r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a8b4f1afb0e830b797238d34ab9254aa
e011acef3d05c959a65205d53b651ecd18a889fe
f7ceff5b4fda083c7449b7298c232224cf48a632dcb87233b646790de207d49c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7CEFF5B4FDA083C7449B7298C232224CF48A632DCB87233B646790DE207D49C"
Last-Modified: Thu, 12 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2920
Expires: Sat, 14 Jan 2023 17:27:57 GMT
Date: Sat, 14 Jan 2023 16:39:17 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3063227f59d1935298b0620fa7919145
478e1d8bef04b1f95381cac01829c03b6779d420
619281d3b9753bc6d2845786da75e8566687362769517aacf90f953ffbb8407c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "619281D3B9753BC6D2845786DA75E8566687362769517AACF90F953FFBB8407C"
Last-Modified: Sat, 14 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3156
Expires: Sat, 14 Jan 2023 17:31:53 GMT
Date: Sat, 14 Jan 2023 16:39:17 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 14 Jan 2023 15:42:01 GMT
content-type: application/json
age: 3436
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f7bd85a261739c122eefb74ffddaec99
e2e059b0740592e8591d432249aafe5fcb8af23c
71bdd130b8d143f228542f678e91c98ab4e5844fb9f47b036e15372660be25fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "71BDD130B8D143F228542F678E91C98AB4E5844FB9F47B036E15372660BE25FD"
Last-Modified: Sat, 14 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4355
Expires: Sat, 14 Jan 2023 17:51:52 GMT
Date: Sat, 14 Jan 2023 16:39:17 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Odgmx5d8nIUDSWQiSsNEhxaLkGnauad7G8yoS0Xwg+c1WI9ZO2Bvs7ArnZ/ok0cCaXutgkG7mVlUYZQcQq+c+w==
x-amz-request-id: 4FP8QV1FF23AT3EB
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 14 Jan 2023 15:55:00 GMT
age: 2657
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 16:39:17 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
74.207.224.123301 Moved Permanently 287 B URL HTTP/1.1 capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
IP 74.207.224.123:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ad5ca6d5da5c5ccd41727494353182ed
cba91bbe60f3d1fbb472c74f4805a5022d25f16e
13f4274ed85b30d5d68a1b72df2dbaa244787c7decfafaa70a19fc04a1988bba
GET /web/ses/login/signin.php HTTP/1.1
Host: capital-one-account-securec01-ny3c5bverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 14 Jan 2023 16:39:17 GMT
Server: Apache
Location: https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
Content-Length: 287
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 14 Jan 2023 16:33:45 GMT
age: 332
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c01ec61f7ca77158f474b3ab519c12fa
fc82ae0fcd73a83a980b75709a08e65239894e4a
f533e0fac9b92e79d4fbd6e70b42a83067de95f0a13cc737d7e5fa459baa4c54
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5099
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 16:39:18 GMT
Last-Modified: Sat, 14 Jan 2023 15:14:19 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.24.78.9101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.24.78.9:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: KTJOWXEihbZqoZfWZBSRNg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: RYbV5sq8MSpMo5+dPC6SLyikw0Y=
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 027c4f2866d3b61b4c2a27cbefabb633
3f79d73ac1bb741cef2228484ae0ca5a154f8689
a174ea6dc41eab1be0a86f968c8d362109749cc5e499fac5f291fd567c1077f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5425
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 16:39:18 GMT
Last-Modified: Sat, 14 Jan 2023 15:08:53 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 027c4f2866d3b61b4c2a27cbefabb633
3f79d73ac1bb741cef2228484ae0ca5a154f8689
a174ea6dc41eab1be0a86f968c8d362109749cc5e499fac5f291fd567c1077f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5425
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 16:39:18 GMT
Last-Modified: Sat, 14 Jan 2023 15:08:53 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
ecm.capitalone.com/CI_Common/assets/fonts/Optimist_W_Lt.woff2
104.110.12.190200 OK 28 kB URL HTTP/2 ecm.capitalone.com/CI_Common/assets/fonts/Optimist_W_Lt.woff2
IP 104.110.12.190:0
File type Web Open Font Format (Version 2), TrueType, length 27852, version 1.0\012- data
Hash cb37fa55f3dfdd26d61901032a53644f
1115e8d43a08c1f74ec1f6a886d1cb530bb9da97
902c5a9d8ad932630fb2021fe1a1a7f4f06513b19e8d073866178ee65ff33fe9
GET /CI_Common/assets/fonts/Optimist_W_Lt.woff2 HTTP/1.1
Host: ecm.capitalone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://capital-one-account-securec01-ny3c5bverify.com
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 27852
last-modified: Fri, 28 Jun 2019 00:26:02 GMT
etag: "cb37fa55f3dfdd26d61901032a53644f"
x-amz-server-side-encryption: AES256
x-amz-version-id: Q75rYxmglrbgkwTTGgaHL71RQB9n5YCD
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: LHR62-C4
x-amz-cf-id: WZLHu-KyMHr9Oi38M7o8z4XXwUqHnVG-f6Rg-E6l9knxWl69APaosA==
x-datastream-cache-status: 1
cache-control: max-age=576316
expires: Sat, 21 Jan 2023 08:44:34 GMT
date: Sat, 14 Jan 2023 16:39:18 GMT
access-control-request-method: POST,GET,PUT,DELETE
access-control-max-age: 86400
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 027c4f2866d3b61b4c2a27cbefabb633
3f79d73ac1bb741cef2228484ae0ca5a154f8689
a174ea6dc41eab1be0a86f968c8d362109749cc5e499fac5f291fd567c1077f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5425
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 16:39:18 GMT
Last-Modified: Sat, 14 Jan 2023 15:08:53 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
ecm.capitalone.com/CI_Common/assets/fonts/Optimist_W_SBd.woff2
104.110.12.190200 OK 28 kB URL HTTP/2 ecm.capitalone.com/CI_Common/assets/fonts/Optimist_W_SBd.woff2
IP 104.110.12.190:0
File type Web Open Font Format (Version 2), TrueType, length 28188, version 1.0\012- data
Hash d647937062406e5cc182de0cc77947d8
9d4c283a4fca43ae95019091bbd0a9e1b77b97bc
48b4ed4ba8ee0eaeddfba861e6772c61f818931816102636a888ec0b49bce056
GET /CI_Common/assets/fonts/Optimist_W_SBd.woff2 HTTP/1.1
Host: ecm.capitalone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://capital-one-account-securec01-ny3c5bverify.com
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 28188
last-modified: Fri, 28 Jun 2019 00:26:02 GMT
etag: "d647937062406e5cc182de0cc77947d8"
x-amz-server-side-encryption: AES256
x-amz-version-id: QmX7yv6RJT4hT4UTSJmqyU0reaonF3KP
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: LHR62-C4
x-amz-cf-id: SxgW2j2Ku0ctcy9uifxoUSuEGDe6rOxpREUwMoFk23y-XvIAp5y9VA==
x-datastream-cache-status: 1
cache-control: max-age=612932
expires: Sat, 21 Jan 2023 18:54:50 GMT
date: Sat, 14 Jan 2023 16:39:18 GMT
access-control-request-method: POST,GET,PUT,DELETE
access-control-max-age: 86400
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
ecm.capitalone.com/CI_Common/assets/fonts/Optimist_W_Rg.woff2
104.110.12.190200 OK 28 kB URL HTTP/2 ecm.capitalone.com/CI_Common/assets/fonts/Optimist_W_Rg.woff2
IP 104.110.12.190:0
File type Web Open Font Format (Version 2), TrueType, length 28388, version 1.0\012- data
Hash f4e1fbca28c954a486a90828b2ee7543
7750f00fe0337120e16632ea7fff2a78b11c874a
9b98e19f831844b3dae8e1fd65b6802bc778446fbdacac8203e34bbc02eacbcd
GET /CI_Common/assets/fonts/Optimist_W_Rg.woff2 HTTP/1.1
Host: ecm.capitalone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://capital-one-account-securec01-ny3c5bverify.com
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 28388
last-modified: Fri, 28 Jun 2019 00:26:02 GMT
etag: "f4e1fbca28c954a486a90828b2ee7543"
x-amz-server-side-encryption: AES256
x-amz-version-id: 1GgM.ruzxSoQhqV._aklwOsuyVwoqFBE
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: LHR62-C4
x-amz-cf-id: BGWuX4caZ0kfZbeEU9EBXkYNIfAXAQn7qhOobVDMcBZpZGYT9HOYpw==
x-datastream-cache-status: 1
cache-control: max-age=1709840
expires: Fri, 03 Feb 2023 11:36:38 GMT
date: Sat, 14 Jan 2023 16:39:18 GMT
access-control-request-method: POST,GET,PUT,DELETE
access-control-max-age: 86400
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
74.207.224.123200 OK 119 kB URL HTTP/1.1 capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
IP 74.207.224.123:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (24646)
Size 119 kB (119375 bytes)
Hash 54b201f5317401fcf1fcad77e0e55cb5
5a54380d6c9f2500f68a851977fd2119449ce696
a0589fec61a5524f5a38b798b077f805801da8914593da74eb2bb8a0c579dce2
GET /web/ses/login/signin.php HTTP/1.1
Host: capital-one-account-securec01-ny3c5bverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:18 GMT
Server: Apache
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/web_properties.js.download
74.207.224.123200 OK 3.0 kB URL HTTP/1.1 capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/web_properties.js.download
IP 74.207.224.123:0
Hash 6efacd4806c99a4c851a8f7dde3e92de
b49a5c4b54162ccdc4fd938a2fe9f84be8f7ba36
44efd9241a3081212f758bed113ed3561861c6040a885b49696bea95c46e28da
Analyzer Verdict Alert urlquery phishing Phishing - Capital One
urlquery phishing Phishing - Capital One
GET /web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/web_properties.js.download HTTP/1.1
Host: capital-one-account-securec01-ny3c5bverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:18 GMT
Server: Apache
Last-Modified: Thu, 12 Jan 2023 18:43:26 GMT
Accept-Ranges: bytes
Content-Length: 3022
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/c344d59e90
74.207.224.123200 OK 49 B URL HTTP/1.1 capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/c344d59e90
IP 74.207.224.123:0
File type ASCII text, with no line terminators
Hash ada33e5b8877e743ff658bf4bfa1867c
5a78662243dac43c0ee48bcb7e05a536b84c2e38
dac715f087720dd7ff7067f5d2ec1988851fa93140ae8a9cbfaa15659dd7fd82
GET /web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/c344d59e90 HTTP/1.1
Host: capital-one-account-securec01-ny3c5bverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:18 GMT
Server: Apache
Last-Modified: Thu, 12 Jan 2023 18:43:24 GMT
Accept-Ranges: bytes
Content-Length: 49
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/557936930f28b2d366ab8c42a0f9f373.js.download
74.207.224.123200 OK 285 B URL HTTP/1.1 capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/557936930f28b2d366ab8c42a0f9f373.js.download
IP 74.207.224.123:0
File type ASCII text, with no line terminators
Hash ae6c49ec9c8e28a8ea01401770e71cc0
0f251b8a33f7d92495b98c1f5bb231a104e2da6d
7edc1eebffd512b3688a508c6754c98cb44ada1ed7a8f56862096de6d28cb0fa
Analyzer Verdict Alert urlquery phishing Phishing - Capital One
urlquery phishing Phishing - Capital One
GET /web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/557936930f28b2d366ab8c42a0f9f373.js.download HTTP/1.1
Host: capital-one-account-securec01-ny3c5bverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:18 GMT
Server: Apache
Last-Modified: Thu, 12 Jan 2023 18:43:24 GMT
Accept-Ranges: bytes
Content-Length: 285
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/c3afa97b12a2a04a26c29053e5a236c7.js.download
74.207.224.123200 OK 10 kB URL HTTP/1.1 capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/c3afa97b12a2a04a26c29053e5a236c7.js.download
IP 74.207.224.123:0
File type ASCII text, with very long lines (600)
Hash 3f9229a4fb45720fa3a2dfcc91b44a49
03f71209526d5aa2f6e8df71ea1d9934f67ca457
9c2da5d11c8f774afef474a4a7a6757ba6b088b79ef945397afd4cd8af962760
GET /web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/c3afa97b12a2a04a26c29053e5a236c7.js.download HTTP/1.1
Host: capital-one-account-securec01-ny3c5bverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:18 GMT
Server: Apache
Last-Modified: Thu, 12 Jan 2023 18:43:24 GMT
Accept-Ranges: bytes
Content-Length: 10146
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/3dedc9e67db75efb0491beee1dc9710d.js.download
74.207.224.123200 OK 102 kB URL HTTP/1.1 capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/3dedc9e67db75efb0491beee1dc9710d.js.download
IP 74.207.224.123:0
File type ASCII text, with very long lines (564)
Size 102 kB (101648 bytes)
Hash 2cd3aeb7c90df58a66dc1253a001d135
c69f351dbd540d2f2516f92894c88ee5692c7cae
c511f7d556573373cd6169f3233bdf7428eec614db2500ab74d8284890ed1e09
GET /web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/3dedc9e67db75efb0491beee1dc9710d.js.download HTTP/1.1
Host: capital-one-account-securec01-ny3c5bverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:18 GMT
Server: Apache
Last-Modified: Thu, 12 Jan 2023 18:43:26 GMT
Accept-Ranges: bytes
Content-Length: 101648
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/nr-spa-1169.min.js.download
74.207.224.123200 OK 38 kB URL HTTP/1.1 capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/nr-spa-1169.min.js.download
IP 74.207.224.123:0
File type ASCII text, with very long lines (32021)
Hash 5e3590bffa49fddc4bc389e63736da42
c7f8bdf8337f4f84b1359cb2bd64a2587aeb74af
37072a42526245f257b725698d7e70dfab281bfd00d38f1112dafd36a6e04176
Analyzer Verdict Alert urlquery phishing Phishing - Capital One
urlquery phishing Phishing - Capital One
GET /web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/nr-spa-1169.min.js.download HTTP/1.1
Host: capital-one-account-securec01-ny3c5bverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:18 GMT
Server: Apache
Last-Modified: Thu, 12 Jan 2023 18:43:24 GMT
Accept-Ranges: bytes
Content-Length: 37554
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/Bootstrap.js.download
74.207.224.123200 OK 90 kB URL HTTP/1.1 capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/Bootstrap.js.download
IP 74.207.224.123:0
File type ASCII text, with very long lines (579)
Hash 42e249ecb4027eb634c676c9dc009174
8699c24faccc2402162ff9a0767f173938491566
6adb093054468d09ac7661a31a81c8184938c9422d00adf634f9e6800edf68de
GET /web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/Bootstrap.js.download HTTP/1.1
Host: capital-one-account-securec01-ny3c5bverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:18 GMT
Server: Apache
Last-Modified: Thu, 12 Jan 2023 18:43:26 GMT
Accept-Ranges: bytes
Content-Length: 89645
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/6.js.download
74.207.224.123200 OK 1.1 kB URL HTTP/1.1 capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/6.js.download
IP 74.207.224.123:0
File type ASCII text, with very long lines (1058), with no line terminators
Hash bb239a6f61c9a92d38943b941b75b610
a10c9d0eae68bd28f61e00447ed1b88949c892a6
ceea44c0972cd207c707094b12a33d909fdbf0945eba59684a1d7212e3eb4993
GET /web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/6.js.download HTTP/1.1
Host: capital-one-account-securec01-ny3c5bverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:18 GMT
Server: Apache
Last-Modified: Thu, 12 Jan 2023 18:43:26 GMT
Accept-Ranges: bytes
Content-Length: 1058
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/browserDecom.css
74.207.224.123200 OK 907 B URL HTTP/1.1 capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/browserDecom.css
IP 74.207.224.123:0
Hash 21b219c6d0855bd870704aca6149a386
f3a3e71129678ac2364ca565ef5cdcdff6c6be0b
5e93965b3f8db2834e8e22ebf73a538bad7ba99fdc443a38942bf69f55c299a3
Analyzer Verdict Alert urlquery phishing Phishing - Capital One
urlquery phishing Phishing - Capital One
GET /web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/browserDecom.css HTTP/1.1
Host: capital-one-account-securec01-ny3c5bverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:18 GMT
Server: Apache
Last-Modified: Thu, 12 Jan 2023 18:43:26 GMT
Accept-Ranges: bytes
Content-Length: 907
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/serverComponent.php
74.207.224.123200 OK 602 B URL HTTP/1.1 capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/serverComponent.php
IP 74.207.224.123:0
File type ASCII text, with very long lines (601)
Hash efb169962420b1bce654c83174506258
0e06f285319b6d5a0e48d84edd4148afbfef74c1
09b2580efbf5f9ec8a964d686a57f297345c3113c18e36c317809875e8cd2146
GET /web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/serverComponent.php HTTP/1.1
Host: capital-one-account-securec01-ny3c5bverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:18 GMT
Server: Apache
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/cc.js.download
74.207.224.123200 OK 31 kB URL HTTP/1.1 capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/cc.js.download
IP 74.207.224.123:0
File type ASCII text, with very long lines (4785)
Hash a52a2aad192ae498df2bc93e22643a99
84a1b24255f582714ad5beeeca20703f4d58944b
067263247bfe03f5d022ce34f5f8016763b3ab5a6789e652b87f822a39ba559b
GET /web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/cc.js.download HTTP/1.1
Host: capital-one-account-securec01-ny3c5bverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:18 GMT
Server: Apache
Last-Modified: Thu, 12 Jan 2023 18:43:26 GMT
Accept-Ranges: bytes
Content-Length: 31449
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/browserFingerPrintv1.min.js.download
74.207.224.123200 OK 28 kB URL HTTP/1.1 capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/browserFingerPrintv1.min.js.download
IP 74.207.224.123:0
File type ASCII text, with very long lines (28442), with no line terminators
Hash 0f537e63c621f88c0c4bf4257394b2c2
7f28eaf9bbf93c3a2d4e012aaca4f34c3cbc3c97
559d96c9ff8af5055471707c21b22ac1a7bca706d199dc9f5659a65c02d7e944
Analyzer Verdict Alert urlquery phishing Phishing - Capital One
urlquery phishing Phishing - Capital One
GET /web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/browserFingerPrintv1.min.js.download HTTP/1.1
Host: capital-one-account-securec01-ny3c5bverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:19 GMT
Server: Apache
Last-Modified: Thu, 12 Jan 2023 18:43:26 GMT
Accept-Ranges: bytes
Content-Length: 28442
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/uba.js.download
74.207.224.123200 OK 23 kB URL HTTP/1.1 capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/uba.js.download
IP 74.207.224.123:0
File type ASCII text, with very long lines (23147), with no line terminators
Hash 3a1b75c529ae0515e60d150b0c6c4971
b440405e410d86929368e65715fdf079b8492687
079eaddf883a8b4c1144de1382712fe40e246c780914f766cfe73c90b707116d
Analyzer Verdict Alert urlquery phishing Phishing - Capital One
urlquery phishing Phishing - Capital One
GET /web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/uba.js.download HTTP/1.1
Host: capital-one-account-securec01-ny3c5bverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:19 GMT
Server: Apache
Last-Modified: Thu, 12 Jan 2023 18:43:26 GMT
Accept-Ranges: bytes
Content-Length: 23147
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/cp_common.js.download
74.207.224.123200 OK 250 kB URL HTTP/1.1 capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/cp_common.js.download
IP 74.207.224.123:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 250 kB (250326 bytes)
Hash 954d345c25d0288545f8add1b0b094f5
e05ca1cbb505d44c94b0220ebf00c124e51a2d2d
971f948b86e9b2e13c5ada91c63852944e838f5d80d4914cf58afd3d9329c739
GET /web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/cp_common.js.download HTTP/1.1
Host: capital-one-account-securec01-ny3c5bverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:18 GMT
Server: Apache
Last-Modified: Thu, 12 Jan 2023 18:43:26 GMT
Accept-Ranges: bytes
Content-Length: 250326
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/smartBanner.js.download
74.207.224.123200 OK 1.6 kB URL HTTP/1.1 capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/smartBanner.js.download
IP 74.207.224.123:0
Hash 1cb97af58dead900c1345745358b85da
d3ac0a66cff1c23afaa6d958b972b874e5990779
fb506dd556d29c2b2b968853f96a25fa748753e2d26b1aa5eef0e9464802e4b8
Analyzer Verdict Alert urlquery phishing Phishing - Capital One
urlquery phishing Phishing - Capital One
GET /web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/smartBanner.js.download HTTP/1.1
Host: capital-one-account-securec01-ny3c5bverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:19 GMT
Server: Apache
Last-Modified: Thu, 12 Jan 2023 18:43:26 GMT
Accept-Ranges: bytes
Content-Length: 1621
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/48bd69968a37ba9278a2b95757ab79a8.js.download
74.207.224.123200 OK 142 kB URL HTTP/1.1 capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/48bd69968a37ba9278a2b95757ab79a8.js.download
IP 74.207.224.123:0
File type ASCII text, with very long lines (1780)
Size 142 kB (142398 bytes)
Hash 0a197f7f1e82204c1c2c2af519147cf1
067a401db38e93df4376c603cb3babf45c951826
e6762b820cac591b02f0f2bfc7d19519b5097f3e6ce8011a779c2a510804251a
GET /web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/48bd69968a37ba9278a2b95757ab79a8.js.download HTTP/1.1
Host: capital-one-account-securec01-ny3c5bverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:18 GMT
Server: Apache
Last-Modified: Thu, 12 Jan 2023 18:43:24 GMT
Accept-Ranges: bytes
Content-Length: 142398
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/bfp-ah-min.js.download
74.207.224.123200 OK 28 kB URL HTTP/1.1 capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/bfp-ah-min.js.download
IP 74.207.224.123:0
File type ASCII text, with very long lines (28446)
Hash 8757e334f431074d7dbc2116091fd60c
ea3f68d9e2db91dfc7fa3f06fceda2d4db4cad31
d306d8f42a872c23ab068006236bfa6d31c16b28166bca02f82a1993402511c7
Analyzer Verdict Alert urlquery phishing Phishing - Capital One
urlquery phishing Phishing - Capital One
GET /web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/bfp-ah-min.js.download HTTP/1.1
Host: capital-one-account-securec01-ny3c5bverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:19 GMT
Server: Apache
Last-Modified: Thu, 12 Jan 2023 18:43:26 GMT
Accept-Ranges: bytes
Content-Length: 28463
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/browserDecom.min.js.download
74.207.224.123200 OK 2.9 kB URL HTTP/1.1 capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/browserDecom.min.js.download
IP 74.207.224.123:0
File type ASCII text, with very long lines (2889)
Hash 07bf9b4947aa6bde826ad40b4ce94cbc
143aa1d350fcbe9837131cd5c99f7bfee4ccab15
5f52ae8e21cf995801b7067803fffe87f768fb7d8fadeb118763bbd85b3ffb08
Analyzer Verdict Alert urlquery phishing Phishing - Capital One
urlquery phishing Phishing - Capital One
GET /web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/browserDecom.min.js.download HTTP/1.1
Host: capital-one-account-securec01-ny3c5bverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:19 GMT
Server: Apache
Last-Modified: Thu, 12 Jan 2023 18:43:26 GMT
Accept-Ranges: bytes
Content-Length: 2890
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/runtime-es2015.42c82d55f001ae3c18ce.js.download
74.207.224.123200 OK 3.5 kB URL HTTP/1.1 capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/runtime-es2015.42c82d55f001ae3c18ce.js.download
IP 74.207.224.123:0
File type ASCII text, with very long lines (3511), with no line terminators
Hash c3d054114941991629165afb4071232b
67c1d1e75c2e1d84809e3f2fadc331cb81e679ce
ebec612df641db65ec4cfbcd55271881a0ea3fc23d79dbe6ff4122c2f29924aa
Analyzer Verdict Alert urlquery phishing Phishing - Capital One
urlquery phishing Phishing - Capital One
GET /web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/runtime-es2015.42c82d55f001ae3c18ce.js.download HTTP/1.1
Host: capital-one-account-securec01-ny3c5bverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:19 GMT
Server: Apache
Last-Modified: Thu, 12 Jan 2023 18:43:26 GMT
Accept-Ranges: bytes
Content-Length: 3511
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/styles.f2b084197cc01ba64453.css
74.207.224.123200 OK 100 kB URL HTTP/1.1 capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/styles.f2b084197cc01ba64453.css
IP 74.207.224.123:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6c3a305368bae6927b63b593655147b6
225f8d68f91dab04750df40373af0371767f13ec
2bcc4727283dba6e50114d721882a18098792c99f40fe8c3dbece81d7fcfeb8d
Analyzer Verdict Alert urlquery phishing Phishing - Capital One
urlquery phishing Phishing - Capital One
GET /web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/styles.f2b084197cc01ba64453.css HTTP/1.1
Host: capital-one-account-securec01-ny3c5bverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:18 GMT
Server: Apache
Last-Modified: Thu, 12 Jan 2023 18:43:26 GMT
Accept-Ranges: bytes
Content-Length: 99595
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/scripts.15572fe86e8a678e73a5.js.download
74.207.224.123200 OK 1.8 kB URL HTTP/1.1 capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/scripts.15572fe86e8a678e73a5.js.download
IP 74.207.224.123:0
File type C source, ASCII text, with very long lines (1783), with no line terminators
Hash 44b43abe3319a91b3c126b2742c8df90
4d434adeb3b44e4b82c1aac988411abfc86d81e8
61c27ea4799cb59cd0f75305c30ae8b7ce922e7eeaa2a8411e2399a12b8eae67
Analyzer Verdict Alert urlquery phishing Phishing - Capital One
urlquery phishing Phishing - Capital One
GET /web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/scripts.15572fe86e8a678e73a5.js.download HTTP/1.1
Host: capital-one-account-securec01-ny3c5bverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:19 GMT
Server: Apache
Last-Modified: Thu, 12 Jan 2023 18:43:26 GMT
Accept-Ranges: bytes
Content-Length: 1783
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/polyfills-es2015.395d2bdf0abb5c87e41b.js.download
74.207.224.123200 OK 96 kB URL HTTP/1.1 capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/polyfills-es2015.395d2bdf0abb5c87e41b.js.download
IP 74.207.224.123:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 7cbf1dd2d8d18d864549bd10bcead90e
e34e2ac200ec1c6de86aa5c73ec878927cffef08
3b7a63a71579e82fc95a9c5b4f34c22475463b48f95aebff6101d268e677bdb6
Analyzer Verdict Alert urlquery phishing Phishing - Capital One
urlquery phishing Phishing - Capital One
GET /web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/polyfills-es2015.395d2bdf0abb5c87e41b.js.download HTTP/1.1
Host: capital-one-account-securec01-ny3c5bverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:19 GMT
Server: Apache
Last-Modified: Thu, 12 Jan 2023 18:43:26 GMT
Accept-Ranges: bytes
Content-Length: 96043
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9941
Expires: Sat, 14 Jan 2023 19:25:00 GMT
Date: Sat, 14 Jan 2023 16:39:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9941
Expires: Sat, 14 Jan 2023 19:25:00 GMT
Date: Sat, 14 Jan 2023 16:39:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9941
Expires: Sat, 14 Jan 2023 19:25:00 GMT
Date: Sat, 14 Jan 2023 16:39:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9941
Expires: Sat, 14 Jan 2023 19:25:00 GMT
Date: Sat, 14 Jan 2023 16:39:19 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b55aad-884c-40db-a779-021d0c2305b4.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b55aad-884c-40db-a779-021d0c2305b4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b1378f107c1996ade14a8fe7fd728072
f52d98d9a0d1d343a539689ea14acf99e148cf8c
4be994757ec7ec42929590169de199e927889261334e258903a0929a1055047d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b55aad-884c-40db-a779-021d0c2305b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9154
x-amzn-requestid: fbb1140d-7ec2-4f86-8761-5d04601af70e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: enAkCEN2IAMFuMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf7ae6-4baebf1104f9cf2a0ee8a538;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 03:13:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jlRcVyQppaQaPPMKaqadtaEHfdOYXXXbnfrr44l_2E2qaOoh_O0Mog==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 04:10:18 GMT
age: 44941
etag: "f52d98d9a0d1d343a539689ea14acf99e148cf8c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/capital-one-logo.svg
74.207.224.123200 OK 4.0 kB URL HTTP/1.1 capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/capital-one-logo.svg
IP 74.207.224.123:0
File type ASCII text, with very long lines (3967), with CRLF line terminators
Hash f0b7ad81821effc52540e39cafda48f9
33d64bc7001f414f12bd92e740a45e5ced239add
57dfca5b95599a613da940f4a49ab6378fcf0586366a47cae679796930bf0eed
Analyzer Verdict Alert urlquery phishing Phishing - Capital One
urlquery phishing Phishing - Capital One
GET /web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/capital-one-logo.svg HTTP/1.1
Host: capital-one-account-securec01-ny3c5bverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:19 GMT
Server: Apache
Last-Modified: Thu, 12 Jan 2023 18:43:26 GMT
Accept-Ranges: bytes
Content-Length: 3971
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab5201aa-c0a6-43a3-b371-9091b021b171.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab5201aa-c0a6-43a3-b371-9091b021b171.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5b6f9fd45fe3dfe1bc0ee610925c385d
4ab08950008a4ab0a52091bb6f186c12814276e9
3dab6a58e53155e44117fbd9d40c4f38a7586efe1e69db1a064d2bbc5bbf185a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab5201aa-c0a6-43a3-b371-9091b021b171.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8681
x-amzn-requestid: 1060e7e7-3864-4ce5-b0aa-cfe24bb1a21a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: es0qdGvqoAMF57g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c1ce42-3cf8e4535d417e6f5142f23d;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 21:33:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fn6fJcMooAv0V8MKuIM5EMGIEBijeoPBv5VWPtEz0j7LbfLoWw_soA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 21:49:01 GMT
age: 67818
etag: "4ab08950008a4ab0a52091bb6f186c12814276e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/icon-user.svg
74.207.224.123200 OK 584 B URL HTTP/1.1 capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/icon-user.svg
IP 74.207.224.123:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (584), with no line terminators
Hash 1f46c36bca03354edd25a3e35b7977db
c002468fca8f3910fccba86c6d67602191eaeaed
32f101709eb4240f21b330c854ed3bd539c0dc9001f08bf51d4e6a5b6bf641c6
Analyzer Verdict Alert urlquery phishing Phishing - Capital One
urlquery phishing Phishing - Capital One
GET /web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/icon-user.svg HTTP/1.1
Host: capital-one-account-securec01-ny3c5bverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:19 GMT
Server: Apache
Last-Modified: Thu, 12 Jan 2023 18:43:26 GMT
Accept-Ranges: bytes
Content-Length: 584
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/svg+xml
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a23d61d610c7b55d943fcb2636a01b65
82c4c5170c7b586c2a7a1f2d2d5c9ff0219af065
28bf3039cc8c1213e64893c71bc150eda573223feb2cc15ad0814a44960d434a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9539
x-amzn-requestid: eb427fd6-c342-4a22-af45-ecc528cf4a8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: epfDqEAZIAMFudQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c0787d-4f61ecd2422081224869da76;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 21:15:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RRMRT2BC5p1x0Vh20ut0Kjbz2mnaNToUIbzIg9oczduvzYCckvFORA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 12:46:14 GMT
age: 13985
etag: "82c4c5170c7b586c2a7a1f2d2d5c9ff0219af065"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0a5cc8b-8d62-447a-a39c-733e1afdd415.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0a5cc8b-8d62-447a-a39c-733e1afdd415.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2363dbe7bb6a459853d8d19cab50e70b
ded76de1dd453e40dbf6eaa8607cf19fac7f71a4
f96da6354cec52143768014c36ba2b298224a58b0bf38bd2aa5f3bfce69d8670
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0a5cc8b-8d62-447a-a39c-733e1afdd415.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7447
x-amzn-requestid: dd3543b7-4e6b-4605-acea-a21d39af02ca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: es0qSFjAIAMF7HQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c1ce41-56e2ccc63669032d70cba0ba;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 21:33:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AYaeawnEmwHkyx3h-yliVx-ARcRB3W5kbtFH5tARnL3YMD6e4WYAQw==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 21:49:01 GMT
age: 67818
etag: "ded76de1dd453e40dbf6eaa8607cf19fac7f71a4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 64ba27a2f0a3bc61bd325f1fb317b755
c65c58476b66cbb6269ba1d8412d270a0a003ae3
5f7f03752f8a7c8c08d92512ae93b193ea37f59354503c3129d33fd2910f87e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9135
x-amzn-requestid: 2c5e9de0-9244-43ac-b7c4-712cbcf7038c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: enAnoG6roAMFzgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf7afd-7fb640b30bab63bc1979a173;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 03:14:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: SUGIIWi8jWe9RoRu-3dQXvLAddjwjH05V1ubKzEOEQrFonzVjQdbtw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 03:33:07 GMT
age: 47172
etag: "c65c58476b66cbb6269ba1d8412d270a0a003ae3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F917985a1-aa8d-4c0a-860c-0b16c203387e.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F917985a1-aa8d-4c0a-860c-0b16c203387e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d24ea1f095f492934a1f1c63f5d8590c
dade37148c9b9a941f93a8535d8ddc5de3952623
2d8e3f90eb347eb3479a6c5d20a1c2ca6a0560f335a6c6800948db2640e4c878
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F917985a1-aa8d-4c0a-860c-0b16c203387e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8181
x-amzn-requestid: 7ada8fbd-58e6-4433-a532-b4a4ef93ac9c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: es0paH-OIAMFg5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c1ce3c-582529522dbb67ee728484f8;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 21:33:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AHjOmYxva5avyA3gt9DvYLas_B2ACimer5QRQOi919HDtSjnKq22lw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 10:27:20 GMT
age: 22319
etag: "dade37148c9b9a941f93a8535d8ddc5de3952623"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ecm.capitalone.com/CI_Common/assets/images/footer/social-icons/twitter-social.svg
104.110.12.190200 OK 739 B URL HTTP/2 ecm.capitalone.com/CI_Common/assets/images/footer/social-icons/twitter-social.svg
IP 104.110.12.190:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 77f2d72cdcf4aaf7acb2fac186d73d88
b37ae89afcddcda7aa42ca0f6e08a1f5d99171de
f9255b9c7d4a83868ae8f4d4757c5ca10701ee564a0128f6c8d412aaa2988fc2
GET /CI_Common/assets/images/footer/social-icons/twitter-social.svg HTTP/1.1
Host: ecm.capitalone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Fri, 28 Jun 2019 00:26:05 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: WY8VBzDyq7FctDDX8MrQBW0rTz7Flw8l
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-amz-cf-pop: LHR62-C4
x-amz-cf-id: gcA3FZ_2GSoxh0bSKcFTC57Y40mQrGEIkILIkr3sRpMMNUZPffZEpw==
content-length: 739
x-datastream-cache-status: 1
cache-control: max-age=1206043
expires: Sat, 28 Jan 2023 15:40:02 GMT
date: Sat, 14 Jan 2023 16:39:19 GMT
access-control-request-method: POST,GET,PUT,DELETE
access-control-max-age: 86400
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
ecm.capitalone.com/CI_Common/assets/images/footer/social-icons/facebook-social.svg
104.110.12.190200 OK 282 B URL HTTP/2 ecm.capitalone.com/CI_Common/assets/images/footer/social-icons/facebook-social.svg
IP 104.110.12.190:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (431), with no line terminators
Hash 30fa58d0bf1bfed5fdfbdefcb478a2c9
8536df86e5d310f00c29ad1f547a89f0e6df92c7
15ccbac86a9d7f0e11bf328d3c5256e58fa7273e6ac279c671d60f4dcf19a31a
GET /CI_Common/assets/images/footer/social-icons/facebook-social.svg HTTP/1.1
Host: ecm.capitalone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Fri, 28 Jun 2019 00:26:05 GMT
etag: "e43c5a7e7fb8c3c12579162a4986b1ad"
x-amz-server-side-encryption: AES256
x-amz-version-id: sp5rcJ_CixBIFs_Kbc9AtTIkRc82cd4R
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: LHR62-C4
x-amz-cf-id: 9yfOZylyVUTLW-XJqXnsgG1CSEcq-mYUooMIoo_8hg6ye-qdhcPc-A==
vary: Accept-Encoding
content-encoding: gzip
content-length: 282
x-datastream-cache-status: 1
cache-control: max-age=1550085
expires: Wed, 01 Feb 2023 15:14:04 GMT
date: Sat, 14 Jan 2023 16:39:19 GMT
access-control-request-method: POST,GET,PUT,DELETE
access-control-max-age: 86400
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
ecm.capitalone.com/CI_Common/assets/images/footer/social-icons/you-tube-social.svg
104.110.12.190200 OK 295 B URL HTTP/2 ecm.capitalone.com/CI_Common/assets/images/footer/social-icons/you-tube-social.svg
IP 104.110.12.190:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (491), with no line terminators
Hash 7462100767fa7d0d3207511f2d59cf61
36dd49191ef83ff7828aa3383c6c8d6e78da8b84
1890c97b98616b3cefb17f9c783b2748adabec944a833b6fcd88508f522edb18
GET /CI_Common/assets/images/footer/social-icons/you-tube-social.svg HTTP/1.1
Host: ecm.capitalone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Fri, 28 Jun 2019 00:26:05 GMT
etag: "0a9ec1ae291522dcb84befe6a44c3830"
x-amz-server-side-encryption: AES256
x-amz-version-id: 5PqSeWnBhEvAtcPgf2XAbVZCtyvnbUxM
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: LHR62-C4
x-amz-cf-id: udmibnSSc80ZttssKn9Siq6GfDhl8gbCn4SNNcE3kxwIAwPjRGAh_w==
vary: Accept-Encoding
content-encoding: gzip
content-length: 295
x-datastream-cache-status: 1
cache-control: max-age=1214920
expires: Sat, 28 Jan 2023 18:07:59 GMT
date: Sat, 14 Jan 2023 16:39:19 GMT
access-control-request-method: POST,GET,PUT,DELETE
access-control-max-age: 86400
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
ecm.capitalone.com/CI_Common/assets/images/footer/social-icons/linkedin-social.svg
104.110.12.190200 OK 349 B URL HTTP/2 ecm.capitalone.com/CI_Common/assets/images/footer/social-icons/linkedin-social.svg
IP 104.110.12.190:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (605), with no line terminators
Hash 64de3d9e5f3776050da1ad3bc8600af4
2ef81f9a7e5589573455c4bcdd2cd23f0389dcae
7abcdb44730a9a13299592a437d3204f4d3003beb1002182a3bc2bd4455cfc10
GET /CI_Common/assets/images/footer/social-icons/linkedin-social.svg HTTP/1.1
Host: ecm.capitalone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Fri, 28 Jun 2019 00:26:05 GMT
etag: "4135a3d131493d86e0db3c8ad0420602"
x-amz-server-side-encryption: AES256
x-amz-version-id: V4.R2G9M5ytZINKkEHFYF7hbdLSExGPo
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: LHR61-C1
x-amz-cf-id: G52Tu5rqS37X025ZWcrVExJZ-R9oPcxMBTc-R7DPcrolYcdm0bTuZQ==
vary: Accept-Encoding
content-encoding: gzip
content-length: 349
x-datastream-cache-status: 1
cache-control: max-age=465102
expires: Fri, 20 Jan 2023 01:51:01 GMT
date: Sat, 14 Jan 2023 16:39:19 GMT
access-control-request-method: POST,GET,PUT,DELETE
access-control-max-age: 86400
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
ecm.capitalone.com/CI_Common/assets/images/footer/social-icons/instagram-social.svg
104.110.12.190200 OK 773 B URL HTTP/2 ecm.capitalone.com/CI_Common/assets/images/footer/social-icons/instagram-social.svg
IP 104.110.12.190:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1670), with no line terminators
Hash c590292db39fd301fe239cab121c47fa
4ade30ea9ec3c6eae149d8b20d0b206bdfcc7045
38e7c2bc6691d6c3306f1c2fa258f0cdba9d1bb9e30aa84f936ddbea7aa8cf36
GET /CI_Common/assets/images/footer/social-icons/instagram-social.svg HTTP/1.1
Host: ecm.capitalone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Fri, 28 Jun 2019 00:26:05 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: FUfIizReL1r02BrKB1G0_CUQXIQQ79Tx
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-amz-cf-pop: LHR62-C4
x-amz-cf-id: 3zWyTF2GjDRuA8_zXbFBO7gTAaTuBuO00CKdgIyXyrjoI2TCxLixcA==
content-length: 773
x-datastream-cache-status: 1
cache-control: max-age=548640
expires: Sat, 21 Jan 2023 01:03:19 GMT
date: Sat, 14 Jan 2023 16:39:19 GMT
access-control-request-method: POST,GET,PUT,DELETE
access-control-max-age: 86400
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
ecm.capitalone.com/CI_Common/assets/images/logos/capital-one-logo.svg
104.110.12.190200 OK 1.7 kB URL HTTP/2 ecm.capitalone.com/CI_Common/assets/images/logos/capital-one-logo.svg
IP 104.110.12.190:0
File type ASCII text, with very long lines (3967), with CRLF line terminators
Hash 3c887b5a7da3e079b28af9611727d603
68699a4791f42d8f8c9885b1d0161b073dd311cb
f5f35ab66bfc36f0b507c2d79daef9fb7d4b6b25517941938a2fd0200786639b
GET /CI_Common/assets/images/logos/capital-one-logo.svg HTTP/1.1
Host: ecm.capitalone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Wed, 20 Jan 2021 18:06:43 GMT
etag: W/"f0b7ad81821effc52540e39cafda48f9"
x-amz-server-side-encryption: AES256
x-amz-version-id: 8LzbBBEj8zCeatCBoYuv1q1dFFpTcVNl
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-amz-cf-pop: AMS1-C1
x-amz-cf-id: J7vYkMHldk7VQFB1bIHduw5NeYZkhfnOKJKZr7aIcKYAuVn4YqAoug==
content-length: 1737
x-datastream-cache-status: 1
cache-control: max-age=1215080
expires: Sat, 28 Jan 2023 18:10:39 GMT
date: Sat, 14 Jan 2023 16:39:19 GMT
access-control-request-method: POST,GET,PUT,DELETE
access-control-max-age: 86400
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
ecm.capitalone.com/CI_Common/assets/images/footer/www-fdic.svg
104.110.12.190200 OK 955 B URL HTTP/2 ecm.capitalone.com/CI_Common/assets/images/footer/www-fdic.svg
IP 104.110.12.190:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1959), with no line terminators
Hash 30bc9833d1b4249209bbbbc5712df918
f46f632ab55fa3372d697125b84c489ffb260087
dacca07b11d3e87f5063f5395daab105c502eca91ca4af876df3dfd2fa943df0
GET /CI_Common/assets/images/footer/www-fdic.svg HTTP/1.1
Host: ecm.capitalone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Fri, 28 Jun 2019 00:26:06 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 8xRP0pbuqhkFsGgLYTsgGzSHlkx4pEGg
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-amz-cf-pop: LHR61-C1
x-amz-cf-id: AA-gr5qFAQOBSOZ6gASftnZWidMs1NQby7eRXqwUj-42Y08HbOViAA==
content-length: 955
x-datastream-cache-status: 1
cache-control: max-age=597679
expires: Sat, 21 Jan 2023 14:40:38 GMT
date: Sat, 14 Jan 2023 16:39:19 GMT
access-control-request-method: POST,GET,PUT,DELETE
access-control-max-age: 86400
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
ecm.capitalone.com/CI_Common/assets/images/footer/www-ehl.svg
104.110.12.190200 OK 299 B URL HTTP/2 ecm.capitalone.com/CI_Common/assets/images/footer/www-ehl.svg
IP 104.110.12.190:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (437), with no line terminators
Hash 2b98eb56c1f6a772cc16038112af96f0
282bb690f0645ad79c999c9ef8f3063a4b3a8a87
00b44672dfc32e5609a4bea2e6dcac7baaf08026e455da3e3334a66ac068569b
GET /CI_Common/assets/images/footer/www-ehl.svg HTTP/1.1
Host: ecm.capitalone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Fri, 28 Jun 2019 00:26:06 GMT
etag: "30d0ea03dfc7173265c5896affca1ad9"
x-amz-server-side-encryption: AES256
x-amz-version-id: Cfpp_Ya_3POEKViDatTY.UH0GBjWHzjx
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: LHR62-C4
x-amz-cf-id: JSxz0f-D-jytf_m62HmNWnzCfgJw-vtpcW8Xk1sQpAngH2JGTZ_vHQ==
vary: Accept-Encoding
content-encoding: gzip
content-length: 299
x-datastream-cache-status: 1
cache-control: max-age=610334
expires: Sat, 21 Jan 2023 18:11:33 GMT
date: Sat, 14 Jan 2023 16:39:19 GMT
access-control-request-method: POST,GET,PUT,DELETE
access-control-max-age: 86400
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/saved_resource.html
74.207.224.123200 OK 290 B URL HTTP/1.1 capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/saved_resource.html
IP 74.207.224.123:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3afa7de5a2bd27b93f236d14808880a0
3bf5c1401947985571b04d91c30115825f7e41db
179ea06b8c364424ebe1a55348c42affc326addba06c1408ee7c9a7c08c7c62c
GET /web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/saved_resource.html HTTP/1.1
Host: capital-one-account-securec01-ny3c5bverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:19 GMT
Server: Apache
Last-Modified: Thu, 12 Jan 2023 18:43:26 GMT
Accept-Ranges: bytes
Content-Length: 290
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html
capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/dest5.html
74.207.224.123200 OK 7.1 kB URL HTTP/1.1 capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/dest5.html
IP 74.207.224.123:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (550)
Hash 3aafb5a1164246792a3102df7df5712c
6bdfdb342e8c95bdf17bc0495f4ba6f6cf086d05
dcf38af877304a62d94c4a84104c7c7e3e76a45b36df7926aea38432f73aa41d
GET /web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/dest5.html HTTP/1.1
Host: capital-one-account-securec01-ny3c5bverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:19 GMT
Server: Apache
Last-Modified: Thu, 12 Jan 2023 18:43:26 GMT
Accept-Ranges: bytes
Content-Length: 7109
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html
capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/main-es2015.2095117407d7e41cceb6.js.download
74.207.224.123200 OK 1.3 MB URL HTTP/1.1 capital-one-account-securec01-ny3c5bverify.com/web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/main-es2015.2095117407d7e41cceb6.js.download
IP 74.207.224.123:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 1.3 MB (1344529 bytes)
Hash 360d58649856dfcc14d599b46c45bcbb
4bd7d98300f111480e1dfd293006af44270092aa
9cdad7e8cb44522edaeafc4022efa2d5865d9bca15909f4c6234cb22c881fa67
Analyzer Verdict Alert urlquery phishing Phishing - Capital One
urlquery phishing Phishing - Capital One
GET /web/ses/login/Sign%20in%20to%20access%20your%20account(s)_files/main-es2015.2095117407d7e41cceb6.js.download HTTP/1.1
Host: capital-one-account-securec01-ny3c5bverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:19 GMT
Server: Apache
Last-Modified: Thu, 12 Jan 2023 18:43:26 GMT
Accept-Ranges: bytes
Content-Length: 1344529
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
tms.capitalone.com/capitalone/prod/serverComponent.php?namespace=Bootstrapper&staticJsPath=tms.capitalone.com/capitalone/prod/code/&publishedOn=Thu%20Jan%2012%2020:41:26%20GMT%202023&ClientID=581&PageID=https%3A%2F%2Fcapital-one-account-securec01-ny3c5bverify.com%2Fweb%2Fses%2Flogin%2Fsignin.php%3Fwebview%3Dundefined
52.51.219.145200 OK 4.4 kB URL HTTP/2 tms.capitalone.com/capitalone/prod/serverComponent.php?namespace=Bootstrapper&staticJsPath=tms.capitalone.com/capitalone/prod/code/&publishedOn=Thu%20Jan%2012%2020:41:26%20GMT%202023&ClientID=581&PageID=https%3A%2F%2Fcapital-one-account-securec01-ny3c5bverify.com%2Fweb%2Fses%2Flogin%2Fsignin.php%3Fwebview%3Dundefined
IP 52.51.219.145:0
Hash f883486594e4522302a42cbea62ac5a3
8183050894ed4bb1f229eab2f96de41b1d8afc6a
202c75474bce6b1dc0e21c12a5ed56989ad59f251ff559f0ebc77434a8d79710
GET /capitalone/prod/serverComponent.php?namespace=Bootstrapper&staticJsPath=tms.capitalone.com/capitalone/prod/code/&publishedOn=Thu%20Jan%2012%2020:41:26%20GMT%202023&ClientID=581&PageID=https%3A%2F%2Fcapital-one-account-securec01-ny3c5bverify.com%2Fweb%2Fses%2Flogin%2Fsignin.php%3Fwebview%3Dundefined HTTP/1.1
Host: tms.capitalone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 16:39:20 GMT
content-type: text/javascript
vary: Accept-Encoding
expires: Sat, 14 Jan 2023 16:39:19 GMT
cache-control: no-cache, no-store
x-cache: Miss from cloudfront
via: 1.1 e2a6a95e8d95cf855c934397de0d60aa.cloudfront.net (CloudFront)
x-amz-cf-pop: DUB56-P1
x-amz-cf-id: OnFnmFVQsurdRk0r5AXqQr7emxW6Ne3j6AMdN9JKipP7o-yG1hrFEQ==
content-encoding: gzip
X-Firefox-Spdy: h2
js-agent.newrelic.com/nr-spa-1169.min.js
151.101.194.137200 OK 14 kB URL HTTP/2 js-agent.newrelic.com/nr-spa-1169.min.js
IP 151.101.194.137:0
File type ASCII text, with very long lines (32021)
Hash b710c03d2405421082b06522e3a0f342
90d7d18f3c5cb62752710b22be35a0c0bf4044bc
821ba7236fc9289747953f9bdeab1232750d1e7c793bc95c739c340ffa91aa42
GET /nr-spa-1169.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: xc+Dc8MH+kHp+BhwvxpIHym+IPnTIxfEFguQd1bGEZITtMGSTKDpb3PuMgthZspaF7pMhEIZwPM=
x-amz-request-id: 2VYW9KWD3CHB6A9Z
last-modified: Wed, 20 May 2020 21:16:17 GMT
etag: "5e3590bffa49fddc4bc389e63736da42"
x-amz-version-id: null
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 14 Jan 2023 16:39:20 GMT
via: 1.1 varnish
x-served-by: cache-bma1682-BMA
x-cache: HIT
x-cache-hits: 75
x-timer: S1673714361.691858,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 13996
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a610c6e51ee961edf7c34eb0f33a549e
1982532c1f2df05c5a46183ea80ea722005cabe0
5c9e7fcfc6df3915157d836bda023d9831b8b49d8cc360627e571e0ad9afbc8c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2585
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 14 Jan 2023 16:39:20 GMT
Last-Modified: Sat, 14 Jan 2023 15:56:16 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
bam.nr-data.net/1/0a6015c82e?a=793679698&sa=1&v=1169.7b094c0&t=Unnamed%20Transaction&rst=3947&ck=1&ref=https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php&be=2121&fe=3660&dc=3652&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1673714356900,%22n%22:0,%22f%22:627,%22dn%22:631,%22dne%22:1041,%22c%22:1041,%22s%22:1155,%22ce%22:1276,%22rq%22:1276,%22rp%22:1388,%22rpe%22:1736,%22dl%22:1425,%22di%22:2662,%22ds%22:3651,%22de%22:3659,%22dc%22:3659,%22l%22:3659,%22le%22:3661%7D,%22navigation%22:%7B%7D%7D&fcp=2563&jsonp=NREUM.setToken
162.247.241.14200 OK 73 B URL HTTP/1.1 bam.nr-data.net/1/0a6015c82e?a=793679698&sa=1&v=1169.7b094c0&t=Unnamed%20Transaction&rst=3947&ck=1&ref=https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php&be=2121&fe=3660&dc=3652&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1673714356900,%22n%22:0,%22f%22:627,%22dn%22:631,%22dne%22:1041,%22c%22:1041,%22s%22:1155,%22ce%22:1276,%22rq%22:1276,%22rp%22:1388,%22rpe%22:1736,%22dl%22:1425,%22di%22:2662,%22ds%22:3651,%22de%22:3659,%22dc%22:3659,%22l%22:3659,%22le%22:3661%7D,%22navigation%22:%7B%7D%7D&fcp=2563&jsonp=NREUM.setToken
IP 162.247.241.14:0
File type ASCII text, with no line terminators
Hash 814f8120cdf5a972bdb0fd5521a92a5d
47f7b3cd340d1fe91766ff27602e319a79bcd14c
5f520e553ae6a634e84b7c8c8d36908d2efa441d716834fd98c012c402b1c3c8
GET /1/0a6015c82e?a=793679698&sa=1&v=1169.7b094c0&t=Unnamed%20Transaction&rst=3947&ck=1&ref=https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php&be=2121&fe=3660&dc=3652&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1673714356900,%22n%22:0,%22f%22:627,%22dn%22:631,%22dne%22:1041,%22c%22:1041,%22s%22:1155,%22ce%22:1276,%22rq%22:1276,%22rp%22:1388,%22rpe%22:1736,%22dl%22:1425,%22di%22:2662,%22ds%22:3651,%22de%22:3659,%22dc%22:3659,%22l%22:3659,%22le%22:3661%7D,%22navigation%22:%7B%7D%7D&fcp=2563&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:21 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 7897cea378851c06-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=e2784003bc2856b6; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
verified.capitalone.com/auth/favicon.ico
104.110.22.247200 OK 15 kB URL HTTP/2 verified.capitalone.com/auth/favicon.ico
IP 104.110.22.247:0
File type MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash d27e1739c7477b10ec6917546ae61f1d
bb36ab8bce726ce72a2d74a8529526bca0fa515d
5f2123af80970c0478de7f373c9d861d886e070592ebcd55fa372d8dfc9752ec
GET /auth/favicon.ico HTTP/1.1
Host: verified.capitalone.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/vnd.microsoft.icon
content-length: 15086
last-modified: Wed, 12 Oct 2022 18:08:14 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: Fke3sOvx4YotMVJ0cpbdEf15kf5bO1vY
accept-ranges: bytes
server: AmazonS3
etag: "d27e1739c7477b10ec6917546ae61f1d"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: frame-ancestors 'none'
strict-transport-security: max-age=31622400; includeSubdomains
x-amz-cf-pop: FRA2-C1
x-amz-cf-id: LrDFJfrr07UV7tACz2c_olDizdPpkQoRQKqmTuocSmcu-HXiWKIdaw==
x-datastream-cache-status: 2
date: Sat, 14 Jan 2023 16:39:21 GMT
set-cookie: akacd_phased_release_site_down=1673714421~rv=59~id=3b630dcaea827e8b9d9a93773c16a55d; path=/; Expires=Sat, 14 Jan 2023 16:40:21 GMT; Secure; SameSite=None
cache-control: no-cache, no-store, max-age=0, must-revalidate
x-frame-options: DENY, deny
X-Firefox-Spdy: h2
bam.nr-data.net/events/1/0a6015c82e?a=793679698&sa=1&v=1169.7b094c0&t=Unnamed%20Transaction&rst=4304&ck=1&ref=https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
162.247.241.14200 OK 24 B URL HTTP/1.1 bam.nr-data.net/events/1/0a6015c82e?a=793679698&sa=1&v=1169.7b094c0&t=Unnamed%20Transaction&rst=4304&ck=1&ref=https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php
IP 162.247.241.14:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash bc32ed98d624acb4008f986349a20d26
2d3df8c11d2168ce2c27e0937421d11d85016361
0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300
POST /events/1/0a6015c82e?a=793679698&sa=1&v=1169.7b094c0&t=Unnamed%20Transaction&rst=4304&ck=1&ref=https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 363
Origin: https://capital-one-account-securec01-ny3c5bverify.com
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:21 GMT
Content-Type: image/gif
Content-Length: 24
Connection: keep-alive
CF-Ray: 7897cea58a691c12-OSL
Access-Control-Allow-Origin: https://capital-one-account-securec01-ny3c5bverify.com
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare
bam.nr-data.net/resources/1/0a6015c82e?a=793679698&sa=1&v=1169.7b094c0&t=Unnamed%20Transaction&rst=4286&ck=1&ref=https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php&st=1673714356900
162.247.241.14200 OK 36 B URL HTTP/1.1 bam.nr-data.net/resources/1/0a6015c82e?a=793679698&sa=1&v=1169.7b094c0&t=Unnamed%20Transaction&rst=4286&ck=1&ref=https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php&st=1673714356900
IP 162.247.241.14:0
File type ASCII text, with no line terminators
Hash 56c27740e2c2340c4c9ddf3bf3bf4f6f
c3923e2c9f554ca9a20711dd21339b4b3d997a46
371a320aa68b96ac733533a2b92633166dab9a0fa87976b7f843222d97b44bc3
POST /resources/1/0a6015c82e?a=793679698&sa=1&v=1169.7b094c0&t=Unnamed%20Transaction&rst=4286&ck=1&ref=https://capital-one-account-securec01-ny3c5bverify.com/web/ses/login/signin.php&st=1673714356900 HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 9048
Origin: https://capital-one-account-securec01-ny3c5bverify.com
Connection: keep-alive
Referer: https://capital-one-account-securec01-ny3c5bverify.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 16:39:21 GMT
Content-Type: text/plain
Content-Length: 36
Connection: keep-alive
CF-Ray: 7897cea55a511c06-OSL
Access-Control-Allow-Origin: https://capital-one-account-securec01-ny3c5bverify.com
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare