office365securefile.mystrikingly.com/
54.230.111.19301 Moved Permanently 167 B URL HTTP/1.1 office365securefile.mystrikingly.com/
IP 54.230.111.19:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: office365securefile.mystrikingly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Thu, 15 Sep 2022 04:35:13 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://office365securefile.mystrikingly.com/
X-Cache: Redirect from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: eZGwIh-slMxcJhvCX9XVyEjR8gkmenlFZtveR1vBmeiFrMvUuQ23LA==
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 15 Sep 2022 04:10:20 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: e7EAzq18qAFMOUtfv02pDKPx17gZhE4L6QjoA_V7UOON1cA5DsSHuQ==
Age: 1494
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6716f88f982aa553eaf5de31b2629224
97ab757b0a059027ffb04675114e5c55738fccaf
06af9ae9fc72a3aeb4be2b742128a0cb8ea4aff348afe2e4490d3639b3b377d9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "06AF9AE9FC72A3AEB4BE2B742128A0CB8EA4AFF348AFE2E4490D3639B3B377D9"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2590
Expires: Thu, 15 Sep 2022 05:18:24 GMT
Date: Thu, 15 Sep 2022 04:35:14 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 14 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: lhHu9DOFkJhZmYxzlclkpRwp-eDbjP-57q4EAB-cGUjVNoToaHNN6A==
age: 86399
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 04:35:14 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 15 Sep 2022 04:03:22 GMT
Expires: Thu, 15 Sep 2022 04:49:46 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: knCQ-UeWzXGECvlnE4MShlHMSfvPg-mXiMow3pbvEXtY_Ej8lxpcYQ==
Age: 1912
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3ac56507d17ffff5e8b486406985d68
17d26336cd8ea65af3f23db166945f1b3fbbfbab
e7e321340eed681c1269f715b0214e1511d5762fffbe930e7c157b800afa9a39
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4669
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 04:35:14 GMT
Last-Modified: Thu, 15 Sep 2022 03:17:25 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
44.242.41.15101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.242.41.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: oI8mr4vKm0l99+dJ8ceCIw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0Hk0JvccUH2Jce/tv7HVhO8uoVw=
office365securefile.mystrikingly.com/
54.230.111.7302 Found 125 B URL HTTP/2 office365securefile.mystrikingly.com/
IP 54.230.111.7:0
File type HTML document text\012- HTML document, ASCII text, with no line terminators
Hash 456c58c4a680fb4808e1480c25159317
6085c0af065461b2af731e8b60fcb67c857b0c55
d691ade160907fcfbb488c32773e802547090bae6706f511d3357d16ba932b14
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: office365securefile.mystrikingly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
content-type: text/html; charset=utf-8
content-length: 125
location: https://office365securefile.mystrikingly.com/i/construction
date: Thu, 15 Sep 2022 04:35:15 GMT
status: 302 Found
x-frame-options: Allow-From https://my.livechatinc.com/
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: no-cache, no-store
x-request-id: 561b2b89be183e7f03e0576673565ff4
x-runtime: 0.278487
strict-transport-security: max-age=15724800; includeSubDomains
x-cache: Miss from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: G8hzo3sFqWHoR9SqwWthDMpW1WlTgLvJTlL_F1rJwxPh0fziY8Eu8Q==
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b9bfbb189fcbbdc76ff274e424f39053
de008d728f2274f08019c97bc969ddd6fe64a65d
a4f07d30f29e785e2ee605aee590ab928c3e1412f4dc61ff163cf32445cc3af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12808
Expires: Thu, 15 Sep 2022 08:08:44 GMT
Date: Thu, 15 Sep 2022 04:35:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b9bfbb189fcbbdc76ff274e424f39053
de008d728f2274f08019c97bc969ddd6fe64a65d
a4f07d30f29e785e2ee605aee590ab928c3e1412f4dc61ff163cf32445cc3af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12808
Expires: Thu, 15 Sep 2022 08:08:44 GMT
Date: Thu, 15 Sep 2022 04:35:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b9bfbb189fcbbdc76ff274e424f39053
de008d728f2274f08019c97bc969ddd6fe64a65d
a4f07d30f29e785e2ee605aee590ab928c3e1412f4dc61ff163cf32445cc3af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12808
Expires: Thu, 15 Sep 2022 08:08:44 GMT
Date: Thu, 15 Sep 2022 04:35:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b9bfbb189fcbbdc76ff274e424f39053
de008d728f2274f08019c97bc969ddd6fe64a65d
a4f07d30f29e785e2ee605aee590ab928c3e1412f4dc61ff163cf32445cc3af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A4F07D30F29E785E2EE605AEE590AB928C3E1412F4DC61FF163CF32445CC3AF4"
Last-Modified: Tue, 13 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12808
Expires: Thu, 15 Sep 2022 08:08:44 GMT
Date: Thu, 15 Sep 2022 04:35:16 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5392f754-e2f9-4a41-bd41-e281b109c83d.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5392f754-e2f9-4a41-bd41-e281b109c83d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6fcd0641757ecb9061e0272fc9377b8a
96afd6daa0d13f8a05ceb77880f967d539f37702
8af5e3c3e524a5e3661e50a36403a5cc6c95521e77984ce954ceefd5a542abfc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5392f754-e2f9-4a41-bd41-e281b109c83d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5097
x-amzn-requestid: 7d0072f1-0832-4b01-9f5a-081c7d193420
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YaGbEGDiIAMFqGw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320b779-2ee57a3e5641f70c00116156;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 17:01:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5TMIu7RzFcpyWKH_HSAd4LDal3PFMAa37n0SVEVDFGyz5RJeqJq5Rw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:46:45 GMT
age: 24511
etag: "96afd6daa0d13f8a05ceb77880f967d539f37702"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F706eea65-3ba8-43f4-85c3-967026936660.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F706eea65-3ba8-43f4-85c3-967026936660.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3ef9865421a37eae9a4df04083d27485
c7cf1f6a259cece60a34261ec83ee00736e1d72b
723b65ba660f22281f85d6caceea23e9cd932ee9084dc905a08a585746c4c4cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F706eea65-3ba8-43f4-85c3-967026936660.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9922
x-amzn-requestid: de1e3e45-74ff-41b2-986f-e78473cb6d98
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YVc1SGM7IAMFw0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631edb54-2099524d6f2c338b41eea101;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 07:10:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MtgQUzYMa3mT0lxPhQ5ZCp9XVVyBH8T0dlx_0wSLMZlaFEiCikTXMw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 22:25:51 GMT
age: 22165
etag: "c7cf1f6a259cece60a34261ec83ee00736e1d72b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff58a0d09-8340-4c32-9c0f-4a16eb02a332.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff58a0d09-8340-4c32-9c0f-4a16eb02a332.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 651614370b644d8db7de117f63d8f201
5aa2ca4a551c811dce2c615402f3d55e8bd9af01
155b03327ab70b1bda11e54095ca9e337f4681a8202487a3eb4752efebc73bcb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff58a0d09-8340-4c32-9c0f-4a16eb02a332.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6380
x-amzn-requestid: ec42c090-3ccb-4a96-94d4-12e0ec616c12
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeB6ZFeRIAMFgjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632249db-798dd3a9039c840c695c23d3;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 21:38:36 GMT
x-amz-cf-pop: DEN52-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Bq71TeJMsIPZuTeopSEr5Igj9cf321ua6njE130novzRRFdRqIyRBg==
via: 1.1 befcfd7ee847a3c890471f27612dbcde.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:56:29 GMT
age: 23927
etag: "5aa2ca4a551c811dce2c615402f3d55e8bd9af01"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb035d64b-46a7-4c49-b95b-e454aa90f817.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb035d64b-46a7-4c49-b95b-e454aa90f817.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1633672fad0b564108cf81ad711dc881
d37ad0f40bc1f3f0022467dd0af2478980bd858a
cc7176a297f6009f07074fb9af796132b4452833be675bf378cc950fe81a582a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb035d64b-46a7-4c49-b95b-e454aa90f817.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9071
x-amzn-requestid: b450f7cf-6cc7-4d1f-aef3-4496f0971727
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeIxuEq6oAMF9jQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632254d7-6912ef8731d81fa43b805e5b;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:25:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 6LDUuDX1W8-Q88pDJma0xCAd5QuJ0YV-VpJ_8LVyDHX9YN1k0fQZ8Q==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 22:36:39 GMT
etag: "d37ad0f40bc1f3f0022467dd0af2478980bd858a"
content-type: image/jpeg
age: 21517
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52159404-0704-4df5-9f35-e4a1f747570b.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52159404-0704-4df5-9f35-e4a1f747570b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f7082899e630002ee0b8c99889b989e0
b17c656ba220024540ab04f8d246cafd017cf728
15ccc20ac18b381beb84ad39f684fceea311243c9497e1d5f512aafe95cae863
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52159404-0704-4df5-9f35-e4a1f747570b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9814
x-amzn-requestid: 9a7523fc-5b9c-449a-b9a4-493f63a1a6fa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUhGnHQFIAMFyOA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e7bc3-26ddc5e62dc268832dc9c24d;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 00:22:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: yYYSriRLwpogCFmP3v3Mqg9iuJVrrrSm2IZIFsHpA9Na1OQ6b4W1rA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:45:16 GMT
age: 24600
etag: "b17c656ba220024540ab04f8d246cafd017cf728"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb933dee6-def3-47b6-bfe3-39eee412da4d.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb933dee6-def3-47b6-bfe3-39eee412da4d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2e99a57f5113a2333e7152e73d9dc14a
a38f84502cc64fa3f621c85d330cfa20ba80b7a6
8ab3f12a13a1f8616b7c80a17855380f13a61484c6e889287af0943c4fe20833
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb933dee6-def3-47b6-bfe3-39eee412da4d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12802
x-amzn-requestid: dcbf418f-92a2-4aaf-9187-b4d27d7d2fdc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yds7DGdTIAMFueg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63222846-56b639e26cdc87247f6abc54;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 19:15:18 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: m8UtuQvEW0vj6z3-oXGJq8_qiTdiI08cPd28Z0mydFuJYI9bDfP27Q==
via: 1.1 3c974a460e97e56c6eb1e6a30797d9d6.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:34:15 GMT
etag: "a38f84502cc64fa3f621c85d330cfa20ba80b7a6"
content-type: image/jpeg
age: 28861
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
static-assets.strikinglycdn.com/detectIE-c385c24313ef0e9e4e7a1e131bf5e59f0fbd468f9f9ef44fd6739ae84ef0c0a4.js
143.204.55.87200 OK 1.1 kB URL HTTP/2 static-assets.strikinglycdn.com/detectIE-c385c24313ef0e9e4e7a1e131bf5e59f0fbd468f9f9ef44fd6739ae84ef0c0a4.js
IP 143.204.55.87:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (2101)
Hash 1a1ccb664791dd666f6f567c685dcc6c
f84b457c4725bfe17a4d390cd3d6191993b2c83a
97d27acf3f28ac1dcdeefc731a237a7b7c437a930d8d9db5620dc10552c06a68
GET /detectIE-c385c24313ef0e9e4e7a1e131bf5e59f0fbd468f9f9ef44fd6739ae84ef0c0a4.js HTTP/1.1
Host: static-assets.strikinglycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://office365securefile.mystrikingly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 1094
date: Wed, 15 Jun 2022 10:13:16 GMT
last-modified: Tue, 26 Feb 2019 04:11:38 GMT
etag: "1a1ccb664791dd666f6f567c685dcc6c"
cache-control: max-age=315360000, public
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: h9O6ehGD1BY3bwdKbTQMkbioKILVEcXcmkVd7wTRTuCFszyfPVe0nw==
age: 7928522
X-Firefox-Spdy: h2
static-assets.strikinglycdn.com/pages_show-6ef595807655d761ee716719bec730d1bc7a3893c5280aa7b3c89621e1f54a14.js
143.204.55.87200 OK 172 kB URL HTTP/2 static-assets.strikinglycdn.com/pages_show-6ef595807655d761ee716719bec730d1bc7a3893c5280aa7b3c89621e1f54a14.js
IP 143.204.55.87:0
File type Unicode text, UTF-8 text, with very long lines (32010)
Size 172 kB (171788 bytes)
Hash 7cae3984e91594a7fbc5c757150c8f73
c0914ae0836ff92ce65d04a8e62846a057646bb4
756d1db4543c58a1a531fbe9b072abfd2a59d9a6f6928897cd71fb51ce109d21
GET /pages_show-6ef595807655d761ee716719bec730d1bc7a3893c5280aa7b3c89621e1f54a14.js HTTP/1.1
Host: static-assets.strikinglycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://office365securefile.mystrikingly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 171788
date: Mon, 15 Aug 2022 03:02:48 GMT
last-modified: Thu, 16 Jun 2022 08:06:38 GMT
etag: "7cae3984e91594a7fbc5c757150c8f73"
cache-control: max-age=315360000, public
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: MV34jIXeK66sffUvAA7wBDVoJBTXRrnU7MwI5jkfk7V8uDm8SkTwQw==
age: 2683950
X-Firefox-Spdy: h2
office365securefile.mystrikingly.com/i/construction
54.230.111.7404 Not Found 26 kB URL HTTP/2 office365securefile.mystrikingly.com/i/construction
IP 54.230.111.7:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (32636)
Hash b234d8f5f361730346fe11588710e5fa
ad2637159d5708975c21eeff904786de6e2611fc
45a76364fe94fd8267f72031c24538c2dd1adc746c0ee5531885e3ce996d9b62
Analyzer Verdict Alert fortinet Phishing
GET /i/construction HTTP/1.1
Host: office365securefile.mystrikingly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=utf-8
date: Thu, 15 Sep 2022 04:35:16 GMT
status: 404 Not Found
x-frame-options: Allow-From https://my.livechatinc.com/
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: no-cache
set-cookie: XSRF-TOKEN=5cDF8ImTl%2BZ%2Fyk4APtyea2v1lCYYRr3N7Uc10mWPC6CQidE2leaBXYz%2FaJxDBmpkK%2BR0nnAXqzzkPpBU%2FWn04w%3D%3D; path=/
_bobcat_session=TEFWZkNYSnA2NC9zMFZCWjZCTitkbkZNOW1rNVBpWnBRNW9YZ1pHazFDbnVhb0NFVXlBQXpCTjZ5Nit1ZXoxT3c5UDEvU0RSZ2JCSjJHQzJuc3lUTW0wbXJZRm1rb253R21PeGlNNnllL0NwYjd6L1U0bnJSUGJId1BqTWNrN21lbERWQ1JCd0tBaTVqaHl1UGZPN2NRPT0tLTFtRURnUC9nOWxHd0dSemRXOHNtMVE9PQ%3D%3D--f8df71b9c27dfdf15b0269f1f9cfa283fd95c044; path=/; expires=Wed, 15 Sep 2032 04:35:16 -0000; HttpOnly
x-request-id: d9b0836cf406b4a0db5fd97e00e53b58
x-runtime: 0.348934
content-encoding: gzip
strict-transport-security: max-age=15724800; includeSubDomains
x-cache: Error from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: i31k72FnJaHIKTH0WsdfluLyjekm8B9kuxv_yFQPelKYSqq7LGE-AA==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 01721134027b8087fcaea01ae7470149
e3d82b3dd35d846d3bd662a0f9b7a51cba2ba864
a7aa0a8736af71aee8a545362876a784954dbb37cda1a2c184c7ef99e14f2b56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 04:35:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.10.0/jquery.min.js
216.58.207.234200 OK 33 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.10.0/jquery.min.js
IP 216.58.207.234:0
File type ASCII text, with very long lines (32099)
Hash 3469579c43507b5024c3a02818a339ef
c0bfa243ac56b2bb5e2f2d89a18320d68bd87e33
1ae52784fa308e6c1cd71a7ae8f3b9a2ce27f3e0801a734a6b108ff38a717d56
GET /ajax/libs/jquery/1.10.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://office365securefile.mystrikingly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 32964
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 17:11:40 GMT
expires: Thu, 14 Sep 2023 17:11:40 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 41017
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 01721134027b8087fcaea01ae7470149
e3d82b3dd35d846d3bd662a0f9b7a51cba2ba864
a7aa0a8736af71aee8a545362876a784954dbb37cda1a2c184c7ef99e14f2b56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 04:35:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash b7bef3e8342d0f53efb509ccbddf652a
908528b2d1f6111afe282009e9d47975f69fcc9d
452f296f94caa4e312581a6542475cc1d6e738f4cfe6db3daa664766d28bcb48
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 15 Sep 2022 04:35:17 GMT
Last-Modified: Thu, 15 Sep 2022 04:26:29 GMT
Server: ECS (dcb/7EEE)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Hv5VG8YMWCyOnx0cnwffDUAuOuJ_THsi0JA6hwQwcEBrL3Xd8EitqQ==
Age: 528
static-assets.strikinglycdn.com/bobcat/show_init-ec165efeab9b52a6d8a81cd3e526faaeedf6dd589c036c9f711274d4f92bf3e7.js
143.204.55.87200 OK 630 B URL HTTP/2 static-assets.strikinglycdn.com/bobcat/show_init-ec165efeab9b52a6d8a81cd3e526faaeedf6dd589c036c9f711274d4f92bf3e7.js
IP 143.204.55.87:0
File type ASCII text, with very long lines (1666)
Hash 83648c77a3a391fcf970d1469e97ec9d
05c154ef79e4f26602dfcefa5c6df761d99cfa70
890c5271484e30a8892df04930523a7b17ee9bb1795888ec532c6608343497ba
GET /bobcat/show_init-ec165efeab9b52a6d8a81cd3e526faaeedf6dd589c036c9f711274d4f92bf3e7.js HTTP/1.1
Host: static-assets.strikinglycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://office365securefile.mystrikingly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 630
date: Tue, 09 Aug 2022 00:28:02 GMT
last-modified: Fri, 18 Aug 2017 05:39:42 GMT
etag: "83648c77a3a391fcf970d1469e97ec9d"
cache-control: max-age=315360000, public
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZF3xos-t-s3TqY4SSr6mEilqgrkZYUiwC8KqDMTqZOiVGzhhyjOIfQ==
age: 3211636
X-Firefox-Spdy: h2
static-assets.strikinglycdn.com/fonts/typefaces/open_sans/OpenSans-Regular-webfont.woff
143.204.55.87200 OK 23 kB URL HTTP/2 static-assets.strikinglycdn.com/fonts/typefaces/open_sans/OpenSans-Regular-webfont.woff
IP 143.204.55.87:0
File type Web Open Font Format, TrueType, length 22660, version 1.0\012- data
Hash 79515ad0788973c533405f7012dfeccd
5092881fad2caffdc6bf71bdab1ea547b73d3564
22e7a1b10c110072f5a0bfd16e2197a76b279ec879bcce8978fada1dc9ee5d40
GET /fonts/typefaces/open_sans/OpenSans-Regular-webfont.woff HTTP/1.1
Host: static-assets.strikinglycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://office365securefile.mystrikingly.com
Connection: keep-alive
Referer: https://static-assets.strikinglycdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/font-woff
content-length: 22660
date: Thu, 15 Sep 2022 04:35:20 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
last-modified: Mon, 21 Aug 2017 06:42:12 GMT
etag: "79515ad0788973c533405f7012dfeccd"
cache-control: public, max-age=31557600
expires: Tue, 21 Aug 2018 12:42:11 GMT
accept-ranges: bytes
server: AmazonS3
vary: Origin
x-cache: Miss from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Mcj-fq7vMSn8lOagYZ7k73a6j009l-4AYtO85F7G-IBBq2TaFmRUCg==
X-Firefox-Spdy: h2
office365securefile.mystrikingly.com/favicon.ico
54.230.111.7302 Found 124 B URL HTTP/2 office365securefile.mystrikingly.com/favicon.ico
IP 54.230.111.7:0
File type HTML document text\012- HTML document, ASCII text, with no line terminators
Hash 6f94b62c0d1fd4eaa8354b5e9ff6f0cd
fc18e15c6b83c7e3059d83483ddf50966ec2229b
5a755c13047f6a4827617e78efbbdcc83b199c1810f2d85970ea0cd3c841b123
GET /favicon.ico HTTP/1.1
Host: office365securefile.mystrikingly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://office365securefile.mystrikingly.com/i/construction
Cookie: XSRF-TOKEN=5cDF8ImTl%2BZ%2Fyk4APtyea2v1lCYYRr3N7Uc10mWPC6CQidE2leaBXYz%2FaJxDBmpkK%2BR0nnAXqzzkPpBU%2FWn04w%3D%3D; _bobcat_session=TEFWZkNYSnA2NC9zMFZCWjZCTitkbkZNOW1rNVBpWnBRNW9YZ1pHazFDbnVhb0NFVXlBQXpCTjZ5Nit1ZXoxT3c5UDEvU0RSZ2JCSjJHQzJuc3lUTW0wbXJZRm1rb253R21PeGlNNnllL0NwYjd6L1U0bnJSUGJId1BqTWNrN21lbERWQ1JCd0tBaTVqaHl1UGZPN2NRPT0tLTFtRURnUC9nOWxHd0dSemRXOHNtMVE9PQ%3D%3D--f8df71b9c27dfdf15b0269f1f9cfa283fd95c044
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=utf-8
content-length: 124
location: https://static-assets.strikinglycdn.com/images/favicon.ico
date: Thu, 15 Sep 2022 04:35:20 GMT
status: 302 Found
x-frame-options: Allow-From https://my.livechatinc.com/
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
etag: "07f3add5bbb8e6993f4be8fef691fe15"
last-modified: Thu, 15 Sep 2022 02:07:33 GMT
cache-control: max-age=0, public, must-revalidate
set-cookie: XSRF-TOKEN=nUE90ggXl3lWHP3t3KZt7%2FCynbaP0OpCDBnVLbAE0azoCCkUFGKBwqUp23GhfJngsKN9DueB%2FLMFYHCrKOIu7w%3D%3D; path=/
_bobcat_session=ditpQTVROFlkckRhUy9FWk1ZWSs5ZDZPeFZ5aVhuNkg0U2ltQVBXTDBiV0o2NVZwOFliMnozVU4vMFM1RzA2alFYTFRNeTh0YUloS1Fyd3FlRzJMSm92K3VoZityV1pJRzlqSUhuN0MwQU5JeFYwMTV5Z2ppVTZ0VzVyTUR4RTkvRDQvdi94dStLSHBrUk05dlplSU1nPT0tLTZjdDZZNXZVMUJzUWxNaXpZNXlRT1E9PQ%3D%3D--af8288bf8ad9d333ffc294d127eab1b434590c64; path=/; expires=Wed, 15 Sep 2032 04:35:20 -0000; HttpOnly
x-request-id: d7d120b1b4e3d8b720c0f83bef4e3319
x-runtime: 0.024751
strict-transport-security: max-age=15724800; includeSubDomains
x-cache: Miss from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZnptELhsBKAjsFLSRXBYg-LX5RHk-Q_iPzEVBmL9U0HQW92PHDxdHQ==
X-Firefox-Spdy: h2
static-assets.strikinglycdn.com/images/favicon.ico
143.204.55.87200 OK 5.4 kB URL HTTP/2 static-assets.strikinglycdn.com/images/favicon.ico
IP 143.204.55.87:0
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash b86b4c5234eb86ceee9720e9eb4105ac
0f8fff33843b00308c5d74fc5ef1b967b5d757a7
52819ace79c01b0d22b7fd2c67b53a59eb85031cface4ea886b5c2334031da40
GET /images/favicon.ico HTTP/1.1
Host: static-assets.strikinglycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://office365securefile.mystrikingly.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon
content-length: 5430
date: Tue, 05 Oct 2021 23:54:21 GMT
last-modified: Wed, 13 Sep 2017 08:34:35 GMT
etag: "b86b4c5234eb86ceee9720e9eb4105ac"
cache-control: max-age=315360000, public
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6Df6Lb1aAJmkHRLsrYCWBvxFQwNyikJm3CpbAMh9clBb6K9UWnniag==
age: 29738460
X-Firefox-Spdy: h2
static-assets.strikinglycdn.com/javascripts/themes/s5-theme/main.js
143.204.55.87403 Forbidden 0 B URL HTTP/2 static-assets.strikinglycdn.com/javascripts/themes/s5-theme/main.js
IP 143.204.55.87:0
GET /javascripts/themes/s5-theme/main.js HTTP/1.1
Host: static-assets.strikinglycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://office365securefile.mystrikingly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
content-type: application/xml
date: Thu, 15 Sep 2022 04:35:17 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xHmw64m7zV1K3oc-zak1kPXmyR_s_VR1Guw8cBhTYr6nQnWgTpGh1Q==
X-Firefox-Spdy: h2
static-assets.strikinglycdn.com/stylesheets/shared/skeleton.css
143.204.55.87403 Forbidden 0 B URL HTTP/2 static-assets.strikinglycdn.com/stylesheets/shared/skeleton.css
IP 143.204.55.87:0
GET /stylesheets/shared/skeleton.css HTTP/1.1
Host: static-assets.strikinglycdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://office365securefile.mystrikingly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
content-type: application/xml
date: Thu, 15 Sep 2022 04:35:18 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8KU7ZQfACySBdp9mgRvYoYIkyl8rrVVYeArA5yR8HEjYZe-JEiW_Og==
X-Firefox-Spdy: h2