ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fb2c0697c6d9a96a5411dd2952947458
79e57f831ec396bbdaa5bfe9472a05e6c9fb31f4
3fd7edcc349ab4402f62e54a142be6b4cecf0e7ee3f431d3168bdf0643ba4d92
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1733
Cache-Control: max-age=131349
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 22:31:01 GMT
Etag: "638c76f5-1d7"
Expires: Tue, 06 Dec 2022 11:00:10 GMT
Last-Modified: Sun, 04 Dec 2022 10:31:17 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4324
Expires: Sun, 04 Dec 2022 23:43:05 GMT
Date: Sun, 04 Dec 2022 22:31:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4843
Expires: Sun, 04 Dec 2022 23:51:44 GMT
Date: Sun, 04 Dec 2022 22:31:01 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 04 Dec 2022 22:18:24 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 757
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: e6Bw3d31x2xvq5Z6qXBTAeaJtmc/qPm8fVkfkB7PmZ1cRorgQMZCc/WOoghaN/lYM3/MI5wKI2Q=
x-amz-request-id: DF9KXXXGE7590P4S
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 04 Dec 2022 21:47:08 GMT
age: 2633
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Dec 2022 22:31:01 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
appleid.com.kz/m/sing/iA3zj
69.49.246.217200 OK 13 kB URL HTTP/1.1 appleid.com.kz/m/sing/iA3zj
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 70855a60f2eee950f00bc388daf69727
636e59c4b2681da0e46f2e55e343926c8e3ede82
b79fc99137c1a37cb93bc39482a54ba9d335f6795380be5368a39ef328839053
Analyzer Verdict Alert openphish Apple Inc.
fortinet Phishing
GET /m/sing/iA3zj HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 22:31:00 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56; path=/
Content-Security-Policy: upgrade-insecure-requests;
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 04 Dec 2022 22:11:19 GMT
cache-control: public,max-age=3600
age: 1182
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.0.0/css/font-awesome.css
104.17.25.14200 OK 3.7 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.0.0/css/font-awesome.css
IP 104.17.25.14:0
File type ASCII text, with very long lines (305)
Hash 36cd6b596dae0b904fb6cd08d9a859e7
f4db69ee8e34f3341a933e9ef7238ec8b1c3d70c
826664712723f6a5d96282024d2827e934bc2dad2bbd4bf10437d28d37abe769
GET /ajax/libs/font-awesome/4.0.0/css/font-awesome.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 22:31:01 GMT
content-type: text/css; charset=utf-8
content-length: 3687
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-58a6"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 15636167
expires: Fri, 24 Nov 2023 22:31:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ya8qMO4jBwsFA%2Blb%2FYKkpxmmv0xX5wndEw8%2B%2BCy2g502wY18l8Kza6DkjNAZ5e%2BDuCjTtaEeB5Qz7cEcopAj2GLSUo6iXrru54XiTnSnBrUMRks%2FxLBTdX3McfCRPU%2Bb3q9O0hHQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7747fd6bdd3eb51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
104.17.25.14200 OK 5.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.17.25.14:0
File type ASCII text, with very long lines (30837)
Hash 109d1ed85cd01f9cdab73a4cac5bf80d
d6c6498ad46de2d8e2008a8ff68e364ae7f16b32
8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Dec 2022 22:31:01 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 434249
expires: Fri, 24 Nov 2023 22:31:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gA0r6gt%2FUogTTobsn79oUKZUeoDpFTDbiTT3L1k8PRvKgDHN9QaLJfQ1j8najsYWG1ZHoIOGLedYeY5XLpe6QNAkCUowa6nwrWmK7CLIDlPg7Z2Y9fm9mydicDAAQ86Glm7e4LIB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7747fd6bdd47b51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 122124f83967c12700f5a6f5546b0f1f
d7acd2db61ad811c388a44b7bd407fa5f4aea8ee
b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 22:31:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7dfb548d8f8a99d32050803775fad5d6
8b47999a01db7c2217d76a1cec576809a229cf1b
68dd2a1e5a0002f4d25d3b5884ab55bc6b5a91e38f6dc464c4261b19c6e5887e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 22:31:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
appleid.com.kz/m/assets/layout/apple.css
69.49.246.217200 OK 18 kB URL HTTP/1.1 appleid.com.kz/m/assets/layout/apple.css
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 5e549d85b1aec61b49afcdba0f697b74
9cf2cdbdc7a85e85fe0c5b65bfbb4d666d5fea21
0b62b32241be9a648762eaf925107289d68237b4263323cabef74f4170be5d91
GET /m/assets/layout/apple.css HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/sing/iA3zj
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 22:31:00 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Last-Modified: Sun, 04 Apr 2021 15:18:36 GMT
Accept-Ranges: bytes
Content-Length: 18150
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js
216.58.211.10200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js
IP 216.58.211.10:0
File type ASCII text, with very long lines (32180)
Hash f16500423cc2867eff8b773df637c48f
1cd32d75b59a89c3a70274e383151a61ce0594f4
6ca5dc8ad67639c69117ace46c93703cf5fff82824cfc0bada0cf0fb3b2d41d7
GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29707
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 04 Dec 2022 07:58:22 GMT
expires: Mon, 04 Dec 2023 07:58:22 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 52359
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 31b129c94a90b1e695b21395cb54e378
a3cae46b48d469cc61ab0581303bcd5f5b654db9
fac3f681be358a20f78958dff10c89b7a91365c5114c81246c1bc34c1362ba1e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1728
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 22:31:01 GMT
Last-Modified: Sun, 04 Dec 2022 22:02:13 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8ead0ac4ce19cef2471bae0458759d89
af02fd3fcd2e10cfa2458407c0c2e59a43e18517
507b93c64bab73e393cf8d8131415ef4d4b01e65e0f2ab73597715197845e75e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 22:31:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 122124f83967c12700f5a6f5546b0f1f
d7acd2db61ad811c388a44b7bd407fa5f4aea8ee
b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 22:31:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
appleid.com.kz/m/assets/layout/kit.css
69.49.246.217200 OK 7.9 kB URL HTTP/1.1 appleid.com.kz/m/assets/layout/kit.css
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (7887), with no line terminators
Hash 032458c858b188404f36e130f845976c
01edd3bb97385b240fff0d43edba6065fd4f638e
44b08e16b65f3ebdd551229d86af5f3bb22fa9f3318ecc4939514f6de35bb97a
GET /m/assets/layout/kit.css HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/sing/iA3zj
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 22:31:00 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Last-Modified: Sun, 04 Apr 2021 15:18:36 GMT
Accept-Ranges: bytes
Content-Length: 7887
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 122124f83967c12700f5a6f5546b0f1f
d7acd2db61ad811c388a44b7bd407fa5f4aea8ee
b6b9e0b6c241b4eeb5161b1c297dec2aa6188032017074ee7f8e5533fab87a4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 22:31:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.google.com/maps/api/js?key=AIzaSyAxLinfy90fiJEIxM6hDDAibfgKeuPuT1U&callback=initMap
216.58.207.238200 OK 54 kB URL HTTP/2 maps.google.com/maps/api/js?key=AIzaSyAxLinfy90fiJEIxM6hDDAibfgKeuPuT1U&callback=initMap
IP 216.58.207.238:0
File type ASCII text, with very long lines (2388)
Hash 9100af202f57df3522c4dec3b705c8e1
f2249cd56847e6b16b247009e6e746871efa8e14
3f35b15c3bfcef2d11e39f040e632115e12a7b1738dde65e6e5974d709439d5c
GET /maps/api/js?key=AIzaSyAxLinfy90fiJEIxM6hDDAibfgKeuPuT1U&callback=initMap HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Sun, 04 Dec 2022 22:31:01 GMT
expires: Sun, 04 Dec 2022 23:01:01 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53536
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=19
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash f54a71942ab5d7fdc54672cf84aa76db
e03db706ad371c93ddd3cc4a3e4c329777bb5f4b
87453ee6a206085c9b82594123a30bf59f7354733d19f21e388dea70768198c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 22:31:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
appleid.com.kz/m/jss/function.js
69.49.246.217200 OK 3.1 kB URL HTTP/1.1 appleid.com.kz/m/jss/function.js
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 9094d8547d9947a29ff7871ad51c7d1d
ded500858e791c145445eeee579ec2bf0bed3bc2
422dd27463cb6142ded7fa182ca1c220f463d6b38ec18c44fd1685c3b4f64984
Analyzer Verdict Alert urlquery phishing Phishing - Apple
fortinet Phishing
GET /m/jss/function.js HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/sing/iA3zj
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 22:31:00 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Last-Modified: Sun, 04 Apr 2021 15:18:36 GMT
Accept-Ranges: bytes
Content-Length: 3108
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
appleid.com.kz/m/css/css.css
69.49.246.217200 OK 4.9 kB URL HTTP/1.1 appleid.com.kz/m/css/css.css
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (609), with CRLF line terminators
Hash e7df7a00560d2e397b2c47767394d93b
83aa3f9711a621d90b11009411855dbf483f47f7
b95b54712fc58313262aefc616e39a5010bc592a7021c6c925ccf299e1d9c095
Analyzer Verdict Alert urlquery phishing Phishing - Apple
GET /m/css/css.css HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/sing/iA3zj
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 22:31:00 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Last-Modified: Sun, 04 Apr 2021 15:18:36 GMT
Accept-Ranges: bytes
Content-Length: 4918
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
appleid.com.kz/m/css/form2.css?V=asgss
69.49.246.217200 OK 2.7 kB URL HTTP/1.1 appleid.com.kz/m/css/form2.css?V=asgss
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash e2fc2609e327c4ae1d303a3b0590a73c
e8e5df8f1b9144caa8c8e82164fe7252a6462de4
b7384459faf962bc5bcce9de68ebb9763c08dd7b91f809414c5879f5908e6dba
Analyzer Verdict Alert fortinet Phishing
GET /m/css/form2.css?V=asgss HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/sing/iA3zj
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 22:31:00 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Last-Modified: Sun, 27 Feb 2022 18:12:00 GMT
Accept-Ranges: bytes
Content-Length: 2664
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
push.services.mozilla.com/
35.161.230.192101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.230.192:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: W/Xzb9Lt0J6nccoeNWUvJQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: QFSinGCI6PvWSZjSRQPKabKXerM=
appleid.com.kz/m/js/myjsmaps.js?v=asg3gasd
69.49.246.217200 OK 7.9 kB URL HTTP/1.1 appleid.com.kz/m/js/myjsmaps.js?v=asg3gasd
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 247de46c4574a1875c055be8c129ca0f
d735fae404a71c886a0a9c694746f1102397ba2c
9ad717d4a2c451f9eec28aa6b746f767dd55515debe04d8cb9e5aa980f9f1b10
Analyzer Verdict Alert fortinet Phishing
GET /m/js/myjsmaps.js?v=asg3gasd HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/sing/iA3zj
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 22:31:01 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Last-Modified: Mon, 28 Feb 2022 16:05:30 GMT
Accept-Ranges: bytes
Content-Length: 7864
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
appleid.com.kz/m/assets/js/apple.min.js
69.49.246.217200 OK 4.0 kB URL HTTP/1.1 appleid.com.kz/m/assets/js/apple.min.js
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (3971), with no line terminators
Hash 831590290751d6de327bea7643352662
44198dc4ebba2c721e7866ab5d79e22ccb013655
9d4f18c41d375f0d15d396ce74817e8efc61add9c38f23d08c25da6de6d73eb0
Analyzer Verdict Alert fortinet Phishing
GET /m/assets/js/apple.min.js HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/sing/iA3zj
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 22:31:01 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Last-Modified: Sun, 04 Apr 2021 15:18:36 GMT
Accept-Ranges: bytes
Content-Length: 3971
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
appleid.com.kz/m/assets/js/mapiconmaker.js
69.49.246.217404 Not Found 315 B URL HTTP/1.1 appleid.com.kz/m/assets/js/mapiconmaker.js
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery phishing Phishing - Apple
fortinet Phishing
GET /m/assets/js/mapiconmaker.js HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/sing/iA3zj
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sun, 04 Dec 2022 22:31:01 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Content-Length: 315
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
appleid.com.kz/m/assets/layout/animate.css
69.49.246.217200 OK 55 kB URL HTTP/1.1 appleid.com.kz/m/assets/layout/animate.css
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (55154), with no line terminators
Hash 72e2aca6b1179545b69ca7cbd491ede8
c776ece36f6306bd215dcc88a9653a1917846db1
52096d5a2ce736b657ca561839fa2760aa584f96bfe36a41bbec8d176ecdbe6d
GET /m/assets/layout/animate.css HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/sing/iA3zj
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 22:31:00 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Last-Modified: Sun, 04 Apr 2021 15:18:36 GMT
Accept-Ranges: bytes
Content-Length: 55154
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
appleid.com.kz/m/assets/js/ajax-form.min.js
69.49.246.217200 OK 2.6 kB URL HTTP/1.1 appleid.com.kz/m/assets/js/ajax-form.min.js
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2556), with no line terminators
Hash aedc46cd13cc1f51651ccd67ab8ddccb
76411c3308dcc0295d49ff454c1ab0163f45a2c3
3e64ff49e80a840f67b2213fc24731505d7f12cd2c7bf786c778ac663e05fbbf
Analyzer Verdict Alert fortinet Phishing
GET /m/assets/js/ajax-form.min.js HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/sing/iA3zj
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 22:31:01 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Last-Modified: Sun, 04 Apr 2021 15:18:36 GMT
Accept-Ranges: bytes
Content-Length: 2556
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
appleid.com.kz/m/css/mycss.css
69.49.246.217200 OK 5.7 kB URL HTTP/1.1 appleid.com.kz/m/css/mycss.css
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash cd798bed26effb0b12af669e3d9d80e0
e898e475eeabc12d08bbaa61d2f47f4d83f2703c
2c4c8f3a8071c09add6449c5284c4effceb0007a9c0346ccdc71ce7277ba445a
Analyzer Verdict Alert urlquery phishing Phishing - Apple
GET /m/css/mycss.css HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/sing/iA3zj
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 22:31:01 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Last-Modified: Sun, 04 Apr 2021 15:18:36 GMT
Accept-Ranges: bytes
Content-Length: 5719
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
appleid.com.kz/m/css/nav.css?V=asser
69.49.246.217200 OK 74 kB URL HTTP/1.1 appleid.com.kz/m/css/nav.css?V=asser
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (340)
Hash 3b4f66bd6fd2820adf149ceb2b42783d
82a4ebe2e01312bc5d9f9cdeea117dd6d16681f4
2c052343a69ca8c3f034a43622a7f0796304f25c7aef19b82c2c08970a378c39
Analyzer Verdict Alert fortinet Phishing
GET /m/css/nav.css?V=asser HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/sing/iA3zj
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 22:31:00 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Last-Modified: Sat, 26 Feb 2022 08:22:56 GMT
Accept-Ranges: bytes
Content-Length: 74487
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
appleid.com.kz/m/jss/my_script_m.js?v=asd2f2gds
69.49.246.217200 OK 7.9 kB URL HTTP/1.1 appleid.com.kz/m/jss/my_script_m.js?v=asd2f2gds
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 5ef4b36dcb8f1400b837704ecb14b74c
e330fd7ba693f4c4397d52941ae466054ff4656b
91fd27f0fc606123267d99e8e39206a2f79bfdf0a4fc409f285a6255a99f072d
GET /m/jss/my_script_m.js?v=asd2f2gds HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/sing/iA3zj
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 22:31:01 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Last-Modified: Sat, 26 Feb 2022 18:28:32 GMT
Accept-Ranges: bytes
Content-Length: 7916
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
appleid.com.kz/m/css/bootstrap.min.css
69.49.246.217200 OK 160 kB URL HTTP/1.1 appleid.com.kz/m/css/bootstrap.min.css
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65319), with CRLF line terminators
Size 160 kB (159521 bytes)
Hash cc1382088863aa74eda6e6c8820df514
152a10c0910c9d5ce1e0acd1a747ed5c4445970b
31268c5e83a3d6528dfc18561208e25f45f168b37d23c5f06804dfa680f34fef
Analyzer Verdict Alert urlquery phishing Phishing - Apple
GET /m/css/bootstrap.min.css HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/sing/iA3zj
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 22:31:00 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Last-Modified: Sat, 26 Feb 2022 09:11:04 GMT
Accept-Ranges: bytes
Content-Length: 159521
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
appleid.com.kz/m/assets/img/loading.gif
69.49.246.217200 OK 3.6 kB URL HTTP/1.1 appleid.com.kz/m/assets/img/loading.gif
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type GIF image data, version 89a, 26 x 26\012- data
Hash 87e4bc5ed8ecedece1b4ddedf20fccf7
6002fa06334af80c79172e5c5e4d8e49d9e5ae4a
9b6b93aa428350310b6a7c6a6b6b401dedadca42c91882b92fe5cd0b4780b409
Analyzer Verdict Alert urlquery phishing Phishing - Apple
GET /m/assets/img/loading.gif HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/sing/iA3zj
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 22:31:01 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Last-Modified: Mon, 28 Feb 2022 15:25:54 GMT
Accept-Ranges: bytes
Content-Length: 3583
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/gif
appleid.com.kz/m/assets/img/compass3.png
69.49.246.217200 OK 983 B URL HTTP/1.1 appleid.com.kz/m/assets/img/compass3.png
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 20 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash d8ad14adadf2b3b8c85ca9aeab62c920
44251884f1c52630ae181fad2e45d4064bfa1684
f343d7131e9eb228e3508cf1230d8b236b782105eb33be9d45bbed5b1610a9f8
Analyzer Verdict Alert urlquery phishing Phishing - Apple
GET /m/assets/img/compass3.png HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/sing/iA3zj
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 22:31:01 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Last-Modified: Mon, 28 Feb 2022 16:18:50 GMT
Accept-Ranges: bytes
Content-Length: 983
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
appleid.com.kz/m/assets/img/compass1.png
69.49.246.217200 OK 4.0 kB URL HTTP/1.1 appleid.com.kz/m/assets/img/compass1.png
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 222 x 222, 8-bit colormap, non-interlaced\012- data
Hash 6437f466eeadde7a6d8d35723772ee15
3d8fec17a34d72469fafe1e24206aa9c4a4283ed
56b928d8ed0e4f7cf75027e4df53ce95a9af04290fd28bc5e7797434aecd130c
Analyzer Verdict Alert urlquery phishing Phishing - Apple
GET /m/assets/img/compass1.png HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/sing/iA3zj
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 22:31:01 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Last-Modified: Mon, 28 Feb 2022 16:18:48 GMT
Accept-Ranges: bytes
Content-Length: 3962
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
appleid.com.kz/m/assets/img/compass2.png
69.49.246.217200 OK 342 B URL HTTP/1.1 appleid.com.kz/m/assets/img/compass2.png
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 102 x 102, 4-bit colormap, non-interlaced\012- data
Hash 874450627f63e6fc7aa520621b3490b7
0c2d3f153e61eb11e59e0db9de0630e11223802d
0b47e541a2227ea23aa26f2f29f6a3bdfe72a2fc2a93c3075e60b756cd85721d
Analyzer Verdict Alert urlquery phishing Phishing - Apple
GET /m/assets/img/compass2.png HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/sing/iA3zj
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 22:31:01 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Last-Modified: Mon, 28 Feb 2022 16:18:48 GMT
Accept-Ranges: bytes
Content-Length: 342
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
appleid.com.kz/m/js/jquery.js
69.49.246.217200 OK 96 kB URL HTTP/1.1 appleid.com.kz/m/js/jquery.js
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32047), with CRLF line terminators
Hash 9aecea3830b65ecad103ee84bd5fe294
47ecdf62eb3cf45ba4867846cb61afa70369d23a
a271a3f9e3cae897ced669d6652699e947928ef095e56384c4f9dd04bbb942ec
Analyzer Verdict Alert fortinet Phishing
GET /m/js/jquery.js HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/sing/iA3zj
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 22:31:01 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Last-Modified: Sun, 04 Apr 2021 15:18:36 GMT
Accept-Ranges: bytes
Content-Length: 95935
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
appleid.com.kz/m/assets/img/find-my-2019-09-25.png
69.49.246.217200 OK 106 kB URL HTTP/1.1 appleid.com.kz/m/assets/img/find-my-2019-09-25.png
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size 106 kB (105610 bytes)
Hash 97ff1ca1571226f421723d767ae29bee
0deac3741a93f3bc9779d313ed65bad6453c57f2
b73b937efe3b6eac9807a50e01c0ee549228b89684e561e6187760a68bb25ea6
GET /m/assets/img/find-my-2019-09-25.png HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/sing/iA3zj
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 22:31:01 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Last-Modified: Mon, 28 Feb 2022 14:56:04 GMT
Accept-Ranges: bytes
Content-Length: 105610
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
appleid.com.kz/m/assets/js/mapiconmaker.js
69.49.246.217404 Not Found 315 B URL HTTP/1.1 appleid.com.kz/m/assets/js/mapiconmaker.js
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery phishing Phishing - Apple
fortinet Phishing
GET /m/assets/js/mapiconmaker.js HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/sing/iA3zj
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sun, 04 Dec 2022 22:31:01 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Content-Length: 315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
appleid.com.kz/m/assets/img/map2.png
69.49.246.217404 Not Found 315 B URL HTTP/1.1 appleid.com.kz/m/assets/img/map2.png
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery phishing Phishing - Apple
GET /m/assets/img/map2.png HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/assets/layout/apple.css
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sun, 04 Dec 2022 22:31:01 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Content-Length: 315
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
appleid.com.kz/m/assets/img/map.png
69.49.246.217404 Not Found 315 B URL HTTP/1.1 appleid.com.kz/m/assets/img/map.png
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery phishing Phishing - Apple
GET /m/assets/img/map.png HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/assets/layout/apple.css
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sun, 04 Dec 2022 22:31:01 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Content-Length: 315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
appleid.com.kz/m/img/logo.svg
69.49.246.217200 OK 1.8 kB URL HTTP/1.1 appleid.com.kz/m/img/logo.svg
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1149), with CRLF line terminators
Hash 880ab976a47cea35326b7874036505ce
6dadbfd657c07f89ba425938a0c705791b2c8677
b767dff2e0c12358daa787bd917cb3e5b85454e2e227dc65ed329a70e10e82bc
Analyzer Verdict Alert fortinet Phishing
GET /m/img/logo.svg HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/css/nav.css?V=asser
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 22:31:01 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Last-Modified: Sat, 26 Feb 2022 08:22:00 GMT
Accept-Ranges: bytes
Content-Length: 1845
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/svg+xml
appleid.com.kz/m/img/mac.svg
69.49.246.217404 Not Found 315 B URL HTTP/1.1 appleid.com.kz/m/img/mac.svg
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery phishing Phishing - Apple
fortinet Phishing
GET /m/img/mac.svg HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/css/nav.css?V=asser
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sun, 04 Dec 2022 22:31:01 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
appleid.com.kz/m/img/ipad.svg
69.49.246.217404 Not Found 315 B URL HTTP/1.1 appleid.com.kz/m/img/ipad.svg
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery phishing Phishing - Apple
fortinet Phishing
GET /m/img/ipad.svg HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/css/nav.css?V=asser
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sun, 04 Dec 2022 22:31:01 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
appleid.com.kz/m/img/iphone.svg
69.49.246.217404 Not Found 315 B URL HTTP/1.1 appleid.com.kz/m/img/iphone.svg
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery phishing Phishing - Apple
fortinet Phishing
GET /m/img/iphone.svg HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/css/nav.css?V=asser
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sun, 04 Dec 2022 22:31:01 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Content-Length: 315
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
appleid.com.kz/m/img/watch.svg
69.49.246.217404 Not Found 315 B URL HTTP/1.1 appleid.com.kz/m/img/watch.svg
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery phishing Phishing - Apple
fortinet Phishing
GET /m/img/watch.svg HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/css/nav.css?V=asser
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sun, 04 Dec 2022 22:31:01 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
appleid.com.kz/m/img/tv.svg
69.49.246.217404 Not Found 315 B URL HTTP/1.1 appleid.com.kz/m/img/tv.svg
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery phishing Phishing - Apple
fortinet Phishing
GET /m/img/tv.svg HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/css/nav.css?V=asser
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sun, 04 Dec 2022 22:31:01 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Content-Length: 315
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
appleid.com.kz/m/img/music.svg
69.49.246.217404 Not Found 315 B URL HTTP/1.1 appleid.com.kz/m/img/music.svg
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery phishing Phishing - Apple
fortinet Phishing
GET /m/img/music.svg HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/css/nav.css?V=asser
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sun, 04 Dec 2022 22:31:01 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Content-Length: 315
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
appleid.com.kz/m/img/search.svg
69.49.246.217200 OK 1.0 kB URL HTTP/1.1 appleid.com.kz/m/img/search.svg
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash f4b098fa112a1cb9e2e0174f1b2bcf85
801fce1e2f3b97456f5f2e5820f3fae2dd74915d
98e256b4b96b4c80754ee598e4724e736d6241714f2c2bb1a4b88dac0cbf02c1
Analyzer Verdict Alert urlquery phishing Phishing - Apple
fortinet Phishing
GET /m/img/search.svg HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/css/nav.css?V=asser
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 22:31:01 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Last-Modified: Sat, 26 Feb 2022 11:11:26 GMT
Accept-Ranges: bytes
Content-Length: 1031
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/svg+xml
appleid.com.kz/m/img/support.svg
69.49.246.217200 OK 4.2 kB URL HTTP/1.1 appleid.com.kz/m/img/support.svg
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash cd4980b3b006fc78e8429b8a74959cc9
5f6c8085f799bcd7d4d617925b85cab57f69d151
49018ee23ef15a07b75966c5e449dfc02974348ba93426e16589c1ac38342a1b
Analyzer Verdict Alert urlquery phishing Phishing - Apple
fortinet Phishing
GET /m/img/support.svg HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/css/nav.css?V=asser
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 22:31:01 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Last-Modified: Sat, 26 Feb 2022 11:13:38 GMT
Accept-Ranges: bytes
Content-Length: 4200
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/svg+xml
appleid.com.kz/m/assets/img/button-submit.png
69.49.246.217200 OK 1.5 kB URL HTTP/1.1 appleid.com.kz/m/assets/img/button-submit.png
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 26 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash a776e0ddd9c42a0d7bc2acb7d322f577
ecd2fe195f521ae0f4f114581a936a72297faac1
6a14b676bba1c36ce608fde1c9f0f731e5f44830b70bba74f32501b8e4fb0214
Analyzer Verdict Alert urlquery phishing Phishing - Apple
GET /m/assets/img/button-submit.png HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/sing/iA3zj
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 22:31:01 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Last-Modified: Mon, 28 Feb 2022 15:25:46 GMT
Accept-Ranges: bytes
Content-Length: 1452
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
appleid.com.kz/m/assets/font/Lato-Regular.woff
69.49.246.217200 OK 479 kB URL HTTP/1.1 appleid.com.kz/m/assets/font/Lato-Regular.woff
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format, TrueType, length 478764, version 2.15\012- data
Size 479 kB (478764 bytes)
Hash d4e7e283492941345bd324ff86b0e3fd
295194f936c59f4541739736947c793dd9dae681
0e6972d0989bda5dee8a115b4a8b2580ef274a912079606f074c15e807d64813
Analyzer Verdict Alert fortinet Phishing
GET /m/assets/font/Lato-Regular.woff HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://appleid.com.kz/m/assets/layout/apple.css
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 22:31:01 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Last-Modified: Sun, 04 Apr 2021 15:18:36 GMT
Accept-Ranges: bytes
Content-Length: 478764
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: font/woff
appleid.com.kz/m/assets/cel.png
69.49.246.217200 OK 9.5 kB URL HTTP/1.1 appleid.com.kz/m/assets/cel.png
IP 69.49.246.217:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 7f3275e33d0c13f6cc9a54cc5e9d261b
a7f350790734ec03102015198307444d258b9367
b864a11527fe814168469d6fa7de7b3ef8daf023755617cad76501b6b798abdf
GET /m/assets/cel.png HTTP/1.1
Host: appleid.com.kz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/m/sing/iA3zj
Cookie: PHPSESSID=2d44a5ed5b1a60f9dacbb34740409c56
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 04 Dec 2022 22:31:01 GMT
Server: Apache
Content-Security-Policy: upgrade-insecure-requests;
Last-Modified: Sat, 26 Feb 2022 22:13:58 GMT
Accept-Ranges: bytes
Content-Length: 9513
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 22:31:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.gstatic.com/mapfiles/openhand_8_8.cur
142.250.74.3200 OK 326 B URL HTTP/2 maps.gstatic.com/mapfiles/openhand_8_8.cur
IP 142.250.74.3:0
File type MS Windows cursor resource - 1 icon, 32x32, 2 colors, hotspot @8x8\012- data
Hash feff9159f56cb2069041d660b484eb07
0d0a08cf25a258511957f357b89d3908f3c5e6e3
7342f390b12f636d14e25f698fc5e38cf6240994dc0c07fefbbb4e78ec4d03c7
GET /mapfiles/openhand_8_8.cur HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/bmp
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/geo-tactile
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="geo-tactile"
report-to: {"group":"geo-tactile","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/geo-tactile"}]}
content-length: 326
date: Sun, 04 Dec 2022 22:31:03 GMT
expires: Sun, 04 Dec 2022 22:31:03 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 18 May 2021 19:15:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maps.gstatic.com/mapfiles/transparent.png
142.250.74.3200 OK 68 B URL HTTP/2 maps.gstatic.com/mapfiles/transparent.png
IP 142.250.74.3:0
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 8327a6037ae00a5be9f75e63ee1b9fbe
a812c79b0d125e4946b33446eae0353f518627e2
fe67e12a6497f8518ef1673fd8cf5622871935ff85f204715e78b2009dd48588
Analyzer Verdict Alert urlquery phishing Phishing - Apple
GET /mapfiles/transparent.png HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/geo-tactile
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="geo-tactile"
report-to: {"group":"geo-tactile","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/geo-tactile"}]}
content-length: 68
date: Sun, 04 Dec 2022 22:31:03 GMT
expires: Sun, 04 Dec 2022 22:31:03 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 18 May 2021 19:15:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3915f3c964821c6f9b0a0fc7dba43890
0deea9c788cfeb6a56ad607c2b4a0ebd15fed239
1ba61c6b9416f6cd91b0175a018139c34249823d4e3b9d004806bcd4b4255cb0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1956
Cache-Control: max-age=153902
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 22:31:03 GMT
Etag: "638cce31-1d7"
Expires: Tue, 06 Dec 2022 17:16:05 GMT
Last-Modified: Sun, 04 Dec 2022 16:43:29 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash da9700d928847bca71f73dc9ca89bd1c
2f156a1557a7504da776ed9a82dc52563662be6f
428ed39905a42b1fc7aaf84f2144caf58ddcb53ac2fbda9af61784ca7394a344
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Dec 2022 22:31:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
appleid.cdn-apple.com/static/bin/cb3606853004/images/favicon.ico
23.43.132.13200 OK 1.6 kB URL HTTP/1.1 appleid.cdn-apple.com/static/bin/cb3606853004/images/favicon.ico
IP 23.43.132.13:0
File type MS Windows icon resource - 4 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 0b3389d96530d233beca5e396cb12608
88b0e1f430d106249ad21b16bdf33e1faea7b589
e65ddb464994c243b7f71d6d440d7cbe4f52b78c3de8da9e740c3472b71185eb
GET /static/bin/cb3606853004/images/favicon.ico HTTP/1.1
Host: appleid.cdn-apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://appleid.com.kz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apple
Content-Type: image/x-icon
Cache-Control: public, max-age=2592000
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Accept-Ranges: bytes
ETag: W/"9062-1597331070026"
Last-Modified: Thu, 13 Aug 2020 15:04:30 GMT
Vary: accept-encoding
Content-Encoding: gzip
Host: appleid.apple.com
Content-Length: 1628
Date: Sun, 04 Dec 2022 22:31:03 GMT
Connection: keep-alive
Access-Control-Allow-Origin: https://appleid.apple.com
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9556
Expires: Mon, 05 Dec 2022 01:10:19 GMT
Date: Sun, 04 Dec 2022 22:31:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9556
Expires: Mon, 05 Dec 2022 01:10:19 GMT
Date: Sun, 04 Dec 2022 22:31:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9556
Expires: Mon, 05 Dec 2022 01:10:19 GMT
Date: Sun, 04 Dec 2022 22:31:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9556
Expires: Mon, 05 Dec 2022 01:10:19 GMT
Date: Sun, 04 Dec 2022 22:31:03 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd33bab20-1689-4962-985e-15e304482bee.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd33bab20-1689-4962-985e-15e304482bee.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 37b58bb09c00b591c2819c89e371d927
aa487f4a7767cb4591fe620592da65bde90c0aa2
9b7791d79d1e9702c23e63450d556e7f1f287f4d02788fc147822c1d90f64657
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd33bab20-1689-4962-985e-15e304482bee.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9825
x-amzn-requestid: 1ab366f4-78f2-4aaa-af7b-aa203c2d8234
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_1ZE23IAMFnhw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d1355-35c7b5bb6e4623e93900810c;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:38:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qJYTPoArDEx6lR34nZ3DPCAtuWr2lW5qybqaGAu1gSQVdfRq8zlhOg==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:57:03 GMT
age: 2040
etag: "aa487f4a7767cb4591fe620592da65bde90c0aa2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feff698a5-ffc4-43ea-b7a3-b681cafeb108.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feff698a5-ffc4-43ea-b7a3-b681cafeb108.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d72fb8d20c29763234c2817b119d11b
d4924ec714f5157bcb2fddcb5f768188a3dd37dc
e9aa59142e0673ed3f58b36beaca48213c678dbe4655f9c4b64581cb0f6f22f6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feff698a5-ffc4-43ea-b7a3-b681cafeb108.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12830
x-amzn-requestid: 66f5f2fa-8472-4484-bbea-20ece7e98b1f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmcsxGDyIAMFX4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e51-146167697890d9312ce3dbac;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 2jx-M9MgKrJXU4yYsJzWqNXwruIGhFNWkD7GcPdqddnEzcNgFw2luw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 03:27:17 GMT
age: 68626
etag: "d4924ec714f5157bcb2fddcb5f768188a3dd37dc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa1caf4c1-b9c0-4db1-a780-00b9a6198731.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa1caf4c1-b9c0-4db1-a780-00b9a6198731.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8d76ec668361348eb17d54001fd2e6c6
534299a20a76ea6e3250f0fb35fe772cac04ef51
22676fae3909acf18e6cd4f505ec718fdac156990edb20926afdae2a359a2859
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa1caf4c1-b9c0-4db1-a780-00b9a6198731.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5209
x-amzn-requestid: 682056d5-7815-4fd1-b05b-723619128d8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjKUXF5eoAMFRvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638abdb5-6df5d866267739212832ee66;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 03:08:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pFKMx6_a5Ml_dBK1dafOt4KFMeC5SwUqNlNpc8sO4DVj0Ocb2Yksrw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 03:45:46 GMT
age: 67517
etag: "534299a20a76ea6e3250f0fb35fe772cac04ef51"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2f60a6490f38a772dcd50a1132e98e1b
ff254a1df087d2c157d88a6ef04e395dc49efe5e
653e40becd103cd76cc2f194a87e933e8c548d346f87520fefca3b16430fc4ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8469
x-amzn-requestid: c17eff92-da62-4f0f-9e75-2741012ec43a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_sqFSjoAMFQ6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d131d-61d61d2f0bb01ecb21b809ea;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:33 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Og6pnDOmEW5oc9EtvKD8BtBojepI-ZSde8xxYGThfF6QNl-ZTQWqQQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:45:46 GMT
age: 2717
etag: "ff254a1df087d2c157d88a6ef04e395dc49efe5e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47f316c5-1381-4b6e-9e8d-f1956258ef3e.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47f316c5-1381-4b6e-9e8d-f1956258ef3e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a349d02cce160f72cc93f6fb6e45fa46
a6f82481ea0a820da0f199e8f9051a4aa4013c82
ab320118577a2dcb6ab7ad904d6350e187501a94b39b71fdd70b31cbc8853b24
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47f316c5-1381-4b6e-9e8d-f1956258ef3e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6826
x-amzn-requestid: f0abdba6-14c8-4aae-ba3b-37ba0af2ff08
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_t2FsLIAMFekA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d1325-3452be066acddb554f528cc3;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GS4yLzXiIZt-eL9T7gjbf2-vMu8i30WKPDmc2EQDxv0CELjdW1gMVA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:46:51 GMT
age: 2652
etag: "a6f82481ea0a820da0f199e8f9051a4aa4013c82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d407108-e7e2-4672-80f5-d4b4c3e66151.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d407108-e7e2-4672-80f5-d4b4c3e66151.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3130c86c084c4c925fb9179dfa5c145d
203f27660f3885d5c1bc68a535baef4e48ff6582
faf2c48c2286fe2149908947de9037640007d32e13694c1261f610250caf3f8f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d407108-e7e2-4672-80f5-d4b4c3e66151.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6173
x-amzn-requestid: dc73ee0d-b1ec-407f-8e98-3ba264725ee3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_sqHqwIAMFwqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d131d-56d74e8d45baa9e87136708f;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:33 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ZjAfnCIfBIkjjk0E62TZ7bHsCTUhJk9Wm_wIyhnUNvhgXja5ELfC4g==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:48:15 GMT
age: 2568
etag: "203f27660f3885d5c1bc68a535baef4e48ff6582"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://appleid.com.kz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:54 GMT
expires: Thu, 30 Nov 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 356229
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2