Report - apple.co/3wvBniJ

Report Overview

Submitted URL
apple.co/3wvBniJ
IP
67.199.248.13
ASN
#396982 GOOGLE-CLOUD-PLATFORM
Submitted
2022-12-05 15:45:26
Access
Website Title
Final URL
Tags
None
urlquery detections
Phishing - Apple

Detections

urlquery
8
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.apple.com	1171	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	358 B	2.1 kB	17.253.39.204
myaccess.apple.com	633372	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	24 kB	1.1 MB	17.179.252.11
www.apple.com	182	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	403 B	42 kB	184.24.44.212
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	4.4 kB	23.33.119.27
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.4 kB	93.184.220.29
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
train.apple.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	461 B	478 B	17.47.160.174
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	34.214.64.191
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	51 kB	34.120.237.76
cdn.apple-mapkit.com	5037	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	2.7 kB	2.18.173.2
apple.co	138669	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	347 B	553 B	67.199.248.12
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (4)

	URL	Size	First Seen	Last Seen
	myaccess.apple.com/ur/CSRFGuardServlet	14 kB	2023-03-08	2023-03-08
Pretty URL myaccess.apple.com/ur/CSRFGuardServlet IP 17.179.252.11 ASN #714 APPLE-ENGINEERING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:40:21 Last Seen2023-03-08 19:40:21 Times Seen1 Hash 1ce119064224b88128616822fe270a44 fb2b3369cf5b3fa16f2990a9e1d814c9267c3079 db8ca80570c3e9c099496ddd6a6eca198c66d2eb1135ca8abc1ee32b8d875cff Loading...

	myaccess.apple.com/ur/app/registration/scripts/app-42f60e4cac.js	262 kB	2023-03-08	2023-03-08
Pretty URL myaccess.apple.com/ur/app/registration/scripts/app-42f60e4cac.js IP 17.179.252.11 ASN #714 APPLE-ENGINEERING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:40:21 Last Seen2023-03-08 19:40:21 Times Seen1 Hash e2ce37d0325ddcfa9128ade487f6f5b2 628d69620c472c9367d71789770d2cfd0816f27a b220ea05500817d06dece3f1b43e48600193f8c3bc2f7e120bcc786ccff99432 Loading...

	myaccess.apple.com/ur/app/registration/scripts/vendor-78fbafa70d.js	808 kB	2023-03-08	2023-03-08
Pretty URL myaccess.apple.com/ur/app/registration/scripts/vendor-78fbafa70d.js IP 17.179.252.11 ASN #714 APPLE-ENGINEERING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:40:21 Last Seen2023-03-08 19:40:21 Times Seen1 Hash 43b83c464d491b381f1bc730a723df58 366479ed10c734020fb4e0367ef74e73209d2d68 0930f5b04ab9af9c16ffbf5573b08df1a3c4bcb96fc73c6bfcc940e3304a22ac Loading...

	www.apple.com/ac/globalnav/2.0/en_US/scripts/ac-globalnav.built.js	145 kB	2023-03-08	2023-03-08
Pretty URL www.apple.com/ac/globalnav/2.0/en_US/scripts/ac-globalnav.built.js IP 184.24.44.212 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:40:21 Last Seen2023-03-08 19:40:21 Times Seen1 Hash c31cc93d71171779053d3bdd73df7872 a3688c9db618461730735b99ff4b5d63b28a508b 343f1040e5e2f66697a2e9b3a8fd49316fc90d743b9b6a47ff974306b24446d3 Loading...

HTTP Transactions (64)

URL IP Response Size

apple.co/3wvBniJ

67.199.248.12

301 Moved Permanently

127 B

URL HTTP/1.1
apple.co/3wvBniJ
IP
67.199.248.12:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size
127 B (127 bytes)
Hash
2da31a257f0a65791f5ff77750eb149a
20e1e928cf4aaf082cc0529c8ec6a617f05651c1
271edc16bc9f79b4adc15019379071cc21ed5f56d1034e1e680dbb8c40cb291e

HTTP Headers

GET /3wvBniJ HTTP/1.1
Host: apple.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 05 Dec 2022 15:45:14 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 127
Cache-Control: private, max-age=90
Content-Security-Policy: referrer always;
Location: https://train.apple.com/3J8Zswc4eIWs1J7T
Referrer-Policy: unsafe-url
Set-Cookie: _bit=mb5fJe-3a9e6c935c327ef7dc-004; Domain=apple.co; Expires=Sat, 03 Jun 2023 15:45:14 GMT
Via: 1.1 google

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5410
Expires: Mon, 05 Dec 2022 17:15:24 GMT
Date: Mon, 05 Dec 2022 15:45:14 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ee088fab9b287e174cfd1f2c735a909f
25c3335b514a36ad1a24d00413d60c3d394f5161
494e96358ff12366213d7cc0f9197648c6c62ec14fa0d2c78732a683fa26b192

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4391
Cache-Control: max-age=158356
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 15:45:14 GMT
Etag: "638dc877-1d7"
Expires: Wed, 07 Dec 2022 11:44:30 GMT
Last-Modified: Mon, 05 Dec 2022 10:31:19 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 05 Dec 2022 15:20:17 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1497
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4160
Expires: Mon, 05 Dec 2022 16:54:34 GMT
Date: Mon, 05 Dec 2022 15:45:14 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: l+adFMX2bxvniNDRI+onq3WoSYKI/MTv6jRaMeZkXVHwSgti52oJWWpRith3Dzips3kOPWI5mEg=
x-amz-request-id: GMD50VRQMRXJXE3M
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 05 Dec 2022 14:48:01 GMT
age: 3433
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 15:45:14 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 05 Dec 2022 15:08:58 GMT
cache-control: public,max-age=3600
age: 2177
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
2b9d6a686aa3c4ea24568425e43a5221
d53bb4c9579bd1db78a0520619e888aec79f750f
c38734a8dbe51217d73896c0bf7f5c38c107fd79e0dee24b717f130377e9b5f7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4385
Cache-Control: max-age=153282
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 15:45:15 GMT
Etag: "638db4ac-1d7"
Expires: Wed, 07 Dec 2022 10:19:57 GMT
Last-Modified: Mon, 05 Dec 2022 09:06:52 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

train.apple.com/3J8Zswc4eIWs1J7T

17.47.160.174

302

0 B

URL HTTP/1.1
train.apple.com/3J8Zswc4eIWs1J7T
IP
17.47.160.174:0
ASN
#714 APPLE-ENGINEERING

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /3J8Zswc4eIWs1J7T HTTP/1.1
Host: train.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 302 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:15 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: placeHolderCookieName=c0ae6ee97949aff364019cceb4e97d6e; domain=train.apple.com; httponly; secure; path=/
Location: https://myaccess.apple.com/ur/register/app/seed/32701036
Strict-Transport-Security: max-age=31536000; includeSubdomains
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Host: train.apple.com
X-Frame-Options: SAMEORIGIN

push.services.mozilla.com/

34.214.64.191

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.214.64.191:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8d6qai+SaGFR5DKeBH/r1g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 6gmHzfvS3jiDmqf8ZxgJBF4Srkg=

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
3915f3c964821c6f9b0a0fc7dba43890
0deea9c788cfeb6a56ad607c2b4a0ebd15fed239
1ba61c6b9416f6cd91b0175a018139c34249823d4e3b9d004806bcd4b4255cb0

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3970
Cache-Control: max-age=93864
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 15:45:15 GMT
Etag: "638cce31-1d7"
Expires: Tue, 06 Dec 2022 17:49:39 GMT
Last-Modified: Sun, 04 Dec 2022 16:43:29 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

ocsp.apple.com/ocsp03-apevsrsa2g101

17.253.39.204

200 OK

1.5 kB

URL HTTP/1.1
ocsp.apple.com/ocsp03-apevsrsa2g101
IP
17.253.39.204:0
ASN
#6185 APPLE-AUSTIN

File type
data
Size
1.5 kB (1459 bytes)
Hash
fd6ae4a893bbb315a3e19c8c7dc6e8aa
d8bbd3feebe68f6397a1f25891da129c5f40abb6
39ac6a44a7372e3612e59cd8e78a7e808674369c89262d8c28964f8bc30c361f

HTTP Headers

POST /ocsp03-apevsrsa2g101 HTTP/1.1
Host: ocsp.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Apple
Date: Mon, 05 Dec 2022 15:45:16 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Expires: Tue, 06 Dec 2022 07:45:15 GMT
ETag: "d8bbd3feebe68f6397a1f25891da129c5f40abb6"
Last-Modified: Mon, 05 Dec 2022 15:45:16 GMT
Age: 4
Via: http/1.1 uklon5-vp-vst-014.ts.apple.com (acdn/176.13298), http/1.1 uklon5-vp-vfe-014.ts.apple.com (acdn/168.13283), http/1.1 sesto4-edge-lx-008.ts.apple.com (acdn/167.13279), http/1.1 sesto4-edge-bx-014.ts.apple.com (acdn/167.13279)
X-Cache: miss, miss, miss, miss
CDNUUID: cfa4bede-43a3-4f6f-9bdf-eb84bc31a859-2151832825
Connection: keep-alive

myaccess.apple.com/ur/register/app/seed/32701036

17.179.252.11

302

0 B

URL HTTP/1.1
myaccess.apple.com/ur/register/app/seed/32701036
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ur/register/app/seed/32701036 HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 302 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:16 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:16 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
JSESSIONID=6EF63DC455A929F626037420ADF808D7; Path=/ur; Secure; HttpOnly
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Location: https://myaccess.apple.com/ur/app/registration/index.html
Content-Language: en-US
Host: myaccess.apple.com

myaccess.apple.com/ur/app/registration/index.html

17.179.252.11

200

678 B

URL HTTP/1.1
myaccess.apple.com/ur/app/registration/index.html
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (573)
Size
678 B (678 bytes)
Hash
3b8da5bab078e6ce4e1ff422ab503258
4cbe3e363e7c09afdb380cd532d80753633afed1
f0c557b7ee2d294199383e6adf882f4032ab2243d360071a3ebdfbd152d8043d

HTTP Headers

GET /ur/app/registration/index.html HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:16 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:16 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Vary: Access-Control-Request-Headers
Last-Modified: Wed, 30 Nov 2022 04:01:03 GMT
Host: myaccess.apple.com
Content-Encoding: gzip

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5890
Expires: Mon, 05 Dec 2022 17:23:26 GMT
Date: Mon, 05 Dec 2022 15:45:16 GMT
Connection: keep-alive

myaccess.apple.com/ur/app/registration/styles/vendor-07f1461415.css

17.179.252.11

200

2.4 kB

URL HTTP/1.1
myaccess.apple.com/ur/app/registration/styles/vendor-07f1461415.css
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
ASCII text, with very long lines (15159)
Size
2.4 kB (2441 bytes)
Hash
14d20f3005b6b59b92baf4cad1e0542d
e742e67591d78079c56cebd7d0e2b642bbfe0f6b
6fbf17a3829a89dd35c2fb0cd463b2d324cd1b4bfefab9682ad49fb17423a6a5

HTTP Headers

GET /ur/app/registration/styles/vendor-07f1461415.css HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/index.html
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:16 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:16 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Vary: access-control-request-headers,accept-encoding
Last-Modified: Wed, 30 Nov 2022 04:01:03 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Host: myaccess.apple.com

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5890
Expires: Mon, 05 Dec 2022 17:23:26 GMT
Date: Mon, 05 Dec 2022 15:45:16 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5890
Expires: Mon, 05 Dec 2022 17:23:26 GMT
Date: Mon, 05 Dec 2022 15:45:16 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg

34.120.237.76

200 OK

4.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.7 kB (4666 bytes)
Hash
c01fe1cccdb3b672bbade6d98217ffe9
a9a529dc9894827f6243a1bf57f81caa4fe88fc2
c43da6212c79a08e22e78e04e99e8f5422e64b4b0a87f30b7907f1b4bc675c71

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4666
x-amzn-requestid: 850d341f-5ccb-453c-8adf-a8194f8fbdad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clr_-GiboAMFwww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc066-766293f2526e637235067aca;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kmki-SBINSx1kbiIkaSGebdCLrnDeHVhYeotAWzE__CevkNDdfzRGg==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:44:01 GMT
age: 64875
etag: "a9a529dc9894827f6243a1bf57f81caa4fe88fc2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10396 bytes)
Hash
24c69d7ef356b352956d6dcbc9f5df1d
2cc31dc1c5d2d2a8b3a378dce8a1240a79acfec9
94d068620c34652cb2d24ca8b3cf962febe9606e6d3a33d937fc9d99f176edef

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10396
x-amzn-requestid: b879fd2e-b6cf-4373-b780-2d97481c45f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cioNbH5KoAMFUsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a8722-6add7f8e225878473b20c015;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 23:15:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ir97GJKaFoW6BNXCcmMqp0JSUd5JhCACyUvLh5G-0BWCDVJsqs7XhQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 22:03:01 GMT
age: 63735
etag: "2cc31dc1c5d2d2a8b3a378dce8a1240a79acfec9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8469 bytes)
Hash
2f60a6490f38a772dcd50a1132e98e1b
ff254a1df087d2c157d88a6ef04e395dc49efe5e
653e40becd103cd76cc2f194a87e933e8c548d346f87520fefca3b16430fc4ab

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8469
x-amzn-requestid: c17eff92-da62-4f0f-9e75-2741012ec43a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_sqFSjoAMFQ6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d131d-61d61d2f0bb01ecb21b809ea;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:33 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Og6pnDOmEW5oc9EtvKD8BtBojepI-ZSde8xxYGThfF6QNl-ZTQWqQQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:45:46 GMT
age: 64770
etag: "ff254a1df087d2c157d88a6ef04e395dc49efe5e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.7 kB (5681 bytes)
Hash
43309032a892c486f9985ef520df696e
36f4682ca6a33ff80ee02129c77e6f27e996ede0
24225ff504f30405d9ec3feb2555c738fcca0d6b265f285aa9c73a64c78a496e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5681
x-amzn-requestid: 8f0d66b8-d532-48d9-9a29-74540cd6ab3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cltXnEotIAMFqkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc296-27349a376ff819ab63b04a81;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:41:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Uz-wJTZjej3sjP-O68BQ4hB_kkAecG0o7GkeZUan90ZgV87g0Cg_ZA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:52:41 GMT
age: 64355
etag: "36f4682ca6a33ff80ee02129c77e6f27e996ede0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e81e29f-79a8-4af6-b0c7-7f49bfafb17e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.9 kB (6886 bytes)
Hash
f71032604eecccf0a81f323a5f96a400
f8866d4f3185bcf7871581d75339998b34d6cf6d
d053eedc717d7fd86e621ba948680be16538396d1ba9854b6816626d149b1c57

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e81e29f-79a8-4af6-b0c7-7f49bfafb17e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6886
x-amzn-requestid: d721caf6-2252-4ede-9533-3d3fcd6cce0d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cpsw-FfRoAMFtOQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d5b39-7644a195142f6c420ec7eac6;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 02:45:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RwhNdxS-EBTraqzS_TnCNXj3JXgz5NkO8oLyQaHOhHdtnvBbg4vsRQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 02:45:13 GMT
etag: "f8866d4f3185bcf7871581d75339998b34d6cf6d"
content-type: image/jpeg
age: 46803
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.3 kB (8315 bytes)
Hash
db1701b7b9d161a0c935bb6e10b17893
22a8c4bd58c729c1abcf794466e8f3231dfb034b
b495524a33e5b1d3ba34cfbe867ada0da956c061370b1fcde06b23a6194a9787

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8315
x-amzn-requestid: f1bcc33b-aad9-4d3b-b1f9-49282f2d4fb9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsAMGVboAMFfxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc067-13472a097177d4751c8f7a8c;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8ugcixaNsXG-AIHYCfoyOWa5zowv2lb4qwWc8o5_7SQc_0w5HW4mBw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:52:48 GMT
age: 64348
etag: "22a8c4bd58c729c1abcf794466e8f3231dfb034b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

myaccess.apple.com/ur/CSRFGuardServlet

17.179.252.11

200

4.3 kB

URL HTTP/1.1
myaccess.apple.com/ur/CSRFGuardServlet
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
C source, ASCII text, with CRLF line terminators
Size
4.3 kB (4330 bytes)
Hash
e773689fa36b8a4cf0026d1cec44f6c9
0621d9be1eb0853948bad3e4644cb289d3b7c9e4
8683ad05365603dbeececbbc582afc696d1d38a7ad726a8ecfb1393a985d932a

HTTP Headers

GET /ur/CSRFGuardServlet HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/index.html
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:17 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:17 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, maxage=28800
Pragma: no-cache
vary: accept-encoding
Content-Encoding: gzip
Host: myaccess.apple.com

myaccess.apple.com/ur/app/registration/scripts/app-42f60e4cac.js

17.179.252.11

200

54 kB

URL HTTP/1.1
myaccess.apple.com/ur/app/registration/scripts/app-42f60e4cac.js
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
ASCII text, with very long lines (32030)
Size
54 kB (53534 bytes)
Hash
308e765772c70e83012125bc8366af59
e7df37f5c8cddf3f6429cdff571ff1e9a5f04cf4
c18dc66714f46f39e6128a58d88aff38c1d08e2c4e0b7411fba1d8c482b4608e

HTTP Headers

GET /ur/app/registration/scripts/app-42f60e4cac.js HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/index.html
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:17 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:17 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Vary: access-control-request-headers,accept-encoding
Last-Modified: Wed, 30 Nov 2022 04:01:03 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Host: myaccess.apple.com

myaccess.apple.com/ur/app/registration/styles/app-fe352cec06.css

17.179.252.11

200

90 kB

URL HTTP/1.1
myaccess.apple.com/ur/app/registration/styles/app-fe352cec06.css
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
Unicode text, UTF-8 text, with very long lines (63665)
Size
90 kB (90451 bytes)
Hash
7e4cdb5b1b72474f949f60799d3854cd
b1b4c90ac21bd129f0009cbc8d7ad6fb3b789b6b
454281dda0363bc9db99d646d387a3f763b0484e4d7717715fe2ba7f81d735d6

HTTP Headers

GET /ur/app/registration/styles/app-fe352cec06.css HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/index.html
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:17 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:17 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Vary: access-control-request-headers,accept-encoding
Last-Modified: Wed, 30 Nov 2022 04:01:03 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Host: myaccess.apple.com

myaccess.apple.com/ur/app/registration/scripts/vendor-78fbafa70d.js

17.179.252.11

200

237 kB

URL HTTP/1.1
myaccess.apple.com/ur/app/registration/scripts/vendor-78fbafa70d.js
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
Unicode text, UTF-8 text, with very long lines (32220)
Size
237 kB (237223 bytes)
Hash
731183d5b4088478a4e61fb37f4ebeb9
4849bc1791035862de8550104f8aa09aefd0ca36
3e315f9b8c98a7c1b714fd503c1274eafda84d09969fa95b19a7ce1fc23ced3b

HTTP Headers

GET /ur/app/registration/scripts/vendor-78fbafa70d.js HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/index.html
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:17 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:17 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Vary: access-control-request-headers,accept-encoding
Last-Modified: Wed, 30 Nov 2022 04:01:03 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Host: myaccess.apple.com

myaccess.apple.com/ur/CSRFGuardServlet

17.179.252.11

200

154 B

URL HTTP/1.1
myaccess.apple.com/ur/CSRFGuardServlet
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
ASCII text, with no line terminators
Size
154 B (154 bytes)
Hash
7d781f2aa18e8c783fe4cae82417012d
b6a054fa5e59c443b67f7f64cdc89d6d50136192
7b461a59a021552d3cc041a353f118cef4c5886a100e38e56493fcbbc5422e03

HTTP Headers

POST /ur/CSRFGuardServlet HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/index.html
FETCH-CSRF-TOKEN: 1
Origin: https://myaccess.apple.com
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:17 GMT
Content-Type: text/plain
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:17 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
vary: accept-encoding
Content-Encoding: gzip
Host: myaccess.apple.com

myaccess.apple.com/ur/app/registration/fonts/myriad-set-pro_text.woff

17.179.252.11

200

98 kB

URL HTTP/1.1
myaccess.apple.com/ur/app/registration/fonts/myriad-set-pro_text.woff
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
Web Open Font Format, TrueType, length 97772, version 0.0\012- data
Size
98 kB (97772 bytes)
Hash
c6d6740894f7f423cc79eae3f14ddc7f
436e652ae506dfc28916bb3466620c5ff996c2fc
44dfe40f670e8be3ed9fcf21ef8809442a52e5d3be4651ee104b9b79e35c6edb

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Apple

HTTP Headers

GET /ur/app/registration/fonts/myriad-set-pro_text.woff HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://myaccess.apple.com/ur/app/registration/styles/app-fe352cec06.css
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:17 GMT
Content-Type: application/font-woff
Content-Length: 97772
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:17 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Vary: Access-Control-Request-Headers
Last-Modified: Wed, 30 Nov 2022 04:01:03 GMT
Accept-Ranges: bytes
Host: myaccess.apple.com

myaccess.apple.com/ur/V1/maps/fetch_key

17.179.252.11

200

319 B

URL HTTP/1.1
myaccess.apple.com/ur/V1/maps/fetch_key
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
JSON data\012- , ASCII text, with very long lines (364), with no line terminators
Size
319 B (319 bytes)
Hash
ba33843fe50368c0e1e34d3bcfc21c06
ec768f7d6a2a960f7a9eed92ef977f723afb03bd
455cb950a9b7ad8d3da63e2afe1e1ebae3eb3da502ed046af6dc27ef71c70525

HTTP Headers

GET /ur/V1/maps/fetch_key HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/index.html
X-Requested-With: XMLHttpRequest
UR_UUID: OGSQ-GRTO-X18M-PTQG-MYCT-E5XA-G5PM-69H1-L2UO-K9CZ-Y5B6-AW71-A0MS-0RIF-6E6J-RT0D-SLFK-RZ11-J78X-PERQ-ZVPL-QZMY-3M0S-HLRJ-CY5A-28H6-EEE0-4GGR-SJIQ-AKQ9-R8GX-RSE8
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:18 GMT
Content-Type: application/json;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:18 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
vary: accept-encoding
Content-Encoding: gzip
Host: myaccess.apple.com

myaccess.apple.com/ur/app/registration/assets/images/loading-gearS.gif

17.179.252.11

200

60 kB

URL HTTP/1.1
myaccess.apple.com/ur/app/registration/assets/images/loading-gearS.gif
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
GIF image data, version 89a, 300 x 300\012- data
Size
60 kB (60549 bytes)
Hash
c158de6c43b5294170f5f5e1b17602ba
4a70601a04519e7dd7a91dbd8e9750adfbb2b9d6
a70f29354db074a821dd9a1f913f247ae483323febcbb191119700b0bf0426fe

HTTP Headers

GET /ur/app/registration/assets/images/loading-gearS.gif HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/index.html
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:18 GMT
Content-Type: image/gif
Content-Length: 60549
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:18 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Vary: Access-Control-Request-Headers
Last-Modified: Wed, 30 Nov 2022 04:01:03 GMT
Accept-Ranges: bytes
Host: myaccess.apple.com

cdn.apple-mapkit.com/ma/bootstrap?apiVersion=2&mkjsVersion=5.75.4&poi=1

2.18.173.2

200 OK

0 B

URL HTTP/2
cdn.apple-mapkit.com/ma/bootstrap?apiVersion=2&mkjsVersion=5.75.4&poi=1
IP
2.18.173.2:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /ma/bootstrap?apiVersion=2&mkjsVersion=5.75.4&poi=1 HTTP/1.1
Host: cdn.apple-mapkit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization
Referer: https://myaccess.apple.com/
Origin: https://myaccess.apple.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-length: 0
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Authorization,X-Maps-Access-Token
strict-transport-security: max-age=31536000; includeSubDomains;
expires: Mon, 05 Dec 2022 15:45:18 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 05 Dec 2022 15:45:18 GMT
X-Firefox-Spdy: h2

myaccess.apple.com/ur/app/registration/assets/images/nav-icons/apple/large.svg

17.179.252.11

200

1.7 kB

URL HTTP/1.1
myaccess.apple.com/ur/app/registration/assets/images/nav-icons/apple/large.svg
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1149)
Size
1.7 kB (1705 bytes)
Hash
79b1b229e22befaaef280ce8c00e8de4
6294e6b9fcf505607c9d3f1f8ca32bffe823d230
cb33090e8f81dd5d31001ac08ab1b8d6d644dabdb14fbbe804e3165cb6d81dfe

HTTP Headers

GET /ur/app/registration/assets/images/nav-icons/apple/large.svg HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/styles/app-fe352cec06.css
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:18 GMT
Content-Type: image/svg+xml
Content-Length: 1705
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:18 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Vary: Access-Control-Request-Headers
Last-Modified: Wed, 30 Nov 2022 04:01:03 GMT
Accept-Ranges: bytes
Host: myaccess.apple.com

myaccess.apple.com/ur/app/registration/assets/images/nav-icons/mac/large.svg

17.179.252.11

200

1.8 kB

URL HTTP/1.1
myaccess.apple.com/ur/app/registration/assets/images/nav-icons/mac/large.svg
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1562)
Size
1.8 kB (1807 bytes)
Hash
55ae1f01b7498f11fc2c19de8815c2e6
4b0aa727015fc2cd02db6a3fcdb52db3e31b88e8
6f2dfb2a2610cb6ee7595f86bd4bbf3bac8de7be699f52d8e5db81b221a74125

HTTP Headers

GET /ur/app/registration/assets/images/nav-icons/mac/large.svg HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/styles/app-fe352cec06.css
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:18 GMT
Content-Type: image/svg+xml
Content-Length: 1807
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:18 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Vary: Access-Control-Request-Headers
Last-Modified: Wed, 30 Nov 2022 04:01:03 GMT
Accept-Ranges: bytes
Host: myaccess.apple.com

myaccess.apple.com/ur/app/registration/assets/images/nav-icons/ipad/large.svg

17.179.252.11

200

2.5 kB

URL HTTP/1.1
myaccess.apple.com/ur/app/registration/assets/images/nav-icons/ipad/large.svg
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2230)
Size
2.5 kB (2475 bytes)
Hash
b264154e4c246183919459b908b36e34
d673a65738d69507eb4762653b2bd2d87ee122c7
2e7429d31bef8dbc7c9fda29188702df4cefeb6fdefb357bf10a4cfad39dc6ab

HTTP Headers

GET /ur/app/registration/assets/images/nav-icons/ipad/large.svg HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/styles/app-fe352cec06.css
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:18 GMT
Content-Type: image/svg+xml
Content-Length: 2475
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:18 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Vary: Access-Control-Request-Headers
Last-Modified: Wed, 30 Nov 2022 04:01:03 GMT
Accept-Ranges: bytes
Host: myaccess.apple.com

cdn.apple-mapkit.com/ma/bootstrap?apiVersion=2&mkjsVersion=5.75.4&poi=1

2.18.173.2

200 OK

1.3 kB

URL HTTP/2
cdn.apple-mapkit.com/ma/bootstrap?apiVersion=2&mkjsVersion=5.75.4&poi=1
IP
2.18.173.2:0
ASN
#16625 AKAMAI-AS

File type
JSON data\012- , ASCII text, with very long lines (3926), with no line terminators
Size
1.3 kB (1306 bytes)
Hash
be02315816798a80be309b290d771862
a203968742c55e5b55cd13494064907f3fbbbfd5
e544ce743dbb402ecdc235128847885d7e4080edf19deee524f0c24923f6dda7

HTTP Headers

GET /ma/bootstrap?apiVersion=2&mkjsVersion=5.75.4&poi=1 HTTP/1.1
Host: cdn.apple-mapkit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/
Authorization: Bearer eyJraWQiOiI5NUxCNjZQN0tXIiwidHlwIjoiSldUIiwiYWxnIjoiRVMyNTYifQ.eyJvcmlnaW4iOiJodHRwczovL215YWNjZXNzLmFwcGxlLmNvbSIsImlhdCI6MTY3MDI1NTExOCwiaXNzIjoiQzVVODkyNzM2WSIsImV4cCI6MTY3MDI4MzkxOH0.DmxQ0VwN5oGlcgJiz7XirSgTU5QAlF7kwWfpIREf4qhvgrW_qPzDB37ujIl-mUz3H5RcuD8h4xqr5flAyEhkkg
Origin: https://myaccess.apple.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json;charset=utf8
content-length: 1306
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Authorization,X-Maps-Access-Token
x-rid: dd3eb44f-dbe3-4068-84b0-74c261395a60
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains;
expires: Mon, 05 Dec 2022 15:45:18 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 05 Dec 2022 15:45:18 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

myaccess.apple.com/ur/app/registration/assets/images/nav-icons/iphone/large.svg

17.179.252.11

200

3.1 kB

URL HTTP/1.1
myaccess.apple.com/ur/app/registration/assets/images/nav-icons/iphone/large.svg
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2869)
Size
3.1 kB (3114 bytes)
Hash
2fce98229701c41bd14f1460bfa60ef2
6b1e9739a7893ce5642ad4ec201baa4330e3027e
d1bf28da6324c3eafae7a9e54bad44f24a2b44eff58708dd3f79972312c6f610

HTTP Headers

GET /ur/app/registration/assets/images/nav-icons/iphone/large.svg HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/styles/app-fe352cec06.css
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:18 GMT
Content-Type: image/svg+xml
Content-Length: 3114
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:18 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Vary: Access-Control-Request-Headers
Last-Modified: Wed, 30 Nov 2022 04:01:03 GMT
Accept-Ranges: bytes
Host: myaccess.apple.com

myaccess.apple.com/ur/app/registration/assets/images/nav-icons/watch/large.svg

17.179.252.11

200

2.4 kB

URL HTTP/1.1
myaccess.apple.com/ur/app/registration/assets/images/nav-icons/watch/large.svg
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2200)
Size
2.4 kB (2445 bytes)
Hash
ee82b836791f99a9ffd5ba70064807a0
52b93587af1f1935611f8c37e1f41b24f30d8a0f
f7c78f629c6af8eab2fbefabb31ecd9ebd49c54096911dec3ab0942bb23ecfe4

HTTP Headers

GET /ur/app/registration/assets/images/nav-icons/watch/large.svg HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/styles/app-fe352cec06.css
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:18 GMT
Content-Type: image/svg+xml
Content-Length: 2445
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:18 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Vary: Access-Control-Request-Headers
Last-Modified: Wed, 30 Nov 2022 04:01:03 GMT
Accept-Ranges: bytes
Host: myaccess.apple.com

myaccess.apple.com/ur/app/registration/assets/images/nav-icons/music/large.svg

17.179.252.11

200

3.1 kB

URL HTTP/1.1
myaccess.apple.com/ur/app/registration/assets/images/nav-icons/music/large.svg
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2857)
Size
3.1 kB (3111 bytes)
Hash
f28bc1609d992b779754369069537758
be854aa36c95e0d7b0a15c521e75acc60c522f06
2773e1f937b252adc63dc7a77ddda36c5ff762e2a2e9e59974b57fce1a76759f

HTTP Headers

GET /ur/app/registration/assets/images/nav-icons/music/large.svg HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/styles/app-fe352cec06.css
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:18 GMT
Content-Type: image/svg+xml
Content-Length: 3111
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:18 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Vary: Access-Control-Request-Headers
Last-Modified: Wed, 30 Nov 2022 04:01:03 GMT
Accept-Ranges: bytes
Host: myaccess.apple.com

myaccess.apple.com/ur/app/registration/assets/images/nav-icons/support/large.svg

17.179.252.11

200

3.9 kB

URL HTTP/1.1
myaccess.apple.com/ur/app/registration/assets/images/nav-icons/support/large.svg
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3680)
Size
3.9 kB (3925 bytes)
Hash
2a61cd0460f4402d100e31af7e41e26f
99d9c3dc5295f0d3fc0b2201ae411247ec5d79a5
6d0ec8c247bdf15274f12a2721ba41cb4f205fcdd7e50d967a8a377674379abd

HTTP Headers

GET /ur/app/registration/assets/images/nav-icons/support/large.svg HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/styles/app-fe352cec06.css
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:18 GMT
Content-Type: image/svg+xml
Content-Length: 3925
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:18 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Vary: Access-Control-Request-Headers
Last-Modified: Wed, 30 Nov 2022 04:01:03 GMT
Accept-Ranges: bytes
Host: myaccess.apple.com

www.apple.com/ac/globalnav/2.0/en_US/scripts/ac-globalnav.built.js

184.24.44.212

200 OK

41 kB

URL HTTP/2
www.apple.com/ac/globalnav/2.0/en_US/scripts/ac-globalnav.built.js
IP
184.24.44.212:0
ASN
#16625 AKAMAI-AS

File type
Unicode text, UTF-8 text, with very long lines (2819)
Size
41 kB (40689 bytes)
Hash
2fe82af37811c9a0a34fdcd021b8c221
9caca93f4cf7289a063aff7be1d8631dc1c51755
2e8b5afee0bc86d9e6d5d53e49c36ccd1219328d06ec6240d2b4c930bf0247b6

HTTP Headers

GET /ac/globalnav/2.0/en_US/scripts/ac-globalnav.built.js HTTP/1.1
Host: www.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
server: Apple
content-type: application/x-javascript
set-cookie: geo=NO; path=/; domain=.apple.com
strict-transport-security: max-age=31536000; includeSubdomains
x-cache-remote: TCP_REFRESH_HIT from a23-218-92-44.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (S)
nncoection: close
content-security-policy: default-src 'self' blob: data: *.akamaized.net *.apple.com *.apple-mapkit.com *.cdn-apple.com *.organicfruitapps.com; child-src blob: embed.music.apple.com embed.podcasts.apple.com swdlp.apple.com www.apple.com www.instagram.com platform.twitter.com www.youtube-nocookie.com; img-src 'unsafe-inline' blob: data: *.apple.com *.apple-mapkit.com *.cdn-apple.com *.mzstatic.com; script-src 'unsafe-inline' 'unsafe-eval' blob: *.apple.com *.apple-mapkit.com www.instagram.com platform.twitter.com; style-src 'unsafe-inline' *.apple.com
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=300
expires: Mon, 05 Dec 2022 15:50:18 GMT
date: Mon, 05 Dec 2022 15:45:18 GMT
content-length: 40689
x-cache: TCP_REFRESH_HIT from a95-101-11-175.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (S)
X-Firefox-Spdy: h2

myaccess.apple.com/ur/app/registration/assets/images/nav-icons/search/large.svg

17.179.252.11

200

770 B

URL HTTP/1.1
myaccess.apple.com/ur/app/registration/assets/images/nav-icons/search/large.svg
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (328)
Size
770 B (770 bytes)
Hash
67b0ef154ec4216b3ce024a74926e0ad
19238bd66cbdb7b78da9dfb8f45649d9b40bdbbd
d9bd327fc1243d0084d8bf2d744ee664e5a915773dbafd3d0f82f98428c0df66

HTTP Headers

GET /ur/app/registration/assets/images/nav-icons/search/large.svg HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/styles/app-fe352cec06.css
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:18 GMT
Content-Type: image/svg+xml
Content-Length: 770
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:18 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Vary: Access-Control-Request-Headers
Last-Modified: Wed, 30 Nov 2022 04:01:03 GMT
Accept-Ranges: bytes
Host: myaccess.apple.com

myaccess.apple.com/ur/app/registration/assets/images/nav-icons/bag/large.svg

17.179.252.11

200

464 B

URL HTTP/1.1
myaccess.apple.com/ur/app/registration/assets/images/nav-icons/bag/large.svg
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (464), with no line terminators
Size
464 B (464 bytes)
Hash
010ab7085e42687f82bf92df4e1e9d42
1930e203289043c3d40e8d7f2e17a628469feb5f
2b00b7da17f4f98eb6a5e85cadff1b7dcf089842136c1d8fc2f73071cb135e9f

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Apple

HTTP Headers

GET /ur/app/registration/assets/images/nav-icons/bag/large.svg HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/styles/app-fe352cec06.css
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:18 GMT
Content-Type: image/svg+xml
Content-Length: 464
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:18 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Vary: Access-Control-Request-Headers
Last-Modified: Wed, 30 Nov 2022 04:01:03 GMT
Accept-Ranges: bytes
Host: myaccess.apple.com

myaccess.apple.com/ur/app/registration/assets/images/nav-icons/tv/large.svg

17.179.252.11

200

850 B

URL HTTP/1.1
myaccess.apple.com/ur/app/registration/assets/images/nav-icons/tv/large.svg
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
850 B (850 bytes)
Hash
67ebc55ad4365c5fcc4d8651a94c6d9b
2d7ce9d3bc48a567675e9d5f095c2db91b968265
b3d4276825031e09d8bb4d342fd510fe1b511a59a41c01f1f057bcff7d043ddd

HTTP Headers

GET /ur/app/registration/assets/images/nav-icons/tv/large.svg HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/styles/app-fe352cec06.css
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:18 GMT
Content-Type: image/svg+xml
Content-Length: 850
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:18 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Vary: Access-Control-Request-Headers
Last-Modified: Wed, 30 Nov 2022 04:01:03 GMT
Accept-Ranges: bytes
Host: myaccess.apple.com

myaccess.apple.com/ur/portal/favicon.ico

17.179.252.11

200

9.1 kB

URL HTTP/1.1
myaccess.apple.com/ur/portal/favicon.ico
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
MS Windows icon resource - 4 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Size
9.1 kB (9062 bytes)
Hash
28ec4eaba5ae210b98a11257caf5bade
6164148a39d6a27286641896fce3b76f439aeab1
3f5086612aae9363c9fb02949219cef19854c18fe5ad4eda78aa1aefcc79cc71

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Apple

HTTP Headers

GET /ur/portal/favicon.ico HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/index.html
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7; geo=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:18 GMT
Content-Type: image/x-icon
Content-Length: 9062
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:18 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Vary: Access-Control-Request-Headers
Last-Modified: Wed, 30 Nov 2022 04:01:03 GMT
Accept-Ranges: bytes
Host: myaccess.apple.com

myaccess.apple.com/ur/rg/V1/l_r

17.179.252.11

200

7.3 kB

URL HTTP/1.1
myaccess.apple.com/ur/rg/V1/l_r
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
ASCII text, with very long lines (35087), with no line terminators
Size
7.3 kB (7309 bytes)
Hash
c34397f68bb3ea3be7073dd22b00faac
0f48e9ea82a677dc18b3b9e2fac0713787854271
8117672a70f9bf43794190fd6c98081a7d867e4e1bb94eb1ed9871c44241eded

HTTP Headers

POST /ur/rg/V1/l_r HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/index.html
Content-Type: application/json
X-Requested-With: XMLHttpRequest
UR_UUID: OGSQ-GRTO-X18M-PTQG-MYCT-E5XA-G5PM-69H1-L2UO-K9CZ-Y5B6-AW71-A0MS-0RIF-6E6J-RT0D-SLFK-RZ11-J78X-PERQ-ZVPL-QZMY-3M0S-HLRJ-CY5A-28H6-EEE0-4GGR-SJIQ-AKQ9-R8GX-RSE8
Content-Length: 2
Origin: https://myaccess.apple.com
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:19 GMT
Content-Type: application/json;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:18 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
dslang=US-EN; Max-Age=15778476; Domain=.apple.com; Path=/; Secure; HttpOnly
vary: accept-encoding
Content-Encoding: gzip
Host: myaccess.apple.com

myaccess.apple.com/ur/rg/V1/f_l10n?apiLangCode=en_US

17.179.252.11

200

64 kB

URL HTTP/1.1
myaccess.apple.com/ur/rg/V1/f_l10n?apiLangCode=en_US
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (65469), with no line terminators
Size
64 kB (63457 bytes)
Hash
6ee6c314cea0158b0e47f56c3b18945f
346668ddc3451d255027741db9c95dc4b1cc1797
d09b90f146b34f2138b07088b8ffb4c452c30293a3de23dec6b2eaf1828cf4eb

HTTP Headers

POST /ur/rg/V1/f_l10n?apiLangCode=en_US HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/index.html
Content-Type: application/json
X-Requested-With: XMLHttpRequest
UR_UUID: OGSQ-GRTO-X18M-PTQG-MYCT-E5XA-G5PM-69H1-L2UO-K9CZ-Y5B6-AW71-A0MS-0RIF-6E6J-RT0D-SLFK-RZ11-J78X-PERQ-ZVPL-QZMY-3M0S-HLRJ-CY5A-28H6-EEE0-4GGR-SJIQ-AKQ9-R8GX-RSE8
Content-Length: 62
Origin: https://myaccess.apple.com
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7; geo=NO; dslang=US-EN
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:20 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:20 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
dslang=US-EN; Max-Age=15778476; Domain=.apple.com; Path=/; Secure; HttpOnly
vary: accept-encoding
Content-Encoding: gzip
Host: myaccess.apple.com

myaccess.apple.com/ur/app/registration/assets/images/world_icon.png

17.179.252.11

200

15 kB

URL HTTP/1.1
myaccess.apple.com/ur/app/registration/assets/images/world_icon.png
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size
15 kB (15424 bytes)
Hash
0d6f63cfe6f756019923207ffd227163
da8b2458f5cf23694494a14d393f877f95efb9cf
e3b885fb9751bba33e81c6b77ad43fdb5ce3bcb8e07d9621084a8d07b3c25a95

HTTP Headers

GET /ur/app/registration/assets/images/world_icon.png HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/index.html
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7; geo=NO; dslang=US-EN
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:20 GMT
Content-Type: image/png
Content-Length: 15424
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:20 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Vary: Access-Control-Request-Headers
Last-Modified: Wed, 30 Nov 2022 04:01:03 GMT
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
Host: myaccess.apple.com

myaccess.apple.com/ur/app/registration/assets/images/alert.png

17.179.252.11

200

5.3 kB

URL HTTP/1.1
myaccess.apple.com/ur/app/registration/assets/images/alert.png
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Size
5.3 kB (5301 bytes)
Hash
d2b3be8e7b5b5babb35d48068986d939
6405c52e8cd3a45faa07ac9dc13a358882930d6a
efdd19852632f4cba1e48ed095d21a82f9f1bd7633b7f1f2ef23bb7ee000e03b

HTTP Headers

GET /ur/app/registration/assets/images/alert.png HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/index.html
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7; geo=NO; dslang=US-EN
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:20 GMT
Content-Type: image/png
Content-Length: 5301
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:20 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Vary: Access-Control-Request-Headers
Last-Modified: Wed, 30 Nov 2022 04:01:03 GMT
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
Host: myaccess.apple.com

myaccess.apple.com/ur/app/registration/assets/images/apple_id_recovery_2880x340.jpg

17.179.252.11

200

44 kB

URL HTTP/1.1
myaccess.apple.com/ur/app/registration/assets/images/apple_id_recovery_2880x340.jpg
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2880x340, components 3\012- data
Size
44 kB (43454 bytes)
Hash
587b12f6fea90cd1d7d3c97e293cc62f
44f5a7d7241abc6c9aa661bdd0ad127bd307b33a
14cf2574e8159522343e63b7274bcb2ea12f0ae20b7ee906669ea7d893c62fa8

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Apple

HTTP Headers

GET /ur/app/registration/assets/images/apple_id_recovery_2880x340.jpg HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/styles/app-fe352cec06.css
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7; geo=NO; dslang=US-EN
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:20 GMT
Content-Type: image/jpeg
Content-Length: 43454
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:20 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Vary: Access-Control-Request-Headers
Last-Modified: Wed, 30 Nov 2022 04:01:03 GMT
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: 0
Host: myaccess.apple.com

myaccess.apple.com/ur/n_a_rq/V1/g_a_ls

17.179.252.11

200

3.0 kB

URL HTTP/1.1
myaccess.apple.com/ur/n_a_rq/V1/g_a_ls
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
JSON data\012- , ASCII text, with very long lines (18755), with no line terminators
Size
3.0 kB (3028 bytes)
Hash
7a4a0c73e1e8c9d90714e497a47ee5f3
59e87bd8ea70e3d53b3c72c7c0407f8fa05d27b7
086eda0a404cc4c3bb64491703dc5067425bfaa1a3d670876ebefc60d9d14f36

HTTP Headers

POST /ur/n_a_rq/V1/g_a_ls HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/index.html
Content-Type: application/json
X-Requested-With: XMLHttpRequest
UR_UUID: OGSQ-GRTO-X18M-PTQG-MYCT-E5XA-G5PM-69H1-L2UO-K9CZ-Y5B6-AW71-A0MS-0RIF-6E6J-RT0D-SLFK-RZ11-J78X-PERQ-ZVPL-QZMY-3M0S-HLRJ-CY5A-28H6-EEE0-4GGR-SJIQ-AKQ9-R8GX-RSE8
Content-Length: 2
Origin: https://myaccess.apple.com
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7; geo=NO; dslang=US-EN
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:20 GMT
Content-Type: application/json;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:20 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
vary: accept-encoding
Content-Encoding: gzip
Host: myaccess.apple.com

myaccess.apple.com/ur/rg/V1/g_l_pes

17.179.252.11

200

73 B

URL HTTP/1.1
myaccess.apple.com/ur/rg/V1/g_l_pes
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
JSON data\012- , ASCII text, with no line terminators
Size
73 B (73 bytes)
Hash
71a9a8b0c024b2fccdf7bba9c0e01d3e
bd675fb5a54ecd214815eed2dda4d39f54a56b07
ead12103c5e61f68671a400daa1c133717903aee4a9960ee0560b9957bf6cea7

HTTP Headers

POST /ur/rg/V1/g_l_pes HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/index.html
Content-Type: application/json
X-Requested-With: XMLHttpRequest
UR_UUID: OGSQ-GRTO-X18M-PTQG-MYCT-E5XA-G5PM-69H1-L2UO-K9CZ-Y5B6-AW71-A0MS-0RIF-6E6J-RT0D-SLFK-RZ11-J78X-PERQ-ZVPL-QZMY-3M0S-HLRJ-CY5A-28H6-EEE0-4GGR-SJIQ-AKQ9-R8GX-RSE8
Content-Length: 2
Origin: https://myaccess.apple.com
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7; geo=NO; dslang=US-EN
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:20 GMT
Content-Type: application/json;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:20 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
vary: accept-encoding
Content-Encoding: gzip
Host: myaccess.apple.com

myaccess.apple.com/ur/rg/V1/lcn/g_l_d_f_hq_l

17.179.252.11

200

900 B

URL HTTP/1.1
myaccess.apple.com/ur/rg/V1/lcn/g_l_d_f_hq_l
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
JSON data\012- , ASCII text, with very long lines (1870), with no line terminators
Size
900 B (900 bytes)
Hash
6320fac5edd4f411fd3512adce19140a
c0ca2d1f9fe0472154791b298745c6347831c37c
23f043664ab7eef7c8c49cd3dc82de7b8cddaa6df4a54ecdb0903f3c75580404

HTTP Headers

POST /ur/rg/V1/lcn/g_l_d_f_hq_l HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/index.html
Content-Type: application/json
X-Requested-With: XMLHttpRequest
UR_UUID: OGSQ-GRTO-X18M-PTQG-MYCT-E5XA-G5PM-69H1-L2UO-K9CZ-Y5B6-AW71-A0MS-0RIF-6E6J-RT0D-SLFK-RZ11-J78X-PERQ-ZVPL-QZMY-3M0S-HLRJ-CY5A-28H6-EEE0-4GGR-SJIQ-AKQ9-R8GX-RSE8
Content-Length: 630
Origin: https://myaccess.apple.com
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7; geo=NO; dslang=US-EN
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:20 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:20 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
vary: accept-encoding
Content-Encoding: gzip
Host: myaccess.apple.com

myaccess.apple.com/ur/rg/V1/lcn/g_go_ln

17.179.252.11

200

346 B

URL HTTP/1.1
myaccess.apple.com/ur/rg/V1/lcn/g_go_ln
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
JSON data\012- , ASCII text, with very long lines (560), with no line terminators
Size
346 B (346 bytes)
Hash
c2c464837409fcd8870b5a71e5c0cfa8
b3113c4c19fa68b35ea1fff0be92054530ec5855
155d121bc266edc6fe2afb5787e54a0f6b4513d225c6c0be845e1f4c1217b8a4

HTTP Headers

POST /ur/rg/V1/lcn/g_go_ln HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/index.html
Content-Type: application/json
X-Requested-With: XMLHttpRequest
UR_UUID: OGSQ-GRTO-X18M-PTQG-MYCT-E5XA-G5PM-69H1-L2UO-K9CZ-Y5B6-AW71-A0MS-0RIF-6E6J-RT0D-SLFK-RZ11-J78X-PERQ-ZVPL-QZMY-3M0S-HLRJ-CY5A-28H6-EEE0-4GGR-SJIQ-AKQ9-R8GX-RSE8
Content-Length: 189
Origin: https://myaccess.apple.com
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7; geo=NO; dslang=US-EN
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:20 GMT
Content-Type: application/json;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:20 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
vary: accept-encoding
Content-Encoding: gzip
Host: myaccess.apple.com

myaccess.apple.com/ur/app/registration/fonts/shared-icons.woff

17.179.252.11

200

8.0 kB

URL HTTP/1.1
myaccess.apple.com/ur/app/registration/fonts/shared-icons.woff
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
Web Open Font Format, TrueType, length 7992, version 1.0\012- data
Size
8.0 kB (7992 bytes)
Hash
417873edccb182a6c3f8232a32874c1a
8f8b73eaa1350a3e4c584ca329d11e9bc631500f
2770b4cae5769063fbd835fd96f725e261706198c3bff7c0be0a65f37044b57a

HTTP Headers

GET /ur/app/registration/fonts/shared-icons.woff HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://myaccess.apple.com/ur/app/registration/styles/app-fe352cec06.css
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7; geo=NO; dslang=US-EN
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:20 GMT
Content-Type: application/font-woff
Content-Length: 7992
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:20 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Vary: Access-Control-Request-Headers
Last-Modified: Wed, 30 Nov 2022 04:01:03 GMT
Accept-Ranges: bytes
Host: myaccess.apple.com

myaccess.apple.com/ur/app/registration/fonts/myriad-set-pro_thin.woff

17.179.252.11

200

95 kB

URL HTTP/1.1
myaccess.apple.com/ur/app/registration/fonts/myriad-set-pro_thin.woff
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
Web Open Font Format, TrueType, length 94980, version 0.0\012- data
Size
95 kB (94980 bytes)
Hash
7028a7c3250606308ac47d8c4a725a8d
978e75aef4d551af241ba3963e57d1315e5939cf
6585dc80ba7519d9cc037ace4f441b7545c7ca247e5bdb58949c1d5c13056daa

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Apple

HTTP Headers

GET /ur/app/registration/fonts/myriad-set-pro_thin.woff HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/styles/app-fe352cec06.css
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7; geo=NO; dslang=US-EN
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:20 GMT
Content-Type: application/font-woff
Content-Length: 94980
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:20 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Vary: Access-Control-Request-Headers
Last-Modified: Wed, 30 Nov 2022 04:01:03 GMT
Accept-Ranges: bytes
Host: myaccess.apple.com

myaccess.apple.com/ur/app/registration/fonts/glyphicons-halflings-regular.woff2

17.179.252.11

200

18 kB

URL HTTP/1.1
myaccess.apple.com/ur/app/registration/fonts/glyphicons-halflings-regular.woff2
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
Web Open Font Format (Version 2), TrueType, length 18028, version 1.589\012- data
Size
18 kB (18028 bytes)
Hash
448c34a56d699c29117adc64c43affeb
ca35b697d99cae4d1b60f2d60fcd37771987eb07
fe185d11a49676890d47bb783312a0cda5a44c4039214094e7957b4c040ef11c

HTTP Headers

GET /ur/app/registration/fonts/glyphicons-halflings-regular.woff2 HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://myaccess.apple.com/ur/app/registration/styles/app-fe352cec06.css
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7; geo=NO; dslang=US-EN
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:20 GMT
Content-Type: application/font-woff2
Content-Length: 18028
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:20 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Vary: Access-Control-Request-Headers
Last-Modified: Wed, 30 Nov 2022 04:01:03 GMT
Accept-Ranges: bytes
Host: myaccess.apple.com

myaccess.apple.com/ur/app/registration/fonts/myriad-set-pro_medium.woff

17.179.252.11

200

98 kB

URL HTTP/1.1
myaccess.apple.com/ur/app/registration/fonts/myriad-set-pro_medium.woff
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
Web Open Font Format, TrueType, length 98104, version 0.0\012- data
Size
98 kB (98104 bytes)
Hash
6f7194dbaf62b3f2c5154284c1e72b02
cbe8adae44d2ec5b742ef7bcb34a5891bde79ff6
9ef316298efb45356282fe5be756c8a7c562e1e32f5c74521d851af59208ab08

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Apple

HTTP Headers

GET /ur/app/registration/fonts/myriad-set-pro_medium.woff HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://myaccess.apple.com/ur/app/registration/styles/app-fe352cec06.css
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7; geo=NO; dslang=US-EN
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:20 GMT
Content-Type: application/font-woff
Content-Length: 98104
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:20 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Vary: Access-Control-Request-Headers
Last-Modified: Wed, 30 Nov 2022 04:01:03 GMT
Accept-Ranges: bytes
Host: myaccess.apple.com

myaccess.apple.com/ur/app/registration/fonts/MYRIADAB.TTF

17.179.252.11

200

58 kB

URL HTTP/1.1
myaccess.apple.com/ur/app/registration/fonts/MYRIADAB.TTF
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
TrueType Font data, 18 tables, 1st "LTSH", 14 names, Macintosh, Copyright (c) 1992 Adobe Systems Incorporated. All Rights Reserved.Myriad is a trademark of Ado\012- data
Size
58 kB (57688 bytes)
Hash
34dbcf9293aaa78c078bd94fe6c5054f
0ae4cf01b097ca31efeabb518c3f7407175e56fa
27918d48f4a60b131eca043c254b4625af691bf1c313e0469b03e7b548b7781f

HTTP Headers

GET /ur/app/registration/fonts/MYRIADAB.TTF HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/styles/app-fe352cec06.css
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7; geo=NO; dslang=US-EN
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:20 GMT
Content-Type: application/x-font-ttf
Content-Length: 57688
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:20 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Vary: Access-Control-Request-Headers
Last-Modified: Wed, 30 Nov 2022 04:01:03 GMT
Accept-Ranges: bytes
Host: myaccess.apple.com

myaccess.apple.com/ur/app/registration/fonts/myriad-set-pro_thin.woff

17.179.252.11

200

95 kB

URL HTTP/1.1
myaccess.apple.com/ur/app/registration/fonts/myriad-set-pro_thin.woff
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
Web Open Font Format, TrueType, length 94980, version 0.0\012- data
Size
95 kB (94980 bytes)
Hash
7028a7c3250606308ac47d8c4a725a8d
978e75aef4d551af241ba3963e57d1315e5939cf
6585dc80ba7519d9cc037ace4f441b7545c7ca247e5bdb58949c1d5c13056daa

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Apple

HTTP Headers

GET /ur/app/registration/fonts/myriad-set-pro_thin.woff HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://myaccess.apple.com/ur/app/registration/styles/app-fe352cec06.css
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7; geo=NO; dslang=US-EN
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:20 GMT
Content-Type: application/font-woff
Content-Length: 94980
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:20 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Vary: Access-Control-Request-Headers
Last-Modified: Wed, 30 Nov 2022 04:01:03 GMT
Accept-Ranges: bytes
Host: myaccess.apple.com

myaccess.apple.com/ur/rg/V1/g_i_c?locale=en_US&_=1670255118109

17.179.252.11

200

4.6 kB

URL HTTP/1.1
myaccess.apple.com/ur/rg/V1/g_i_c?locale=en_US&_=1670255118109
IP
17.179.252.11:0
ASN
#714 APPLE-ENGINEERING

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 160x70, components 3\012- data
Size
4.6 kB (4634 bytes)
Hash
3e2cf5ec23618caae9aa72a384a6f051
c6c9566fc6402b5f8622a6a69efa3a5b0a8a28bc
8acd1d18787e89091eaac920492216098014861119060545771372d6a7be14ab

HTTP Headers

GET /ur/rg/V1/g_i_c?locale=en_US&_=1670255118109 HTTP/1.1
Host: myaccess.apple.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/ur/app/registration/index.html
Connection: keep-alive
Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; JSESSIONID=6EF63DC455A929F626037420ADF808D7; geo=NO; dslang=US-EN
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 
Server: Apple
Date: Mon, 05 Dec 2022 15:45:21 GMT
Content-Type: image/jpeg
Content-Length: 4634
Connection: keep-alive
Set-Cookie: myaccess-rno_ur=d5221ec726c5127a880889ef8a459745; expires=Mon, 05-Dec-22 16:45:20 GMT; max-age=3600; domain=.apple.com; httponly; secure; path=/ur
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1;mode=block
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: default-src 'self'; block-all-mixed-content; connect-src 'self' https://www.apple.com https://*.apple-mapkit.com https://*.corp.apple.com ; img-src 'self' https://*.apple-mapkit.com data: ; object-src 'none'; script-src 'self' https://www.apple.com https://cdn.apple-mapkit.com 'unsafe-eval'; font-src 'self' https://www.apple.com ; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: private, no-cache, no-store, must-revalidate
Pragma: no-cache
Host: myaccess.apple.com

cdn.apple-mapkit.com/mk/5.x.x/mapkit.js

2.18.173.2

200 OK

0 B

URL HTTP/2
cdn.apple-mapkit.com/mk/5.x.x/mapkit.js
IP
2.18.173.2:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /mk/5.x.x/mapkit.js HTTP/1.1
Host: cdn.apple-mapkit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://myaccess.apple.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
accept-ranges: bytes
access-control-allow-origin: *
etag: "6329ff6b-9d541"
last-modified: Tue, 20 Sep 2022 17:59:07 GMT
timing-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains;
vary: Accept-Encoding
content-encoding: gzip
cache-control: public, max-age=288
date: Mon, 05 Dec 2022 15:45:17 GMT
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (4)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (64)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size