ttf
IP 192.229.233.230:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (695)
Hash 6d24258adff1d15be9b869205bdc3103
03d411278bde676bb7132325e61cf8052725e6bf
3619992e8edd7cdcfc5f0326be785065a240f8022a689a905f7abefe7f44b20e
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-medium/cnx-medium.ttf HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://toddfosterlaw.sunstyledesign.com
Connection: keep-alive
Referer: http://toddfosterlaw.sunstyledesign.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
accept-ranges: bytes
cache-control: max-age=31536000, public
content-type: text/html
date: Fri, 31 Mar 2023 08:40:47 GMT
etag: "16fa-5c016c9cca9c0"
expires: Sat, 30 Mar 2024 08:40:47 GMT
last-modified: Fri, 16 Apr 2021 13:16:31 GMT
server: ECS (ska/F718)
set-cookie: TS01794157=01cc89cf200efddf684b52756e7c0ae0aa13e8ea964b42ae6a6ba82a895757befae51c33d04de57e36fba77c7c81764ba5404039cb; Path=/; Secure; HTTPOnly
strict-transport-security: max-age=31536000
x-boa-requestid: ZCacj77nqddSoogXV4pomAAAASw
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 5882
X-Firefox-Spdy: h2
www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-light/cnx-light.ttf
192.229.233.230404 Not Found 5.9 kB URL HTTP/2 www1.bac-assets.com/homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-light/cnx-light.ttf
IP 192.229.233.230:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (695)
Hash 6d24258adff1d15be9b869205bdc3103
03d411278bde676bb7132325e61cf8052725e6bf
3619992e8edd7cdcfc5f0326be785065a240f8022a689a905f7abefe7f44b20e
GET /homepage/spa-assets/components/utilities/global/sparta-style-utility/3.1.5/font/cnx-light/cnx-light.ttf HTTP/1.1
Host: www1.bac-assets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://toddfosterlaw.sunstyledesign.com
Connection: keep-alive
Referer: http://toddfosterlaw.sunstyledesign.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
accept-ranges: bytes
cache-control: max-age=31536000, public
content-type: text/html
date: Fri, 31 Mar 2023 08:40:48 GMT
etag: "16fa-5c016c9cca9c0"
expires: Sat, 30 Mar 2024 08:40:48 GMT
last-modified: Fri, 16 Apr 2021 13:16:31 GMT
server: ECS (ska/F713)
set-cookie: TS01794157=0121c3a38124b1a10b94a16c2ab475015cc002486e74b3e80ef2c03ae57e68e8771a596def5d820708329d9fbe2eeb481ef5249f50; Path=/; Secure; HTTPOnly
strict-transport-security: max-age=31536000
x-boa-requestid: ZCackBmTOp-qvr-LJ-YslgAAAT4
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-length: 5882
X-Firefox-Spdy: h2