r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5fe582397f3003b225cb9058e02c2190
68174a54a8f6c4de9247ccea2dcae3c9b76bdb9f
238a2ef5b61d56353d0a5e97ec3092b8f2792cde7cecf40e1a858f8c129d3a9d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "238A2EF5B61D56353D0A5E97EC3092B8F2792CDE7CECF40E1A858F8C129D3A9D"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14708
Expires: Wed, 25 Jan 2023 11:47:13 GMT
Date: Wed, 25 Jan 2023 07:42:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 04512fea22644dc0d22c3f3a665f6645
0e213646abfc6d9560ba562362fd9e9115be8354
124d9534f75506b8e8c7535ee7295ac4e6cf5a8249a0edac6940839e56043181
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "124D9534F75506B8E8C7535EE7295AC4E6CF5A8249A0EDAC6940839E56043181"
Last-Modified: Mon, 23 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6581
Expires: Wed, 25 Jan 2023 09:31:46 GMT
Date: Wed, 25 Jan 2023 07:42:05 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 25 Jan 2023 06:42:47 GMT
content-type: application/json
age: 3558
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6cd4f1da1215c7473500807c185f2449
b14db0c67cf1f5faf85648ed8f94baf2dd03808b
9750518efd869da5ff74ba65a196445bd4340c909157cc1a420f62c1d07224a0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9750518EFD869DA5FF74BA65A196445BD4340C909157CC1A420F62C1D07224A0"
Last-Modified: Mon, 23 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3041
Expires: Wed, 25 Jan 2023 08:32:46 GMT
Date: Wed, 25 Jan 2023 07:42:05 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: EBmnRIz0dQnMOPS3aJxEmUC5c7XvWcQZpeVwfAZcve8RxTgRbokkMY8VEcIGXtvS3WJCTUtvt3w=
x-amz-request-id: 40612G9YSM2T7AMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 25 Jan 2023 07:19:35 GMT
age: 1350
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a7981188e5ae86395059217b22953c2a
f8628fc8274bdb9a52defc3c5a0a8fe74dce1bd1
78c8f830ffad0bc95357f94a5b2039473c6c04895f83a9d9fbd28e21543952b7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "78C8F830FFAD0BC95357F94A5B2039473C6C04895F83A9D9FBD28E21543952B7"
Last-Modified: Mon, 23 Jan 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21588
Expires: Wed, 25 Jan 2023 13:41:53 GMT
Date: Wed, 25 Jan 2023 07:42:05 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 07:42:05 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
client.postale.justns.ru/se/e/k/p/files/login/login.php
91.229.90.150200 OK 2.5 kB URL HTTP/2 client.postale.justns.ru/se/e/k/p/files/login/login.php
IP 91.229.90.150:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (726), with CRLF line terminators
Hash 2005db03c02b7354c68f23a1274be8cf
d28d0d3e0ad0350f79e40f4bf1a5657e3dd4c913
100d8759222516d3193e0ea81d2596b450c94051f2b19ea20b0398bb416435ce
Analyzer Verdict Alert openphish La Banque postale
fortinet Phishing
GET /se/e/k/p/files/login/login.php HTTP/1.1
Host: client.postale.justns.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
set-cookie: PHPSESSID=7917a36b1f79e8d52d78cbb94c22e7f9; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
content-length: 2493
content-encoding: br
vary: Accept-Encoding,User-Agent
date: Wed, 25 Jan 2023 07:42:05 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
client.postale.justns.ru/se/e/k/p/files/assets/css/bootstrap.min.css
91.229.90.150200 OK 36 kB URL HTTP/2 client.postale.justns.ru/se/e/k/p/files/assets/css/bootstrap.min.css
IP 91.229.90.150:0
File type ASCII text, with very long lines (65324)
Hash e215f5dd94ca1b815069fa370a16c173
483f215d43420fe531d962026ac6339425e40273
0bd81e501cf8bc7fd0e6d2e6b6e1c2d4876ccbb4e3800a0d3aad310003d7451c
GET /se/e/k/p/files/assets/css/bootstrap.min.css HTTP/1.1
Host: client.postale.justns.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://client.postale.justns.ru/se/e/k/p/files/login/login.php
Cookie: PHPSESSID=7917a36b1f79e8d52d78cbb94c22e7f9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 01 Feb 2023 07:42:05 GMT
content-type: text/css
last-modified: Tue, 24 Jan 2023 13:15:05 GMT
etag: "2606e-63cfd9d9-d3036e06f9ae0dab;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 36523
date: Wed, 25 Jan 2023 07:42:05 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
client.postale.justns.ru/se/e/k/p/files/assets/css/helpers.css
91.229.90.150200 OK 6.6 kB URL HTTP/2 client.postale.justns.ru/se/e/k/p/files/assets/css/helpers.css
IP 91.229.90.150:0
File type ASCII text, with very long lines (41750), with CRLF line terminators
Hash 084e142955b14934e587139a65cb270d
07eef0444066e8f5d52c0ab0c66d35d395efe4fd
5120ca45e44f5b267ea4b2a87938d7556dcb0c6c3aa2e5d315f8dc862fd478f3
GET /se/e/k/p/files/assets/css/helpers.css HTTP/1.1
Host: client.postale.justns.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://client.postale.justns.ru/se/e/k/p/files/login/login.php
Cookie: PHPSESSID=7917a36b1f79e8d52d78cbb94c22e7f9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 01 Feb 2023 07:42:05 GMT
content-type: text/css
last-modified: Tue, 24 Jan 2023 13:15:05 GMT
etag: "a318-63cfd9d9-b72a9fdcf236f770;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6647
date: Wed, 25 Jan 2023 07:42:05 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
client.postale.justns.ru/se/e/k/p/files/assets/css/fonts.css
91.229.90.150200 OK 351 B URL HTTP/2 client.postale.justns.ru/se/e/k/p/files/assets/css/fonts.css
IP 91.229.90.150:0
File type ASCII text, with CRLF line terminators
Hash dcd4a0c9d27353fab9fdbf2de2385a78
69dbce40cf6c639ffdec519beaccf9b25da8df60
9cd5cc781e5ee29634d6d11dbfd5d055fc90d2bb093902d03430f56017cb0717
GET /se/e/k/p/files/assets/css/fonts.css HTTP/1.1
Host: client.postale.justns.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://client.postale.justns.ru/se/e/k/p/files/login/login.php
Cookie: PHPSESSID=7917a36b1f79e8d52d78cbb94c22e7f9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 01 Feb 2023 07:42:05 GMT
content-type: text/css
last-modified: Tue, 24 Jan 2023 13:15:05 GMT
etag: "6d7-63cfd9d9-12cdd1ef8e40ae;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 351
date: Wed, 25 Jan 2023 07:42:05 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
client.postale.justns.ru/se/e/k/p/files/assets/css/main.css
91.229.90.150200 OK 1.9 kB URL HTTP/2 client.postale.justns.ru/se/e/k/p/files/assets/css/main.css
IP 91.229.90.150:0
File type ASCII text, with very long lines (6949), with CRLF line terminators
Hash 2e9ee7919ff4c48a6abacdb16afa442d
9dcbbf9868527d34afc21b8ae592aaff4ff7f226
915562075e1a599f050340d823760c483b860b845dc3e81d91024539d45f9754
GET /se/e/k/p/files/assets/css/main.css HTTP/1.1
Host: client.postale.justns.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://client.postale.justns.ru/se/e/k/p/files/login/login.php
Cookie: PHPSESSID=7917a36b1f79e8d52d78cbb94c22e7f9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 01 Feb 2023 07:42:05 GMT
content-type: text/css
last-modified: Tue, 24 Jan 2023 13:15:05 GMT
etag: "1b27-63cfd9d9-168bcdef4d7eb587;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1944
date: Wed, 25 Jan 2023 07:42:05 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
client.postale.justns.ru/se/e/k/p/files/assets/images/top-header-left.png
91.229.90.150200 OK 7.8 kB URL HTTP/2 client.postale.justns.ru/se/e/k/p/files/assets/images/top-header-left.png
IP 91.229.90.150:0
File type PNG image data, 582 x 46, 8-bit/color RGBA, non-interlaced\012- data
Hash 05d0bcebf3df7ee2a73dee6cded8748c
3a2063b7ea5f324dfba774b9cf2671480f387fd3
004c0d90d64d9266498f39a020a0a6fe4110b94f8447daea5b1373d3e7934aad
Analyzer Verdict Alert urlquery phishing Phishing - La Banque postale
urlquery phishing Phishing - La Banque postale
GET /se/e/k/p/files/assets/images/top-header-left.png HTTP/1.1
Host: client.postale.justns.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://client.postale.justns.ru/se/e/k/p/files/login/login.php
Cookie: PHPSESSID=7917a36b1f79e8d52d78cbb94c22e7f9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 01 Feb 2023 07:42:05 GMT
content-type: image/png
last-modified: Tue, 24 Jan 2023 13:15:05 GMT
etag: "1e56-63cfd9d9-939ebba6afec4dfd;;;"
accept-ranges: bytes
content-length: 7766
date: Wed, 25 Jan 2023 07:42:05 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
client.postale.justns.ru/se/e/k/p/files/assets/images/top-header-left2.png
91.229.90.150200 OK 1.4 kB URL HTTP/2 client.postale.justns.ru/se/e/k/p/files/assets/images/top-header-left2.png
IP 91.229.90.150:0
File type PNG image data, 83 x 41, 8-bit/color RGB, non-interlaced\012- data
Hash 6c8bd7116fa86f2ae3c0180d903925ef
bf8ddfd792a103dc6d5aacd11e9d903072684c70
c96109fef3e6ae0c4dffe3fcc9026352c44a2147b9fd2c4d6e08d32cdcf2641f
Analyzer Verdict Alert urlquery phishing Phishing - La Banque postale
urlquery phishing Phishing - La Banque postale
GET /se/e/k/p/files/assets/images/top-header-left2.png HTTP/1.1
Host: client.postale.justns.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://client.postale.justns.ru/se/e/k/p/files/login/login.php
Cookie: PHPSESSID=7917a36b1f79e8d52d78cbb94c22e7f9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 01 Feb 2023 07:42:05 GMT
content-type: image/png
last-modified: Tue, 24 Jan 2023 13:15:05 GMT
etag: "57a-63cfd9d9-8d786f7e281f5a40;;;"
accept-ranges: bytes
content-length: 1402
date: Wed, 25 Jan 2023 07:42:05 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
client.postale.justns.ru/se/e/k/p/files/assets/images/top-header-right.png
91.229.90.150200 OK 3.2 kB URL HTTP/2 client.postale.justns.ru/se/e/k/p/files/assets/images/top-header-right.png
IP 91.229.90.150:0
File type PNG image data, 165 x 12, 8-bit/color RGBA, non-interlaced\012- data
Hash a807d65c0c9d3f695f10e08980bc1b51
e1fa5b9f089087d9b0c94dfc1557d6de22fb6b8e
5b6cd7b81854519965959d1549226e565a77de441a694df48579868348513d21
Analyzer Verdict Alert urlquery phishing Phishing - La Banque postale
urlquery phishing Phishing - La Banque postale
GET /se/e/k/p/files/assets/images/top-header-right.png HTTP/1.1
Host: client.postale.justns.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://client.postale.justns.ru/se/e/k/p/files/login/login.php
Cookie: PHPSESSID=7917a36b1f79e8d52d78cbb94c22e7f9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 01 Feb 2023 07:42:05 GMT
content-type: image/png
last-modified: Tue, 24 Jan 2023 13:15:05 GMT
etag: "c97-63cfd9d9-1eae700c650d35e6;;;"
accept-ranges: bytes
content-length: 3223
date: Wed, 25 Jan 2023 07:42:05 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
client.postale.justns.ru/se/e/k/p/files/assets/images/header-left.png
91.229.90.150200 OK 14 kB URL HTTP/2 client.postale.justns.ru/se/e/k/p/files/assets/images/header-left.png
IP 91.229.90.150:0
File type PNG image data, 481 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 7d9605f1532c3522c8bcbb0f29365c33
01d4c9d444aa4f64223febe842a7d1d371215dd1
c83e6ec9b5ceece6db819192b3f6f877fc64296b1ed27ec5b53cc5c4d86f8ab4
Analyzer Verdict Alert urlquery phishing Phishing - La Banque postale
urlquery phishing Phishing - La Banque postale
GET /se/e/k/p/files/assets/images/header-left.png HTTP/1.1
Host: client.postale.justns.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://client.postale.justns.ru/se/e/k/p/files/login/login.php
Cookie: PHPSESSID=7917a36b1f79e8d52d78cbb94c22e7f9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 01 Feb 2023 07:42:05 GMT
content-type: image/png
last-modified: Tue, 24 Jan 2023 13:15:05 GMT
etag: "35b9-63cfd9d9-6ab9ee3d622c03cb;;;"
accept-ranges: bytes
content-length: 13753
date: Wed, 25 Jan 2023 07:42:05 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
client.postale.justns.ru/se/e/k/p/files/assets/images/logo.png
91.229.90.150200 OK 6.4 kB URL HTTP/2 client.postale.justns.ru/se/e/k/p/files/assets/images/logo.png
IP 91.229.90.150:0
File type PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 25722a7e1f0c794ae8b299897c61a03b
8657666cb41fd8fcd3e0202bb9c3327fba3f837f
f0f02c834c71eff3c9dbc749f81ea8be9c213326a6908e7b80a7da9cba637ae3
Analyzer Verdict Alert urlquery phishing Phishing - La Banque postale
urlquery phishing Phishing - La Banque postale
GET /se/e/k/p/files/assets/images/logo.png HTTP/1.1
Host: client.postale.justns.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://client.postale.justns.ru/se/e/k/p/files/login/login.php
Cookie: PHPSESSID=7917a36b1f79e8d52d78cbb94c22e7f9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 01 Feb 2023 07:42:05 GMT
content-type: image/png
last-modified: Tue, 24 Jan 2023 13:15:05 GMT
etag: "18d8-63cfd9d9-c1c09447ed23057e;;;"
accept-ranges: bytes
content-length: 6360
date: Wed, 25 Jan 2023 07:42:05 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
client.postale.justns.ru/se/e/k/p/files/assets/images/header-right.png
91.229.90.150200 OK 4.9 kB URL HTTP/2 client.postale.justns.ru/se/e/k/p/files/assets/images/header-right.png
IP 91.229.90.150:0
File type PNG image data, 383 x 50, 8-bit/color RGBA, non-interlaced\012- Minix filesystem, V1 (big endian), 8916 zones\012- data
Hash 2375d45e3a3f1902e9e5e3509b729ab0
611da0b1ef30ce60cb99fc53e8f4e68e2c4b89a6
dc76d1d3963947047b414b58209d235ff6e36043fe66514606a260a8c3d96cb0
Analyzer Verdict Alert urlquery phishing Phishing - La Banque postale
urlquery phishing Phishing - La Banque postale
GET /se/e/k/p/files/assets/images/header-right.png HTTP/1.1
Host: client.postale.justns.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://client.postale.justns.ru/se/e/k/p/files/login/login.php
Cookie: PHPSESSID=7917a36b1f79e8d52d78cbb94c22e7f9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 01 Feb 2023 07:42:05 GMT
content-type: image/png
last-modified: Tue, 24 Jan 2023 13:15:05 GMT
etag: "1300-63cfd9d9-d28e3ac2d9711094;;;"
accept-ranges: bytes
content-length: 4864
date: Wed, 25 Jan 2023 07:42:05 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
client.postale.justns.ru/se/e/k/p/files/assets/js/jquery.min.js
91.229.90.150200 OK 40 kB URL HTTP/2 client.postale.justns.ru/se/e/k/p/files/assets/js/jquery.min.js
IP 91.229.90.150:0
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash 38b352da6e149fac8a1fc04b973e1853
fa3fb7552cbae1d0d09a7c274f57a5d03bb11d19
1c11ea3ed3b39d452ed84454b05527733bd7c6a6289b2c2c36620fc1449f10e3
Analyzer Verdict Alert fortinet Phishing
GET /se/e/k/p/files/assets/js/jquery.min.js HTTP/1.1
Host: client.postale.justns.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://client.postale.justns.ru/se/e/k/p/files/login/login.php
Cookie: PHPSESSID=7917a36b1f79e8d52d78cbb94c22e7f9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 01 Feb 2023 07:42:05 GMT
content-type: application/javascript
last-modified: Tue, 24 Jan 2023 13:15:05 GMT
etag: "15851-63cfd9d9-923b185d0173148e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 40458
date: Wed, 25 Jan 2023 07:42:05 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
client.postale.justns.ru/se/e/k/p/files/assets/js/popper.min.js
91.229.90.150200 OK 9.0 kB URL HTTP/2 client.postale.justns.ru/se/e/k/p/files/assets/js/popper.min.js
IP 91.229.90.150:0
File type ASCII text, with very long lines (20164), with CRLF line terminators
Hash bf967669cba3609af44d1bfd325decb0
ae00a08886be739b88eec92d3ab19074e433eae9
ad64ed9218867ad417055505aac8c4ebcd1e3a78476faf50a7f81930df5184e9
Analyzer Verdict Alert fortinet Phishing
GET /se/e/k/p/files/assets/js/popper.min.js HTTP/1.1
Host: client.postale.justns.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://client.postale.justns.ru/se/e/k/p/files/login/login.php
Cookie: PHPSESSID=7917a36b1f79e8d52d78cbb94c22e7f9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 01 Feb 2023 07:42:05 GMT
content-type: application/javascript
last-modified: Tue, 24 Jan 2023 13:15:05 GMT
etag: "4f74-63cfd9d9-4a24f86e2b3f56fb;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 9005
date: Wed, 25 Jan 2023 07:42:05 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
client.postale.justns.ru/se/e/k/p/files/assets/js/bootstrap.min.js
91.229.90.150200 OK 43 kB URL HTTP/2 client.postale.justns.ru/se/e/k/p/files/assets/js/bootstrap.min.js
IP 91.229.90.150:0
File type ASCII text, with very long lines (328), with CRLF, CR line terminators
Hash 6d32e8d771e02cf22963ec7577e0da75
fd2821323ef7687b03795b0f1eb6c4288be178a9
a0b9fc457cbb08cc2b68aee5bb8f6bd69175345039ff60b74f1445e42ee1c386
Analyzer Verdict Alert fortinet Phishing
GET /se/e/k/p/files/assets/js/bootstrap.min.js HTTP/1.1
Host: client.postale.justns.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://client.postale.justns.ru/se/e/k/p/files/login/login.php
Cookie: PHPSESSID=7917a36b1f79e8d52d78cbb94c22e7f9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 01 Feb 2023 07:42:05 GMT
content-type: application/javascript
last-modified: Tue, 24 Jan 2023 13:15:05 GMT
etag: "21388-63cfd9d9-73aa0bb2c62f4cee;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 43271
date: Wed, 25 Jan 2023 07:42:05 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
client.postale.justns.ru/se/e/k/p/files/assets/js/main.js
91.229.90.150200 OK 622 B URL HTTP/2 client.postale.justns.ru/se/e/k/p/files/assets/js/main.js
IP 91.229.90.150:0
File type Algol 68 source text\012- Pascal source, ASCII text, with CRLF line terminators
Hash df5702731c466683290ca488d8d092e8
930ae39dfda907a24c77926e6c4b2e24478e75be
15352bccc73a02cc148371f74113d9c23879f985aade9c823ab9f0189da252c3
Analyzer Verdict Alert fortinet Phishing
GET /se/e/k/p/files/assets/js/main.js HTTP/1.1
Host: client.postale.justns.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://client.postale.justns.ru/se/e/k/p/files/login/login.php
Cookie: PHPSESSID=7917a36b1f79e8d52d78cbb94c22e7f9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 01 Feb 2023 07:42:05 GMT
content-type: application/javascript
last-modified: Tue, 24 Jan 2023 13:15:05 GMT
etag: "77c-63cfd9d9-99f7587ec76e54d1;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 622
date: Wed, 25 Jan 2023 07:42:05 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
client.postale.justns.ru/se/e/k/p/files/assets/images/header-right2.png
91.229.90.150200 OK 4.9 kB URL HTTP/2 client.postale.justns.ru/se/e/k/p/files/assets/images/header-right2.png
IP 91.229.90.150:0
File type PNG image data, 503 x 50, 8-bit/color RGB, non-interlaced\012- data
Hash 9252aa94fff77064c1ff6bcc5b7398dd
b4ff8e78716f29cccb54b70906794a44fd7a1a21
37a288f0c7a73fecda634b2262ba8d7c23953e2268aa9a6dabc21955b5a174e9
Analyzer Verdict Alert urlquery phishing Phishing - La Banque postale
urlquery phishing Phishing - La Banque postale
GET /se/e/k/p/files/assets/images/header-right2.png HTTP/1.1
Host: client.postale.justns.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://client.postale.justns.ru/se/e/k/p/files/login/login.php
Cookie: PHPSESSID=7917a36b1f79e8d52d78cbb94c22e7f9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 01 Feb 2023 07:42:05 GMT
content-type: image/png
last-modified: Tue, 24 Jan 2023 13:15:05 GMT
etag: "1321-63cfd9d9-8f7be3fe76e3a760;;;"
accept-ranges: bytes
content-length: 4897
date: Wed, 25 Jan 2023 07:42:05 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
client.postale.justns.ru/se/e/k/p/files/assets/images/header-right3.png
91.229.90.150200 OK 1.2 kB URL HTTP/2 client.postale.justns.ru/se/e/k/p/files/assets/images/header-right3.png
IP 91.229.90.150:0
File type PNG image data, 228 x 50, 8-bit/color RGB, non-interlaced\012- data
Hash f2766a53f341aa32b32efef5152cb92b
472e5b58d6f177a1dae8c272b209aa0a4c7c2731
f209ec1d94d89a8fa9cdadffa82ac9f6bb696687d21caaf0a15007199fdbcbfc
Analyzer Verdict Alert urlquery phishing Phishing - La Banque postale
urlquery phishing Phishing - La Banque postale
GET /se/e/k/p/files/assets/images/header-right3.png HTTP/1.1
Host: client.postale.justns.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://client.postale.justns.ru/se/e/k/p/files/login/login.php
Cookie: PHPSESSID=7917a36b1f79e8d52d78cbb94c22e7f9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 01 Feb 2023 07:42:05 GMT
content-type: image/png
last-modified: Tue, 24 Jan 2023 13:15:05 GMT
etag: "4a3-63cfd9d9-5f69dfa827a85e86;;;"
accept-ranges: bytes
content-length: 1187
date: Wed, 25 Jan 2023 07:42:05 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
client.postale.justns.ru/se/e/k/p/files/assets/images/footer.png
91.229.90.150200 OK 53 kB URL HTTP/2 client.postale.justns.ru/se/e/k/p/files/assets/images/footer.png
IP 91.229.90.150:0
File type PNG image data, 907 x 595, 8-bit/color RGBA, non-interlaced\012- data
Hash f96a98795792fd92b817f70089d30c31
b2ca6b578360c9f67c6af13a25568ac31fb08f7b
5bb399100f821a7bada7a8faa36de1e64dd19bcde8854eb9980b5b07cb74de1c
Analyzer Verdict Alert urlquery phishing Phishing - La Banque postale
urlquery phishing Phishing - La Banque postale
GET /se/e/k/p/files/assets/images/footer.png HTTP/1.1
Host: client.postale.justns.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://client.postale.justns.ru/se/e/k/p/files/login/login.php
Cookie: PHPSESSID=7917a36b1f79e8d52d78cbb94c22e7f9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 01 Feb 2023 07:42:05 GMT
content-type: image/png
last-modified: Tue, 24 Jan 2023 13:15:05 GMT
etag: "cf2b-63cfd9d9-85747b019ae73ece;;;"
accept-ranges: bytes
content-length: 53035
date: Wed, 25 Jan 2023 07:42:05 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
client.postale.justns.ru/se/e/k/p/files/assets/js/fontawesome.min.js
91.229.90.150200 OK 462 kB URL HTTP/2 client.postale.justns.ru/se/e/k/p/files/assets/js/fontawesome.min.js
IP 91.229.90.150:0
File type ASCII text, with very long lines (65347), with CRLF line terminators
Size 462 kB (462422 bytes)
Hash 180e2197557b8f7cb1b3852e78ebac7b
9432e6473612b74417d518df03e8258aa93a48fc
9886768a61df97bcdca8e98211a115d9ceef85514aaa8fe150c10595d1d80737
Analyzer Verdict Alert fortinet Phishing
GET /se/e/k/p/files/assets/js/fontawesome.min.js HTTP/1.1
Host: client.postale.justns.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://client.postale.justns.ru/se/e/k/p/files/login/login.php
Cookie: PHPSESSID=7917a36b1f79e8d52d78cbb94c22e7f9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 01 Feb 2023 07:42:05 GMT
content-type: application/javascript
last-modified: Tue, 24 Jan 2023 13:15:05 GMT
etag: "10314e-63cfd9d9-2471dc7419a1e85e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 462422
date: Wed, 25 Jan 2023 07:42:05 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
client.postale.justns.ru/se/e/k/p/files/assets/images/content.png
91.229.90.150200 OK 462 kB URL HTTP/2 client.postale.justns.ru/se/e/k/p/files/assets/images/content.png
IP 91.229.90.150:0
File type PNG image data, 939 x 2166, 8-bit/color RGBA, non-interlaced\012- data
Size 462 kB (461751 bytes)
Hash a163946bb2c40cfce6b8eb1f7c5a4f63
77405f7e4c20b1e6088ec70c468edacda7638aac
8f7220fde4861e61d5d1f84538771bf385a161f5889476028a61341ac01875d0
Analyzer Verdict Alert urlquery phishing Phishing - La Banque postale
urlquery phishing Phishing - La Banque postale
GET /se/e/k/p/files/assets/images/content.png HTTP/1.1
Host: client.postale.justns.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://client.postale.justns.ru/se/e/k/p/files/assets/css/main.css
Cookie: PHPSESSID=7917a36b1f79e8d52d78cbb94c22e7f9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 01 Feb 2023 07:42:06 GMT
content-type: image/png
last-modified: Tue, 24 Jan 2023 13:15:05 GMT
etag: "70bb7-63cfd9d9-fedabe3a3e74bcb0;;;"
accept-ranges: bytes
content-length: 461751
date: Wed, 25 Jan 2023 07:42:06 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
client.postale.justns.ru/se/e/k/p/files/assets/fonts/secure-asterisk.woff
91.229.90.150200 OK 3.2 kB URL HTTP/2 client.postale.justns.ru/se/e/k/p/files/assets/fonts/secure-asterisk.woff
IP 91.229.90.150:0
File type Web Open Font Format, TrueType, length 3176, version 0.0\012- data
Hash 374b020a914ea198d75d783535440a81
2dd183915d84f1a8deee4fdb1091af1cd2989e25
cc0b81d5e663b8abed0d6035739f40950ae99bcabb9a88f1e92eb910ae769cea
Analyzer Verdict Alert urlquery phishing Phishing - La Banque postale
urlquery phishing Phishing - La Banque postale
fortinet Phishing
GET /se/e/k/p/files/assets/fonts/secure-asterisk.woff HTTP/1.1
Host: client.postale.justns.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://client.postale.justns.ru/se/e/k/p/files/assets/css/fonts.css
Cookie: PHPSESSID=7917a36b1f79e8d52d78cbb94c22e7f9
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/x-font-woff
last-modified: Tue, 24 Jan 2023 13:15:05 GMT
etag: "c68-63cfd9d9-b4b92c00a660f209;;;"
accept-ranges: bytes
content-length: 3176
date: Wed, 25 Jan 2023 07:42:06 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 25 Jan 2023 07:41:40 GMT
age: 26
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
client.postale.justns.ru/se/e/k/p/files/assets/images/favicon.png
91.229.90.150200 OK 2.8 kB URL HTTP/2 client.postale.justns.ru/se/e/k/p/files/assets/images/favicon.png
IP 91.229.90.150:0
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash 95148d7f825922493ef706dd98457ff4
a0a5b1c2f52bb002000a04de5aa74d8ed25fc703
c78d2b529472912245060a36f2393b664716b51511b6bdcfa385fba224ba3811
Analyzer Verdict Alert urlquery phishing Phishing - La Banque postale
urlquery phishing Phishing - La Banque postale
GET /se/e/k/p/files/assets/images/favicon.png HTTP/1.1
Host: client.postale.justns.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://client.postale.justns.ru/se/e/k/p/files/login/login.php
Cookie: PHPSESSID=7917a36b1f79e8d52d78cbb94c22e7f9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 01 Feb 2023 07:42:06 GMT
content-type: image/png
last-modified: Tue, 24 Jan 2023 13:15:05 GMT
etag: "b01-63cfd9d9-7d47523845870c1a;;;"
accept-ranges: bytes
content-length: 2817
date: Wed, 25 Jan 2023 07:42:06 GMT
server: LiteSpeed
vary: User-Agent
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1e2970e1480a4759282d63bb213051e4
ed5194d4d25dfc199821129be5d74be0ce49197d
18e19ea4c9c262cb9a94f89172eef2604222e779346589d470bf2e95ea295563
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "18E19EA4C9C262CB9A94F89172EEF2604222E779346589D470BF2E95EA295563"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20910
Expires: Wed, 25 Jan 2023 13:30:36 GMT
Date: Wed, 25 Jan 2023 07:42:06 GMT
Connection: keep-alive
push.services.mozilla.com/
54.148.242.254101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.242.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: glcoxCa2tU78DmVDHc2Jmw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: fvrulXhmYObxg+cnUou/xqj25XQ=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9979
Expires: Wed, 25 Jan 2023 10:28:26 GMT
Date: Wed, 25 Jan 2023 07:42:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9979
Expires: Wed, 25 Jan 2023 10:28:26 GMT
Date: Wed, 25 Jan 2023 07:42:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9979
Expires: Wed, 25 Jan 2023 10:28:26 GMT
Date: Wed, 25 Jan 2023 07:42:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9979
Expires: Wed, 25 Jan 2023 10:28:26 GMT
Date: Wed, 25 Jan 2023 07:42:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9979
Expires: Wed, 25 Jan 2023 10:28:26 GMT
Date: Wed, 25 Jan 2023 07:42:07 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4cb7be12333fa7ea3353901b4b3215af
4b758cc432874384f330568177eef5a328d7e69a
d6f86c0ddbabd5c4fd7cee72ce4da62ccddd9d29139c9ab033bb1ab8425bae22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11918
x-amzn-requestid: df7df0ae-d70e-4b80-9483-2ecd5c8ee4a7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEqvPEXMoAMF5Aw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb57fa-04193e0514c1c1e85d9d023b;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 03:11:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: fznabMNG3n9Uo4L1jrrewtL_hJnQv8oR2qggeZtruvOLVzpUpcs7Tw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 03:59:34 GMT
age: 13353
etag: "4b758cc432874384f330568177eef5a328d7e69a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f7aba17-803f-412c-8ef7-0959b52f87cc.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f7aba17-803f-412c-8ef7-0959b52f87cc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 13891ffe8a0cc240be63b7945e4b7688
958b50e9e7e5e02882d55612a5d6d2402e225390
1570d69731ba13051454a048ac85bde7c1de8e39dea0fd78e7e5c3f2be122cb6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f7aba17-803f-412c-8ef7-0959b52f87cc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9650
x-amzn-requestid: 3b968ee5-c941-4305-9f06-01e646deef15
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fH88wEUmoAMFerw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cca851-061f65177f36420a4685f372;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 03:06:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: xfiiS5M5j8iYKMyopaVqwYV6KKB1VIWT_yQbEKZ9G1wuq2QUEyDBpA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 03:10:29 GMT
age: 16298
etag: "958b50e9e7e5e02882d55612a5d6d2402e225390"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd57136f3-3a32-4cb9-be6a-29e47e59a6f9.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd57136f3-3a32-4cb9-be6a-29e47e59a6f9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24a73392615d623dc852bdab43c9f133
3a5ac9f9831aa4c735d335e7d24e9ccc5e1ee0d4
edc11bdc8b40a513dc62b32f7eff0ba1f80db27208bd80bd16235da3c369157b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd57136f3-3a32-4cb9-be6a-29e47e59a6f9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5732
x-amzn-requestid: d59f1165-e5c8-4a43-a7be-32f0d9ef2ff1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fFK9EFNjIAMF5hQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb8b86-1f8d46827f84aa3119e4195c;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 06:51:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: x0-Cy2E3bQp52z6h4jB6wQ4xAEM5vuuVBPc4A6ZNfv_zbgBsbWDbtA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 15:21:30 GMT
age: 58837
etag: "3a5ac9f9831aa4c735d335e7d24e9ccc5e1ee0d4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07f8fda5-486e-4c4b-82f2-d763219f4562.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07f8fda5-486e-4c4b-82f2-d763219f4562.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6fa8338e574e2b8272ad3ca7cd9d1d63
298cafecdcac99de25fe5c2c4c993487f73ced6b
f75c20ebc4c0db2df40d958337cd87768714bdf53a48609ad0f97b7129b0b100
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07f8fda5-486e-4c4b-82f2-d763219f4562.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6715
x-amzn-requestid: c808c9d9-bbbb-43ff-ab15-33074a760093
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e4BO5En_oAMFTzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c648c5-67151eb46f5a10b0732fbd09;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 07:05:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0pvebF903zoRPgzBK2gxMlcYQTurylOzzCfOO07hYCG5aD7wX_fl9g==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 09:51:11 GMT
age: 78656
etag: "298cafecdcac99de25fe5c2c4c993487f73ced6b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c2ede8d-ac50-4d79-98d8-53ba683ea9fe.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c2ede8d-ac50-4d79-98d8-53ba683ea9fe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03ba93e6c29fb268712e33228fa5ee38
2528a659d067ce39b31d5d8a0a9943e313a4caa6
2a3dfcbafd31bfc0cc653f9f43cfa98206334551b8ab76e9ab6d20338c8d6e1c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c2ede8d-ac50-4d79-98d8-53ba683ea9fe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9864
x-amzn-requestid: dd368937-de20-4e2a-82e3-e82bc20a806c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e4AtgGu3oAMFaoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c647ef-7efe789a5411c14a74ec327a;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 07:02:07 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8MAwoNj7febyP2pH8bDcDTVBP3RLzRKpSqkG_A4L0G9i_-s64YVuJw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 14:55:46 GMT
age: 60381
etag: "2528a659d067ce39b31d5d8a0a9943e313a4caa6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2972ed07-7fe0-4c0a-99f8-993c3f6e55c2.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2972ed07-7fe0-4c0a-99f8-993c3f6e55c2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a625c16030b935ba09ec63cb2d6e1525
1a1ebddb1ee9cf3c2445d29a85127134a0a5db01
ab6dd4aec486677bd68826e4f01dd36b005d46d521611dc271406a57a64ac615
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2972ed07-7fe0-4c0a-99f8-993c3f6e55c2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4831
x-amzn-requestid: 4ceba3ec-44dc-41ba-98b4-524c2903ac04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e-m4tGcroAMFg_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c8eb6a-5e4a27fa6526eaf45b38b965;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 07:04:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 2R-NhoznKwfi_KmBrxzSpGAgskeqO5bItI96XoeE2cnL1qNEsSApNw==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 09:40:40 GMT
age: 79287
etag: "1a1ebddb1ee9cf3c2445d29a85127134a0a5db01"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2