| www.123taxi.be/wp-content/plugins/wordpress-seo/vendor_prefixed/wordproof/wordpress-sdk/build/a98d41f6ba81e4e9fdfa8ec8efd88091/login.htm | 104.21.74.189 | 301 Moved Permanently | 0 B |
URL HTTP/1.1www.123taxi.be/wp-content/plugins/wordpress-seo/vendor_prefixed/wordproof/wordpress-sdk/build/a98d41f6ba81e4e9fdfa8ec8efd88091/login.htm IP104.21.74.189:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/wordpress-seo/vendor_prefixed/wordproof/wordpress-sdk/build/a98d41f6ba81e4e9fdfa8ec8efd88091/login.htm HTTP/1.1
Host: www.123taxi.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 09 Dec 2022 03:30:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 09 Dec 2022 04:30:31 GMT
Location: https://www.123taxi.be/wp-content/plugins/wordpress-seo/vendor_prefixed/wordproof/wordpress-sdk/build/a98d41f6ba81e4e9fdfa8ec8efd88091/login.htm
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EY46Ee97Okr1jbvnCpjR5FsmIil%2FknJNajfMSWgMmb%2BDuXXTcRd0cbWTzvyr2ECSSV9yNAFCcEFLlU0blRArsEc26GKVocEifFW5YQIXoeB4l7xEKTjBaeFPurdyISKlGw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 776aa9a52c89fac8-OSL
alt-svc: h2=":443"; ma=60
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hashaea93551fa9deb76ae49a3b4019d64fe e3b8862057ebe839959228e42246d7b1807fc90c 7e210f03b140418085e94ec20c1d27d6ecf7a404cbd323e16476ae5ae95d6dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7373
Expires: Fri, 09 Dec 2022 05:33:25 GMT
Date: Fri, 09 Dec 2022 03:30:32 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hashf2acd891dc6eb1f09f57a2b086791781 1e2088306501a61edcca1ade62c4d54f23b3b083 51148fed95cc00d60dc3640350f135b1b2763ff0e3cfbffc40f0948317894be9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9102
Expires: Fri, 09 Dec 2022 06:02:14 GMT
Date: Fri, 09 Dec 2022 03:30:32 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash14cd9a0afb6ba9a763651d5112760d1e 75d7b104ab9ab11fbb73c3f348b43b0119b5adfa 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 03:08:17 GMT
content-type: application/json
age: 1335
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash4ee537977be9c03702f8ffe0025bf1fe 21637881c4aa34c4add703f8bff4eff573159f45 4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6456
Expires: Fri, 09 Dec 2022 05:18:08 GMT
Date: Fri, 09 Dec 2022 03:30:32 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash53341dea33f4f3d9b4966f80589f429a 20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d 651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ru6AFxMzMekkt+uhLBkpF9/XQPxCiXwsmzk72sjfdM5NxGHuQtO/75kKJKEkicEGb+LpEzVs5fw=
x-amz-request-id: JMZTX23YC8GJRTYG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 02:50:05 GMT
age: 2427
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 95.101.11.115 | 200 OK | 345 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash622c98d270cb76baf88bd00df0c5c273 c14a6f06c00ca70afe469af07784fb45e5af2acc 3c76a39cfbae535d433964ac0f54b5ed684818867929457b47a3b26537a36d28
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "3C76A39CFBAE535D433964AC0F54B5ED684818867929457B47A3B26537A36D28"
Last-Modified: Wed, 07 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5834
Expires: Fri, 09 Dec 2022 05:07:46 GMT
Date: Fri, 09 Dec 2022 03:30:32 GMT
Connection: keep-alive
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 03:30:32 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 95.101.11.115 | 200 OK | 345 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash622c98d270cb76baf88bd00df0c5c273 c14a6f06c00ca70afe469af07784fb45e5af2acc 3c76a39cfbae535d433964ac0f54b5ed684818867929457b47a3b26537a36d28
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "3C76A39CFBAE535D433964AC0F54B5ED684818867929457B47A3B26537A36D28"
Last-Modified: Wed, 07 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5834
Expires: Fri, 09 Dec 2022 05:07:46 GMT
Date: Fri, 09 Dec 2022 03:30:32 GMT
Connection: keep-alive
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hashd61883097c47c0fcb4a15cafc5bdbdfc 54411aba43093cafd1cb2acea7c2b4c69184611f 0aef2b974544f530bd591dd0201909a9c2a6b3f4451c69288bafc126d9a37e2c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 03:30:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash6ec5f6261a8262e9f94b29627f54cefe 7ac766cf2ac8c2d960ec033388a767ff8a7d45e2 5f6ee11d840909fc5272c2c32f7874d55f49d831abc88d527e35562d218890f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 03:30:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Cache-Control, Backoff, Content-Length, Content-Type, Last-Modified, ETag, Expires, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 03:07:59 GMT
age: 1353
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 2.0 kB |
IP93.184.220.29:0
Hash50e91704e38490138eaf42d65038e9b6 17626554b15a38b3263a6558a3c5ce61130d11fc dfafc7295abdb40a95a8fc51cf4982f5ba34e90be86d1942d3284042867d9195
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5980
Cache-Control: max-age=170914
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 03:30:32 GMT
Etag: "63928d1e-1d7"
Expires: Sun, 11 Dec 2022 02:59:06 GMT
Last-Modified: Fri, 09 Dec 2022 01:19:26 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashfd55f4aaaab6ec40bc7dc10252cd819a a72523f60be265a391fa9edc43e0a93418ad1fd0 bae354b3db14f4fd115311a0c412c9b5e436dd9e0a151afd8b9c18831dd8c2dd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2289
Cache-Control: max-age=108869
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 03:30:32 GMT
Etag: "6391a92c-1d7"
Expires: Sat, 10 Dec 2022 09:45:01 GMT
Last-Modified: Thu, 08 Dec 2022 09:06:52 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
|
|
| my.navyfederal.org/kUoDOKP2bLJL/2f/SNcTjkuNBg/V3zYLSbtiQ/Bz5ACz8D/aF8NZF/kaOQI | 104.88.20.141 | 200 OK | 74 kB |
URL HTTP/1.1my.navyfederal.org/kUoDOKP2bLJL/2f/SNcTjkuNBg/V3zYLSbtiQ/Bz5ACz8D/aF8NZF/kaOQI IP104.88.20.141:0
File typeASCII text, with very long lines (65536), with no line terminators Hash44ddbd92b72584c7537465582c612a06 de24ca8ebebf5d2ece2085c576af5356620e5284 293b77be3223ec009ccd9f5146f6bb6fb75e6d3d0c7176f353448895071e50e4
GET /kUoDOKP2bLJL/2f/SNcTjkuNBg/V3zYLSbtiQ/Bz5ACz8D/aF8NZF/kaOQI HTTP/1.1
Host: my.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.123taxi.be/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Mon, 05 Dec 2022 18:22:40 GMT
ETag: "cfa67fe64baa6b7ad45ce09b137d4cda798867d7b0a74e48d015f278b6060cfd"
Content-Type: application/javascript
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Fri, 09 Dec 2022 03:30:33 GMT
Content-Length: 74057
Connection: keep-alive
Expires: 0
Cache-Control: no-cache, no-store, must-revalidate
Set-Cookie: my_dc=w; path=/; domain=.navyfederal.org; secure
akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=48~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=16a4a31053958d5ffa7f1287736dbd64; path=/; Secure; SameSite=None; Domain=.navyfederal.org
_abck=6502EF7C5E1B31990E4FF5D8C8C7C9B5~-1~YAAQPDIQYBp6I3qEAQAAbUjv9AmSOdv0Y5MuH8soEPTlh0OrxGExlvOQv08Tvdw5FMN2Dqso6GI5LXXGzXFvW/oJJnK7x6cJjfvi1gepK3SAs9GdQC+rsiRiaezY1HDkp2mtbdBQTXgmg+HgYZs+vJmFYQXeKFtLh6zpHPvK+W7t2gmcYPjnOwrAPfOvUH/m6TT9EY1bQiz1DUDPY6VFMy4mdsreBhpcrOtA5U8/TkuIRdUplO6WjfEy+3RTiwuDktvKh0zYibvgpYavZi0u92aBJP/3XLFlIHLPzFvMDKljHCvNjA/o9Wn03BxKwFVg4w/kzZ7bWMKq0dWBtDmfbDVbsUOKDQ7lghj1AxPE31kl1fSmulFXB27+O319Uq/DX64=~-1~-1~-1; Domain=.navyfederal.org; Path=/; Expires=Sat, 09 Dec 2023 03:30:33 GMT; Max-Age=31536000; Secure
bm_sz=A76007694E02202D93BE9BBCB2ADE5D3~YAAQPDIQYBt6I3qEAQAAbUjv9BKS0b6AZY7ME5IIUeF/o7QndBl0eHKrl02nzTGDbxllMIHJwuI4pZ7acuIr7ZkBwZUDTT3NHJyl2Gr4wwmufY4bTQ1w7qIn73mYq7I/YnvDl0u2NPIEpM9h/qPsm77vgNb8VQY2OGICNemFr52ALfWAP4BPCdDuC1CfuQT2+lFr+5vWvuxha382vL1MxQyRNpTmLzjLNpIiukP1GwrkAKAAWrp8trAMtyt3Du71Pqkl8oHkC8XTob2az3bm11KbqxHYvl1EDk5uCVHEZjoL0T17jXipVw==~4403266~4276530; Domain=.navyfederal.org; Path=/; Expires=Fri, 09 Dec 2022 07:30:33 GMT; Max-Age=14400
Strict-Transport-Security: max-age=31536000
|
|
| push.services.mozilla.com/ | 54.189.139.67 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP54.189.139.67:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yJPU0re2ELJ90NGo6TWIjA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Vd7IPnlkaL/1W78/m8qeWd9mguw=
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 20 kB |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash1df183f12992681f706ad41d14c6f6c5 7f4cdd3eb7dec2466c8cf30213708e06bfe9a7b2 bb487456845c7f4cc3a8241e42d1fa6294dfbc66580a81ba8bed0ac0c12a2945
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10225
Expires: Fri, 09 Dec 2022 06:20:59 GMT
Date: Fri, 09 Dec 2022 03:30:34 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash7b8c1870f03a90aac6370fc69516f95f 1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10225
Expires: Fri, 09 Dec 2022 06:20:59 GMT
Date: Fri, 09 Dec 2022 03:30:34 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash7b8c1870f03a90aac6370fc69516f95f 1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10225
Expires: Fri, 09 Dec 2022 06:20:59 GMT
Date: Fri, 09 Dec 2022 03:30:34 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash7b8c1870f03a90aac6370fc69516f95f 1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10225
Expires: Fri, 09 Dec 2022 06:20:59 GMT
Date: Fri, 09 Dec 2022 03:30:34 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe7732c6-dc98-445c-86c6-d413942250ea.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe7732c6-dc98-445c-86c6-d413942250ea.jpeg IP34.120.237.76:0
Hash872b01837880c2308f16cc822d00c443 bbd0a813dd11ccf6c9b01b2f965509376694031e 6bd56147b888522309bda60775f8cb4e128c23c25b2f09ff9087b7fc5f80259d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe7732c6-dc98-445c-86c6-d413942250ea.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10205
x-amzn-requestid: c5704c7a-60c4-402b-8018-5885a8dae971
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F9BIAMF3ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-3e9573d900714e3250f43e17;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mLTL7L808-OguYGrl3FUvwmFmPQjBPRj7PVfgEheFHWg4g4skoBvOg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 00:33:39 GMT
age: 10615
etag: "1e492807c665e6e6b24ec6ce19035fdfc6f23b92"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf3829a8-4b4d-433d-9452-46c3ffc7ea6e.jpeg | 34.120.237.76 | 200 OK | 8.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf3829a8-4b4d-433d-9452-46c3ffc7ea6e.jpeg IP34.120.237.76:0
Hash2a1a8951d4996693aba93069cf073d15 0be661f4a77f8ba281c0848269d75ccb34c443c1 fe7e20cf211be599fb4f5bcfc67a8e58b0081c7b39a83b0bd71d2ab85cc36aba
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf3829a8-4b4d-433d-9452-46c3ffc7ea6e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7217
x-amzn-requestid: be9196fc-3d43-49db-8522-8781cbf5a247
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUEDEWpIAMFqUQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e66e6-04b24220213872ba378d3538;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4QlJZW4ZiPNVhOJbcRldanR8veym3l0sIBGa1Ym-4FOTT_utMQeZQg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 08:39:07 GMT
age: 67887
etag: "2506152cdd1056533116feb9350124356e570e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg | 34.120.237.76 | 200 OK | 7.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash8c3214044657f3b876d1f1848bca5684 7558222788f06623ddae6e883413e38e1146281e e1f9c9c445bba7765f371dbb655cab43c1e12de7cbd015f8034c494118f7f708
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7897
x-amzn-requestid: 032fd8ae-b7e9-4e12-8546-838191a73688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F51IAMFunw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-345ae6cd107d207f5dbe29a8;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: N-zFZ8yeL7RrOZ5xfqvfBaE3zcXWecvr6Jd-93nKiUZlCXp2n2_Bgw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 03:42:37 GMT
age: 85677
etag: "7558222788f06623ddae6e883413e38e1146281e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f25ad59-b8ed-49ea-9611-21f63c20c8fb.jpeg | 34.120.237.76 | 200 OK | 8.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f25ad59-b8ed-49ea-9611-21f63c20c8fb.jpeg IP34.120.237.76:0
Hashd8f84fe20138a83f05ec8cce30ab1eea 9fec5b3ae4a83170c258862a9ea3c518ad954d95 5ee24070f2df19f2b84bcac46bc56c83d9d754be69edc2b97783b639ddadf0f0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f25ad59-b8ed-49ea-9611-21f63c20c8fb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7960
x-amzn-requestid: beadd240-39d0-407d-a890-6a095657cac3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctEd8HC0oAMFUag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb459-44d4f63c62f58684782ef14a;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:17:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kTEbkncBnAJmQE8cdAqvDtejiwaetpRBsVcpLXy1h52lO4iUkzmOGA==
via: 1.1 74aa91fe819001bcedd882694f52b436.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 16:28:48 GMT
age: 39706
etag: "cfb1e5bcab2148a777889680e6e36b9d7e8917ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F884d1162-4377-487f-a056-b21117ef5001.jpeg | 34.120.237.76 | 200 OK | 8.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F884d1162-4377-487f-a056-b21117ef5001.jpeg IP34.120.237.76:0
Hash5c8184b3215ed3c5897fa710e317f006 456e85532e4c08d928e0958acfece27b0f464f23 22dbee4264f9d3f756e6d3d2244e649685f9743b1f6e41b3c3371d15914b09d2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F884d1162-4377-487f-a056-b21117ef5001.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8204
x-amzn-requestid: cf54b5f8-ede8-49d5-aa56-5d9de98e3ab8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjtKfEiToAMFSXA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638af576-6ddfe35c0b31074d6a07076f;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 07:06:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UfqFAlLedF6ZkfbGXhyYDcvu0porNJb6LPaeQ8p4dqWqsFD6iRgWLw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 15:12:28 GMT
age: 44286
etag: "6cee6b1828c709f68b995197ca943a5c393f86fb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg | 34.120.237.76 | 200 OK | 13 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash730ba1a8edb79ba6f83b46d1ba5aed7b 55a236fedf6f5f7ca2bb88ae13e20846a50fd36d f8043e76265c59073d111987fd4c08d05a3ac80989af9269cca9ebcc21af4013
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12748
x-amzn-requestid: edd028e3-c23e-4985-b12d-d3ebe760df47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjuciEptIAMFj9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638af783-1c151eb66f590c9c0e0c4c82;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 07:15:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -y4-_OwHl5_OFykJYYZSqwIopjKoYy1MhaGTpVXd4Grq2EsUP2c3IA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 13:49:59 GMT
age: 49235
etag: "55a236fedf6f5f7ca2bb88ae13e20846a50fd36d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| my.navyfederal.org/kUoDOKP2bLJL/2f/SNcTjkuNBg/V3zYLSbtiQ/Bz5ACz8D/aF8NZF/kaOQI | 104.88.20.141 | 201 Created | 18 B |
URL HTTP/1.1my.navyfederal.org/kUoDOKP2bLJL/2f/SNcTjkuNBg/V3zYLSbtiQ/Bz5ACz8D/aF8NZF/kaOQI IP104.88.20.141:0
File typeJSON data\012- , ASCII text, with no line terminators Hashd9e31441c04c32264c6821f4ec958ca5 8516f62844b4264d3ccaab00350323d07b9c50ef fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /kUoDOKP2bLJL/2f/SNcTjkuNBg/V3zYLSbtiQ/Bz5ACz8D/aF8NZF/kaOQI HTTP/1.1
Host: my.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2242
Origin: https://www.123taxi.be
Connection: keep-alive
Referer: https://www.123taxi.be/
Cookie: akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=48~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=16a4a31053958d5ffa7f1287736dbd64
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 201 Created
Content-Length: 18
Date: Fri, 09 Dec 2022 03:30:35 GMT
Connection: keep-alive
Content-Type: application/json
Strict-Transport-Security: max-age=31536000
Set-Cookie: my_dc=w; path=/; domain=.navyfederal.org; secure
_abck=4BB59C5C3CDB12371AEA2A72A42B5267~-1~YAAQPDIQYB96I3qEAQAAIVLv9AlLoam0zJ1wjcfJsXZSvXIt3tFqLccIwhrvkdB2ryfED5aYo7EdDoAsGLwzOVMx9fVCh+aIlrinF6thHCN8RMfOBEyBK5pAmukl+PgUGqvKKp4thhXaCECuQubXr89UjFzTUR4mkgtm+7kvUqm0RjpiwvShuZl3CY5kfZCgKCDD45IgncF+EyNrsVhGVopPCa7uV00lhwCwpmgUEte+vJA1cOBWn5+82bfj+25zDlmgDf7sJSnAtKxQK9GCMDIZL+K95CHV2XJ/Za2Cp5wTAA61ep9J2NQyA+VrR+Mxtr1z8tEle6tJiUV12l1o/E/KOvfrLpZl4C0Oaue8nWr8gCFeyuYsgQQvURKZNq0r2Ls=~-1~-1~-1; Domain=.navyfederal.org; Path=/; Expires=Sat, 09 Dec 2023 03:30:35 GMT; Max-Age=31536000; Secure
bm_sz=0CEA7085D8B88034C1D1B12248BCF953~YAAQPDIQYCB6I3qEAQAAIVLv9BL7BI3Uzx4n1DBFjbt5G5werTmo2bmhuER7Livg6l2RZTAg8umOEEaKfmHe6pHgYboHIBwZa4LlXM07ktX+lhx4jurPQodsJRoq9DSx1gIayMPbOO0Xq6ra+Afh9nMBQEbcc0Mxygyh0PCiPrEKOOVnxNfip19JMpqnWZoGY0gZa5MPxGac+vDQ1iX0iB9sbYlfeu1jOclt8MczxL2G8eKUw8bCtqdjUHOduLzs3Bc/rzbzFZPR3aClXSZh4XBUmXM/PIJfGGnadsfUhUb8FZy4Fgihnw==~3163445~3684406; Domain=.navyfederal.org; Path=/; Expires=Fri, 09 Dec 2022 07:30:35 GMT; Max-Age=14400
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash0e9eef4ed41ef94e9ea175ad243e294e b6f83e508270413dabe55e2884b5409ca7978e24 0e741ca8d92717128bca7aed937bca43519a8d20a9d3dd8670da656ad51a695e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 03:30:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash0e9eef4ed41ef94e9ea175ad243e294e b6f83e508270413dabe55e2884b5409ca7978e24 0e741ca8d92717128bca7aed937bca43519a8d20a9d3dd8670da656ad51a695e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 03:30:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2 | 216.58.207.227 | 200 OK | 32 kB |
URL HTTP/2fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2 IP216.58.207.227:0
Hash7dedd5b6db9cefba501b22c9b73bfe4c f0aa7052e3b8eedc233c75eadf01d97d074ae6e6 322ecde70bfc4edc44a9586c419d71d4935f29f410a8f4245229e004c8cfc2cc
GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.123taxi.be
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13052
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:38:22 GMT
expires: Thu, 07 Dec 2023 19:38:22 GMT
cache-control: public, max-age=31536000
age: 114733
last-modified: Wed, 27 Apr 2022 16:09:03 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 | 216.58.207.227 | 200 OK | 13 kB |
URL HTTP/2fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data Hash0ad032b3d07aaf33b160ac4799dda40f 06b931e0d0bf37f5037d9e66d6feedfddd21c0ba c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0
GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.123taxi.be
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:28:49 GMT
expires: Thu, 07 Dec 2023 19:28:49 GMT
cache-control: public, max-age=31536000
age: 115306
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 1.4 kB |
IP216.58.211.3:0
Hash2bd7f97ff06e087c9725866d17f2e2ba ada16b96c1b49dffa63f59c36b8e3849a6929b35 8069dd25b0eb97c417b64160555f521ec7ffea8ae517dbf66e57a75122e29494
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 03:30:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash6769dd4eaad1b9a6eacd5ba2d8a6dd66 ca87b23a5659e3bc2359d28daaccb25b6f1efd81 467c9d3ea44d380220d158a151f4d0cba8e804127a860a784edb70ab3e13fdb0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 03:30:36 GMT
Etag: "63915d35-1d7"
Server: ECS (amb/6B97)
Content-Length: 471
|
|
| my.navyfederal.org/kUoDOKP2bLJL/2f/SNcTjkuNBg/V3zYLSbtiQ/Bz5ACz8D/aF8NZF/kaOQI | 104.88.20.141 | 201 Created | 18 B |
URL HTTP/1.1my.navyfederal.org/kUoDOKP2bLJL/2f/SNcTjkuNBg/V3zYLSbtiQ/Bz5ACz8D/aF8NZF/kaOQI IP104.88.20.141:0
File typeJSON data\012- , ASCII text, with no line terminators Hashd9e31441c04c32264c6821f4ec958ca5 8516f62844b4264d3ccaab00350323d07b9c50ef fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /kUoDOKP2bLJL/2f/SNcTjkuNBg/V3zYLSbtiQ/Bz5ACz8D/aF8NZF/kaOQI HTTP/1.1
Host: my.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2185
Origin: https://www.123taxi.be
Connection: keep-alive
Referer: https://www.123taxi.be/
Cookie: akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=48~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=16a4a31053958d5ffa7f1287736dbd64
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 201 Created
Content-Length: 18
Date: Fri, 09 Dec 2022 03:30:36 GMT
Connection: keep-alive
Content-Type: application/json
Strict-Transport-Security: max-age=31536000
Set-Cookie: my_dc=w; path=/; domain=.navyfederal.org; secure
_abck=F638403B3F69F16AAD835B0F288E8DD9~-1~YAAQPDIQYCF6I3qEAQAATFTv9AlmJrPXADHuQNybA/fg9HHnQe19TPTuhE1VFC66StIplqOAXfaW8nQ01pp4/dPiLQlzyKwRXdSNW1JI0Scj9yJhX/xsJIUksEz0TIz1XyB+6irUQZoKrKjxxK3OYoQpWdCAI1yNaVZi0z1ZASPZu9QNnZxRmHn03+agi0X6grV+p++SNai5x/sBKOfBxg6MKsvTidnvcORUBn4Fp2aJy9uO50yWMb2E8hGDMhW7QYB6bVnKJJS9jH345Jw4Bpei9kPccTl4k9icBBfog1+1Yr6UnloiSM41vyHYRKoCqrCIiGDZKczlxt0XxirGfgvIG7M6CreA2n59FeNOXRNKc4/nOG9oCIBJnLurG/0YYxo=~-1~-1~-1; Domain=.navyfederal.org; Path=/; Expires=Sat, 09 Dec 2023 03:30:36 GMT; Max-Age=31536000; Secure
bm_sz=C4E6E615783EA31B8A6F416AD49948D5~YAAQPDIQYCJ6I3qEAQAATFTv9BJMiSRtXqbt0TPg68qnOwzmf56YRosJr9MH2IjnjstjjNu7B6GJkWQVBENnYAiuLwQDb96TMCHWpjNUfYkzxtj2c9FHo/C+EGkz6CXnezg6MC8FEahWq9DN5Xn9oHkWx0f9CrkE20LdRzNi8azk8SZm6obhavgqUGYfKhphpR2EeQsEZlrt3L5ViERWfLG3m/jYhNRas5VTuvaiIIv5UAq96j495tqK69ThY6ViV47sHzVcecGnFSwvsmW7X3pMBsk8kIPulCpjXod4p8k0feU30Jrb3w==~4602165~4274230; Domain=.navyfederal.org; Path=/; Expires=Fri, 09 Dec 2022 07:30:36 GMT; Max-Age=14400
|
|
| rnemsg.navyfederal.org/ci/pta/logout | 147.154.117.92 | 302 Found | 25 B |
URL HTTP/1.1rnemsg.navyfederal.org/ci/pta/logout IP147.154.117.92:0 ASN#31898 ORACLE-BMC-31898
Hash3f8372f15e761c5f9e4ed6515f744df3 81a6e71371d2a46f6116e045fce6feb258b2d9f3 61c08f21cca5983f6f115bd91b9cc97bd29ef835d1cabed197d79fa7e1e7bd76
GET /ci/pta/logout HTTP/1.1
Host: rnemsg.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.123taxi.be/
Cookie: akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=48~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=16a4a31053958d5ffa7f1287736dbd64
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Fri, 09 Dec 2022 03:30:36 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
F5_do_compression: yes
Content-Encoding: gzip
RNT-JN-Ext-Machine: 43.2
Strict-Transport-Security: max-age=31536000
Set-Cookie: cp_session=fUS1JnrIpRJAAZchXHiY_TlADbJvL3fkjLYKfho0vaNcBN74pHuOOx_xeU___Ln3R1KgUov_f6eynEnrNlfOxPNMlGovjQPWSC60eNAP2qCCW~1inHgAdiPDkEp3e5SAzgHfNJIWCPWe~DtjgWLORlEPfunYmiNztz1s8lmjTtai~vngtNBlVmjm15DibD9rKFDjqLMrnt5MfkFW3gm3lkU9dKdOvYA1C5Gy3WLDogJStkG4CgLqlpZVNT~2vpRv4mTnZQW55sRNFhzjYQlcXFlQxDES7VvceOaCce8o~VIoW0BDigYOuST_hVI6ph_RSrvlYiKKDc88gS5lcahl9Akp_bgjIvHcG7P76f5giOycXkfK1jFzWP6QyxbnUTrrFjqUVf0N0U1SU2MJtn5qj1EmrwBs1mmHPFPvyHwlefl_QcwO75hb0utozRD6BzUDqcJjSrcY6l12NhfERPboIVaDtjhsv5o5UK; path=/; httponly; SameSite=None; Secure
cp_session=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
RNT-JN-Ext-UUID: 735d7a31-2d7b-4ba6-92e6-d17091138696
RNT-Time: D=172710 t=1670556636240464
Location: https://www.navyfederal.org/images/spacer.gif
RNT-Machine: 1.147
|
|
| www.navyfederal.org/images/spacer.gif | 104.110.18.91 | 301 Moved Permanently | 0 B |
URL HTTP/2www.navyfederal.org/images/spacer.gif IP104.110.18.91:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/spacer.gif HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.123taxi.be/
Connection: keep-alive
Cookie: akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=48~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=16a4a31053958d5ffa7f1287736dbd64
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: AkamaiGHost
content-length: 0
location: https://web.navyfederal.org/images/spacer.gif
cache-control: max-age=86400
expires: Sat, 10 Dec 2022 03:30:36 GMT
date: Fri, 09 Dec 2022 03:30:36 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| my.navyfederal.org/kUoDOKP2bLJL/2f/SNcTjkuNBg/V3zYLSbtiQ/Bz5ACz8D/aF8NZF/kaOQI | 104.88.20.141 | 201 Created | 18 B |
URL HTTP/1.1my.navyfederal.org/kUoDOKP2bLJL/2f/SNcTjkuNBg/V3zYLSbtiQ/Bz5ACz8D/aF8NZF/kaOQI IP104.88.20.141:0
File typeJSON data\012- , ASCII text, with no line terminators Hashd9e31441c04c32264c6821f4ec958ca5 8516f62844b4264d3ccaab00350323d07b9c50ef fcd6acab1a311e89ae1aef024707e986871eff4071c584de3e93970c5fc4a23d
POST /kUoDOKP2bLJL/2f/SNcTjkuNBg/V3zYLSbtiQ/Bz5ACz8D/aF8NZF/kaOQI HTTP/1.1
Host: my.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2437
Origin: https://www.123taxi.be
Connection: keep-alive
Referer: https://www.123taxi.be/
Cookie: akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=48~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=16a4a31053958d5ffa7f1287736dbd64
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 201 Created
Content-Length: 18
Date: Fri, 09 Dec 2022 03:30:36 GMT
Connection: keep-alive
Content-Type: application/json
Strict-Transport-Security: max-age=31536000
Set-Cookie: my_dc=w; path=/; domain=.navyfederal.org; secure
_abck=EAA47168B500F0EA5E20F124C503F479~-1~YAAQPDIQYCR6I3qEAQAAHVbv9AlvcaDKZA0nVnu+p8p804W+Vcz8uHpp8lwcrTxur2BClE0bfN6FkfgxWU/EeLPMs6FF4U1DtUPqrYq/HVOJL+TI7qNJx2hwOFnwS5tyI8jJ0wF5g9TH2GVPDqValq9nZ/6vaJJy57cM/Z8uNxkCYBSqjXFcPK+E2mJJoZjbZiQBO8+vDp9Ae7x7E2kgbK6q5/a6FBBORrhyKArpw+R0Qi6T5V89tEkRsXvKTmZjU7R2xhjZwygQxDHZbckTEPLJGBubhyiU21yRp1VZ55mrd2EmMRbBEw0rrcwDHc+l9qdq8b0hhjVBbGGgcBlVioui+671QmBPvPGAtPeRnbXCjTYRVjHR5e88Ir12Vfg3pNQ=~-1~-1~-1; Domain=.navyfederal.org; Path=/; Expires=Sat, 09 Dec 2023 03:30:36 GMT; Max-Age=31536000; Secure
bm_sz=4C4BADE21857C80D2D69184543CC7A55~YAAQPDIQYCV6I3qEAQAAHVbv9BJqSXeV1FWjZdHFxerdd5Lc5S1099fg9grErvj8tZ9mjK331/Umjy1nCY49x2Qipkcn4o0nN+dfMX0GPSjWlQb7znPr/knziIMX4D4ZXb5YDjRe1rRsBPWEdj707GbHTk457GOfu98lFaPU+PsYimq8IbLxlDHtFHAuWKk4dY2yDxU8PkA21nPfmSsT/g1iCw8bptB/AdJI9E7rOg/EiDazD2uFfkHOW3jx7n14P+zKWpXlXlkYvc82fVGiAsfamMYURQer8vFZneqhvDYRNSjNoXabyw==~4602165~4274230; Domain=.navyfederal.org; Path=/; Expires=Fri, 09 Dec 2022 07:30:36 GMT; Max-Age=14400
|
|
| web.navyfederal.org/images/spacer.gif | 104.110.18.91 | 200 OK | 43 B |
URL HTTP/2web.navyfederal.org/images/spacer.gif IP104.110.18.91:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /images/spacer.gif HTTP/1.1
Host: web.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.123taxi.be/
Connection: keep-alive
Cookie: akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=48~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=16a4a31053958d5ffa7f1287736dbd64
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Sun, 02 Jun 2013 10:22:19 GMT
etag: "2b-4de29390cacc0"
accept-ranges: bytes
content-length: 43
cache-control: max-age=7776000
expires: Wed, 19 Oct 2022 10:22:27 GMT
content-type: image/gif
date: Fri, 09 Dec 2022 03:30:36 GMT
X-Firefox-Spdy: h2
|
|
| www.123taxi.be/wp-content/plugins/wordpress-seo/vendor_prefixed/wordproof/wordpress-sdk/build/a98d41f6ba81e4e9fdfa8ec8efd88091/login.htm | 172.67.162.93 | 200 OK | 0 B |
URL HTTP/2www.123taxi.be/wp-content/plugins/wordpress-seo/vendor_prefixed/wordproof/wordpress-sdk/build/a98d41f6ba81e4e9fdfa8ec8efd88091/login.htm IP172.67.162.93:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/plugins/wordpress-seo/vendor_prefixed/wordproof/wordpress-sdk/build/a98d41f6ba81e4e9fdfa8ec8efd88091/login.htm HTTP/1.1
Host: www.123taxi.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 09 Dec 2022 03:30:32 GMT
content-type: text/html
last-modified: Thu, 08 Dec 2022 21:00:43 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mkaPQGNlHXBoY6TrT%2F5tSo%2FmptDAVmUJYPzxDgmuZ2sCbzWoN8GCs09Ja689KXJEEp9qJlo2rmjwsGmos2QwwSIU03z8l1%2BQy10FHH1iw67pOS6832x%2B%2B0apZVbVvTVBqg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 776aa9a72a75b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Source+Sans+Pro:400,600 | 142.250.74.106 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Source+Sans+Pro:400,600 IP142.250.74.106:0
GET /css?family=Source+Sans+Pro:400,600 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.123taxi.be/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 09 Dec 2022 03:30:32 GMT
date: Fri, 09 Dec 2022 03:30:32 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|