Report - www.attemplate.com/eur/307eb3de-a76a-4eee-8eb4-6365aaa55d79/322f75de-a575-4838-ba7a-bd35291af6a0/e92882b1-2504-4aee-92b2-addb1dc4f303/login?id=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

Report Overview

Submitted URL
www.attemplate.com/eur/307eb3de-a76a-4eee-8eb4-6365aaa55d79/322f75de-a575-4838-ba7a-bd35291af6a0/e92882b1-2504-4aee-92b2-addb1dc4f303/login?id=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
IP
13.107.227.53
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Submitted
2023-01-18 09:16:13
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
3
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
oneocsp.microsoft.com	1473	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	349 B	2.3 kB	204.79.197.203
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
www.attemplate.com	168105	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	8.3 kB	261 kB	13.107.227.53
aadcdn.msauth.net	1421	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	907 B	4.1 kB	13.107.227.53
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	90 kB	34.120.237.76
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	95.101.11.115
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	736 B	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.161.132.177

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-01-18 09:16:02	low	Client IP	Internal IP	ET INFO Microsoft Attack Simulation Training Domain in DNS Lookup (attemplate .com)
2023-01-18 09:16:02	low	Client IP	Internal IP	ET INFO Microsoft Attack Simulation Training Domain in DNS Lookup (attemplate .com)
2023-01-18 09:16:02	low	13.107.227.53	Client IP	ET INFO Observed Microsoft Attack Simulation Training SSL Cert (attemplate .com)

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-01-17	medium	www.attemplate.com/eur/307eb3de-a76a-4eee-8eb4-6365aaa55d79/322f75de-a575-4838-ba7a-bd35291af6a0/e92882b1-2504-4aee-92b2-addb1dc4f303/login?id=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	Office365

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-18	medium	www.attemplate.com/eur/307eb3de-a76a-4eee-8eb4-6365aaa55d79/322f75de-a575-4838-ba7a-bd35291af6a0/e92882b1-2504-4aee-92b2-addb1dc4f303/login?id=TEF6Qi9WQXBjSWpPR1BDWml6c1ZGYUE0Q294NHFUODFwWm05b3VESmJkeVNpUklsTHU5ZzhKRU9zaG01aFYxYS96Rm56bi9ORmVuaW5sa3hpc25QRTJMeTdIa1BuQ3NwRGN5dENDSVVnayt1NW5TZDM4NHZGeCtxOEpkRGpEQkVyeFp4OHAzZE94ZjIxNkNGSWZQN3dsY0RYdTMxaDhyTDh5SlpFTWJuQWFVSkRaMDc0eVRmWkRud2d6OGRhMEg0aGlDMWtwT2RtQldDdUZsYWk2dmlwcnVSVmMraDlIMXJjbXN4SW9EUFlveDNDZTJvTzlLTGlkVjdWekwvUkNLWjZyNXluTktSenRTMzQ0ajRkWkVKdmswRmJ5cGlkbU9HVVd2TjQ1OTZ6bjdEbS81YmMyODRvUi85WWpNdG1Ja3dnaEg2WHRSaDc5bUNwOUp4N1F1eCtrenBXVm5EUTcxWkdsQ1E0MU9yRkc0UW1peWo3QnErMjQzeDV2cFVOYVAy	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (2)

	URL	Size	First Seen	Last Seen
	www.attemplate.com/Content/jquery-3.5.1.min.js	90 kB	2023-03-07	2024-04-25
Pretty URL www.attemplate.com/Content/jquery-3.5.1.min.js IP 13.107.227.53 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:09 Last Seen2024-04-25 13:15:30 Times Seen14180 Hash b61aa6e2d68d21b3546b5b418bf0e9c3 9c1398f0de4c869dacb1c9ab1a8cc327f5421ff7 f36844906ad2309877aae3121b87fb15b9e09803cb4c333adc7e1e35ac92e14b Loading...

	www.attemplate.com/eur/307eb3de-a76a-4eee-8eb4-6365aaa55d79/322f75de-a575-4838-ba7a-bd35291af6a0/e92882b1-2504-4aee-92b2-addb1dc4f303/login?id=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	133 B	2023-03-07	2023-04-05
Pretty URL www.attemplate.com/eur/307eb3de-a76a-4eee-8eb4-6365aaa55d79/322f75de-a575-4838-ba7a-bd35291af6a0/e92882b1-2504-4aee-92b2-addb1dc4f303/login?id=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 IP 13.107.227.53 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:35 Last Seen2023-04-05 22:13:29 Times Seen133 Hash 9425ba1983746fad60064458b1024818 d148d4c5281448aef3ad1fdfd9e39181eacab1fa 2f49f455e7aa9b8aca1578edce4d095eec897d2eb24c5d1668dab021b7e170c9 Loading...

HTTP Transactions (30)

URL IP Response Size

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4b8b051d555b46b1e9e64faebf91b4ab
bdab7f1f4146f0e7c16665692e4f1edd83c10a24
e069730519f658e767ec8edb57edd8e2b1ccb18d4f0ade0920654eac18f83456

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E069730519F658E767EC8EDB57EDD8E2B1CCB18D4F0ADE0920654EAC18F83456"
Last-Modified: Tue, 17 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17371
Expires: Wed, 18 Jan 2023 14:05:33 GMT
Date: Wed, 18 Jan 2023 09:16:02 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bb0c8d0984a1f09a012961a54cda03c6
1a8ad450a0241554ee4fc7d02fac7b83529e60f6
eee3ca879a67cc25ea89cb83de9521eea1b82845705c3e82169d4787ecb7dd3a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EEE3CA879A67CC25EA89CB83DE9521EEA1B82845705C3E82169D4787ECB7DD3A"
Last-Modified: Mon, 16 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3463
Expires: Wed, 18 Jan 2023 10:13:45 GMT
Date: Wed, 18 Jan 2023 09:16:02 GMT
Connection: keep-alive

oneocsp.microsoft.com/ocsp

204.79.197.203

200 OK

1.8 kB

URL HTTP/1.1
oneocsp.microsoft.com/ocsp
IP
204.79.197.203:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
data
Size
1.8 kB (1777 bytes)
Hash
7952899551b2ee3ffe4ec982ad6c614d
bfc6e27a056a37a59b506107c13099146d4225be
a132075ffe9ff1d0c730f9083a5e6abc343543a527d3582a6b593d738e19f9fd

HTTP Headers

POST /ocsp HTTP/1.1
Host: oneocsp.microsoft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 86
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Length: 1777
Content-Type: application/ocsp-response
Expires: Sun, 22 Jan 2023 15:50:06 GMT
Last-Modified: Tue, 17 Jan 2023 14:14:10 GMT
ETag: "a132075ffe9ff1d0c730f9083a5e6abc343543a527d3582a6b593d738e19f9fd"
X-Powered-By: ASP.NET
x-content-type-options: nosniff
X-Cache: CONFIG_NOCACHE
X-MSEdge-Ref: Ref A: EF8A9B7A0BBF417CB2ED453DACFD658F Ref B: OSL30EDGE0210 Ref C: 2023-01-18T09:16:02Z
Date: Wed, 18 Jan 2023 09:16:01 GMT

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 18 Jan 2023 08:49:19 GMT
content-type: application/json
age: 1603
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d38f4bb41e1264b8a1e11ff0b1499d20
21c3e36bd908df43e0d49b747e270ec75cb882b0
3ff822eb56d2218ad6244fd013a82e0d27450ae21d47e08f1e3fdf4c82a8aad7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3FF822EB56D2218AD6244FD013A82E0D27450AE21D47E08F1E3FDF4C82A8AAD7"
Last-Modified: Mon, 16 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15970
Expires: Wed, 18 Jan 2023 13:42:12 GMT
Date: Wed, 18 Jan 2023 09:16:02 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: bXMJUgTH5By5FSQZVKMotnO7EnYgvY/GjcuX6l9uozmb0KeTsURrLjx/RjKfgE/qSjcgEFVF/y8=
x-amz-request-id: EEFBQGXCTPX7BS90
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 18 Jan 2023 08:45:20 GMT
age: 1842
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 09:16:02 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Pragma, Content-Length, Alert, Expires, ETag, Last-Modified, Backoff, Content-Type, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 18 Jan 2023 08:48:57 GMT
age: 1625
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
8720730dce33d0026a1a354ac93d4a7d
ed5f086bc646a4d93d2344b19ff7821c96e44f7c
b2892fda88242fbc4d58dd1f3bb159ca02cbf98b77c57dde66fba98d183c0136

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 685
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 09:16:02 GMT
Last-Modified: Wed, 18 Jan 2023 09:04:37 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

35.161.132.177

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.161.132.177:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 6sqMidNA3EowIH1pDqIw0A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ZSPSJ0ZxG6OSjTZoCrA5YajSOxc=

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6cfc390c95e65230e6798520be7df960
084d7efc24649c68fb6a0da6929585873796ec2a
ca8ad2a520681efa3bd19dc19b9414ae238d6ec5cf8d443103cabd16099c2117

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CA8AD2A520681EFA3BD19DC19B9414AE238D6EC5CF8D443103CABD16099C2117"
Last-Modified: Tue, 17 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2690
Expires: Wed, 18 Jan 2023 10:00:53 GMT
Date: Wed, 18 Jan 2023 09:16:03 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6cfc390c95e65230e6798520be7df960
084d7efc24649c68fb6a0da6929585873796ec2a
ca8ad2a520681efa3bd19dc19b9414ae238d6ec5cf8d443103cabd16099c2117

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CA8AD2A520681EFA3BD19DC19B9414AE238D6EC5CF8D443103CABD16099C2117"
Last-Modified: Tue, 17 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2690
Expires: Wed, 18 Jan 2023 10:00:53 GMT
Date: Wed, 18 Jan 2023 09:16:03 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6cfc390c95e65230e6798520be7df960
084d7efc24649c68fb6a0da6929585873796ec2a
ca8ad2a520681efa3bd19dc19b9414ae238d6ec5cf8d443103cabd16099c2117

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CA8AD2A520681EFA3BD19DC19B9414AE238D6EC5CF8D443103CABD16099C2117"
Last-Modified: Tue, 17 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2690
Expires: Wed, 18 Jan 2023 10:00:53 GMT
Date: Wed, 18 Jan 2023 09:16:03 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (13848 bytes)
Hash
8656702f08344d3a4658bc43a9074a1f
fba424e1d09cbdc839ca320458b51715dafbbccc
0b0ac963c377b07f843637348f3d7c41d2aca89540ab8c2b80ef5fbbf466fee8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13848
x-amzn-requestid: 93bbdd19-aa04-49ec-858f-9fa1d6b736d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6BKCGEtoAMFgsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c71573-008911af44c3998d7b27b837;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:38:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: adtKl3gOcesaXNHcRbi71-1Wz6caEgtXrAvbhB9qhId7eJEkd7d7pQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 21:59:45 GMT
age: 40578
etag: "fba424e1d09cbdc839ca320458b51715dafbbccc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86f138af-59eb-444d-882b-80f5918f4405.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11028 bytes)
Hash
402bdd90bc2557de4f317d4d0ec892ed
b205b0bb74fabcf1612f22db53c197b63ae4ce0c
2fa402a38832c3efe15d5fee9116b36aeea5a0012ba4e8d6477b4fa9a0368598

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86f138af-59eb-444d-882b-80f5918f4405.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11028
x-amzn-requestid: 2b2b0030-a54b-42d1-a680-69e23c4320bd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e4AteE7uIAMFSvw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c647ef-5abf38ea140446ec294cdf6c;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 07:02:07 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ApT3FVNNohshR3ZepIle34K_XJYUoJz7Ucm1JYfrlVuaQgAYrl-ESA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 07:16:18 GMT
age: 7185
etag: "b205b0bb74fabcf1612f22db53c197b63ae4ce0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

25 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F861225b5-aa80-4ecb-b68c-3a62a2e3d376.gif
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 296 x 148\012- data
Size
25 kB (24970 bytes)
Hash
e9e29acd071f93411556a2a1cbb076fa
6cc5c64b7e82cc5bdc148be6f4760e98cb06f414
a1d23e683f912c5c9a334df441908c7d522ae8f41c91dbb0e99e6bf5162bc54e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F861225b5-aa80-4ecb-b68c-3a62a2e3d376.gif HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 24970
x-amzn-requestid: 65ccc511-17aa-468c-a607-f531ccba1e91
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0K86HLgIAMFfxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4beb8-798eaf875ae85c5e1d73e183;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:04:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RCzR1Y9Aya6p6jIR9T0rDo5BEyR_q238uzLQpJ7veDu2HDPCaMtKbg==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 03:56:47 GMT
age: 19156
etag: "6cc5c64b7e82cc5bdc148be6f4760e98cb06f414"
content-type: image/gif
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ce66831-56e0-4f6e-ba05-da99c3485e5e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.6 kB (3599 bytes)
Hash
928e970121a035e9f8d537e4bfe6bf5c
ce4aadc6b3500508d1c4b42b76f09be4414b6eee
2da1438b17cf05aed64e565350dcc706420f2bae7e8c5e36d1b5bad38248c275

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ce66831-56e0-4f6e-ba05-da99c3485e5e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3599
x-amzn-requestid: 5b743b27-b6d4-4d98-9984-3a5e17cb28e6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A1xH8BIAMFuZQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714f1-2f1031db0871abae4760d5b6;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jyWosZVSdPHomvHRyf-MuxVp0gR7sKIJ0-jmMStDeixhd8Bhoqzitg==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:01:09 GMT
age: 40494
etag: "ce4aadc6b3500508d1c4b42b76f09be4414b6eee"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefcc19e1-75f3-4a6f-8686-3308f93dd409.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7574 bytes)
Hash
df397b10a8e03cec7f74cd8f0fbb4e6e
625e8a1b7e865def8861e194ac754c486cd374e7
6bafab2eaac6814dd4c0f2155119f71e01cf6ecd602d51fa5d5e547db3588705

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefcc19e1-75f3-4a6f-8686-3308f93dd409.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7574
x-amzn-requestid: e330d010-6465-47c6-b45f-b25a6de84f9d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A16GjsIAMFYgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714f2-17ca5566719117874cb6a6d0;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wF_siKELQDBuWLkhNtrGzLwKyuMaGaSoCQNpE5etDRs6XotQgRYF3w==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:02:53 GMT
age: 40390
etag: "625e8a1b7e865def8861e194ac754c486cd374e7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F053123e4-9914-4404-b1e9-cb5f3e38b7a2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11781 bytes)
Hash
5caa7df39f82600c651046957ab6b62d
d6d6fbd676b74e487ee06248c48da87e178223e7
df3090d2e7c7c6e970fe498609d74c63e04aa80d55a26c956d1e3be5bebfafbc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F053123e4-9914-4404-b1e9-cb5f3e38b7a2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11781
x-amzn-requestid: 522a0799-2025-43cd-9d7e-08cdaa5acf11
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0vQMGZRIAMFfjg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4f8cd-697804fd5b8b3cff7d2d5a7e;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 07:12:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MGfNpq5RCQifmDzeCJl4-1DPyd63DRE89n_BlQwQanwYyYquvaBkBw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 07:21:45 GMT
age: 6858
etag: "d6d6fbd676b74e487ee06248c48da87e178223e7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.attemplate.com/Content/Sign_In_files/style.css

13.107.227.53

200 OK

7.9 kB

URL HTTP/2
www.attemplate.com/Content/Sign_In_files/style.css
IP
13.107.227.53:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
7.9 kB (7868 bytes)
Hash
bad3e4d73ab8638ef18d6b46780111a9
4c253cf88be490dd7e435bc3abfbbd18d2011227
f116760bd4b44c1a29b36dd4d59729bad9091a9b0e89c2b470bff0086982a822

HTTP Headers

GET /Content/Sign_In_files/style.css HTTP/1.1
Host: www.attemplate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/eur/307eb3de-a76a-4eee-8eb4-6365aaa55d79/322f75de-a575-4838-ba7a-bd35291af6a0/e92882b1-2504-4aee-92b2-addb1dc4f303/login?id=TEF6Qi9WQXBjSWpPR1BDWml6c1ZGYUE0Q294NHFUODFwWm05b3VESmJkeVNpUklsTHU5ZzhKRU9zaG01aFYxYS96Rm56bi9ORmVuaW5sa3hpc25QRTJMeTdIa1BuQ3NwRGN5dENDSVVnayt1NW5TZDM4NHZGeCtxOEpkRGpEQkVyeFp4OHAzZE94ZjIxNkNGSWZQN3dsY0RYdTMxaDhyTDh5SlpFTWJuQWFVSkRaMDc0eVRmWkRud2d6OGRhMEg0aGlDMWtwT2RtQldDdUZsYWk2dmlwcnVSVmMraDlIMXJjbXN4SW9EUFlveDNDZTJvTzlLTGlkVjdWekwvUkNLWjZyNXluTktSenRTMzQ0ajRkWkVKdmswRmJ5cGlkbU9HVVd2TjQ1OTZ6bjdEbS81YmMyODRvUi85WWpNdG1Ja3dnaEg2WHRSaDc5bUNwOUp4N1F1eCtrenBXVm5EUTcxWkdsQ1E0MU9yRkc0UW1peWo3QnErMjQzeDV2cFVOYVAy
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-length: 7868
content-type: text/css
last-modified: Thu, 12 Jan 2023 10:31:56 GMT
accept-ranges: bytes
etag: "1d926711800a8bc"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 007jHYwAAAACb9Lr/NCSYRZcRrz/ui9eNT1NMMjMxMDUwMjA0MDQ3ADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Wed, 18 Jan 2023 09:16:02 GMT
X-Firefox-Spdy: h2

aadcdn.msauth.net/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg

13.107.227.53

200 OK

673 B

URL HTTP/2
aadcdn.msauth.net/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg
IP
13.107.227.53:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1864), with no line terminators
Size
673 B (673 bytes)
Hash
0e176276362b94279a4492511bfcbd98
389fe6b51f62254bb98939896b8c89ebeffe2a02
9a2c174ae45cac057822844211156a5ed293e65c5f69e1d211a7206472c5c80c

HTTP Headers

GET /shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 673
content-type: image/svg+xml
content-encoding: gzip
content-md5: DhdidjYrlCeaRJJRG/y9mA==
last-modified: Wed, 12 Feb 2020 22:01:30 GMT
etag: 0x8D7B0071D86E386
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: e7c5d049-801e-000b-4955-111264000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 0q06gYwAAAADYeB7mxKZpTr5fT0sJgo7KQU1TMDRFREdFMTkxMgAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
x-azure-ref: 007jHYwAAAABoao6lE6tFQJPC2KhK6tjDT1NMMjMxMDUwMjAzMDM5ADM5YTEyZjdlLTg5OWYtNDZjZi1hNmQwLTI0YmJiYTI3ZDk1Ng==
date: Wed, 18 Jan 2023 09:16:02 GMT
X-Firefox-Spdy: h2

www.attemplate.com/eur/307eb3de-a76a-4eee-8eb4-6365aaa55d79/322f75de-a575-4838-ba7a-bd35291af6a0/e92882b1-2504-4aee-92b2-addb1dc4f303/login?id=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

13.107.227.53

200 OK

160 kB

URL HTTP/2
www.attemplate.com/eur/307eb3de-a76a-4eee-8eb4-6365aaa55d79/322f75de-a575-4838-ba7a-bd35291af6a0/e92882b1-2504-4aee-92b2-addb1dc4f303/login?id=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
IP
13.107.227.53:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (64965), with CRLF line terminators
Size
160 kB (160336 bytes)
Hash
8006013a368b8c13ab6e21ad74b565c6
b90474152fea1a650e370f382dc855693d0b01e8
d543ec6456e3cf982befede4ca32d2ca57d27d28d1217a81834e4c7cb999ee5d

Detections

Analyzer	Verdict	Alert
openphish	Office365
fortinet	Phishing

HTTP Headers

GET /eur/307eb3de-a76a-4eee-8eb4-6365aaa55d79/322f75de-a575-4838-ba7a-bd35291af6a0/e92882b1-2504-4aee-92b2-addb1dc4f303/login?id=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 HTTP/1.1
Host: www.attemplate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
content-type: text/html; charset=utf-8
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 00rjHYwAAAAC5D+n0oQOMR7kIvRdjVj66T1NMMjMxMDUwMjA0MDQ3ADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Wed, 18 Jan 2023 09:16:02 GMT
X-Firefox-Spdy: h2

aadcdn.msauth.net/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg

13.107.227.53

200 OK

1.4 kB

URL HTTP/2
aadcdn.msauth.net/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg
IP
13.107.227.53:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (3651), with no line terminators
Size
1.4 kB (1435 bytes)
Hash
9f368bc4580fed907775f31c6b26d6cf
e393a40b3e337f43057eee3de189f197ab056451
7ecbba946c099539c3d9c03f4b6804958900e5b90d48336eea7e5a2ed050fa36

HTTP Headers

GET /shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 1435
content-type: image/svg+xml
content-encoding: gzip
content-md5: nzaLxFgP7ZB3dfMcaybWzw==
last-modified: Fri, 17 Jan 2020 19:28:38 GMT
etag: 0x8D79B8373CB2849
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-cache: TCP_HIT
x-ms-request-id: 66f5a081-f01e-0050-6034-175440000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 0nvypYwAAAABY7kNA214RTLgx1+OLqfLhQU1TMDRFREdFMTkyMQAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
x-azure-ref: 007jHYwAAAAAKfs+c/EeoT7fC1VQAeUzfT1NMMjMxMDUwMjAzMDM5ADM5YTEyZjdlLTg5OWYtNDZjZi1hNmQwLTI0YmJiYTI3ZDk1Ng==
date: Wed, 18 Jan 2023 09:16:02 GMT
X-Firefox-Spdy: h2

www.attemplate.com/Content/jquery-3.5.1.min.js

13.107.227.53

200 OK

90 kB

URL HTTP/2
www.attemplate.com/Content/jquery-3.5.1.min.js
IP
13.107.227.53:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with very long lines (65450), with CRLF line terminators
Size
90 kB (89478 bytes)
Hash
b61aa6e2d68d21b3546b5b418bf0e9c3
9c1398f0de4c869dacb1c9ab1a8cc327f5421ff7
f36844906ad2309877aae3121b87fb15b9e09803cb4c333adc7e1e35ac92e14b

HTTP Headers

GET /Content/jquery-3.5.1.min.js HTTP/1.1
Host: www.attemplate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/eur/307eb3de-a76a-4eee-8eb4-6365aaa55d79/322f75de-a575-4838-ba7a-bd35291af6a0/e92882b1-2504-4aee-92b2-addb1dc4f303/login?id=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
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-length: 89478
content-type: application/javascript
last-modified: Thu, 12 Jan 2023 11:31:32 GMT
accept-ranges: bytes
etag: "1d926796b765f86"
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 007jHYwAAAAAyqNVc3gOqSozYCqRlcJf0T1NMMjMxMDUwMjA0MDQ3ADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Wed, 18 Jan 2023 09:16:03 GMT
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5040d384-c89f-4aa4-8652-aea8a1600738.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.8 kB (9819 bytes)
Hash
18d44fef1be0f8ba8ae6e29788478e47
a881d39e5e2aea041f30b476f1e3d7d135ca691b
a7bd1b6e2615f6fa898d55cdd6370330b89aba74348cc3b020df81a3ee51b9d0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5040d384-c89f-4aa4-8652-aea8a1600738.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 9819
x-amzn-requestid: ed88b40e-5e06-41f9-a1ba-a3bef07eb12a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0LT4G5qoAMFwFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4bf4b-513cb0eb6ec4f22f23a26da7;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:06:51 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: x6xEfCqpXziyWiy0ZxXVp8yRH_munH9cmIGQa7oB8Qf-0wLOjyPo-g==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 03:17:27 GMT
age: 21523
etag: "a881d39e5e2aea041f30b476f1e3d7d135ca691b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.attemplate.com/Content/bootstrap.min.js

13.107.227.53

500 Internal Server Error

0 B

URL HTTP/2
www.attemplate.com/Content/bootstrap.min.js
IP
13.107.227.53:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /Content/bootstrap.min.js HTTP/1.1
Host: www.attemplate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/eur/307eb3de-a76a-4eee-8eb4-6365aaa55d79/322f75de-a575-4838-ba7a-bd35291af6a0/e92882b1-2504-4aee-92b2-addb1dc4f303/login?id=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
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 500 Internal Server Error
content-type: text/html; charset=utf-8
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 007jHYwAAAADTOAyjHN9KTqZuD/WAkuV9T1NMMjMxMDUwMjA0MDQ3ADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Wed, 18 Jan 2023 09:16:03 GMT
X-Firefox-Spdy: h2

www.attemplate.com/Scripts/jquery-1.10.2.min.js

13.107.227.53

500 Internal Server Error

0 B

URL HTTP/2
www.attemplate.com/Scripts/jquery-1.10.2.min.js
IP
13.107.227.53:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /Scripts/jquery-1.10.2.min.js HTTP/1.1
Host: www.attemplate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/eur/307eb3de-a76a-4eee-8eb4-6365aaa55d79/322f75de-a575-4838-ba7a-bd35291af6a0/e92882b1-2504-4aee-92b2-addb1dc4f303/login?id=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
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 500 Internal Server Error
content-type: text/html; charset=utf-8
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 007jHYwAAAACjqxigJXp5RIK8kun0T9wPT1NMMjMxMDUwMjA0MDQ3ADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Wed, 18 Jan 2023 09:16:02 GMT
X-Firefox-Spdy: h2

www.attemplate.com/Scripts/jquery-1.10.2.min.js

13.107.227.53

500 Internal Server Error

0 B

URL HTTP/2
www.attemplate.com/Scripts/jquery-1.10.2.min.js
IP
13.107.227.53:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /Scripts/jquery-1.10.2.min.js HTTP/1.1
Host: www.attemplate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/eur/307eb3de-a76a-4eee-8eb4-6365aaa55d79/322f75de-a575-4838-ba7a-bd35291af6a0/e92882b1-2504-4aee-92b2-addb1dc4f303/login?id=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
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 500 Internal Server Error
content-type: text/html; charset=utf-8
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 01LjHYwAAAACR4QBpRttDRaWPbTrXnBIrT1NMMjMxMDUwMjA0MDQ3ADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Wed, 18 Jan 2023 09:16:04 GMT
X-Firefox-Spdy: h2

www.attemplate.com/Content/bootstrap.min.js

13.107.227.53

500 Internal Server Error

0 B

URL HTTP/2
www.attemplate.com/Content/bootstrap.min.js
IP
13.107.227.53:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /Content/bootstrap.min.js HTTP/1.1
Host: www.attemplate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/eur/307eb3de-a76a-4eee-8eb4-6365aaa55d79/322f75de-a575-4838-ba7a-bd35291af6a0/e92882b1-2504-4aee-92b2-addb1dc4f303/login?id=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
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 500 Internal Server Error
content-type: text/html; charset=utf-8
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 01LjHYwAAAABKRaT3lOYlRqfre5zFS3jzT1NMMjMxMDUwMjA0MDQ3ADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Wed, 18 Jan 2023 09:16:04 GMT
X-Firefox-Spdy: h2

www.attemplate.com/favicon.ico

13.107.227.53

500 Internal Server Error

0 B

URL HTTP/2
www.attemplate.com/favicon.ico
IP
13.107.227.53:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.attemplate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.attemplate.com/eur/307eb3de-a76a-4eee-8eb4-6365aaa55d79/322f75de-a575-4838-ba7a-bd35291af6a0/e92882b1-2504-4aee-92b2-addb1dc4f303/login?id=TEF6Qi9WQXBjSWpPR1BDWml6c1ZGYUE0Q294NHFUODFwWm05b3VESmJkeVNpUklsTHU5ZzhKRU9zaG01aFYxYS96Rm56bi9ORmVuaW5sa3hpc25QRTJMeTdIa1BuQ3NwRGN5dENDSVVnayt1NW5TZDM4NHZGeCtxOEpkRGpEQkVyeFp4OHAzZE94ZjIxNkNGSWZQN3dsY0RYdTMxaDhyTDh5SlpFTWJuQWFVSkRaMDc0eVRmWkRud2d6OGRhMEg0aGlDMWtwT2RtQldDdUZsYWk2dmlwcnVSVmMraDlIMXJjbXN4SW9EUFlveDNDZTJvTzlLTGlkVjdWekwvUkNLWjZyNXluTktSenRTMzQ0ajRkWkVKdmswRmJ5cGlkbU9HVVd2TjQ1OTZ6bjdEbS81YmMyODRvUi85WWpNdG1Ja3dnaEg2WHRSaDc5bUNwOUp4N1F1eCtrenBXVm5EUTcxWkdsQ1E0MU9yRkc0UW1peWo3QnErMjQzeDV2cFVOYVAy
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 500 Internal Server Error
content-type: text/html; charset=utf-8
request-context: appId=
strict-transport-security: max-age=2592000
x-cache: CONFIG_NOCACHE
x-azure-ref: 01bjHYwAAAAA5gYRyyFxNQI9kkJf0ddDqT1NMMjMxMDUwMjA0MDQ3ADIwNDY4MGQzLWU3YzItNGNlOS04Y2U3LTRkYmZlYTFjZWM4MA==
date: Wed, 18 Jan 2023 09:16:05 GMT
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (2)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (30)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type