compterdap.myclickfunnels.com/cooode
172.64.148.75301 Moved Permanently 0 B URL HTTP/1.1 compterdap.myclickfunnels.com/cooode
IP 172.64.148.75:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /cooode HTTP/1.1
Host: compterdap.myclickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 26 Jan 2023 11:21:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 26 Jan 2023 12:21:40 GMT
Location: https://compterdap.myclickfunnels.com/cooode
Set-Cookie: __cf_bm=DmF1ZkrG4j6PVfQGyqQ9yCfYGhSi9zqq9_fi2DyTfyQ-1674732100-0-ASfF9nQGbYoNpqtiTwrvotebDdgQNP2MXfE5EjFnzHZuwSho6kQzGxgw7VNrq6FR9IIEIlaEtuBOOdUFilrjD/Q=; path=/; expires=Thu, 26-Jan-23 11:51:40 GMT; domain=.myclickfunnels.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=7.9999999798019e-06
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f8ddcdefb5b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f5e46725831d8d722872bf68d752f4c5
cf37793a1b73e3f84fe6c37fb27382c83b49dbc0
0582b6180687dd95c7fd728f1b9db4495b807151e309b608ad203d69708f9da6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0582B6180687DD95C7FD728F1B9DB4495B807151E309B608AD203D69708F9DA6"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9203
Expires: Thu, 26 Jan 2023 13:55:04 GMT
Date: Thu, 26 Jan 2023 11:21:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 58ffdcb539c3b250fdf31ed761627fc1
5b55b1522ef84c39b5c42f9bbfbc62b806c1269f
eb783cfa8c8544b0574b345abc0bf3c150979d4efce1a013f17b6cd48076fc63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB783CFA8C8544B0574B345ABC0BF3C150979D4EFCE1A013F17B6CD48076FC63"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5405
Expires: Thu, 26 Jan 2023 12:51:46 GMT
Date: Thu, 26 Jan 2023 11:21:41 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 26 Jan 2023 10:35:16 GMT
content-type: application/json
age: 2785
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 49049f3c92aad686cd7ff28ecd2a5a4f
9cc2bc9c055450dbc4fae93eabe4ef8509b3ff57
02cf421968192286bb174ff0e6c818a843c4eca61a02cd493e6f95bb58a37015
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02CF421968192286BB174FF0E6C818A843C4ECA61A02CD493E6F95BB58A37015"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13980
Expires: Thu, 26 Jan 2023 15:14:41 GMT
Date: Thu, 26 Jan 2023 11:21:41 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: qf/lVB4PZaHC/tv52InvZcVExOW1JX9kamp2Q8PUIXFR758RFbRC+PWvsYJ1jA3j1wcOpA1vXi0=
x-amz-request-id: VG98HS4YD7RGJGGV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 26 Jan 2023 11:20:04 GMT
age: 97
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 11:21:41 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 26 Jan 2023 10:49:01 GMT
age: 1960
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c398b6b39d11d25b8ae9bc5cd94a1c98
640aa8c399ced71d0c2a9f5a90fbaf091b01d642
a6f07f7c6a4746acc25457c726701df33120628dfb578bc4982448d8efee5855
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A6F07F7C6A4746ACC25457C726701DF33120628DFB578BC4982448D8EFEE5855"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18591
Expires: Thu, 26 Jan 2023 16:31:32 GMT
Date: Thu, 26 Jan 2023 11:21:41 GMT
Connection: keep-alive
push.services.mozilla.com/
35.83.22.170101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.83.22.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zM+1Jx9moqWUr8bnvfIZ1w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: QVRpspcRhKPObYWczb7am2NJ/C4=
code.jquery.com/jquery-3.6.0.min.js
69.16.175.42200 OK 31 kB URL HTTP/2 code.jquery.com/jquery-3.6.0.min.js
IP 69.16.175.42:0
File type ASCII text, with very long lines (65447)
Hash 899f0189aaf034bbba5340f724d91dfa
210ea9de03968edb9d839ba4a0ce2d48666a8ab8
949b6597c5ea907a7ef3c8ca6d5ffc73be2352f9df485b78704e5c4dabac5d0f
GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fingerpos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 11:21:43 GMT
content-encoding: gzip
content-length: 30875
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15d9d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1674732103.dop021.sk1.t,1674732103.cds213.sk1.hn,1674732103.cds210.sk1.c
X-Firefox-Spdy: h2
fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/assets/css/86fffa26.chunk.css
103.11.188.172200 OK 26 kB URL HTTP/2 fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/assets/css/86fffa26.chunk.css
IP 103.11.188.172:0
ASN #58621 Vodien Internet Solutions Pte Ltd
File type ASCII text, with CRLF line terminators
Hash 3e7de0e23690216e984e71d83e253f66
05d717b8d7f0cfc4b96b66f7acb9572258425c72
222662d0ed5617d8df9772f5394fdb715acdd3296f00d6db261b682e8400ecd2
GET /der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/assets/css/86fffa26.chunk.css HTTP/1.1
Host: fingerpos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/clients/
Cookie: PHPSESSID=krehus7u4gq625mte8mu4vtv87
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Jan 2023 08:03:42 GMT
accept-ranges: bytes
content-length: 26079
cache-control: max-age=1209600
expires: Thu, 09 Feb 2023 11:21:42 GMT
content-type: text/css
date: Thu, 26 Jan 2023 11:21:42 GMT
server: Apache
X-Firefox-Spdy: h2
fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/assets/css/24571a40.chunk.css
103.11.188.172200 OK 33 kB URL HTTP/2 fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/assets/css/24571a40.chunk.css
IP 103.11.188.172:0
ASN #58621 Vodien Internet Solutions Pte Ltd
File type ASCII text, with CRLF line terminators
Hash 2a57947f8a4cb11dec867f7a3ce35c9e
1df869684aac26d9f6a8338436264566a2811489
4da7ff58a085e3c3fdc781d9e38117c808d7d3425dda5ab7d605d05ad7025493
GET /der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/assets/css/24571a40.chunk.css HTTP/1.1
Host: fingerpos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/clients/
Cookie: PHPSESSID=krehus7u4gq625mte8mu4vtv87
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Jan 2023 08:03:42 GMT
accept-ranges: bytes
content-length: 32830
cache-control: max-age=1209600
expires: Thu, 09 Feb 2023 11:21:42 GMT
content-type: text/css
date: Thu, 26 Jan 2023 11:21:42 GMT
server: Apache
X-Firefox-Spdy: h2
fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/assets/css/des.css
103.11.188.172200 OK 10 kB URL HTTP/2 fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/assets/css/des.css
IP 103.11.188.172:0
ASN #58621 Vodien Internet Solutions Pte Ltd
Hash da2777983515ac2e080a5c5e610c80c8
7eca4989a8bfff480fd89a4fc6193b28519c859d
5ce7979af69c35c2381677bbb13f2c07717278dbbb31c09984310e34408d5c4b
GET /der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/assets/css/des.css HTTP/1.1
Host: fingerpos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/clients/
Cookie: PHPSESSID=krehus7u4gq625mte8mu4vtv87
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Jan 2023 08:03:42 GMT
accept-ranges: bytes
content-length: 10184
cache-control: max-age=1209600
expires: Thu, 09 Feb 2023 11:21:42 GMT
content-type: text/css
date: Thu, 26 Jan 2023 11:21:42 GMT
server: Apache
X-Firefox-Spdy: h2
fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/assets/css/f55d3599.chunk.css
103.11.188.172200 OK 5.9 kB URL HTTP/2 fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/assets/css/f55d3599.chunk.css
IP 103.11.188.172:0
ASN #58621 Vodien Internet Solutions Pte Ltd
File type ASCII text, with CRLF line terminators
Hash 3a1b6bed195a57901a0ee0a65d653b64
1f106ff77343c398378b3275b35f5c73bebd34fc
29a377530b36d1a9e568c24f4539126c6342ce8bc14de3843fdcf7a3dc18add4
GET /der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/assets/css/f55d3599.chunk.css HTTP/1.1
Host: fingerpos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/clients/
Cookie: PHPSESSID=krehus7u4gq625mte8mu4vtv87
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Jan 2023 08:03:42 GMT
accept-ranges: bytes
content-length: 5859
cache-control: max-age=1209600
expires: Thu, 09 Feb 2023 11:21:42 GMT
content-type: text/css
date: Thu, 26 Jan 2023 11:21:42 GMT
server: Apache
X-Firefox-Spdy: h2
fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/assets/css/fe9185d1.chunk.css
103.11.188.172200 OK 5.6 kB URL HTTP/2 fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/assets/css/fe9185d1.chunk.css
IP 103.11.188.172:0
ASN #58621 Vodien Internet Solutions Pte Ltd
Hash 15655db9d206749eb96a2a2f8bd36771
9ef64c0015de15fb0805716d39d30b719721485f
6392a748f3002e48611ba86cd3f3bec9ff95a4f2c11449e15dc1253ce3585028
GET /der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/assets/css/fe9185d1.chunk.css HTTP/1.1
Host: fingerpos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/clients/
Cookie: PHPSESSID=krehus7u4gq625mte8mu4vtv87
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Jan 2023 08:03:42 GMT
accept-ranges: bytes
content-length: 5595
cache-control: max-age=1209600
expires: Thu, 09 Feb 2023 11:21:42 GMT
content-type: text/css
date: Thu, 26 Jan 2023 11:21:42 GMT
server: Apache
X-Firefox-Spdy: h2
fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/assets/css/645939e1.chunk.css
103.11.188.172200 OK 10 kB URL HTTP/2 fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/assets/css/645939e1.chunk.css
IP 103.11.188.172:0
ASN #58621 Vodien Internet Solutions Pte Ltd
File type ASCII text, with CRLF line terminators
Hash 8cb25b388eef35fce998ed26a68fba71
ac216fe4a3c38872c2eaefbcda33a11b172ab1bd
368d3e222fb20951615a298ab3bd932813679981b92d448183a988068c113d77
GET /der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/assets/css/645939e1.chunk.css HTTP/1.1
Host: fingerpos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/clients/
Cookie: PHPSESSID=krehus7u4gq625mte8mu4vtv87
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Jan 2023 08:03:42 GMT
accept-ranges: bytes
content-length: 10233
cache-control: max-age=1209600
expires: Thu, 09 Feb 2023 11:21:42 GMT
content-type: text/css
date: Thu, 26 Jan 2023 11:21:42 GMT
server: Apache
X-Firefox-Spdy: h2
fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/assets/css/2282daa7.chunk.css
103.11.188.172404 Not Found 315 B URL HTTP/2 fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/assets/css/2282daa7.chunk.css
IP 103.11.188.172:0
ASN #58621 Vodien Internet Solutions Pte Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/assets/css/2282daa7.chunk.css HTTP/1.1
Host: fingerpos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/clients/
Cookie: PHPSESSID=krehus7u4gq625mte8mu4vtv87
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-length: 315
content-type: text/html; charset=iso-8859-1
date: Thu, 26 Jan 2023 11:21:42 GMT
server: Apache
X-Firefox-Spdy: h2
fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/assets/css/74.b7389af6.chunk.css
103.11.188.172404 Not Found 315 B URL HTTP/2 fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/assets/css/74.b7389af6.chunk.css
IP 103.11.188.172:0
ASN #58621 Vodien Internet Solutions Pte Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/assets/css/74.b7389af6.chunk.css HTTP/1.1
Host: fingerpos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/clients/
Cookie: PHPSESSID=krehus7u4gq625mte8mu4vtv87
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-length: 315
content-type: text/html; charset=iso-8859-1
date: Thu, 26 Jan 2023 11:21:42 GMT
server: Apache
X-Firefox-Spdy: h2
fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/assets/css/65.045f2d82.chunk.css
103.11.188.172404 Not Found 315 B URL HTTP/2 fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/assets/css/65.045f2d82.chunk.css
IP 103.11.188.172:0
ASN #58621 Vodien Internet Solutions Pte Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/assets/css/65.045f2d82.chunk.css HTTP/1.1
Host: fingerpos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/clients/
Cookie: PHPSESSID=krehus7u4gq625mte8mu4vtv87
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-length: 315
content-type: text/html; charset=iso-8859-1
date: Thu, 26 Jan 2023 11:21:42 GMT
server: Apache
X-Firefox-Spdy: h2
fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/clients/
103.11.188.172200 OK 391 kB URL HTTP/2 fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/clients/
IP 103.11.188.172:0
ASN #58621 Vodien Internet Solutions Pte Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (1156), with CRLF line terminators
Size 391 kB (390853 bytes)
Hash 583b40999de44e0358379331fe7c1950
44bb14ebbb199c8535498fee255d4176b8d5ceb6
25c36e97b4ec4ada210ed0e9813b2ffa2128c27da9a6b86b16ea3e46b00e64e7
GET /der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/clients/ HTTP/1.1
Host: fingerpos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: PHPSESSID=krehus7u4gq625mte8mu4vtv87; path=/
content-type: text/html; charset=UTF-8
date: Thu, 26 Jan 2023 11:21:42 GMT
server: Apache
X-Firefox-Spdy: h2
static-resources.nickel.eu/fonts/MullerNarrow-ExtraBold.woff2
23.36.79.11200 OK 31 kB URL HTTP/1.1 static-resources.nickel.eu/fonts/MullerNarrow-ExtraBold.woff2
IP 23.36.79.11:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 30968, version 1.0\012- data
Hash e1f0c316a274e4fb7df07d7594fffe32
cf17a7d2b83dc7cb990cc5ae6d366bbb488dca0c
e671416c9ac25a7877362f1c6581b91fbe987ec04e187b365a96a3feecc2bb1a
GET /fonts/MullerNarrow-ExtraBold.woff2 HTTP/1.1
Host: static-resources.nickel.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fingerpos.com
Connection: keep-alive
Referer: https://fingerpos.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: font/woff2
Content-Length: 30968
Last-Modified: Sun, 04 Dec 2022 01:05:11 GMT
ETag: "638bf247-78f8"
Cache-Control: no-store, no-cache, must-revalidate
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
x-envoy-upstream-service-time: 0
x-envoy-decorator-operation: static-resources.spartacus-frontend.svc.cluster.local:80/*
Strict-Transport-Security: max-age=15724800; includeSubDomains
Date: Thu, 26 Jan 2023 11:21:43 GMT
Connection: keep-alive
static-resources.nickel.eu/fonts/MullerNarrow-Light.woff2
23.36.79.11200 OK 32 kB URL HTTP/1.1 static-resources.nickel.eu/fonts/MullerNarrow-Light.woff2
IP 23.36.79.11:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 32024, version 1.0\012- data
Hash 8bfa4a94d58fb8a77071a090b39169cf
745bfa90223dafbe481748d1a6afbd54a3381612
f0e7fef75b97057f33e9ba884f068688dd6514ad2e303685ab29418e1390b842
GET /fonts/MullerNarrow-Light.woff2 HTTP/1.1
Host: static-resources.nickel.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fingerpos.com
Connection: keep-alive
Referer: https://fingerpos.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: font/woff2
Content-Length: 32024
Last-Modified: Sun, 04 Dec 2022 01:05:11 GMT
ETag: "638bf247-7d18"
Cache-Control: no-store, no-cache, must-revalidate
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
x-envoy-upstream-service-time: 0
x-envoy-decorator-operation: static-resources.spartacus-frontend.svc.cluster.local:80/*
Strict-Transport-Security: max-age=15724800; includeSubDomains
Date: Thu, 26 Jan 2023 11:21:43 GMT
Connection: keep-alive
static-resources.nickel.eu/fonts/MullerNarrow-Medium.woff2
23.36.79.11200 OK 33 kB URL HTTP/1.1 static-resources.nickel.eu/fonts/MullerNarrow-Medium.woff2
IP 23.36.79.11:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 33044, version 1.0\012- data
Hash 77f3505fab6d762778d600d08abafd4e
bbcda2aef9c080132da7cb01d2b3d46ed22fa31b
f996d7eb10768373376f60c455f38135808f5ad7d6a347aec0584362de092fa7
GET /fonts/MullerNarrow-Medium.woff2 HTTP/1.1
Host: static-resources.nickel.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fingerpos.com
Connection: keep-alive
Referer: https://fingerpos.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: font/woff2
Content-Length: 33044
Last-Modified: Sun, 04 Dec 2022 01:05:11 GMT
ETag: "638bf247-8114"
Cache-Control: no-store, no-cache, must-revalidate
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
x-envoy-upstream-service-time: 0
x-envoy-decorator-operation: static-resources.spartacus-frontend.svc.cluster.local:80/*
Strict-Transport-Security: max-age=15724800; includeSubDomains
Date: Thu, 26 Jan 2023 11:21:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8062
Expires: Thu, 26 Jan 2023 13:36:05 GMT
Date: Thu, 26 Jan 2023 11:21:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8062
Expires: Thu, 26 Jan 2023 13:36:05 GMT
Date: Thu, 26 Jan 2023 11:21:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8062
Expires: Thu, 26 Jan 2023 13:36:05 GMT
Date: Thu, 26 Jan 2023 11:21:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8062
Expires: Thu, 26 Jan 2023 13:36:05 GMT
Date: Thu, 26 Jan 2023 11:21:43 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a5d7d6-d259-4246-b28c-8e4355fbc747.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a5d7d6-d259-4246-b28c-8e4355fbc747.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b242645f0cc22e3b12c132e6d03722ac
dec70f83182de58e03bfcb95fc240b7c33f20674
59a2d8c972d27598dfe38637197f90053186c4f68b80a5a90283cb11ddaf8a31
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a5d7d6-d259-4246-b28c-8e4355fbc747.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6609
x-amzn-requestid: 129067f4-c79b-493d-8863-2eb6c1565ee6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSZABF4IIAMFsig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d533-4908ab6e5c751213084de3c6;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 07:07:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CaxCPk4-9yhypamZa96f4IyujB3AMeGmpcYP1UmJtjp275dwFjVOcw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 07:21:33 GMT
age: 14410
etag: "dec70f83182de58e03bfcb95fc240b7c33f20674"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F602ef184-7161-4092-91b7-61e14eef28a5.jpeg
34.120.237.76200 OK 3.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F602ef184-7161-4092-91b7-61e14eef28a5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 805711aaab303931f8966bbf73aeda52
2bd02a45c8b407e36a41a482b121ea3e14f7c722
66268668c1a970268d75beb1b57f66a759bedac76958a3359cb23104de40fbeb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F602ef184-7161-4092-91b7-61e14eef28a5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3411
x-amzn-requestid: 62afd364-e94f-45ff-ba6c-9b589fc53e5f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e-EyCEzrIAMFb8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c8b4d9-203f51040f82f12d535446c4;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 03:11:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3Ke5d5WguVrF_Phnhu9ojzN5Md0VkYnFfxKNoh5HHrmHwPI90IAIdA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 10:38:20 GMT
age: 2603
etag: "2bd02a45c8b407e36a41a482b121ea3e14f7c722"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3177e0c-fa06-470b-bb9e-800d246a5096.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3177e0c-fa06-470b-bb9e-800d246a5096.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e013ee2e3a5287de55de4c2437a279d
f2b0a5738ec9e3b178b2bf5513de3e604b86eadf
f174d5678154412cdbf71f93c345d28cfb8bad7c190fa31dd78e9314c510f7ca
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3177e0c-fa06-470b-bb9e-800d246a5096.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8648
x-amzn-requestid: 19beb9c1-4e85-47ba-9275-7fb5d25f055f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUYMlENLoAMFhIg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a0b6-016533de5b42b3a573a66c78;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:35:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jkExt4JNW6KtzDm8mDdb-AvXWXeyZr14XifDN_XVzKiwFAru_1HcSA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:49:13 GMT
age: 48750
etag: "f2b0a5738ec9e3b178b2bf5513de3e604b86eadf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba0a42dadf6a976df148f652e9cc1844
4d825b74865effa4a858ddcad1d0969671facc07
7276a38c9ba6b13a06f24ab8b802f210f98c5541df53fbcd8e879a14d2957d95
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5943
x-amzn-requestid: 6774f4a4-ed83-49df-868f-4517c2af914b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXxNF2UIAMFlYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a007-75b1e8975c3f4b503e0a1c5b;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KY05WKpINERD5g9o2QLYdsNMSuuy_YKn2Tl7Qkn7YaAOaPTDfLteeA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:49:40 GMT
etag: "4d825b74865effa4a858ddcad1d0969671facc07"
content-type: image/jpeg
age: 48723
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8017df09-37d9-4c4b-9051-0442b3eb8fbf.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8017df09-37d9-4c4b-9051-0442b3eb8fbf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 17e1b6f3caa98b0e0972802408dd3f93
07e48bf3565e00d093d72dd4ada606f5d39a4838
7094ef64e04573bea7a81bbcc8ab59d721c5ef433e3fa9203e5861040ced549c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8017df09-37d9-4c4b-9051-0442b3eb8fbf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9285
x-amzn-requestid: 526bd945-31d8-490e-af9d-5e6fc6ea3561
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUYT2HzvoAMFYYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a0e5-6812fe4354bbdac4472e7e81;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:36:37 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QEH9CmjfV8QZFNxFz_tEk06i_ELUSNC2QjdTF4K3xc3vS651BZ3NlQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:52:28 GMT
age: 48555
etag: "07e48bf3565e00d093d72dd4ada606f5d39a4838"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ffb1709-216c-4bf0-9b98-e3a355f000bb.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ffb1709-216c-4bf0-9b98-e3a355f000bb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 13cd008fb3e2739ec7caadadbd427655
c4802b06b87ab97f3ccd80d1c9bbdb4fab9886c1
a300a4fde1863c8b806d0557d9f0adaed19e1c612989d7e3f79a7bb45e6e74dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ffb1709-216c-4bf0-9b98-e3a355f000bb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8822
x-amzn-requestid: e16ae781-25f3-4b7d-b62b-85b35d6571c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUYRwF2KIAMFjDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a0d7-377f24bd18dea32564b148bd;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:36:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3Q-kz6GkBHp82E__crWSeqbfxme8c9y1BAAq3TW8NlwJy4eSy7gy7Q==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:49:07 GMT
age: 48756
etag: "c4802b06b87ab97f3ccd80d1c9bbdb4fab9886c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
app.nickel.eu//assets/icon-180.png
23.36.79.11200 OK 1.0 kB URL HTTP/1.1 app.nickel.eu//assets/icon-180.png
IP 23.36.79.11:0
ASN #20940 Akamai International B.V.
File type PNG image data, 180 x 180, 4-bit colormap, non-interlaced\012- data
Hash d416fff9814455130769d44b4b28a573
f297b10be6553b6232e95dc9ae2cb4ffbad8682d
29b9e2818286eec748e2a09dd3171c725860c87420aa26c9b2c4da1416110dc0
GET //assets/icon-180.png HTTP/1.1
Host: app.nickel.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fingerpos.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 1015
Last-Modified: Wed, 04 Jan 2023 17:06:36 GMT
ETag: "63b5b21c-3f7"
Cache-Control: no-store, no-cache, must-revalidate
Accept-Ranges: bytes
x-envoy-upstream-service-time: 0
x-envoy-decorator-operation: espace-perso.spartacus-frontend.svc.cluster.local:80/*
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: frame-ancestors 'self'
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
X-Frame-Options: sameorigin
Date: Thu, 26 Jan 2023 11:21:43 GMT
Connection: keep-alive
Set-Cookie: Path=/; HttpOnly; Secure
app.nickel.eu/favicon.ico
23.36.79.11200 OK 1.2 kB URL HTTP/1.1 app.nickel.eu/favicon.ico
IP 23.36.79.11:0
ASN #20940 Akamai International B.V.
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash b2e9188d1bbbfa02ca3fdb2729a899f1
16f7fd93bc0d607d545e444fb8753580ffa0bd59
60a3acb3e24d8255c5ed37cf3fcb147a8c7ab63b5c4e3a4ec81492ff819e3331
GET /favicon.ico HTTP/1.1
Host: app.nickel.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fingerpos.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Wed, 04 Jan 2023 17:06:36 GMT
ETag: "63b5b21c-47e"
Cache-Control: no-store, no-cache, must-revalidate
Accept-Ranges: bytes
x-envoy-upstream-service-time: 0
x-envoy-decorator-operation: espace-perso.spartacus-frontend.svc.cluster.local:80/*
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: frame-ancestors 'self'
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
X-Frame-Options: sameorigin
Date: Thu, 26 Jan 2023 11:21:43 GMT
Connection: keep-alive
Set-Cookie: Path=/; HttpOnly; Secure
compterdap.myclickfunnels.com/cooode
172.64.148.75302 Found 0 B URL HTTP/2 compterdap.myclickfunnels.com/cooode
IP 172.64.148.75:0
Analyzer Verdict Alert fortinet Phishing
GET /cooode HTTP/1.1
Host: compterdap.myclickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Thu, 26 Jan 2023 11:21:41 GMT
content-type: text/html; charset=utf-8
location: https://fingerpos.com/der/ads/ssl/contact/WWW.nickel.com/icloudassistanceNickel/clients/
cf-ray: 78f8ddcfbd0cb50b-OSL
cache-control: no-cache='set-cookie'
strict-transport-security: max-age=15724800; includeSubDomains
vary: Origin, Accept-Encoding
cf-cache-status: DYNAMIC
cf-railgun: 4d6173a85b stream 0.000000 0200 57da
content-security-policy: frame-ancestors 'self' *.reborncf.com *.myclickfunnels.com;
referrer-policy: strict-origin-when-cross-origin
x-cf-header: 2.0
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: ac110799f1ee6b58394ae5dbbe729aac
x-runtime: 0.278047
x-xss-protection: 1; mode=block
set-cookie: ahoy_visitor=d8dfe60f-30ef-44e0-91da-dba1c36c22ff; path=/; SameSite=Lax
ahoy_visit=ccd63c94-666f-4ac0-975e-c43d991f790e; path=/; expires=Thu, 26 Jan 2023 15:21:41 GMT; SameSite=Lax
cfhoy_visitor=d8dfe60f-30ef-44e0-91da-dba1c36c22ff; path=/; SameSite=Lax
_cf_session=%2BWQCZgDi%2FfvtRlt4gmERQ5SIXOuPfgR5ekBatZenJRVfnTG9voFkWGReKP%2FZEBE6%2B%2BBPgMFWvOcn3iiE2bePemfm8je%2BCGFNynYN7Ow0DYwLZrPY4TiU0HsFVla0luHOxDbI%2Bs9Zyf81S9%2BwXVZzsssRcVoDYXhfAbVDopSt8qU9B4x3mxE%2BYfOLHmaeMA0HBcenCN0VJeJ92tdQQrA1LQsBhAqA0VPVeKbBkE84mJYeJBERlLznum1IjV0xCTggkLp2xcnLAhH26gLv5HhHjuhcYQ%3D%3D--wbgA9NMWFymfQGwy--xbX9pbJPEcHRwWRiRbUVcw%3D%3D; domain=.myclickfunnels.com; path=/; SameSite=Lax
ahoy_track=; path=/; max-age=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; SameSite=Lax
__cf_bm=_NQ0q6DPFZU_SbuRaZgHLzuZd8VMuwl6FT2Ctc96zfE-1674732101-0-AbK+sKO210egi+AoCVRhPZDwwr0I0Fe1L9ddtus0kC4inly+ddfDSnpGSWfPuZ1bdL1FzRv43wRitb+CstJgMZA=; path=/; expires=Thu, 26-Jan-23 11:51:41 GMT; domain=.myclickfunnels.com; HttpOnly; Secure; SameSite=None
cfhoy_visitor=72989908-306d-4ad4-be02-a29240a56a92; domain=myclickfunnels.com; path=/; secure; SameSite=Lax; max-age=1051200
_cf_session=vSmARI8Jrp5jJLe7JHY0R%2F45HaBCVMmDC5wfyr256Dot0yFiU9hwNE3mYYGL0oj1CxZDMuTBkcUkVAuBtZrlCmlcMQ8P7pv3Yn5f8n3tYOxrbwVcyexJTrGZKdOqjLiQYwWfpD%2FAgQkr2rhGw6y1pmOTgQWkALHM8%2B5xNt2uP6DaySueeOFEUgfBbWvjorChf0ryVC5Kt52r8zW6aUxdrHGA6He%2F0ojWnR7VpcUUWkdF3hFCJWu7AuGyQf1N%2FMhD35nTQQgU7PKq8npX1kFuuk0MDZx15QLRAMG%2ByY6G7TAhIe0sz2%2F%2BYLfWR4Rel0dgb6Varbb78Nk%3D--uvewHHHFYe2AR9f9--CPAUVQXmcKIDZmGoYin%2FtQ%3D%3D; domain=myclickfunnels.com; path=/; secure; SameSite=Lax
__cf_bm=8jwyTsQc4i7fiQCwUhitX5Z6ggH6yJRmPOg4igW0Fn8-1674732101-0-AeSshClt315AgdmURLDWX0a5UVPR+zjTJFKhsXe7jEL8PFpnOgpmRYtRIsBBaaqr6N1mLUcg0w7eHLV4VbekKZA=; path=/; expires=Thu, 26-Jan-23 11:51:41 GMT; domain=.myclickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
rawgit.com/RobinHerbots/Inputmask/5.x/dist/jquery.inputmask.js
188.114.97.1200 OK 0 B URL HTTP/2 rawgit.com/RobinHerbots/Inputmask/5.x/dist/jquery.inputmask.js
IP 188.114.97.1:0
GET /RobinHerbots/Inputmask/5.x/dist/jquery.inputmask.js HTTP/1.1
Host: rawgit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fingerpos.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 11:21:43 GMT
content-type: application/javascript;charset=utf-8
x-content-type-options: nosniff
x-robots-tag: none
access-control-allow-origin: *
link: <https://rawgit.com/>; rel="sunset"; title="RawGit will soon shut down. Please stop using it."
sunset: Tue, 01 Oct 2019 00:00:00 GMT
etag: W/"fe480034832fca5adb157149be208b2f45b6de722522fd4c9e2b669af9169d60"
cache-control: max-age=3600, s-maxage=300
vary: Accept-Encoding
rawgit-cache-status: EXPIRED
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=djUDTBLAPbP9a%2FRxBiPNl9%2B%2BQ1aqkJra6aRmHxV2R0fTkgTkIZlCSvgXG14Ry8r6QreT2%2FngjejXwGQlH4dp%2BR9l4kBhy55lbDcvwV%2Fd7DrSGK3wbz6gHa2%2FiEzK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; preload
server: cloudflare
cf-ray: 78f8dddccb17b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2