caisse-ingbe.firebaseapp.com/
199.36.158.100301 Moved Permanently 0 B URL HTTP/1.1 caisse-ingbe.firebaseapp.com/
IP 199.36.158.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert openphish ING
fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: caisse-ingbe.firebaseapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: Varnish
Retry-After: 0
Location: https://caisse-ingbe.firebaseapp.com/
Content-Length: 0
Accept-Ranges: bytes
Date: Wed, 14 Sep 2022 08:12:46 GMT
Connection: close
X-Served-By: cache-bma1683-BMA
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1663143166.064254,VS0,VE0
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 14 Sep 2022 08:01:20 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: JkAvwjSMP8LCsBtBvGYGc0ZHSp8Ksyt8JnPyhBSqRZNeWlnI2hbe_w==
Age: 686
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash be88d3e043e3b95b52e41812e50fb634
0318ba1ce487817ea7cba61dd9413bed29213800
b5f178d23e633283f226cca7a9ae79b01e6cab2299ff7065c980d3a9953212fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5F178D23E633283F226CCA7A9AE79B01E6CAB2299FF7065C980D3A9953212FD"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3639
Expires: Wed, 14 Sep 2022 09:13:25 GMT
Date: Wed, 14 Sep 2022 08:12:46 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 14 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mqB517WNe_A5wobaEEBZNmy18JDUb-b1GlCGzAB5qzVFz_H4xjOoOw==
age: 13051
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 08:12:46 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
caisse-ingbe.firebaseapp.com/
199.36.158.100200 OK 315 B URL HTTP/2 caisse-ingbe.firebaseapp.com/
IP 199.36.158.100:0
File type HTML document, ASCII text, with CRLF line terminators
Hash 7b79bac71e1cd95beacb22e904c64dff
94605f8e206aeeadae712054058ffd76793923bf
13e3034ae294d7bb3b5f3b34d2cda4b1b29af74f5749a1162ac93b4f0b95aac0
Analyzer Verdict Alert openphish ING
fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: caisse-ingbe.firebaseapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "806d484f52eedcf5fc120180415b0662a9a316aa729394dc83877feaf2d5735f-br"
last-modified: Mon, 12 Sep 2022 12:08:01 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Wed, 14 Sep 2022 08:12:46 GMT
x-served-by: cache-bma1678-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663143166.372044,VS0,VE178
vary: x-fh-requested-host, accept-encoding
content-length: 315
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4int/vfTajG9ARFE
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4int/vfTajG9ARFE
IP 142.250.74.3:0
Hash 5fdda6734dba7193c7a8e8159355d7d0
6af3898e5776f384d703b43a6183767bdd6cc496
69a47263b4d280d7cbe9fafa5481534cb3477ad870f2ec59518bf69a9d639ece
POST /s/gts1d4int/vfTajG9ARFE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 08:12:46 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
be-ing-site.web.app/
199.36.158.100200 OK 3.1 kB IP 199.36.158.100:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7659), with CRLF line terminators
Hash e280571055b9049c779c523efe6d28ff
7eaded3e251b4dfd298199a8b2a08e63d05f7f82
6bad388a2bb477b5b79f8d0e6cd458cb62d042f96b3b97a6bed9455fd309d72b
Analyzer Verdict Alert openphish ING
fortinet Phishing
GET / HTTP/1.1
Host: be-ing-site.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://caisse-ingbe.firebaseapp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "e9c097dc8e76090978b3b436c7d3cd2f0eaea704d47a7e2987e62117da075513-br"
last-modified: Mon, 12 Sep 2022 12:00:38 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Wed, 14 Sep 2022 08:12:46 GMT
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663143167.689915,VS0,VE1
vary: x-fh-requested-host, accept-encoding
content-length: 3120
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4int/7ZBQLSBvJ5A
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4int/7ZBQLSBvJ5A
IP 142.250.74.3:0
Hash 09aedd454322c60e78adc121d5ef0a40
2aa461b6b679c8767de1586bc485727169f0924e
5b50540ab017960f678760e90175a4bc5a898289ae8467a76571f99f7abddf4c
POST /s/gts1d4int/7ZBQLSBvJ5A HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 08:12:46 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
be-ing-site.web.app/static/css/brand.css
199.36.158.100200 OK 139 B URL HTTP/2 be-ing-site.web.app/static/css/brand.css
IP 199.36.158.100:0
Hash af8ff8038c12331a8df7e2896d2a3d98
9de31745dfcb420f08b16c100f82806a3809ef07
506dc65610b54979a898420572aa4a792db3e2eb2cbf787c2366973836eb363c
Analyzer Verdict Alert openphish ING
GET /static/css/brand.css HTTP/1.1
Host: be-ing-site.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://be-ing-site.web.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cache-control: max-age=3600
content-encoding: br
content-type: text/css; charset=utf-8
etag: "61d366ecbf150121eb6ab31014a996fceb06df18ff4a5c04196664b0fde74ba8-br"
last-modified: Mon, 12 Sep 2022 12:00:38 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Wed, 14 Sep 2022 08:12:46 GMT
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1663143167.763793,VS0,VE0
vary: x-fh-requested-host, accept-encoding
content-length: 139
X-Firefox-Spdy: h2
be-ing-site.web.app/iwov-resources/fixed-layout/Web-Banking-Unauthenticated.css
199.36.158.100200 OK 3.1 kB URL HTTP/2 be-ing-site.web.app/iwov-resources/fixed-layout/Web-Banking-Unauthenticated.css
IP 199.36.158.100:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7659), with CRLF line terminators
Hash e280571055b9049c779c523efe6d28ff
7eaded3e251b4dfd298199a8b2a08e63d05f7f82
6bad388a2bb477b5b79f8d0e6cd458cb62d042f96b3b97a6bed9455fd309d72b
Analyzer Verdict Alert openphish ING
GET /iwov-resources/fixed-layout/Web-Banking-Unauthenticated.css HTTP/1.1
Host: be-ing-site.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://be-ing-site.web.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "e9c097dc8e76090978b3b436c7d3cd2f0eaea704d47a7e2987e62117da075513-br"
last-modified: Mon, 12 Sep 2022 12:00:38 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Wed, 14 Sep 2022 08:12:46 GMT
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663143167.763401,VS0,VE1
vary: x-fh-requested-host, accept-encoding
content-length: 3120
X-Firefox-Spdy: h2
be-ing-site.web.app/static/css/mediaelementplayer.min.css
199.36.158.100200 OK 1.8 kB URL HTTP/2 be-ing-site.web.app/static/css/mediaelementplayer.min.css
IP 199.36.158.100:0
Hash 7fdc9f53e3665a5f5d16d5c02316383f
920c9dee2b55ef1c50432bff6fffdf77c7bff8f1
d46e0841193c19ea679ee0503268a75bd24fc53d42bc8cef65a4cc795134dd9b
Analyzer Verdict Alert openphish ING
GET /static/css/mediaelementplayer.min.css HTTP/1.1
Host: be-ing-site.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://be-ing-site.web.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cache-control: max-age=3600
content-encoding: br
content-type: text/css; charset=utf-8
etag: "a33d6217568f1603a9cea17a82b64698f4b83c1d175fcb883e11f0cd9baea670-br"
last-modified: Mon, 12 Sep 2022 12:00:38 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Wed, 14 Sep 2022 08:12:46 GMT
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663143167.764935,VS0,VE1
vary: x-fh-requested-host, accept-encoding
content-length: 1795
X-Firefox-Spdy: h2
be-ing-site.web.app/static/css/base.css
199.36.158.100200 OK 337 B URL HTTP/2 be-ing-site.web.app/static/css/base.css
IP 199.36.158.100:0
File type ASCII text, with CRLF line terminators
Hash c8761c97af49b169cfeb550d9ec2c367
8d12f1ac2013a13781312ad66bc5e58b41d3b7df
a410f89854e76237fd1acd9059ae0886e81fcec5c30b45b256d215643e5d9260
Analyzer Verdict Alert openphish ING
GET /static/css/base.css HTTP/1.1
Host: be-ing-site.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://be-ing-site.web.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cache-control: max-age=3600
content-encoding: br
content-type: text/css; charset=utf-8
etag: "39d873e4d3ef14eee993f39869a48f27dd709cc315ca365e715bba119e2adbd4-br"
last-modified: Mon, 12 Sep 2022 12:00:38 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Wed, 14 Sep 2022 08:12:46 GMT
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663143167.766009,VS0,VE1
vary: x-fh-requested-host, accept-encoding
content-length: 337
X-Firefox-Spdy: h2
be-ing-site.web.app/static/css/global.css
199.36.158.100200 OK 3.1 kB URL HTTP/2 be-ing-site.web.app/static/css/global.css
IP 199.36.158.100:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7659), with CRLF line terminators
Hash e280571055b9049c779c523efe6d28ff
7eaded3e251b4dfd298199a8b2a08e63d05f7f82
6bad388a2bb477b5b79f8d0e6cd458cb62d042f96b3b97a6bed9455fd309d72b
Analyzer Verdict Alert openphish ING
GET /static/css/global.css HTTP/1.1
Host: be-ing-site.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://be-ing-site.web.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "e9c097dc8e76090978b3b436c7d3cd2f0eaea704d47a7e2987e62117da075513-br"
last-modified: Mon, 12 Sep 2022 12:00:38 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Wed, 14 Sep 2022 08:12:46 GMT
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663143167.766926,VS0,VE1
vary: x-fh-requested-host, accept-encoding
content-length: 3120
X-Firefox-Spdy: h2
be-ing-site.web.app/static/css/ing-auth-type-tabs.css
199.36.158.100200 OK 3.1 kB URL HTTP/2 be-ing-site.web.app/static/css/ing-auth-type-tabs.css
IP 199.36.158.100:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7659), with CRLF line terminators
Hash e280571055b9049c779c523efe6d28ff
7eaded3e251b4dfd298199a8b2a08e63d05f7f82
6bad388a2bb477b5b79f8d0e6cd458cb62d042f96b3b97a6bed9455fd309d72b
Analyzer Verdict Alert openphish ING
GET /static/css/ing-auth-type-tabs.css HTTP/1.1
Host: be-ing-site.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://be-ing-site.web.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "e9c097dc8e76090978b3b436c7d3cd2f0eaea704d47a7e2987e62117da075513-br"
last-modified: Mon, 12 Sep 2022 12:00:38 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Wed, 14 Sep 2022 08:12:46 GMT
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663143167.767648,VS0,VE1
vary: x-fh-requested-host, accept-encoding
content-length: 3120
X-Firefox-Spdy: h2
be-ing-site.web.app/country-config-nl-BE.42c990c321a661a5a581.js
199.36.158.100200 OK 3.1 kB URL HTTP/2 be-ing-site.web.app/country-config-nl-BE.42c990c321a661a5a581.js
IP 199.36.158.100:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7659), with CRLF line terminators
Hash e280571055b9049c779c523efe6d28ff
7eaded3e251b4dfd298199a8b2a08e63d05f7f82
6bad388a2bb477b5b79f8d0e6cd458cb62d042f96b3b97a6bed9455fd309d72b
Analyzer Verdict Alert openphish ING
fortinet Phishing
GET /country-config-nl-BE.42c990c321a661a5a581.js HTTP/1.1
Host: be-ing-site.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://be-ing-site.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "e9c097dc8e76090978b3b436c7d3cd2f0eaea704d47a7e2987e62117da075513-br"
last-modified: Mon, 12 Sep 2022 12:00:38 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Wed, 14 Sep 2022 08:12:46 GMT
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 2
x-timer: S1663143167.769046,VS0,VE0
vary: x-fh-requested-host, accept-encoding
content-length: 3120
X-Firefox-Spdy: h2
be-ing-site.web.app/header-nl-BE.7e9796cd8980851dd5e0.js
199.36.158.100200 OK 3.1 kB URL HTTP/2 be-ing-site.web.app/header-nl-BE.7e9796cd8980851dd5e0.js
IP 199.36.158.100:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7659), with CRLF line terminators
Hash e280571055b9049c779c523efe6d28ff
7eaded3e251b4dfd298199a8b2a08e63d05f7f82
6bad388a2bb477b5b79f8d0e6cd458cb62d042f96b3b97a6bed9455fd309d72b
Analyzer Verdict Alert openphish ING
fortinet Phishing
GET /header-nl-BE.7e9796cd8980851dd5e0.js HTTP/1.1
Host: be-ing-site.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://be-ing-site.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "e9c097dc8e76090978b3b436c7d3cd2f0eaea704d47a7e2987e62117da075513-br"
last-modified: Mon, 12 Sep 2022 12:00:38 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Wed, 14 Sep 2022 08:12:46 GMT
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663143167.770044,VS0,VE1
vary: x-fh-requested-host, accept-encoding
content-length: 3120
X-Firefox-Spdy: h2
be-ing-site.web.app/main-nl-BE.947fda6f53ac804cf048.js
199.36.158.100200 OK 3.1 kB URL HTTP/2 be-ing-site.web.app/main-nl-BE.947fda6f53ac804cf048.js
IP 199.36.158.100:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7659), with CRLF line terminators
Hash e280571055b9049c779c523efe6d28ff
7eaded3e251b4dfd298199a8b2a08e63d05f7f82
6bad388a2bb477b5b79f8d0e6cd458cb62d042f96b3b97a6bed9455fd309d72b
Analyzer Verdict Alert openphish ING
fortinet Phishing
GET /main-nl-BE.947fda6f53ac804cf048.js HTTP/1.1
Host: be-ing-site.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://be-ing-site.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "e9c097dc8e76090978b3b436c7d3cd2f0eaea704d47a7e2987e62117da075513-br"
last-modified: Mon, 12 Sep 2022 12:00:38 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Wed, 14 Sep 2022 08:12:46 GMT
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663143167.770564,VS0,VE1
vary: x-fh-requested-host, accept-encoding
content-length: 3120
X-Firefox-Spdy: h2
be-ing-site.web.app/static/css/app.cdede159570c3a64ab5edb0b7d3ff55b.css
199.36.158.100200 OK 92 B URL HTTP/2 be-ing-site.web.app/static/css/app.cdede159570c3a64ab5edb0b7d3ff55b.css
IP 199.36.158.100:0
Hash 6374c78ec7040b72b2c85f8ce073d978
41bceb515a02e898d07f48895ede91c89d29d623
c48cb154d913fed893b4920867fd6a57b96e495b13e9765a8b1c1365d833e36a
Analyzer Verdict Alert openphish ING
GET /static/css/app.cdede159570c3a64ab5edb0b7d3ff55b.css HTTP/1.1
Host: be-ing-site.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://be-ing-site.web.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cache-control: max-age=3600
content-type: text/css; charset=utf-8
etag: "c4a71e0f4c900c0df2b8753ee9c34691082b30462b594bfe8feb3ac22641056c"
last-modified: Mon, 12 Sep 2022 12:00:38 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Wed, 14 Sep 2022 08:12:46 GMT
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663143167.771841,VS0,VE1
vary: x-fh-requested-host, accept-encoding
content-length: 92
X-Firefox-Spdy: h2
be-ing-site.web.app/ing-app-authentication-nl-BE.505adfe99bbd01f1e085.js
199.36.158.100200 OK 3.1 kB URL HTTP/2 be-ing-site.web.app/ing-app-authentication-nl-BE.505adfe99bbd01f1e085.js
IP 199.36.158.100:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7659), with CRLF line terminators
Hash e280571055b9049c779c523efe6d28ff
7eaded3e251b4dfd298199a8b2a08e63d05f7f82
6bad388a2bb477b5b79f8d0e6cd458cb62d042f96b3b97a6bed9455fd309d72b
Analyzer Verdict Alert openphish ING
fortinet Phishing
GET /ing-app-authentication-nl-BE.505adfe99bbd01f1e085.js HTTP/1.1
Host: be-ing-site.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://be-ing-site.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "e9c097dc8e76090978b3b436c7d3cd2f0eaea704d47a7e2987e62117da075513-br"
last-modified: Mon, 12 Sep 2022 12:00:38 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Wed, 14 Sep 2022 08:12:46 GMT
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663143167.771367,VS0,VE1
vary: x-fh-requested-host, accept-encoding
content-length: 3120
X-Firefox-Spdy: h2
be-ing-site.web.app/static/js/manifest.2ae2e69a05c33dfc65f8.js
199.36.158.100200 OK 444 B URL HTTP/2 be-ing-site.web.app/static/js/manifest.2ae2e69a05c33dfc65f8.js
IP 199.36.158.100:0
File type ASCII text, with very long lines (799)
Hash caba5a7f7b67a3cc227d1650b1ba17f0
997e5cb163879a2ec5f3168094657d2d331dfd93
1ef691851eaf13d0fa493fe6c0f3f7b44ccb199b1e281488fbe2cb37740c758a
Analyzer Verdict Alert openphish ING
fortinet Phishing
GET /static/js/manifest.2ae2e69a05c33dfc65f8.js HTTP/1.1
Host: be-ing-site.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://be-ing-site.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cache-control: max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "b75564b7b0a34a893ddd99dd68f6ccd1819053658ea868367f6f31e3502e9d60-br"
last-modified: Mon, 12 Sep 2022 12:00:38 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Wed, 14 Sep 2022 08:12:46 GMT
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663143167.775330,VS0,VE1
vary: x-fh-requested-host, accept-encoding
content-length: 444
X-Firefox-Spdy: h2
be-ing-site.web.app/static/js/vendor.ed15ba16fb431a23c61c.js
199.36.158.100200 OK 270 kB URL HTTP/2 be-ing-site.web.app/static/js/vendor.ed15ba16fb431a23c61c.js
IP 199.36.158.100:0
File type Unicode text, UTF-8 text, with very long lines (36921)
Size 270 kB (270409 bytes)
Hash 9c61fbb7863a3470e7d6eda0df5e983a
2a6152b279e206c0e28a0ff6145aa84db1873a6d
fb2bd3b8fb71d9dae39dfeac1ae6bb7239660e6d70ae8e502c9375ba0b204769
Analyzer Verdict Alert openphish ING
fortinet Phishing
GET /static/js/vendor.ed15ba16fb431a23c61c.js HTTP/1.1
Host: be-ing-site.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://be-ing-site.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cache-control: max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "1e7c6931b6016539f9e9c700d9e1342fcd15a91693ffb39b78a73259ecf07f26-br"
last-modified: Mon, 12 Sep 2022 12:00:38 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Wed, 14 Sep 2022 08:12:46 GMT
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1663143167.776492,VS0,VE2
vary: x-fh-requested-host, accept-encoding
content-length: 270409
X-Firefox-Spdy: h2
be-ing-site.web.app/static/css//hyper-elements.css
199.36.158.100301 Moved Permanently 65 B URL HTTP/2 be-ing-site.web.app/static/css//hyper-elements.css
IP 199.36.158.100:0
File type HTML document, ASCII text
Hash 5066464bd0435b2eaf2b302e2f588f0c
e2800a2175f858204e038d3426e96fe9cf018c1e
9ada6ad240fe73f7743b92aeeb615943b1ebb4a080b5428b352fc798b19406f5
Analyzer Verdict Alert openphish ING
GET /static/css//hyper-elements.css HTTP/1.1
Host: be-ing-site.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://be-ing-site.web.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 301 Moved Permanently
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-type: text/html; charset=utf-8
location: /static/css/hyper-elements.css
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 0
accept-ranges: bytes
date: Wed, 14 Sep 2022 08:12:46 GMT
x-served-by: cache-bma1643-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663143167.768182,VS0,VE28
content-length: 65
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/3.4.0/jquery.min.js
142.250.74.170200 OK 31 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.4.0/jquery.min.js
IP 142.250.74.170:0
File type ASCII text, with very long lines (65451)
Hash 2acb91a52609d98e033b92e973500257
4ebcc3ee25749444de6454ee2009fb26a602f6fb
9fdd3f844aa3d86042f0b2f8ef839240ace6d14334b464b77847a5c329272da2
GET /ajax/libs/jquery/3.4.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://be-ing-site.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30768
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 10 Sep 2022 21:36:14 GMT
expires: Sun, 10 Sep 2023 21:36:14 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 297392
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.entrust.net/
23.13.44.131200 OK 1.6 kB IP 23.13.44.131:0
Hash 7175e11b240193ec8883a3a17ae92629
0f584d14f7ddc29d3ae13764b4c98db77b89a6af
3f18be633b63c2e2e080ee50734f94bb9b3406cd612cccd31e587f6daef5b6a0
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "3F18BE633B63C2E2E080EE50734F94BB9B3406CD612CCCD31E587F6DAEF5B6A0"
Last-Modified: Tue, 13 Sep 2022 23:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=1045
Expires: Wed, 14 Sep 2022 08:30:12 GMT
Date: Wed, 14 Sep 2022 08:12:47 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Wed, 14 Sep 2022 08:03:22 GMT
Expires: Wed, 14 Sep 2022 09:01:28 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: LzGlgjvaXiJTv0Z0ueHNOus_wddoxbiqZR_Zt3HcQGsDx1zNwWL6Kw==
Age: 565
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4a68e0856575d52f7778bc821b5c881b
0956533f660fd0e7096540292f9b60451f60f148
0fde07586af73476634e76ed5badfce43d8b4ec078fd0f172d80c28ad98e3d27
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 08:12:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ing.be/static-fe/ing-app-be-daily-banking-shell/node_modules/ing-platform/packages/ing-top-bar/assets/images/ing-logo-full.svg
23.13.36.80200 OK 4.3 kB URL HTTP/1.1 www.ing.be/static-fe/ing-app-be-daily-banking-shell/node_modules/ing-platform/packages/ing-top-bar/assets/images/ing-logo-full.svg
IP 23.13.36.80:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (11581)
Hash 8ad02625745047d895347abd22632b9f
fb594f983c755ad1b36b88e15fad45d974ff69ae
6cd33480a4d7c5edf4db23e3c8d625e55e6e759a00c38da9697fe3c315826325
GET /static-fe/ing-app-be-daily-banking-shell/node_modules/ing-platform/packages/ing-top-bar/assets/images/ing-logo-full.svg HTTP/1.1
Host: www.ing.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://be-ing-site.web.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Content-Length: 4264
Last-Modified: Wed, 07 Sep 2022 12:59:12 GMT
Content-Encoding: gzip
Vary: Accept-Encoding
ETag: "DA8D6E0ADE7168E0"
Strict-Transport-Security: max-age=31622400; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache
X-ING-Response-ID: 246ba8e0-582f-4dec-8ba6-a43210ff6bf7
Date: Wed, 14 Sep 2022 08:12:47 GMT
Connection: keep-alive
Set-Cookie: XSRF-TOKEN=eyQ-tYp-4KmtWCEoUdkMlWO7hNeV4bOWuRLMNfLCCNpiV67dqAddq-kpUp4WgLn6; Path=/; Domain=.ing.be; Secure;
aac=4d0a93894e0a9cbfc6badad1a4bf4ecf00269440f5b1f18ebc8e5c8d9124637bc97b6f948bd9f3871b3f72886320bbef0eb52688e8fbbcca; Path=/; Domain=.ing.be; Max-Age=157680000; Secure;
fecvm=6.131.1; Path=/static-fe/ing-app-be-daily-banking-shell; SameSite=Lax; HttpOnly; Secure
lb-3-p-727=!FJcUu3Uj2h0lsIH/MkKaz8QFE5mzh9x0az0Ij8tECOI5JO7tNYGqUGY3/Y5Q142utbGsydJBDUIDIHXL1PuXJNzCtQCDBGo9P69U5awG8w==; path=/; Httponly; Secure
TS019d407a=01f83a94015062e180507b14a5e7ec696a418c835dd01dc00c1df569a63f5928507db54d96bcd4004fb471f275d5808d3b36106d94; Path=/; Secure; HTTPOnly
TS012cbef1=01f83a94015062e180507b14a5e7ec696a418c835dd01dc00c1df569a63f5928507db54d96bcd4004fb471f275d5808d3b36106d94; path=/; domain=.ing.be; HTTPonly; Secure
TS01768288=01f83a94015062e180507b14a5e7ec696a418c835dd01dc00c1df569a63f5928507db54d96bcd4004fb471f275d5808d3b36106d94; path=/static-fe/ing-app-be-daily-banking-shell; HTTPonly; Secure
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e96dbe1b54932c8f447bbbfc9d31cfb0
b15d4a54fbdf95b0af8bd34b6f8ef03055eef0cd
427326963ac1ef6ddeeaf52ab07807c694b82effa6111671ada8270b1faecdae
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3940
Cache-Control: max-age=89988
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 08:12:47 GMT
Etag: "63203a1f-1d7"
Expires: Thu, 15 Sep 2022 09:12:35 GMT
Last-Modified: Tue, 13 Sep 2022 08:06:55 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
www.ing.be/static-fe/ing-app-be-daily-banking-shell/6.74.1/bower_components/ing-platform/packages/ing-top-bar/assets/images/ing-logo-full.svg
23.13.36.80404 Not Found 478 B URL HTTP/1.1 www.ing.be/static-fe/ing-app-be-daily-banking-shell/6.74.1/bower_components/ing-platform/packages/ing-top-bar/assets/images/ing-logo-full.svg
IP 23.13.36.80:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0a4f67ec21bcdff476ffcccc7a4aed9c
04410eb93a260406c2369d8b9c31c1aaf44f4a71
2b6b2f904bf93f234a4d7e7749adac3d39bc741483bca2fa7fb4cb5bae686bc4
GET /static-fe/ing-app-be-daily-banking-shell/6.74.1/bower_components/ing-platform/packages/ing-top-bar/assets/images/ing-logo-full.svg HTTP/1.1
Host: www.ing.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://be-ing-site.web.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Content-Type: text/html
Content-Length: 478
ETag: "6319d77f-1de"
Strict-Transport-Security: max-age=31622400; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Cache-Control: no-cache
X-ING-Response-ID: 127a3884-fd51-47dc-9454-8e5e46dcf096
Date: Wed, 14 Sep 2022 08:12:47 GMT
Connection: keep-alive
Set-Cookie: XSRF-TOKEN=wDRztiJIJ0QRc2HVTcsJLtChqRd0CNMMfEFtwWTswOJYye7yVQPMze0mUzsHCGwV; Path=/; Domain=.ing.be; Secure;
aac=a99b625e703e132cb21bb1113a6ef35a4f0661674212354896d68f6e562040bed45330dfe026264deceb3f526283de72dbddb756e5eec8f9; Path=/; Domain=.ing.be; Max-Age=157680000; Secure;
lb-4-p-727=!+tpi+maugXvdWZFhDw9BVcc4P7a0Jahh6B7KDhf/4iJE1xQ8vRqwDZVuXRurDvQB9nen/lyuAe+dHEP+mK4e6LW5TH0bEjwx05/F5Xw6SQ==; path=/; Httponly; Secure
TS019d407a=01a0dd1109210b8a7f3358a3fe2a2a0c6fc4b46f46cbd00ccbd3b3aea56812e05184dd2e64ad27184badb513f9357b2f7c5acdc3ef; Path=/; Secure; HTTPOnly
TS012cbef1=01a0dd1109210b8a7f3358a3fe2a2a0c6fc4b46f46cbd00ccbd3b3aea56812e05184dd2e64ad27184badb513f9357b2f7c5acdc3ef; path=/; domain=.ing.be; HTTPonly; Secure
ak_bmsc=26D62D101565B09D7B413AC78ED747D9~000000000000000000000000000000~YAAQLlzaF+BWogCDAQAApMUOOxH2uiqHDa+7dbFQ5b9PhUahZAJiDCaYxdQhmppRZiTgr1p4cYzDEbtfu+ZZtLpHw8sVZIyWwDgfsj6pmRT6wxRNzHREitqs8dZwR4PEYhwaEAw3PF4Z53KlOl4hQ6h0qQoSDW0rXit8IzWu0aTVvj0hDQSdHg8gFrJAXMAbtXcdLtYBAbEDGQC4SgJVXc48qaHnkQSsNEgGObDJJpp27vr/RQohC8mr4QLhpHJk/1hxe4suxPhB9IUxAsIk3ooVoATfN5bNb4ZMpHaanh2hNGQoSuyw3bGjoZqaKSspS/4GVXJfE0LXRzJ0HbA745U7eLQD607AKLVDoAh5RSqq5PScPMaH5urRDwdrX4E=; Domain=.www.ing.be; Path=/; Expires=Wed, 14 Sep 2022 10:12:47 GMT; Max-Age=7200; HttpOnly
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 2a88ebbb3b4f686c6cd6abbe774ef422
cfd940e53d88a0510b3fb538e8179f214d10096c
9047b2e213ddeb7aea6f860f050320f39e6627ec52e31ec8e44e08dfc1ea5bc0
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 08:12:47 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 12 Sep 2022 12:16:25 GMT
Expires: Mon, 19 Sep 2022 12:16:24 GMT
Etag: "cfd940e53d88a0510b3fb538e8179f214d10096c"
Cache-Control: max-age=446016,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74a7a8dcaec01c06-OSL
push.services.mozilla.com/
52.39.175.179101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.175.179:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: lkk6x6dc8nXacLBFyTINVg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: V9Badd5Cbus51Q3fyAH6IVvgMf4=
ocsp.pki.goog/s/gts1d4int/S8bfnalmCqs
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4int/S8bfnalmCqs
IP 142.250.74.3:0
Hash ab076a347bd894713133855a3305b747
58ea7e3750bf3fee8b413238befec66587827dda
e4869e429e3a91c6913ca5716f8e0d99f2b6771eed8f8df15188bbfadf77a3ae
POST /s/gts1d4int/S8bfnalmCqs HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 08:12:47 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ctr-ing-default-rtdb.firebaseio.com/.ws?v=5
34.120.160.131101 Switching Protocols 0 B URL HTTP/1.1 ctr-ing-default-rtdb.firebaseio.com/.ws?v=5
IP 34.120.160.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /.ws?v=5 HTTP/1.1
Host: ctr-ing-default-rtdb.firebaseio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://be-ing-site.web.app
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: PSCAsOouZXABGz7x9VFSKg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Wed, 14 Sep 2022 08:12:47 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: hPnM0OmrRXq7bkKrr5i6TRaHfvc=
Strict-Transport-Security: max-age=31556926; includeSubDomains; preload
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8600
Expires: Wed, 14 Sep 2022 10:36:08 GMT
Date: Wed, 14 Sep 2022 08:12:48 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8600
Expires: Wed, 14 Sep 2022 10:36:08 GMT
Date: Wed, 14 Sep 2022 08:12:48 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8600
Expires: Wed, 14 Sep 2022 10:36:08 GMT
Date: Wed, 14 Sep 2022 08:12:48 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2b71bb0-fd92-43d0-8cd0-b426d0b88ee8.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2b71bb0-fd92-43d0-8cd0-b426d0b88ee8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 56811a1a20a467464e1f3da171ef8b14
366b2090d409d694b72b4b4131df46dd65d69c5a
4c208fb88884166adf4ecc5882f75948b4a87d85c76ad6e7137e8edbd125c996
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2b71bb0-fd92-43d0-8cd0-b426d0b88ee8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15547
x-amzn-requestid: a78f7d90-84c3-4198-88bf-1d722c37f09f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yauv4EUDoAMF13A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f7ff-49535e5525606250306488ba;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: yP22CSG5x3BVfq29UMdw30TZcvuaL-kUDgjBZDUEMpRVDWqlZrCgdQ==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:42:05 GMT
age: 37843
etag: "366b2090d409d694b72b4b4131df46dd65d69c5a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F26eefe41-9675-409e-9a6b-8c39594eb7de.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F26eefe41-9675-409e-9a6b-8c39594eb7de.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 967db8594cfbc60139ea4bccfe259742
be8239300d4abfb14466655eedb6b277543ad8b2
eb6585e04cd275e2bf02c2cf8d8693e43f0c0a3e7fec0092fc2ff18025b45dde
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F26eefe41-9675-409e-9a6b-8c39594eb7de.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7543
x-amzn-requestid: a8a09d68-971d-4d84-bf6b-ca78644927b4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yau8DHQ4IAMFzFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f84c-54803f1d5f1777f334c7a4d5;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:38:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MdjZuif30Qf14NHbkELd3X2FqrPy5gGIJCnyjKrL2v5TY9DRD0VHiA==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 22:13:11 GMT
age: 35977
etag: "be8239300d4abfb14466655eedb6b277543ad8b2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F898fa8c6-1f06-4fa4-88d0-333a32c1a7a8.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F898fa8c6-1f06-4fa4-88d0-333a32c1a7a8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 019416755742a78ddf35671ba5eaccc7
ec2e96359ef3a236514cab21af80ea5b9420e9c3
a6b0e0ec56c2ce2f94dae8032e0deb297236c35f7a8928a14a254e3fdb2a255a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F898fa8c6-1f06-4fa4-88d0-333a32c1a7a8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10245
x-amzn-requestid: 25331636-a1cd-4ceb-84cc-fd85cfd8a861
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG23AGLIoAMFjFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631904f9-6fbb23ec3dc9d55e344bc6d7;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 20:54:17 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 6rK3xzw-3wH6O2TCotqsmazLOzUWUbWtgxpVYxm5YQAmVVf4IcPLMA==
via: 1.1 536063cb28bfc05fcb7a78183dd89b72.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 23:47:28 GMT
age: 30320
etag: "ec2e96359ef3a236514cab21af80ea5b9420e9c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf118ca5-e4f8-4e97-a3c2-87e36a56e609.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf118ca5-e4f8-4e97-a3c2-87e36a56e609.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b20499b3b8ef7b8ee73bd8b27e8c0c16
744a852e9357455d55e72809841411258fec44a9
457c8a9e4974a9529fa852b37f7ffc083e0eac987fe47aaebda808bf9f9f2941
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf118ca5-e4f8-4e97-a3c2-87e36a56e609.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9270
x-amzn-requestid: bba505a1-bbba-4d14-ad3a-1f72c028cc43
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YLj-YGaOIAMFeOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ae6c2-08d743cc73070f6653991180;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 07:09:54 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: N0iUxQripFCaFLbMsp-lsFOMHDKzQUW3AHaWMyzOK9NGyAz5weDbvg==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 23:28:34 GMT
age: 31454
etag: "744a852e9357455d55e72809841411258fec44a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F14e7ebee-3326-460f-b5ca-02aae140968c.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F14e7ebee-3326-460f-b5ca-02aae140968c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash de3f5f47acb69d9c4fa6721b5283404a
895f8e58be471d713557a1318b3d050429cfe419
396f97609adc2f1cdf7e241f8b164ae89e0d353cc26e48184977a1c684c544cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F14e7ebee-3326-460f-b5ca-02aae140968c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6154
x-amzn-requestid: 3341eb6d-9787-470e-aceb-dd722af36716
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yauv4GVwIAMFSzg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f7ff-4e79b8594d68a9c504e33a25;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 0ig7ITAeZj5ypLK25XtmhEQIR_pz-P96ZUgOA0Q4OgwVtAF5pmo4sA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:49:32 GMT
etag: "895f8e58be471d713557a1318b3d050429cfe419"
content-type: image/jpeg
age: 37396
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8cb650f7-1b0f-4a3d-898f-97b846afe9db.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8cb650f7-1b0f-4a3d-898f-97b846afe9db.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0789404fdbe3613d465d8fa89a63d7b8
0617d2e513097ca415a1d07cd39b1cb64d832ecf
80e55e383f354113c3694bbcc00fd1c544a97079bd3c462f1b90e952c0634bac
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8cb650f7-1b0f-4a3d-898f-97b846afe9db.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10138
x-amzn-requestid: bdf798d9-6729-4363-a900-f32c4041d0c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YU5qsGZ-oAMFQ1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ea311-7b146c0620a83d5c00446f87;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 03:10:09 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OM9K72ukk0cuyR1ZcV5xWXnEd8U9OgeQi7bkCe0Pzn3BfdLMvSdSXg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 03:02:44 GMT
age: 18604
etag: "0617d2e513097ca415a1d07cd39b1cb64d832ecf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
api.ipgeolocation.io/ipgeo?apiKey=d2736aba128f44fea72258e63fe989a8
62.171.155.17200 OK 0 B URL HTTP/2 api.ipgeolocation.io/ipgeo?apiKey=d2736aba128f44fea72258e63fe989a8
IP 62.171.155.17:0
GET /ipgeo?apiKey=d2736aba128f44fea72258e63fe989a8 HTTP/1.1
Host: api.ipgeolocation.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://be-ing-site.web.app
Connection: keep-alive
Referer: https://be-ing-site.web.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Wed, 14 Sep 2022 08:12:47 GMT
content-type: application/json;charset=utf-8
access-control-allow-origin: https://be-ing-site.web.app
vary: Origin
access-control-allow-credentials: true
x-application-context: application:production:8002
X-Firefox-Spdy: h2