Report - www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364

Report Overview

Submitted URL
www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364
IP
162.241.194.161
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2022-09-22 21:31:58
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
22

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	377 B	105 kB	142.250.74.72
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	44.238.202.79
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	338 B	944 B	54.230.245.118
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.7 kB	79 kB	34.120.237.76
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	811 B	570 B	142.250.74.174
www.resonacard.co.jp	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	384 B	810 B	14.0.41.231
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	34.160.144.191
www.clickforcontent.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	11 kB	372 kB	162.241.194.161
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	658 B	1.4 kB	93.184.220.29
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
clickforcontent.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	455 B	18 kB	162.241.194.161
sb.resonabank.co.jp	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	3.7 kB	23.36.79.26
static.karte.io	67834	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	362 B	499 B	143.204.55.104
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.36
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	7.1 kB	23.36.76.226
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	662 B	1.4 kB	142.250.74.3

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2022-09-22	medium	www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364	Resona Card Co.

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-22	medium	www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364	Phishing
2022-09-22	medium	www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/	Phishing
2022-09-22	medium	www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/custom_4e588d08afda9814698a46572afbf27c.js	Phishing
2022-09-22	medium	www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/SResonaCommon.js	Phishing
2022-09-22	medium	www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/js	Phishing
2022-09-22	medium	www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/empt.htm	Phishing
2022-09-22	medium	www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/tracker.js	Phishing
2022-09-22	medium	www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/gtm.js	Phishing
2022-09-22	medium	www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/empt_data/build.js	Phishing
2022-09-22	medium	www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/analytics.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (15)

	URL	Size	First Seen	Last Seen
	www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/custom_4e588d08afda9814698a46572afbf27c.js	6.8 kB	2023-03-07	2023-03-14
Pretty URL www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/custom_4e588d08afda9814698a46572afbf27c.js IP 162.241.194.161 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:46:32 Last Seen2023-03-14 02:51:36 Times Seen1 Hash 33fa1649ae37d8fca662a216fc831116 2643191baf5a3405f8547fdeba1f681e1bad1311 7a4dd228db6d78de230fd00022761ecc57db7b05f8d4b4e494d5e0fdc9a8c931 Loading...

	www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/	278 B	2023-03-07	2023-03-14
Pretty URL www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/ IP 162.241.194.161 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:46:32 Last Seen2023-03-14 02:51:36 Times Seen1 Hash c34b76be1411760362c97761d8c63227 7d487334b2de2d4afda161c24a8026b38c249aca 2a46f07d022334251bb8050e5756680a9533b027d4de7d66da93927e5f94ab22 Loading...

	static.karte.io/libs/tracker.js	314 kB	2023-03-07	2023-03-13
Pretty URL static.karte.io/libs/tracker.js IP 143.204.55.104 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:00 Last Seen2023-03-13 21:32:31 Times Seen1 Hash fc69b59d6a74cacc75e414b21d0c341b c26db25a9434d069d80b39d46872118456d5fcee 5dd6053b7b4515542e69009f0217adc815324f361537510bb09768861d16ef64 Loading...

	www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/gtm.js	452 kB	2023-03-07	2023-03-14
Pretty URL www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/gtm.js IP 162.241.194.161 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:46:32 Last Seen2023-03-14 02:51:36 Times Seen1 Hash ef9677023fe90eb4f0b07b8de6a0a64a 659e069d85dbc6bb6d1793582ea3a6015ab1b189 a369471f01b52db523d9a31013992013edc753e7f52fcdf5dd01da6d6cb28c64 Loading...

	www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/analytics.js	50 kB	2023-03-07	2024-04-18
Pretty URL www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/analytics.js IP 162.241.194.161 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-18 21:14:10 Times Seen840 Hash d40531c5e99a6f84e42535859476fe35 a901817d77b2fe5259c298c91bc65c54d7f8a1a9 a1925038db769477ab74b4df34350c35688a795bb718727b0f4292a4a78a6210 Loading...

	www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/js	222 kB	2023-03-07	2023-03-14
Pretty URL www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/js IP 162.241.194.161 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:46:32 Last Seen2023-03-14 02:51:36 Times Seen1 Hash aa7b78f951f0a6bd2bfab7c7f5584d4e 0fd40025081ea03fc7bef5e5a04453ee358edd9a 489b80f26bdc7cb6f57e4d34cc5ece491943c1481e5fd2f65a7f67035f2bfddc Loading...

	www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/	337 B	2023-03-07	2023-03-14
Pretty URL www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/ IP 162.241.194.161 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:46:32 Last Seen2023-03-14 02:51:36 Times Seen1 Hash adaba0d67d1501d974250d6fbafb7818 4cb317ed19683464c86e6413b00f3a1718049797 cbb41bcd33c797783648ea2bdc6830154da5cac00113e0e16cd665abf214613a Loading...

	www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/	47 B	2023-03-07	2023-03-14
Pretty URL www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/ IP 162.241.194.161 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:46:32 Last Seen2023-03-14 02:51:36 Times Seen1 Hash fe1bb7ce172a751b29644f3ce07e4b8a c181f556bf34da2c2e285af4d4f59a226a796c3b bd0cbbf088a23765e8531ed5adca38f4489c09d04638f5ddce97a7b0b07fd07d Loading...

	www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/	454 B	2023-03-07	2023-03-14
Pretty URL www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/ IP 162.241.194.161 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:46:32 Last Seen2023-03-14 02:51:36 Times Seen1 Hash 4deab01ecc6cc355d26591f67a62951a 67322566c0c8ee8009e7e2b8e4adcb94d5e9a2e5 469cef02ff9750d0a96140aad7fe3a6a30df17cc933ce268b5b3317de7fb8cd4 Loading...

	www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/	80 B	2023-03-07	2023-12-02
Pretty URL www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/ IP 162.241.194.161 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:46:32 Last Seen2023-12-02 03:48:29 Times Seen4 Hash 0ac3e644f9754479d2f4b30880002944 47995b39e2ce4096855454ef1a641c9664b9abce 1dee7c0697f4499da5da3f4814cb3889f8fdb6de2bb97927029a0df2b87a7d7f Loading...

	www.googletagmanager.com/gtm.js?id=GTM-5FQFWZZ	455 kB	2023-03-07	2023-03-07
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-5FQFWZZ IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:25:43 Last Seen2023-03-07 23:25:43 Times Seen1 Hash 532f266a09386e20caf1bff1106ccd6a 624d5a7b342638499a43e425c0fcaee8a52e7d7b 42438cd6b51573b33b6741ddfd0a197dc758a0ec5c23afd7954a8a27b9978fe3 Loading...

	www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/	88 B	2023-03-07	2023-03-14
Pretty URL www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/ IP 162.241.194.161 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:46:32 Last Seen2023-03-14 02:51:36 Times Seen1 Hash 2f6f20b6d02152fcfd3f400549fb0e7a c91e2c99d42050c46b4ab746b9beae0f65860866 0ccf0e1b836dec968fa3de97ec374aceef7cc66e186fbdcfb527429a6fd46e05 Loading...

	www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/	929 B	2023-03-07	2024-02-17
Pretty URL www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/ IP 162.241.194.161 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:46:32 Last Seen2024-02-17 06:47:28 Times Seen7 Hash 5c024e4dcac97f3639c61ef750854f2a 524bbd5f1d3ecbe4d6cc6469858b7b77447dcd3b c26b20d8b5c7edd95f28ae0b72d76f34301462993196fbbcf973af648218e7c6 Loading...

	www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/empt_data/build.js	105 kB	2023-03-07	2023-12-25
Pretty URL www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/empt_data/build.js IP 162.241.194.161 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:46:32 Last Seen2023-12-25 06:51:26 Times Seen44 Hash 8f7b03c4597c463a5b72ff25b9a5d7a2 deec535ab3683ae22ecbb3b40dc25e5204145072 7b5538ffa3c5d4e18bdafe5af55bb39242b2d72c3b9d8ef687974c418b42c56b Loading...

		Size	First Seen	Last Seen
	#1 Eval - 43bebea3d96cf3710d4a77ccb08cf1af	48 B	2023-03-07	2024-02-17
Pretty Observations First Seen2023-03-07 15:46:32 Last Seen2024-02-17 06:47:29 Times Seen7 Hash 43bebea3d96cf3710d4a77ccb08cf1af 4dd86b62b802f541564cd361cdbe694c82223333 ba2d150e4f6f98f3a6e81aa03477eb87eae3e32291d109e443753619bc8f9bda Loading...

HTTP Transactions (49)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.36

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 22 Sep 2022 21:14:03 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: JyM1e1sJodI1pZWHUUdQckPthxQv9HLM3lkT81G7zd0M2RcU89VNVw==
Age: 1064

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16630
Expires: Fri, 23 Sep 2022 02:08:57 GMT
Date: Thu, 22 Sep 2022 21:31:47 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
273c9229ed27926fd0959f20f1208c61
fda6bc1552a619d212dcd2f8f2a6f6ecb0465e08
ed4a69ec7d0f87da792a3028793b63debdb002b37de5384e5360ee50d0fb8cba

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ED4A69EC7D0F87DA792A3028793B63DEBDB002B37DE5384E5360EE50D0FB8CBA"
Last-Modified: Wed, 21 Sep 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18359
Expires: Fri, 23 Sep 2022 02:37:46 GMT
Date: Thu, 22 Sep 2022 21:31:47 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
afb65a07bf7214addf83d17a53acba32
a8e973204431320aa7b362a4e73944520c4b51b9
46e1a9e6c98245afb7fa84bc6d9ba6844105024e2d3f56e28748e6c321475d02

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "46E1A9E6C98245AFB7FA84BC6D9BA6844105024E2D3F56E28748E6C321475D02"
Last-Modified: Wed, 21 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8050
Expires: Thu, 22 Sep 2022 23:45:57 GMT
Date: Thu, 22 Sep 2022 21:31:47 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: yFd8gyNFZFOXqfbnlt9wIJFkOghMrJ+LC4F1yd1FOfBKwSIEJoUy+phJL/gnBKusOAFFp6HWyaw=
x-amz-request-id: E7W0XWZRNN5328BM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 22 Sep 2022 20:44:02 GMT
age: 2865
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 21:31:47 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364

162.241.194.161

301 Moved Permanently

278 B

URL HTTP/2
www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364
IP
162.241.194.161:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
278 B (278 bytes)
Hash
b061ab7a48a5826bcda81f23319d53b7
308bd06d738f7e507a3cd3ab7f503cc7724ff9f4
48f3a783024f370364c29df896eefbac0b8c9561ab080e2b1329c249e0c71fd6

Detections

Analyzer	Verdict	Alert
openphish	Resona Card Co.
fortinet	Phishing

HTTP Headers

GET /wp-includes/Text/tab/dab/conect/ca364 HTTP/1.1
Host: www.clickforcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
date: Thu, 22 Sep 2022 21:31:47 GMT
server: Apache
content-type: text/html; charset=iso-8859-1
content-length: 278
location: https://www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/
x-server-cache: true
x-proxy-cache: EXPIRED
X-Firefox-Spdy: h2

www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/

162.241.194.161

200 OK

6.0 kB

URL HTTP/2
www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/
IP
162.241.194.161:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1414)
Size
6.0 kB (5958 bytes)
Hash
80bbbf18c9d65c1dd33ba848dd2fd444
2c91da5607d6994d3f26fb8e9c8c80edceb59343
9e386243bfe542303f26ce9c6c5868bf24ac768fa6aea1c9aa5a31cad94aef65

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/Text/tab/dab/conect/ca364/ HTTP/1.1
Host: www.clickforcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 200 OK
date: Thu, 22 Sep 2022 21:31:47 GMT
server: Apache
content-type: text/html; charset=UTF-8
content-length: 5958
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
content-encoding: gzip
x-server-cache: true
x-proxy-cache: MISS
set-cookie: PHPSESSID=9d3be07bd30328cf02e8f399c91d5e84; path=/
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.36

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 22 Sep 2022 21:03:22 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Thu, 22 Sep 2022 21:11:11 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: W5-0NKgcz_0EB6YZ39IBYHe13-PH5j4h08pyurQsDsNOoU_L5ULUFw==
Age: 1705

www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/common.css

162.241.194.161

200 OK

3.4 kB

URL HTTP/2
www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/common.css
IP
162.241.194.161:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Non-ISO extended-ASCII text, with CRLF line terminators
Size
3.4 kB (3376 bytes)
Hash
a7661ca868fe8c999b15ffbd54cb635d
d34237baadf29da1cceeaabc49fe109cb9902891
5a226b7dc795c3522e6855f035c79ffbd319f6276bc4d12ae3d371dda0f578d9

HTTP Headers

GET /wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/common.css HTTP/1.1
Host: www.clickforcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/
Cookie: PHPSESSID=9d3be07bd30328cf02e8f399c91d5e84
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 04:11:35 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3376
content-type: text/css
date: Thu, 22 Sep 2022 21:31:47 GMT
server: Apache
X-Firefox-Spdy: h2

www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/custom_4e588d08afda9814698a46572afbf27c.js

162.241.194.161

200 OK

1.6 kB

URL HTTP/2
www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/custom_4e588d08afda9814698a46572afbf27c.js
IP
162.241.194.161:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with very long lines (6524), with no line terminators
Size
1.6 kB (1621 bytes)
Hash
bb15daa91b7e5f11a3b944dedcc6734a
bff255d6fead3554757aa1f8fdbdf18fd8513438
b0f240e991fe56107237163ae0b0cd35cdab9fea0402aa7bb63f746a90c03069

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/custom_4e588d08afda9814698a46572afbf27c.js HTTP/1.1
Host: www.clickforcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/
Cookie: PHPSESSID=9d3be07bd30328cf02e8f399c91d5e84
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 04:11:35 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1621
content-type: application/javascript
date: Thu, 22 Sep 2022 21:31:47 GMT
server: Apache
X-Firefox-Spdy: h2

www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/SResonaCommon.js

162.241.194.161

200 OK

1.2 kB

URL HTTP/2
www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/SResonaCommon.js
IP
162.241.194.161:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- exported SGML document, Non-ISO extended-ASCII text, with CRLF line terminators
Size
1.2 kB (1243 bytes)
Hash
43cdde14be966ea647f2dc7bb13db3b2
b8634b08747f3615383eb2d91dc634eea3b70cc1
152467e192c5e90b75c0ac7a155d070196cd67f1e5bef29ba6451b1adbf7c65e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/SResonaCommon.js HTTP/1.1
Host: www.clickforcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/
Cookie: PHPSESSID=9d3be07bd30328cf02e8f399c91d5e84
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 04:11:35 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1243
content-type: application/javascript
date: Thu, 22 Sep 2022 21:31:47 GMT
server: Apache
X-Firefox-Spdy: h2

www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/logo.png

162.241.194.161

200 OK

4.2 kB

URL HTTP/2
www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/logo.png
IP
162.241.194.161:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 126 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
4.2 kB (4179 bytes)
Hash
f534e361b03a9a1384140e1293fce6cc
da2cf6df7d628da88e5ca88ed4a87017f0cb6a11
2930fe159b32a9dd59017b729e11979f74eabfec285c1657391146ecf3663d70

HTTP Headers

GET /wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/logo.png HTTP/1.1
Host: www.clickforcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/
Cookie: PHPSESSID=9d3be07bd30328cf02e8f399c91d5e84
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 04:11:35 GMT
accept-ranges: bytes
content-length: 4179
content-type: image/png
date: Thu, 22 Sep 2022 21:31:47 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
86624f45fb3b7126dbe002f69c94dd86
30bcf274db5037122f989fb25dbf1e72c9ec417b
2cc9600578cf057dc499835773fb495caa60ac154c4945f0fc1f2b31d43f5502

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3833
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 21:31:48 GMT
Last-Modified: Thu, 22 Sep 2022 20:27:55 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/help.png

162.241.194.161

200 OK

6.5 kB

URL HTTP/2
www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/help.png
IP
162.241.194.161:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 260 x 140, 8-bit/color RGBA, non-interlaced\012- data
Size
6.5 kB (6531 bytes)
Hash
a7bd90057cb80c2795e94e147772e008
317065a4a3f6550a8d5ec017b438f7bd51b2471f
6e08ac11997ad16818789ec272d6af1f2603a7d1425e74a604adfeb9153ab130

HTTP Headers

GET /wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/help.png HTTP/1.1
Host: www.clickforcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/
Cookie: PHPSESSID=9d3be07bd30328cf02e8f399c91d5e84
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 04:11:35 GMT
accept-ranges: bytes
content-length: 6531
content-type: image/png
date: Thu, 22 Sep 2022 21:31:47 GMT
server: Apache
X-Firefox-Spdy: h2

www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/SCS1902010.css

162.241.194.161

200 OK

359 B

URL HTTP/2
www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/SCS1902010.css
IP
162.241.194.161:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
359 B (359 bytes)
Hash
d538201958198fe84fb6d2d55c1b2480
6bbf9868f8a51827c28ab4f92091907482ca1902
fc3d41b67faa8d468d6a87ebcb951c5700853ef40b910223c5116414b12c5dfc

HTTP Headers

GET /wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/SCS1902010.css HTTP/1.1
Host: www.clickforcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/
Cookie: PHPSESSID=9d3be07bd30328cf02e8f399c91d5e84
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 04:11:35 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 359
content-type: text/css
date: Thu, 22 Sep 2022 21:31:47 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
375756444a8871bbe816165e294fb262
2f9e18473daa3daae633a4df448a2230e77f8c33
c2e94c3082cb76fad8f5ace3c686f46d43c807b7f2d3cb9f2b4d9965b91af4c2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 21:31:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtm.js?id=GTM-5FQFWZZ

142.250.74.72

200 OK

104 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-5FQFWZZ
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
Unicode text, UTF-8 text, with very long lines (49345)
Size
104 kB (104301 bytes)
Hash
7468eff5b199f8f86fab59502a938d89
d6b582b26d2cd22d8bea81627647200babfc42b6
024156a1eb73d946eb88ad2991b6533181a0a59d224603a36152c865d18ff5a2

HTTP Headers

GET /gtm.js?id=GTM-5FQFWZZ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickforcontent.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 22 Sep 2022 21:31:48 GMT
expires: Thu, 22 Sep 2022 21:31:48 GMT
cache-control: private, max-age=900
last-modified: Thu, 22 Sep 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 104301
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
375756444a8871bbe816165e294fb262
2f9e18473daa3daae633a4df448a2230e77f8c33
c2e94c3082cb76fad8f5ace3c686f46d43c807b7f2d3cb9f2b4d9965b91af4c2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 21:31:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.sca1b.amazontrust.com/

54.230.245.118

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.118:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
dc95f214ceafd1da00ef18a70fa029bf
663782e3ab6cc44f0be76d1af18e0273572d2020
79f860c623c7c49cc70202c470a4349534301cc35791b74270d9b9af7c9afef4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 22 Sep 2022 21:31:48 GMT
Last-Modified: Thu, 22 Sep 2022 20:48:28 GMT
Server: ECS (dcb/7F5F)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: NnIHGZeCnLKQYkCfLyWFOry-kHb4yENET9uyEv7VgPrIpx2zOHFczQ==
Age: 2600

push.services.mozilla.com/

44.238.202.79

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.238.202.79:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: mC7h9HFziCWhRZZVcBlq9w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 9oKJxBC+E4AmtY+MIpKUSn3NOCE=

www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/bullet_arrow_top.png

162.241.194.161

200 OK

170 B

URL HTTP/2
www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/bullet_arrow_top.png
IP
162.241.194.161:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 9 x 9, 8-bit/color RGBA, non-interlaced\012- data
Size
170 B (170 bytes)
Hash
1ef2d9ad1765b6134febc2d696ce0976
3a5eb23ea8d32c103ccf951837b2ac2f5f61fb9c
9a5c1c7d2aa5626a759eecc3402cae440dd07cb971142d51bbc5adb743923896

HTTP Headers

GET /wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/bullet_arrow_top.png HTTP/1.1
Host: www.clickforcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/
Cookie: PHPSESSID=9d3be07bd30328cf02e8f399c91d5e84
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 04:11:35 GMT
accept-ranges: bytes
content-length: 170
content-type: image/png
date: Thu, 22 Sep 2022 21:31:48 GMT
server: Apache
X-Firefox-Spdy: h2

www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/icon_comment.png

162.241.194.161

200 OK

1.7 kB

URL HTTP/2
www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/icon_comment.png
IP
162.241.194.161:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 23 x 25, 8-bit/color RGB, non-interlaced\012- data
Size
1.7 kB (1749 bytes)
Hash
7eebe59a91352e88ddc8bdeb33351192
5d20632f19f4fbe1e35b3db32735bca97dda7e8b
0923b154b710ec5c80a8477ab7617e0620ac9da66937bf9e8e2780fe0556860b

HTTP Headers

GET /wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/icon_comment.png HTTP/1.1
Host: www.clickforcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/
Cookie: PHPSESSID=9d3be07bd30328cf02e8f399c91d5e84
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 04:11:35 GMT
accept-ranges: bytes
content-length: 1749
content-type: image/png
date: Thu, 22 Sep 2022 21:31:48 GMT
server: Apache
X-Firefox-Spdy: h2

www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/ci.gif

162.241.194.161

200 OK

2.9 kB

URL HTTP/2
www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/ci.gif
IP
162.241.194.161:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
GIF image data, version 89a, 122 x 33\012- data
Size
2.9 kB (2872 bytes)
Hash
ac3d42802042a690adf5328a0cc8e239
7616199e2d188a271d6e4cd13ea4e37db7febc42
7be78c98a5f6c37f9eb313cfc3c07b1c525807b1c0ac350e3b639413d63e0daa

HTTP Headers

GET /wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/ci.gif HTTP/1.1
Host: www.clickforcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/
Cookie: PHPSESSID=9d3be07bd30328cf02e8f399c91d5e84
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 04:11:35 GMT
accept-ranges: bytes
content-length: 2872
content-type: image/gif
date: Thu, 22 Sep 2022 21:31:48 GMT
server: Apache
X-Firefox-Spdy: h2

www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/js

162.241.194.161

200 OK

222 kB

URL HTTP/2
www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/js
IP
162.241.194.161:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (20993)
Size
222 kB (222304 bytes)
Hash
aa7b78f951f0a6bd2bfab7c7f5584d4e
0fd40025081ea03fc7bef5e5a04453ee358edd9a
489b80f26bdc7cb6f57e4d34cc5ece491943c1481e5fd2f65a7f67035f2bfddc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/js HTTP/1.1
Host: www.clickforcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/
Cookie: PHPSESSID=9d3be07bd30328cf02e8f399c91d5e84
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 22 Sep 2022 21:31:47 GMT
server: Apache
content-length: 222304
last-modified: Thu, 22 Sep 2022 04:11:35 GMT
accept-ranges: bytes
x-server-cache: false
X-Firefox-Spdy: h2

www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/empt.htm

162.241.194.161

200 OK

167 B

URL HTTP/2
www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/empt.htm
IP
162.241.194.161:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
167 B (167 bytes)
Hash
9fa32a0ec02cf0d013bc46c803112737
a0c784832cc7b4b92a7296260b77e99415401bde
8f623e90adae05768787b4e9bff1fd103a77b65e7a8a79a5aebda0a8a83ae1fb

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/empt.htm HTTP/1.1
Host: www.clickforcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/
Cookie: PHPSESSID=9d3be07bd30328cf02e8f399c91d5e84
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 22 Sep 2022 21:31:48 GMT
server: Apache
content-type: text/html
content-length: 167
last-modified: Thu, 22 Sep 2022 04:11:35 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-server-cache: false
X-Firefox-Spdy: h2

www.clickforcontent.com/IB/Images/SmartPhone/SP1.png

162.241.194.161

301 Moved Permanently

0 B

URL HTTP/2
www.clickforcontent.com/IB/Images/SmartPhone/SP1.png
IP
162.241.194.161:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /IB/Images/SmartPhone/SP1.png HTTP/1.1
Host: www.clickforcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/common.css
Cookie: PHPSESSID=9d3be07bd30328cf02e8f399c91d5e84
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 301 Moved Permanently
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: https://clickforcontent.com/IB/Images/SmartPhone/SP1.png
content-length: 0
content-type: text/html; charset=UTF-8
date: Thu, 22 Sep 2022 21:31:48 GMT
server: Apache
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2514
Expires: Thu, 22 Sep 2022 22:13:42 GMT
Date: Thu, 22 Sep 2022 21:31:48 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2514
Expires: Thu, 22 Sep 2022 22:13:42 GMT
Date: Thu, 22 Sep 2022 21:31:48 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2514
Expires: Thu, 22 Sep 2022 22:13:42 GMT
Date: Thu, 22 Sep 2022 21:31:48 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2514
Expires: Thu, 22 Sep 2022 22:13:42 GMT
Date: Thu, 22 Sep 2022 21:31:48 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2514
Expires: Thu, 22 Sep 2022 22:13:42 GMT
Date: Thu, 22 Sep 2022 21:31:48 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8678 bytes)
Hash
91c56f0b9810bfdd84e10a626b89e389
15d83e44d568938b6c9c87201e898cedb3edec0a
942de9764e1c408f7512759774aab0479db201e6fae15ccc39e653adae4cb86f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8678
x-amzn-requestid: c671a9ab-c5d0-4743-b13e-cc9a47e3d2fe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1F0vEThIAMFSwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b8351-17ed13811d3833ea00a34423;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hp-WIGb9M8tEmNGOVjx6UQKx9E4-1oJmka0a6seG7inahqYByPmRAg==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:34:22 GMT
age: 86246
etag: "15d83e44d568938b6c9c87201e898cedb3edec0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12048 bytes)
Hash
c2db94039cb675cb250519fe57b2b3c9
37222a70df5d9a69073b4b32ebc3a5da60006001
444f4359ac25747e7c5d7e09202f195d407bc94a4933ac7ebbbaf9839bf59aff

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12048
x-amzn-requestid: 59e98571-f927-44b3-b088-29ec1e4cc3bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYxD-FnIIAMF5Eg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202ee6-14e47d9a3ae47d0f607033a8;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:19:02 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 55e0txtcytlUpcNWSLrHWN3FC1t4dMHGTrHGhNV7YFIhOz6c45UcCQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 15:04:27 GMT
age: 23241
etag: "37222a70df5d9a69073b4b32ebc3a5da60006001"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd654e30-611f-4c64-b1ad-43ca9fdedc0e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (14397 bytes)
Hash
c0201d377c57a684452c0d26372e674d
3829f81048cc63b5f0d1e82dfbe3b8e31646e733
efa055dc93267be2dddd94b334c0655c2e1f1682467fd738e013a778aea175b9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd654e30-611f-4c64-b1ad-43ca9fdedc0e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 14397
x-amzn-requestid: c5a03ce8-f695-4ad3-8c42-c3bfd47d6279
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yv1wLGqKIAMF-Og=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6329699a-2b130d8b1a4b1b9131db8984;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 07:19:54 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: itH-GLLUay6dtfjGStUDeT3wOwVf-S3tWSY31HjriEFaRUiD8aFKNw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 17:06:02 GMT
age: 15946
etag: "3829f81048cc63b5f0d1e82dfbe3b8e31646e733"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2f739db-1c27-4929-8aff-997c0f66b2ed.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.7 kB (5650 bytes)
Hash
a5edcd9aee78a6cacc9241b47cbce598
f95b843029e84dbb188427a8c2ff8c9f32740465
6a56c3d0eb1d641e565d3d7d31b42be03bdad30beb20b994ffc9a6f2aaceee1e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2f739db-1c27-4929-8aff-997c0f66b2ed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5650
x-amzn-requestid: 41ceb886-c038-4ba0-9e3a-a27879cf48ce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1GwjFVjoAMFWNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b84d0-3f4f6a367c893c7a0669dffe;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:40:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: d8Kelwi2OY0jt17q80szh8-ErN3ZQM1hhl3HZeNQvlKijygQIJtNww==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 22:16:00 GMT
etag: "f95b843029e84dbb188427a8c2ff8c9f32740465"
content-type: image/jpeg
age: 83748
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0788498f-41db-4d62-b749-e01caddb7f8d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10754 bytes)
Hash
af5773255351157d72c28a670a355c60
c803e5866edbe6c9baec14e93677f610bdf09bff
3229b4aa1c698647ad96d114174782549ad240f1b2c4ba8c268165a16afc84f0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0788498f-41db-4d62-b749-e01caddb7f8d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10754
x-amzn-requestid: 2d03531d-6055-477f-9cb6-9ea9fa27eeb9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1F0vHJ4IAMF42Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b8351-692620e80d5b2efe1d0e3a82;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: -3bQG5Av1EDxj7_3i8MktwjlPSEU8WDdxt5M6TsrWaodLWgSf3vdEA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:34:22 GMT
age: 86246
etag: "c803e5866edbe6c9baec14e93677f610bdf09bff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb0692-30b9-4b69-a748-f7a4474a72e0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11286 bytes)
Hash
9becda6e892a190dbbc63216ae697506
ba3369e1827d8f01ca10acb8648195847dd02ffd
d71dd28e0ff260326ba0c30748fa11160f4544c2a264d3a3dc361af0de9fd283

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb0692-30b9-4b69-a748-f7a4474a72e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11286
x-amzn-requestid: 7263b60d-fffe-4c0b-8de5-59dc9ac92a47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1GwZHOaIAMFSQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b84cf-62e160b156b587cc21c7fda5;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:40:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: QxgrVMX7xwI6qE3T3-LRS3JWoJauPyvCSb9TacW9-ktw-BIq5PSF-g==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 22:16:03 GMT
etag: "ba3369e1827d8f01ca10acb8648195847dd02ffd"
content-type: image/jpeg
age: 83745
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

clickforcontent.com/IB/Images/SmartPhone/SP1.png

162.241.194.161

404 Not Found

18 kB

URL HTTP/2
clickforcontent.com/IB/Images/SmartPhone/SP1.png
IP
162.241.194.161:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8657), with CRLF, LF line terminators
Size
18 kB (17604 bytes)
Hash
16e79a0ac045ceb77592b3bbd9d68077
797323cbb4fa4f9ba001d4de9410307a7c5ac738
826a8586949f357a79ed3368b6184f1b869a1fc962b6ce8223ef6582adee35c6

HTTP Headers

GET /IB/Images/SmartPhone/SP1.png HTTP/1.1
Host: clickforcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.clickforcontent.com/
Connection: keep-alive
Cookie: _gcl_au=1.1.460667046.1663882308
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://clickforcontent.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
content-encoding: gzip
content-length: 17604
content-type: text/html; charset=UTF-8
date: Thu, 22 Sep 2022 21:31:48 GMT
server: Apache
X-Firefox-Spdy: h2

www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/tracker.js

162.241.194.161

200 OK

116 kB

URL HTTP/2
www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/tracker.js
IP
162.241.194.161:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
data
Size
116 kB (116472 bytes)
Hash
be39ecad9f516f4ed915532228311300
9127faeb1d04a2e18f239f5ad5ce242ee042eacd
1e7a0e3b6671113dc43d255d6a05e49d82097d4be73d6ea5afc114a764eb50df

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/tracker.js HTTP/1.1
Host: www.clickforcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/
Cookie: PHPSESSID=9d3be07bd30328cf02e8f399c91d5e84
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 04:11:35 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Thu, 22 Sep 2022 21:31:47 GMT
server: Apache
X-Firefox-Spdy: h2

www.google-analytics.com/g/collect?v=2&tid=G-HLL26LQ1WH&gtm=2oe970&_p=2110652895&cid=348200229.1663882308&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663882308&sct=1&seg=0&dl=https%3A%2F%2Fwww.clickforcontent.com%2Fwp-includes%2FText%2Ftab%2Fdab%2Fconect%2Fca364%2F&dt=%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88&en=scroll&_fv=1&_nsi=1&_ss=1&epn.percent_scrolled=90

142.250.74.174

204 No Content

0 B

URL HTTP/2
www.google-analytics.com/g/collect?v=2&tid=G-HLL26LQ1WH&gtm=2oe970&_p=2110652895&cid=348200229.1663882308&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663882308&sct=1&seg=0&dl=https%3A%2F%2Fwww.clickforcontent.com%2Fwp-includes%2FText%2Ftab%2Fdab%2Fconect%2Fca364%2F&dt=%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88&en=scroll&_fv=1&_nsi=1&_ss=1&epn.percent_scrolled=90
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-HLL26LQ1WH&gtm=2oe970&_p=2110652895&cid=348200229.1663882308&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663882308&sct=1&seg=0&dl=https%3A%2F%2Fwww.clickforcontent.com%2Fwp-includes%2FText%2Ftab%2Fdab%2Fconect%2Fca364%2F&dt=%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88&en=scroll&_fv=1&_nsi=1&_ss=1&epn.percent_scrolled=90 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.clickforcontent.com
Connection: keep-alive
Referer: https://www.clickforcontent.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.clickforcontent.com
date: Thu, 22 Sep 2022 21:31:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
3def314f443d8c1e0adbfe55bcc3effa
dfe7787592845a92f9bc014c388ef120aa4e2561
6859b727d64ddaaec2b85b0649212d7f9e49639a0de8685a1ac103e85c103546

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 21:31:49 GMT
Server: ECS (amb/6B8C)
Content-Length: 471

sb.resonabank.co.jp/IB/Images/SmartPhone/home.png

23.36.79.26

200 OK

3.5 kB

URL HTTP/2
sb.resonabank.co.jp/IB/Images/SmartPhone/home.png
IP
23.36.79.26:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Size
3.5 kB (3453 bytes)
Hash
288cc2518e6e5f07d6094ef29aebb119
14ab61f4240d82499a3807f6477b10274349d3f4
ef77512d33280ababb1456865c24cd504f2a05d22eb27e2c4aea7f0bad58cd4e

HTTP Headers

GET /IB/Images/SmartPhone/home.png HTTP/1.1
Host: sb.resonabank.co.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickforcontent.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/png
last-modified: Tue, 20 Dec 2011 08:30:00 GMT
accept-ranges: bytes
etag: "0f4b90f1becc1:0"
content-length: 3453
date: Thu, 22 Sep 2022 21:31:50 GMT
X-Firefox-Spdy: h2

www.resonacard.co.jp/favicon.ico

14.0.41.231

200 OK

318 B

URL HTTP/1.1
www.resonacard.co.jp/favicon.ico
IP
14.0.41.231:0
ASN
#54994 QUANTILNETWORKS

File type
MS Windows icon resource - 1 icon, 16x16, 16 colors\012- data
Size
318 B (318 bytes)
Hash
15cb18c4b4ba3e32f5a229d328f47911
f96ef91718ab997015fe5d7772ed80c285a405a3
72dee9206d303ed0273e3a1cd587deaf223f4d8e37e4ab438601d813a534872d

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.resonacard.co.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickforcontent.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 21:31:49 GMT
Content-Type: image/x-icon
Content-Length: 318
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
Last-Modified: Wed, 13 Sep 2017 03:40:49 GMT
ETag: "13e-55909ecfaf240"
Accept-Ranges: bytes
X-Content-Type-Options: nosniff
Age: 574
Via: 1.1 bd134:5 (W), 1.1 PSrbdbOSA1gs91:22 (W)
X-Px: ht PSrbdbOSA1gs91KIX
X-Ws-Request-Id: 632cd445_PSrbdbOSA1rw96_23442-51366
Server: PWS/8.3.1.0.8
Cache-Control: max-age=600

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dee9427-1c1b-4ddc-9f89-8c6e254bd0f1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8549 bytes)
Hash
62818de3c50f957b2e5680851a1768c9
80e48c9ae48c89598780736b089c98e22d58df9a
16f2c2d23e8641a3f297a175730343d11120a228c0fe846c0fdf1e39212c522c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dee9427-1c1b-4ddc-9f89-8c6e254bd0f1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 8549
x-amzn-requestid: 6d44626b-16c6-4f19-ae52-d5350065b390
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1GwPHJJoAMFdfA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b84ce-46ebc35612eb7a4473b36189;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:40:30 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: e5m6NaDUH_3GPDkxbk6iKhffSJzyYMA97Illy7mtg9um3jcYBR6TXQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 22:11:23 GMT
etag: "80e48c9ae48c89598780736b089c98e22d58df9a"
content-type: image/jpeg
age: 84032
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/gtm.js

162.241.194.161

200 OK

0 B

URL HTTP/2
www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/gtm.js
IP
162.241.194.161:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/gtm.js HTTP/1.1
Host: www.clickforcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/
Cookie: PHPSESSID=9d3be07bd30328cf02e8f399c91d5e84
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 04:11:35 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Thu, 22 Sep 2022 21:31:47 GMT
server: Apache
X-Firefox-Spdy: h2

www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/empt_data/build.js

162.241.194.161

200 OK

0 B

URL HTTP/2
www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/empt_data/build.js
IP
162.241.194.161:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/empt_data/build.js HTTP/1.1
Host: www.clickforcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/empt.htm
Cookie: PHPSESSID=9d3be07bd30328cf02e8f399c91d5e84; _gcl_au=1.1.460667046.1663882308
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 04:11:35 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Thu, 22 Sep 2022 21:31:48 GMT
server: Apache
X-Firefox-Spdy: h2

static.karte.io/libs/tracker.js

143.204.55.104

200 OK

0 B

URL HTTP/2
static.karte.io/libs/tracker.js
IP
143.204.55.104:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /libs/tracker.js HTTP/1.1
Host: static.karte.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickforcontent.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 30 Aug 2022 04:23:36 GMT
server: AmazonS3
content-encoding: gzip
date: Thu, 22 Sep 2022 21:31:48 GMT
cache-control: max-age=300
etag: W/"fc69b59d6a74cacc75e414b21d0c341b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -5yaMk_fvRWsE-AtM_tpQiS3UbBIm0tAf1ADtgjtR6CXbkrBsPy07g==
age: 249
X-Firefox-Spdy: h2

www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/analytics.js

162.241.194.161

200 OK

0 B

URL HTTP/2
www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/analytics.js
IP
162.241.194.161:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/Text/tab/dab/conect/ca364/%E3%82%8A%E3%81%9D%E3%81%AA%E9%8A%80%E8%A1%8C%E3%80%80%E3%83%9E%E3%82%A4%E3%82%B2%E3%83%BC%E3%83%88_files/analytics.js HTTP/1.1
Host: www.clickforcontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.clickforcontent.com/wp-includes/Text/tab/dab/conect/ca364/
Cookie: PHPSESSID=9d3be07bd30328cf02e8f399c91d5e84
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 22 Sep 2022 04:11:35 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Thu, 22 Sep 2022 21:31:47 GMT
server: Apache
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (15)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations