r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9107
Expires: Thu, 22 Sep 2022 21:28:15 GMT
Date: Thu, 22 Sep 2022 18:56:28 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 22 Sep 2022 18:14:02 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: uby8ttdsmRzYBoJLU1XAJkD0sbC5RwkUOt-AIO2kTraAXYn4Q9yJJQ==
Age: 2546
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 22 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RnORStGub03F3MbJ3CO_Zsz29NhnjFIyPYnoFJneuFK6lN9iFHYTkA==
age: 51674
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 18:56:28 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Thu, 22 Sep 2022 18:03:22 GMT
Expires: Thu, 22 Sep 2022 18:12:27 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: sHEWNv1hNgcbpYq8BfhPVX7EziikOh9e8yMBWjuMq-dXnHowVDs00g==
Age: 3186
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 86624f45fb3b7126dbe002f69c94dd86
30bcf274db5037122f989fb25dbf1e72c9ec417b
2cc9600578cf057dc499835773fb495caa60ac154c4945f0fc1f2b31d43f5502
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5428
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:56:29 GMT
Last-Modified: Thu, 22 Sep 2022 17:26:01 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.216.192.228101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.216.192.228:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: AHGbCPbSHGVvnfE7mFqCqA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0Owv9o/ht7VPdJx9UpHBqKeI4Mg=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11832
Expires: Thu, 22 Sep 2022 22:13:42 GMT
Date: Thu, 22 Sep 2022 18:56:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11832
Expires: Thu, 22 Sep 2022 22:13:42 GMT
Date: Thu, 22 Sep 2022 18:56:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11832
Expires: Thu, 22 Sep 2022 22:13:42 GMT
Date: Thu, 22 Sep 2022 18:56:30 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c2db94039cb675cb250519fe57b2b3c9
37222a70df5d9a69073b4b32ebc3a5da60006001
444f4359ac25747e7c5d7e09202f195d407bc94a4933ac7ebbbaf9839bf59aff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12048
x-amzn-requestid: bc551b18-fddb-4502-8c11-b8de83d75def
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YwlKzF9FoAMFp_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6329b578-7e030b2e0af1d1c309d2dde6;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 12:43:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dRyKwUtxiHGz_bqMMSlRKS1cDNhKm_g1ocpZLmE15k8owH789jueWA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 22:19:10 GMT
age: 74240
etag: "37222a70df5d9a69073b4b32ebc3a5da60006001"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91c56f0b9810bfdd84e10a626b89e389
15d83e44d568938b6c9c87201e898cedb3edec0a
942de9764e1c408f7512759774aab0479db201e6fae15ccc39e653adae4cb86f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8678
x-amzn-requestid: c671a9ab-c5d0-4743-b13e-cc9a47e3d2fe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1F0vEThIAMFSwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b8351-17ed13811d3833ea00a34423;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 2Oem-Kw-aCUa2rA9B9-7CDYcZ-G968tFPnsrL5wJ9Dia43T5u6RDtg==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:34:09 GMT
etag: "15d83e44d568938b6c9c87201e898cedb3edec0a"
content-type: image/jpeg
age: 76941
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0788498f-41db-4d62-b749-e01caddb7f8d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0788498f-41db-4d62-b749-e01caddb7f8d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash af5773255351157d72c28a670a355c60
c803e5866edbe6c9baec14e93677f610bdf09bff
3229b4aa1c698647ad96d114174782549ad240f1b2c4ba8c268165a16afc84f0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0788498f-41db-4d62-b749-e01caddb7f8d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10754
x-amzn-requestid: 2d03531d-6055-477f-9cb6-9ea9fa27eeb9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1F0vHJ4IAMF42Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b8351-692620e80d5b2efe1d0e3a82;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: eYUP9NfAkmU4A-mZvysejq1228Qfb8vbfdXOaHQvr6mjXhnVoWdqJw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:34:09 GMT
etag: "c803e5866edbe6c9baec14e93677f610bdf09bff"
content-type: image/jpeg
age: 76941
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd654e30-611f-4c64-b1ad-43ca9fdedc0e.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd654e30-611f-4c64-b1ad-43ca9fdedc0e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c0201d377c57a684452c0d26372e674d
3829f81048cc63b5f0d1e82dfbe3b8e31646e733
efa055dc93267be2dddd94b334c0655c2e1f1682467fd738e013a778aea175b9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd654e30-611f-4c64-b1ad-43ca9fdedc0e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14397
x-amzn-requestid: 18122f14-4c48-43b3-b312-218f3ae84d93
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yv1B8EVfoAMF3dQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63296872-3d23a04565d70f3c5403007b;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 07:14:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 9zc5SsL1SB9GtwMkVWcNLJzC-MfOd-5TiQck5s6-MV23RWPqWPAgtA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 18:00:45 GMT
age: 3345
etag: "3829f81048cc63b5f0d1e82dfbe3b8e31646e733"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dee9427-1c1b-4ddc-9f89-8c6e254bd0f1.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dee9427-1c1b-4ddc-9f89-8c6e254bd0f1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 62818de3c50f957b2e5680851a1768c9
80e48c9ae48c89598780736b089c98e22d58df9a
16f2c2d23e8641a3f297a175730343d11120a228c0fe846c0fdf1e39212c522c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dee9427-1c1b-4ddc-9f89-8c6e254bd0f1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8549
x-amzn-requestid: 6d44626b-16c6-4f19-ae52-d5350065b390
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1GwPHJJoAMFdfA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b84ce-46ebc35612eb7a4473b36189;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:40:30 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: UoQTXSP0LgR4LwELp2Avm27hUekfO9TU9yfvNbIlmUtB-FrU9MGRbg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:48:19 GMT
age: 76091
etag: "80e48c9ae48c89598780736b089c98e22d58df9a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb0692-30b9-4b69-a748-f7a4474a72e0.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb0692-30b9-4b69-a748-f7a4474a72e0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9becda6e892a190dbbc63216ae697506
ba3369e1827d8f01ca10acb8648195847dd02ffd
d71dd28e0ff260326ba0c30748fa11160f4544c2a264d3a3dc361af0de9fd283
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb0692-30b9-4b69-a748-f7a4474a72e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11286
x-amzn-requestid: 7263b60d-fffe-4c0b-8de5-59dc9ac92a47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1GwZHOaIAMFSQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b84cf-62e160b156b587cc21c7fda5;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:40:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: QxgrVMX7xwI6qE3T3-LRS3JWoJauPyvCSb9TacW9-ktw-BIq5PSF-g==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:48:26 GMT
etag: "ba3369e1827d8f01ca10acb8648195847dd02ffd"
content-type: image/jpeg
age: 76084
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
trade-am.co/route.php?k=a04aa7f49b0f21aaf2622d5e370fd4f83bfcdd1e
64.191.166.198302 Found 0 B URL HTTP/1.1 trade-am.co/route.php?k=a04aa7f49b0f21aaf2622d5e370fd4f83bfcdd1e
IP 64.191.166.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /route.php?k=a04aa7f49b0f21aaf2622d5e370fd4f83bfcdd1e HTTP/1.1
Host: trade-am.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Thu, 22 Sep 2022 18:56:28 GMT
Server: Apache
Location: http://trade-am.co/route.php?k=a04aa7f49b0f21aaf2622d5e370fd4f83bfcdd1e&viewed=1
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash a511fec2a9314d346b0d60912ac6f474
0a57e0ae64c0af30f19976e1952e915236b14e04
17834edd88c16eb6fbcac04f71034e2953f913c286276c4b1ccd576e504e6724
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6095
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:56:32 GMT
Last-Modified: Thu, 22 Sep 2022 17:14:57 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash a511fec2a9314d346b0d60912ac6f474
0a57e0ae64c0af30f19976e1952e915236b14e04
17834edd88c16eb6fbcac04f71034e2953f913c286276c4b1ccd576e504e6724
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6095
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:56:32 GMT
Last-Modified: Thu, 22 Sep 2022 17:14:57 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash a511fec2a9314d346b0d60912ac6f474
0a57e0ae64c0af30f19976e1952e915236b14e04
17834edd88c16eb6fbcac04f71034e2953f913c286276c4b1ccd576e504e6724
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6095
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:56:32 GMT
Last-Modified: Thu, 22 Sep 2022 17:14:57 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5f68499f2ba3b2c5aa7e979ee9b4d3a8
67a456fe80bd69aa2fbd0331ba343d1789509d0f
394e18527ce3ad7de2274de2e5e6a7f3fb390e7d6c4f7342ab485b7794e169e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:56:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
trade-am.co/route.php?k=a04aa7f49b0f21aaf2622d5e370fd4f83bfcdd1e&viewed=1
64.191.166.198200 OK 45 kB URL HTTP/1.1 trade-am.co/route.php?k=a04aa7f49b0f21aaf2622d5e370fd4f83bfcdd1e&viewed=1
IP 64.191.166.198:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (895), with CRLF, LF line terminators
Hash b66b163f0656293ff649647c3f72135d
ecbf2f10ca97e400b9855dd3afb6184ee65a2fe3
9f52bbe0be9ebd9a2c0d9fa0013807c9d9069af2391df1b32b3990771942dea6
GET /route.php?k=a04aa7f49b0f21aaf2622d5e370fd4f83bfcdd1e&viewed=1 HTTP/1.1
Host: trade-am.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 18:56:30 GMT
Server: Apache
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
fonts.googleapis.com/css?family=Montserrat:400,700
142.250.74.10200 OK 992 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat:400,700
IP 142.250.74.10:0
Hash db1f8f92dd9c7efc2069de49eaef816d
38a0aade481ac9c6b588a0b23d558232f40f2887
7c3fe1ff495784ae942f8ab50666178006074bc0f7af7a02eafd257239a6fe81
GET /css?family=Montserrat:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trade-am.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 22 Sep 2022 18:56:32 GMT
date: Thu, 22 Sep 2022 18:56:32 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
trade-am.co/%7B%7B%20get_asset_url('/demo/style.css')%20%7D%7D
64.191.166.198200 OK 2.5 kB URL HTTP/1.1 trade-am.co/%7B%7B%20get_asset_url('/demo/style.css')%20%7D%7D
IP 64.191.166.198:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash cec7482a04f4051dd09f45b21700076f
ec8b2d90824f0f13b025c8932db0c0aecae69fa7
7ec20920072de93da4ca12b17bc78811df4aa35557fbbfff6af7606a6a295531
Analyzer Verdict Alert fortinet Phishing
GET /%7B%7B%20get_asset_url('/demo/style.css')%20%7D%7D HTTP/1.1
Host: trade-am.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://trade-am.co/route.php?k=a04aa7f49b0f21aaf2622d5e370fd4f83bfcdd1e&viewed=1
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 18:56:32 GMT
Server: Apache
Vary: Host
Content-Length: 2538
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
trade-am.co/assets/js/jquery-3.1.1.min.js
64.191.166.198200 OK 87 kB URL HTTP/1.1 trade-am.co/assets/js/jquery-3.1.1.min.js
IP 64.191.166.198:0
File type ASCII text, with very long lines (32030), with CRLF line terminators
Hash 821f5d95fdf4ac4e10d45dafa46dcf1f
8270f7c8bffc1414be9a6d343ee2be9610928b48
7162e4718b70ab98408c656e6b3404d20df3c0d6facf3c8471c5b1a2a88d5529
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/jquery-3.1.1.min.js HTTP/1.1
Host: trade-am.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://trade-am.co/route.php?k=a04aa7f49b0f21aaf2622d5e370fd4f83bfcdd1e&viewed=1
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 18:56:32 GMT
Server: Apache
Last-Modified: Tue, 27 Jul 2021 10:35:45 GMT
ETag: "152c5-5c8186eb2493d"
Accept-Ranges: bytes
Content-Length: 86725
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
trade-am.co/assets/bootstrap/bootstrap-3.3.7/js/bootstrap.min.js
64.191.166.198200 OK 37 kB URL HTTP/1.1 trade-am.co/assets/bootstrap/bootstrap-3.3.7/js/bootstrap.min.js
IP 64.191.166.198:0
File type ASCII text, with very long lines (32033)
Hash 5869c96cc8f19086aee625d670d741f9
430a443d74830fe9be26efca431f448c1b3740f9
53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef
Analyzer Verdict Alert fortinet Phishing
GET /assets/bootstrap/bootstrap-3.3.7/js/bootstrap.min.js HTTP/1.1
Host: trade-am.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://trade-am.co/route.php?k=a04aa7f49b0f21aaf2622d5e370fd4f83bfcdd1e&viewed=1
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 18:56:32 GMT
Server: Apache
Last-Modified: Tue, 27 Jul 2021 10:35:45 GMT
ETag: "90b5-5c8186eb1dbdd"
Accept-Ranges: bytes
Content-Length: 37045
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
trade-am.co/assets/bootstrap/bootstrap-3.3.7/css/bootstrap-theme.min.css
64.191.166.198200 OK 23 kB URL HTTP/1.1 trade-am.co/assets/bootstrap/bootstrap-3.3.7/css/bootstrap-theme.min.css
IP 64.191.166.198:0
File type ASCII text, with very long lines (23192)
Hash ab6b02efeaf178e0247b9504051472fb
8256575374f430476bdcd49de98c77990229ce31
653e073e97423adda5bc3917a241ee8497dd38a48f14bcde0098a4e54fd0fa5e
GET /assets/bootstrap/bootstrap-3.3.7/css/bootstrap-theme.min.css HTTP/1.1
Host: trade-am.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://trade-am.co/route.php?k=a04aa7f49b0f21aaf2622d5e370fd4f83bfcdd1e&viewed=1
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 18:56:32 GMT
Server: Apache
Last-Modified: Tue, 27 Jul 2021 10:35:45 GMT
ETag: "5b71-5c8186eb1bc9d"
Accept-Ranges: bytes
Content-Length: 23409
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
trade-am.co/assets/bootstrap/bootstrap-3.3.7/css/bootstrap.min.css
64.191.166.198200 OK 121 kB URL HTTP/1.1 trade-am.co/assets/bootstrap/bootstrap-3.3.7/css/bootstrap.min.css
IP 64.191.166.198:0
File type ASCII text, with very long lines (65371)
Size 121 kB (121200 bytes)
Hash ec3bb52a00e176a7181d454dffaea219
6527d8bf3e1e9368bab8c7b60f56bc01fa3afd68
f75e846cc83bd11432f4b1e21a45f31bc85283d11d372f7b19accd1bf6a2635c
GET /assets/bootstrap/bootstrap-3.3.7/css/bootstrap.min.css HTTP/1.1
Host: trade-am.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://trade-am.co/route.php?k=a04aa7f49b0f21aaf2622d5e370fd4f83bfcdd1e&viewed=1
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 18:56:32 GMT
Server: Apache
Last-Modified: Tue, 27 Jul 2021 10:35:45 GMT
ETag: "1d970-5c8186eb1cc3d"
Accept-Ranges: bytes
Content-Length: 121200
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
f.hubspotusercontent30.net/hubfs/6535385/Logo_white.png
104.16.185.114200 OK 25 kB URL HTTP/2 f.hubspotusercontent30.net/hubfs/6535385/Logo_white.png
IP 104.16.185.114:0
File type PNG image data, 954 x 381, 8-bit/color RGBA, non-interlaced\012- data
Hash e8d60363b04ef627794f254210bc4592
9d420d1065e83223e4a5d254b3408ebbdd5225a2
0cdd225d11e26638581ec7559d00b385383185ede5de22045cfca1e67ff63971
GET /hubfs/6535385/Logo_white.png HTTP/1.1
Host: f.hubspotusercontent30.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trade-am.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:56:33 GMT
content-type: image/png
content-length: 25029
cf-ray: 74ed42dccedab512-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900
etag: "e8d60363b04ef627794f254210bc4592"
last-modified: Thu, 15 Oct 2020 15:01:59 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 bccded73b8b9a1d038e5d874cf586402.cloudfront.net (CloudFront)
cf-cache-status: MISS
access-control-allow-methods: GET
cache-tag: F-36114435646,P-6535385,FLS-ALL
edge-cache-tag: F-36114435646,P-6535385,FLS-ALL
x-amz-cf-id: 2E6aGFPrxB4fZdvtz6FJs6B8eLzaq1UngtlFXkV7BaALvWTUwWCi8A==
x-amz-cf-pop: HEL50-C1
x-amz-id-2: jfwDScJT4RpeAEwPugPE2OiIJh5PrSQSez8XZfT+CGhJOnb2umGa8FpN5HWLEhC8zeCXz5iTXekG+ZkQobM7Vw==
x-amz-meta-cache-tag: F-36114435646,P-6535385,FLS-ALL
x-amz-meta-created-unix-time-millis: 1602774118465
x-amz-meta-index-tag: all
x-amz-replication-status: COMPLETED
x-amz-request-id: 2K3ZQGSTXF9X1K2J
x-amz-server-side-encryption: AES256
x-amz-version-id: jRRF0h3edAEBY.xi8VzNjaVfRf.mrd4U
x-cache: RefreshHit from cloudfront
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-robots-tag: all
server: cloudflare
X-Firefox-Spdy: h2
f.hubspotusercontent30.net/hubfs/6535385/trainingtemplates/images/email.jpg
104.16.185.114200 OK 113 kB URL HTTP/2 f.hubspotusercontent30.net/hubfs/6535385/trainingtemplates/images/email.jpg
IP 104.16.185.114:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, software=Adobe Illustrator CC 22.1 (Windows), datetime=2018:11:02 13:00:07], baseline, precision 8, 420x403, components 3\012- data
Size 113 kB (113430 bytes)
Hash 06426eb52cf2141c605c51f26dd9174e
4e4ab9ded0c07078c4f059fcd9a3b02f2c9a014c
2ab7bf129994ec1ff1f6c7d58efed915d307e875547e8d1257d02d64bd39bf2d
GET /hubfs/6535385/trainingtemplates/images/email.jpg HTTP/1.1
Host: f.hubspotusercontent30.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trade-am.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:56:33 GMT
content-type: image/jpeg
content-length: 113430
cf-ray: 74ed42dcceddb512-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900
etag: "06426eb52cf2141c605c51f26dd9174e"
last-modified: Thu, 15 Oct 2020 14:36:54 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
cf-cache-status: MISS
access-control-allow-methods: GET
cache-tag: F-36113786211,FD-36113536051,P-6535385,FLS-ALL
edge-cache-tag: F-36113786211,FD-36113536051,P-6535385,FLS-ALL
x-amz-cf-id: vCTl2khzi7NodjfOMe5EfoLBobqljcDSu4_stVaHa8n1k9m-ESivJQ==
x-amz-cf-pop: OSL50-C1
x-amz-id-2: LQJh/20ZEXywxPVIP97+9ejOHi7A/JnjVz33vHFq07mrQFzOS01lhAbfZ5g1g4W3GF7wOJtMj9Y=
x-amz-meta-cache-tag: F-36113786211,FD-36113536051,P-6535385,FLS-ALL
x-amz-meta-created-unix-time-millis: 1602772613852
x-amz-meta-index-tag: all
x-amz-replication-status: COMPLETED
x-amz-request-id: 1K0S5Y1KTJQ72BGT
x-amz-server-side-encryption: AES256
x-amz-version-id: ZoyuByxEOeCPRiL4xySfMIR65PopNteT
x-cache: RefreshHit from cloudfront
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-robots-tag: all
server: cloudflare
X-Firefox-Spdy: h2
f.hubspotusercontent30.net/hubfs/6535385/trainingtemplates/images/arrow-form.png
104.16.185.114200 OK 1.1 kB URL HTTP/2 f.hubspotusercontent30.net/hubfs/6535385/trainingtemplates/images/arrow-form.png
IP 104.16.185.114:0
File type PNG image data, 48 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash 67c9a019ae69b0e3799352ac1e95452d
316dac3b1a42f6da246f6bffd72969c45c89232d
fc8fff563e084c3a86f9fe3f13d3b01d66eb5385cdf888d4b48e0f31ee3a73d3
GET /hubfs/6535385/trainingtemplates/images/arrow-form.png HTTP/1.1
Host: f.hubspotusercontent30.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trade-am.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:56:33 GMT
content-type: image/png
content-length: 1083
cf-ray: 74ed42dccedbb512-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900
etag: "67c9a019ae69b0e3799352ac1e95452d"
last-modified: Thu, 15 Oct 2020 14:36:54 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 b2756db0e58306bee6945607dbb05978.cloudfront.net (CloudFront)
cf-cache-status: MISS
access-control-allow-methods: GET
cache-tag: F-36108800356,FD-36113536051,P-6535385,FLS-ALL
edge-cache-tag: F-36108800356,FD-36113536051,P-6535385,FLS-ALL
x-amz-cf-id: HtdNIuK2QD9owmhLu_xtUMHNJh1vX2tVPw64_nLHonMKBdQrrSX2tQ==
x-amz-cf-pop: HEL50-C1
x-amz-id-2: o9zaYkFgCmPzVyhA+NcgUtftsME56gQ4ztXoAE/l2fk8/t5qRYmitjlkoFAiTpXlrtie9uFNG3s=
x-amz-meta-cache-tag: F-36108800356,FD-36113536051,P-6535385,FLS-ALL
x-amz-meta-created-unix-time-millis: 1602772613717
x-amz-meta-index-tag: all
x-amz-replication-status: COMPLETED
x-amz-request-id: Q2PKEW0M02V3KTGY
x-amz-server-side-encryption: AES256
x-amz-version-id: MzK0xAsITZg15Vt9Jr6Gjc0ZVnSUsUcl
x-cache: RefreshHit from cloudfront
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-robots-tag: all
server: cloudflare
X-Firefox-Spdy: h2
f.hubspotusercontent30.net/hubfs/6535385/trainingtemplates/images/cancel.png
104.16.185.114200 OK 1.3 kB URL HTTP/2 f.hubspotusercontent30.net/hubfs/6535385/trainingtemplates/images/cancel.png
IP 104.16.185.114:0
File type PNG image data, 64 x 64, 8-bit colormap, non-interlaced\012- data
Hash f10b2af075edf79171303dccda1cdd48
559a5807d5aa8675056591ed1ed8238cd2e5031a
34e6ac78eb25be21bc89f372d8f049521224c15aba3c92da85119d287c328530
GET /hubfs/6535385/trainingtemplates/images/cancel.png HTTP/1.1
Host: f.hubspotusercontent30.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trade-am.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:56:33 GMT
content-type: image/png
content-length: 1339
cf-ray: 74ed42dccee0b512-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900
etag: "f10b2af075edf79171303dccda1cdd48"
last-modified: Thu, 15 Oct 2020 14:36:54 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 7edd8006b8bc56aba6e41686a63bba52.cloudfront.net (CloudFront)
cf-cache-status: MISS
access-control-allow-methods: GET
cache-tag: F-36108800357,FD-36113536051,P-6535385,FLS-ALL
edge-cache-tag: F-36108800357,FD-36113536051,P-6535385,FLS-ALL
x-amz-cf-id: b7tRDGg3qArY1DLkjqbUMYE5NJv1mYZ62-hVgSEtQhqpYjeSE5wBXw==
x-amz-cf-pop: HEL50-C1
x-amz-id-2: PwQK5YfhuuOhLz9nTBrs666dXakC6nljdZSqe9wXmAvYDDv8vgSUTadqaqnZY4EbfHdx9voglbs=
x-amz-meta-cache-tag: F-36108800357,FD-36113536051,P-6535385,FLS-ALL
x-amz-meta-created-unix-time-millis: 1602772613722
x-amz-meta-index-tag: all
x-amz-replication-status: COMPLETED
x-amz-request-id: YQHV9EWXTGS7B0EJ
x-amz-server-side-encryption: AES256
x-amz-version-id: CAy259rHcIoLjMT64WuevW_7R3TbDX78
x-cache: RefreshHit from cloudfront
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-robots-tag: all
server: cloudflare
X-Firefox-Spdy: h2
trade-am.co/assets/js/jquery_ui.js?v=1.5
64.191.166.198200 OK 521 kB URL HTTP/1.1 trade-am.co/assets/js/jquery_ui.js?v=1.5
IP 64.191.166.198:0
File type ASCII text, with very long lines (1002)
Size 521 kB (520714 bytes)
Hash c38af58cde3dc9c62219a029aa8ef6f5
f32982882563b996d4f2d356977a4bb1eb8b3956
1bf4686be65431946ebbc1cb07b0be92c7dadd35b31d3189cd5ec9f4c742da15
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/jquery_ui.js?v=1.5 HTTP/1.1
Host: trade-am.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://trade-am.co/route.php?k=a04aa7f49b0f21aaf2622d5e370fd4f83bfcdd1e&viewed=1
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 18:56:32 GMT
Server: Apache
Last-Modified: Thu, 26 Dec 2019 13:41:34 GMT
ETag: "7f20a-59a9b8915676b"
Accept-Ranges: bytes
Content-Length: 520714
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash edd6c63988b69a64a51433c3fd91b0ba
a0a41a5403a2c397d70cfa267c1d6407250df043
c9b1efff4ebf41ad54d3137ee7a93b688c66765df99e387ae730b39abe2f115f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:56:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
f.hubspotusercontent30.net/hubfs/6535385/trainingtemplates/js/script.js
104.16.185.114200 OK 2 B URL HTTP/2 f.hubspotusercontent30.net/hubfs/6535385/trainingtemplates/js/script.js
IP 104.16.185.114:0
File type ASCII text, with CRLF line terminators
Hash 81051bcc2cf1bedf378224b0a93e2877
ba8ab5a0280b953aa97435ff8946cbcbb2755a27
7eb70257593da06f682a3ddda54a9d260d4fc514f645237f5ca74b08f8da61a6
GET /hubfs/6535385/trainingtemplates/js/script.js HTTP/1.1
Host: f.hubspotusercontent30.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trade-am.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:56:33 GMT
content-type: text/plain
content-length: 2
cf-ray: 74ed42dcced8b512-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900
etag: "81051bcc2cf1bedf378224b0a93e2877"
last-modified: Thu, 01 Sep 2022 16:29:36 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 75db592bac77e8a29aaf9f30658e363c.cloudfront.net (CloudFront)
cf-cache-status: MISS
access-control-allow-methods: GET
cache-tag: F-36113536102,FD-36114114172,P-6535385,FLS-ALL
edge-cache-tag: F-36113536102,FD-36114114172,P-6535385,FLS-ALL
x-amz-cf-id: SS4cIsBkgytrDo-pLSifpbCU79I2rVwaEpSP1OK_5hMyOVEQUvBD3w==
x-amz-cf-pop: HEL50-C1
x-amz-id-2: V5bi8JY6WtU3a2IgEyPDYEneojH5q3YJf6spE9Dr2PEK/raum1SxGsShMFCq+yVWE0TgIKVMxsc=
x-amz-meta-cache-tag: F-36113536102,FD-36114114172,P-6535385,FLS-ALL
x-amz-meta-created-unix-time-millis: 1602772646032
x-amz-meta-index-tag: all
x-amz-replication-status: COMPLETED
x-amz-request-id: 043NE1E08GKNY96X
x-amz-server-side-encryption: AES256
x-amz-storage-class: INTELLIGENT_TIERING
x-amz-version-id: fyHBkzI5IQis1xgVFA2sU0FXNObT4NgW
x-cache: RefreshHit from cloudfront
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-robots-tag: all
server: cloudflare
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4797d6fd00b4884a9a2bd74ed01e2d1d
8d5e48550c7eb8c2f81ab8c126d452257e4d98ed
4c6fb508b26b7fc8be67672a70d2d0b73ae0cee68c0969350751823c49bf4a9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:56:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.163200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://trade-am.co
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 16:40:18 GMT
expires: Fri, 22 Sep 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 8175
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
trade-am.co/%7B%7B%20get_asset_url('/demo/style.css')%20%7D%7D
64.191.166.198200 OK 2.5 kB URL HTTP/1.1 trade-am.co/%7B%7B%20get_asset_url('/demo/style.css')%20%7D%7D
IP 64.191.166.198:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash cec7482a04f4051dd09f45b21700076f
ec8b2d90824f0f13b025c8932db0c0aecae69fa7
7ec20920072de93da4ca12b17bc78811df4aa35557fbbfff6af7606a6a295531
Analyzer Verdict Alert fortinet Phishing
GET /%7B%7B%20get_asset_url('/demo/style.css')%20%7D%7D HTTP/1.1
Host: trade-am.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://trade-am.co/route.php?k=a04aa7f49b0f21aaf2622d5e370fd4f83bfcdd1e&viewed=1
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 18:56:33 GMT
Server: Apache
Vary: Host
Content-Length: 2538
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4797d6fd00b4884a9a2bd74ed01e2d1d
8d5e48550c7eb8c2f81ab8c126d452257e4d98ed
4c6fb508b26b7fc8be67672a70d2d0b73ae0cee68c0969350751823c49bf4a9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:56:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
f.hubspotusercontent30.net/hubfs/6535385/trainingtemplates/images/pay-per-click.png
104.16.185.114200 OK 2.5 kB URL HTTP/2 f.hubspotusercontent30.net/hubfs/6535385/trainingtemplates/images/pay-per-click.png
IP 104.16.185.114:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash da67d25cfc22b740454cb143a5def413
1cc253f40d304a45e4cf6e2674470643a2713f40
26a2da7f227ba6533dd6793917706a2187fa72379e21d2c8fa5b67847262da6a
GET /hubfs/6535385/trainingtemplates/images/pay-per-click.png HTTP/1.1
Host: f.hubspotusercontent30.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trade-am.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:56:33 GMT
content-type: image/png
content-length: 2516
cf-ray: 74ed42dccedfb512-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900
etag: "da67d25cfc22b740454cb143a5def413"
last-modified: Thu, 15 Oct 2020 14:36:54 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 c636ba9295dbf02e90f35b717bb16656.cloudfront.net (CloudFront)
cf-cache-status: MISS
access-control-allow-methods: GET
cache-tag: F-36108800358,FD-36113536051,P-6535385,FLS-ALL
edge-cache-tag: F-36108800358,FD-36113536051,P-6535385,FLS-ALL
x-amz-cf-id: jVkESyCrhGEERWNzAhjgxY1s-ExUvWAvmmt3A0xEKhsrHQlrZyB58w==
x-amz-cf-pop: HEL50-C1
x-amz-id-2: De5qEBMRW7iM7+Sli0efW0geRzy2joVWiVaIiw4dfwhpvb7Neo42ZjYdXfP7+8dlMOSEMX4xXcg=
x-amz-meta-cache-tag: F-36108800358,FD-36113536051,P-6535385,FLS-ALL
x-amz-meta-created-unix-time-millis: 1602772613740
x-amz-meta-index-tag: all
x-amz-replication-status: COMPLETED
x-amz-request-id: Q2PVZR2MFVXT9F3Q
x-amz-server-side-encryption: AES256
x-amz-version-id: BoXxnibmB04P_0073rP2lk7xg0ikXOhG
x-cache: RefreshHit from cloudfront
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-robots-tag: all
server: cloudflare
X-Firefox-Spdy: h2
f.hubspotusercontent30.net/hubfs/6535385/trainingtemplates/images/loupe.png
104.16.185.114200 OK 2.2 kB URL HTTP/2 f.hubspotusercontent30.net/hubfs/6535385/trainingtemplates/images/loupe.png
IP 104.16.185.114:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 5237f58df183cd19ce42cfe5cc9f20f9
2cf9a75acec7b5ff6b3a3d8ce32764d07b81a5ca
c9cdcf91cb1bd6513edb0b4a63b83c889928f47668da35ce1b6d80379a543e44
GET /hubfs/6535385/trainingtemplates/images/loupe.png HTTP/1.1
Host: f.hubspotusercontent30.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trade-am.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:56:33 GMT
content-type: image/png
content-length: 2150
cf-ray: 74ed42dccedeb512-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900
etag: "5237f58df183cd19ce42cfe5cc9f20f9"
last-modified: Thu, 15 Oct 2020 14:36:54 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 0c7df46428c45dd75d01d31cc57c5d22.cloudfront.net (CloudFront)
cf-cache-status: MISS
access-control-allow-methods: GET
cache-tag: F-36113786208,FD-36113536051,P-6535385,FLS-ALL
edge-cache-tag: F-36113786208,FD-36113536051,P-6535385,FLS-ALL
x-amz-cf-id: -Fnb0h3y-roEmCy2vbEQhXgu7xrjCMsK-AIy5bJqWt4a2NspDNe_6w==
x-amz-cf-pop: HEL50-C1
x-amz-id-2: r741/kR492DkttINF+TG3c2ps8iEXry1DlBxoEW7ld6+W84olZnF+P97Fwg/lNLzkWCT3XvWB9tbpAUnndAumQ==
x-amz-meta-cache-tag: F-36113786208,FD-36113536051,P-6535385,FLS-ALL
x-amz-meta-created-unix-time-millis: 1602772613749
x-amz-meta-index-tag: all
x-amz-replication-status: COMPLETED
x-amz-request-id: Q2PN4QZ3TPQRW0Y9
x-amz-server-side-encryption: AES256
x-amz-version-id: txPbt7kXcHxNvbrASe7OFRIFN3fn9LIG
x-cache: RefreshHit from cloudfront
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-robots-tag: all
server: cloudflare
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1b33d59cf038a3fe7273f78fda2cce3a
0b367731ef6df8e1f6c1b8774198daa9959d7cf5
b02b1756112479f92786994de8e884986b0a7eb3d5885300bfd8a64f597f7cc4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:56:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 4a8db674b7f23db36b37b868a5b0e28f
dd79968ea98410c03465bc00e4486c6d3be89c8d
e09c59a01d6012b7b68e65d587f054cf1521c8ae681b15700aec0c6b830638d1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 22 Sep 2022 18:56:33 GMT
Last-Modified: Thu, 22 Sep 2022 17:32:39 GMT
Server: ECS (dcb/7F38)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 62fiEtt2CNCmN1I9F9oeaCb0jmcUa_n_KQrThpmYuoGlHwLn_mzWyA==
Age: 5034
www.youtube.com/s/player/64947e15/www-widgetapi.vflset/www-widgetapi.js
216.58.211.14200 OK 54 kB URL HTTP/2 www.youtube.com/s/player/64947e15/www-widgetapi.vflset/www-widgetapi.js
IP 216.58.211.14:0
File type ASCII text, with very long lines (717)
Hash 6033744b362cbee7e4bc268ac2bfe715
ddee3cf6d2fc4dc3d07a8f602543903dca73e73a
e99370f6de547c56c42033ba649027425a71f8a54ee84052bf0763e4707b25ef
GET /s/player/64947e15/www-widgetapi.vflset/www-widgetapi.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trade-am.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 53539
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 14:50:27 GMT
expires: Thu, 21 Sep 2023 14:50:27 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 21 Sep 2022 00:22:17 GMT
content-type: text/javascript
age: 101166
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1b33d59cf038a3fe7273f78fda2cce3a
0b367731ef6df8e1f6c1b8774198daa9959d7cf5
b02b1756112479f92786994de8e884986b0a7eb3d5885300bfd8a64f597f7cc4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:56:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
videos.sproutvideo.com/embed/ac9edabb1a11e6c425/a7e9f4ed6247b349?autoPlay=true&playerTheme=dark&playerColor=08679e
54.204.110.141200 OK 11 kB URL HTTP/1.1 videos.sproutvideo.com/embed/ac9edabb1a11e6c425/a7e9f4ed6247b349?autoPlay=true&playerTheme=dark&playerColor=08679e
IP 54.204.110.141:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (7351)
Hash 58146854a9109bc210c206f6787c10b6
3c73d4fb951a18d9076b9e6d72478738a8098bd0
684cc488e1623150364fa785e2bf853ab4d4d6e7f29117cc2561ede41af009b8
GET /embed/ac9edabb1a11e6c425/a7e9f4ed6247b349?autoPlay=true&playerTheme=dark&playerColor=08679e HTTP/1.1
Host: videos.sproutvideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trade-am.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: text/html; charset=utf-8
Cross-Origin-Resource-Policy: cross-origin
Date: Thu, 22 Sep 2022 18:56:33 GMT
ETag: W/"747a-zXRmZ0dqx+vW2l2cT6M5wtlO8PQ"
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Referrer-Policy: no-referrer-when-downgrade
Set-Cookie: svid=01f5824d-1034-448e-a5b1-dc88648b2a9a; max-age=31556952000; path=/; SameSite=None; Secure
Vary: Accept-Encoding
X-Powered-By: Express
X-XSS-Protection: 0
transfer-encoding: chunked
Connection: keep-alive
d1ajyp3swh7ygp.cloudfront.net/hls_player-c0057c4ef1.css
143.204.42.151200 OK 95 kB URL HTTP/2 d1ajyp3swh7ygp.cloudfront.net/hls_player-c0057c4ef1.css
IP 143.204.42.151:0
Hash e04d241ea5d102b6b3b1aae724d9a9ab
57239797eda209d728c4b063879b43fafda6796f
61d3dd18aa0a24531a6c8e3d8fb55af8299c1b1890782bb39297c946acd63390
GET /hls_player-c0057c4ef1.css HTTP/1.1
Host: d1ajyp3swh7ygp.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://videos.sproutvideo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
date: Mon, 05 Sep 2022 00:38:48 GMT
last-modified: Tue, 09 Aug 2022 22:23:11 GMT
etag: W/"c0057c4ef1bdc99716e763f963e68bde"
cache-control: public,max-age=2592000
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wM8Kau10EO9iw08d2mWoaYhro6fFhsYqB3JKikRm1wyKc0cXivJd4w==
age: 1534667
X-Firefox-Spdy: h2
videos.sproutvideo.com/sp/https%3A%2F%2Fcdn.sproutvideo.com%2Ff90dce504c91f28ac247aac7fe55b76e%2Fsubtitles%2Fac9edabb1a11e6c425_en_1661792784.vtt
54.204.110.141200 OK 987 B URL HTTP/1.1 videos.sproutvideo.com/sp/https%3A%2F%2Fcdn.sproutvideo.com%2Ff90dce504c91f28ac247aac7fe55b76e%2Fsubtitles%2Fac9edabb1a11e6c425_en_1661792784.vtt
IP 54.204.110.141:0
Hash 0dcdd4686a5feac777abc8d1770cd81a
5be5c2957bbb51164c8d28b7b8944e6c7538c7ad
c2d1a6a1074052d46fc2907b574ae58bf6e1cf5e6ff8908746e3a7721ad0b77d
GET /sp/https%3A%2F%2Fcdn.sproutvideo.com%2Ff90dce504c91f28ac247aac7fe55b76e%2Fsubtitles%2Fac9edabb1a11e6c425_en_1661792784.vtt HTTP/1.1
Host: videos.sproutvideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: svid=01f5824d-1034-448e-a5b1-dc88648b2a9a
Sec-Fetch-Dest: track
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Content-Type: text/vtt; charset=utf-8
Date: Thu, 22 Sep 2022 18:56:34 GMT
ETag: W/"84a-2WKrsx1apNorlDEDsCJIQ8Doz5k"
Vary: Accept-Encoding
X-Powered-By: Express
transfer-encoding: chunked
Connection: keep-alive
hls2.videos.sproutvideo.com/f90dce504c91f28ac247aac7fe55b76e/1da148bd126f5bd1efa222a7fb57efe8/video/index.m3u8?Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9obHMyLnZpZGVvcy5zcHJvdXR2aWRlby5jb20vZjkwZGNlNTA0YzkxZjI4YWMyNDdhYWM3ZmU1NWI3NmUvMWRhMTQ4YmQxMjZmNWJkMWVmYTIyMmE3ZmI1N2VmZTgvKi5tM3U4P3Nlc3Npb25JRD0wZWE5OTg2My04NmUyLTQxOWUtODI4OS05YmJjZGUxMzcwOGMiLCJDb25kaXRpb24iOnsiRGF0ZUxlc3NUaGFuIjp7IkFXUzpFcG9jaFRpbWUiOjE2NjM4OTQ1OTR9fX1dfQ__&Signature=cxH1RDbcOQ6140UZeFyCiZ8a3eLlgz2osDoZj6AcR2yc5c4g~jhgGw2SbgN6arpNZTrzDZzDACjWpT7xJvat3OcBEnYJfwUubuK0OVZm8T8Pg~pcK7~9q5yN~nSqCAX743YR7rKQr4OZ697EYtvvHtxD4o~UZpgMq0jVlD6t~7pBBVLEkQ-kN8Q9sD6zjwivlzK~yn2NN0AMsX~5SpwUF4APRzJh-cLM~a3iXv6z9CM5X8a0RIrRBy-jP3JEnk3N0kkLtelTtI2ljkwm36EMFaWoKIGwc8gmhY1g8pNKBTFVLoWKMrvzyfK8YIptxYKleO6hcCHrQKngUOnAhq2oag__&Key-Pair-Id=APKAIB5DGCGAQJ4GGIUQ&sessionID=0ea99863-86e2-419e-8289-9bbcde13708c
54.230.111.45200 OK 779 B URL HTTP/2 hls2.videos.sproutvideo.com/f90dce504c91f28ac247aac7fe55b76e/1da148bd126f5bd1efa222a7fb57efe8/video/index.m3u8?Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9obHMyLnZpZGVvcy5zcHJvdXR2aWRlby5jb20vZjkwZGNlNTA0YzkxZjI4YWMyNDdhYWM3ZmU1NWI3NmUvMWRhMTQ4YmQxMjZmNWJkMWVmYTIyMmE3ZmI1N2VmZTgvKi5tM3U4P3Nlc3Npb25JRD0wZWE5OTg2My04NmUyLTQxOWUtODI4OS05YmJjZGUxMzcwOGMiLCJDb25kaXRpb24iOnsiRGF0ZUxlc3NUaGFuIjp7IkFXUzpFcG9jaFRpbWUiOjE2NjM4OTQ1OTR9fX1dfQ__&Signature=cxH1RDbcOQ6140UZeFyCiZ8a3eLlgz2osDoZj6AcR2yc5c4g~jhgGw2SbgN6arpNZTrzDZzDACjWpT7xJvat3OcBEnYJfwUubuK0OVZm8T8Pg~pcK7~9q5yN~nSqCAX743YR7rKQr4OZ697EYtvvHtxD4o~UZpgMq0jVlD6t~7pBBVLEkQ-kN8Q9sD6zjwivlzK~yn2NN0AMsX~5SpwUF4APRzJh-cLM~a3iXv6z9CM5X8a0RIrRBy-jP3JEnk3N0kkLtelTtI2ljkwm36EMFaWoKIGwc8gmhY1g8pNKBTFVLoWKMrvzyfK8YIptxYKleO6hcCHrQKngUOnAhq2oag__&Key-Pair-Id=APKAIB5DGCGAQJ4GGIUQ&sessionID=0ea99863-86e2-419e-8289-9bbcde13708c
IP 54.230.111.45:0
Hash 51b9ecd3d3e89e6aff4ef8fb6f4bc784
0c4fa75aa400d5507f2840cde47858ac6d381309
15dce6bcb4ba44390eb89dda0be98248aae2363a917955525aaf9bf3e09e303e
GET /f90dce504c91f28ac247aac7fe55b76e/1da148bd126f5bd1efa222a7fb57efe8/video/index.m3u8?Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9obHMyLnZpZGVvcy5zcHJvdXR2aWRlby5jb20vZjkwZGNlNTA0YzkxZjI4YWMyNDdhYWM3ZmU1NWI3NmUvMWRhMTQ4YmQxMjZmNWJkMWVmYTIyMmE3ZmI1N2VmZTgvKi5tM3U4P3Nlc3Npb25JRD0wZWE5OTg2My04NmUyLTQxOWUtODI4OS05YmJjZGUxMzcwOGMiLCJDb25kaXRpb24iOnsiRGF0ZUxlc3NUaGFuIjp7IkFXUzpFcG9jaFRpbWUiOjE2NjM4OTQ1OTR9fX1dfQ__&Signature=cxH1RDbcOQ6140UZeFyCiZ8a3eLlgz2osDoZj6AcR2yc5c4g~jhgGw2SbgN6arpNZTrzDZzDACjWpT7xJvat3OcBEnYJfwUubuK0OVZm8T8Pg~pcK7~9q5yN~nSqCAX743YR7rKQr4OZ697EYtvvHtxD4o~UZpgMq0jVlD6t~7pBBVLEkQ-kN8Q9sD6zjwivlzK~yn2NN0AMsX~5SpwUF4APRzJh-cLM~a3iXv6z9CM5X8a0RIrRBy-jP3JEnk3N0kkLtelTtI2ljkwm36EMFaWoKIGwc8gmhY1g8pNKBTFVLoWKMrvzyfK8YIptxYKleO6hcCHrQKngUOnAhq2oag__&Key-Pair-Id=APKAIB5DGCGAQJ4GGIUQ&sessionID=0ea99863-86e2-419e-8289-9bbcde13708c HTTP/1.1
Host: hls2.videos.sproutvideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://videos.sproutvideo.com/embed/ac9edabb1a11e6c425/a7e9f4ed6247b349?autoPlay=true&playerTheme=dark&playerColor=08679e
Origin: https://videos.sproutvideo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: application/x-mpegURL
content-length: 779
date: Thu, 22 Sep 2022 18:56:35 GMT
access-control-allow-origin: https://videos.sproutvideo.com
access-control-allow-methods: GET, HEAD
access-control-allow-credentials: true
last-modified: Mon, 29 Aug 2022 16:47:10 GMT
etag: "51b9ecd3d3e89e6aff4ef8fb6f4bc784"
x-amz-storage-class: INTELLIGENT_TIERING
cache-control: max-age=31536000
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Miss from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CejoBFOAtw3puNzp-EzW41vOZo5WjsjTTPh3laPmGjKujDAgIhQgzg==
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash 0fe7eebcb91f0faccdf6bfc9a97cc1e0
ca404716691fd9b70c08277c5cec392abb9c627a
262781c6c2d1941f79f6a377aee2cd1d703883a2dc706cc83b98354e8b65168b
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 22 Sep 2022 18:56:34 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 21 Sep 2022 23:25:03 GMT
Expires: Thu, 22 Sep 2022 23:25:03 GMT
ETag: "ca404716691fd9b70c08277c5cec392abb9c627a"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
api2.phishingbox.com/images/bin/1605.jpg
54.158.229.58200 OK 90 B URL HTTP/1.1 api2.phishingbox.com/images/bin/1605.jpg
IP 54.158.229.58:0
File type GIF image data, version 89a, 10 x 10\012- data
Hash d911fc7a91ebf69b7f955b24c9ecfd85
d7b20fa94b77bbdb4438cc57ff6e838e1490df78
1b3230e8977501acb798e55aba8d4ca023599801341b6ed6bd4bb157b5f37779
GET /images/bin/1605.jpg HTTP/1.1
Host: api2.phishingbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trade-am.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 18:56:35 GMT
Server: Apache
Strict-Transport-Security: max-age=31536000; includeSubDomains
Referrer-Policy: same-origin
Set-Cookie: PHPSESSID=9h4boijtqn7ui7958d4q73u8bb; expires=Fri, 23-Sep-2022 18:56:35 GMT; Max-Age=86400; path=/; secure; HttpOnly
Expires: Sat, 22 Oct 2022 18:56:35 GMT
Cache-Control: public
Last-Modified: Thu, 01 Jan 1970 00:00:00 GMT
Pragma: !invalid
Content-disposition: inline;filename=error.gif
Content-Length: 90
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/gif
f.hubspotusercontent30.net/hubfs/6535385/trainingtemplates/js/contact_form.js
104.16.185.114200 OK 0 B URL HTTP/2 f.hubspotusercontent30.net/hubfs/6535385/trainingtemplates/js/contact_form.js
IP 104.16.185.114:0
GET /hubfs/6535385/trainingtemplates/js/contact_form.js HTTP/1.1
Host: f.hubspotusercontent30.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trade-am.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:56:33 GMT
content-type: text/plain
cf-ray: 74ed42dcdef0b512-OSL
access-control-allow-origin: *
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900
etag: W/"be06a8994e2576c32baf24adc40b8929"
last-modified: Thu, 15 Oct 2020 14:37:27 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 752474607e5162b3278b647bb0ff3818.cloudfront.net (CloudFront)
cf-cache-status: MISS
access-control-allow-methods: GET
cache-tag: F-36108800398,FD-36114114172,P-6535385,FLS-ALL
edge-cache-tag: F-36108800398,FD-36114114172,P-6535385,FLS-ALL
x-amz-cf-id: zp-xTW0SwxkFs-LExFqtvPoibkxPc8pTfKX4mf0baW4G1EC_DbkpUQ==
x-amz-cf-pop: HEL50-C1
x-amz-id-2: E7NhSlkG8vR9Sy4rYRjVGO1XK84AuEws1tBdbOGQI0i6BsNCIO78bwqcUDrIyQAovYhh9Nu+Qas=
x-amz-meta-cache-tag: F-36108800398,FD-36114114172,P-6535385,FLS-ALL
x-amz-meta-created-unix-time-millis: 1602772646015
x-amz-meta-index-tag: all
x-amz-replication-status: COMPLETED
x-amz-request-id: 61JEX9AEDVJ50EEY
x-amz-server-side-encryption: AES256
x-amz-version-id: 4oBU42y6Cb.0HlFXb8ndc77H6aJpNsrc
x-cache: RefreshHit from cloudfront
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-robots-tag: all
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
f.hubspotusercontent30.net/hubfs/6535385/trainingtemplates/js/exitpopup.js
104.16.185.114200 OK 0 B URL HTTP/2 f.hubspotusercontent30.net/hubfs/6535385/trainingtemplates/js/exitpopup.js
IP 104.16.185.114:0
GET /hubfs/6535385/trainingtemplates/js/exitpopup.js HTTP/1.1
Host: f.hubspotusercontent30.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trade-am.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:56:33 GMT
content-type: text/plain
cf-ray: 74ed42dcdeebb512-OSL
access-control-allow-origin: *
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900
etag: W/"6389f47db686552284740db4d97b5d75"
last-modified: Thu, 15 Oct 2020 14:37:27 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
cf-cache-status: MISS
access-control-allow-methods: GET
cache-tag: F-36113786248,FD-36114114172,P-6535385,FLS-ALL
edge-cache-tag: F-36113786248,FD-36114114172,P-6535385,FLS-ALL
x-amz-cf-id: tb-8oKz3mzZzK9sre0qi_xaIcJe0GZM31CHBFuam3-0JnCwNoEQLeg==
x-amz-cf-pop: OSL50-C1
x-amz-id-2: P+28InyehVmF6s7LyHURo0I+vgIog1G6siZPUvFR/i+emhq8z4q29Pml6x2ThBG+lVicgpU7iVA=
x-amz-meta-cache-tag: F-36113786248,FD-36114114172,P-6535385,FLS-ALL
x-amz-meta-created-unix-time-millis: 1602772646008
x-amz-meta-index-tag: all
x-amz-replication-status: COMPLETED
x-amz-request-id: AV0AKE7KJ5D67JH4
x-amz-server-side-encryption: AES256
x-amz-version-id: U8I.kyUUrOmA67gKgiIZmHfSmt9oBeW0
x-cache: RefreshHit from cloudfront
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-robots-tag: all
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
f.hubspotusercontent30.net/hubfs/6535385/trainingtemplates/css/bootstrap.min.css
104.16.185.114200 OK 0 B URL HTTP/2 f.hubspotusercontent30.net/hubfs/6535385/trainingtemplates/css/bootstrap.min.css
IP 104.16.185.114:0
GET /hubfs/6535385/trainingtemplates/css/bootstrap.min.css HTTP/1.1
Host: f.hubspotusercontent30.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trade-am.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:56:33 GMT
content-type: text/css
cf-ray: 74ed42dcced4b512-OSL
access-control-allow-origin: *
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900
etag: W/"8a7442ca6bedd62cec4881040b9a9e83"
last-modified: Thu, 15 Oct 2020 14:41:43 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 4b3b9541fe386ba754a368a9d0694d7a.cloudfront.net (CloudFront)
cf-cache-status: MISS
access-control-allow-methods: GET
cache-tag: F-36114144266,FD-36108800335,P-6535385,FLS-ALL
edge-cache-tag: F-36114144266,FD-36108800335,P-6535385,FLS-ALL
x-amz-cf-id: aM1xGs-8Ga4pqit6xIwMqcc2RQSum2k4bd7-9YYbQyxXbu2QMPkAXw==
x-amz-cf-pop: HEL50-C1
x-amz-id-2: lSNuWAk9jZCmyTOW5T1wwGFMg5srGp5v1dmnskkkqbsyhUqYOykbvNTYOfSeWfmq+X20qSzLC4U=
x-amz-meta-cache-tag: F-36114144266,FD-36108800335,P-6535385,FLS-ALL
x-amz-meta-created-unix-time-millis: 1602772902306
x-amz-meta-index-tag: all
x-amz-replication-status: COMPLETED
x-amz-request-id: W1PM6A82FAP88TXC
x-amz-server-side-encryption: AES256
x-amz-version-id: yo6iW_ot_VqlcvHF9RHDsZqAUfiZTmHJ
x-cache: RefreshHit from cloudfront
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-robots-tag: all
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www.youtube.com/player_api
216.58.211.14200 OK 0 B URL HTTP/2 www.youtube.com/player_api
IP 216.58.211.14:0
GET /player_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trade-am.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Thu, 22 Sep 2022 18:56:33 GMT
date: Thu, 22 Sep 2022 18:56:33 GMT
cache-control: private, max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=jarRt-4ZvWA; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=Gfo8lT1oLOU; Domain=.youtube.com; Expires=Tue, 21-Mar-2023 18:56:33 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+289; expires=Sat, 21-Sep-2024 18:56:33 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
d1ajyp3swh7ygp.cloudfront.net/es6-85aa26e66b.min.js
143.204.42.151200 OK 0 B URL HTTP/2 d1ajyp3swh7ygp.cloudfront.net/es6-85aa26e66b.min.js
IP 143.204.42.151:0
GET /es6-85aa26e66b.min.js HTTP/1.1
Host: d1ajyp3swh7ygp.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://videos.sproutvideo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 02 Sep 2022 02:24:55 GMT
last-modified: Wed, 31 Aug 2022 19:00:17 GMT
etag: W/"85aa26e66b7aaccd0415a1b874376fc5"
cache-control: public,max-age=2592000
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Gu3N68mI1YZiyWtqtqIGuesGqTORgK_YUPyDPIULiEZV1QlNFD-JTw==
age: 1787499
X-Firefox-Spdy: h2
d1ajyp3swh7ygp.cloudfront.net/jquery.min.js
143.204.42.151200 OK 0 B URL HTTP/2 d1ajyp3swh7ygp.cloudfront.net/jquery.min.js
IP 143.204.42.151:0
GET /jquery.min.js HTTP/1.1
Host: d1ajyp3swh7ygp.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://videos.sproutvideo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 29 Aug 2022 03:56:25 GMT
last-modified: Mon, 15 Jul 2019 14:50:58 GMT
etag: W/"24bd97b1de158c4f1a162336eeca4aa6"
cache-control: public,max-age=31536000
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UJB2xAPVA7RgrwGBBPwj9KqsxVQMh2kSEkodLX-uUD1e8lOfDAgJQA==
age: 2127610
X-Firefox-Spdy: h2
f.hubspotusercontent30.net/hubfs/6535385/trainingtemplates/js/fitvids.js
104.16.185.114200 OK 0 B URL HTTP/2 f.hubspotusercontent30.net/hubfs/6535385/trainingtemplates/js/fitvids.js
IP 104.16.185.114:0
GET /hubfs/6535385/trainingtemplates/js/fitvids.js HTTP/1.1
Host: f.hubspotusercontent30.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trade-am.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:56:33 GMT
content-type: text/plain
cf-ray: 74ed42dcced9b512-OSL
access-control-allow-origin: *
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900
etag: W/"c623fe35b0fa2d142644680f2ad28f11"
last-modified: Thu, 15 Oct 2020 14:37:27 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
cf-cache-status: MISS
access-control-allow-methods: GET
cache-tag: F-36113123597,FD-36114114172,P-6535385,FLS-ALL
edge-cache-tag: F-36113123597,FD-36114114172,P-6535385,FLS-ALL
x-amz-cf-id: 2QP_PnWIa7UI0ZvXAVqxpj1ybYYz4-9KPgapM2XlwCvhCiD5r27gVQ==
x-amz-cf-pop: OSL50-C1
x-amz-id-2: AufGpW2rGsgUw6HvdjF0X8Cuffnq/JXZbLKwAP5i1SlXkR7sX9bvjks3Saps6nzUBygy64G+UVA=
x-amz-meta-cache-tag: F-36113123597,FD-36114114172,P-6535385,FLS-ALL
x-amz-meta-created-unix-time-millis: 1602772646014
x-amz-meta-index-tag: all
x-amz-replication-status: COMPLETED
x-amz-request-id: 2K3TB4NWPYF4D3T1
x-amz-server-side-encryption: AES256
x-amz-version-id: fAXB7ZyCBh1MAioPhA8Fz.ZqZsrfo_mT
x-cache: RefreshHit from cloudfront
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-robots-tag: all
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
f.hubspotusercontent30.net/hubfs/6535385/trainingtemplates/js/bootstrap.min.js
104.16.185.114200 OK 0 B URL HTTP/2 f.hubspotusercontent30.net/hubfs/6535385/trainingtemplates/js/bootstrap.min.js
IP 104.16.185.114:0
GET /hubfs/6535385/trainingtemplates/js/bootstrap.min.js HTTP/1.1
Host: f.hubspotusercontent30.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trade-am.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:56:33 GMT
content-type: text/plain
cf-ray: 74ed42dcceeab512-OSL
access-control-allow-origin: *
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900
etag: W/"ba847811448ef90d98d272aeccef2a95"
last-modified: Thu, 15 Oct 2020 14:37:27 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 2927b5fd4ddd05be6a9ce18058f195ee.cloudfront.net (CloudFront)
cf-cache-status: MISS
access-control-allow-methods: GET
cache-tag: F-36113786249,FD-36114114172,P-6535385,FLS-ALL
edge-cache-tag: F-36113786249,FD-36114114172,P-6535385,FLS-ALL
x-amz-cf-id: op35SXuu6XvG3cZ6cju7K6d9vC1RvKFAmbxDEjkYO0PlNAUuiJ_DiQ==
x-amz-cf-pop: HEL50-C1
x-amz-id-2: PoT8RLp3cslo6YZIklQKe/bUNgrgMbe5iVfiMUkcWRJvN/KzrLgoDRx1oy/kua4Oqhace7fEmEU=
x-amz-meta-cache-tag: F-36113786249,FD-36114114172,P-6535385,FLS-ALL
x-amz-meta-created-unix-time-millis: 1602772646106
x-amz-meta-index-tag: all
x-amz-replication-status: COMPLETED
x-amz-request-id: 043MNDWJ1VRG1FDW
x-amz-server-side-encryption: AES256
x-amz-version-id: s1uNT.IKYApeFXGZAxbfZaRz8BoT8prL
x-cache: RefreshHit from cloudfront
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-robots-tag: all
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
f.hubspotusercontent30.net/hubfs/6535385/trainingtemplates/js/jquery.js
104.16.185.114200 OK 0 B URL HTTP/2 f.hubspotusercontent30.net/hubfs/6535385/trainingtemplates/js/jquery.js
IP 104.16.185.114:0
GET /hubfs/6535385/trainingtemplates/js/jquery.js HTTP/1.1
Host: f.hubspotusercontent30.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trade-am.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:56:33 GMT
content-type: text/plain
cf-ray: 74ed42dcdefab512-OSL
access-control-allow-origin: *
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900
etag: W/"841dc30647f93349b7d8ef61deebe411"
last-modified: Thu, 15 Oct 2020 14:37:27 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
cf-cache-status: MISS
access-control-allow-methods: GET
cache-tag: F-36108800401,FD-36114114172,P-6535385,FLS-ALL
edge-cache-tag: F-36108800401,FD-36114114172,P-6535385,FLS-ALL
x-amz-cf-id: yHG56Nl4GCLyx00WWPZ-MFhjuKo2kc6dra9O7wEDZTq-Osl44TdFdw==
x-amz-cf-pop: OSL50-C1
x-amz-id-2: BGTbPb+IBZJnMgjLdqMyCNiXb/YeGKT1pYp9oRgfA6OrHBFfwYSt00OwRKLalf9G57rhRCigcUU=
x-amz-meta-cache-tag: F-36108800401,FD-36114114172,P-6535385,FLS-ALL
x-amz-meta-created-unix-time-millis: 1602772646397
x-amz-meta-index-tag: all
x-amz-replication-status: COMPLETED
x-amz-request-id: YQHQ7VJZ39QKYZE1
x-amz-server-side-encryption: AES256
x-amz-version-id: FQXXEL2pqNIYTqyXz28SQKKwhnknxH7W
x-cache: RefreshHit from cloudfront
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-robots-tag: all
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
f.hubspotusercontent30.net/hubfs/6535385/trainingtemplates/js/ketchup.all.js
104.16.185.114200 OK 0 B URL HTTP/2 f.hubspotusercontent30.net/hubfs/6535385/trainingtemplates/js/ketchup.all.js
IP 104.16.185.114:0
GET /hubfs/6535385/trainingtemplates/js/ketchup.all.js HTTP/1.1
Host: f.hubspotusercontent30.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://trade-am.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:56:33 GMT
content-type: text/plain
cf-ray: 74ed42dcced7b512-OSL
access-control-allow-origin: *
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900
etag: W/"5e06995c3723d3887a4aedb582dc1dcc"
last-modified: Thu, 15 Oct 2020 14:37:27 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 891326e51cae7827755c7a9147113a54.cloudfront.net (CloudFront)
cf-cache-status: MISS
access-control-allow-methods: GET
cache-tag: F-36108800399,FD-36114114172,P-6535385,FLS-ALL
edge-cache-tag: F-36108800399,FD-36114114172,P-6535385,FLS-ALL
x-amz-cf-id: NycPG8es_udSP9nRxK7c1hBo9QUqvZzm89ZqvwBWU4omTPjbCrV3LQ==
x-amz-cf-pop: HEL50-C1
x-amz-id-2: mVWCTPY2YCrO+VSy/trF3yEpULKL1lqP5GiQuYOVbwOqrMn/xX+vNZlEb0gqHEU2QEbBHKY3+jQ=
x-amz-meta-cache-tag: F-36108800399,FD-36114114172,P-6535385,FLS-ALL
x-amz-meta-created-unix-time-millis: 1602772646021
x-amz-meta-index-tag: all
x-amz-replication-status: COMPLETED
x-amz-request-id: YQHSK437W3NM29X5
x-amz-server-side-encryption: AES256
x-amz-version-id: N5jyKQG4T2ZOImSpC38lniTSZcURsxS5
x-cache: RefreshHit from cloudfront
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
x-robots-tag: all
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2