wordpress-936107-3252436.cloudwaysapps.com/sg/5712afad25182b3/login.php
138.68.184.102301 Moved Permanently 162 B URL HTTP/1.1 wordpress-936107-3252436.cloudwaysapps.com/sg/5712afad25182b3/login.php
IP 138.68.184.102:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert urlquery phishing Phishing - Societe Generale
openphish Societe Generale
GET /sg/5712afad25182b3/login.php HTTP/1.1
Host: wordpress-936107-3252436.cloudwaysapps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 17 Feb 2023 04:14:26 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://wordpress-936107-3252436.cloudwaysapps.com/sg/5712afad25182b3/login.php
X-Robots-Tag: noindex, nofollow
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 584dc97b4a725bab46f43b0c52ea2f21
4c7d5484aca5c64746185fa7a1e6103672fd6beb
726714a5ebdaa8dda3c669eedad6503ffd2a822cfd0bbdf5eb8a1d8ad43ad5bd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "726714A5EBDAA8DDA3C669EEDAD6503FFD2A822CFD0BBDF5EB8A1D8AD43AD5BD"
Last-Modified: Wed, 15 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4976
Expires: Fri, 17 Feb 2023 05:37:22 GMT
Date: Fri, 17 Feb 2023 04:14:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash e2774fdb28d9f6ef0658eb7286166e3f
9240e40dcd6422d6b92b9f9b54c79e7629f28828
e59f037bbb477951b8d775acb4d62c243d19d6b0022787348bae224092690d53
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E59F037BBB477951B8D775ACB4D62C243D19D6B0022787348BAE224092690D53"
Last-Modified: Thu, 16 Feb 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10315
Expires: Fri, 17 Feb 2023 07:06:21 GMT
Date: Fri, 17 Feb 2023 04:14:26 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Content-Length, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 17 Feb 2023 03:53:13 GMT
content-type: application/json
age: 1273
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash e4879878d8594ad779e96e43ceadae35
e81c37ddd67123e47ea15707896b807a306d8d7e
c50069d7380586c743cddc2678baab9bb04400c70c28c3102650264ef806319c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C50069D7380586C743CDDC2678BAAB9BB04400C70C28C3102650264EF806319C"
Last-Modified: Wed, 15 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3201
Expires: Fri, 17 Feb 2023 05:07:47 GMT
Date: Fri, 17 Feb 2023 04:14:26 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: hjcx5eHWG9hTvZW2J1ifuN1Od0W+gSguISamxeC18sXGNFwZTOzfz5p38TDUQxLvBSvgADogUYVgEv6CzQlwAQ==
x-amz-request-id: 4Y72GYM24EKVRR61
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 17 Feb 2023 03:17:06 GMT
age: 3440
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
wordpress-936107-3252436.cloudwaysapps.com/sg/5712afad25182b3/login.php
138.68.184.102200 OK 1.8 kB URL HTTP/2 wordpress-936107-3252436.cloudwaysapps.com/sg/5712afad25182b3/login.php
IP 138.68.184.102:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 917d2a276f48199f38eb1e30a55fd262
57b6162384edf085bff661154b9f1506b1f99bdf
271c801ecc5143932d2f9f1d80f7ce959a4ca9755881ba28d0af7504b665a49b
Analyzer Verdict Alert openphish Societe Generale
GET /sg/5712afad25182b3/login.php HTTP/1.1
Host: wordpress-936107-3252436.cloudwaysapps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Fri, 17 Feb 2023 04:14:26 GMT
content-type: text/html; charset=UTF-8
content-length: 1760
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
content-encoding: gzip
age: 0
x-cache: MISS
accept-ranges: bytes
x-robots-tag: noindex, nofollow
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 17 Feb 2023 04:14:26 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
wordpress-936107-3252436.cloudwaysapps.com/sg/assets/images/logo.png
138.68.184.102200 OK 2.5 kB URL HTTP/2 wordpress-936107-3252436.cloudwaysapps.com/sg/assets/images/logo.png
IP 138.68.184.102:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 192 x 26, 8-bit/color RGB, non-interlaced\012- data
Hash 07d389f224c55f59359aa8ab746a31d1
ff3281d7db9e03ecba345c2b4b57d617dfd11926
19b11e9d230e5fc6e11924e8c07f604d7884a4107794810bc70eec129b915795
Analyzer Verdict Alert urlquery phishing Phishing - Societe Generale
GET /sg/assets/images/logo.png HTTP/1.1
Host: wordpress-936107-3252436.cloudwaysapps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wordpress-936107-3252436.cloudwaysapps.com/sg/5712afad25182b3/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 17 Feb 2023 04:14:26 GMT
content-type: image/png
content-length: 2487
last-modified: Sun, 12 Feb 2023 13:16:44 GMT
etag: "63e8e6bc-9b7"
x-robots-tag: noindex, nofollow
cache-control: public, max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
wordpress-936107-3252436.cloudwaysapps.com/sg/assets/images/new-account.png
138.68.184.102200 OK 2.5 kB URL HTTP/2 wordpress-936107-3252436.cloudwaysapps.com/sg/assets/images/new-account.png
IP 138.68.184.102:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 171 x 44, 8-bit/color RGB, non-interlaced\012- data
Hash b622349d9f97e5c39d581e873857edf2
a37280d3e63eb4cf4ae734f2e08e5dd61025bb80
12151d5190ac2f09ed928c16b833c8f4ab3daab155cf9c7c00fcd2466b6012bd
Analyzer Verdict Alert urlquery phishing Phishing - Societe Generale
GET /sg/assets/images/new-account.png HTTP/1.1
Host: wordpress-936107-3252436.cloudwaysapps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wordpress-936107-3252436.cloudwaysapps.com/sg/5712afad25182b3/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 17 Feb 2023 04:14:26 GMT
content-type: image/png
content-length: 2487
last-modified: Sun, 12 Feb 2023 13:16:44 GMT
etag: "63e8e6bc-9b7"
x-robots-tag: noindex, nofollow
cache-control: public, max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
wordpress-936107-3252436.cloudwaysapps.com/sg/assets/images/logo2.jpg
138.68.184.102200 OK 1.3 kB URL HTTP/2 wordpress-936107-3252436.cloudwaysapps.com/sg/assets/images/logo2.jpg
IP 138.68.184.102:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=PhotoFiltre Studio X, datetime=2019:11:09 02:50:21], baseline, precision 8, 30x30, components 3\012- data
Hash faae31dc56abb70d92d5802d5397ecfd
20ea10febe43d77f015205993a7941dc49ac6d57
3dc3d4f09a6caa938a754adf03cb9f7661ebffa085a55de8f04d2b52e1e5e46b
Analyzer Verdict Alert urlquery phishing Phishing - Societe Generale
GET /sg/assets/images/logo2.jpg HTTP/1.1
Host: wordpress-936107-3252436.cloudwaysapps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wordpress-936107-3252436.cloudwaysapps.com/sg/5712afad25182b3/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 17 Feb 2023 04:14:26 GMT
content-type: image/jpeg
content-length: 1258
last-modified: Sun, 12 Feb 2023 13:16:44 GMT
etag: "63e8e6bc-4ea"
x-robots-tag: noindex, nofollow
cache-control: public, max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
wordpress-936107-3252436.cloudwaysapps.com/sg/assets/images/remember.jpg
138.68.184.102200 OK 3.3 kB URL HTTP/2 wordpress-936107-3252436.cloudwaysapps.com/sg/assets/images/remember.jpg
IP 138.68.184.102:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=PhotoFiltre Studio X, datetime=2019:11:08 21:41:22], baseline, precision 8, 232x26, components 3\012- data
Hash 749caf8b2ee7d53e19e9aefc264f1edd
6e47816ee429dce1b7bc90d3c4e7077f7717abef
523f01e171ebf63770e025487bdcfe986841d4ec2da50c1486d2632066eacd5f
Analyzer Verdict Alert urlquery phishing Phishing - Societe Generale
GET /sg/assets/images/remember.jpg HTTP/1.1
Host: wordpress-936107-3252436.cloudwaysapps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wordpress-936107-3252436.cloudwaysapps.com/sg/5712afad25182b3/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 17 Feb 2023 04:14:26 GMT
content-type: image/jpeg
content-length: 3349
last-modified: Sun, 12 Feb 2023 13:16:44 GMT
etag: "63e8e6bc-d15"
x-robots-tag: noindex, nofollow
cache-control: public, max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
wordpress-936107-3252436.cloudwaysapps.com/sg/assets/images/valider.png
138.68.184.102200 OK 1.8 kB URL HTTP/2 wordpress-936107-3252436.cloudwaysapps.com/sg/assets/images/valider.png
IP 138.68.184.102:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 230 x 44, 8-bit/color RGB, non-interlaced\012- data
Hash 25513691f92b8ccb0190e5c2dfbb48e9
d5251fab777fe48e33cd5fdd59467b7a0af7acd7
23882f29cd743d1e0058ac22d2a791196952dab003f83df83d186e94b175119d
Analyzer Verdict Alert urlquery phishing Phishing - Societe Generale
GET /sg/assets/images/valider.png HTTP/1.1
Host: wordpress-936107-3252436.cloudwaysapps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wordpress-936107-3252436.cloudwaysapps.com/sg/5712afad25182b3/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 17 Feb 2023 04:14:26 GMT
content-type: image/png
content-length: 1808
last-modified: Sun, 12 Feb 2023 13:16:56 GMT
etag: "63e8e6c8-710"
x-robots-tag: noindex, nofollow
cache-control: public, max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
wordpress-936107-3252436.cloudwaysapps.com/sg/assets/images/index-content.png
138.68.184.102200 OK 44 kB URL HTTP/2 wordpress-936107-3252436.cloudwaysapps.com/sg/assets/images/index-content.png
IP 138.68.184.102:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 593 x 592, 8-bit/color RGB, non-interlaced\012- data
Hash f4c403921310dd027d80bee277a07894
45807a9a77230206cb0834c30ddceeae64850f59
f3aa0dd5b1e3d5f830cf26f58f5cfa81ab131fe433715ea0b6feb0264049c689
Analyzer Verdict Alert urlquery phishing Phishing - Societe Generale
GET /sg/assets/images/index-content.png HTTP/1.1
Host: wordpress-936107-3252436.cloudwaysapps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wordpress-936107-3252436.cloudwaysapps.com/sg/5712afad25182b3/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 17 Feb 2023 04:14:26 GMT
content-type: image/png
content-length: 43528
last-modified: Sun, 12 Feb 2023 13:16:44 GMT
etag: "63e8e6bc-aa08"
x-robots-tag: noindex, nofollow
cache-control: public, max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
wordpress-936107-3252436.cloudwaysapps.com/sg/assets/images/index-content2.png
138.68.184.102200 OK 36 kB URL HTTP/2 wordpress-936107-3252436.cloudwaysapps.com/sg/assets/images/index-content2.png
IP 138.68.184.102:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 460 x 455, 8-bit/color RGB, non-interlaced\012- data
Hash a6e1f764ffba84d8c87d5c6ff580567d
e2711a90ac191e0c595f3cd7de89cec9de32242a
8b51f84ac604efc8feee2300fdddb1da05829fffad58b827063b178846a5d4e8
Analyzer Verdict Alert urlquery phishing Phishing - Societe Generale
GET /sg/assets/images/index-content2.png HTTP/1.1
Host: wordpress-936107-3252436.cloudwaysapps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wordpress-936107-3252436.cloudwaysapps.com/sg/5712afad25182b3/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 17 Feb 2023 04:14:26 GMT
content-type: image/png
content-length: 36228
last-modified: Sun, 12 Feb 2023 13:16:44 GMT
etag: "63e8e6bc-8d84"
x-robots-tag: noindex, nofollow
cache-control: public, max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
wordpress-936107-3252436.cloudwaysapps.com/sg/assets/images/footer-info.png
138.68.184.102200 OK 7.6 kB URL HTTP/2 wordpress-936107-3252436.cloudwaysapps.com/sg/assets/images/footer-info.png
IP 138.68.184.102:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 792 x 30, 8-bit/color RGB, non-interlaced\012- data
Hash b4dd3961b8377bae8ba5024cfe80be66
9b36d135212fc15883cc080feb1ffc1be31690e2
95d316972cfd6654daf6d407fb1334f4f7aff938e389b010291d241d8d57ad4f
Analyzer Verdict Alert urlquery phishing Phishing - Societe Generale
GET /sg/assets/images/footer-info.png HTTP/1.1
Host: wordpress-936107-3252436.cloudwaysapps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wordpress-936107-3252436.cloudwaysapps.com/sg/5712afad25182b3/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 17 Feb 2023 04:14:26 GMT
content-type: image/png
content-length: 7592
last-modified: Sun, 12 Feb 2023 13:16:44 GMT
etag: "63e8e6bc-1da8"
x-robots-tag: noindex, nofollow
cache-control: public, max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
wordpress-936107-3252436.cloudwaysapps.com/sg/assets/images/footer-info2.png
138.68.184.102200 OK 9.0 kB URL HTTP/2 wordpress-936107-3252436.cloudwaysapps.com/sg/assets/images/footer-info2.png
IP 138.68.184.102:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 346 x 187, 8-bit/color RGB, non-interlaced\012- data
Hash b065809f2face89f453b75d954cdb1ea
8aea05cfed6a0e5f146de91f1610b0b5fc49a724
0607cd016f97fa4c139040c64dbc900d4d3e11676f1c00897c88fbb84850a083
Analyzer Verdict Alert urlquery phishing Phishing - Societe Generale
GET /sg/assets/images/footer-info2.png HTTP/1.1
Host: wordpress-936107-3252436.cloudwaysapps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wordpress-936107-3252436.cloudwaysapps.com/sg/5712afad25182b3/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 17 Feb 2023 04:14:26 GMT
content-type: image/png
content-length: 8977
last-modified: Sun, 12 Feb 2023 13:16:44 GMT
etag: "63e8e6bc-2311"
x-robots-tag: noindex, nofollow
cache-control: public, max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
wordpress-936107-3252436.cloudwaysapps.com/sg/assets/images/social.png
138.68.184.102200 OK 1.1 kB URL HTTP/2 wordpress-936107-3252436.cloudwaysapps.com/sg/assets/images/social.png
IP 138.68.184.102:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 154 x 30, 8-bit/color RGB, non-interlaced\012- data
Hash 8c6df0e9f76dfa34c82c796fb0614e08
aaaec6b398f9be853f693da4556856b010d2ef22
cda417f25f0b74a3b88979725a4bd5bcba224008dc354277ef48bbefdb96f24d
Analyzer Verdict Alert urlquery phishing Phishing - Societe Generale
GET /sg/assets/images/social.png HTTP/1.1
Host: wordpress-936107-3252436.cloudwaysapps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wordpress-936107-3252436.cloudwaysapps.com/sg/5712afad25182b3/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 17 Feb 2023 04:14:26 GMT
content-type: image/png
content-length: 1116
last-modified: Sun, 12 Feb 2023 13:16:44 GMT
etag: "63e8e6bc-45c"
x-robots-tag: noindex, nofollow
cache-control: public, max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
wordpress-936107-3252436.cloudwaysapps.com/sg/assets/images/logo.jpg
138.68.184.102200 OK 3.8 kB URL HTTP/2 wordpress-936107-3252436.cloudwaysapps.com/sg/assets/images/logo.jpg
IP 138.68.184.102:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=PhotoFiltre Studio X, datetime=2019:11:08 21:35:13], baseline, precision 8, 160x33, components 3\012- data
Hash f85385da3d92ffbf4a5f706ec6f6b1fe
c6321ff15f1d136f6c04728b8c058d301ca66c3d
04690f1deb47cc41bcb7fbc072a9fdc7893c279a2857bea2d0fdfb90f5aebf17
Analyzer Verdict Alert urlquery phishing Phishing - Societe Generale
GET /sg/assets/images/logo.jpg HTTP/1.1
Host: wordpress-936107-3252436.cloudwaysapps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wordpress-936107-3252436.cloudwaysapps.com/sg/5712afad25182b3/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 17 Feb 2023 04:14:26 GMT
content-type: image/jpeg
content-length: 3772
last-modified: Sun, 12 Feb 2023 13:16:44 GMT
etag: "63e8e6bc-ebc"
x-robots-tag: noindex, nofollow
cache-control: public, max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
wordpress-936107-3252436.cloudwaysapps.com/sg/assets/images/footer-links.jpg
138.68.184.102200 OK 8.4 kB URL HTTP/2 wordpress-936107-3252436.cloudwaysapps.com/sg/assets/images/footer-links.jpg
IP 138.68.184.102:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=PhotoFiltre Studio X, datetime=2019:11:08 21:40:28], baseline, precision 8, 713x16, components 3\012- data
Hash 12962121b758a6679970b22c02e978a2
c8af650f6bcefbc374ea21ddf2e54ecd67c8811a
f6f7e0611ba3d6ba2268c51b20205b322d51d1cee76bdd6911b49f1d12b4f05a
Analyzer Verdict Alert urlquery phishing Phishing - Societe Generale
GET /sg/assets/images/footer-links.jpg HTTP/1.1
Host: wordpress-936107-3252436.cloudwaysapps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wordpress-936107-3252436.cloudwaysapps.com/sg/5712afad25182b3/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 17 Feb 2023 04:14:26 GMT
content-type: image/jpeg
content-length: 8378
last-modified: Sun, 12 Feb 2023 13:16:44 GMT
etag: "63e8e6bc-20ba"
x-robots-tag: noindex, nofollow
cache-control: public, max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
wordpress-936107-3252436.cloudwaysapps.com/sg/assets/images/footer-links2.png
138.68.184.102200 OK 7.8 kB URL HTTP/2 wordpress-936107-3252436.cloudwaysapps.com/sg/assets/images/footer-links2.png
IP 138.68.184.102:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 143 x 193, 8-bit/color RGB, non-interlaced\012- data
Hash 73d8f36e38c0e2bf8b369cfd72f6f8f1
5100afd98867c52d7c01fb6cbaa50a8af9476e62
7c3bdc670b04048dc2d7516878af352dcc5d2a377e384c6c8c183a36133ca076
Analyzer Verdict Alert urlquery phishing Phishing - Societe Generale
GET /sg/assets/images/footer-links2.png HTTP/1.1
Host: wordpress-936107-3252436.cloudwaysapps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wordpress-936107-3252436.cloudwaysapps.com/sg/5712afad25182b3/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 17 Feb 2023 04:14:26 GMT
content-type: image/png
content-length: 7765
last-modified: Sun, 12 Feb 2023 13:16:44 GMT
etag: "63e8e6bc-1e55"
x-robots-tag: noindex, nofollow
cache-control: public, max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Content-Length, Content-Type, Cache-Control, Pragma, Retry-After, ETag, Expires, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 17 Feb 2023 03:20:33 GMT
age: 3234
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d146aa123635470cfd39942f1f25dcba
274574f078e959a423262a1b95344996299ea1cf
9e2c3a542626c68d479648479e09f9570564d4e1f954f63b6ce97ae939729a3d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9E2C3A542626C68D479648479E09F9570564D4E1F954F63B6CE97AE939729A3D"
Last-Modified: Wed, 15 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19344
Expires: Fri, 17 Feb 2023 09:36:51 GMT
Date: Fri, 17 Feb 2023 04:14:27 GMT
Connection: keep-alive
push.services.mozilla.com/
44.228.230.125101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.228.230.125:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JeYsAsXoIeH4yaLBs/R//A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: IiD02FmUoaVA03cyHxEaNnP8yAc=
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c9333ebd8634e6b287e0b58265edf328
6ea57e1529609f015e198c72d2455c758f5b45ab
6bc07733856e4fbefbb42e5ad6423539ccbc855c66cf4279bf515997ea8933d2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6BC07733856E4FBEFBB42E5AD6423539CCBC855C66CF4279BF515997EA8933D2"
Last-Modified: Tue, 14 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18942
Expires: Fri, 17 Feb 2023 09:30:10 GMT
Date: Fri, 17 Feb 2023 04:14:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c9333ebd8634e6b287e0b58265edf328
6ea57e1529609f015e198c72d2455c758f5b45ab
6bc07733856e4fbefbb42e5ad6423539ccbc855c66cf4279bf515997ea8933d2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6BC07733856E4FBEFBB42E5AD6423539CCBC855C66CF4279BF515997EA8933D2"
Last-Modified: Tue, 14 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18942
Expires: Fri, 17 Feb 2023 09:30:10 GMT
Date: Fri, 17 Feb 2023 04:14:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c9333ebd8634e6b287e0b58265edf328
6ea57e1529609f015e198c72d2455c758f5b45ab
6bc07733856e4fbefbb42e5ad6423539ccbc855c66cf4279bf515997ea8933d2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6BC07733856E4FBEFBB42E5AD6423539CCBC855C66CF4279BF515997EA8933D2"
Last-Modified: Tue, 14 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18942
Expires: Fri, 17 Feb 2023 09:30:10 GMT
Date: Fri, 17 Feb 2023 04:14:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c9333ebd8634e6b287e0b58265edf328
6ea57e1529609f015e198c72d2455c758f5b45ab
6bc07733856e4fbefbb42e5ad6423539ccbc855c66cf4279bf515997ea8933d2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6BC07733856E4FBEFBB42E5AD6423539CCBC855C66CF4279BF515997EA8933D2"
Last-Modified: Tue, 14 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18942
Expires: Fri, 17 Feb 2023 09:30:10 GMT
Date: Fri, 17 Feb 2023 04:14:28 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59fa3fa3-976e-4b8a-9789-2843cb4ead29.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59fa3fa3-976e-4b8a-9789-2843cb4ead29.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 97a3eee457c995aaa46a2d7d31317341
5d4812979d303543c27f5f857478340ff72049ea
06ee024f09247dc788060713d4ff6e92941685607f5f1ec825f182190c089173
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59fa3fa3-976e-4b8a-9789-2843cb4ead29.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5700
x-amzn-requestid: dccd3c6b-ce52-40f5-bfa7-283d9f9d492b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ARAqmF9eIAMFdWQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e9e176-4a2a6a91410c7ea47a932b96;Sampled=0
x-amzn-remapped-date: Mon, 13 Feb 2023 07:06:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1wZJFsvv2odSruu05u2ESwOfLlJhhCPV9xsXxnuHPmK8o3-_m6EdjQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Thu, 16 Feb 2023 12:00:29 GMT
age: 58439
etag: "5d4812979d303543c27f5f857478340ff72049ea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3b95fd0-70b7-4757-9068-83472c90622c.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3b95fd0-70b7-4757-9068-83472c90622c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dd9dfc91c131903f04b22bca2ea07569
8fac706269ae3ec4a9f60a64f6b08066e9eeb22a
d72e6a45a42dd6f6d39bdf2a68837a2fdd73b9df6e01a29dd173725b3d88e97e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3b95fd0-70b7-4757-9068-83472c90622c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12032
x-amzn-requestid: 1be7b95f-1088-4e2a-ba74-bba8a5c3b615
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AMZ_gHE7oAMFfkg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e809fc-65057649605a732b64098657;Sampled=0
x-amzn-remapped-date: Sat, 11 Feb 2023 21:34:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3wc9cOb6EBcYrHuQPvVx1h8f0xSef25washUegMtRo7oeLosn4RlYg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Thu, 16 Feb 2023 17:51:48 GMT
age: 37360
etag: "8fac706269ae3ec4a9f60a64f6b08066e9eeb22a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c942f8-27c2-4bf4-8e35-92d403d00f29.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c942f8-27c2-4bf4-8e35-92d403d00f29.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1a34f09bb10a93df46b8b23e4cf0d4c0
c08103bfbfd0e097ae94773476143fcc02b126f4
4890fd0de8eb6ba08a5188eb24c4f7efad037a70f491329db7597df9ba2224fd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c942f8-27c2-4bf4-8e35-92d403d00f29.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7575
x-amzn-requestid: d8da5085-979c-4c8d-8883-94359384b9e3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AKaBQE-cIAMFpHA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e73d3a-5c65ae966ca81da764446a6e;Sampled=0
x-amzn-remapped-date: Sat, 11 Feb 2023 07:01:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FgnKtFzwp5CNzAfzg-z9mLG2qmUrxJ48O7SUKbJiSS67dmpPSNNeqg==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Feb 2023 00:20:41 GMT
age: 14027
etag: "c08103bfbfd0e097ae94773476143fcc02b126f4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9395178-b457-480b-b390-87de876462fc.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9395178-b457-480b-b390-87de876462fc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 74cdcd8ad30a0d394dcedcc6ddb84614
60bd39733bda62448fa46ed49b11037b81f618c4
0d58fe92e205b24e34e4480d7e6ce93e4f7dcf8d524f36b2f11ec979a642db48
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9395178-b457-480b-b390-87de876462fc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7875
x-amzn-requestid: 055a205d-ba8f-4584-ad60-15818f94cf22
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AU1ovGhyIAMFc-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63eb696a-324781fe2db55e8848f71aec;Sampled=0
x-amzn-remapped-date: Tue, 14 Feb 2023 10:58:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 63ux37BfULjIXhWIoE9WPj31n_SGoizWzzbVAXBwjPPucjYWaHrRtA==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 16 Feb 2023 21:57:53 GMT
age: 22595
etag: "60bd39733bda62448fa46ed49b11037b81f618c4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1344fa9-2ded-4de4-8cbe-48362066f5eb.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1344fa9-2ded-4de4-8cbe-48362066f5eb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 521733973aba4cb555e9de1395ddf1b2
0882c7a6c901488d5ad41f8ce4e24f24e382d4de
af24612a4f7b1b88ffd4c619dd895a355b5b00948e65f8800e1a1bfd03d5752e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1344fa9-2ded-4de4-8cbe-48362066f5eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7181
x-amzn-requestid: 08ba90a7-87d7-4e09-88ce-9b7b317d40df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f9JpLH2noAMFqdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e1efd4-3235f36c29fbbd7a34b1065d;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 06:29:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CEvR_9d87XVX5XE4S5Zx6zjV8LpGELXVWswY6ZcCV2fmfGCHaefImA==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 16 Feb 2023 17:40:03 GMT
age: 38065
etag: "0882c7a6c901488d5ad41f8ce4e24f24e382d4de"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4748156e-3671-4964-bccd-dcff5a4dcabd.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4748156e-3671-4964-bccd-dcff5a4dcabd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0f696a6d6b899ea990863fd3f6cef50b
15ed196a642a4e767c5527ec92e346109632fbbb
afd3a83fffd1b1d3df4c95632b78508e6509e369fea66b3e78cca1db1dd97d92
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4748156e-3671-4964-bccd-dcff5a4dcabd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6486
x-amzn-requestid: 9cd0762a-003f-45fd-ad59-2cb9d1c9a1e6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Ac4-lESQIAMFlhQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63eea1f6-22c2261c4bdfab1d44a07164;Sampled=0
x-amzn-remapped-date: Thu, 16 Feb 2023 21:36:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BQ9857uzyigH_wXQCHK3wH_co-y8Ea6_-qXwj3YLhboKp2-h0w5GJg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 16 Feb 2023 22:01:35 GMT
age: 22373
etag: "15ed196a642a4e767c5527ec92e346109632fbbb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
wordpress-936107-3252436.cloudwaysapps.com/sg/assets/css/main.css
138.68.184.102200 OK 0 B URL HTTP/2 wordpress-936107-3252436.cloudwaysapps.com/sg/assets/css/main.css
IP 138.68.184.102:0
ASN #14061 DIGITALOCEAN-ASN
GET /sg/assets/css/main.css HTTP/1.1
Host: wordpress-936107-3252436.cloudwaysapps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wordpress-936107-3252436.cloudwaysapps.com/sg/5712afad25182b3/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 17 Feb 2023 04:14:26 GMT
content-type: text/css
last-modified: Sun, 12 Feb 2023 13:16:34 GMT
vary: Accept-Encoding
etag: W/"63e8e6b2-1621"
x-robots-tag: noindex, nofollow
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
wordpress-936107-3252436.cloudwaysapps.com/sg/assets/js/bootstrap.min.js
138.68.184.102200 OK 0 B URL HTTP/2 wordpress-936107-3252436.cloudwaysapps.com/sg/assets/js/bootstrap.min.js
IP 138.68.184.102:0
ASN #14061 DIGITALOCEAN-ASN
GET /sg/assets/js/bootstrap.min.js HTTP/1.1
Host: wordpress-936107-3252436.cloudwaysapps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wordpress-936107-3252436.cloudwaysapps.com/sg/5712afad25182b3/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 17 Feb 2023 04:14:26 GMT
content-type: application/javascript
last-modified: Sun, 12 Feb 2023 13:16:56 GMT
vary: Accept-Encoding
etag: W/"63e8e6c8-21388"
x-robots-tag: noindex, nofollow
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
wordpress-936107-3252436.cloudwaysapps.com/sg/assets/css/bootstrap.min.css
138.68.184.102200 OK 0 B URL HTTP/2 wordpress-936107-3252436.cloudwaysapps.com/sg/assets/css/bootstrap.min.css
IP 138.68.184.102:0
ASN #14061 DIGITALOCEAN-ASN
GET /sg/assets/css/bootstrap.min.css HTTP/1.1
Host: wordpress-936107-3252436.cloudwaysapps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wordpress-936107-3252436.cloudwaysapps.com/sg/5712afad25182b3/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 17 Feb 2023 04:14:26 GMT
content-type: text/css
last-modified: Sun, 12 Feb 2023 13:16:34 GMT
vary: Accept-Encoding
etag: W/"63e8e6b2-2606e"
x-robots-tag: noindex, nofollow
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
wordpress-936107-3252436.cloudwaysapps.com/sg/assets/js/fontawesome.min.js
138.68.184.102200 OK 0 B URL HTTP/2 wordpress-936107-3252436.cloudwaysapps.com/sg/assets/js/fontawesome.min.js
IP 138.68.184.102:0
ASN #14061 DIGITALOCEAN-ASN
GET /sg/assets/js/fontawesome.min.js HTTP/1.1
Host: wordpress-936107-3252436.cloudwaysapps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wordpress-936107-3252436.cloudwaysapps.com/sg/5712afad25182b3/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 17 Feb 2023 04:14:26 GMT
content-type: application/javascript
last-modified: Sun, 12 Feb 2023 13:16:56 GMT
vary: Accept-Encoding
etag: W/"63e8e6c8-10314e"
x-robots-tag: noindex, nofollow
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
wordpress-936107-3252436.cloudwaysapps.com/sg/assets/js/main.js
138.68.184.102200 OK 0 B URL HTTP/2 wordpress-936107-3252436.cloudwaysapps.com/sg/assets/js/main.js
IP 138.68.184.102:0
ASN #14061 DIGITALOCEAN-ASN
GET /sg/assets/js/main.js HTTP/1.1
Host: wordpress-936107-3252436.cloudwaysapps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wordpress-936107-3252436.cloudwaysapps.com/sg/5712afad25182b3/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 17 Feb 2023 04:14:26 GMT
content-type: application/javascript
last-modified: Sun, 12 Feb 2023 13:16:56 GMT
vary: Accept-Encoding
etag: W/"63e8e6c8-13ff"
x-robots-tag: noindex, nofollow
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
wordpress-936107-3252436.cloudwaysapps.com/sg/assets/css/helpers.css
138.68.184.102200 OK 0 B URL HTTP/2 wordpress-936107-3252436.cloudwaysapps.com/sg/assets/css/helpers.css
IP 138.68.184.102:0
ASN #14061 DIGITALOCEAN-ASN
GET /sg/assets/css/helpers.css HTTP/1.1
Host: wordpress-936107-3252436.cloudwaysapps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wordpress-936107-3252436.cloudwaysapps.com/sg/5712afad25182b3/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 17 Feb 2023 04:14:26 GMT
content-type: text/css
last-modified: Sun, 12 Feb 2023 13:16:34 GMT
vary: Accept-Encoding
etag: W/"63e8e6b2-a318"
x-robots-tag: noindex, nofollow
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
wordpress-936107-3252436.cloudwaysapps.com/sg/assets/js/popper.min.js
138.68.184.102200 OK 0 B URL HTTP/2 wordpress-936107-3252436.cloudwaysapps.com/sg/assets/js/popper.min.js
IP 138.68.184.102:0
ASN #14061 DIGITALOCEAN-ASN
GET /sg/assets/js/popper.min.js HTTP/1.1
Host: wordpress-936107-3252436.cloudwaysapps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wordpress-936107-3252436.cloudwaysapps.com/sg/5712afad25182b3/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 17 Feb 2023 04:14:26 GMT
content-type: application/javascript
last-modified: Sun, 12 Feb 2023 13:16:56 GMT
vary: Accept-Encoding
etag: W/"63e8e6c8-4f74"
x-robots-tag: noindex, nofollow
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
wordpress-936107-3252436.cloudwaysapps.com/sg/assets/css/fonts.css
138.68.184.102200 OK 0 B URL HTTP/2 wordpress-936107-3252436.cloudwaysapps.com/sg/assets/css/fonts.css
IP 138.68.184.102:0
ASN #14061 DIGITALOCEAN-ASN
GET /sg/assets/css/fonts.css HTTP/1.1
Host: wordpress-936107-3252436.cloudwaysapps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wordpress-936107-3252436.cloudwaysapps.com/sg/5712afad25182b3/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 17 Feb 2023 04:14:26 GMT
content-type: text/css
last-modified: Sun, 12 Feb 2023 13:16:34 GMT
vary: Accept-Encoding
etag: W/"63e8e6b2-e92"
x-robots-tag: noindex, nofollow
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
wordpress-936107-3252436.cloudwaysapps.com/sg/assets/images/favicon.ico
138.68.184.102200 OK 0 B URL HTTP/2 wordpress-936107-3252436.cloudwaysapps.com/sg/assets/images/favicon.ico
IP 138.68.184.102:0
ASN #14061 DIGITALOCEAN-ASN
GET /sg/assets/images/favicon.ico HTTP/1.1
Host: wordpress-936107-3252436.cloudwaysapps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wordpress-936107-3252436.cloudwaysapps.com/sg/5712afad25182b3/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 17 Feb 2023 04:14:27 GMT
content-type: image/x-icon
last-modified: Sun, 12 Feb 2023 13:16:44 GMT
vary: Accept-Encoding
etag: W/"63e8e6bc-13e"
x-robots-tag: noindex, nofollow
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
wordpress-936107-3252436.cloudwaysapps.com/sg/assets/js/jquery.min.js
138.68.184.102200 OK 0 B URL HTTP/2 wordpress-936107-3252436.cloudwaysapps.com/sg/assets/js/jquery.min.js
IP 138.68.184.102:0
ASN #14061 DIGITALOCEAN-ASN
GET /sg/assets/js/jquery.min.js HTTP/1.1
Host: wordpress-936107-3252436.cloudwaysapps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://wordpress-936107-3252436.cloudwaysapps.com/sg/5712afad25182b3/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 17 Feb 2023 04:14:26 GMT
content-type: application/javascript
last-modified: Sun, 12 Feb 2023 13:16:56 GMT
vary: Accept-Encoding
etag: W/"63e8e6c8-15851"
x-robots-tag: noindex, nofollow
cache-control: public, max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2