Overview

URL office365securefile.mystrikingly.com/
IP52.222.158.53
ASNAMAZON-02
Location United States
Report completed2022-09-15 04:35:25 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-15 2 office365securefile.mystrikingly.com/ Phishing
2022-09-15 2 office365securefile.mystrikingly.com/ Phishing
2022-09-15 2 office365securefile.mystrikingly.com/i/construction Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (13)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-09-14 04:47:59 UTC 23.36.77.32
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-14 04:48:23 UTC 44.242.41.15
mnemonic passive DNS office365securefile.mystrikingly.com (4) 0 2022-09-15 01:27:39 UTC 2022-09-15 01:27:39 UTC 54.230.111.7 Domain (mystrikingly.com) ranked at: 222891
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-14 12:35:36 UTC 34.120.237.76
mnemonic passive DNS ocsp.pki.goog (2) 175 2017-06-14 07:23:31 UTC 2022-09-14 04:48:23 UTC 142.250.74.3
mnemonic passive DNS office365securefile.mystrikingly.com (4) 0 2022-09-15 01:27:39 UTC 2022-09-15 01:27:39 UTC 54.230.111.19 Domain (mystrikingly.com) ranked at: 222891
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-09-14 21:21:52 UTC 143.204.55.115
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-14 23:46:12 UTC 93.184.220.29
mnemonic passive DNS static-assets.strikinglycdn.com (7) 149437 2018-10-02 07:01:50 UTC 2022-09-14 20:15:31 UTC 143.204.55.87
mnemonic passive DNS ajax.googleapis.com (1) 12905 2019-10-15 17:52:08 UTC 2022-09-15 00:41:42 UTC 216.58.207.234
mnemonic passive DNS ocsp.sca1b.amazontrust.com (1) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 54.230.245.110
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-14 04:47:55 UTC 143.204.55.49
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-14 04:48:22 UTC 34.117.237.239


Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 52.222.158.53

Date UQ / IDS / BL URL IP
2022-09-15 04:35:25 +0000
0 - 0 - 3 office365securefile.mystrikingly.com/ 52.222.158.53

Last 5 reports on ASN: AMAZON-02

Date UQ / IDS / BL URL IP
2022-12-05 22:03:43 +0000
0 - 0 - 1 trk.klclick1.com/ls/click?upn=EEd34cTfsV4nLNu (...) 54.230.111.13
2022-12-05 22:03:41 +0000
0 - 0 - 1 trk.klclick1.com/ls/click?upn=EEd34cTfsV4nLNu (...) 54.230.111.114
2022-12-05 22:00:13 +0000
0 - 0 - 2 certifiedsafepages.net/landing/form/13383009- (...) 34.254.167.254
2022-12-05 21:55:29 +0000
0 - 0 - 4 ww25.swapsushi.online/ 199.59.243.222
2022-12-05 21:53:17 +0000
6 - 0 - 2 widnows.net/landing/form/9c9ab5da-ba7f-4a53-9 (...) 52.17.201.180

Last 5 reports on domain: mystrikingly.com

Date UQ / IDS / BL URL IP
2022-12-03 23:05:54 +0000
0 - 0 - 12 opensea-w-login.mystrikingly.com/ 54.230.111.80
2022-12-03 20:19:14 +0000
0 - 0 - 12 opensea-w-login.mystrikingly.com/ 54.230.111.80
2022-12-03 16:41:00 +0000
0 - 0 - 10 opensea-w-login.mystrikingly.com/ 54.230.111.19
2022-12-01 09:01:52 +0000
0 - 0 - 6 massagenyc.mystrikingly.com/ 54.230.111.19
2022-11-27 05:44:41 +0000
0 - 0 - 6 coinboss-pro-logi.mystrikingly.com/ 54.230.111.7

Last 2 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-10-16 06:14:43 +0000
0 - 0 - 3 mail-sky-105262.mystrikingly.com/ 54.230.111.80
2022-09-09 18:22:35 +0000
0 - 0 - 3 trustt-walletlogin.mystrikingly.com/ 54.230.111.7


JavaScript

Executed Scripts (7)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (32)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: office365securefile.mystrikingly.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         54.230.111.19
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: CloudFront
Date: Thu, 15 Sep 2022 04:35:13 GMT
Content-Length: 167
Connection: keep-alive
Location: https://office365securefile.mystrikingly.com/
X-Cache: Redirect from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: eZGwIh-slMxcJhvCX9XVyEjR8gkmenlFZtveR1vBmeiFrMvUuQ23LA==


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   167
Md5:    f5d40b7259645010f9a248858ad14178
Sha1:   b3051d17a6ec8c9e166bf09a62b48261ab86957b
Sha256: 7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 15 Sep 2022 04:10:20 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: e7EAzq18qAFMOUtfv02pDKPx17gZhE4L6QjoA_V7UOON1cA5DsSHuQ==
Age: 1494


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    99b7d23c1748d0526782b9ff9ea45f09
Sha1:   eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
Sha256: 48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "06AF9AE9FC72A3AEB4BE2B742128A0CB8EA4AFF348AFE2E4490D3639B3B377D9"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2590
Expires: Thu, 15 Sep 2022 05:18:24 GMT
Date: Thu, 15 Sep 2022 04:35:14 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.49
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 14 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: lhHu9DOFkJhZmYxzlclkpRwp-eDbjP-57q4EAB-cGUjVNoToaHNN6A==
age: 86399
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 15 Sep 2022 04:35:14 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 15 Sep 2022 04:03:22 GMT
Expires: Thu, 15 Sep 2022 04:49:46 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: knCQ-UeWzXGECvlnE4MShlHMSfvPg-mXiMow3pbvEXtY_Ej8lxpcYQ==
Age: 1912


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4669
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 04:35:14 GMT
Last-Modified: Thu, 15 Sep 2022 03:17:25 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: oI8mr4vKm0l99+dJ8ceCIw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         44.242.41.15
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0Hk0JvccUH2Jce/tv7HVhO8uoVw=

                                        
                                            GET / HTTP/1.1 
Host: office365securefile.mystrikingly.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         54.230.111.7
HTTP/2 302 Found
content-type: text/html; charset=utf-8
                                        
content-length: 125
location: https://office365securefile.mystrikingly.com/i/construction
date: Thu, 15 Sep 2022 04:35:15 GMT
status: 302 Found
x-frame-options: Allow-From https://my.livechatinc.com/
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: no-cache, no-store
x-request-id: 561b2b89be183e7f03e0576673565ff4
x-runtime: 0.278487
strict-transport-security: max-age=15724800; includeSubDomains
x-cache: Miss from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: G8hzo3sFqWHoR9SqwWthDMpW1WlTgLvJTlL_F1rJwxPh0fziY8Eu8Q==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with no line terminators
Size:   125
Md5:    456c58c4a680fb4808e1480c25159317
Sha1:   6085c0af065461b2af731e8b60fcb67c857b0c55
Sha256: d691ade160907fcfbb488c32773e802547090bae6706f511d3357d16ba932b14

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12808
Expires: Thu, 15 Sep 2022 08:08:44 GMT
Date: Thu, 15 Sep 2022 04:35:16 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12808
Expires: Thu, 15 Sep 2022 08:08:44 GMT
Date: Thu, 15 Sep 2022 04:35:16 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12808
Expires: Thu, 15 Sep 2022 08:08:44 GMT
Date: Thu, 15 Sep 2022 04:35:16 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12808
Expires: Thu, 15 Sep 2022 08:08:44 GMT
Date: Thu, 15 Sep 2022 04:35:16 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5392f754-e2f9-4a41-bd41-e281b109c83d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5097
x-amzn-requestid: 7d0072f1-0832-4b01-9f5a-081c7d193420
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YaGbEGDiIAMFqGw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320b779-2ee57a3e5641f70c00116156;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 17:01:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5TMIu7RzFcpyWKH_HSAd4LDal3PFMAa37n0SVEVDFGyz5RJeqJq5Rw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:46:45 GMT
age: 24511
etag: "96afd6daa0d13f8a05ceb77880f967d539f37702"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5097
Md5:    6fcd0641757ecb9061e0272fc9377b8a
Sha1:   96afd6daa0d13f8a05ceb77880f967d539f37702
Sha256: 8af5e3c3e524a5e3661e50a36403a5cc6c95521e77984ce954ceefd5a542abfc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F706eea65-3ba8-43f4-85c3-967026936660.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9922
x-amzn-requestid: de1e3e45-74ff-41b2-986f-e78473cb6d98
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YVc1SGM7IAMFw0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631edb54-2099524d6f2c338b41eea101;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 07:10:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MtgQUzYMa3mT0lxPhQ5ZCp9XVVyBH8T0dlx_0wSLMZlaFEiCikTXMw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 22:25:51 GMT
age: 22165
etag: "c7cf1f6a259cece60a34261ec83ee00736e1d72b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9922
Md5:    3ef9865421a37eae9a4df04083d27485
Sha1:   c7cf1f6a259cece60a34261ec83ee00736e1d72b
Sha256: 723b65ba660f22281f85d6caceea23e9cd932ee9084dc905a08a585746c4c4cc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff58a0d09-8340-4c32-9c0f-4a16eb02a332.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6380
x-amzn-requestid: ec42c090-3ccb-4a96-94d4-12e0ec616c12
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeB6ZFeRIAMFgjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632249db-798dd3a9039c840c695c23d3;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 21:38:36 GMT
x-amz-cf-pop: DEN52-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Bq71TeJMsIPZuTeopSEr5Igj9cf321ua6njE130novzRRFdRqIyRBg==
via: 1.1 befcfd7ee847a3c890471f27612dbcde.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:56:29 GMT
age: 23927
etag: "5aa2ca4a551c811dce2c615402f3d55e8bd9af01"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6380
Md5:    651614370b644d8db7de117f63d8f201
Sha1:   5aa2ca4a551c811dce2c615402f3d55e8bd9af01
Sha256: 155b03327ab70b1bda11e54095ca9e337f4681a8202487a3eb4752efebc73bcb
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb035d64b-46a7-4c49-b95b-e454aa90f817.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9071
x-amzn-requestid: b450f7cf-6cc7-4d1f-aef3-4496f0971727
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeIxuEq6oAMF9jQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632254d7-6912ef8731d81fa43b805e5b;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:25:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 6LDUuDX1W8-Q88pDJma0xCAd5QuJ0YV-VpJ_8LVyDHX9YN1k0fQZ8Q==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 22:36:39 GMT
etag: "d37ad0f40bc1f3f0022467dd0af2478980bd858a"
age: 21517
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9071
Md5:    1633672fad0b564108cf81ad711dc881
Sha1:   d37ad0f40bc1f3f0022467dd0af2478980bd858a
Sha256: cc7176a297f6009f07074fb9af796132b4452833be675bf378cc950fe81a582a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52159404-0704-4df5-9f35-e4a1f747570b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9814
x-amzn-requestid: 9a7523fc-5b9c-449a-b9a4-493f63a1a6fa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUhGnHQFIAMFyOA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e7bc3-26ddc5e62dc268832dc9c24d;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 00:22:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: yYYSriRLwpogCFmP3v3Mqg9iuJVrrrSm2IZIFsHpA9Na1OQ6b4W1rA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:45:16 GMT
age: 24600
etag: "b17c656ba220024540ab04f8d246cafd017cf728"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9814
Md5:    f7082899e630002ee0b8c99889b989e0
Sha1:   b17c656ba220024540ab04f8d246cafd017cf728
Sha256: 15ccc20ac18b381beb84ad39f684fceea311243c9497e1d5f512aafe95cae863
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb933dee6-def3-47b6-bfe3-39eee412da4d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12802
x-amzn-requestid: dcbf418f-92a2-4aaf-9187-b4d27d7d2fdc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yds7DGdTIAMFueg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63222846-56b639e26cdc87247f6abc54;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 19:15:18 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: m8UtuQvEW0vj6z3-oXGJq8_qiTdiI08cPd28Z0mydFuJYI9bDfP27Q==
via: 1.1 3c974a460e97e56c6eb1e6a30797d9d6.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:34:15 GMT
etag: "a38f84502cc64fa3f621c85d330cfa20ba80b7a6"
age: 28861
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12802
Md5:    2e99a57f5113a2333e7152e73d9dc14a
Sha1:   a38f84502cc64fa3f621c85d330cfa20ba80b7a6
Sha256: 8ab3f12a13a1f8616b7c80a17855380f13a61484c6e889287af0943c4fe20833
                                        
                                            GET /detectIE-c385c24313ef0e9e4e7a1e131bf5e59f0fbd468f9f9ef44fd6739ae84ef0c0a4.js HTTP/1.1 
Host: static-assets.strikinglycdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://office365securefile.mystrikingly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.87
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
content-length: 1094
date: Wed, 15 Jun 2022 10:13:16 GMT
last-modified: Tue, 26 Feb 2019 04:11:38 GMT
etag: "1a1ccb664791dd666f6f567c685dcc6c"
cache-control: max-age=315360000, public
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: h9O6ehGD1BY3bwdKbTQMkbioKILVEcXcmkVd7wTRTuCFszyfPVe0nw==
age: 7928522
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, Unicode text, UTF-8 text, with very long lines (2101)
Size:   1094
Md5:    1a1ccb664791dd666f6f567c685dcc6c
Sha1:   f84b457c4725bfe17a4d390cd3d6191993b2c83a
Sha256: 97d27acf3f28ac1dcdeefc731a237a7b7c437a930d8d9db5620dc10552c06a68
                                        
                                            GET /pages_show-6ef595807655d761ee716719bec730d1bc7a3893c5280aa7b3c89621e1f54a14.js HTTP/1.1 
Host: static-assets.strikinglycdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://office365securefile.mystrikingly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.87
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
content-length: 171788
date: Mon, 15 Aug 2022 03:02:48 GMT
last-modified: Thu, 16 Jun 2022 08:06:38 GMT
etag: "7cae3984e91594a7fbc5c757150c8f73"
cache-control: max-age=315360000, public
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: MV34jIXeK66sffUvAA7wBDVoJBTXRrnU7MwI5jkfk7V8uDm8SkTwQw==
age: 2683950
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (32010)
Size:   171788
Md5:    7cae3984e91594a7fbc5c757150c8f73
Sha1:   c0914ae0836ff92ce65d04a8e62846a057646bb4
Sha256: 756d1db4543c58a1a531fbe9b072abfd2a59d9a6f6928897cd71fb51ce109d21
                                        
                                            GET /i/construction HTTP/1.1 
Host: office365securefile.mystrikingly.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

                                         
                                         54.230.111.7
HTTP/2 404 Not Found
content-type: text/html; charset=utf-8
                                        
date: Thu, 15 Sep 2022 04:35:16 GMT
status: 404 Not Found
x-frame-options: Allow-From https://my.livechatinc.com/
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: no-cache
set-cookie: XSRF-TOKEN=5cDF8ImTl%2BZ%2Fyk4APtyea2v1lCYYRr3N7Uc10mWPC6CQidE2leaBXYz%2FaJxDBmpkK%2BR0nnAXqzzkPpBU%2FWn04w%3D%3D; path=/ _bobcat_session=TEFWZkNYSnA2NC9zMFZCWjZCTitkbkZNOW1rNVBpWnBRNW9YZ1pHazFDbnVhb0NFVXlBQXpCTjZ5Nit1ZXoxT3c5UDEvU0RSZ2JCSjJHQzJuc3lUTW0wbXJZRm1rb253R21PeGlNNnllL0NwYjd6L1U0bnJSUGJId1BqTWNrN21lbERWQ1JCd0tBaTVqaHl1UGZPN2NRPT0tLTFtRURnUC9nOWxHd0dSemRXOHNtMVE9PQ%3D%3D--f8df71b9c27dfdf15b0269f1f9cfa283fd95c044; path=/; expires=Wed, 15 Sep 2032 04:35:16 -0000; HttpOnly
x-request-id: d9b0836cf406b4a0db5fd97e00e53b58
x-runtime: 0.348934
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
x-cache: Error from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: i31k72FnJaHIKTH0WsdfluLyjekm8B9kuxv_yFQPelKYSqq7LGE-AA==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (32636)
Size:   25478
Md5:    b234d8f5f361730346fe11588710e5fa
Sha1:   ad2637159d5708975c21eeff904786de6e2611fc
Sha256: 45a76364fe94fd8267f72031c24538c2dd1adc746c0ee5531885e3ce996d9b62

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 15 Sep 2022 04:35:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ajax/libs/jquery/1.10.0/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://office365securefile.mystrikingly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.234
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 32964
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 17:11:40 GMT
expires: Thu, 14 Sep 2023 17:11:40 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 41017
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32099)
Size:   32964
Md5:    3469579c43507b5024c3a02818a339ef
Sha1:   c0bfa243ac56b2bb5e2f2d89a18320d68bd87e33
Sha256: 1ae52784fa308e6c1cd71a7ae8f3b9a2ce27f3e0801a734a6b108ff38a717d56
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 15 Sep 2022 04:35:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         54.230.245.110
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 04:35:17 GMT
Last-Modified: Thu, 15 Sep 2022 04:26:29 GMT
Server: ECS (dcb/7EEE)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Hv5VG8YMWCyOnx0cnwffDUAuOuJ_THsi0JA6hwQwcEBrL3Xd8EitqQ==
Age: 528

                                        
                                            GET /bobcat/show_init-ec165efeab9b52a6d8a81cd3e526faaeedf6dd589c036c9f711274d4f92bf3e7.js HTTP/1.1 
Host: static-assets.strikinglycdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://office365securefile.mystrikingly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.87
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 630
date: Tue, 09 Aug 2022 00:28:02 GMT
last-modified: Fri, 18 Aug 2017 05:39:42 GMT
etag: "83648c77a3a391fcf970d1469e97ec9d"
cache-control: max-age=315360000, public
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZF3xos-t-s3TqY4SSr6mEilqgrkZYUiwC8KqDMTqZOiVGzhhyjOIfQ==
age: 3211636
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1666)
Size:   630
Md5:    83648c77a3a391fcf970d1469e97ec9d
Sha1:   05c154ef79e4f26602dfcefa5c6df761d99cfa70
Sha256: 890c5271484e30a8892df04930523a7b17ee9bb1795888ec532c6608343497ba
                                        
                                            GET /fonts/typefaces/open_sans/OpenSans-Regular-webfont.woff HTTP/1.1 
Host: static-assets.strikinglycdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://office365securefile.mystrikingly.com
Connection: keep-alive
Referer: https://static-assets.strikinglycdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         143.204.55.87
HTTP/2 200 OK
content-type: application/font-woff
                                        
content-length: 22660
date: Thu, 15 Sep 2022 04:35:20 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
last-modified: Mon, 21 Aug 2017 06:42:12 GMT
etag: "79515ad0788973c533405f7012dfeccd"
cache-control: public, max-age=31557600
expires: Tue, 21 Aug 2018 12:42:11 GMT
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Miss from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Mcj-fq7vMSn8lOagYZ7k73a6j009l-4AYtO85F7G-IBBq2TaFmRUCg==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 22660, version 1.0\012- data
Size:   22660
Md5:    79515ad0788973c533405f7012dfeccd
Sha1:   5092881fad2caffdc6bf71bdab1ea547b73d3564
Sha256: 22e7a1b10c110072f5a0bfd16e2197a76b279ec879bcce8978fada1dc9ee5d40
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: office365securefile.mystrikingly.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://office365securefile.mystrikingly.com/i/construction
Cookie: XSRF-TOKEN=5cDF8ImTl%2BZ%2Fyk4APtyea2v1lCYYRr3N7Uc10mWPC6CQidE2leaBXYz%2FaJxDBmpkK%2BR0nnAXqzzkPpBU%2FWn04w%3D%3D; _bobcat_session=TEFWZkNYSnA2NC9zMFZCWjZCTitkbkZNOW1rNVBpWnBRNW9YZ1pHazFDbnVhb0NFVXlBQXpCTjZ5Nit1ZXoxT3c5UDEvU0RSZ2JCSjJHQzJuc3lUTW0wbXJZRm1rb253R21PeGlNNnllL0NwYjd6L1U0bnJSUGJId1BqTWNrN21lbERWQ1JCd0tBaTVqaHl1UGZPN2NRPT0tLTFtRURnUC9nOWxHd0dSemRXOHNtMVE9PQ%3D%3D--f8df71b9c27dfdf15b0269f1f9cfa283fd95c044
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.7
HTTP/2 302 Found
content-type: text/html; charset=utf-8
                                        
content-length: 124
location: https://static-assets.strikinglycdn.com/images/favicon.ico
date: Thu, 15 Sep 2022 04:35:20 GMT
status: 302 Found
x-frame-options: Allow-From https://my.livechatinc.com/
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
etag: "07f3add5bbb8e6993f4be8fef691fe15"
last-modified: Thu, 15 Sep 2022 02:07:33 GMT
cache-control: max-age=0, public, must-revalidate
set-cookie: XSRF-TOKEN=nUE90ggXl3lWHP3t3KZt7%2FCynbaP0OpCDBnVLbAE0azoCCkUFGKBwqUp23GhfJngsKN9DueB%2FLMFYHCrKOIu7w%3D%3D; path=/ _bobcat_session=ditpQTVROFlkckRhUy9FWk1ZWSs5ZDZPeFZ5aVhuNkg0U2ltQVBXTDBiV0o2NVZwOFliMnozVU4vMFM1RzA2alFYTFRNeTh0YUloS1Fyd3FlRzJMSm92K3VoZityV1pJRzlqSUhuN0MwQU5JeFYwMTV5Z2ppVTZ0VzVyTUR4RTkvRDQvdi94dStLSHBrUk05dlplSU1nPT0tLTZjdDZZNXZVMUJzUWxNaXpZNXlRT1E9PQ%3D%3D--af8288bf8ad9d333ffc294d127eab1b434590c64; path=/; expires=Wed, 15 Sep 2032 04:35:20 -0000; HttpOnly
x-request-id: d7d120b1b4e3d8b720c0f83bef4e3319
x-runtime: 0.024751
strict-transport-security: max-age=15724800; includeSubDomains
x-cache: Miss from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZnptELhsBKAjsFLSRXBYg-LX5RHk-Q_iPzEVBmL9U0HQW92PHDxdHQ==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with no line terminators
Size:   124
Md5:    6f94b62c0d1fd4eaa8354b5e9ff6f0cd
Sha1:   fc18e15c6b83c7e3059d83483ddf50966ec2229b
Sha256: 5a755c13047f6a4827617e78efbbdcc83b199c1810f2d85970ea0cd3c841b123
                                        
                                            GET /images/favicon.ico HTTP/1.1 
Host: static-assets.strikinglycdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://office365securefile.mystrikingly.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         143.204.55.87
HTTP/2 200 OK
content-type: image/x-icon
                                        
content-length: 5430
date: Tue, 05 Oct 2021 23:54:21 GMT
last-modified: Wed, 13 Sep 2017 08:34:35 GMT
etag: "b86b4c5234eb86ceee9720e9eb4105ac"
cache-control: max-age=315360000, public
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6Df6Lb1aAJmkHRLsrYCWBvxFQwNyikJm3CpbAMh9clBb6K9UWnniag==
age: 29738460
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size:   5430
Md5:    b86b4c5234eb86ceee9720e9eb4105ac
Sha1:   0f8fff33843b00308c5d74fc5ef1b967b5d757a7
Sha256: 52819ace79c01b0d22b7fd2c67b53a59eb85031cface4ea886b5c2334031da40
                                        
                                            GET /javascripts/themes/s5-theme/main.js HTTP/1.1 
Host: static-assets.strikinglycdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://office365securefile.mystrikingly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.87
HTTP/2 403 Forbidden
content-type: application/xml
                                        
date: Thu, 15 Sep 2022 04:35:17 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xHmw64m7zV1K3oc-zak1kPXmyR_s_VR1Guw8cBhTYr6nQnWgTpGh1Q==
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /stylesheets/shared/skeleton.css HTTP/1.1 
Host: static-assets.strikinglycdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://office365securefile.mystrikingly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.87
HTTP/2 403 Forbidden
content-type: application/xml
                                        
date: Thu, 15 Sep 2022 04:35:18 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8KU7ZQfACySBdp9mgRvYoYIkyl8rrVVYeArA5yR8HEjYZe-JEiW_Og==
X-Firefox-Spdy: h2


--- Additional Info ---