r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 13f90146df1d559743af6df15c29b77b
6dd24f60629c39f857e3c996084f4d515cf3f8d0
ea5975be17b9cd29c8770939eb5d63ce43c1c44ce9a3a4d04e1e79cd69b30d1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EA5975BE17B9CD29C8770939EB5D63CE43C1C44CE9A3A4D04E1E79CD69B30D1C"
Last-Modified: Fri, 24 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9533
Expires: Mon, 27 Mar 2023 04:01:07 GMT
Date: Mon, 27 Mar 2023 01:22:14 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 5d9435c884bf4a0777fdf4b57079ae09
7f04b9db47ffeec90ac6397416b7553e5336a550
fe77420ec3a11f547cf5172b68d30faa4fe0c13165ae305f0013b02914e61084
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE77420EC3A11F547CF5172B68D30FAA4FE0C13165AE305F0013B02914E61084"
Last-Modified: Sat, 25 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17013
Expires: Mon, 27 Mar 2023 06:05:47 GMT
Date: Mon, 27 Mar 2023 01:22:14 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Alert, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 27 Mar 2023 01:15:39 GMT
content-type: application/json
age: 395
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1313ee2f06606d09c45b06ff9e8e1001
285ca89d1d3ea45d35832bc6d9827f834b3bfe21
63463447d29550c3734f621be02ec85290fbdf4612f79f9fad7e94f7e066dcb0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63463447D29550C3734F621BE02EC85290FBDF4612F79F9FAD7E94F7E066DCB0"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4918
Expires: Mon, 27 Mar 2023 02:44:12 GMT
Date: Mon, 27 Mar 2023 01:22:14 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: kq24XSKhQzTa225ZD9bD4/47OQXiPOkSuUrZ7fvVxl5wVkKJSwd/+aa1+50/6JVluRHBTE/jQhXTl0O7PoYB6g==
x-amz-request-id: 11N0HHARFE141ASW
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 27 Mar 2023 01:01:27 GMT
age: 1247
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 27 Mar 2023 01:22:14 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/img_logo-veterans-1d62888b4b662af9142e3c385f423f32.svg
89.108.75.147200 OK 22 kB URL HTTP/2 xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/img_logo-veterans-1d62888b4b662af9142e3c385f423f32.svg
IP 89.108.75.147:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2618), with CRLF line terminators
Hash e9412a7e111241810e74c5cf267fb64a
cae22fc983a55384e31ad2a4e43f812bc68efbfc
3e700f9ff93a023fcaee00daeb83062c9492803afc78643532d41d369133f991
Analyzer Verdict Alert urlquery phishing Phishing - Navy Federal Credit Union
GET /fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/img_logo-veterans-1d62888b4b662af9142e3c385f423f32.svg HTTP/1.1
Host: xn--b1ahyajdcee.xn--p1ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Mon, 27 Mar 2023 01:22:14 GMT
content-type: image/svg+xml
content-length: 21962
last-modified: Wed, 04 Nov 2020 10:16:24 GMT
etag: "5fa27f78-55ca"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/f67c327263eti209967cda713cd843baa
89.108.75.147200 OK 72 kB URL HTTP/2 xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/f67c327263eti209967cda713cd843baa
IP 89.108.75.147:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type ASCII text, with very long lines (65536), with no line terminators
Hash 335f2776eaf4ca7eca9953d2240c3316
5f5702f072d8e721dd3557ccd2a0944b3cc58fa5
ca9ee108c9cd3072864c1fcfe42f8fa40f829a33267388e0adbf41fa8b2da9a5
Analyzer Verdict Alert urlquery phishing Phishing - Navy Federal Credit Union
GET /fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/f67c327263eti209967cda713cd843baa HTTP/1.1
Host: xn--b1ahyajdcee.xn--p1ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/
Cookie: s_fid=79D393B7B120C5AD-1556B735FB6669D1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Mon, 27 Mar 2023 01:22:14 GMT
content-length: 72012
last-modified: Wed, 04 Nov 2020 10:16:24 GMT
etag: "1194c-5b3454584ce00"
accept-ranges: bytes
x-content-type-options: nosniff
strict-transport-security: max-age=31536000;
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash a3242c27d5e1454c4ed0224a21b99fde
d14f94d30b766f1e11284fb333529903e116718c
e9f38284fdd9e5d9c19f16fe29db0d58bc68bd71c35aebfbcb80580417feefae
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E9F38284FDD9E5D9C19F16FE29DB0D58BC68BD71C35AEBFBCB80580417FEEFAE"
Last-Modified: Sun, 26 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10147
Expires: Mon, 27 Mar 2023 04:11:21 GMT
Date: Mon, 27 Mar 2023 01:22:14 GMT
Connection: keep-alive
xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/f67c327263eti209967cda713cd843baa
89.108.75.147200 OK 31 kB URL HTTP/2 xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/f67c327263eti209967cda713cd843baa
IP 89.108.75.147:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash b53ad98d0a4a922b4c8687b312790277
c23871cc2c8cffc05f3f2a0954368cc37818d529
02a3ac6df52193c3c34593783961198c755c198169ed75b90286293688b37e5a
GET /fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/f67c327263eti209967cda713cd843baa HTTP/1.1
Host: xn--b1ahyajdcee.xn--p1ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Mon, 27 Mar 2023 01:22:14 GMT
content-length: 72012
last-modified: Wed, 04 Nov 2020 10:16:24 GMT
etag: "1194c-5b3454584ce00"
accept-ranges: bytes
x-content-type-options: nosniff
strict-transport-security: max-age=31536000;
X-Firefox-Spdy: h2
xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/jquery-ec401aee041a200e3dd94ec7982f0f2f.js
89.108.75.147200 OK 88 kB URL HTTP/2 xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/jquery-ec401aee041a200e3dd94ec7982f0f2f.js
IP 89.108.75.147:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash a351dcaea3fb624364774b27668e0bbb
27292f52240b17bbc23aac743a125f36cd55f3d9
c3aa8f0c1fcfa4288e6a6814d693716ffcc20fd4fb0ec86ec4bfb37d991309fe
GET /fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/jquery-ec401aee041a200e3dd94ec7982f0f2f.js HTTP/1.1
Host: xn--b1ahyajdcee.xn--p1ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Mon, 27 Mar 2023 01:22:14 GMT
content-type: application/javascript; charset=WINDOWS-1251
last-modified: Wed, 04 Nov 2020 07:57:42 GMT
etag: W/"5fa25ef6-48e06"
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v14/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v14/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 16112, version 1.0\012- data
Hash 899c8f78ce650d4009d42443897aa723
d2e2faa9780b7fca5a5cb20a853dd7df55b3101e
a9950fa5ca9cf47072770900d259bcf6778aa1119652d2e706d5eb92df254199
GET /s/sourcesanspro/v14/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://xn--b1ahyajdcee.xn--p1ai
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16112
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:29:23 GMT
expires: Sat, 23 Mar 2024 10:29:23 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 15 Sep 2020 18:10:09 GMT
content-type: font/woff2
age: 226371
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v14/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v14/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15948, version 1.0\012- data
Hash c85615b296302af51e683eecb5e371d4
ff7c20b0947804c607759aa46eab666d94cf12ea
efb3cdc5e4582fd67dffab6fc6e5062074ce3f8c51747346af944e97749dc309
GET /s/sourcesanspro/v14/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://xn--b1ahyajdcee.xn--p1ai
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15948
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:29:23 GMT
expires: Sat, 23 Mar 2024 10:29:23 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 15 Sep 2020 18:10:32 GMT
content-type: font/woff2
age: 226371
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash a718931229594cf5d236f9d52a16173c
a1de6b41aa73d4715e77bdf810904226694e3733
de59b32295e62ffb3f870bd76df71c0c7c8e1b7c1535d4828fafcb2313dd3e8e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1320
Cache-Control: max-age=170352
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 01:22:15 GMT
Etag: "6420e10f-1d7"
Expires: Wed, 29 Mar 2023 00:41:27 GMT
Last-Modified: Mon, 27 Mar 2023 00:19:27 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash a718931229594cf5d236f9d52a16173c
a1de6b41aa73d4715e77bdf810904226694e3733
de59b32295e62ffb3f870bd76df71c0c7c8e1b7c1535d4828fafcb2313dd3e8e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1818
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 01:22:15 GMT
Last-Modified: Mon, 27 Mar 2023 00:51:57 GMT
Server: ECAcc (ska/F775)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash a718931229594cf5d236f9d52a16173c
a1de6b41aa73d4715e77bdf810904226694e3733
de59b32295e62ffb3f870bd76df71c0c7c8e1b7c1535d4828fafcb2313dd3e8e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1818
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 01:22:15 GMT
Last-Modified: Mon, 27 Mar 2023 00:51:57 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Last-Modified, Content-Length, Pragma, Expires, ETag, Backoff, Alert, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 27 Mar 2023 01:17:24 GMT
age: 291
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 9f118fb224d6a3feb68bb7296958d8fe
7ccaa3d7e3b47dec93f7ddb398615bd71227b26e
2f70628100003ab47f5fb5622f8951ec8f4bad4b88cc3c083983a5c31356b429
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 01:22:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/s_code.js
89.108.75.147200 OK 18 kB URL HTTP/2 xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/s_code.js
IP 89.108.75.147:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type ASCII text, with very long lines (954)
Hash 09d4cb5a906c684ea650a10ffb8138ca
c7806d0526a03e35ed9a7fdedb0a4163b17ed83f
13d7a7afaddc426455bb01f7539391fa30ecdf52426e806654a1af7d8f8932dc
GET /fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/s_code.js HTTP/1.1
Host: xn--b1ahyajdcee.xn--p1ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Mon, 27 Mar 2023 01:22:14 GMT
content-type: application/javascript; charset=WINDOWS-1251
last-modified: Wed, 04 Nov 2020 07:57:42 GMT
etag: W/"5fa25ef6-b8fe"
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/nauth-599150400912c8247ee1872211972b2a.css
89.108.75.147200 OK 1.9 kB URL HTTP/2 xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/nauth-599150400912c8247ee1872211972b2a.css
IP 89.108.75.147:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash f8c37b55ec2c3b31709d95f2753fa2b7
11b20f1878a7717e254967240b72851a5ab942f7
12119537500f3f5f42da759dbc29578f4f67e48b4a1a3a3cfcb4a23acf62bbc7
GET /fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/nauth-599150400912c8247ee1872211972b2a.css HTTP/1.1
Host: xn--b1ahyajdcee.xn--p1ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Mon, 27 Mar 2023 01:22:14 GMT
content-type: text/css
last-modified: Wed, 04 Nov 2020 10:16:22 GMT
etag: W/"5fa27f76-1208"
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
my.navyfederal.org/NFOAA_Auth/resources/images/Group5166-1d62888b4b662af9142e3c385f423f32.svg
104.88.20.141404 Not Found 1.0 kB URL HTTP/1.1 my.navyfederal.org/NFOAA_Auth/resources/images/Group5166-1d62888b4b662af9142e3c385f423f32.svg
IP 104.88.20.141:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- C source text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 1536cc36842f2165300106001ee4b19a
d3bd2ed7be7778ebb3fef66672f216982e1d2e45
4ece4a1ee577bdbd46f9f55ee93ad77713bdd635c5a547e575f230fca329ae42
GET /NFOAA_Auth/resources/images/Group5166-1d62888b4b662af9142e3c385f423f32.svg HTTP/1.1
Host: my.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
X-Powered-By: Servlet/3.0
X-Frame-Options: DENY
$WSEP:
Last-Modified: Wed, 07 Sep 2022 21:50:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/html
Content-Language: en-US
Content-Length: 1018
Date: Mon, 27 Mar 2023 01:22:15 GMT
Connection: keep-alive
Set-Cookie: navyfed-opentoken=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-extracted=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-deviceprint=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-useractive=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-pingolb=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-obo=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
SMSESSION=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
acctsvcs_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=w; path=/; domain=.navyfederal.org; secure
akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=37~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=2a5364695ce9d6e7f4b70f3407c14232; path=/; Secure; SameSite=None; Domain=.navyfederal.org
akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=97~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=4176adbcf72a9de4f0df411add27eb1e; path=/; Secure; SameSite=None; Domain=.navyfederal.org
ak_bmsc=583544B98924E968C7BF8358E9453439~000000000000000000000000000000~YAAQPDIQYGI6mg2HAQAAL6SoIBP/RjE1tKhKglG+kCnh7+O7IxG4sfp7bcVY7hawJxYedlVUi6woFeByiTPIk4qy3SComFi/xzAx1xNiCR1H3oiwtKmDwdEU5o9S473kEScOB2SDo01ROrZHgFC9hUY1a0ENVvbI2wFDMk8xz9kwZvng1nKkDfX3FafUd0iYpLEbt1WY1TGD/2pUT9idn6aNZ/MkNT26W1N1if7wVdKrNmg1yvJuAbsMTAxCUvMs42oo/BHG6m0/ybMA/EfhzeuQgWn4p6yFjTtAwuJ912GXcih0UvMvHhnkXAw3SyBhqXCvVpC5se954SvCmkHqPnUsY5q/+KIMsraH6K3/V9L1iCHwW6Z4L7W+KtutgrfoqXjw/A==; Domain=.navyfederal.org; Path=/; Expires=Mon, 27 Mar 2023 03:22:15 GMT; Max-Age=7200; HttpOnly
Strict-Transport-Security: max-age=31536000
my.navyfederal.org/NFOAA_Auth/resources/images/Group5158-1d62888b4b662af9142e3c385f423f32.svg
104.88.20.141404 Not Found 1.0 kB URL HTTP/1.1 my.navyfederal.org/NFOAA_Auth/resources/images/Group5158-1d62888b4b662af9142e3c385f423f32.svg
IP 104.88.20.141:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- C source text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 1536cc36842f2165300106001ee4b19a
d3bd2ed7be7778ebb3fef66672f216982e1d2e45
4ece4a1ee577bdbd46f9f55ee93ad77713bdd635c5a547e575f230fca329ae42
GET /NFOAA_Auth/resources/images/Group5158-1d62888b4b662af9142e3c385f423f32.svg HTTP/1.1
Host: my.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
X-Powered-By: Servlet/3.0
X-Frame-Options: DENY
$WSEP:
Last-Modified: Wed, 07 Sep 2022 21:50:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/html
Content-Language: en-US
Content-Length: 1018
Date: Mon, 27 Mar 2023 01:22:15 GMT
Connection: keep-alive
Set-Cookie: navyfed-opentoken=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-extracted=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-deviceprint=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-useractive=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-pingolb=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-obo=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
SMSESSION=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
acctsvcs_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=w; path=/; domain=.navyfederal.org; secure
akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=44~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=4f9e91b16c5b82330be98b69c07a36ac; path=/; Secure; SameSite=None; Domain=.navyfederal.org
akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=20~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=461fe141f5e5ecfcc45ddd01bf3be3d4; path=/; Secure; SameSite=None; Domain=.navyfederal.org
ak_bmsc=D2CF97FC6CC481D044E7A1198A5B8E76~000000000000000000000000000000~YAAQPDIQYGM6mg2HAQAAaqSoIBN9Wrv4JyBgocPJZC7TgyyL1SARxh0k8KSr+rbIBswrPGInyv+ok8LSQtpOFsaCPD+9SIutyEPmy7SWqD+HEejLqYSVifYeqHTTu+Iq/vQOT9LT/mMr2XH0Jy+Uvub8h2WvP1LKXIS1L+uqkRD/f6CINdSOUtYH+368JQIDBTYndgTwwCBOv6hgIbQxmyNgcrQXUaPmFr2GLGafBegCkb1QhbQ9eUAgSaM2en8eOZuZ0LXz/p/LBQh5U/eg5kpHkyXyy76FNZCC05ZX8fg8fXUg024eGUTPfeoIZs1tl1Nuq2mpSJOZnzqjMbpFpGKQeq/3ELkdA3LhDHLOQ8+KNZYISoOvo985A1RVwB7DsfIYiw==; Domain=.navyfederal.org; Path=/; Expires=Mon, 27 Mar 2023 03:22:15 GMT; Max-Age=7200; HttpOnly
Strict-Transport-Security: max-age=31536000
xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
89.108.75.147200 OK 23 kB URL HTTP/2 xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
IP 89.108.75.147:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash ee36d12ace2ceeacffe969f97670ff0b
8435da2310b33822692b4f2ce1b3a9d29e5db4e8
c80d5e9bdc2b178b3068ac3042c72c8376f00d9ec00b7da33e828d0eec6e7922
GET /fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/responsivemain-599150400912c8247ee1872211972b2a.css HTTP/1.1
Host: xn--b1ahyajdcee.xn--p1ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Mon, 27 Mar 2023 01:22:14 GMT
content-type: text/css
last-modified: Wed, 04 Nov 2020 10:16:22 GMT
etag: W/"5fa27f76-21cdc"
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
my.navyfederal.org/NFOAA_Auth/resources/images/contact-us-1d62888b4b662af9142e3c385f423f32.svg
104.88.20.141404 Not Found 1.0 kB URL HTTP/1.1 my.navyfederal.org/NFOAA_Auth/resources/images/contact-us-1d62888b4b662af9142e3c385f423f32.svg
IP 104.88.20.141:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- C source text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 1536cc36842f2165300106001ee4b19a
d3bd2ed7be7778ebb3fef66672f216982e1d2e45
4ece4a1ee577bdbd46f9f55ee93ad77713bdd635c5a547e575f230fca329ae42
GET /NFOAA_Auth/resources/images/contact-us-1d62888b4b662af9142e3c385f423f32.svg HTTP/1.1
Host: my.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
X-Powered-By: Servlet/3.0
X-Frame-Options: DENY
$WSEP:
Last-Modified: Wed, 07 Sep 2022 21:50:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/html
Content-Language: en-US
Content-Length: 1018
Date: Mon, 27 Mar 2023 01:22:15 GMT
Connection: keep-alive
Set-Cookie: navyfed-opentoken=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-extracted=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-deviceprint=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-useractive=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-pingolb=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-obo=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
SMSESSION=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
acctsvcs_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=w; path=/; domain=.navyfederal.org; secure
akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=52~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=8ca471cff3bded222d912119d516feda; path=/; Secure; SameSite=None; Domain=.navyfederal.org
akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=20~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=461fe141f5e5ecfcc45ddd01bf3be3d4; path=/; Secure; SameSite=None; Domain=.navyfederal.org
ak_bmsc=57912E1B6849458FE28187984D62E6B0~000000000000000000000000000000~YAAQPDIQYGQ6mg2HAQAAd6SoIBMm1Gy/RNrt65CXUZuoN7/UVML7ecHpnWFSshZSKQlklIU+9ojCw9yRX1W7UQMVq6eXX4ibVWUFN009sEOnd2iw8sfKbxrV3GU91g4hD7JNk1XCiWHy2GmFCfkb3XRvDSxkJr2e99YFbzXBISJoWdndNz7Dr+pFTrys4keEpcv4E71a4AkJmsbrakwnxdnq2vgtJpBC51oD+yUyV9XEFqVzglR//NnOPZuHwZQ/tjusHLFy/PVG2rBzsWEkNDS0Y6YwURGl0mUiqNyW80sAnFhHBGUiKex9Xeu0p1vUUKzpVuvh+KY7H6kwoIoyCfVd5k/q4/8N9nT3LoKTb4RE4Qf5k01+2g7arrbANdJOhaEvpg==; Domain=.navyfederal.org; Path=/; Expires=Mon, 27 Mar 2023 03:22:15 GMT; Max-Age=7200; HttpOnly
Strict-Transport-Security: max-age=31536000
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash cf671b207de103ac0dd19a67840e95d2
0d78774261387f729fbad145cf482ce7c670d2fa
0147121e2373b4f2e4d292e8da55611187054b32b827cae4e580f6f4d798e4c9
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 01:22:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 24 Mar 2023 14:32:17 GMT
Expires: Fri, 31 Mar 2023 14:32:16 GMT
Etag: "0d78774261387f729fbad145cf482ce7c670d2fa"
Cache-Control: max-age=392400,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ae3d2407b81b527-OSL
rnemsg.navyfederal.org/ci/pta/logout
147.154.117.92302 Found 25 B URL HTTP/1.1 rnemsg.navyfederal.org/ci/pta/logout
IP 147.154.117.92:0
ASN #31898 ORACLE-BMC-31898
Hash 3f8372f15e761c5f9e4ed6515f744df3
81a6e71371d2a46f6116e045fce6feb258b2d9f3
61c08f21cca5983f6f115bd91b9cc97bd29ef835d1cabed197d79fa7e1e7bd76
GET /ci/pta/logout HTTP/1.1
Host: rnemsg.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Mon, 27 Mar 2023 01:22:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
F5_do_compression: yes
Content-Encoding: gzip
RNT-JN-Ext-Machine: 43.3
Strict-Transport-Security: max-age=31536000
Set-Cookie: cp_session=fUf2btbhbszeH~RSZ1qQW9Ke_pjdE51GcA10G~x~uLPe2eDc1wl~hQZHXpYBEEvvJ6ZzBCwG65HvsVk~MXD44bM~hEweIK_4oej4oWgiIql1M1Ukpgj4s6UlAkY2cupoqy4a_eABbgdT8K6Pow48a2xM9Px1BU5ZmE9dJEUgdTLwtl80TtsybCJqJKshYGqnkjgaiqfBm~hs300PLHEjeoAPtVxJybtRvxW~1LESppGSOx8dliQY4Yyg3k1lZwv7HkY0nYpu~unD6skFfnhqaFdHXhLDngPKxnPDkRhBs_T57BPddQHEkj8OyLp9FtV7JIF4YhWm9sL49uf6sQEAzPFzyCOHgXofXsY9bmiukNuJ23FOhZGHUb9J7NFYlpnvnGDzL_68WxhZiaoQ5Tv2r1dk2V~BGWRWaU_CUR2zazrAzzeZW2yaRF0px9CGcFn_DQi4c8s5qZ7~0fcxtHbTPXsigoJvHoTyYisuhxXDIsC8n~zo3FIgDlNQ!!; path=/; httponly; SameSite=None; Secure
cp_session=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
RNT-JN-Ext-UUID: 04e96a7e-8371-4b1d-99f9-b479d5223a8b
RNT-Time: D=120488 t=1679880135690159
Location: https://www.navyfederal.org/images/spacer.gif
RNT-Machine: 1.146
xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/le2-mtagconfig.js
89.108.75.147200 OK 20 kB URL HTTP/2 xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/le2-mtagconfig.js
IP 89.108.75.147:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash 48dabeff12d15a03d9cf6a30841e15a0
a700d0efa70b27afe2717d8146aa06ba832f12e8
ab2f1825b59025db7dcd8c176a82c12649afc95b365811abd42e5c71dbdea409
GET /fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/le2-mtagconfig.js HTTP/1.1
Host: xn--b1ahyajdcee.xn--p1ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Mon, 27 Mar 2023 01:22:14 GMT
content-type: application/javascript; charset=WINDOWS-1251
last-modified: Wed, 04 Nov 2020 07:57:42 GMT
etag: W/"5fa25ef6-4e30"
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
accdn.lpsnmedia.net/api/account/11478817/configuration/setting/accountproperties/?cb=lpCb83409x59849
178.249.97.99200 OK 3.2 kB URL HTTP/2 accdn.lpsnmedia.net/api/account/11478817/configuration/setting/accountproperties/?cb=lpCb83409x59849
IP 178.249.97.99:0
Hash 5b6f3bcea842def707e8acc0dbe93ea1
4a2fda3628baa7550056f361d2258639980436e3
153009df6da3484dd2ecc16d7b97b7172354df3d4c2f926548ba1b6b56d76b45
GET /api/account/11478817/configuration/setting/accountproperties/?cb=lpCb83409x59849 HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 27 Mar 2023 01:22:15 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:33|g:5c3663b2-db32-44ae-a3c6-d64c47ec1bc1; Max-Age=30; Expires=Mon, 27-Mar-2023 01:22:45 GMT; Path=/
ADRUM_BTa=R:33|g:5c3663b2-db32-44ae-a3c6-d64c47ec1bc1|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Mon, 27-Mar-2023 01:22:45 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Mon, 27-Mar-2023 01:22:45 GMT; Path=/; Secure
ADRUM_BT1=R:33|i:2241648; Max-Age=30; Expires=Mon, 27-Mar-2023 01:22:45 GMT; Path=/
ADRUM_BT1=R:33|i:2241648|e:7; Max-Age=30; Expires=Mon, 27-Mar-2023 01:22:45 GMT; Path=/
vary: Accept
expires: Mon, 27 Mar 2023 01:23:15 GMT
x-envoy-upstream-service-time: 0
x-envoy-decorator-operation: lp-accdn-app.default.svc.lokube01.int.liveperson.net:8080/*
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
accdn.lpsnmedia.net/api/account/11478817/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB
178.249.97.99200 OK 459 B URL HTTP/2 accdn.lpsnmedia.net/api/account/11478817/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB
IP 178.249.97.99:0
File type ASCII text, with very long lines (2289), with no line terminators
Hash 224a5d5db51574d71273ac6ab80e3b3e
78e195c695306a402b19be94b9d352b087a13099
7074a5fb5e7606d0451af094aa40c9c0d493611afe403db23dfffa6f8252c30d
GET /api/account/11478817/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 27 Mar 2023 01:22:15 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:33|g:61b65084-fe03-476f-ac37-a83cad50fbe2; Max-Age=30; Expires=Mon, 27-Mar-2023 01:22:45 GMT; Path=/
ADRUM_BTa=R:33|g:61b65084-fe03-476f-ac37-a83cad50fbe2|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Mon, 27-Mar-2023 01:22:45 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Mon, 27-Mar-2023 01:22:45 GMT; Path=/; Secure
ADRUM_BT1=R:33|i:2241648; Max-Age=30; Expires=Mon, 27-Mar-2023 01:22:45 GMT; Path=/
ADRUM_BT1=R:33|i:2241648|e:7; Max-Age=30; Expires=Mon, 27-Mar-2023 01:22:45 GMT; Path=/
vary: Accept
expires: Mon, 27 Mar 2023 01:23:15 GMT
x-envoy-upstream-service-time: 0
x-envoy-decorator-operation: lp-accdn-app.default.svc.lokube01.int.liveperson.net:8080/*
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 572ebd3eef38f7aeddc4dee235f016b2
098a6e7943f70c0b1a3faffed99c1f87fe831143
ee436a8615f9410c694bf232220222a8e63d980b1a33a03846cc94ea1c427403
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 01:22:16 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 25 Mar 2023 15:43:24 GMT
Expires: Sat, 01 Apr 2023 15:43:23 GMT
Etag: "098a6e7943f70c0b1a3faffed99c1f87fe831143"
Cache-Control: max-age=483066,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ae3d2421afa0b3d-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 572ebd3eef38f7aeddc4dee235f016b2
098a6e7943f70c0b1a3faffed99c1f87fe831143
ee436a8615f9410c694bf232220222a8e63d980b1a33a03846cc94ea1c427403
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 01:22:16 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 25 Mar 2023 15:43:24 GMT
Expires: Sat, 01 Apr 2023 15:43:23 GMT
Etag: "098a6e7943f70c0b1a3faffed99c1f87fe831143"
Cache-Control: max-age=483066,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ae3d2422c52b527-OSL
xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/fonts/sourcesanspro-semibold-webfont.woff
89.108.75.147404 Not Found 7.7 kB URL HTTP/2 xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/fonts/sourcesanspro-semibold-webfont.woff
IP 89.108.75.147:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash c55cf24e5c327a587a878d15af02a05e
aa24a35a2d9c9992413e3783d155588db0120e2b
aa07aebd13c5b11814bfd5ed78b53f5e4b5af43fbeaffdc19edb0ebeebcf9403
GET /fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/fonts/sourcesanspro-semibold-webfont.woff HTTP/1.1
Host: xn--b1ahyajdcee.xn--p1ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
Cookie: s_fid=79D393B7B120C5AD-1556B735FB6669D1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx/1.20.2
date: Mon, 27 Mar 2023 01:22:15 GMT
content-type: text/html; charset=Windows-1251
x-powered-by: PHP/7.4.28
x-content-type-options: nosniff
X-Firefox-Spdy: h2
my.navyfederal.org/NFOAA_Auth/resources/images/apple-touch-icon-72x72-precomposed-1d62888b4b662af9142e3c385f423f32.png
104.88.20.141404 Not Found 1.9 kB URL HTTP/1.1 my.navyfederal.org/NFOAA_Auth/resources/images/apple-touch-icon-72x72-precomposed-1d62888b4b662af9142e3c385f423f32.png
IP 104.88.20.141:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- C source text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 726ecf2df6a19b5a3c655e4941eb5135
1fdf86a26d04338d4f5394cc852a5c8387d95048
d3ba0f9d4c73e11ca995ac01df41b72c0ba60290454319cac7232e90c535a98e
GET /NFOAA_Auth/resources/images/apple-touch-icon-72x72-precomposed-1d62888b4b662af9142e3c385f423f32.png HTTP/1.1
Host: my.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/
Cookie: akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=20~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=461fe141f5e5ecfcc45ddd01bf3be3d4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
X-Powered-By: Servlet/3.0
X-Frame-Options: DENY
$WSEP:
Last-Modified: Wed, 07 Sep 2022 21:50:18 GMT
Content-Length: 1941
Content-Type: text/html
Content-Language: en-US
Date: Mon, 27 Mar 2023 01:22:16 GMT
Connection: keep-alive
Set-Cookie: navyfed-opentoken=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-extracted=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-deviceprint=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-useractive=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-pingolb=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-obo=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
SMSESSION=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
acctsvcs_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=w; path=/; domain=.navyfederal.org; secure
ak_bmsc=10015D79DD8EC03D8552E9B7E05A61B7~000000000000000000000000000000~YAAQPDIQYGU6mg2HAQAARKaoIBNlbckEO5ClHnXPHxEdwHtMbDGdVych20rtqP08aLBeBx1Ji28L8krvu0+YABh/YSjjUZnMV41S4esBafFJDS6UkNPAVp6XNvDfvjlxlYn2/3qWhK5iX+Ff2CKLOemsuzGo5RCQuD7B3LAc1QSZOQ+h68+h8uXLeNcv5hl0AXBMqF4pMw8c2a0s88El4K0eteYHFYokIUjwAWxYk9jOSKi7co1ppPXeNSP2uy+RQRe2d1sMMWbKhiAJGzzoBkLlZmlYreJViaHFscT6zBPz6LQeapCM9wfkZyepIyhKvTNv643vZdzvisnfAUIR+hgcRNzGOziLdKmNNXVUNDKfOnMPdanTVzqIpFiTn1PA8JGbuw==; Domain=.navyfederal.org; Path=/; Expires=Mon, 27 Mar 2023 03:22:15 GMT; Max-Age=7199; HttpOnly
Strict-Transport-Security: max-age=31536000
web.navyfederal.org/images/spacer.gif
104.110.18.91200 OK 43 B URL HTTP/2 web.navyfederal.org/images/spacer.gif
IP 104.110.18.91:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /images/spacer.gif HTTP/1.1
Host: web.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://xn--b1ahyajdcee.xn--p1ai/
Connection: keep-alive
Cookie: akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=20~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=461fe141f5e5ecfcc45ddd01bf3be3d4
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "2b-4de29390cacc0"
last-modified: Thu, 23 Mar 2023 04:11:00 GMT
server: Akamai Image Manager
content-length: 43
content-type: image/gif
cache-control: private, no-transform, max-age=66715
expires: Mon, 27 Mar 2023 19:54:11 GMT
date: Mon, 27 Mar 2023 01:22:16 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8952
Expires: Mon, 27 Mar 2023 03:51:28 GMT
Date: Mon, 27 Mar 2023 01:22:16 GMT
Connection: keep-alive
xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/modal-ec401aee041a200e3dd94ec7982f0f2f.js
89.108.75.147200 OK 3.2 kB URL HTTP/2 xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/modal-ec401aee041a200e3dd94ec7982f0f2f.js
IP 89.108.75.147:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash ae21bb78e5287f45e36b07537e4ad568
20e6c5bff65b4ac49ac57cc6439a37b3984bdbda
204eb70553f9bf40a37d321d9b6bb939bf64e8160b30770f1154b2088ee2d13d
GET /fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/modal-ec401aee041a200e3dd94ec7982f0f2f.js HTTP/1.1
Host: xn--b1ahyajdcee.xn--p1ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Mon, 27 Mar 2023 01:22:14 GMT
content-type: application/javascript; charset=WINDOWS-1251
last-modified: Wed, 04 Nov 2020 07:57:42 GMT
etag: W/"5fa25ef6-2823"
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8952
Expires: Mon, 27 Mar 2023 03:51:28 GMT
Date: Mon, 27 Mar 2023 01:22:16 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8952
Expires: Mon, 27 Mar 2023 03:51:28 GMT
Date: Mon, 27 Mar 2023 01:22:16 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d7b21f2-676f-4c51-b4dc-6a2a91111f85.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d7b21f2-676f-4c51-b4dc-6a2a91111f85.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b49b3235ad6ed6c8298bd2c57f29d60a
69db0c4055e9d5b00fc5316179ce50c2adfd7b28
87409358baa3fd963bd17987771d0046709f38797aadb18082a45cc1d815c8e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d7b21f2-676f-4c51-b4dc-6a2a91111f85.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10873
x-amzn-requestid: c12b388d-f1c9-4828-b9a5-a0bbe95c0bd5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CYIxhHaIIAMF9eA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641fee6f-41ba3d8131251f1e53e803e6;Sampled=0
x-amzn-remapped-date: Sun, 26 Mar 2023 07:04:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: nnul5a6-gJuK46BFYUqApgxTsyV3xED5myTYfRDYkfHyMNO0baHZbg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 7514e5e25722778fd4b1744d4ecc67e0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 26 Mar 2023 07:13:02 GMT
age: 65354
etag: "69db0c4055e9d5b00fc5316179ce50c2adfd7b28"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48af090e-bcf0-48ef-945a-a7c43705ebec.gif
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48af090e-bcf0-48ef-945a-a7c43705ebec.gif
IP 34.120.237.76:0
File type GIF image data, version 89a, 296 x 148\012- data
Hash 4f22df3b9748df65eb07542a76cda717
ff09f8dddd82a1137e92170fedb37b61c167e47a
f1fa4e623c3193688b4c45b3c910aabac044ee324539cffdfaadd6e484d6fb22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48af090e-bcf0-48ef-945a-a7c43705ebec.gif HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9490
x-amzn-requestid: ece83816-1754-47e5-9dcb-2a313c2c95a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CU19zG5qIAMFevQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e9d24-2ffc6d6220f774793c81f84c;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 07:05:08 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: fRKNKH0APoL4MY5pRbFqA3kyTtk9UBG1grMrdaI2W5HBgJCfMqi0Yw==
via: 1.1 8591441a35c0af61913aec9af012bc38.cloudfront.net (CloudFront), 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 google
date: Sun, 26 Mar 2023 07:27:15 GMT
age: 64501
etag: "ff09f8dddd82a1137e92170fedb37b61c167e47a"
content-type: image/gif
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2fcfac9-c8d3-433b-bca1-fc4cc01b74e5.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2fcfac9-c8d3-433b-bca1-fc4cc01b74e5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8613d9a5ad5db82302da111c87e69854
3ebae7c6f761885b671f744ab3eced168eeaaacc
cda7548c1074a6511230502deefc18f387eb92b850d8f6cd950895a365eb9d85
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2fcfac9-c8d3-433b-bca1-fc4cc01b74e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7261
x-amzn-requestid: c4a9b3c7-2555-4727-9986-9b251e684bd8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CaIOHFTRIAMF0qA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6420ba5a-14b9f548565823bb76cbf1c3;Sampled=0
x-amzn-remapped-date: Sun, 26 Mar 2023 21:34:18 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: gxqEwiG77PNfekjEfngOspKeZrJh5Czup43-Y-sxnTrMasdtwMP3SA==
via: 1.1 773bf3616e85ce2b187fa78710a6beb2.cloudfront.net (CloudFront), 1.1 599f04a365a179d553682d476509c388.cloudfront.net (CloudFront), 1.1 google
date: Sun, 26 Mar 2023 21:49:30 GMT
age: 12766
etag: "3ebae7c6f761885b671f744ab3eced168eeaaacc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/img-BecomeAMember-1d62888b4b662af9142e3c385f423f32.jpg
89.108.75.147200 OK 5.6 kB URL HTTP/2 xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/img-BecomeAMember-1d62888b4b662af9142e3c385f423f32.jpg
IP 89.108.75.147:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c831201ad81f55c63c1b101ce854a810
0e9b952f6489f0a5f4862d3bea2fbe0ecdd379e5
c854489720d2ca4a95eef00addda0fcdaf481402d044df7725282654a97eb54a
GET /fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/img-BecomeAMember-1d62888b4b662af9142e3c385f423f32.jpg HTTP/1.1
Host: xn--b1ahyajdcee.xn--p1ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Mon, 27 Mar 2023 01:22:14 GMT
content-type: image/jpeg
content-length: 185745
last-modified: Wed, 04 Nov 2020 10:16:24 GMT
etag: "5fa27f78-2d591"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3902c68-f82d-4163-bbcb-30a1ffef1fd7.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3902c68-f82d-4163-bbcb-30a1ffef1fd7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d6145be978ae3da76ed15d9402993162
041dd0745024b40562f5a67c055f77a0ac9e6e19
4c6d618148f9b711be59b0482c4be13a96f822e3099abfb92b9922798725eb39
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3902c68-f82d-4163-bbcb-30a1ffef1fd7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9866
x-amzn-requestid: 975193f4-fed0-4a61-8397-dacc89f7f9e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CYKenEijIAMFgZQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641ff12a-356237957ea3f8fd048cda59;Sampled=0
x-amzn-remapped-date: Sun, 26 Mar 2023 07:15:54 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: KDtQ6kEuZM3XdW97CpH-3CzMBYOMakYnyE-ymJmyG7q60cWOpn0wAA==
via: 1.1 0a166b53605851fe961f5a2952e5a748.cloudfront.net (CloudFront), 1.1 d16c3f15bd14953a9d4109eaaa991de2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 26 Mar 2023 07:53:09 GMT
etag: "041dd0745024b40562f5a67c055f77a0ac9e6e19"
content-type: image/jpeg
age: 62947
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/api.js
89.108.75.147200 OK 11 kB URL HTTP/2 xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/api.js
IP 89.108.75.147:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash c21ca31402b7a31756ec5a75944f8b0b
419ad89b0bc13209a9ec227a05cde7faa941f327
4c8edbc036e800004f71624537eeee5c1f9b4f596c0560abfd4ace4bb5db3f42
GET /fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/api.js HTTP/1.1
Host: xn--b1ahyajdcee.xn--p1ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Mon, 27 Mar 2023 01:22:14 GMT
content-type: application/javascript; charset=WINDOWS-1251
last-modified: Wed, 04 Nov 2020 07:57:42 GMT
etag: W/"5fa25ef6-352"
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 74a5fc4ab665a589aea99cdb1edc5fc9
7c9fbcad53ddd3fc2d1595abb21808967f972faa
28f5ec4b5dbf7c7428e1b9be72a57ba9d7a42e7982de94f7d88106773d8e72fe
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6527
Cache-Control: max-age=115772
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 01:22:17 GMT
Etag: "641ff787-1d7"
Expires: Tue, 28 Mar 2023 09:31:49 GMT
Last-Modified: Sun, 26 Mar 2023 07:43:03 GMT
Server: ECAcc (amb/6AD5)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 1c2ade5296549e534606748a090bb80b
7b090d592a916b8062ff9669970e77b91f0cbc09
f3e2d8dbaac9e5bbb3117659663e4a9d67e7a39155a564f24efc507debc25c5a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 27 Mar 2023 01:22:18 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 20:21:11 GMT
Expires: Thu, 30 Mar 2023 20:21:10 GMT
Etag: "7b090d592a916b8062ff9669970e77b91f0cbc09"
Cache-Control: max-age=326931,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ae3d252da120b3d-OSL
xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/cookieGenerator-ec401aee041a200e3dd94ec7982f0f2f.js
89.108.75.147200 OK 0 B URL HTTP/2 xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/cookieGenerator-ec401aee041a200e3dd94ec7982f0f2f.js
IP 89.108.75.147:0
ASN #197695 Domain names registrar REG.RU, Ltd
GET /fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/cookieGenerator-ec401aee041a200e3dd94ec7982f0f2f.js HTTP/1.1
Host: xn--b1ahyajdcee.xn--p1ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Mon, 27 Mar 2023 01:22:14 GMT
content-type: application/javascript; charset=WINDOWS-1251
last-modified: Wed, 04 Nov 2020 07:57:42 GMT
etag: W/"5fa25ef6-95a"
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/a.js
89.108.75.147200 OK 0 B URL HTTP/2 xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/a.js
IP 89.108.75.147:0
ASN #197695 Domain names registrar REG.RU, Ltd
GET /fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/a.js HTTP/1.1
Host: xn--b1ahyajdcee.xn--p1ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Mon, 27 Mar 2023 01:22:14 GMT
content-type: application/javascript; charset=WINDOWS-1251
last-modified: Wed, 04 Nov 2020 07:57:42 GMT
etag: W/"5fa25ef6-4083f"
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/fonts/nfcu-icons.ttf
89.108.75.147404 Not Found 0 B URL HTTP/2 xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/fonts/nfcu-icons.ttf
IP 89.108.75.147:0
ASN #197695 Domain names registrar REG.RU, Ltd
GET /fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/fonts/nfcu-icons.ttf HTTP/1.1
Host: xn--b1ahyajdcee.xn--p1ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
Cookie: s_fid=79D393B7B120C5AD-1556B735FB6669D1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx/1.20.2
date: Mon, 27 Mar 2023 01:22:15 GMT
content-type: text/html; charset=Windows-1251
x-powered-by: PHP/7.4.28
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/css.css
89.108.75.147200 OK 0 B URL HTTP/2 xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/css.css
IP 89.108.75.147:0
ASN #197695 Domain names registrar REG.RU, Ltd
GET /fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/css.css HTTP/1.1
Host: xn--b1ahyajdcee.xn--p1ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Mon, 27 Mar 2023 01:22:14 GMT
content-type: text/css
last-modified: Wed, 04 Nov 2020 07:57:42 GMT
etag: W/"5fa25ef6-14d2"
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/common-ec401aee041a200e3dd94ec7982f0f2f.js
89.108.75.147200 OK 0 B URL HTTP/2 xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/common-ec401aee041a200e3dd94ec7982f0f2f.js
IP 89.108.75.147:0
ASN #197695 Domain names registrar REG.RU, Ltd
GET /fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/common-ec401aee041a200e3dd94ec7982f0f2f.js HTTP/1.1
Host: xn--b1ahyajdcee.xn--p1ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Mon, 27 Mar 2023 01:22:14 GMT
content-type: application/javascript; charset=WINDOWS-1251
last-modified: Wed, 04 Nov 2020 07:57:42 GMT
etag: W/"5fa25ef6-1d3c"
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/images/css/bg_globe.png
89.108.75.147404 Not Found 0 B URL HTTP/2 xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/images/css/bg_globe.png
IP 89.108.75.147:0
ASN #197695 Domain names registrar REG.RU, Ltd
GET /fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/images/css/bg_globe.png HTTP/1.1
Host: xn--b1ahyajdcee.xn--p1ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
Cookie: s_fid=79D393B7B120C5AD-1556B735FB6669D1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx/1.20.2
date: Mon, 27 Mar 2023 01:22:14 GMT
content-type: text/html; charset=Windows-1251
x-powered-by: PHP/7.4.28
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
lptag.liveperson.net/lptag/api/account/11478817/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3
178.249.101.23200 OK 0 B URL HTTP/2 lptag.liveperson.net/lptag/api/account/11478817/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3
IP 178.249.101.23:0
GET /lptag/api/account/11478817/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 27 Mar 2023 01:22:16 GMT
content-type: application/x-javascript
cache-control: public, max-age=630
server: ws
strict-transport-security: max-age=63072000; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: HIT
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/dropdown-ec401aee041a200e3dd94ec7982f0f2f.js
89.108.75.147200 OK 0 B URL HTTP/2 xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/dropdown-ec401aee041a200e3dd94ec7982f0f2f.js
IP 89.108.75.147:0
ASN #197695 Domain names registrar REG.RU, Ltd
GET /fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/dropdown-ec401aee041a200e3dd94ec7982f0f2f.js HTTP/1.1
Host: xn--b1ahyajdcee.xn--p1ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Mon, 27 Mar 2023 01:22:14 GMT
content-type: application/javascript; charset=WINDOWS-1251
last-modified: Wed, 04 Nov 2020 07:57:42 GMT
etag: W/"5fa25ef6-132c"
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/bootstrap-select.js
89.108.75.147200 OK 0 B URL HTTP/2 xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/bootstrap-select.js
IP 89.108.75.147:0
ASN #197695 Domain names registrar REG.RU, Ltd
GET /fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/bootstrap-select.js HTTP/1.1
Host: xn--b1ahyajdcee.xn--p1ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Mon, 27 Mar 2023 01:22:14 GMT
content-type: application/javascript; charset=WINDOWS-1251
last-modified: Wed, 04 Nov 2020 07:57:42 GMT
etag: W/"5fa25ef6-7aba"
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/keypad-ec401aee041a200e3dd94ec7982f0f2f.js
89.108.75.147200 OK 0 B URL HTTP/2 xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/keypad-ec401aee041a200e3dd94ec7982f0f2f.js
IP 89.108.75.147:0
ASN #197695 Domain names registrar REG.RU, Ltd
GET /fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/keypad-ec401aee041a200e3dd94ec7982f0f2f.js HTTP/1.1
Host: xn--b1ahyajdcee.xn--p1ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Mon, 27 Mar 2023 01:22:14 GMT
content-type: application/javascript; charset=WINDOWS-1251
last-modified: Wed, 04 Nov 2020 07:57:42 GMT
etag: W/"5fa25ef6-cf2"
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/
89.108.75.147200 OK 0 B URL HTTP/2 xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/
IP 89.108.75.147:0
ASN #197695 Domain names registrar REG.RU, Ltd
Analyzer Verdict Alert openphish Navy Federal Credit Union
GET /fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/ HTTP/1.1
Host: xn--b1ahyajdcee.xn--p1ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx/1.20.2
date: Mon, 27 Mar 2023 01:22:14 GMT
content-type: text/html; charset=WINDOWS-1251
x-content-type-options: nosniff
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/nfcu-icons-599150400912c8247ee1872211972b2a.css
89.108.75.147200 OK 0 B URL HTTP/2 xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/nfcu-icons-599150400912c8247ee1872211972b2a.css
IP 89.108.75.147:0
ASN #197695 Domain names registrar REG.RU, Ltd
GET /fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/nfcu-icons-599150400912c8247ee1872211972b2a.css HTTP/1.1
Host: xn--b1ahyajdcee.xn--p1ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Mon, 27 Mar 2023 01:22:14 GMT
content-type: text/css
last-modified: Wed, 04 Nov 2020 10:16:22 GMT
etag: W/"5fa27f76-27eb"
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/fonts/sourcesanspro-semibold-webfont.woff2
89.108.75.147404 Not Found 0 B URL HTTP/2 xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/fonts/sourcesanspro-semibold-webfont.woff2
IP 89.108.75.147:0
ASN #197695 Domain names registrar REG.RU, Ltd
GET /fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/fonts/sourcesanspro-semibold-webfont.woff2 HTTP/1.1
Host: xn--b1ahyajdcee.xn--p1ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
Cookie: s_fid=79D393B7B120C5AD-1556B735FB6669D1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx/1.20.2
date: Mon, 27 Mar 2023 01:22:15 GMT
content-type: text/html; charset=Windows-1251
x-powered-by: PHP/7.4.28
x-content-type-options: nosniff
X-Firefox-Spdy: h2
liveengage.navyfederal.org/le_secure_storage/3.11.0.2-release_5036/storage.secure.min.html?loc=https%3A%2F%2Fxn--b1ahyajdcee.xn--p1ai&site=11478817&env=prod
178.249.97.98200 OK 0 B URL HTTP/2 liveengage.navyfederal.org/le_secure_storage/3.11.0.2-release_5036/storage.secure.min.html?loc=https%3A%2F%2Fxn--b1ahyajdcee.xn--p1ai&site=11478817&env=prod
IP 178.249.97.98:0
GET /le_secure_storage/3.11.0.2-release_5036/storage.secure.min.html?loc=https%3A%2F%2Fxn--b1ahyajdcee.xn--p1ai&site=11478817&env=prod HTTP/1.1
Host: liveengage.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/
Cookie: akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=20~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=461fe141f5e5ecfcc45ddd01bf3be3d4
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 27 Mar 2023 01:22:17 GMT
content-type: text/html
last-modified: Tue, 29 Sep 2020 18:27:10 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Tue, 26 Mar 2024 01:22:17 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: MISS
X-Firefox-Spdy: h2
xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/tag.js
89.108.75.147200 OK 0 B URL HTTP/2 xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/tag.js
IP 89.108.75.147:0
ASN #197695 Domain names registrar REG.RU, Ltd
GET /fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/tag.js HTTP/1.1
Host: xn--b1ahyajdcee.xn--p1ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Mon, 27 Mar 2023 01:22:14 GMT
content-type: application/javascript; charset=WINDOWS-1251
last-modified: Wed, 04 Nov 2020 07:57:42 GMT
etag: W/"5fa25ef6-5494"
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/fonts/sourcesanspro-semibold-webfont.ttf
89.108.75.147404 Not Found 0 B URL HTTP/2 xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/fonts/sourcesanspro-semibold-webfont.ttf
IP 89.108.75.147:0
ASN #197695 Domain names registrar REG.RU, Ltd
GET /fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/fonts/sourcesanspro-semibold-webfont.ttf HTTP/1.1
Host: xn--b1ahyajdcee.xn--p1ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
Cookie: s_fid=79D393B7B120C5AD-1556B735FB6669D1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx/1.20.2
date: Mon, 27 Mar 2023 01:22:15 GMT
content-type: text/html; charset=Windows-1251
x-powered-by: PHP/7.4.28
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/all-599150400912c8247ee1872211972b2a.css
89.108.75.147200 OK 0 B URL HTTP/2 xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/all-599150400912c8247ee1872211972b2a.css
IP 89.108.75.147:0
ASN #197695 Domain names registrar REG.RU, Ltd
GET /fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/all-599150400912c8247ee1872211972b2a.css HTTP/1.1
Host: xn--b1ahyajdcee.xn--p1ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Mon, 27 Mar 2023 01:22:14 GMT
content-type: text/css
last-modified: Wed, 04 Nov 2020 10:16:22 GMT
etag: W/"5fa27f76-c4cf"
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/recaptcha__en.js
89.108.75.147200 OK 0 B URL HTTP/2 xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/recaptcha__en.js
IP 89.108.75.147:0
ASN #197695 Domain names registrar REG.RU, Ltd
GET /fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/recaptcha__en.js HTTP/1.1
Host: xn--b1ahyajdcee.xn--p1ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Mon, 27 Mar 2023 01:22:14 GMT
content-type: application/javascript; charset=WINDOWS-1251
last-modified: Wed, 04 Nov 2020 07:57:42 GMT
etag: W/"5fa25ef6-55f9b"
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/login-ec401aee041a200e3dd94ec7982f0f2f.js
89.108.75.147200 OK 0 B URL HTTP/2 xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/login-ec401aee041a200e3dd94ec7982f0f2f.js
IP 89.108.75.147:0
ASN #197695 Domain names registrar REG.RU, Ltd
GET /fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/index_files/login-ec401aee041a200e3dd94ec7982f0f2f.js HTTP/1.1
Host: xn--b1ahyajdcee.xn--p1ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--b1ahyajdcee.xn--p1ai/fcgi/1-Drupal-portal-data_www.txt404/~pep/aHR0cHM6Ly9tYWlsLnlhaG9vLmNvbS8/arc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Mon, 27 Mar 2023 01:22:14 GMT
content-type: application/javascript; charset=WINDOWS-1251
last-modified: Wed, 04 Nov 2020 07:57:42 GMT
etag: W/"5fa25ef6-d4a"
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2