Report - ecab-eg.com/gope/vantagewest/vantagewest/index.php

Report Overview

Submitted URL
ecab-eg.com/gope/vantagewest/vantagewest/index.php
IP
162.250.124.251
ASN
#19318 IS-AS-1
Submitted
2023-01-01 05:07:59
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
8

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.8 kB	142.250.74.131
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	23.36.76.226
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.7 kB	93.184.220.29
ajax.googleapis.com	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	387 B	31 kB	142.250.74.42
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	57 kB	34.120.237.76
assets.orb.alkamitech.com	29430	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	918 B	58 kB	143.204.55.56
stackpath.bootstrapcdn.com	2467	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	393 B	917 B	104.18.11.207
ecab-eg.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	10 kB	798 kB	162.250.124.251
connect.secure.wellsfargo.com	11812	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	393 B	1.2 kB	23.36.79.34
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.69.181.45
ocsp.entrust.net	1208	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	340 B	2.0 kB	104.110.10.32
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	954 B	34 kB	216.58.207.227
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	395 B	1.9 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2022-12-31	medium	ecab-eg.com/gope/vantagewest/vantagewest/index.php	Wells Fargo & Company

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-01	medium	ecab-eg.com/gope/vantagewest/vantagewest/index.php	Phishing
2023-01-01	medium	ecab-eg.com/gope/vantagewest/vantagewest/Login/css/google-play-badge.svg	Phishing
2023-01-01	medium	ecab-eg.com/gope/vantagewest/vantagewest/Login/css/app-store-badge.svg	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (4)

	URL	Size	First Seen	Last Seen
	ecab-eg.com/gope/vantagewest/vantagewest/index.php	989 B	2023-03-12	2023-03-12
Pretty URL ecab-eg.com/gope/vantagewest/vantagewest/index.php IP 162.250.124.251 ASN #19318 IS-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 12:25:34 Last Seen2023-03-12 12:25:34 Times Seen1 Hash d91d37b97130dbad3ad3d523b76d8021 1694e645b54521ec38b8e5273d43b19b8a235c55 f9e7d95f1ad7f87227775b1a7e6f502351575368ad34ab9d0819007fb4002e22 Loading...

	ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js	86 kB	2023-03-07	2024-04-24
Pretty URL ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js IP 142.250.74.42 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-24 20:34:25 Times Seen383687 Hash 2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e Loading...

	stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js	51 kB	2023-03-07	2024-04-24
Pretty URL stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js IP 104.18.11.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:44 Last Seen2024-04-24 20:34:25 Times Seen243970 Hash 67176c242e1bdc20603c878dee836df3 27a71b00383d61ef3c489326b3564d698fc1227c 56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4 Loading...

	ecab-eg.com/gope/vantagewest/vantagewest/Login/?token=e8b51e55e3ed9ebb1c1605c0f8bb0e18a7d49b812c2e87cfc4bc66e7666ba40f87fc227f905e5f4d2907d456e967d1bfe29bd5b3c0405faa960fa7d2149a48bb	585 B	2023-03-09	2023-03-12
Pretty URL ecab-eg.com/gope/vantagewest/vantagewest/Login/?token=e8b51e55e3ed9ebb1c1605c0f8bb0e18a7d49b812c2e87cfc4bc66e7666ba40f87fc227f905e5f4d2907d456e967d1bfe29bd5b3c0405faa960fa7d2149a48bb IP 162.250.124.251 ASN #19318 IS-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:05:26 Last Seen2023-03-12 12:25:34 Times Seen1 Hash 0ea043f7a77cb778867f3fdc601f2646 880479b13a6812732fc0a49637aafbd7fb3184f6 4b34cad9a3fa58e52d21f840d4c4a72dfeb97fc357b687a20d0a0267914d8224 Loading...

HTTP Transactions (51)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ab3625faa748b97df39d95f3265ccd14
3930df2e3cb45a1abe47de735002fba535de4f08
0b0a1eb64c4a23598884f08be0a9694c8fcaeffc4b0df790a678104f44fe1c14

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0B0A1EB64C4A23598884F08BE0A9694C8FCAEFFC4B0DF790A678104F44FE1C14"
Last-Modified: Fri, 30 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13513
Expires: Sun, 01 Jan 2023 08:53:02 GMT
Date: Sun, 01 Jan 2023 05:07:49 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5c6a87f6d6b5c54dcb1b630ae6001c73
e0315c9936d6f2f58ff7d078e74a8ec7802265a8
d88ef07b9fcfb42d27a490cb57df4adaf3261efc7d0b38246db387da3ca32a8d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D88EF07B9FCFB42D27A490CB57DF4ADAF3261EFC7D0B38246DB387DA3CA32A8D"
Last-Modified: Fri, 30 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6425
Expires: Sun, 01 Jan 2023 06:54:54 GMT
Date: Sun, 01 Jan 2023 05:07:49 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 01 Jan 2023 04:47:16 GMT
content-type: application/json
age: 1233
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6d6d99cd1201f65eeb7d437b62bad1f3
6d5e41d7a2786ccaad7c7276ecdd9411f8cbd6ba
db2b42007fc4ad126c8af8d7cce27af88947231d09ded56da33cfee3d2594e23

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DB2B42007FC4AD126C8AF8D7CCE27AF88947231D09DED56DA33CFEE3D2594E23"
Last-Modified: Fri, 30 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13793
Expires: Sun, 01 Jan 2023 08:57:42 GMT
Date: Sun, 01 Jan 2023 05:07:49 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: R+HZ2MNoiTRkC/kMLn/Upbcb+rI4/C+LzmTcSAl+2Y1sCRNrqJLKqmj4Uu8SslowA169NVnGCA0=
x-amz-request-id: 715VQ197YTYHAVZE
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 01 Jan 2023 04:59:56 GMT
age: 473
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 01 Jan 2023 05:07:49 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ecab-eg.com/gope/vantagewest/vantagewest/index.php

162.250.124.251

200 OK

4.4 kB

URL HTTP/1.1
ecab-eg.com/gope/vantagewest/vantagewest/index.php
IP
162.250.124.251:0
ASN
#19318 IS-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (983), with CRLF line terminators
Size
4.4 kB (4448 bytes)
Hash
8c233ac933be40b08f8f212568417b5b
c1ca63217c9965c521b851b686233eb098e0ba13
06ab5a504cbad1dc648beddb7370e2e83d12f0890e5f35dd3de20458ad04373c

Detections

Analyzer	Verdict	Alert
openphish	Wells Fargo & Company
fortinet	Phishing

HTTP Headers

GET /gope/vantagewest/vantagewest/index.php HTTP/1.1
Host: ecab-eg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 05:07:49 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=78d0729b46f52e88b6befca4ce5ddb5b; path=/
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

ecab-eg.com/gope/vantagewest/vantagewest/Guard/css/cf.css

162.250.124.251

200 OK

1.8 kB

URL HTTP/1.1
ecab-eg.com/gope/vantagewest/vantagewest/Guard/css/cf.css
IP
162.250.124.251:0
ASN
#19318 IS-AS-1

File type
ASCII text
Size
1.8 kB (1751 bytes)
Hash
667fbc35fdd4fd01035271307ed494b6
60e1fe58b0af83b4a326e1af93ca0ca2685d5011
6026255cc26e031389358227ccd1b7de6cba842c3978f9144d31cb30032276ef

HTTP Headers

GET /gope/vantagewest/vantagewest/Guard/css/cf.css HTTP/1.1
Host: ecab-eg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecab-eg.com/gope/vantagewest/vantagewest/index.php
Cookie: PHPSESSID=78d0729b46f52e88b6befca4ce5ddb5b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 05:07:49 GMT
Server: Apache
Last-Modified: Sun, 04 Sep 2022 01:44:48 GMT
Accept-Ranges: bytes
Content-Length: 1751
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, ETag, Pragma, Last-Modified, Expires, Alert, Content-Type, Retry-After, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 01 Jan 2023 04:08:11 GMT
age: 3578
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
a5918290419ce5e1666260369fd65a49
1803e71894b21c5d59d8de2546d642f23bd9e13d
fc1a7329f7252d930e6a6ee81047af1e074f5fbd1cc794810ba952d4b7c09499

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3394
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 05:07:49 GMT
Last-Modified: Sun, 01 Jan 2023 04:11:15 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

connect.secure.wellsfargo.com/favicon.ico

23.36.79.34

200 OK

508 B

URL HTTP/1.1
connect.secure.wellsfargo.com/favicon.ico
IP
23.36.79.34:0
ASN
#20940 Akamai International B.V.

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
508 B (508 bytes)
Hash
0ff9d0afb73b054116f382a98f37a437
ba616b727d91a584152ec72649bb889152077936
d2c81359c31499c0275e363e948f6bde6c51f9b49e349299c324c9b0e3fdab67

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: connect.secure.wellsfargo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecab-eg.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/x-icon
Last-Modified: Thu, 03 Nov 2022 01:27:01 GMT
ETag: "636318e5-47e"
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Access-Control-Allow-Methods: POST
Allow: GET, POST, OPTIONS
$host: wellsfargo.com
Cache-Control: max-age=3600
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 01 Jan 2023 05:07:49 GMT
Content-Length: 508
Connection: keep-alive
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
Set-Cookie: DCID=VWOmwVmKfwdgReKVlX145A%3d%3d; Domain=connect.secure.wellsfargo.com; Path=/; Expires=Thu, 01 Jan 1970 00:30:00 GMT;Httponly; Secure

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
afc798d7819a9c19437d20a92eb6f6ec
badde0ed90ac423d5796dc35808a3cd6cec09820
f101fbf84795c278d89aafdadf23cca6c5010b372a48d39a5354555bfb961e61

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2053
Cache-Control: max-age=102794
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 05:07:49 GMT
Etag: "63affbaa-1d7"
Expires: Mon, 02 Jan 2023 09:41:03 GMT
Last-Modified: Sat, 31 Dec 2022 09:06:50 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

54.69.181.45

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.69.181.45:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 7UbrIhfb+jvvAXavMMSYkw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: J2jINwgUJv1Rg3Bez0s02syskMk=

ecab-eg.com/gope/vantagewest/vantagewest/Login/?token=e8b51e55e3ed9ebb1c1605c0f8bb0e18a7d49b812c2e87cfc4bc66e7666ba40f87fc227f905e5f4d2907d456e967d1bfe29bd5b3c0405faa960fa7d2149a48bb

162.250.124.251

200 OK

22 kB

URL HTTP/1.1
ecab-eg.com/gope/vantagewest/vantagewest/Login/?token=e8b51e55e3ed9ebb1c1605c0f8bb0e18a7d49b812c2e87cfc4bc66e7666ba40f87fc227f905e5f4d2907d456e967d1bfe29bd5b3c0405faa960fa7d2149a48bb
IP
162.250.124.251:0
ASN
#19318 IS-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4945), with CRLF line terminators
Size
22 kB (21886 bytes)
Hash
72f7cb90c714dc47b6f18d94ac6fc58d
71f7393a993da98ecd134bc3fc96951297b058a4
5999f75cc1cfe4e4a0785d3374a4896d2a0236905a737ed6ba5ac4b8013266ff

HTTP Headers

GET /gope/vantagewest/vantagewest/Login/?token=e8b51e55e3ed9ebb1c1605c0f8bb0e18a7d49b812c2e87cfc4bc66e7666ba40f87fc227f905e5f4d2907d456e967d1bfe29bd5b3c0405faa960fa7d2149a48bb HTTP/1.1
Host: ecab-eg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecab-eg.com/gope/vantagewest/vantagewest/index.php
Cookie: PHPSESSID=78d0729b46f52e88b6befca4ce5ddb5b
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 05:07:51 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
81c87a3f088331ce54f7b42d3815e4d7
93f7ac5fa21edef94d130988ab2833a36a8db38d
e493ad44a81a5773112904c8141b028cac7298d3cf1b44368291d9a0a3b800d7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 05:07:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js

142.250.74.42

200 OK

30 kB

URL HTTP/2
ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
IP
142.250.74.42:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (32065)
Size
30 kB (30028 bytes)
Hash
6d973c8b7e2439d958e09c0a1ab9fe50
05ae0830200c20b9a2dfd5a825adc400481a60fb
f3c122dc227e829ed96b2a754296809201bd78abbad7ba50ef5079654e1cc894

HTTP Headers

GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecab-eg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 29 Dec 2022 19:35:06 GMT
expires: Fri, 29 Dec 2023 19:35:06 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 207165
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ecab-eg.com/gope/vantagewest/vantagewest/Login/css/yui-reset.min.css

162.250.124.251

200 OK

793 B

URL HTTP/1.1
ecab-eg.com/gope/vantagewest/vantagewest/Login/css/yui-reset.min.css
IP
162.250.124.251:0
ASN
#19318 IS-AS-1

File type
ASCII text, with very long lines (746)
Size
793 B (793 bytes)
Hash
ff296a5a2b2062ce5cbcb0b8cfcca0e4
5477838f625b923e8a18dc2c28a127275132afcf
590fcd2ea2a3de691c86ecf564fff1fcb0982271cf723ae4d6e2453c9e6f5434

HTTP Headers

GET /gope/vantagewest/vantagewest/Login/css/yui-reset.min.css HTTP/1.1
Host: ecab-eg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecab-eg.com/gope/vantagewest/vantagewest/Login/?token=e8b51e55e3ed9ebb1c1605c0f8bb0e18a7d49b812c2e87cfc4bc66e7666ba40f87fc227f905e5f4d2907d456e967d1bfe29bd5b3c0405faa960fa7d2149a48bb
Cookie: PHPSESSID=78d0729b46f52e88b6befca4ce5ddb5b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 05:07:51 GMT
Server: Apache
Last-Modified: Thu, 27 Oct 2022 03:44:18 GMT
Accept-Ranges: bytes
Content-Length: 793
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
7ffe634a0bc12fae35af5152b41f0572
1aaf8f0e7ead4ba1fe6521136457cf88474f1bf6
20a09ccde0f7928cbc7a071200c9f75de5828de578fa930aba3b0734b5bc4c98

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2992
Cache-Control: max-age=167464
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 05:07:51 GMT
Etag: "63b0f49f-117"
Expires: Tue, 03 Jan 2023 03:38:55 GMT
Last-Modified: Sun, 01 Jan 2023 02:49:03 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 279

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
81c87a3f088331ce54f7b42d3815e4d7
93f7ac5fa21edef94d130988ab2833a36a8db38d
e493ad44a81a5773112904c8141b028cac7298d3cf1b44368291d9a0a3b800d7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 05:07:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2156f5045eb474b5c02d0c6f64f02c4e
5cc884658ca6b9b357478137cb431f694e773bd8
3e7eb661f6a47c44f20915b8384799874b0f0a69fcedd1d90caaed93f8fce4bb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3E7EB661F6A47C44F20915B8384799874B0F0A69FCEDD1D90CAAED93F8FCE4BB"
Last-Modified: Fri, 30 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20313
Expires: Sun, 01 Jan 2023 10:46:24 GMT
Date: Sun, 01 Jan 2023 05:07:51 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6390ab-134c-4c14-ae9e-9591400607a3.jpeg

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6390ab-134c-4c14-ae9e-9591400607a3.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10426 bytes)
Hash
2a92938ba6a58bd49a9938a24e404cba
2adeb5279f5a130a4ddc05199bc7b0b197a3cabc
1779831cec3a72aa82e2dab789c043da6a7fa432ff75a644733b0ee5f81b965b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6390ab-134c-4c14-ae9e-9591400607a3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10426
x-amzn-requestid: b6ad4eac-168a-477b-9883-f77fffc6468f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d5ZfRG7XIAMF7zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ad3c61-7766d0293ca12d6e2436ac66;Sampled=0
x-amzn-remapped-date: Thu, 29 Dec 2022 07:06:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 64b2KYy3x32_Z7bLzCIDOVtTsC2OsBCcF4kmfb_2ZhulTcspF5c0Uw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 31 Dec 2022 13:01:37 GMT
age: 57974
etag: "2adeb5279f5a130a4ddc05199bc7b0b197a3cabc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2156f5045eb474b5c02d0c6f64f02c4e
5cc884658ca6b9b357478137cb431f694e773bd8
3e7eb661f6a47c44f20915b8384799874b0f0a69fcedd1d90caaed93f8fce4bb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3E7EB661F6A47C44F20915B8384799874B0F0A69FCEDD1D90CAAED93F8FCE4BB"
Last-Modified: Fri, 30 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20313
Expires: Sun, 01 Jan 2023 10:46:24 GMT
Date: Sun, 01 Jan 2023 05:07:51 GMT
Connection: keep-alive

34.120.237.76

200 OK

8.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F152ec449-c711-45ae-a96e-71f3c1008906.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.1 kB (8092 bytes)
Hash
08f853c64a91a15b9d88a9d43a43d771
113d9abe38b5d50b17cf1c9b61ff222410c2dd61
b638b66e3a291dd7f0661b1cfb02e5afffb0c3175be6f8f5b6900216b2476df4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F152ec449-c711-45ae-a96e-71f3c1008906.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8092
x-amzn-requestid: 848739e7-3597-44f6-ab20-4aac26ed574a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d_LMzH06oAMF-WA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63af8beb-5bc4d32678a8f2db167687f5;Sampled=0
x-amzn-remapped-date: Sat, 31 Dec 2022 01:10:03 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: LEXneOKhvAl8FD-lAoRmbYlZJWWr_-z-EwMlpBIHOqSo_Ep2X9vPFg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 31 Dec 2022 20:42:33 GMT
age: 30318
etag: "113d9abe38b5d50b17cf1c9b61ff222410c2dd61"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2fb1a6c7-1739-4b4c-ae46-a2d718fb6c34.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.7 kB (5684 bytes)
Hash
e628ac1e25757ac0177f4a392d6b7ddb
d457e65190f24dce30af852e07b2d55f1fe5d808
b51790825ceb10ba7d5ec69081c098b7c82e72e4128dc1c23fa4f45495fbfa65

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2fb1a6c7-1739-4b4c-ae46-a2d718fb6c34.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5684
x-amzn-requestid: a8295357-6fcf-436d-8884-cbc529f3cba4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dxSEVGMcIAMFdXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a9fd4e-3067d9957e1e512174ab34bc;Sampled=0
x-amzn-remapped-date: Mon, 26 Dec 2022 20:00:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MOUJhv9OaRIYlKdODekkABnMmzfZyNEbH4gjTZ5msth1v8qx_KOTQA==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 31 Dec 2022 21:59:25 GMT
age: 25706
etag: "d457e65190f24dce30af852e07b2d55f1fe5d808"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
7ffe634a0bc12fae35af5152b41f0572
1aaf8f0e7ead4ba1fe6521136457cf88474f1bf6
20a09ccde0f7928cbc7a071200c9f75de5828de578fa930aba3b0734b5bc4c98

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2992
Cache-Control: max-age=167464
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 05:07:51 GMT
Etag: "63b0f49f-117"
Expires: Tue, 03 Jan 2023 03:38:55 GMT
Last-Modified: Sun, 01 Jan 2023 02:49:03 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 279

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2156f5045eb474b5c02d0c6f64f02c4e
5cc884658ca6b9b357478137cb431f694e773bd8
3e7eb661f6a47c44f20915b8384799874b0f0a69fcedd1d90caaed93f8fce4bb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3E7EB661F6A47C44F20915B8384799874B0F0A69FCEDD1D90CAAED93F8FCE4BB"
Last-Modified: Fri, 30 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20313
Expires: Sun, 01 Jan 2023 10:46:24 GMT
Date: Sun, 01 Jan 2023 05:07:51 GMT
Connection: keep-alive

34.120.237.76

200 OK

4.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21ed4431-081e-4d12-961f-aa4e653e835e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.6 kB (4574 bytes)
Hash
542c50a9c4ddc940c0b46f84973f26a6
adec3ce0b331c1ae542b07e3105ccbb7e517699a
2e6efc9930b8b281f4b4282a3f1f9815708b245760319bd711844c66f1b1cfb3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21ed4431-081e-4d12-961f-aa4e653e835e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4574
x-amzn-requestid: 5656411c-79b6-424e-ba7c-9a546cb6f99b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d42MyGYVIAMFXig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ad03eb-62d0a04f49947a6e42e6083d;Sampled=0
x-amzn-remapped-date: Thu, 29 Dec 2022 03:05:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DFqVV_GbqyTSmrx57w2P_yiSWPvSCcFLQZwwBJbcbmvLautLFMR0CQ==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 01 Jan 2023 04:13:33 GMT
age: 3258
etag: "adec3ce0b331c1ae542b07e3105ccbb7e517699a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2156f5045eb474b5c02d0c6f64f02c4e
5cc884658ca6b9b357478137cb431f694e773bd8
3e7eb661f6a47c44f20915b8384799874b0f0a69fcedd1d90caaed93f8fce4bb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3E7EB661F6A47C44F20915B8384799874B0F0A69FCEDD1D90CAAED93F8FCE4BB"
Last-Modified: Fri, 30 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20313
Expires: Sun, 01 Jan 2023 10:46:24 GMT
Date: Sun, 01 Jan 2023 05:07:51 GMT
Connection: keep-alive

34.120.237.76

200 OK

7.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4c2b8d6-2447-4998-8f5b-fa39969098bb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.7 kB (7733 bytes)
Hash
42424c8f9d7f7500d166c13e31044f50
7c1ca7a7bfc5515f5cc384d9e802dcc84fa7cc74
3f513c3442c9f2ffe744a65e542d93c0c2e7a2d0d8632bb585bfa95f0f752620

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4c2b8d6-2447-4998-8f5b-fa39969098bb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7733
x-amzn-requestid: c9fcea69-d368-49e0-af97-5973bcc300e1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d8mPFFZQIAMFhIg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ae83f9-4fc855e0180bd7334e14bc29;Sampled=0
x-amzn-remapped-date: Fri, 30 Dec 2022 06:23:54 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KK70ykzMCeq12Ds7zKsUnlzsBR9qeUgM8pBbnbljyMM_4gbN4MqJfw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 31 Dec 2022 21:59:25 GMT
age: 25706
etag: "7c1ca7a7bfc5515f5cc384d9e802dcc84fa7cc74"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6443a10-1e35-4576-9471-56fc40767f0c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (13981 bytes)
Hash
23035a1b5389046dbc9821cd92244215
2deec757f1833f6ae0956a5e0876bc31029e8722
564db87897cfa6df3920203687b33c0315a58e804b22fed2e1dbaddb3c3832b4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6443a10-1e35-4576-9471-56fc40767f0c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13981
x-amzn-requestid: d73b4be8-3a1b-4ed8-9487-43d540ff93e0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d4u5fEhiIAMFkgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63acf83c-38067c0820fd6f7e4771345b;Sampled=0
x-amzn-remapped-date: Thu, 29 Dec 2022 02:15:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Ie_MDBnENQW3b3yeuQbJc8MDqHt5mYLo2Hv_h4bAYtsrlQ1CJOBzAA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Sat, 31 Dec 2022 21:57:04 GMT
age: 25847
etag: "2deec757f1833f6ae0956a5e0876bc31029e8722"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ecab-eg.com/gope/vantagewest/vantagewest/Login/css/isotope.min.css

162.250.124.251

200 OK

17 kB

URL HTTP/1.1
ecab-eg.com/gope/vantagewest/vantagewest/Login/css/isotope.min.css
IP
162.250.124.251:0
ASN
#19318 IS-AS-1

File type
ASCII text, with very long lines (5613)
Size
17 kB (16837 bytes)
Hash
ef913b2ca9a20d8316c8b1a1d97ebccd
57c267ec22cdcadec1ff66d3d5e02e6161c5ab5a
24704e20b43430747a6bdba4ffe89a0e7767fdb254a7b8029cf94bf516692b1d

HTTP Headers

GET /gope/vantagewest/vantagewest/Login/css/isotope.min.css HTTP/1.1
Host: ecab-eg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecab-eg.com/gope/vantagewest/vantagewest/Login/?token=e8b51e55e3ed9ebb1c1605c0f8bb0e18a7d49b812c2e87cfc4bc66e7666ba40f87fc227f905e5f4d2907d456e967d1bfe29bd5b3c0405faa960fa7d2149a48bb
Cookie: PHPSESSID=78d0729b46f52e88b6befca4ce5ddb5b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 05:07:51 GMT
Server: Apache
Last-Modified: Thu, 27 Oct 2022 03:50:34 GMT
Accept-Ranges: bytes
Content-Length: 16837
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css

ecab-eg.com/gope/vantagewest/vantagewest/Login/css/iris.shim.desktop.min.css

162.250.124.251

200 OK

673 B

URL HTTP/1.1
ecab-eg.com/gope/vantagewest/vantagewest/Login/css/iris.shim.desktop.min.css
IP
162.250.124.251:0
ASN
#19318 IS-AS-1

File type
ASCII text, with very long lines (618)
Size
673 B (673 bytes)
Hash
59bf2a4ff43b075967d30bf79df13983
19f297362e717cd28ba498e8d3fa32b126fe7e3f
59f12ecd0c381fee3367ffac176a581a966727684a5ce94390b4390b2fc06ca4

HTTP Headers

GET /gope/vantagewest/vantagewest/Login/css/iris.shim.desktop.min.css HTTP/1.1
Host: ecab-eg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecab-eg.com/gope/vantagewest/vantagewest/Login/?token=e8b51e55e3ed9ebb1c1605c0f8bb0e18a7d49b812c2e87cfc4bc66e7666ba40f87fc227f905e5f4d2907d456e967d1bfe29bd5b3c0405faa960fa7d2149a48bb
Cookie: PHPSESSID=78d0729b46f52e88b6befca4ce5ddb5b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 05:07:51 GMT
Server: Apache
Last-Modified: Thu, 27 Oct 2022 03:45:40 GMT
Accept-Ranges: bytes
Content-Length: 673
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

ecab-eg.com/gope/vantagewest/vantagewest/Login/css/iris-components.shim.desktop.min.css

162.250.124.251

200 OK

1.4 kB

URL HTTP/1.1
ecab-eg.com/gope/vantagewest/vantagewest/Login/css/iris-components.shim.desktop.min.css
IP
162.250.124.251:0
ASN
#19318 IS-AS-1

File type
ASCII text, with very long lines (1133)
Size
1.4 kB (1360 bytes)
Hash
739e497eff833e5cc91463d771b2d768
25d9515d0771be8d8397396c899a71d6e7c69ffb
ea743d42472a0ceaf4f3ecd02fc0eddeb9c1bc63f5518608958d3a1df51dad75

HTTP Headers

GET /gope/vantagewest/vantagewest/Login/css/iris-components.shim.desktop.min.css HTTP/1.1
Host: ecab-eg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecab-eg.com/gope/vantagewest/vantagewest/Login/?token=e8b51e55e3ed9ebb1c1605c0f8bb0e18a7d49b812c2e87cfc4bc66e7666ba40f87fc227f905e5f4d2907d456e967d1bfe29bd5b3c0405faa960fa7d2149a48bb
Cookie: PHPSESSID=78d0729b46f52e88b6befca4ce5ddb5b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 05:07:51 GMT
Server: Apache
Last-Modified: Thu, 27 Oct 2022 03:47:18 GMT
Accept-Ranges: bytes
Content-Length: 1360
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

ocsp.entrust.net/

104.110.10.32

200 OK

1.6 kB

URL HTTP/1.1
ocsp.entrust.net/
IP
104.110.10.32:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1588 bytes)
Hash
d6e6d67c34e8112a31cf703ea94ad347
baf298607f540acbf21dd8d45a56b0901f58daf7
9e2a9b0e28dfb71de92d03a7f4ca36b0a17b5dce1836a0b44b2cd14e3f9794b7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "9E2A9B0E28DFB71DE92D03A7F4CA36B0A17B5DCE1836A0B44B2CD14E3F9794B7"
Last-Modified: Sat, 31 Dec 2022 19:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3592
Expires: Sun, 01 Jan 2023 06:07:43 GMT
Date: Sun, 01 Jan 2023 05:07:51 GMT
Connection: keep-alive

ecab-eg.com/gope/vantagewest/vantagewest/Login/css/theme.desktop.min.css

162.250.124.251

200 OK

46 kB

URL HTTP/1.1
ecab-eg.com/gope/vantagewest/vantagewest/Login/css/theme.desktop.min.css
IP
162.250.124.251:0
ASN
#19318 IS-AS-1

File type
ASCII text, with very long lines (46048)
Size
46 kB (46078 bytes)
Hash
18e1e2436f1ccb1364661367e6dee6e8
78bfb2fe0c823d768b50f32284acb216b12eac5a
0339d7231b598af07a53bcfaabcd6419b3688f9d73f2bdf3945f8247461ae03c

HTTP Headers

GET /gope/vantagewest/vantagewest/Login/css/theme.desktop.min.css HTTP/1.1
Host: ecab-eg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecab-eg.com/gope/vantagewest/vantagewest/Login/?token=e8b51e55e3ed9ebb1c1605c0f8bb0e18a7d49b812c2e87cfc4bc66e7666ba40f87fc227f905e5f4d2907d456e967d1bfe29bd5b3c0405faa960fa7d2149a48bb
Cookie: PHPSESSID=78d0729b46f52e88b6befca4ce5ddb5b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 05:07:51 GMT
Server: Apache
Last-Modified: Thu, 27 Oct 2022 04:27:34 GMT
Accept-Ranges: bytes
Content-Length: 46078
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css

ecab-eg.com/gope/vantagewest/vantagewest/Login/css/iris-foundation.min.css

162.250.124.251

200 OK

51 kB

URL HTTP/1.1
ecab-eg.com/gope/vantagewest/vantagewest/Login/css/iris-foundation.min.css
IP
162.250.124.251:0
ASN
#19318 IS-AS-1

File type
ASCII text, with very long lines (50964)
Size
51 kB (51310 bytes)
Hash
0160c354e11f9e1f2ffcd720f880dc2e
7c3b5681a9483a0f37110476e04375e7e88d8fcc
037e5f8a4d2ef765d97f6c14e087cab4f8f27a1ac2a6a7584793b1a76a08fb8f

HTTP Headers

GET /gope/vantagewest/vantagewest/Login/css/iris-foundation.min.css HTTP/1.1
Host: ecab-eg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecab-eg.com/gope/vantagewest/vantagewest/Login/?token=e8b51e55e3ed9ebb1c1605c0f8bb0e18a7d49b812c2e87cfc4bc66e7666ba40f87fc227f905e5f4d2907d456e967d1bfe29bd5b3c0405faa960fa7d2149a48bb
Cookie: PHPSESSID=78d0729b46f52e88b6befca4ce5ddb5b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 05:07:51 GMT
Server: Apache
Last-Modified: Thu, 27 Oct 2022 03:47:50 GMT
Accept-Ranges: bytes
Content-Length: 51310
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

ecab-eg.com/gope/vantagewest/vantagewest/Login/css/base.min.css

162.250.124.251

200 OK

202 kB

URL HTTP/1.1
ecab-eg.com/gope/vantagewest/vantagewest/Login/css/base.min.css
IP
162.250.124.251:0
ASN
#19318 IS-AS-1

File type
Unicode text, UTF-8 text, with very long lines (30754)
Size
202 kB (201733 bytes)
Hash
1f3eab39377aeea1fdbd646c58ad39c4
0144bd6f7b6112e0fa7ea83ae753677f3db77c55
8d99483ea8e4dbb1b3fc7e3c6224a10cbefd43074d68bce34c25defef4cfe9ae

HTTP Headers

GET /gope/vantagewest/vantagewest/Login/css/base.min.css HTTP/1.1
Host: ecab-eg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecab-eg.com/gope/vantagewest/vantagewest/Login/?token=e8b51e55e3ed9ebb1c1605c0f8bb0e18a7d49b812c2e87cfc4bc66e7666ba40f87fc227f905e5f4d2907d456e967d1bfe29bd5b3c0405faa960fa7d2149a48bb
Cookie: PHPSESSID=78d0729b46f52e88b6befca4ce5ddb5b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 05:07:51 GMT
Server: Apache
Last-Modified: Thu, 27 Oct 2022 03:54:46 GMT
Accept-Ranges: bytes
Content-Length: 201733
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

ecab-eg.com/gope/vantagewest/vantagewest/Login/css/fi.desktop.min.css

162.250.124.251

200 OK

52 kB

URL HTTP/1.1
ecab-eg.com/gope/vantagewest/vantagewest/Login/css/fi.desktop.min.css
IP
162.250.124.251:0
ASN
#19318 IS-AS-1

File type
ASCII text, with very long lines (51425)
Size
52 kB (51473 bytes)
Hash
47a91d41c5bc7775cd85f891ea04363f
604bf1521a94b6b92e88325562b8396ed686951b
37ff3851b7784b3ce9d9e1ae770d95905f0811334f031acc4a246a04ecc7beea

HTTP Headers

GET /gope/vantagewest/vantagewest/Login/css/fi.desktop.min.css HTTP/1.1
Host: ecab-eg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecab-eg.com/gope/vantagewest/vantagewest/Login/?token=e8b51e55e3ed9ebb1c1605c0f8bb0e18a7d49b812c2e87cfc4bc66e7666ba40f87fc227f905e5f4d2907d456e967d1bfe29bd5b3c0405faa960fa7d2149a48bb
Cookie: PHPSESSID=78d0729b46f52e88b6befca4ce5ddb5b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 05:07:51 GMT
Server: Apache
Last-Modified: Thu, 27 Oct 2022 03:49:34 GMT
Accept-Ranges: bytes
Content-Length: 51473
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

ecab-eg.com/gope/vantagewest/vantagewest/Login/css/iris-components.min.css

162.250.124.251

200 OK

363 kB

URL HTTP/1.1
ecab-eg.com/gope/vantagewest/vantagewest/Login/css/iris-components.min.css
IP
162.250.124.251:0
ASN
#19318 IS-AS-1

File type
ASCII text, with very long lines (65310)
Size
363 kB (362858 bytes)
Hash
a31ff603c6758ba4e80c921ab06ae753
250d62937a2e4a112ff249552cba99336d4d8337
1f49057b23b7c21189f6cee5dc4ce84ee8654b80e0586afdeba38902ffe3dae3

HTTP Headers

GET /gope/vantagewest/vantagewest/Login/css/iris-components.min.css HTTP/1.1
Host: ecab-eg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecab-eg.com/gope/vantagewest/vantagewest/Login/?token=e8b51e55e3ed9ebb1c1605c0f8bb0e18a7d49b812c2e87cfc4bc66e7666ba40f87fc227f905e5f4d2907d456e967d1bfe29bd5b3c0405faa960fa7d2149a48bb
Cookie: PHPSESSID=78d0729b46f52e88b6befca4ce5ddb5b
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 05:07:51 GMT
Server: Apache
Last-Modified: Thu, 27 Oct 2022 03:48:28 GMT
Accept-Ranges: bytes
Content-Length: 362858
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

assets.orb.alkamitech.com/production/icons/VantageWestCU/font/font-icons.css

143.204.55.56

200 OK

9.7 kB

URL HTTP/2
assets.orb.alkamitech.com/production/icons/VantageWestCU/font/font-icons.css
IP
143.204.55.56:0
ASN
#16509 AMAZON-02

File type
ASCII text, with CRLF line terminators
Size
9.7 kB (9679 bytes)
Hash
4bc97b1cd52d4cbe9b1e6f42860c4b72
052d3b02f38ffdd50792479635446ebf739bc546
d98020623c710b1ed252af2197b23491e74643bd9ca597774dfdeed7e5a6ec66

HTTP Headers

GET /production/icons/VantageWestCU/font/font-icons.css HTTP/1.1
Host: assets.orb.alkamitech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecab-eg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
content-length: 9679
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Nov 2022 20:21:05 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: wVOJCTi7vdiH8CVvM2wsHvT.8UpvuiKb
accept-ranges: bytes
server: AmazonS3
date: Sun, 01 Jan 2023 05:07:53 GMT
cache-control: max-age=630720000, no-cache, no-transform, public
expires: Wed, 29 Oct 2042 20:19:58 GMT
etag: "4bc97b1cd52d4cbe9b1e6f42860c4b72"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vOGljA1E_vGRKpOeYvRSnkpB14xoDFBwwmtLM6gdc5ZvhnwdaTOMXQ==
X-Firefox-Spdy: h2

ecab-eg.com/gope/vantagewest/vantagewest/Login/css/google-play-badge.svg

162.250.124.251

200 OK

9.2 kB

URL HTTP/1.1
ecab-eg.com/gope/vantagewest/vantagewest/Login/css/google-play-badge.svg
IP
162.250.124.251:0
ASN
#19318 IS-AS-1

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Size
9.2 kB (9219 bytes)
Hash
e3ea015c98c4f1809ad62d0ef9c14a88
dd56bbd15a2e8e314a31e04ac83312a29501e506
698d9dc0603bf500f26d935fa1386f1f79c33187413daf383dbd83799aa23462

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /gope/vantagewest/vantagewest/Login/css/google-play-badge.svg HTTP/1.1
Host: ecab-eg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecab-eg.com/gope/vantagewest/vantagewest/Login/?token=e8b51e55e3ed9ebb1c1605c0f8bb0e18a7d49b812c2e87cfc4bc66e7666ba40f87fc227f905e5f4d2907d456e967d1bfe29bd5b3c0405faa960fa7d2149a48bb
Cookie: PHPSESSID=78d0729b46f52e88b6befca4ce5ddb5b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 05:07:52 GMT
Server: Apache
Last-Modified: Thu, 27 Oct 2022 03:51:24 GMT
Accept-Ranges: bytes
Content-Length: 9219
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml

ecab-eg.com/gope/vantagewest/vantagewest/Login/css/Logo.png

162.250.124.251

200 OK

5.5 kB

URL HTTP/1.1
ecab-eg.com/gope/vantagewest/vantagewest/Login/css/Logo.png
IP
162.250.124.251:0
ASN
#19318 IS-AS-1

File type
PNG image data, 225 x 49, 8-bit/color RGBA, non-interlaced\012- data
Size
5.5 kB (5489 bytes)
Hash
9313c8db42d145d1be2d363b4538635c
904169506c8aad482e3ec4ea24736f10cb7a7d9f
f3283796507524ce642d721545d753ad72d4278d14f6c200debeaac4ffb49399

HTTP Headers

GET /gope/vantagewest/vantagewest/Login/css/Logo.png HTTP/1.1
Host: ecab-eg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecab-eg.com/gope/vantagewest/vantagewest/Login/?token=e8b51e55e3ed9ebb1c1605c0f8bb0e18a7d49b812c2e87cfc4bc66e7666ba40f87fc227f905e5f4d2907d456e967d1bfe29bd5b3c0405faa960fa7d2149a48bb
Cookie: PHPSESSID=78d0729b46f52e88b6befca4ce5ddb5b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 05:07:52 GMT
Server: Apache
Last-Modified: Thu, 27 Oct 2022 03:52:20 GMT
Accept-Ranges: bytes
Content-Length: 5489
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

ecab-eg.com/gope/vantagewest/vantagewest/Login/css/app-store-badge.svg

162.250.124.251

200 OK

11 kB

URL HTTP/1.1
ecab-eg.com/gope/vantagewest/vantagewest/Login/css/app-store-badge.svg
IP
162.250.124.251:0
ASN
#19318 IS-AS-1

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1356)
Size
11 kB (10804 bytes)
Hash
2928664fe1fc6aca88583a6f606d60ba
2f2fe1cbd0563b3ce3ea79fcdf1549ed244b3993
a26fc5b38380272c92e9019a2eb8b45542a66814b3e2b203772db8904b9fb99f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /gope/vantagewest/vantagewest/Login/css/app-store-badge.svg HTTP/1.1
Host: ecab-eg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecab-eg.com/gope/vantagewest/vantagewest/Login/?token=e8b51e55e3ed9ebb1c1605c0f8bb0e18a7d49b812c2e87cfc4bc66e7666ba40f87fc227f905e5f4d2907d456e967d1bfe29bd5b3c0405faa960fa7d2149a48bb
Cookie: PHPSESSID=78d0729b46f52e88b6befca4ce5ddb5b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 05:07:52 GMT
Server: Apache
Last-Modified: Thu, 27 Oct 2022 03:51:18 GMT
Accept-Ranges: bytes
Content-Length: 10804
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b8166fe0679d6ccf83bc7f27cb76f6a5
7c76f9e3b7cd828fd0bd9ddb3603e0f1c8fc6f23
d0799689c53c389718f8818863c88447440e69b8837264dbe7a24e62a746e1e2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 05:07:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ecab-eg.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Dec 2022 19:33:54 GMT
expires: Thu, 28 Dec 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 293638
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:300,400,700

142.250.74.106

200 OK

1.1 kB

URL HTTP/2
fonts.googleapis.com/css?family=Roboto:300,400,700
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
data
Size
1.1 kB (1115 bytes)
Hash
a75f7124d62324455218b93b09cbbe93
46e301a39d6e4ca011efe3e17874a1898627cdfa
ba4ddd48b72d2b75178c8f8c395ad1a928c8a75b97e0c1d09dbe029e6cfb23be

HTTP Headers

GET /css?family=Roboto:300,400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecab-eg.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 01 Jan 2023 05:07:51 GMT
date: Sun, 01 Jan 2023 05:07:51 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ecab-eg.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Dec 2022 13:33:13 GMT
expires: Sat, 30 Dec 2023 13:33:13 GMT
cache-control: public, max-age=31536000
age: 142479
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b8166fe0679d6ccf83bc7f27cb76f6a5
7c76f9e3b7cd828fd0bd9ddb3603e0f1c8fc6f23
d0799689c53c389718f8818863c88447440e69b8837264dbe7a24e62a746e1e2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 01 Jan 2023 05:07:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ecab-eg.com/gope/vantagewest/vantagewest/Login/css/favicon.ico

162.250.124.251

200 OK

7.4 kB

URL HTTP/1.1
ecab-eg.com/gope/vantagewest/vantagewest/Login/css/favicon.ico
IP
162.250.124.251:0
ASN
#19318 IS-AS-1

File type
MS Windows icon resource - 3 icons, 48x48, 8 bits/pixel, 32x32, 8 bits/pixel\012- data
Size
7.4 kB (7406 bytes)
Hash
bbe61ff4cc4a569ca91eb8ef7911a114
e641fe45e4b01fd145f6076265bd113af3b9a227
0de781cfe56744cf4e006d63225e623c2383e5486a417aa81e87c48f2528a06a

HTTP Headers

GET /gope/vantagewest/vantagewest/Login/css/favicon.ico HTTP/1.1
Host: ecab-eg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecab-eg.com/gope/vantagewest/vantagewest/Login/?token=e8b51e55e3ed9ebb1c1605c0f8bb0e18a7d49b812c2e87cfc4bc66e7666ba40f87fc227f905e5f4d2907d456e967d1bfe29bd5b3c0405faa960fa7d2149a48bb
Cookie: PHPSESSID=78d0729b46f52e88b6befca4ce5ddb5b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 01 Jan 2023 05:07:52 GMT
Server: Apache
Last-Modified: Thu, 27 Oct 2022 03:43:38 GMT
Accept-Ranges: bytes
Content-Length: 7406
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/x-icon

assets.orb.alkamitech.com/production/icons/VantageWestCU/font/Alkami.woff2

143.204.55.56

200 OK

47 kB

URL HTTP/2
assets.orb.alkamitech.com/production/icons/VantageWestCU/font/Alkami.woff2
IP
143.204.55.56:0
ASN
#16509 AMAZON-02

File type
Web Open Font Format (Version 2), TrueType, length 46756, version 1.0\012- data
Size
47 kB (46789 bytes)
Hash
e47f7758da38b0d2b71c1c42fde73fdc
90fb34a605f9f996fbd7fb770a5fbede4223af0e
0b3915442a67defd04b06c58558b1fc30b1d6803bc3250234e2ca032e808f585

HTTP Headers

GET /production/icons/VantageWestCU/font/Alkami.woff2 HTTP/1.1
Host: assets.orb.alkamitech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ecab-eg.com
Connection: keep-alive
Referer: https://assets.orb.alkamitech.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: font/woff2
content-length: 46789
date: Sun, 01 Jan 2023 05:07:53 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 03 Nov 2022 20:21:05 GMT
etag: "e47f7758da38b0d2b71c1c42fde73fdc"
x-amz-server-side-encryption: AES256
cache-control: max-age=630720000, no-cache, no-transform, public
content-encoding: gzip
expires: Wed, 29 Oct 2042 20:19:58 GMT
x-amz-version-id: Q1kHkaj9kHh0Oxhbc0duAOJe_aI3Zqbm
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Miss from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zY2NvWHztFrdNLvdRrVyJkTQP12FwR_y7TK8RU8cObdIcDIqVibWVA==
X-Firefox-Spdy: h2

stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js

104.18.11.207

200 OK

0 B

URL HTTP/2
stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js
IP
104.18.11.207:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /bootstrap/4.1.3/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ecab-eg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 01 Jan 2023 05:07:51 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 11/15/2021 23:30:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: a35b0179a28ed953258d0fb41376a09c
cdn-cache: HIT
cf-cache-status: HIT
age: 15593519
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7828bbd6588fb4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (4)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (51)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size