3nb4t.csb.app/
104.18.36.245301 Moved Permanently 169 B IP 104.18.36.245:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash bd6987d71fad7058a993a9028dc40454
3ed872fa3a00837bb008ad9d201850e2ea57a79f
f0e759f444eb3a324b621f0548919424455e81441d42ea6bc6bcd2b24fce1b92
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET / HTTP/1.1
Host: 3nb4t.csb.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 27 Oct 2022 00:54:32 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://3nb4t.csb.app/
Via: 1.1 google
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76077605cb3cb523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4c9ec202b798d350b6582220b7bb8457
d16ca24cd60b349231ad06fa5db32f54a3bc9e09
df036d315a613ac6396b77afb0a4ea5f793091786be0cbf3f3a0d043bc1d1d3c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF036D315A613AC6396B77AFB0A4EA5F793091786BE0CBF3F3A0D043BC1D1D3C"
Last-Modified: Wed, 26 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2896
Expires: Thu, 27 Oct 2022 01:42:48 GMT
Date: Thu, 27 Oct 2022 00:54:32 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 45bfdf3b823cd24564c8ac296a8b5b19
b0c442eb4f87556b3beb18ca8039dd4399b73f16
32113c679dda1f710ba67e537fdd0d435ccc186a238e3b14e48deb7b0700c693
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5521
Cache-Control: max-age=122911
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 00:54:32 GMT
Etag: "6358fe56-1d7"
Expires: Fri, 28 Oct 2022 11:03:03 GMT
Last-Modified: Wed, 26 Oct 2022 09:31:02 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8db408c487f7d35bba323046736e8d3a
01b91e2dce7c6d3de9adfe6ff4d38f9b24ab7db0
9aeafc72c1a969243e1fc96f68ce18888034a749ee70582208bf814bd40b61a5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9AEAFC72C1A969243E1FC96F68CE18888034A749EE70582208BF814BD40B61A5"
Last-Modified: Tue, 25 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2408
Expires: Thu, 27 Oct 2022 01:34:40 GMT
Date: Thu, 27 Oct 2022 00:54:32 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: M5NkITWCW23YiqugvD6E6+tfpdhdygj205LjUDcGF5sU2x/ydbqdhDsh+e9/JZIsTR45k1H1zr4=
x-amz-request-id: 4WKMBXC8FF42JD89
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 27 Oct 2022 00:39:24 GMT
age: 908
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 27 Oct 2022 00:54:32 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 587cad306767f2da2b8f5c25efd614bc
58e1142a66bfa15dcf0559b36d52438f756c7f9b
15a49ff10d262035547d05e141ebb65bbd6d2872652c1bb74f43380251b62930
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4302
Cache-Control: max-age=101501
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 00:54:33 GMT
Etag: "6358af78-117"
Expires: Fri, 28 Oct 2022 05:06:14 GMT
Last-Modified: Wed, 26 Oct 2022 03:54:32 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 587cad306767f2da2b8f5c25efd614bc
58e1142a66bfa15dcf0559b36d52438f756c7f9b
15a49ff10d262035547d05e141ebb65bbd6d2872652c1bb74f43380251b62930
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6579
Cache-Control: max-age=103778
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 00:54:33 GMT
Etag: "6358af78-117"
Expires: Fri, 28 Oct 2022 05:44:11 GMT
Last-Modified: Wed, 26 Oct 2022 03:54:32 GMT
Server: ECS (amb/6B88)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 587cad306767f2da2b8f5c25efd614bc
58e1142a66bfa15dcf0559b36d52438f756c7f9b
15a49ff10d262035547d05e141ebb65bbd6d2872652c1bb74f43380251b62930
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6579
Cache-Control: max-age=103778
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 00:54:33 GMT
Etag: "6358af78-117"
Expires: Fri, 28 Oct 2022 05:44:11 GMT
Last-Modified: Wed, 26 Oct 2022 03:54:32 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash dd283dfc036535bdeb8a8be1310ef930
d3b1c300dd75d7af630e0f3112e49d7492d66c17
578f9256faa188facb3f2d68b02b0c7fb2e30e02e2e74234d015429563cba7aa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3181
Cache-Control: max-age=115515
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 00:54:33 GMT
Etag: "6358ea97-1d7"
Expires: Fri, 28 Oct 2022 08:59:48 GMT
Last-Modified: Wed, 26 Oct 2022 08:06:47 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 625ad6aa33dda47097bff081ac75bf05
5f5bc1b567c8322e09f8f4fac2a542d063f83421
d9f85e2da8a3f517763eada5449029a0285aea770bb16be15de5a70d154f9565
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2449
Cache-Control: max-age=155481
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 00:54:33 GMT
Etag: "63598991-117"
Expires: Fri, 28 Oct 2022 20:05:54 GMT
Last-Modified: Wed, 26 Oct 2022 19:25:05 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 91b74d6ae217958f13ebc358f22f561d
3f77d30d7eaf3c53fc45594dbf932353b06c2873
9ec534d559ceb1575554743f2bc9ade643e5d5e5a7e32355699eee8cb67460d5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2347
Cache-Control: max-age=107154
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 00:54:33 GMT
Etag: "6358cd31-116"
Expires: Fri, 28 Oct 2022 06:40:27 GMT
Last-Modified: Wed, 26 Oct 2022 06:01:21 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 91b74d6ae217958f13ebc358f22f561d
3f77d30d7eaf3c53fc45594dbf932353b06c2873
9ec534d559ceb1575554743f2bc9ade643e5d5e5a7e32355699eee8cb67460d5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6249
Cache-Control: max-age=111057
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 00:54:33 GMT
Etag: "6358cd31-116"
Expires: Fri, 28 Oct 2022 07:45:30 GMT
Last-Modified: Wed, 26 Oct 2022 06:01:21 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 278
cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
104.17.24.14200 OK 6.2 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (19015)
Hash 7b4114faa411d059a9a5ac4b5b4d9dee
277da4486916fa3a4ab3375f47bc98f58dbf90f6
60b3528de2f7d48cbb335d19dddef756aaacc70f73d4254a2ef17978a14ca0d9
GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://3nb4t.csb.app
Connection: keep-alive
Referer: https://3nb4t.csb.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 00:54:33 GMT
content-type: application/javascript; charset=utf-8
content-length: 6157
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4af4"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4776498
expires: Tue, 17 Oct 2023 00:54:33 GMT
accept-ranges: bytes
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7607760e1db20b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.2.1.slim.min.js
69.16.175.10200 OK 24 kB URL HTTP/2 code.jquery.com/jquery-3.2.1.slim.min.js
IP 69.16.175.10:0
File type ASCII text, with very long lines (32012)
Hash 30f5157a965bc792a83e9bacfe265f03
8330886371fe27f3cbac509e0ac9712207574c66
4d12cab1f84ec2ac780bc8e0d865d9c61025be579c78d6532d76f0574d17fca0
GET /jquery-3.2.1.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://3nb4t.csb.app
Connection: keep-alive
Referer: https://3nb4t.csb.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 00:54:33 GMT
content-encoding: gzip
content-length: 23856
content-type: application/javascript; charset=utf-8
last-modified: Fri, 12 Aug 2022 13:47:02 GMT
accept-ranges: bytes
server: nginx
etag: W/"62f659d6-10fdd"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1666832073.dop230.sk1.t,1666832073.cds264.sk1.hn,1666832073.cds235.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f046e6113dd1e5e499c765516be08b17
c2253055e09b46209469853cad8720e64f84a1bf
18663a8f0b5d4d7581b771da6c2dc897bc2b82d51d7dac1a56d22f9bebab6fb3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 00:54:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bf9c6eab1de0a77a872f50cde08a65d9
ee9ce95af5fa9fcb4f7d62f4d86dde9cda1c6e49
a1cf27237b34e140177647ea5831fe772ea0c4e1e60927f39c6d8b7743d2489a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A1CF27237B34E140177647EA5831FE772EA0C4E1E60927F39C6D8B7743D2489A"
Last-Modified: Tue, 25 Oct 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1887
Expires: Thu, 27 Oct 2022 01:26:00 GMT
Date: Thu, 27 Oct 2022 00:54:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bf9c6eab1de0a77a872f50cde08a65d9
ee9ce95af5fa9fcb4f7d62f4d86dde9cda1c6e49
a1cf27237b34e140177647ea5831fe772ea0c4e1e60927f39c6d8b7743d2489a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A1CF27237B34E140177647EA5831FE772EA0C4E1E60927F39C6D8B7743D2489A"
Last-Modified: Tue, 25 Oct 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1886
Expires: Thu, 27 Oct 2022 01:26:00 GMT
Date: Thu, 27 Oct 2022 00:54:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bf9c6eab1de0a77a872f50cde08a65d9
ee9ce95af5fa9fcb4f7d62f4d86dde9cda1c6e49
a1cf27237b34e140177647ea5831fe772ea0c4e1e60927f39c6d8b7743d2489a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A1CF27237B34E140177647EA5831FE772EA0C4E1E60927F39C6D8B7743D2489A"
Last-Modified: Tue, 25 Oct 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1886
Expires: Thu, 27 Oct 2022 01:26:00 GMT
Date: Thu, 27 Oct 2022 00:54:34 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 91b74d6ae217958f13ebc358f22f561d
3f77d30d7eaf3c53fc45594dbf932353b06c2873
9ec534d559ceb1575554743f2bc9ade643e5d5e5a7e32355699eee8cb67460d5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6250
Cache-Control: max-age=111057
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 00:54:34 GMT
Etag: "6358cd31-116"
Expires: Fri, 28 Oct 2022 07:45:31 GMT
Last-Modified: Wed, 26 Oct 2022 06:01:21 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 625ad6aa33dda47097bff081ac75bf05
5f5bc1b567c8322e09f8f4fac2a542d063f83421
d9f85e2da8a3f517763eada5449029a0285aea770bb16be15de5a70d154f9565
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5932
Cache-Control: max-age=158963
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 00:54:34 GMT
Etag: "63598991-117"
Expires: Fri, 28 Oct 2022 21:03:57 GMT
Last-Modified: Wed, 26 Oct 2022 19:25:05 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 279
ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
142.250.74.170200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
IP 142.250.74.170:0
File type ASCII text, with very long lines (32065)
Hash 6d973c8b7e2439d958e09c0a1ab9fe50
05ae0830200c20b9a2dfd5a825adc400481a60fb
f3c122dc227e829ed96b2a754296809201bd78abbad7ba50ef5079654e1cc894
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3nb4t.csb.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 26 Oct 2022 21:02:09 GMT
expires: Thu, 26 Oct 2023 21:02:09 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 13945
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f046e6113dd1e5e499c765516be08b17
c2253055e09b46209469853cad8720e64f84a1bf
18663a8f0b5d4d7581b771da6c2dc897bc2b82d51d7dac1a56d22f9bebab6fb3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 27 Oct 2022 00:54:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
antispam.acecommunications.com.au/vendor/selectize/dist/js/standalone/selectize.min.js
130.117.251.9302 Found 0 B URL HTTP/1.1 antispam.acecommunications.com.au/vendor/selectize/dist/js/standalone/selectize.min.js
IP 130.117.251.9:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /vendor/selectize/dist/js/standalone/selectize.min.js HTTP/1.1
Host: antispam.acecommunications.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3nb4t.csb.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 27 Oct 2022 00:54:34 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=15552000
Set-Cookie: SESESSID=ti73784chrv6qn6s3da0mhp0ad; path=/; secure; HttpOnly; SameSite=None
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: /error/404
antispam.acecommunications.com.au/js/app/vendor-7c2a7b0cf66e60f660e0.bundle.js
130.117.251.9302 Found 0 B URL HTTP/1.1 antispam.acecommunications.com.au/js/app/vendor-7c2a7b0cf66e60f660e0.bundle.js
IP 130.117.251.9:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/app/vendor-7c2a7b0cf66e60f660e0.bundle.js HTTP/1.1
Host: antispam.acecommunications.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3nb4t.csb.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 27 Oct 2022 00:54:34 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=15552000
Set-Cookie: SESESSID=9pv2br8096r1c9jerq5atmueq2; path=/; secure; HttpOnly; SameSite=None
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: /error/404
antispam.acecommunications.com.au/js/qrcode.min.js
130.117.251.9200 OK 7.0 kB URL HTTP/1.1 antispam.acecommunications.com.au/js/qrcode.min.js
IP 130.117.251.9:0
File type ASCII text, with very long lines (19927), with no line terminators
Hash e65100bc77ebaa4633acc49ad8921b94
72a1ae82c07ad085049610dce1c232088fa5e61c
428598056b243d92c0316d72337238322c6ef5d6a70d564e056cb3eac9c0c1ab
GET /js/qrcode.min.js HTTP/1.1
Host: antispam.acecommunications.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3nb4t.csb.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 27 Oct 2022 00:54:34 GMT
Content-Type: application/javascript
Last-Modified: Tue, 18 Oct 2022 10:24:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"634e7ec2-4dd7"
Content-Encoding: gzip
antispam.acecommunications.com.au/styles/all.css?v=1566478358
130.117.251.9200 OK 33 kB URL HTTP/1.1 antispam.acecommunications.com.au/styles/all.css?v=1566478358
IP 130.117.251.9:0
File type ASCII text, with very long lines (65369)
Hash e2c5779d0fd5f6544cfa2b75e827ca66
31391daeb0db859eb9e4a0384e1d0dfdfb036232
e2c7cfe673b835f4c7998982eba4222839910ceaa0f6e23fb9bf7c084907c7fd
GET /styles/all.css?v=1566478358 HTTP/1.1
Host: antispam.acecommunications.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3nb4t.csb.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 27 Oct 2022 00:54:34 GMT
Content-Type: text/css
Last-Modified: Tue, 18 Oct 2022 10:24:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"634e7ecc-3584a"
Content-Encoding: gzip
push.services.mozilla.com/
44.237.51.86101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.237.51.86:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8zqgC+SWZpcxhPzcnopP8g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ojcmFPCKDec+QImuMAnIQaI2DvM=
ocsp.globalsign.com/ca/dhltlscai5
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/ca/dhltlscai5
IP 104.18.20.226:0
Hash bbe40f96c35ccd1d16482fc5abfa265e
d76153bd6354c6ee17853fa6ddcb1623581edbc8
164c633fddc5cc573094dd989d08db032c6a5f28e113ea3966e1ef29789daeeb
POST /ca/dhltlscai5 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 27 Oct 2022 00:54:34 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "96FB685DBF4D1BC7F704DDCF57725D7514840048"
Expires: Thu, 27 Oct 2022 12:00:00 GMT
Last-Modified: Thu, 27 Oct 2022 00:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7607760eac9e1bfe-OSL
antispam.acecommunications.com.au/js/app/runtime-680b171f7c2417738c07.js
130.117.251.9302 Found 0 B URL HTTP/1.1 antispam.acecommunications.com.au/js/app/runtime-680b171f7c2417738c07.js
IP 130.117.251.9:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/app/runtime-680b171f7c2417738c07.js HTTP/1.1
Host: antispam.acecommunications.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3nb4t.csb.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 27 Oct 2022 00:54:34 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=15552000
Set-Cookie: SESESSID=qdlo9soanuuvjrefbcmcj1b059; path=/; secure; HttpOnly; SameSite=None
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: /error/404
antispam.acecommunications.com.au/js/app/polyfills-3825c7ddd1b07222a17c.bundle.js
130.117.251.9302 Found 0 B URL HTTP/1.1 antispam.acecommunications.com.au/js/app/polyfills-3825c7ddd1b07222a17c.bundle.js
IP 130.117.251.9:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/app/polyfills-3825c7ddd1b07222a17c.bundle.js HTTP/1.1
Host: antispam.acecommunications.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3nb4t.csb.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 27 Oct 2022 00:54:34 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=15552000
Set-Cookie: SESESSID=ued8louhqidl8eolglgpk7s7ej; path=/; secure; HttpOnly; SameSite=None
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: /error/404
antispam.acecommunications.com.au/js/all.js?v=1595597002
130.117.251.9200 OK 133 kB URL HTTP/1.1 antispam.acecommunications.com.au/js/all.js?v=1595597002
IP 130.117.251.9:0
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size 133 kB (132879 bytes)
Hash 14e9bc771f1000b6a8eb0cf57ce729c5
050908449bf9e9d56ffe75f6450a54a5c3a72b1f
2f23ab2ad5fe5602e9f802aac873a40e5dc869c4e06919cb33c6702c0533a06a
GET /js/all.js?v=1595597002 HTTP/1.1
Host: antispam.acecommunications.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3nb4t.csb.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 27 Oct 2022 00:54:34 GMT
Content-Type: application/javascript
Last-Modified: Tue, 18 Oct 2022 10:24:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"634e7ecc-83866"
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13869
Expires: Thu, 27 Oct 2022 04:45:44 GMT
Date: Thu, 27 Oct 2022 00:54:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13869
Expires: Thu, 27 Oct 2022 04:45:44 GMT
Date: Thu, 27 Oct 2022 00:54:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13869
Expires: Thu, 27 Oct 2022 04:45:44 GMT
Date: Thu, 27 Oct 2022 00:54:35 GMT
Connection: keep-alive
stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js
104.18.11.207200 OK 15 kB URL HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js
IP 104.18.11.207:0
File type ASCII text, with very long lines (50758)
Hash 797183eba5eaa4fb40ff2dfdec87660a
ebfe430d0806e00e2c54d620de39622e2dcb1c71
56fd40718302d15e1aeab03c0c09c74ab5e266b77e44866b86ca29598c4905d2
GET /bootstrap/4.1.3/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3nb4t.csb.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 00:54:33 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 11/15/2021 23:30:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: a35b0179a28ed953258d0fb41376a09c
cdn-cache: HIT
cf-cache-status: HIT
age: 9875921
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7607760e28f3b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faedeaf71-ffea-4e66-9a25-1410acdb03ec.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faedeaf71-ffea-4e66-9a25-1410acdb03ec.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ace7660d2948795997e3c7cb9cf12495
fed9b6693077d233f60cc7394c7b667291ffade7
fd4718a6649572cbaf13f46b8e2961cd1c680afa1494b0bacd5fda9010a95098
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faedeaf71-ffea-4e66-9a25-1410acdb03ec.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5136
x-amzn-requestid: 0059b05c-746b-41cd-8cc1-c744d0b149fe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aoc2-H9sIAMFquA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359a82c-772120580c4cf9e45b685971;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 21:35:40 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: fqqRNgPgAZRwp_xRyHC3YzEKQTwydDs45MNLQC7hoRpytCb91-9b5Q==
via: 1.1 44cd593d82a2d200a94217033c614c6a.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 21:51:05 GMT
age: 11010
etag: "fed9b6693077d233f60cc7394c7b667291ffade7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe98a4c03-5fa3-4445-a037-d229b86c94a6.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe98a4c03-5fa3-4445-a037-d229b86c94a6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eb430e5efbc6c8c306fce87e26faf734
b05b7299a7e473e873510671a6abdd5227a53f46
c49d64e87ec8243a1ee7f214f21988b6f6a33ba93814ec31262d80e4a22b8504
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe98a4c03-5fa3-4445-a037-d229b86c94a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8936
x-amzn-requestid: d0698fc0-e4c9-4633-9b64-df09be35b450
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aocuiGBlIAMF-LQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359a7f6-7c78a1fc43552b934e6b8708;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 21:34:46 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gus8UKo03dRkfqPRhxnW6zzqx7o-2tZbbv-DsBSW7UREHPOA1uqdUw==
via: 1.1 5abfab33f248090bb0f31ca137ce9464.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 21:47:37 GMT
etag: "b05b7299a7e473e873510671a6abdd5227a53f46"
content-type: image/jpeg
age: 11218
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2013af8a-e057-44cd-8dca-381e200609e6.jpeg
34.120.237.76200 OK 18 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2013af8a-e057-44cd-8dca-381e200609e6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ed4462f023dbabb596a2e3b521425ca1
61b82445b422a5f917bb10640beb6d73eb0e62c3
a02af2897331acc123bf7d54b30929e3bc062a0875b5dea95302ddf60d808ded
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2013af8a-e057-44cd-8dca-381e200609e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 18182
x-amzn-requestid: f1232b1f-32ac-4820-b186-b3bfb928c0b4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aYvSKFF4oAMF2Wg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63535f40-0b9bc4d27b7534176cc278ed;Sampled=0
x-amzn-remapped-date: Sat, 22 Oct 2022 03:10:56 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 6Ep7Z_31m6kPwBoVaHyE2TioMdDmF_SkwT5kl326QvWN1pFEX_sy6Q==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 10:29:50 GMT
age: 51885
etag: "61b82445b422a5f917bb10640beb6d73eb0e62c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5a9dae4-226e-42f6-b38d-d6f3f560ed69.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5a9dae4-226e-42f6-b38d-d6f3f560ed69.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8240214ef7bc82b09de023cde217beb9
0f432e521fc4392f528042c711139dc0becc5598
2d5f1a426441536086c8278651808dc6e3e819ec18b48048520a4dedbc8a08ce
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5a9dae4-226e-42f6-b38d-d6f3f560ed69.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6806
x-amzn-requestid: bdf4f489-b474-4143-881f-521ad5dee74b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aocwUGb9oAMFRGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359a801-2a1e822f6b1dd3304c8f0527;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 21:34:57 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: oxLrpXYZuUBO5qEKrFYAkh3lx2ZE7Jph8tcq0b4dWIHxUODXP3FDDQ==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 21:47:49 GMT
etag: "0f432e521fc4392f528042c711139dc0becc5598"
content-type: image/jpeg
age: 11206
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
104.18.11.207200 OK 23 kB URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
IP 104.18.11.207:0
File type ASCII text, with very long lines (48664)
Hash 2698b52bee109399e159498822a321e4
e5a147e94d6153c3e26f4ccb68f050dbc55db98f
a84072201922f13a48922f19d6c608fd2060ef719825aaefea62aabd01f17550
GET /bootstrap/4.0.0/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://3nb4t.csb.app
Connection: keep-alive
Referer: https://3nb4t.csb.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 00:54:33 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"14d449eb8876fa55e1ef3c2cc52b0c17"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 08/20/2022 02:32:25
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 1a8c00406cecf54efb3525dd276587df
cdn-cache: HIT
cf-cache-status: HIT
age: 19640
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7607760e1b2cb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24d0f74b-ba69-4b8a-bd11-56fb0231d2b7.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24d0f74b-ba69-4b8a-bd11-56fb0231d2b7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 76b8756bea7b9c29285f6b604ec13a8e
0ddd9f80782a4bda5643be710b498f0fdc2c50db
7068a15f10288c3de5fea422b360b8f20989ac33af4481fb8e5a0f125486b3fb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24d0f74b-ba69-4b8a-bd11-56fb0231d2b7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9914
x-amzn-requestid: 3d0fb9c3-d606-497e-b196-6ac5ec846814
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aZRwIE1IoAMFYCw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63539667-34f866976ebb7efd2c4e868d;Sampled=0
x-amzn-remapped-date: Sat, 22 Oct 2022 07:06:15 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: apZ7KwORR0VbbnuY24PJJQ99-3BZdfWRqAOSHlOYxCAPPCwygrfzfw==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 12:31:05 GMT
age: 44610
etag: "0ddd9f80782a4bda5643be710b498f0fdc2c50db"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
antispam.acecommunications.com.au/error/404
130.117.251.9200 OK 5.9 kB URL HTTP/1.1 antispam.acecommunications.com.au/error/404
IP 130.117.251.9:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 883333383011f5ac6ae2cf1d5eced031
0802f1184d3f92fda0289358e339be97d69becd2
784175fa61e8791f1de8d5429ac623a505d137e8299f7b57252b1dd06b0d1efc
GET /error/404 HTTP/1.1
Host: antispam.acecommunications.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://3nb4t.csb.app/
Connection: keep-alive
Cookie: SESESSID=ti73784chrv6qn6s3da0mhp0ad
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 27 Oct 2022 00:54:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Strict-Transport-Security: max-age=15552000
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Security-Policy: default-src 'self' data:; script-src 'self' https://www.gstatic.com https://cdn.inspectlet.com https://browser.sentry-cdn.com 'unsafe-inline' 'unsafe-eval' https://app.pendo.io https://cdn.pendo.io https://pendo-static-6037198814314496.storage.googleapis.com https://pendo-static-6331158623420416.storage.googleapis.com https://pendo-io-static.storage.googleapis.com https://data.pendo.io https://app.eu.pendo.io https://cdn.eu.pendo.io https://pendo-eu-static-6037198814314496.storage.googleapis.com https://pendo-eu-static-6331158623420416.storage.googleapis.com https://pendo-eu-static.storage.googleapis.com https://data.eu.pendo.io; style-src 'self' https://www.gstatic.com https://fonts.googleapis.com 'unsafe-inline' https://app.pendo.io https://cdn.pendo.io https://pendo-static-6037198814314496.storage.googleapis.com https://pendo-static-6331158623420416.storage.googleapis.com https://app.eu.pendo.io https://cdn.eu.pendo.io https://pendo-eu-static-6037198814314496.storage.googleapis.com https://pendo-eu-static-6331158623420416.storage.googleapis.com blob:; connect-src 'self' http://hn.inspectlet.com wss://ws.inspectlet.com https://antispam.acecommunications.com.au https://sentry.io https://app.pendo.io https://pendo-static-6037198814314496.storage.googleapis.com https://pendo-static-6331158623420416.storage.googleapis.com https://data.pendo.io https://app.eu.pendo.io https://pendo-eu-static-6037198814314496.storage.googleapis.com https://pendo-eu-static-6331158623420416.storage.googleapis.com https://data.eu.pendo.io; img-src 'self' http://hn.inspectlet.com https://app.pendo.io https://cdn.pendo.io https://pendo-static-6037198814314496.storage.googleapis.com https://pendo-static-6331158623420416.storage.googleapis.com https://data.pendo.io https://app.eu.pendo.io https://cdn.eu.pendo.io https://pendo-eu-static-6037198814314496.storage.googleapis.com https://pendo-eu-static-6331158623420416.storage.googleapis.com https://data.eu.pendo.io data:; font-src 'self' https://fonts.gstatic.com;
Content-Encoding: gzip
antispam.acecommunications.com.au/error/404
130.117.251.9200 OK 5.9 kB URL HTTP/1.1 antispam.acecommunications.com.au/error/404
IP 130.117.251.9:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 883333383011f5ac6ae2cf1d5eced031
0802f1184d3f92fda0289358e339be97d69becd2
784175fa61e8791f1de8d5429ac623a505d137e8299f7b57252b1dd06b0d1efc
GET /error/404 HTTP/1.1
Host: antispam.acecommunications.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://3nb4t.csb.app/
Connection: keep-alive
Cookie: SESESSID=9pv2br8096r1c9jerq5atmueq2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 27 Oct 2022 00:54:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Strict-Transport-Security: max-age=15552000
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Security-Policy: default-src 'self' data:; script-src 'self' https://www.gstatic.com https://cdn.inspectlet.com https://browser.sentry-cdn.com 'unsafe-inline' 'unsafe-eval' https://app.pendo.io https://cdn.pendo.io https://pendo-static-6037198814314496.storage.googleapis.com https://pendo-static-6331158623420416.storage.googleapis.com https://pendo-io-static.storage.googleapis.com https://data.pendo.io https://app.eu.pendo.io https://cdn.eu.pendo.io https://pendo-eu-static-6037198814314496.storage.googleapis.com https://pendo-eu-static-6331158623420416.storage.googleapis.com https://pendo-eu-static.storage.googleapis.com https://data.eu.pendo.io; style-src 'self' https://www.gstatic.com https://fonts.googleapis.com 'unsafe-inline' https://app.pendo.io https://cdn.pendo.io https://pendo-static-6037198814314496.storage.googleapis.com https://pendo-static-6331158623420416.storage.googleapis.com https://app.eu.pendo.io https://cdn.eu.pendo.io https://pendo-eu-static-6037198814314496.storage.googleapis.com https://pendo-eu-static-6331158623420416.storage.googleapis.com blob:; connect-src 'self' http://hn.inspectlet.com wss://ws.inspectlet.com https://antispam.acecommunications.com.au https://sentry.io https://app.pendo.io https://pendo-static-6037198814314496.storage.googleapis.com https://pendo-static-6331158623420416.storage.googleapis.com https://data.pendo.io https://app.eu.pendo.io https://pendo-eu-static-6037198814314496.storage.googleapis.com https://pendo-eu-static-6331158623420416.storage.googleapis.com https://data.eu.pendo.io; img-src 'self' http://hn.inspectlet.com https://app.pendo.io https://cdn.pendo.io https://pendo-static-6037198814314496.storage.googleapis.com https://pendo-static-6331158623420416.storage.googleapis.com https://data.pendo.io https://app.eu.pendo.io https://cdn.eu.pendo.io https://pendo-eu-static-6037198814314496.storage.googleapis.com https://pendo-eu-static-6331158623420416.storage.googleapis.com https://data.eu.pendo.io data:; font-src 'self' https://fonts.gstatic.com;
Content-Encoding: gzip
antispam.acecommunications.com.au/error/404
130.117.251.9200 OK 5.9 kB URL HTTP/1.1 antispam.acecommunications.com.au/error/404
IP 130.117.251.9:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 883333383011f5ac6ae2cf1d5eced031
0802f1184d3f92fda0289358e339be97d69becd2
784175fa61e8791f1de8d5429ac623a505d137e8299f7b57252b1dd06b0d1efc
GET /error/404 HTTP/1.1
Host: antispam.acecommunications.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://3nb4t.csb.app/
Connection: keep-alive
Cookie: SESESSID=ued8louhqidl8eolglgpk7s7ej
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 27 Oct 2022 00:54:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Strict-Transport-Security: max-age=15552000
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Security-Policy: default-src 'self' data:; script-src 'self' https://www.gstatic.com https://cdn.inspectlet.com https://browser.sentry-cdn.com 'unsafe-inline' 'unsafe-eval' https://app.pendo.io https://cdn.pendo.io https://pendo-static-6037198814314496.storage.googleapis.com https://pendo-static-6331158623420416.storage.googleapis.com https://pendo-io-static.storage.googleapis.com https://data.pendo.io https://app.eu.pendo.io https://cdn.eu.pendo.io https://pendo-eu-static-6037198814314496.storage.googleapis.com https://pendo-eu-static-6331158623420416.storage.googleapis.com https://pendo-eu-static.storage.googleapis.com https://data.eu.pendo.io; style-src 'self' https://www.gstatic.com https://fonts.googleapis.com 'unsafe-inline' https://app.pendo.io https://cdn.pendo.io https://pendo-static-6037198814314496.storage.googleapis.com https://pendo-static-6331158623420416.storage.googleapis.com https://app.eu.pendo.io https://cdn.eu.pendo.io https://pendo-eu-static-6037198814314496.storage.googleapis.com https://pendo-eu-static-6331158623420416.storage.googleapis.com blob:; connect-src 'self' http://hn.inspectlet.com wss://ws.inspectlet.com https://antispam.acecommunications.com.au https://sentry.io https://app.pendo.io https://pendo-static-6037198814314496.storage.googleapis.com https://pendo-static-6331158623420416.storage.googleapis.com https://data.pendo.io https://app.eu.pendo.io https://pendo-eu-static-6037198814314496.storage.googleapis.com https://pendo-eu-static-6331158623420416.storage.googleapis.com https://data.eu.pendo.io; img-src 'self' http://hn.inspectlet.com https://app.pendo.io https://cdn.pendo.io https://pendo-static-6037198814314496.storage.googleapis.com https://pendo-static-6331158623420416.storage.googleapis.com https://data.pendo.io https://app.eu.pendo.io https://cdn.eu.pendo.io https://pendo-eu-static-6037198814314496.storage.googleapis.com https://pendo-eu-static-6331158623420416.storage.googleapis.com https://data.eu.pendo.io data:; font-src 'self' https://fonts.gstatic.com;
Content-Encoding: gzip
antispam.acecommunications.com.au/error/404
130.117.251.9200 OK 5.9 kB URL HTTP/1.1 antispam.acecommunications.com.au/error/404
IP 130.117.251.9:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 883333383011f5ac6ae2cf1d5eced031
0802f1184d3f92fda0289358e339be97d69becd2
784175fa61e8791f1de8d5429ac623a505d137e8299f7b57252b1dd06b0d1efc
GET /error/404 HTTP/1.1
Host: antispam.acecommunications.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://3nb4t.csb.app/
Connection: keep-alive
Cookie: SESESSID=qdlo9soanuuvjrefbcmcj1b059
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 27 Oct 2022 00:54:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Strict-Transport-Security: max-age=15552000
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Security-Policy: default-src 'self' data:; script-src 'self' https://www.gstatic.com https://cdn.inspectlet.com https://browser.sentry-cdn.com 'unsafe-inline' 'unsafe-eval' https://app.pendo.io https://cdn.pendo.io https://pendo-static-6037198814314496.storage.googleapis.com https://pendo-static-6331158623420416.storage.googleapis.com https://pendo-io-static.storage.googleapis.com https://data.pendo.io https://app.eu.pendo.io https://cdn.eu.pendo.io https://pendo-eu-static-6037198814314496.storage.googleapis.com https://pendo-eu-static-6331158623420416.storage.googleapis.com https://pendo-eu-static.storage.googleapis.com https://data.eu.pendo.io; style-src 'self' https://www.gstatic.com https://fonts.googleapis.com 'unsafe-inline' https://app.pendo.io https://cdn.pendo.io https://pendo-static-6037198814314496.storage.googleapis.com https://pendo-static-6331158623420416.storage.googleapis.com https://app.eu.pendo.io https://cdn.eu.pendo.io https://pendo-eu-static-6037198814314496.storage.googleapis.com https://pendo-eu-static-6331158623420416.storage.googleapis.com blob:; connect-src 'self' http://hn.inspectlet.com wss://ws.inspectlet.com https://antispam.acecommunications.com.au https://sentry.io https://app.pendo.io https://pendo-static-6037198814314496.storage.googleapis.com https://pendo-static-6331158623420416.storage.googleapis.com https://data.pendo.io https://app.eu.pendo.io https://pendo-eu-static-6037198814314496.storage.googleapis.com https://pendo-eu-static-6331158623420416.storage.googleapis.com https://data.eu.pendo.io; img-src 'self' http://hn.inspectlet.com https://app.pendo.io https://cdn.pendo.io https://pendo-static-6037198814314496.storage.googleapis.com https://pendo-static-6331158623420416.storage.googleapis.com https://data.pendo.io https://app.eu.pendo.io https://cdn.eu.pendo.io https://pendo-eu-static-6037198814314496.storage.googleapis.com https://pendo-eu-static-6331158623420416.storage.googleapis.com https://data.eu.pendo.io data:; font-src 'self' https://fonts.gstatic.com;
Content-Encoding: gzip
codesandbox.io/static/js/banner.be879265d.js
104.18.43.17200 OK 0 B URL HTTP/2 codesandbox.io/static/js/banner.be879265d.js
IP 104.18.43.17:0
GET /static/js/banner.be879265d.js HTTP/1.1
Host: codesandbox.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3nb4t.csb.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 00:54:33 GMT
content-type: application/javascript
last-modified: Mon, 04 Apr 2022 22:03:36 GMT
vary: Accept-Encoding
etag: W/"624b6b38-f3a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 12253254
server: cloudflare
cf-ray: 76077609c9c70b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
codesandbox.io/public/sse-hooks/sse-hooks.f742b80f43c5a2e0e619b0d97b5886cd.js
104.18.43.17200 OK 0 B URL HTTP/2 codesandbox.io/public/sse-hooks/sse-hooks.f742b80f43c5a2e0e619b0d97b5886cd.js
IP 104.18.43.17:0
GET /public/sse-hooks/sse-hooks.f742b80f43c5a2e0e619b0d97b5886cd.js HTTP/1.1
Host: codesandbox.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3nb4t.csb.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 27 Oct 2022 00:54:33 GMT
content-type: application/javascript
last-modified: Sat, 13 Aug 2022 13:00:47 GMT
vary: Accept-Encoding
etag: W/"62f7a07f-2aeb3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 6431202
server: cloudflare
cf-ray: 76077609d9cc0b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
3nb4t.csb.app/
104.18.36.245200 OK 0 B IP 104.18.36.245:0
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET / HTTP/1.1
Host: 3nb4t.csb.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 27 Oct 2022 00:54:33 GMT
content-type: text/html
vary: Accept-Encoding
cache-control: private, max-age=0, no-cache, no-store
x-request-id: FyHG8GqDXc-s4kQGkddk
set-cookie: signedIn=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT; max-age=0; HttpOnly
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76077607e91bb4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2