browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
198.46.86.11301 Moved Permanently 340 B URL HTTP/1.1 browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
IP 198.46.86.11:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3690e73022ce6757713f90b59ea53b4f
baac6c9760c65a24a24a9834a6b548c8d0164e4c
af5fe6da892587f294be2a0ae49778e3daa0a0a25334164181d47f8151e6d4ad
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 15 Oct 2022 13:48:24 GMT
Server: Apache
Location: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Content-Length: 340
Keep-Alive: timeout=3, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2b424d8c01b211c56d5b44b92e4e4153
b1fdab18f23271eee58ae1482f8af25badc2ffda
1c82a5fd2bc3f16a66becb5e1924e8c9edd39386622dc2e5ed296442f4307b2b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1C82A5FD2BC3F16A66BECB5E1924E8C9EDD39386622DC2E5ED296442F4307B2B"
Last-Modified: Fri, 14 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8382
Expires: Sat, 15 Oct 2022 16:08:06 GMT
Date: Sat, 15 Oct 2022 13:48:24 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bdb8b66c705a7b996496d780f50c00b5
403ae92039fcc933870f51f913f78ccaf9652256
c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 15 Oct 2022 12:50:08 GMT
Expires: Sat, 15 Oct 2022 13:05:41 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: LwdWYl6LANUAOhnv1aLCY0K50aPaqB3AxoQ894pOFNOZ667es6dn7g==
Age: 3496
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a57d0f62d9bd29668b94a513fa45d18e
d7cb263502e21f9235b4523a596e2138d22042ec
df7acd4fe34cc9c4945a5d83ef538105a73dfc1a8b485bc7a62488c5406b1294
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF7ACD4FE34CC9C4945A5D83EF538105A73DFC1A8B485BC7A62488C5406B1294"
Last-Modified: Sat, 15 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2766
Expires: Sat, 15 Oct 2022 14:34:30 GMT
Date: Sat, 15 Oct 2022 13:48:24 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 7tqO/+Mbo9NUz5LJiGdiEZmpR8gkIrLB0NfLtCUQ74HnepGbCo9Wz6ghW66F15Hc4C7jikwk6PY=
x-amz-request-id: MC5AFW5RXP4YZDTM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 15 Oct 2022 13:34:39 GMT
age: 825
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 15 Oct 2022 13:48:24 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
198.46.86.11200 OK 53 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
IP 198.46.86.11:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (842), with CRLF line terminators
Hash 670099a00da38b2690c19bc57a075ce7
4aad4114d0292700b74dcce30b7fa64ddf0288a9
0c3047743084b77b42c35d33fef7101883bc882851016923307128ca2798174d
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:24 GMT
Server: Apache
Keep-Alive: timeout=3, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
browniestheshed.com/F/FNB+CC/Online%20Banking_files/reset_002.css
198.46.86.11200 OK 1.1 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/reset_002.css
IP 198.46.86.11:0
File type ASCII text, with very long lines (410)
Hash 03c8905d71b46df1c9a73a1d17397ecc
9ad861992d36eeb47a45b20f1a165565e2c7b994
c190330a5ba709d97f6d2bc4a40f60dee9e99c4af9e906c7df22898c6945a9d9
GET /F/FNB+CC/Online%20Banking_files/reset_002.css HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 1080
Keep-Alive: timeout=3, max=99
Connection: Keep-Alive
Content-Type: text/css
browniestheshed.com/F/FNB+CC/Online%20Banking_files/instantSales.css
198.46.86.11200 OK 17 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/instantSales.css
IP 198.46.86.11:0
Hash cb71e7f72d74d8ec06ad5b91d730134f
5beaa9359f558b36b22c124a53f62f745d404457
5df5e2df58451fd5fe182895bee45dbd9c65792bbf93203362f7ab70ca81a5f7
GET /F/FNB+CC/Online%20Banking_files/instantSales.css HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 17403
Keep-Alive: timeout=3, max=98
Connection: Keep-Alive
Content-Type: text/css
browniestheshed.com/F/FNB+CC/Online%20Banking_files/final_combined.css
198.46.86.11200 OK 853 B URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/final_combined.css
IP 198.46.86.11:0
Hash d919cd16a3efc35ef234f608f168ddef
cd559cc1889b56e0cbd687fb6addceaada924625
c9553327130e497d2e9685c74851ffeac2c23d33998d47818c552ab2ecddb84c
GET /F/FNB+CC/Online%20Banking_files/final_combined.css HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 853
Keep-Alive: timeout=3, max=97
Connection: Keep-Alive
Content-Type: text/css
browniestheshed.com/F/FNB+CC/Online%20Banking_files/frame_combined.css
198.46.86.11200 OK 17 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/frame_combined.css
IP 198.46.86.11:0
File type ASCII text, with CRLF, LF line terminators
Hash abda62a4179ca2da4a4987d04e0390e0
fe77d8e4a73caf9fbce093eedfb5727f6ad97be8
3e0a0d70d2759bc6cfb3afdbd6d0b1609b19df4f2436e551042d6f694fab7c85
GET /F/FNB+CC/Online%20Banking_files/frame_combined.css HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 16645
Keep-Alive: timeout=3, max=100
Connection: Keep-Alive
Content-Type: text/css
browniestheshed.com/F/FNB+CC/Online%20Banking_files/markup_combined.css
198.46.86.11200 OK 18 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/markup_combined.css
IP 198.46.86.11:0
File type ASCII text, with CRLF, LF line terminators
Hash e8dcd2dc79d4ae6e0ad530fafdc79beb
b2d5034d5948a6e3e925e86c508afae8ee27829f
7f33971692e50e3c500f0b384fabd414143dc64decd28e432034029b38613661
GET /F/FNB+CC/Online%20Banking_files/markup_combined.css HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 17452
Keep-Alive: timeout=3, max=100
Connection: Keep-Alive
Content-Type: text/css
browniestheshed.com/F/FNB+CC/Online%20Banking_files/utils_combined.css
198.46.86.11200 OK 36 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/utils_combined.css
IP 198.46.86.11:0
File type ASCII text, with CRLF, LF line terminators
Hash a46a63fa2e9d056e545c787568d33a42
3524e3df144c865c9ec9f8f02fba430eddfee3f1
4a7cc162cc761d547d932f9013b2f8528c53c28c4b2fedcb1ca9757f828784ad
GET /F/FNB+CC/Online%20Banking_files/utils_combined.css HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 35751
Keep-Alive: timeout=3, max=100
Connection: Keep-Alive
Content-Type: text/css
browniestheshed.com/F/FNB+CC/Online%20Banking_files/skin_002.css
198.46.86.11200 OK 34 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/skin_002.css
IP 198.46.86.11:0
File type Unicode text, UTF-8 text, with very long lines (778), with CRLF line terminators
Hash 1f9fa588f0580a79c21852c23b767b40
69bdb4fec1390910b5be64a002b6a7ea9d5e1626
c165f5540135c159f3d0045aaeb902de64e6da42067fb52dd9d64f8fba1e9d72
GET /F/FNB+CC/Online%20Banking_files/skin_002.css HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Wed, 18 Sep 2019 18:46:54 GMT
Accept-Ranges: bytes
Content-Length: 34352
Keep-Alive: timeout=3, max=96
Connection: Keep-Alive
Content-Type: text/css
browniestheshed.com/F/FNB+CC/Online%20Banking_files/initials_combined.css
198.46.86.11200 OK 47 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/initials_combined.css
IP 198.46.86.11:0
File type ASCII text, with CRLF, LF line terminators
Hash 482803f3c31a372712402fed91acc41f
06cc0b567e3182243412fa1a1222c6ed0692bbab
95606487122329e39b2a97471ddc790adb898bee6cf1747957ac4c3ac0ea4b30
GET /F/FNB+CC/Online%20Banking_files/initials_combined.css HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 46903
Keep-Alive: timeout=3, max=100
Connection: Keep-Alive
Content-Type: text/css
browniestheshed.com/F/FNB+CC/Online%20Banking_files/forms_combined.css
198.46.86.11200 OK 41 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/forms_combined.css
IP 198.46.86.11:0
File type ASCII text, with CRLF line terminators
Hash e2051e1f43be26998fc4645e639fe255
2e181746c393ea0ef974bd4d0fd6f2cca7377d03
df3bf3e3504b58e6c88e6b572affd2c48ba061f5f8dd6e2b85c54e85c1df1abd
GET /F/FNB+CC/Online%20Banking_files/forms_combined.css HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 40919
Keep-Alive: timeout=3, max=100
Connection: Keep-Alive
Content-Type: text/css
browniestheshed.com/F/FNB+CC/Online%20Banking_files/stylesheet.css
198.46.86.11200 OK 3.0 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/stylesheet.css
IP 198.46.86.11:0
Hash a0f9b67caadc1d42dd92a957f368e41a
bc4f53fca1b6798cdb251e4e92664b6a4a4010c5
9f2f49f02ef060ef019df5cdce2b25365d89bd5ad3bebd460c8db54e3af7320a
GET /F/FNB+CC/Online%20Banking_files/stylesheet.css HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 3037
Keep-Alive: timeout=3, max=99
Connection: Keep-Alive
Content-Type: text/css
browniestheshed.com/F/FNB+CC/Online%20Banking_files/dashBoardLayout.css
198.46.86.11200 OK 5.2 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/dashBoardLayout.css
IP 198.46.86.11:0
File type ASCII text, with CRLF line terminators
Hash 41896bd542689f015917e3b579907f76
b2c84c78a84d89dd2be70c89b1ee767dea581410
114b6ddf37beec94d6d69ec54eaba4dcff9e360b016632a90c24d26b3dc9214c
GET /F/FNB+CC/Online%20Banking_files/dashBoardLayout.css HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 5214
Keep-Alive: timeout=3, max=95
Connection: Keep-Alive
Content-Type: text/css
browniestheshed.com/F/FNB+CC/Online%20Banking_files/reset.css
198.46.86.11200 OK 920 B URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/reset.css
IP 198.46.86.11:0
Hash edeb5ed0ba919e881be1ff321ea7a196
2b0ef6246fb0b77e5bd05d98be28c63a3138ed17
a3645b11132dd905d0bf1131bce0da3debce080dcf805f917a947d6c73e96350
GET /F/FNB+CC/Online%20Banking_files/reset.css HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 920
Keep-Alive: timeout=3, max=99
Connection: Keep-Alive
Content-Type: text/css
browniestheshed.com/F/FNB+CC/Online%20Banking_files/calendar.css
198.46.86.11404 Not Found 315 B URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/calendar.css
IP 198.46.86.11:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /F/FNB+CC/Online%20Banking_files/calendar.css HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
browniestheshed.com/F/FNB+CC/Online%20Banking_files/topMenu.css
198.46.86.11200 OK 5.0 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/topMenu.css
IP 198.46.86.11:0
Hash f5ce2c65b9a87e93bcabf89810661ae6
a5291d6f28fbc58a68b8d4d630489664f2dbf7d5
8bebf7da93d1297de1b66bbd2f12efda07a0cdff503d4809696643cc4be0fd75
GET /F/FNB+CC/Online%20Banking_files/topMenu.css HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 5015
Keep-Alive: timeout=3, max=98
Connection: Keep-Alive
Content-Type: text/css
browniestheshed.com/F/FNB+CC/Online%20Banking_files/mobile.css
198.46.86.11404 Not Found 315 B URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/mobile.css
IP 198.46.86.11:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /F/FNB+CC/Online%20Banking_files/mobile.css HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
browniestheshed.com/F/FNB+CC/Online%20Banking_files/core.css
198.46.86.11200 OK 199 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/core.css
IP 198.46.86.11:0
File type ASCII text, with CRLF line terminators
Size 199 kB (199067 bytes)
Hash c24f907196d3864a121d77c6c1238a52
5aa62233e1caf7a343f40cab8d91b35e4802b14b
6770c28dc2b0bc5708a9b06df0aabb759dbd24d88d8c510910dfd9a4e585cbdd
GET /F/FNB+CC/Online%20Banking_files/core.css HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Wed, 18 Sep 2019 19:15:08 GMT
Accept-Ranges: bytes
Content-Length: 199067
Keep-Alive: timeout=3, max=94
Connection: Keep-Alive
Content-Type: text/css
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sat, 15 Oct 2022 13:07:43 GMT
Expires: Sat, 15 Oct 2022 13:59:07 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Fi8iUGsT-xolYoc--k1FD-IaM1Spep0QIBvX-sTlIB5jx_2w4QPSpg==
Age: 2442
browniestheshed.com/F/FNB+CC/Online%20Banking_files/nonGlobal.css
198.46.86.11200 OK 23 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/nonGlobal.css
IP 198.46.86.11:0
Hash e8ae214ecffa06119a1ca55314a4141e
12c36fee5453c66707fcb620384af21b6f7bad27
9c83c5a306aa168493c67f809fa030f3e43868748306b47c73b33346c79b242c
GET /F/FNB+CC/Online%20Banking_files/nonGlobal.css HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 22774
Keep-Alive: timeout=3, max=98
Connection: Keep-Alive
Content-Type: text/css
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 301aafc13bc66315321d9476df002258
e6bfd29899543fcd4d1b332623757bbad355306f
c64315afdfcf146b16942d981588ed912650472c5e2bba7b6f8dee396d820860
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6211
Cache-Control: max-age=158521
Content-Type: application/ocsp-response
Date: Sat, 15 Oct 2022 13:48:25 GMT
Etag: "634a6a1f-1d7"
Expires: Mon, 17 Oct 2022 09:50:26 GMT
Last-Modified: Sat, 15 Oct 2022 08:06:55 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
browniestheshed.com/F/FNB+CC/Online%20Banking_files/icons.css
198.46.86.11200 OK 101 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/icons.css
IP 198.46.86.11:0
Size 101 kB (100606 bytes)
Hash 2229dcd45046c07e7e04ccf036af5852
ae392afb196d28611d983ddc25b3173c97bb190e
122b22222981be24626b1a91dee1a006158a2f9e4911fb90281242148e1f3d73
GET /F/FNB+CC/Online%20Banking_files/icons.css HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 100606
Keep-Alive: timeout=3, max=99
Connection: Keep-Alive
Content-Type: text/css
browniestheshed.com/F/FNB+CC/Online%20Banking_files/print.css
198.46.86.11200 OK 18 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/print.css
IP 198.46.86.11:0
Hash 602653c466e3d67ffd340a5b96d447b7
dffd3b78edb5ebe0eff4414420ebcb82ce3b1cdf
770f85165e765e17bb4fe7b1b18f942e3a4194825326038a2acf25b8ed12f053
GET /F/FNB+CC/Online%20Banking_files/print.css HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 18109
Keep-Alive: timeout=3, max=98
Connection: Keep-Alive
Content-Type: text/css
browniestheshed.com/F/FNB+CC/Online%20Banking_files/skin.css
198.46.86.11200 OK 286 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/skin.css
IP 198.46.86.11:0
File type assembler source, ASCII text
Size 286 kB (286270 bytes)
Hash dd50d277989149bbe752bb66a14a63bb
d9124991167ddd4932c06cc2234fdf628fca9916
57e6e77f82e78a51993a83a5b35fdcc9afd9bf4074a99df5c6e871bf32f10673
GET /F/FNB+CC/Online%20Banking_files/skin.css HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 286270
Keep-Alive: timeout=3, max=99
Connection: Keep-Alive
Content-Type: text/css
browniestheshed.com/F/FNB+CC/Online%20Banking_files/jquery.css
198.46.86.11200 OK 508 B URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/jquery.css
IP 198.46.86.11:0
Hash a8f000ee9d157a83b9f92474639b02ba
ef8d33d96339230c571e956b15eda04d0e9d73d9
19dbb085d719a24a541c85d34d9800f3136b07b65bf6038e7f11f0157ff048ca
GET /F/FNB+CC/Online%20Banking_files/jquery.css HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 508
Keep-Alive: timeout=3, max=93
Connection: Keep-Alive
Content-Type: text/css
browniestheshed.com/F/FNB+CC/Online%20Banking_files/stylesheet_002.css
198.46.86.11200 OK 3.9 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/stylesheet_002.css
IP 198.46.86.11:0
Hash cbd49b852b99fb2ff66ea2d3b59674a3
7dd7b47536928f949d2bf03fe292f77c34178d17
83e8b1885442e959b06d9dba3a43af5866af1965f6a79c604f587ec6dbb32569
GET /F/FNB+CC/Online%20Banking_files/stylesheet_002.css HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 3948
Keep-Alive: timeout=3, max=96
Connection: Keep-Alive
Content-Type: text/css
browniestheshed.com/F/FNB+CC/Online%20Banking_files/applet.css
198.46.86.11200 OK 149 B URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/applet.css
IP 198.46.86.11:0
Hash 6d9a090ffb18774f97e2b9f4aa1f3dc2
fe31a3d4fea394d266ee2421f9c11c4b358ea25d
0b978a7900b1ea0965aa1eaffb657fe7175e14439f74ca127906754992684bea
GET /F/FNB+CC/Online%20Banking_files/applet.css HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 149
Keep-Alive: timeout=3, max=97
Connection: Keep-Alive
Content-Type: text/css
browniestheshed.com/F/FNB+CC/Online%20Banking_files/base.js
198.46.86.11200 OK 20 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/base.js
IP 198.46.86.11:0
File type ASCII text, with very long lines (20157), with no line terminators
Hash 5fddf4911ff39463deeae924b4202da0
b0fd8cd0671de2051291bc5ca5da62ba61e899bb
109f0502e0108bdec3675ace8d7df26b4d46db2c43ac1b3bcd6d2a6a1a22398a
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/base.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 20157
Keep-Alive: timeout=3, max=92
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/initials.js
198.46.86.11200 OK 18 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/initials.js
IP 198.46.86.11:0
File type ASCII text, with very long lines (18205), with no line terminators
Hash 25243f0f2a61bcacd4974f9c62cd0f3e
52cc6ed80a725939f189183692e3186595ba54b8
a28d0157a8f065c8e59233bb81f5bd480fa6bdd0d680d72e29d0de5daaf5d2c0
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/initials.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 18205
Keep-Alive: timeout=3, max=98
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/mappings.js
198.46.86.11200 OK 6.2 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/mappings.js
IP 198.46.86.11:0
File type ASCII text, with very long lines (6248), with no line terminators
Hash d697abb521073f57c38c5fa9bd12c4ce
2ff1349c3e55282c3db27b39dadeb97fd0e1265b
b7c30b4e5e84f41ce70a063d03457b694b0f60a1f5fc439dfdf1718daa6bdade
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/mappings.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 6248
Keep-Alive: timeout=3, max=95
Connection: Keep-Alive
Content-Type: application/javascript
push.services.mozilla.com/
54.149.101.24101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.101.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ezZDZaDJTt+2aO2vdR8gsg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: wwTP40Dhrvn6nxBJH4kjs+6kc94=
browniestheshed.com/F/FNB+CC/Online%20Banking_files/d3.js
198.46.86.11200 OK 151 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/d3.js
IP 198.46.86.11:0
File type ASCII text, with very long lines (32045)
Size 151 kB (151125 bytes)
Hash 5936da7688d010c60aaf8374f90fcc2b
751927cc0f71697c6b6f680192ac84a6d7ff3787
c641285840b6477b0e5da33c8e768a4f8de0ba80b24db92218016b6ad8fdc754
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/d3.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 151125
Keep-Alive: timeout=3, max=98
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/functions.js
198.46.86.11200 OK 2.0 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/functions.js
IP 198.46.86.11:0
File type ASCII text, with very long lines (2045), with no line terminators
Hash 405e360712ea8036168d6cb1cdcf4146
dbeb491e01a8c7f01fbd1ce65ac8c32c9d5e4b4f
e173c53eed3f92db41e0db3673634349d10c56da53d38c48600838af6ff93677
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/functions.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 2045
Keep-Alive: timeout=3, max=91
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/forms.js
198.46.86.11200 OK 106 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/forms.js
IP 198.46.86.11:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 106 kB (105541 bytes)
Hash 20b1a9135af29cfa3a864d44ec146ffd
443b8ce9664db6ae4129e6b46dfae7486fef9e3b
d2fbd63b2170c2d31f1039359ba46244629a5c42e0eb67a011c6191ce0cc32ff
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/forms.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 105541
Keep-Alive: timeout=3, max=97
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/templates.js
198.46.86.11200 OK 14 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/templates.js
IP 198.46.86.11:0
File type ASCII text, with very long lines (14486), with no line terminators
Hash 2398e98137c5dbf766600b451d415500
c8cc0f23986c158d815003c8ea8f16f19e32ee93
c2421083957c6b9536213dda056b57c5b4cf51c8181049cd9ad73e4780ad197d
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/templates.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 14486
Keep-Alive: timeout=3, max=94
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/utils.js
198.46.86.11200 OK 86 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/utils.js
IP 198.46.86.11:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9cd5a3afac4df9a1d588ea46c4ee08ad
ee58512a61d7e5c9b9732bc396b638e440658a13
e3c37ae2c54199b2285e73fa09a7eb4dd68b6daab27b4480823441bd94e9816d
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/utils.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 85679
Keep-Alive: timeout=3, max=96
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/extentions.js
198.46.86.11200 OK 55 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/extentions.js
IP 198.46.86.11:0
File type ASCII text, with very long lines (54936), with no line terminators
Hash 4b5e2e9c074ed3ebe23444139a768450
f139b6d501ea6de19a9f526fbafd973d7ea5480e
1e96505b778a9a81ed84bcafe4fb5696d3f4cc6f5097435fa8ea7ca35ee00067
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/extentions.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 54936
Keep-Alive: timeout=3, max=97
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/jquery-3.js
198.46.86.11200 OK 87 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/jquery-3.js
IP 198.46.86.11:0
File type ASCII text, with very long lines (65451)
Hash a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/jquery-3.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 86927
Keep-Alive: timeout=3, max=90
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/slick.js
198.46.86.11200 OK 43 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/slick.js
IP 198.46.86.11:0
File type ASCII text, with very long lines (42862)
Hash d5a61c749e44e47159af8a6579dda121
3b41b3bc956685015a347a2238e71db29dfa0dbb
0c7178cc6ca34fb18e30f070a5e7a1c287b2d7ccfcba2cfdf06e0f46eda55740
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/slick.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 42863
Keep-Alive: timeout=3, max=96
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/xml.js
198.46.86.11200 OK 5.1 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/xml.js
IP 198.46.86.11:0
File type exported SGML document, ASCII text
Hash b9f8572904570d092f89194a93dae430
b7a8587495e92c6b46745d0d179979adb609a8fe
64c298a5844604e3d4c39dcb0240619a1d803b0de86d146d2583bef9b7e310c7
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/xml.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 5119
Keep-Alive: timeout=3, max=95
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/cookies.js
198.46.86.11200 OK 5.7 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/cookies.js
IP 198.46.86.11:0
Hash 1e437f8a5c4caf54732231e0d5d8a3b1
916c70ac28d291d918fc60abdbc12219ae035485
2f336c42110eb1d8f7d28b94005482be843d323c8a5726fd41aeaa54b9491c44
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/cookies.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 5710
Keep-Alive: timeout=3, max=96
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/timeOut.js
198.46.86.11200 OK 4.3 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/timeOut.js
IP 198.46.86.11:0
Hash 154b1148e0d05ff2b947e27c6b8d508b
524ed209f01954acd14fad6dbe8cec3d41d3448a
98df40be58f0855887d18bf0a86f57a80f3c8a4d09fb32e9a0f5e3147f7120c1
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/timeOut.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 4284
Keep-Alive: timeout=3, max=89
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/main_min.js
198.46.86.11200 OK 72 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/main_min.js
IP 198.46.86.11:0
File type ASCII text, with very long lines (65505)
Hash bb0c5bc365100799b3b16dfdeb7c16db
a030de1e60f5e1acb431091e3a2b4603c1a3fc83
7f51330893aa2efbe482fad390d2ab0d9ec3bfe69865b84f1dd7d1c3d15f3d50
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/main_min.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 72295
Keep-Alive: timeout=3, max=93
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/actionMenu.js
198.46.86.11200 OK 5.4 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/actionMenu.js
IP 198.46.86.11:0
Hash bf81ce244d1dde9a7575d6aaaac0e8f3
119ee24a1eec07bc93bb565441b7ed0668fefc49
412e3ef92233ee13184207adf6973baab57425cfad04566d355cb88833c7f1d9
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/actionMenu.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 5365
Keep-Alive: timeout=3, max=95
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/loadEzi.js
198.46.86.11200 OK 3.0 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/loadEzi.js
IP 198.46.86.11:0
Hash a0ef9c75dc1f69b95357d45b251e09a3
1287edff9a1a2ff88644ab0d48410d25d24ed550
7895659e5eca66ffd4f4c7d2ca431929b7474d122e49d39b3e4cb3f87f2de9dc
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/loadEzi.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 2954
Keep-Alive: timeout=3, max=94
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/highcharts.js
198.46.86.11200 OK 194 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/highcharts.js
IP 198.46.86.11:0
File type ASCII text, with very long lines (543)
Size 194 kB (193629 bytes)
Hash c059bc3c3a0aca82195727c8ba72fd6a
de050e87266542ff3d528767454f0d76b6ea4621
72af7c9d7637c1b999d44d5093565d33ac3dab044603d62e5b70573fe3ed1b8b
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/highcharts.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:25 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 193629
Keep-Alive: timeout=3, max=97
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/loadPopup.js
198.46.86.11200 OK 3.0 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/loadPopup.js
IP 198.46.86.11:0
Hash 04861e295c3d2f9827b15591a12102d4
485df0c4286b03c1af286589d39f666bf952af11
b31d45d828a6f27465e2180b2825b71e1ab9eb4b43d2a79d1b247a823c1b9b77
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/loadPopup.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 3003
Keep-Alive: timeout=3, max=88
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/loadPage.js
198.46.86.11200 OK 3.1 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/loadPage.js
IP 198.46.86.11:0
Hash ebedc82778b0f8ca2d9cb46fcd90957f
7bf28c3859968519f0160bc66bd3bb506f04bdf0
6631b98d25f4cf5e08ed6d9fa73d5ede76691106f8946965d4da4ff040ac0a85
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/loadPage.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 3138
Keep-Alive: timeout=3, max=95
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/submitFromEziToEzi.js
198.46.86.11200 OK 2.6 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/submitFromEziToEzi.js
IP 198.46.86.11:0
Hash 7d699fea5729c649efd93ddc1d37343d
8f0c8e8fed3bf0cd611a4d77054ee8887bb044a7
5d95d651df0ab73f9a3a8efccf5aeb7d1f7545c8b6310d094df0af9a9468edbb
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/submitFromEziToEzi.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 2572
Keep-Alive: timeout=3, max=93
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/submitFromPage.js
198.46.86.11200 OK 2.8 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/submitFromPage.js
IP 198.46.86.11:0
Hash 3b23ce05487107080d1f6b790d95e6b3
63f108b51c8c291ec939692c45f0795638ecda12
29a4812eaa96e4c26ce18a576641c871c1441141f821e96f23f4b69fb225a089
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/submitFromPage.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 2826
Keep-Alive: timeout=3, max=94
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/post.js
198.46.86.11200 OK 1.2 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/post.js
IP 198.46.86.11:0
Hash 7d602d7495223ba4b1a8f24d3843f4d4
8453f8c6af450d3e4b1f9109f3cb70d87c5534b1
3405cb924c19f7b12f9f8467d45f5f767e2a21cf64318b91114690e4e0d97397
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/post.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 1240
Keep-Alive: timeout=3, max=87
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/validateXHR.js
198.46.86.11200 OK 5.2 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/validateXHR.js
IP 198.46.86.11:0
Hash 69790a20c8b64cdb8792778c483d2d75
4af854bdcf3991d00da6d44c7183ed2b392741db
16a5e9ab6d8b03ea124571c4266e195d882d397be44b9787c89dc399f812c104
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/validateXHR.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 5248
Keep-Alive: timeout=3, max=94
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/asyncLoadContent.js
198.46.86.11200 OK 3.0 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/asyncLoadContent.js
IP 198.46.86.11:0
Hash e2b55733d843a170f303e1f817f04bac
57d3e9e0675716bcc7ca32bc9f560c31f2552d4e
00d9caa92afea391060e5479566e095639504b3fa59776b621a09494e5bfb799
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/asyncLoadContent.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 3049
Keep-Alive: timeout=3, max=96
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/eventTemplates.js
198.46.86.11200 OK 18 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/eventTemplates.js
IP 198.46.86.11:0
File type ASCII text, with CRLF line terminators
Hash 85940983e32ff3c437b5391ea2518978
50ca6dec649aa842897d6ceae16503ae04c5110a
f4b2a8674b8e5605de7719dc5459e87b97b544dea79eaedfc4b3d95cb50c8252
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/eventTemplates.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 17603
Keep-Alive: timeout=3, max=92
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/print.js
198.46.86.11200 OK 4.4 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/print.js
IP 198.46.86.11:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash b73ab0211678ce33b27b8c602e0cd19e
7c0e27d973bd43f554337c2c6ef6588c519703a4
6b9d269ee6a5d6128d1f19386169f783b5da3ea4c85ff23d19ce1b645aa8bf08
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/print.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 4402
Keep-Alive: timeout=3, max=91
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/button.js
198.46.86.11200 OK 3.4 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/button.js
IP 198.46.86.11:0
Hash 1c29a042138122afe9e72f8008f7e725
d4fd209158486fb84c6a2a0999d4c8f8d58f804b
4b4a013982b84dd25de4e18807688b4bde65e0707ec032c410f0f0dd3364c688
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/button.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 3434
Keep-Alive: timeout=3, max=93
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/tracking.js
198.46.86.11200 OK 22 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/tracking.js
IP 198.46.86.11:0
Hash 891fc8cff39537ada40078a53ab38f1d
e004bac6298689c8d0bce6e273552b3eda6f519b
4e362aa5741becedde85d20bc616d3a7c88399fd7c793d6b05a25b989c6a7984
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/tracking.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 21661
Keep-Alive: timeout=3, max=86
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/validResponse.js
198.46.86.11200 OK 1.7 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/validResponse.js
IP 198.46.86.11:0
Hash 32a04fe61897c83339aca7da33f3f5bb
f95ed6ceacd588387edbb748792f3a57d47f1257
ad842801d3c88e7ad50e38fdc8f49a0abb58369be79e46e8bdbf619dfad05c2b
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/validResponse.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 1716
Keep-Alive: timeout=3, max=93
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/otp.js
198.46.86.11200 OK 1.8 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/otp.js
IP 198.46.86.11:0
Hash 39da37b7056d94759e7c28fa5e873055
5a87ed3a7feddac5e7bcb6e90fd3ff70ac1f59ad
adec27d83364aad358a3eb538499b8572f4189eccaeea0ed25cd99779931c390
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/otp.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 1798
Keep-Alive: timeout=3, max=95
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/table.js
198.46.86.11200 OK 1.5 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/table.js
IP 198.46.86.11:0
Hash 4f910a307b4fe3ca154c21cb025d81ca
ec2ce1dc3b8633fde18b9e1861b29d2d7d803cd2
2fd83348f6cd7387fe3a5975fc14fc7190d4e5562415c9facbe681bf8cbc2bba
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/table.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 1538
Keep-Alive: timeout=3, max=91
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/actionButton.js
198.46.86.11200 OK 3.9 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/actionButton.js
IP 198.46.86.11:0
Hash 2d9d41493fa6b36a1a5684259e0b2c59
7e1234e465363ad9dc4c21adda326b7dd67b407f
bad1229386330b4922d3979e46b3bbeee51c2c9258dee3dca9c6be1e751ec2ef
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/actionButton.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 3914
Keep-Alive: timeout=3, max=90
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/search.js
198.46.86.11200 OK 3.1 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/search.js
IP 198.46.86.11:0
Hash 3ff29d7a041ef8d2f78b1babf083fc59
ccda369caf23d9bad3b3269b9a707393245edc59
8ab1481c40218dd72f6a5919f3fdc9d86cd69773aa4655f90d09f6787c96adab
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/search.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 3148
Keep-Alive: timeout=3, max=92
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/selectAll.js
198.46.86.11200 OK 2.7 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/selectAll.js
IP 198.46.86.11:0
Hash 7375513361454bdd5b94ad09095a7178
7cef06cee1223c7aab70055e2a67cad158f34ca1
1ac038413b282dbfab00d5c93fc11e6cee1aebe99b423e2a844ba01f4c0ea210
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/selectAll.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 2722
Keep-Alive: timeout=3, max=85
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/paging.js
198.46.86.11200 OK 3.0 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/paging.js
IP 198.46.86.11:0
Hash b97bff77ccc1c8e637d2c3a15e35b86b
0377732874bd8df54607eb4c3c9567c2018def04
5e07c70a8fc24e5f0204a6a2991e674e8efd40a87ffd7c3d9823ccc40e3cb137
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/paging.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 2972
Keep-Alive: timeout=3, max=92
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/branchSearch.js
198.46.86.11200 OK 5.4 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/branchSearch.js
IP 198.46.86.11:0
Hash 7de35bdcfac428b912841a6602938e1a
4fa4d185833d2d98dc47ea3afab6ee8a20d29e93
c5e68425c8e831a7c7bbe293bae5d782e4bf513063dfb9578ebc5ab3e196da27
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/branchSearch.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 5402
Keep-Alive: timeout=3, max=94
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/calendar-1.js
198.46.86.11200 OK 27 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/calendar-1.js
IP 198.46.86.11:0
File type ASCII text, with very long lines (343)
Hash 55dba81ae381e0a9fcbabc150df5261a
844e3ac3ce13fbc95c1c3a9d20c4d5035ac4e870
c71063e865fe7f5ef2ff557bb7a42569b9cb81ffb5d46e6283a6e4b780041368
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/calendar-1.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 26950
Keep-Alive: timeout=3, max=90
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/respond.js
198.46.86.11200 OK 10 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/respond.js
IP 198.46.86.11:0
Hash a4bc750b4049858958c93a400e796ee7
f758b514c29fd45d95fa3469ba3a0e8168730fe4
354012f579592d8bf6e5aa734d08751eabc8c482c23486ccf4a704d122eacbbe
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/respond.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 10407
Keep-Alive: timeout=3, max=91
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/u2f-api.js
198.46.86.11200 OK 9.3 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/u2f-api.js
IP 198.46.86.11:0
Hash 5b58196bb7303103136f6cf577bb3d58
d563eb1cbc6e83c109aa21d3cf070123902536ca
f01cb0fdff369d937b41cbf945b9563453fe88a6397a3778b2f00cc4350abd07
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/u2f-api.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 9308
Keep-Alive: timeout=3, max=89
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/jquery-1.js
198.46.86.11200 OK 93 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/jquery-1.js
IP 198.46.86.11:0
File type ASCII text, with very long lines (65482), with CRLF line terminators
Hash b1c31d74948ee50d73ff6ac530b6726c
dbcd43ab64c99a6ed4f2475aa80c48016fbe368d
950a87e2644ee7ced41c12d7ae4599e9a6f6c2f24b2a0dfca0c523ee0bb25d69
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/jquery-1.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 93433
Keep-Alive: timeout=3, max=89
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/jquery_004.js
198.46.86.11200 OK 11 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/jquery_004.js
IP 198.46.86.11:0
File type ASCII text, with very long lines (10890)
Hash d271c83628c2b0d44a667288887cb590
7ee50399ca9366f2a4dc21b2b5b5b31477342153
e568b89ab7a24e8ca3b48958472485a34dbae97779fa1af4f2fece2105c0fd17
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/jquery_004.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 11156
Keep-Alive: timeout=3, max=90
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/combinedJs.js
198.46.86.11200 OK 382 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/combinedJs.js
IP 198.46.86.11:0
File type ASCII text, with very long lines (402), with CRLF line terminators
Size 382 kB (382037 bytes)
Hash 1637746fe8310840ef873b6ee9ca1747
174b7d6446ce781295b88d0d52e07ccc6345bb2b
5c7180ffbb75b1e111cc1269b51728bcca62196ebba17e0ac0bdf931f2364c4c
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/combinedJs.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 382037
Keep-Alive: timeout=3, max=84
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/jquery_002.js
198.46.86.11200 OK 43 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/jquery_002.js
IP 198.46.86.11:0
File type ASCII text, with very long lines (32775)
Hash 56be28a1645466dc675d2a204fca015c
7e3cc75c9facc4ef22dc14002ee79e0976cc0130
06e0242da172ab85985db3774c54ac1b53391a5b447857a100c5118b8281a543
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/jquery_002.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 43247
Keep-Alive: timeout=3, max=93
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 467c98217b3c90dedabafc249207b8eb
8a0756b2c6003aaaba58cc75be784e8e283feb45
82b3ac154fd4347d2a7827d48ff7f0ccc8c0abe562cb6796a52b02e7cc9b6467
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82B3AC154FD4347D2A7827D48FF7F0CCC8C0ABE562CB6796A52B02E7CC9B6467"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8775
Expires: Sat, 15 Oct 2022 16:14:41 GMT
Date: Sat, 15 Oct 2022 13:48:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 467c98217b3c90dedabafc249207b8eb
8a0756b2c6003aaaba58cc75be784e8e283feb45
82b3ac154fd4347d2a7827d48ff7f0ccc8c0abe562cb6796a52b02e7cc9b6467
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82B3AC154FD4347D2A7827D48FF7F0CCC8C0ABE562CB6796A52B02E7CC9B6467"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8775
Expires: Sat, 15 Oct 2022 16:14:41 GMT
Date: Sat, 15 Oct 2022 13:48:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 467c98217b3c90dedabafc249207b8eb
8a0756b2c6003aaaba58cc75be784e8e283feb45
82b3ac154fd4347d2a7827d48ff7f0ccc8c0abe562cb6796a52b02e7cc9b6467
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82B3AC154FD4347D2A7827D48FF7F0CCC8C0ABE562CB6796A52B02E7CC9B6467"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8775
Expires: Sat, 15 Oct 2022 16:14:41 GMT
Date: Sat, 15 Oct 2022 13:48:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 467c98217b3c90dedabafc249207b8eb
8a0756b2c6003aaaba58cc75be784e8e283feb45
82b3ac154fd4347d2a7827d48ff7f0ccc8c0abe562cb6796a52b02e7cc9b6467
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82B3AC154FD4347D2A7827D48FF7F0CCC8C0ABE562CB6796A52B02E7CC9B6467"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8775
Expires: Sat, 15 Oct 2022 16:14:41 GMT
Date: Sat, 15 Oct 2022 13:48:26 GMT
Connection: keep-alive
browniestheshed.com/F/FNB+CC/Online%20Banking_files/jquery.js
198.46.86.11200 OK 43 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/jquery.js
IP 198.46.86.11:0
File type ASCII text, with CRLF line terminators
Hash 2738b2dd801951d378e6056e8ce6fc64
e9f664f5c55386afa01358cf71fbe052e1f8abd3
d2fb03e236e896a76c42f43453b49e1e74e0328b9b3bae0d46b9fd453355efb1
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/jquery.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 43227
Keep-Alive: timeout=3, max=88
Connection: Keep-Alive
Content-Type: application/javascript
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a3b2ace-090c-4763-8c3d-485b06c6db7f.jpeg
34.120.237.76200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a3b2ace-090c-4763-8c3d-485b06c6db7f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e1c7702a6206faeb2ca8f81c15ad37ff
a63ad4f69b8f59f00cf06e06096488bc10af9d74
392e67ad7cc5ee65f30cab488861ccd06770cd1230814095185f81e895d5000e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a3b2ace-090c-4763-8c3d-485b06c6db7f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4205
x-amzn-requestid: c94a4ce7-f219-4473-93f6-fdb6c506dbe0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z7EhLGItoAMFy4A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6347813a-6cbcef6d3dd353dd21bb6080;Sampled=0
x-amzn-remapped-date: Thu, 13 Oct 2022 03:08:42 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: IdIHqAhVpfHXO7UaCmLWufB0iLYnZZKo_TnahVSGH7ZM07psR66BAw==
via: 1.1 79880188a81becf1687ba18c0e064230.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 15 Oct 2022 04:40:09 GMT
age: 32897
etag: "a63ad4f69b8f59f00cf06e06096488bc10af9d74"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
browniestheshed.com/F/FNB+CC/Online%20Banking_files/bigBox.js
198.46.86.11404 Not Found 315 B URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/bigBox.js
IP 198.46.86.11:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/bigBox.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=89
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9d0ccfd7-6dc6-469b-bee1-7de141fecb1c.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9d0ccfd7-6dc6-469b-bee1-7de141fecb1c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 902f6b585d65d720ff096817ca1f2233
9b73cbeff3361c30600bea9f12a862ae2c4f1e01
8669095b4abaab1bbe1a9f65eb61e7caf713c36f8a24ed0979f482bb3356b79c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9d0ccfd7-6dc6-469b-bee1-7de141fecb1c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6454
x-amzn-requestid: 4774f611-4ee1-40e7-804b-229bfff6c5a7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjS3MGmdoAMFqKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfe94-451518b50ab53f2538d0c13f;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 22:00:52 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 2Ra0AP60Ts4OidLByrMWpcUixuPQZGP8QliETUca6vdyqZfO9oxGDQ==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 14 Oct 2022 21:43:14 GMT
age: 57912
etag: "9b73cbeff3361c30600bea9f12a862ae2c4f1e01"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a5488a3-4a1c-4773-99f6-81e18bcdccd2.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a5488a3-4a1c-4773-99f6-81e18bcdccd2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 319cbf11bba3f159e5c9f606deded924
13f29acb7a694030fc2de0b42c0d95c4be49deb7
09aa7d94e4829f4daf33d5e2aed077afcc59628839c5d6e877172e8455879062
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a5488a3-4a1c-4773-99f6-81e18bcdccd2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15855
x-amzn-requestid: 6cd31f4a-e8b2-4258-9b64-2fad83a606c8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z3ekFH1-IAMFTDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6346114d-5fd284f41be669a972e84ed4;Sampled=0
x-amzn-remapped-date: Wed, 12 Oct 2022 00:58:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4PfJD4ZyH4fg4H6C1kQK_MHuWp4DdzA768vaMNt98y3_hKwkFbIpYg==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 15 Oct 2022 05:09:16 GMT
age: 31150
etag: "13f29acb7a694030fc2de0b42c0d95c4be49deb7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6ea4d5d-0df9-4cfe-a9fc-e70b8e32f8ef.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6ea4d5d-0df9-4cfe-a9fc-e70b8e32f8ef.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 54edb9ab897821172fc13756df376ee7
2010f9656d87e6f5220f131628c537720c3673e1
6694c1be0adf97fa77d1bfa29337d9e609b729a58d42e141e9bb55ed6367b1d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6ea4d5d-0df9-4cfe-a9fc-e70b8e32f8ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13261
x-amzn-requestid: dd760e09-701e-4956-9723-386edc97c694
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z0fH6FzIoAMFzJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6344deff-197cf4f048e146af5654d0bd;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 03:11:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: pP54mPlXuBb9IBf70jnGOLv63ktU422L4wCZ_4hqsSfMrSF3UrkVfw==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sat, 15 Oct 2022 07:36:37 GMT
age: 22309
etag: "2010f9656d87e6f5220f131628c537720c3673e1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2af2b9dc-3279-48a4-b300-2aca0a094dd4.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2af2b9dc-3279-48a4-b300-2aca0a094dd4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3ac5c50f8ffe0da11f1adb9f67d811cf
2b586d1c26208d6fe7df3a4cec286e28f21807ca
12414dcf4afa766503c9328fe626c2d1317a0d6838887e0dd30e9b56e85ea3d2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2af2b9dc-3279-48a4-b300-2aca0a094dd4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8120
x-amzn-requestid: 42dc2299-203a-4269-a252-e239978fe80d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z7EhLHX0IAMF89g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6347813a-1357899758d9403e4b920418;Sampled=0
x-amzn-remapped-date: Thu, 13 Oct 2022 03:08:42 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: WTKaFQ0rZbiSiVD_qjSwbcvMoCoWsf8hfsXsC7cVkT-hm04EXHWASA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Sat, 15 Oct 2022 03:39:37 GMT
age: 36529
etag: "2b586d1c26208d6fe7df3a4cec286e28f21807ca"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F381d4399-366b-4b96-82f3-a169f67436ed.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F381d4399-366b-4b96-82f3-a169f67436ed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash edc4bd5b0644d34cfa4777e12c7ca3bf
73a4d828dba62ec16a563ee419de3b22b34b2441
714d33f5df235af9e4ba86db83b15fe60f70097e6958db01049ff38996f94a3e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F381d4399-366b-4b96-82f3-a169f67436ed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6541
x-amzn-requestid: f6ff9c7e-0481-414b-9d38-51324dba88bf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aA6iGE8coAMFtYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6349d7a6-2a6cd8ed535fd76773cf1217;Sampled=0
x-amzn-remapped-date: Fri, 14 Oct 2022 21:41:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: jubXjj8GtWolu-AnmQ2EMEUvLuWBbUmX-F-kQXWcf6bXEgLxmk1uZQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Fri, 14 Oct 2022 21:49:43 GMT
etag: "73a4d828dba62ec16a563ee419de3b22b34b2441"
content-type: image/jpeg
age: 57523
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
browniestheshed.com/F/FNB+CC/Online%20Banking_files/html2canvas.js
198.46.86.11200 OK 37 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/html2canvas.js
IP 198.46.86.11:0
File type ASCII text, with very long lines (32022)
Hash 5330312b84e884012c526a60437ba7f3
bb20ca86b627499dca1bcc9e24d11996746c27e4
737473b145a0fb2d97963ba71104b42ea59d434e17d43de3db67ddffc24200ac
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/html2canvas.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 36985
Keep-Alive: timeout=3, max=83
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/banking/01css_new/pages/loggedoff/registration/registrationLanding.css?v=1563058548000
198.46.86.11404 Not Found 315 B URL HTTP/1.1 browniestheshed.com/banking/01css_new/pages/loggedoff/registration/registrationLanding.css?v=1563058548000
IP 198.46.86.11:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert fortinet Phishing
GET /banking/01css_new/pages/loggedoff/registration/registrationLanding.css?v=1563058548000 HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=90
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
browniestheshed.com/F/FNB+CC/Online%20Banking_files/CardPinRegistrationInclude.js
198.46.86.11200 OK 5.2 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/CardPinRegistrationInclude.js
IP 198.46.86.11:0
File type ASCII text, with CRLF line terminators
Hash bc3ec28f0807a781c07215473d3d9521
de62d7cda183eb7c21080f9e8fe8f9fd164955f3
881da4ce3328baf624ed3345987b9b409dbf87ee15a06885ebd073ab10e6777f
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/CardPinRegistrationInclude.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 5175
Keep-Alive: timeout=3, max=87
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/init.js
198.46.86.11200 OK 723 B URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/init.js
IP 198.46.86.11:0
Hash 6694cca77b7c31fdd21b576c94891fb3
a63bd5fc56a449a23ea717a96296c9b9c42d06a6
076c7efc87c1b71f280205e1f993ec26d104df08dcd13aee7a77897f2971beca
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/init.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 723
Keep-Alive: timeout=3, max=92
Connection: Keep-Alive
Content-Type: application/javascript
browniestheshed.com/F/FNB+CC/Online%20Banking_files/bigBox.js
198.46.86.11404 Not Found 315 B URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/bigBox.js
IP 198.46.86.11:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/bigBox.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=82
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
browniestheshed.com/F/FNB+CC/tick.JPG
198.46.86.11200 OK 8.3 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/tick.JPG
IP 198.46.86.11:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 41x40, components 3\012- data
Hash f241d34e3829b280325ded72030932e3
c2f12cc084f6635b1caa2ee00d95e3e2a6736ee2
8a279ecd289dec3ca7d8910f9b942ad787d5c72d70bdedc2b097f2c2d3c8cbf3
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/tick.JPG HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:27 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 16:07:52 GMT
Accept-Ranges: bytes
Content-Length: 8303
Keep-Alive: timeout=3, max=86
Connection: Keep-Alive
Content-Type: image/jpeg
browniestheshed.com/F/FNB+CC/Online%20Banking_files/logo.svg
198.46.86.11200 OK 4.9 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/logo.svg
IP 198.46.86.11:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2876), with CRLF line terminators
Hash 5e0203d954b1f49803ce3c449bd57e8a
4c9e6950459dad7794736fde15fc52c5123da6bc
eeb55460396468e6277d0b0f1c541b6bbabe345d1f230e1e8b5108cdbb69e719
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/logo.svg HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:27 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 4873
Keep-Alive: timeout=3, max=88
Connection: Keep-Alive
Content-Type: image/svg+xml
browniestheshed.com/F/FNB+CC/Online%20Banking_files/print-logo.jpg
198.46.86.11200 OK 11 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/print-logo.jpg
IP 198.46.86.11:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, comment: "Created with GIMP", progressive, precision 8, 120x54, components 3\012- data
Hash ecdeb3d2eaec0e026d2ea88521c853e8
042a0f806f88e373d36a4305535fb044a06a6e98
7ce488a49ee0c7d38c742d530ed163266899cb6e83f8a63a03de4dd7078c3e80
GET /F/FNB+CC/Online%20Banking_files/print-logo.jpg HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:27 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 11110
Keep-Alive: timeout=3, max=89
Connection: Keep-Alive
Content-Type: image/jpeg
browniestheshed.com/F/FNB+CC/mark.png
198.46.86.11200 OK 778 B URL HTTP/1.1 browniestheshed.com/F/FNB+CC/mark.png
IP 198.46.86.11:0
File type PNG image data, 40 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash 13219210688913f7d63e1bde1b54586d
dc1b9a8d3b87dcd42b32e3ba8a9dbe89958acb3b
03360e2229e27725405eb79db637399f3d96792ce0595adba70fc40ea02486aa
GET /F/FNB+CC/mark.png HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:27 GMT
Server: Apache
Last-Modified: Wed, 18 Sep 2019 18:33:42 GMT
Accept-Ranges: bytes
Content-Length: 778
Keep-Alive: timeout=3, max=87
Connection: Keep-Alive
Content-Type: image/png
browniestheshed.com/banking/01css_new/pages/loggedoff/registration/registrationLanding.css?v=1563058548000
198.46.86.11404 Not Found 315 B URL HTTP/1.1 browniestheshed.com/banking/01css_new/pages/loggedoff/registration/registrationLanding.css?v=1563058548000
IP 198.46.86.11:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert fortinet Phishing
GET /banking/01css_new/pages/loggedoff/registration/registrationLanding.css?v=1563058548000 HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 15 Oct 2022 13:48:27 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=81
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
browniestheshed.com/F/FNB+CC/Online%20Banking_files/blankpage.html
198.46.86.11200 OK 108 B URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/blankpage.html
IP 198.46.86.11:0
File type HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 67c58a38087e1a243fd14984f663b520
d39158107e8711b6d9fbe13be4a3a3156f571e08
ad3cc24a66bae714bcb1536ba2be070d636f61bbdfedf1e66de4d2a610a4f9e1
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/blankpage.html HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:27 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 108
Keep-Alive: timeout=3, max=80
Connection: Keep-Alive
Content-Type: text/html
browniestheshed.com/F/FNB+CC/Online%20Banking_files/ga_bridge.html
198.46.86.11200 OK 2.2 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/ga_bridge.html
IP 198.46.86.11:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 8c9ea9227afe33341290ddd4c2c11bd2
40a359d55e6530b73f2f994542dfc3a619f76867
3cabbf905903c607bc4ef80002cb36b8142acb6d7d7f3732a73a49c60e532387
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/ga_bridge.html HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:27 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 2172
Keep-Alive: timeout=3, max=87
Connection: Keep-Alive
Content-Type: text/html
browniestheshed.com/banking/Controller?nav=navigator.MainLoaded
198.46.86.11404 Not Found 315 B URL HTTP/1.1 browniestheshed.com/banking/Controller?nav=navigator.MainLoaded
IP 198.46.86.11:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
POST /banking/Controller?nav=navigator.MainLoaded HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://browniestheshed.com
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
HTTP/1.1 404 Not Found
Date: Sat, 15 Oct 2022 13:48:27 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=88
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
browniestheshed.com/banking/FingerPrint.jsp
198.46.86.11404 Not Found 315 B URL HTTP/1.1 browniestheshed.com/banking/FingerPrint.jsp
IP 198.46.86.11:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert fortinet Phishing
POST /banking/FingerPrint.jsp HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://browniestheshed.com
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
HTTP/1.1 404 Not Found
Date: Sat, 15 Oct 2022 13:48:27 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=86
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
browniestheshed.com/F/images/actionMenu/menuBg_v2.png?v=1234567
198.46.86.11404 Not Found 315 B URL HTTP/1.1 browniestheshed.com/F/images/actionMenu/menuBg_v2.png?v=1234567
IP 198.46.86.11:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /F/images/actionMenu/menuBg_v2.png?v=1234567 HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/Online%20Banking_files/frame_combined.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 15 Oct 2022 13:48:27 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=85
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
browniestheshed.com/banking/03images/base/tooltip/btn-tooltip_b.png?v=3
198.46.86.11404 Not Found 315 B URL HTTP/1.1 browniestheshed.com/banking/03images/base/tooltip/btn-tooltip_b.png?v=3
IP 198.46.86.11:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert fortinet Phishing
GET /banking/03images/base/tooltip/btn-tooltip_b.png?v=3 HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/Online%20Banking_files/core.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 15 Oct 2022 13:48:27 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=79
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3039b3640f516724d3ec7e845c2f20d1
efa6a85767ab44afd629d1d82413770412abce0e
d454aa6e955985b5b78d1a190b7abc035a1e6dea0c3c5f06220bad3031717249
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 15 Oct 2022 13:48:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
browniestheshed.com/banking/03images/base/tooltip/pointer.png?v=3
198.46.86.11404 Not Found 315 B URL HTTP/1.1 browniestheshed.com/banking/03images/base/tooltip/pointer.png?v=3
IP 198.46.86.11:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert fortinet Phishing
GET /banking/03images/base/tooltip/pointer.png?v=3 HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/Online%20Banking_files/core.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 15 Oct 2022 13:48:27 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=86
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
browniestheshed.com/F/images/datePicker/closeWhite.png?v=12345678
198.46.86.11404 Not Found 315 B URL HTTP/1.1 browniestheshed.com/F/images/datePicker/closeWhite.png?v=12345678
IP 198.46.86.11:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert fortinet Phishing
GET /F/images/datePicker/closeWhite.png?v=12345678 HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/Online%20Banking_files/initials_combined.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 15 Oct 2022 13:48:27 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=87
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
browniestheshed.com/F/FNB+CC/confirm.png
198.46.86.11200 OK 62 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/confirm.png
IP 198.46.86.11:0
File type PNG image data, 104 x 57, 8-bit/color RGBA, non-interlaced\012- data
Hash 8a54e9e051a63353b2ddc84dcae29a25
b81569007f4aaa615f94941aecd3ffe0307faa4f
50402915f33f8a4d7e02b43f804185ab5c77619aa637b0284fab4beba55c9b56
GET /F/FNB+CC/confirm.png HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:27 GMT
Server: Apache
Last-Modified: Sat, 14 Sep 2019 14:55:40 GMT
Accept-Ranges: bytes
Content-Length: 61662
Keep-Alive: timeout=3, max=91
Connection: Keep-Alive
Content-Type: image/png
browniestheshed.com/F/FNB+CC/Online%20Banking_files/ga_bridge_data/analytics.js
198.46.86.11200 OK 44 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/ga_bridge_data/analytics.js
IP 198.46.86.11:0
File type ASCII text, with very long lines (1490)
Hash b66b3b5d54e154c81a50880cdcd7e5f8
dd62dfaa936d8c1143dfcad8808bc559d1a0b199
dbb67c620eaabf6679a314db18d3ae43037aef71ab27422e6feec08ee987cc0a
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/ga_bridge_data/analytics.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/Online%20Banking_files/ga_bridge.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:27 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 44470
Keep-Alive: timeout=3, max=85
Connection: Keep-Alive
Content-Type: application/javascript
www.googletagmanager.com/gtm.js?id=GTM-KH76K8
142.250.74.168200 OK 74 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-KH76K8
IP 142.250.74.168:0
File type ASCII text, with very long lines (33959)
Hash 84e70bb8b27b4033a3c3eb7d9a3b9c37
66b20ad174ed6a69f8a6efa34ace01f39cac73b0
acbf1c3f5e89438f8ab9a5629db6394c5c868bc167ebe5820dab4c96818f0049
GET /gtm.js?id=GTM-KH76K8 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 15 Oct 2022 13:48:27 GMT
expires: Sat, 15 Oct 2022 13:48:27 GMT
cache-control: private, max-age=900
last-modified: Sat, 15 Oct 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73685
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3039b3640f516724d3ec7e845c2f20d1
efa6a85767ab44afd629d1d82413770412abce0e
d454aa6e955985b5b78d1a190b7abc035a1e6dea0c3c5f06220bad3031717249
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 15 Oct 2022 13:48:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
browniestheshed.com/F/FNB+CC/favicon.ico
198.46.86.11200 OK 14 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/favicon.ico
IP 198.46.86.11:0
File type PNG image data, 90 x 87, 8-bit/color RGB, non-interlaced\012- data
Hash 0627e3498efefd270bf876a24b194a79
3a4e7945f599d2f55bced7d0b25329bcb50fd075
6d7084693d3a1b25fb4b9f69662b906e6d1ff6c5f839f3ed52205782a468c55b
GET /F/FNB+CC/favicon.ico HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:27 GMT
Server: Apache
Last-Modified: Sun, 01 Sep 2019 17:15:00 GMT
Accept-Ranges: bytes
Content-Length: 13688
Keep-Alive: timeout=3, max=78
Connection: Keep-Alive
Content-Type: image/x-icon
browniestheshed.com/F/FNB+CC/Online%20Banking_files/ga_bridge_data/gtm.js
198.46.86.11200 OK 106 kB URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/ga_bridge_data/gtm.js
IP 198.46.86.11:0
File type ASCII text, with very long lines (2503)
Size 106 kB (106253 bytes)
Hash 98fe5e345b0129f417adefc239ceb482
ee58293482bc3d661a399f2223bd0a2b24e06bcd
9c83bcfc4ccbea0e68eb3f1ac90a11d9ff8f9889b46b06d5203c9e21ae434fea
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/ga_bridge_data/gtm.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/Online%20Banking_files/ga_bridge.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:27 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 106253
Keep-Alive: timeout=3, max=84
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3693b869a30652f2e5cededbf71e80e8
01ff56e45ff18ee14a80bd5b4e1c8152349d32e4
3973913ec49401d91d2a5e30cf8470b70def89e4333d24b1c073694feea14953
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5866
Cache-Control: max-age=102015
Content-Type: application/ocsp-response
Date: Sat, 15 Oct 2022 13:48:27 GMT
Etag: "63498ec0-1d7"
Expires: Sun, 16 Oct 2022 18:08:42 GMT
Last-Modified: Fri, 14 Oct 2022 16:30:56 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 48c8ca7abddebd077f8d5655ab885b11
1daa9bb3c1434275bbd57b9237000b72e59e1fcc
95e3c6bd5eb86b7805c5899ebd2157f214a5aec3c180830c1db3e0256097ee6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 15 Oct 2022 13:48:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 24e72797c2387d3949fd48bff0869138
9987f23f7289affffb99587c703c95d4448f0d3c
ff6231326f473d1d8e7999bde0bb9c34aedd5e47aefdceb94629c75c771984f1
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy-report-only: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script';
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: SU/6XNATqyNxxdrYHZkBnQ3eXIBll8nt68QoOLu4lUIFnVXxoXw51xFaW7aLFpws+XFNb7I9+7tR2hH388yj+w==
priority: u=3,i
content-length: 27029
x-fb-trip-id: 2074150462
date: Sat, 15 Oct 2022 13:48:27 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.google.com/pagead/conversion_async.js
142.250.74.164200 OK 15 kB URL HTTP/2 www.google.com/pagead/conversion_async.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (1654)
Hash 8766c5a801f08afceca9b66ff9097e6a
ce7640d1d166eddeb9d40be642ec34652f790713
f448f99b4ad9a9b50daa9c38054cf16ab2b9fcb5d83ddad60571fb6a8a432a99
GET /pagead/conversion_async.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sat, 15 Oct 2022 13:48:27 GMT
expires: Sat, 15 Oct 2022 13:48:27 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 17557423932572341828
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 15187
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3693b869a30652f2e5cededbf71e80e8
01ff56e45ff18ee14a80bd5b4e1c8152349d32e4
3973913ec49401d91d2a5e30cf8470b70def89e4333d24b1c073694feea14953
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5866
Cache-Control: max-age=102015
Content-Type: application/ocsp-response
Date: Sat, 15 Oct 2022 13:48:27 GMT
Etag: "63498ec0-1d7"
Expires: Sun, 16 Oct 2022 18:08:42 GMT
Last-Modified: Fri, 14 Oct 2022 16:30:56 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bac53a9e47b402471127f290b676b367
d5aa4a8d0571a6c8519d8ab9d369c040ede52ca1
8985fb669fe4022d05158aa7a8fd8033d9b4ae4f9011f3f947e2365d4ebe19f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 15 Oct 2022 13:48:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-conversion/923716104/?random=1665841709115&cv=9&fst=1665841709115&num=1&value=0&label=OexWCMTv8b0DEIiUu7gD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaa0&sendb=1&ig=0&frm=1&url=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FxvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php&ref=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FxvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php&auid=2055582878.1665841709&hn=www.google.com&bttype=purchase&gcp=1&sscte=1&ct_cookie_present=1&async=1&rfmt=3&fmt=4
142.250.74.164302 Found 63 B URL HTTP/2 www.google.com/pagead/1p-conversion/923716104/?random=1665841709115&cv=9&fst=1665841709115&num=1&value=0&label=OexWCMTv8b0DEIiUu7gD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaa0&sendb=1&ig=0&frm=1&url=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FxvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php&ref=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FxvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php&auid=2055582878.1665841709&hn=www.google.com&bttype=purchase&gcp=1&sscte=1&ct_cookie_present=1&async=1&rfmt=3&fmt=4
IP 142.250.74.164:0
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/923716104/?random=1665841709115&cv=9&fst=1665841709115&num=1&value=0&label=OexWCMTv8b0DEIiUu7gD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaa0&sendb=1&ig=0&frm=1&url=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FxvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php&ref=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FxvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php&auid=2055582878.1665841709&hn=www.google.com&bttype=purchase&gcp=1&sscte=1&ct_cookie_present=1&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 15 Oct 2022 13:48:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/923716104/?random=1665841709115&cv=9&fst=1665841709115&num=1&value=0&label=OexWCMTv8b0DEIiUu7gD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaa0&sendb=1&ig=0&frm=1&url=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FxvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php&ref=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FxvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php&auid=2055582878.1665841709&hn=www.google.com&bttype=purchase&gcp=1&sscte=1&ct_cookie_present=1&async=1&rfmt=3&fmt=4&ipr=y&prhg=0
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dc745cc6cabb7bcda110c74aa6bbdc4b
ee85567f8a368e63dc4ffad272f514df5b600b76
fd3befeac747605b265309554c748c5de2a5e4ca07f69889090e87639937846d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 15 Oct 2022 13:48:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5c64ced45088660f4e780756e5ca0968
7d1d4b389b65a679b01acd0e3a070da7f6760bf1
d266d13f4491fc184a1f031ed87a5af76d46c58bd8751cb92cbedba574139462
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 15 Oct 2022 13:48:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-R5MC7P7YMJ&cid=845973212.1665841709>m=2oeaa0&aip=1&z=551679607
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-R5MC7P7YMJ&cid=845973212.1665841709>m=2oeaa0&aip=1&z=551679607
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-R5MC7P7YMJ&cid=845973212.1665841709>m=2oeaa0&aip=1&z=551679607 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 15 Oct 2022 13:48:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-conversion/923716104/?random=1665841709115&cv=9&fst=1665841709115&num=1&value=0&label=OexWCMTv8b0DEIiUu7gD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaa0&sendb=1&ig=0&frm=1&url=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FxvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php&ref=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FxvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php&auid=2055582878.1665841709&hn=www.google.com&bttype=purchase&gcp=1&sscte=1&ct_cookie_present=1&async=1&rfmt=3&fmt=4&ipr=y&prhg=0
142.250.74.3200 OK 63 B URL HTTP/2 www.google.no/pagead/1p-conversion/923716104/?random=1665841709115&cv=9&fst=1665841709115&num=1&value=0&label=OexWCMTv8b0DEIiUu7gD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaa0&sendb=1&ig=0&frm=1&url=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FxvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php&ref=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FxvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php&auid=2055582878.1665841709&hn=www.google.com&bttype=purchase&gcp=1&sscte=1&ct_cookie_present=1&async=1&rfmt=3&fmt=4&ipr=y&prhg=0
IP 142.250.74.3:0
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/923716104/?random=1665841709115&cv=9&fst=1665841709115&num=1&value=0&label=OexWCMTv8b0DEIiUu7gD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaa0&sendb=1&ig=0&frm=1&url=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FxvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php&ref=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FxvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php&auid=2055582878.1665841709&hn=www.google.com&bttype=purchase&gcp=1&sscte=1&ct_cookie_present=1&async=1&rfmt=3&fmt=4&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://browniestheshed.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 15 Oct 2022 13:48:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/923716104/?random=1665841709115&cv=9&fst=1665841709115&num=1&fmt=3&value=0&label=OexWCMTv8b0DEIiUu7gD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaa0&sendb=1&ig=0&frm=1&url=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FxvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php&ref=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FxvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php&auid=2055582878.1665841709&hn=www.google.com&bttype=purchase&gcp=1&ct_cookie_present=1&async=1
172.217.21.162200 OK 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/923716104/?random=1665841709115&cv=9&fst=1665841709115&num=1&fmt=3&value=0&label=OexWCMTv8b0DEIiUu7gD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaa0&sendb=1&ig=0&frm=1&url=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FxvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php&ref=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FxvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php&auid=2055582878.1665841709&hn=www.google.com&bttype=purchase&gcp=1&ct_cookie_present=1&async=1
IP 172.217.21.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/923716104/?random=1665841709115&cv=9&fst=1665841709115&num=1&fmt=3&value=0&label=OexWCMTv8b0DEIiUu7gD&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wgaa0&sendb=1&ig=0&frm=1&url=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FxvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php&ref=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FxvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php&auid=2055582878.1665841709&hn=www.google.com&bttype=purchase&gcp=1&ct_cookie_present=1&async=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 15 Oct 2022 13:48:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 15-Oct-2022 14:03:27 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dc745cc6cabb7bcda110c74aa6bbdc4b
ee85567f8a368e63dc4ffad272f514df5b600b76
fd3befeac747605b265309554c748c5de2a5e4ca07f69889090e87639937846d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 15 Oct 2022 13:48:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5c64ced45088660f4e780756e5ca0968
7d1d4b389b65a679b01acd0e3a070da7f6760bf1
d266d13f4491fc184a1f031ed87a5af76d46c58bd8751cb92cbedba574139462
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 15 Oct 2022 13:48:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sat, 15 Oct 2022 12:41:09 GMT
expires: Sat, 15 Oct 2022 14:41:09 GMT
cache-control: public, max-age=7200
age: 4038
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/collect?v=1&_v=j79&a=1093447323&t=event&ni=0&_s=1&dl=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FOnline%2520Banking_files%2Fga_bridge.html&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=&je=0&ec=Scroll%20Depth&ea=%2FF%2FFNB%2BCC%2FOnline%2520Banking_files%2Fga_bridge.html&el=75&ev=0&_u=aAjAAEABE~&jid=&gjid=&cid=845973212.1665841709&tid=UA-5815571-8&_gid=1371230342.1665841709>m=2wgaa0KH76K8&cd21=dl_blank&cd22=dl_blank&cd25=non_partner&cd27=GA1.2.845973212.1665841709&cd48=dl_blank&cd50=845973212.1665841709&cd51=c_undefined&cd55=2.2&cd56=GTM-KH76K8&cd57=115&cd1=845973212.1665841709&z=1105269247
142.250.74.174200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?v=1&_v=j79&a=1093447323&t=event&ni=0&_s=1&dl=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FOnline%2520Banking_files%2Fga_bridge.html&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=&je=0&ec=Scroll%20Depth&ea=%2FF%2FFNB%2BCC%2FOnline%2520Banking_files%2Fga_bridge.html&el=75&ev=0&_u=aAjAAEABE~&jid=&gjid=&cid=845973212.1665841709&tid=UA-5815571-8&_gid=1371230342.1665841709>m=2wgaa0KH76K8&cd21=dl_blank&cd22=dl_blank&cd25=non_partner&cd27=GA1.2.845973212.1665841709&cd48=dl_blank&cd50=845973212.1665841709&cd51=c_undefined&cd55=2.2&cd56=GTM-KH76K8&cd57=115&cd1=845973212.1665841709&z=1105269247
IP 142.250.74.174:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /collect?v=1&_v=j79&a=1093447323&t=event&ni=0&_s=1&dl=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FOnline%2520Banking_files%2Fga_bridge.html&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=&je=0&ec=Scroll%20Depth&ea=%2FF%2FFNB%2BCC%2FOnline%2520Banking_files%2Fga_bridge.html&el=75&ev=0&_u=aAjAAEABE~&jid=&gjid=&cid=845973212.1665841709&tid=UA-5815571-8&_gid=1371230342.1665841709>m=2wgaa0KH76K8&cd21=dl_blank&cd22=dl_blank&cd25=non_partner&cd27=GA1.2.845973212.1665841709&cd48=dl_blank&cd50=845973212.1665841709&cd51=c_undefined&cd55=2.2&cd56=GTM-KH76K8&cd57=115&cd1=845973212.1665841709&z=1105269247 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
pragma: no-cache
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
date: Fri, 14 Oct 2022 16:47:30 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
age: 75657
last-modified: Sun, 17 May 1998 03:00:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/collect?v=1&_v=j79&a=1093447323&t=event&ni=0&_s=1&dl=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FOnline%2520Banking_files%2Fga_bridge.html&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=&je=0&ec=Scroll%20Depth&ea=%2FF%2FFNB%2BCC%2FOnline%2520Banking_files%2Fga_bridge.html&el=100&ev=0&_u=aAjAAEABE~&jid=&gjid=&cid=845973212.1665841709&tid=UA-5815571-8&_gid=1371230342.1665841709>m=2wgaa0KH76K8&cd21=dl_blank&cd22=dl_blank&cd25=non_partner&cd27=GA1.2.845973212.1665841709&cd48=dl_blank&cd50=845973212.1665841709&cd51=c_undefined&cd55=2.2&cd56=GTM-KH76K8&cd57=115&cd1=845973212.1665841709&z=699304327
142.250.74.174200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?v=1&_v=j79&a=1093447323&t=event&ni=0&_s=1&dl=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FOnline%2520Banking_files%2Fga_bridge.html&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=&je=0&ec=Scroll%20Depth&ea=%2FF%2FFNB%2BCC%2FOnline%2520Banking_files%2Fga_bridge.html&el=100&ev=0&_u=aAjAAEABE~&jid=&gjid=&cid=845973212.1665841709&tid=UA-5815571-8&_gid=1371230342.1665841709>m=2wgaa0KH76K8&cd21=dl_blank&cd22=dl_blank&cd25=non_partner&cd27=GA1.2.845973212.1665841709&cd48=dl_blank&cd50=845973212.1665841709&cd51=c_undefined&cd55=2.2&cd56=GTM-KH76K8&cd57=115&cd1=845973212.1665841709&z=699304327
IP 142.250.74.174:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /collect?v=1&_v=j79&a=1093447323&t=event&ni=0&_s=1&dl=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FOnline%2520Banking_files%2Fga_bridge.html&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=&je=0&ec=Scroll%20Depth&ea=%2FF%2FFNB%2BCC%2FOnline%2520Banking_files%2Fga_bridge.html&el=100&ev=0&_u=aAjAAEABE~&jid=&gjid=&cid=845973212.1665841709&tid=UA-5815571-8&_gid=1371230342.1665841709>m=2wgaa0KH76K8&cd21=dl_blank&cd22=dl_blank&cd25=non_partner&cd27=GA1.2.845973212.1665841709&cd48=dl_blank&cd50=845973212.1665841709&cd51=c_undefined&cd55=2.2&cd56=GTM-KH76K8&cd57=115&cd1=845973212.1665841709&z=699304327 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
pragma: no-cache
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
date: Fri, 14 Oct 2022 16:47:30 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
age: 75657
last-modified: Sun, 17 May 1998 03:00:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/collect?v=1&_v=j79&a=1093447323&t=event&ni=0&_s=1&dl=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FOnline%2520Banking_files%2Fga_bridge.html&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=&je=0&ec=Scroll%20Depth&ea=%2FF%2FFNB%2BCC%2FOnline%2520Banking_files%2Fga_bridge.html&el=50&ev=0&_u=aAjAAEABE~&jid=&gjid=&cid=845973212.1665841709&tid=UA-5815571-8&_gid=1371230342.1665841709>m=2wgaa0KH76K8&cd21=dl_blank&cd22=dl_blank&cd25=non_partner&cd27=GA1.2.845973212.1665841709&cd48=dl_blank&cd50=845973212.1665841709&cd51=c_undefined&cd55=2.2&cd56=GTM-KH76K8&cd57=115&cd1=845973212.1665841709&z=1342016916
142.250.74.174200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?v=1&_v=j79&a=1093447323&t=event&ni=0&_s=1&dl=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FOnline%2520Banking_files%2Fga_bridge.html&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=&je=0&ec=Scroll%20Depth&ea=%2FF%2FFNB%2BCC%2FOnline%2520Banking_files%2Fga_bridge.html&el=50&ev=0&_u=aAjAAEABE~&jid=&gjid=&cid=845973212.1665841709&tid=UA-5815571-8&_gid=1371230342.1665841709>m=2wgaa0KH76K8&cd21=dl_blank&cd22=dl_blank&cd25=non_partner&cd27=GA1.2.845973212.1665841709&cd48=dl_blank&cd50=845973212.1665841709&cd51=c_undefined&cd55=2.2&cd56=GTM-KH76K8&cd57=115&cd1=845973212.1665841709&z=1342016916
IP 142.250.74.174:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /collect?v=1&_v=j79&a=1093447323&t=event&ni=0&_s=1&dl=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FOnline%2520Banking_files%2Fga_bridge.html&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=&je=0&ec=Scroll%20Depth&ea=%2FF%2FFNB%2BCC%2FOnline%2520Banking_files%2Fga_bridge.html&el=50&ev=0&_u=aAjAAEABE~&jid=&gjid=&cid=845973212.1665841709&tid=UA-5815571-8&_gid=1371230342.1665841709>m=2wgaa0KH76K8&cd21=dl_blank&cd22=dl_blank&cd25=non_partner&cd27=GA1.2.845973212.1665841709&cd48=dl_blank&cd50=845973212.1665841709&cd51=c_undefined&cd55=2.2&cd56=GTM-KH76K8&cd57=115&cd1=845973212.1665841709&z=1342016916 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
pragma: no-cache
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
date: Fri, 14 Oct 2022 16:47:30 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
age: 75657
last-modified: Sun, 17 May 1998 03:00:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/r/collect?v=1&_v=j79&a=1093447323&t=event&ni=0&_s=1&dl=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FOnline%2520Banking_files%2Fga_bridge.html&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=&je=0&ec=Scroll%20Depth&ea=%2FF%2FFNB%2BCC%2FOnline%2520Banking_files%2Fga_bridge.html&el=25&ev=0&_u=aAhAAEABE~&jid=1992924500&gjid=1256553514&cid=845973212.1665841709&tid=UA-5815571-8&_gid=1371230342.1665841709&_r=1>m=2wgaa0KH76K8&cd21=dl_blank&cd22=dl_blank&cd25=non_partner&cd48=dl_blank&cd50=845973212.1665841709&cd51=c_undefined&cd55=2.2&cd56=GTM-KH76K8&cd57=115&cd1=845973212.1665841709&z=1285577650
142.250.74.174302 Found 418 B URL HTTP/2 www.google-analytics.com/r/collect?v=1&_v=j79&a=1093447323&t=event&ni=0&_s=1&dl=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FOnline%2520Banking_files%2Fga_bridge.html&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=&je=0&ec=Scroll%20Depth&ea=%2FF%2FFNB%2BCC%2FOnline%2520Banking_files%2Fga_bridge.html&el=25&ev=0&_u=aAhAAEABE~&jid=1992924500&gjid=1256553514&cid=845973212.1665841709&tid=UA-5815571-8&_gid=1371230342.1665841709&_r=1>m=2wgaa0KH76K8&cd21=dl_blank&cd22=dl_blank&cd25=non_partner&cd48=dl_blank&cd50=845973212.1665841709&cd51=c_undefined&cd55=2.2&cd56=GTM-KH76K8&cd57=115&cd1=845973212.1665841709&z=1285577650
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 13ced0b2d01d7e828dc3759be5551ef1
ca5ee26e22ec1683a8d491d0425d091806a96011
d916db0062d3288e44816f2aa0d96e820fc37bc4e2ab7ab1b34c636a29fcebed
GET /r/collect?v=1&_v=j79&a=1093447323&t=event&ni=0&_s=1&dl=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FOnline%2520Banking_files%2Fga_bridge.html&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=&je=0&ec=Scroll%20Depth&ea=%2FF%2FFNB%2BCC%2FOnline%2520Banking_files%2Fga_bridge.html&el=25&ev=0&_u=aAhAAEABE~&jid=1992924500&gjid=1256553514&cid=845973212.1665841709&tid=UA-5815571-8&_gid=1371230342.1665841709&_r=1>m=2wgaa0KH76K8&cd21=dl_blank&cd22=dl_blank&cd25=non_partner&cd48=dl_blank&cd50=845973212.1665841709&cd51=c_undefined&cd55=2.2&cd56=GTM-KH76K8&cd57=115&cd1=845973212.1665841709&z=1285577650 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-5815571-8&cid=845973212.1665841709&jid=1992924500&_gid=1371230342.1665841709&gjid=1256553514&_v=j79&z=1285577650
access-control-allow-origin: *
date: Sat, 15 Oct 2022 13:48:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: Golfe2
content-length: 418
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-5815571-8&cid=845973212.1665841709&jid=1992924500&_gid=1371230342.1665841709&gjid=1256553514&_v=j79&z=1285577650
173.194.73.157302 Found 365 B URL HTTP/2 stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-5815571-8&cid=845973212.1665841709&jid=1992924500&_gid=1371230342.1665841709&gjid=1256553514&_v=j79&z=1285577650
IP 173.194.73.157:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 75817bb7f47a4c78aacbfd84db681b02
fd5e4b156e9fb7e0a78169f48b56a8f6c14ec0e0
6b81c220f1c8b4c804a0b46991514d20cdb0ac6300ec9f1c326944a5d43899f3
GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-5815571-8&cid=845973212.1665841709&jid=1992924500&_gid=1371230342.1665841709&gjid=1256553514&_v=j79&z=1285577650 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://browniestheshed.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-5815571-8&cid=845973212.1665841709&jid=1992924500&_v=j79&z=1285577650
access-control-allow-origin: *
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 15 Oct 2022 13:48:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: Golfe2
content-length: 365
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-R5MC7P7YMJ>m=2oeaa0&_p=1093447323&_gaz=1&cid=845973212.1665841709&ul=en-us&sr=1280x1024&_s=1&sid=1665841709&sct=1&seg=0&dl=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FOnline%2520Banking_files%2Fga_bridge.html&dr=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FxvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php&dt=&en=page_view&_fv=1&_nsi=1&_ss=2&ep.GA4_CID=undefined.undefined
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-R5MC7P7YMJ>m=2oeaa0&_p=1093447323&_gaz=1&cid=845973212.1665841709&ul=en-us&sr=1280x1024&_s=1&sid=1665841709&sct=1&seg=0&dl=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FOnline%2520Banking_files%2Fga_bridge.html&dr=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FxvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php&dt=&en=page_view&_fv=1&_nsi=1&_ss=2&ep.GA4_CID=undefined.undefined
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-R5MC7P7YMJ>m=2oeaa0&_p=1093447323&_gaz=1&cid=845973212.1665841709&ul=en-us&sr=1280x1024&_s=1&sid=1665841709&sct=1&seg=0&dl=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FOnline%2520Banking_files%2Fga_bridge.html&dr=https%3A%2F%2Fbrowniestheshed.com%2FF%2FFNB%2BCC%2FxvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php&dt=&en=page_view&_fv=1&_nsi=1&_ss=2&ep.GA4_CID=undefined.undefined HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://browniestheshed.com
Connection: keep-alive
Referer: https://browniestheshed.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://browniestheshed.com
date: Sat, 15 Oct 2022 13:48:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 7b73dff95d802a9ef5ce631a308cde28
eafddcdd4701697f9a193737011a1bc54c41685e
d270481a54df7839440376815ddab6948e21385f6262447589f537c4fac400ff
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "D270481A54DF7839440376815DDAB6948E21385F6262447589F537C4FAC400FF"
Last-Modified: Sat, 15 Oct 2022 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3600
Expires: Sat, 15 Oct 2022 14:48:28 GMT
Date: Sat, 15 Oct 2022 13:48:28 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 7e223a4b6d43eab7b633b04ebeed8d72
f7226af67ab7357419929eadece20f80bfb36ec0
67100f5c38a25b8615869fcea642fb68fc10f70ca3669433c58d62dd71235870
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "67100F5C38A25B8615869FCEA642FB68FC10F70CA3669433C58D62DD71235870"
Last-Modified: Sat, 15 Oct 2022 10:00:00 UTC
Content-Length: 1585
Cache-Control: public, no-transform, must-revalidate, max-age=2745
Expires: Sat, 15 Oct 2022 14:34:13 GMT
Date: Sat, 15 Oct 2022 13:48:28 GMT
Connection: keep-alive
www.online.fnb.co.za/banking/03images/base/mobi/fnbicon.jpg
196.11.125.189200 OK 6.6 kB URL HTTP/1.1 www.online.fnb.co.za/banking/03images/base/mobi/fnbicon.jpg
IP 196.11.125.189:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 72x72, components 3\012- data
Hash aa29ed946a78c1a26872d6822e8ef7b8
49678985f9e4324b2205326f1124578c8ba2bee4
244b755769739d9761c95d450f392b1cdff38119ceb08a6a4736b71a3823d3ce
GET /banking/03images/base/mobi/fnbicon.jpg HTTP/1.1
Host: www.online.fnb.co.za
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: IIS
Content-Type: image/jpeg
Content-Security-Policy: frame-src 'self' *.ebucks.com authentication.cardinalcommerce.com *.google.com *.vimeo.com *.fnbbotswana.co.bw 9689447.fls.doubleclick.net *.vodacomcreditcard.co.za *.fnbconnect.co.za *.rmb.co.za:10443 *.fnbswaziland.co.sz:10443 *.fnbtanzania.co.tz:10443 *.fnbzambia.co.zm:10443 *.firstnationalbank.com.gh:10443 *.fnb.co.ls:10443 *.fnbci.co.uk:10443 *.fnbnamibia.com.na:10443 *.rmbprivatebank.com:10443 *.fnb.co.za:10443 *.rmb.co.za *.fnbswaziland.co.sz *.fnbtanzania.co.tz *.google.com *.gstatic.com *.fnbzambia.co.zm msgfnb.bankserv.co.za *.firstnationalbank.com.gh *.fnb.co.ls *.fnbci.co.uk *.fnbnamibia.com.na *.id.opendns.com *.rmbprivatebank.com *.fnb.co.za;
Strict-Transport-Security: max-age=31536000
Date: Sat, 15 Oct 2022 13:48:28 GMT
Keep-Alive: timeout=15, max=100
Accept-Ranges: bytes
ETag: "19f8-52bae865b7d80"
Connection: keep-alive
Set-Cookie: ie8ExitStatus=3; secure;path=/
Last-Modified: Sat, 13 Feb 2016 22:44:22 GMT
X-UA-Compatible: IE=EDGE
X-Powered-By: Sun One
Content-Length: 6648
browniestheshed.com/F/FNB+CC/Online%20Banking_files/TweenMax.js
198.46.86.11200 OK 0 B URL HTTP/1.1 browniestheshed.com/F/FNB+CC/Online%20Banking_files/TweenMax.js
IP 198.46.86.11:0
Analyzer Verdict Alert fortinet Phishing
GET /F/FNB+CC/Online%20Banking_files/TweenMax.js HTTP/1.1
Host: browniestheshed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://browniestheshed.com/F/FNB+CC/xvciIgY29udGVudD0iI2ZhZmFmYSAiPiA8bWV0YSBjb250ZW50PSIvYW5kcm9pZC1jaHincorrectprotectme_card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 15 Oct 2022 13:48:26 GMT
Server: Apache
Last-Modified: Fri, 13 Sep 2019 15:19:30 GMT
Accept-Ranges: bytes
Content-Length: 91575
Keep-Alive: timeout=3, max=91
Connection: Keep-Alive
Content-Type: application/javascript