r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dfb72f04bd7a4410640c0543bb4bd402
7c63b7e220b337b6a4f39864e11d6aa9e26c38ac
b7f7a4d355ed3b847a5e28f16030d5cbc715d47326aea20f292cd76dcaf59794
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B7F7A4D355ED3B847A5E28F16030D5CBC715D47326AEA20F292CD76DCAF59794"
Last-Modified: Mon, 21 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3971
Expires: Thu, 24 Nov 2022 07:02:02 GMT
Date: Thu, 24 Nov 2022 05:55:51 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 770d09773b5f304acf141fd66a4862b4
5ddc46ab75de26c858a9a6f6d1beaaec9bb181f5
c7bcc6928fa1c0bb225ce8a2f6badd6cb1bd6ea002fb808ed34e8dafbd7b3b26
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4893
Cache-Control: max-age=107818
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:55:51 GMT
Etag: "637df674-1d7"
Expires: Fri, 25 Nov 2022 11:52:49 GMT
Last-Modified: Wed, 23 Nov 2022 10:31:16 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
augovtax2.temp.swtest.ru/baya/app/smserror2.php
77.222.40.224200 OK 2.6 kB URL HTTP/1.1 augovtax2.temp.swtest.ru/baya/app/smserror2.php
IP 77.222.40.224:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (780), with CRLF line terminators
Hash 74cc23efd413c496ea0dd3a28a10aa1c
bb7a457fbc488fded5163f1c545ce16dd6c0b127
96cb6f6e408d65c9cf2fc09558f4fbd32fa84516606c6fa32e9854164b141ed9
Analyzer Verdict Alert urlquery Phishing - Australian Government
openphish Australian Government
fortinet Phishing
GET /baya/app/smserror2.php HTTP/1.1
Host: augovtax2.temp.swtest.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: rxVisitor=16692693102321QTL0KBQCRGOKB8VE04R0QIFJQ19HH7H
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.19.1
Date: Thu, 24 Nov 2022 05:55:51 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding
X-Powered-By: PHP/7.1.33
Set-Cookie: PHPSESSID=f4829afbfb126c20ca5a982b5e528022; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 05:17:14 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2317
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 054ff0d1a0a43f7cb1d78dbd34e27f99
3caf54f3de1d6a8c6f6454083f8b8e7dec77db54
fcdcef8306ae31f20c366489e1f88aa40b08f154d25d45f4055c4f8cdef47634
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FCDCEF8306AE31F20C366489E1F88AA40B08F154D25D45F4055C4F8CDEF47634"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4728
Expires: Thu, 24 Nov 2022 07:14:39 GMT
Date: Thu, 24 Nov 2022 05:55:51 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 05:55:52 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: x/4zp+FEv3c0tFke0o5k2i3VvpdPlIya9TZ1JJBrDPNgXtt/lAo1KmzOveUmNNqXihhMYPgpNI2A87fQi4unFw==
x-amz-request-id: 9F3THMQQJVRR5X7Y
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 05:40:17 GMT
age: 935
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
augovtax2.temp.swtest.ru/baya/app/smsone_files/css
77.222.40.224200 OK 891 B URL HTTP/1.1 augovtax2.temp.swtest.ru/baya/app/smsone_files/css
IP 77.222.40.224:0
Hash db2bcf9dac4d202a536b278eb41fb174
983a0b9388114730c2bd3d26439bef2099296ba0
c72ef7520ea5cab74e8793a6a9bfbd9ef378ae4b6d24cd48ce4793577389f2cd
Analyzer Verdict Alert urlquery Phishing - Australian Government
fortinet Phishing
GET /baya/app/smsone_files/css HTTP/1.1
Host: augovtax2.temp.swtest.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://augovtax2.temp.swtest.ru/baya/app/smserror2.php
Cookie: rxVisitor=16692693102321QTL0KBQCRGOKB8VE04R0QIFJQ19HH7H; PHPSESSID=f4829afbfb126c20ca5a982b5e528022
HTTP/1.1 200 OK
Server: nginx/1.19.1
Date: Thu, 24 Nov 2022 05:55:52 GMT
Content-Type: text/plain
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding
Last-Modified: Mon, 03 Oct 2022 15:04:08 GMT
ETag: W/"43c949e-3e92-5ea22a7c44a00"
Content-Encoding: gzip
augovtax2.temp.swtest.ru/baya/app/smsone_files/blugov.css
77.222.40.224200 OK 9.9 kB URL HTTP/1.1 augovtax2.temp.swtest.ru/baya/app/smsone_files/blugov.css
IP 77.222.40.224:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash f6f9218a85d035ec013cee5065f88055
9deb1a865f0424f585abd41bc9ab656168fa6257
3d479e702549df187669b324bc991e917ed9244060026e4b03dc38bebfedea67
Analyzer Verdict Alert urlquery Phishing - Australian Government
GET /baya/app/smsone_files/blugov.css HTTP/1.1
Host: augovtax2.temp.swtest.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://augovtax2.temp.swtest.ru/baya/app/smserror2.php
Cookie: rxVisitor=16692693102321QTL0KBQCRGOKB8VE04R0QIFJQ19HH7H; PHPSESSID=f4829afbfb126c20ca5a982b5e528022
HTTP/1.1 200 OK
Server: nginx/1.19.1
Date: Thu, 24 Nov 2022 05:55:52 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding
Last-Modified: Mon, 03 Oct 2022 15:04:08 GMT
ETag: W/"43c949d-11275-5ea22a7c44a00"
Content-Encoding: gzip
augovtax2.temp.swtest.ru/baya/app/smsone_files/mgv2-application.css
77.222.40.224200 OK 21 kB URL HTTP/1.1 augovtax2.temp.swtest.ru/baya/app/smsone_files/mgv2-application.css
IP 77.222.40.224:0
File type ASCII text, with very long lines (59825)
Hash 09047ed1c6ed10281ef0a68c25bb8229
3735d3a7ab314898b419e231863a549bfceafcba
3d42513ce5369717cc904c1cb18fdee608ae124a71bed7661e5907b6e2c3c9c8
Analyzer Verdict Alert urlquery Phishing - Australian Government
GET /baya/app/smsone_files/mgv2-application.css HTTP/1.1
Host: augovtax2.temp.swtest.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://augovtax2.temp.swtest.ru/baya/app/smserror2.php
Cookie: rxVisitor=16692693102321QTL0KBQCRGOKB8VE04R0QIFJQ19HH7H; PHPSESSID=f4829afbfb126c20ca5a982b5e528022
HTTP/1.1 200 OK
Server: nginx/1.19.1
Date: Thu, 24 Nov 2022 05:55:52 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding
Last-Modified: Mon, 03 Oct 2022 15:04:08 GMT
ETag: W/"43c94a0-1e9fc-5ea22a7c44a00"
Content-Encoding: gzip
augovtax2.temp.swtest.ru/baya/app/smsone_files/login.js.download
77.222.40.224200 OK 647 B URL HTTP/1.1 augovtax2.temp.swtest.ru/baya/app/smsone_files/login.js.download
IP 77.222.40.224:0
File type ASCII text, with very long lines (1560), with no line terminators
Hash f6904ff2d5f2345dbfe13eba0b39ecdb
6b0c480b561da261f09ecf77868ceb0cf374f4e0
8d4ea59310556867411487e73ceb1638f0f45c5f0a10d5d1f11365310d4cecf6
Analyzer Verdict Alert urlquery Phishing - Australian Government
fortinet Phishing
GET /baya/app/smsone_files/login.js.download HTTP/1.1
Host: augovtax2.temp.swtest.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://augovtax2.temp.swtest.ru/baya/app/smserror2.php
Cookie: rxVisitor=16692693102321QTL0KBQCRGOKB8VE04R0QIFJQ19HH7H; PHPSESSID=f4829afbfb126c20ca5a982b5e528022
HTTP/1.1 200 OK
Server: nginx/1.19.1
Date: Thu, 24 Nov 2022 05:55:52 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding
Last-Modified: Mon, 03 Oct 2022 15:04:10 GMT
ETag: W/"43c949f-618-5ea22a7e2ce80"
Content-Encoding: gzip
augovtax2.temp.swtest.ru/baya/app/smsone_files/mgv2-application.js.download
77.222.40.224200 OK 17 kB URL HTTP/1.1 augovtax2.temp.swtest.ru/baya/app/smsone_files/mgv2-application.js.download
IP 77.222.40.224:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 353c05dbdc5ab04f622392a0305f6ecc
0ff55962eee11993029f5830a9e7ba8ba5828889
8af1b3d6ae35c9e859b2ddce8b5dc02d8f57781594a66c28055b605cfac85546
Analyzer Verdict Alert urlquery Phishing - Australian Government
fortinet Phishing
GET /baya/app/smsone_files/mgv2-application.js.download HTTP/1.1
Host: augovtax2.temp.swtest.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://augovtax2.temp.swtest.ru/baya/app/smserror2.php
Cookie: rxVisitor=16692693102321QTL0KBQCRGOKB8VE04R0QIFJQ19HH7H; PHPSESSID=f4829afbfb126c20ca5a982b5e528022
HTTP/1.1 200 OK
Server: nginx/1.19.1
Date: Thu, 24 Nov 2022 05:55:52 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding
Last-Modified: Mon, 03 Oct 2022 15:04:10 GMT
ETag: W/"43c94a1-12813-5ea22a7e2ce80"
Content-Encoding: gzip
augovtax2.temp.swtest.ru/baya/app/smsone_files/ruxitagentjs_ICA2Vfghjqrux_10243220606153550.js.download
77.222.40.224200 OK 91 kB URL HTTP/1.1 augovtax2.temp.swtest.ru/baya/app/smsone_files/ruxitagentjs_ICA2Vfghjqrux_10243220606153550.js.download
IP 77.222.40.224:0
File type ASCII text, with very long lines (1629)
Hash 7695b0f837cf63a393364417bb373cea
d429e4e8f42eb7b165f383b74fb3de6fb40a63e9
da7ed4bfbcc3ad661f8551f2bf84d6c99fb4542bb4eaf4072640fdf72f9a5811
Analyzer Verdict Alert urlquery Phishing - Australian Government
fortinet Phishing
GET /baya/app/smsone_files/ruxitagentjs_ICA2Vfghjqrux_10243220606153550.js.download HTTP/1.1
Host: augovtax2.temp.swtest.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://augovtax2.temp.swtest.ru/baya/app/smserror2.php
Cookie: rxVisitor=16692693102321QTL0KBQCRGOKB8VE04R0QIFJQ19HH7H; PHPSESSID=f4829afbfb126c20ca5a982b5e528022
HTTP/1.1 200 OK
Server: nginx/1.19.1
Date: Thu, 24 Nov 2022 05:55:52 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding
Last-Modified: Mon, 03 Oct 2022 15:04:08 GMT
ETag: W/"43c94a5-3bc81-5ea22a7c44a00"
Content-Encoding: gzip
augovtax2.temp.swtest.ru/baya/app/smsone_files/mgv2-vendor.js.download
77.222.40.224200 OK 50 kB URL HTTP/1.1 augovtax2.temp.swtest.ru/baya/app/smsone_files/mgv2-vendor.js.download
IP 77.222.40.224:0
File type ASCII text, with very long lines (32058)
Hash 950a79dda87811d4a3f639e98f14357a
a4e9f415ec6977f219a21d77013b5f612c87c8a1
e37904fd7298f9ec2f86709cc01ad0782139c335ca78d253ab5d3c4a0b6bd787
Analyzer Verdict Alert urlquery Phishing - Australian Government
fortinet Phishing
GET /baya/app/smsone_files/mgv2-vendor.js.download HTTP/1.1
Host: augovtax2.temp.swtest.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://augovtax2.temp.swtest.ru/baya/app/smserror2.php
Cookie: rxVisitor=16692693102321QTL0KBQCRGOKB8VE04R0QIFJQ19HH7H; PHPSESSID=f4829afbfb126c20ca5a982b5e528022
HTTP/1.1 200 OK
Server: nginx/1.19.1
Date: Thu, 24 Nov 2022 05:55:52 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding
Last-Modified: Mon, 03 Oct 2022 15:04:10 GMT
ETag: W/"43c94a2-251cf-5ea22a7e2ce80"
Content-Encoding: gzip
augovtax2.temp.swtest.ru/baya/app/smsone_files/myGov-cobranded-logo-white.svg
77.222.40.224200 OK 21 kB URL HTTP/1.1 augovtax2.temp.swtest.ru/baya/app/smsone_files/myGov-cobranded-logo-white.svg
IP 77.222.40.224:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (64140), with no line terminators
Hash 9e52b11cf1542ca98ba3a2a788de9b1b
809f3522b08699dcd7b5255ff9c000ef8ae2090b
e0acac87a657d393adc028da9877bac03308125f990e7581e37ea993e9dc654f
Analyzer Verdict Alert urlquery Phishing - Australian Government
fortinet Phishing
GET /baya/app/smsone_files/myGov-cobranded-logo-white.svg HTTP/1.1
Host: augovtax2.temp.swtest.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://augovtax2.temp.swtest.ru/baya/app/smserror2.php
Cookie: rxVisitor=16692693102321QTL0KBQCRGOKB8VE04R0QIFJQ19HH7H; PHPSESSID=f4829afbfb126c20ca5a982b5e528022
HTTP/1.1 200 OK
Server: nginx/1.19.1
Date: Thu, 24 Nov 2022 05:55:52 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding
Last-Modified: Mon, 03 Oct 2022 15:04:08 GMT
ETag: W/"43c94a4-fa8c-5ea22a7c44a00"
Content-Encoding: gzip
augovtax2.temp.swtest.ru/baya/app/blugov/M-myGov-Coloured%20Line.svg
77.222.40.224404 Not Found 718 B URL HTTP/1.1 augovtax2.temp.swtest.ru/baya/app/blugov/M-myGov-Coloured%20Line.svg
IP 77.222.40.224:0
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 293a07ac2b9f8073b1acc110da29d014
e19a74c30478bf5279bc819fc2cd7c796e41413d
87169a147fbe9f3cfa0b4b38ddec1eb511144f0c10ba1c2ff7693951049623aa
Analyzer Verdict Alert fortinet Phishing
GET /baya/app/blugov/M-myGov-Coloured%20Line.svg HTTP/1.1
Host: augovtax2.temp.swtest.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://augovtax2.temp.swtest.ru/baya/app/smserror2.php
Cookie: rxVisitor=16692693102321QTL0KBQCRGOKB8VE04R0QIFJQ19HH7H; PHPSESSID=f4829afbfb126c20ca5a982b5e528022; dtCookie=v_4_srv_-2D45_sn_KV8UO4QBISRL414F8VPF1NUBCCI8IIFN; dtPC=-45$69352645_134h1vUMLWISMHJFOMRQUKCQLKGTUOHNCBNJRK-0e0; rxvt=1669271152682|1669269352671; dtLatC=83; dtSa=-
HTTP/1.1 404 Not Found
Server: nginx/1.19.1
Date: Thu, 24 Nov 2022 05:55:53 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding, accept-language,accept-charset
Content-Language: en
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:55:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:55:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:55:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:55:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash eb52164d651f5f45416e873aec29eb04
405b29bb7e7cd4367cf82988f8603e53db65f139
ed885e05db822ff30fe951e10b6d4f21e574d053939afca792992a1549a15301
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2859
Cache-Control: max-age=100719
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:55:53 GMT
Etag: "637de2ad-1d7"
Expires: Fri, 25 Nov 2022 09:54:32 GMT
Last-Modified: Wed, 23 Nov 2022 09:06:53 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 05:11:11 GMT
cache-control: public,max-age=3600
age: 2682
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.38.146.2101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.38.146.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: pBUFwIseZSkfYUqYFMGE9w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: CgIedjF4Cqz8aOaEDH6Vth0H5MY=
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 7e1fdeee2a20279560274c9702f90936
7e93fd0737d7cc794990c5cc5c5d7b1bb5b3f2ef
b5cb8c2973fd5601e760f24356b5619751037b79b52eccbb6f7c0f71edfe8d92
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "B5CB8C2973FD5601E760F24356B5619751037B79B52ECCBB6F7C0F71EDFE8D92"
Last-Modified: Wed, 23 Nov 2022 23:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=1487
Expires: Thu, 24 Nov 2022 06:20:41 GMT
Date: Thu, 24 Nov 2022 05:55:54 GMT
Connection: keep-alive
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 6b196288b1fbdf29058d9cce9dd34ca0
611c27eb0c26784a73976a69c2c360e2ff0826c0
6e1e7f0626ffe65f5ea242f5089227eef3ebd82323875fbc9d291b4e5330e0cb
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "6E1E7F0626FFE65F5EA242F5089227EEF3EBD82323875FBC9D291B4E5330E0CB"
Last-Modified: Wed, 23 Nov 2022 22:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3519
Expires: Thu, 24 Nov 2022 06:54:33 GMT
Date: Thu, 24 Nov 2022 05:55:54 GMT
Connection: keep-alive
augovtax2.temp.swtest.ru/LoginServices/main/rb_6de8e2e9-6719-45b3-86be-7effcb9f6525?type=js3&sn=v_4_srv_-2D45_sn_KV8UO4QBISRL414F8VPF1NUBCCI8IIFN&svrid=-45&flavor=post&vi=UMLWISMHJFOMRQUKCQLKGTUOHNCBNJRK-0&modifiedSince=1664408259780&rf=http%3A%2F%2Faugovtax2.temp.swtest.ru%2Fbaya%2Fapp%2Fsmserror2.php&bp=3&app=5f15dc81410a75c1&crc=1366412839&en=gpalpirq&end=1
77.222.40.224404 Not Found 718 B URL HTTP/1.1 augovtax2.temp.swtest.ru/LoginServices/main/rb_6de8e2e9-6719-45b3-86be-7effcb9f6525?type=js3&sn=v_4_srv_-2D45_sn_KV8UO4QBISRL414F8VPF1NUBCCI8IIFN&svrid=-45&flavor=post&vi=UMLWISMHJFOMRQUKCQLKGTUOHNCBNJRK-0&modifiedSince=1664408259780&rf=http%3A%2F%2Faugovtax2.temp.swtest.ru%2Fbaya%2Fapp%2Fsmserror2.php&bp=3&app=5f15dc81410a75c1&crc=1366412839&en=gpalpirq&end=1
IP 77.222.40.224:0
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 80c2a37cabca80abadfd05ce631f3200
8b2104d3eca9bfdcada5bc0e58b3236bf0f7274c
844780037caca067e442db76c90f6195d4ea5620a2636ce8103e238ac6de67a0
POST /LoginServices/main/rb_6de8e2e9-6719-45b3-86be-7effcb9f6525?type=js3&sn=v_4_srv_-2D45_sn_KV8UO4QBISRL414F8VPF1NUBCCI8IIFN&svrid=-45&flavor=post&vi=UMLWISMHJFOMRQUKCQLKGTUOHNCBNJRK-0&modifiedSince=1664408259780&rf=http%3A%2F%2Faugovtax2.temp.swtest.ru%2Fbaya%2Fapp%2Fsmserror2.php&bp=3&app=5f15dc81410a75c1&crc=1366412839&en=gpalpirq&end=1 HTTP/1.1
Host: augovtax2.temp.swtest.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: text/plain;charset=UTF-8
Content-Length: 1228
Origin: http://augovtax2.temp.swtest.ru
Connection: keep-alive
Referer: http://augovtax2.temp.swtest.ru/baya/app/smserror2.php
Cookie: rxVisitor=16692693102321QTL0KBQCRGOKB8VE04R0QIFJQ19HH7H; PHPSESSID=f4829afbfb126c20ca5a982b5e528022; dtCookie=v_4_srv_-2D45_sn_KV8UO4QBISRL414F8VPF1NUBCCI8IIFN; dtPC=-45$69352645_134h-vUMLWISMHJFOMRQUKCQLKGTUOHNCBNJRK-0e0; rxvt=1669271153061|1669269352671; dtLatC=83; dtSa=-
HTTP/1.1 404 Not Found
Server: nginx/1.19.1
Date: Thu, 24 Nov 2022 05:55:54 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding, accept-language,accept-charset
Content-Language: en
Content-Encoding: gzip
login.my.gov.au/mygov/content/mgv2/icons/favicon-16x16.png
161.146.235.204200 OK 238 B URL HTTP/1.1 login.my.gov.au/mygov/content/mgv2/icons/favicon-16x16.png
IP 161.146.235.204:0
ASN #18055 Department of Human Services
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 734603b796e313e6b30c5314cfff7a0d
9ef8bcab45a447a173ba98d4e8af6114c30a1aca
5e70f30259d620e25efa88586a8871d5c94113f0b0d7d6f3e817f585891bf154
Analyzer Verdict Alert urlquery Phishing - Australian Government
GET /mygov/content/mgv2/icons/favicon-16x16.png HTTP/1.1
Host: login.my.gov.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://augovtax2.temp.swtest.ru/
Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!gTsm0GD6irQU0viU6TFomdAxad1I6mJcUNp1dVUR/dwp2tv5vLzggJEy48RiWUsvubxTi7+gKcjH3Q==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
accept-ranges: bytes
content-length: 238
content-type: image/png
date: Thu, 24 Nov 2022 05:55:54 GMT
last-modified: Sat, 19 Nov 2022 09:51:16 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
vary: Accept-Encoding
x-frame-options: DENY
x-content-type-options: nosniff
cache-control: max-age=3600,public,must-revalidate
inst: 0b
expires: Thu, 24 Nov 2022 06:55:54 GMT
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
server-timing: dtRpid;desc="-76412142"
Set-Cookie: BIGipServerHBZK2i12N308Oa3l35yEhg=!ABSrwXeyws8e242U6TFomdAxad1I6v60KgE8DP5Uq8CsgU/Vve7EzP0jGYR4pdmDFe2d3XMB9V5qXQ==; expires=Thu, 24-Nov-2022 06:25:54 GMT; path=/; Httponly; Secure;SameSite=none
dtCookie=v_4_srv_1_sn_E4FCEC26BFAD2C63E23F387A8BAA94AB_perc_100000_ol_0_mul_1; Domain=.my.gov.au.; Path=/; SameSite=None; Secure; HttpOnly
PD_STATEFUL_aaa1d6bc-31d2-11e6-b102-0050568e537f=mygov; Path=/; Secure; HttpOnly;SameSite=none
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3508
Expires: Thu, 24 Nov 2022 06:54:23 GMT
Date: Thu, 24 Nov 2022 05:55:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3508
Expires: Thu, 24 Nov 2022 06:54:23 GMT
Date: Thu, 24 Nov 2022 05:55:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3508
Expires: Thu, 24 Nov 2022 06:54:23 GMT
Date: Thu, 24 Nov 2022 05:55:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3508
Expires: Thu, 24 Nov 2022 06:54:23 GMT
Date: Thu, 24 Nov 2022 05:55:55 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b4157f2c5c3c77ce699324ecb08f47c7
a7d9135f9d01ba13c3cdaf8b038c70212f159297
2305f7afee95bb34d9e8dbff571c6b146ba7b694be96e9e925c32d1f41785916
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7462
x-amzn-requestid: 1f6fb14d-83e0-43d3-9dab-5bc83af1a7c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwV3HV9oAMFs9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9425-634d43db6308e0be596aa5a0;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GW5UTfY7-TwPWTno9z1e21a2cA9fmU7GfHFYWdL-zQvMLxeq-S9Trg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:03:54 GMT
age: 28321
etag: "a7d9135f9d01ba13c3cdaf8b038c70212f159297"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 92c78302bcce1568eb6a5563100b932c
43d1dec7fc06879988c9c3cadd800cc8145df988
0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7YSXUV-LZpsI7vciFhuqt1EVr6YRkhxcOgMg8z8bxLcOE01_baf6Gg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:06 GMT
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
content-type: image/jpeg
age: 29329
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7327507d-2df2-4ca9-b67f-331be1f7aba4.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7327507d-2df2-4ca9-b67f-331be1f7aba4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0ac60e832454b4658f4f7f09b2c120c4
4c20adfe72d6b01777f840445d57c891230e5b32
ec1f4393eebaf1c4229fbda2524bd150191ca4067fe368e6a35ad4d65b8df59c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7327507d-2df2-4ca9-b67f-331be1f7aba4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8776
x-amzn-requestid: 7c511f0c-198d-44d5-bc52-29f698fca910
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvynEFBoAMFdJQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9343-686e25237fb06f5031ffa88e;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: we5qPtOUBgvPwa1oq8jplahjNZ6iiNlQn2Eyvl5_xuXWEKy6CmTR9Q==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:20 GMT
age: 28715
etag: "4c20adfe72d6b01777f840445d57c891230e5b32"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a9a0208-d5ae-4e15-bd4d-c5c19edf354e.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a9a0208-d5ae-4e15-bd4d-c5c19edf354e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1404c6b865808ea73ca5b2062fefecc0
c66fd3a955cd81ab93474fb1aabc4c19d5775bcc
0a92ca52eff8baa4ba43bdb29008c59bcd37c55e78ac657de25819e980ea8e96
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a9a0208-d5ae-4e15-bd4d-c5c19edf354e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5545
x-amzn-requestid: 215b9f9b-4941-4c13-a1d4-6fdc5b453fad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCtEkIIAMF3gg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-27081b9e0dc1de6522299e4e;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: SFO53-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Xr183esurgfu-4jjQtCS5s_np_CtltrPx48zpq-NMwZbcGnAwTxtkg==
via: 1.1 68914922a694954838e87fc9b0aa10fe.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:52:56 GMT
age: 28979
etag: "c66fd3a955cd81ab93474fb1aabc4c19d5775bcc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8f6118fc03f31862ff68fef8a2b9a7f
318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73
cdd4d44f05cc524d7f2b1d6d792ecd8a9a933e52ecb7685a7d7ea786a510ef39
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8089
x-amzn-requestid: f4b5f150-a5dc-40bf-93b9-394c294a51cb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEmkRFSnIAMF5vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e8481-74454bee1a1ec6d506f3d75b;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 20:37:21 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ZVv8iTGCYV-IiBJ6KwNSG1ZWSEwClaQopUejSqZq0S1wd782lRoyKA==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:19 GMT
age: 28716
etag: "318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe021fc4e-f76c-4fe9-9470-b59452c93459.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe021fc4e-f76c-4fe9-9470-b59452c93459.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eb94ecb5881a7e49d964e4287d11e7a4
4b131a189db1b615e2519a28cad83d78297ab67f
f3693e29eb7b72361093434142e3f18969c1a0b02350fab430fa29c7c127bd1a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe021fc4e-f76c-4fe9-9470-b59452c93459.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11401
x-amzn-requestid: 3bc374eb-7d70-4b95-94a7-2ad06cae4726
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCtHcmoAMFxgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-333793987245ff9e741b9aed;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kkI9Vh2vZeJPwz2JVL5MErsBBwk8-2Jo49yc0sFqv5pxIyBi6azFIw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:23 GMT
age: 28712
etag: "4b131a189db1b615e2519a28cad83d78297ab67f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
augovtax2.temp.swtest.ru/LoginServices/main/rb_6de8e2e9-6719-45b3-86be-7effcb9f6525?type=js3&sn=v_4_srv_-2D45_sn_KV8UO4QBISRL414F8VPF1NUBCCI8IIFN&svrid=-45&flavor=post&vi=UMLWISMHJFOMRQUKCQLKGTUOHNCBNJRK-0&modifiedSince=1664408259780&rf=http%3A%2F%2Faugovtax2.temp.swtest.ru%2Fbaya%2Fapp%2Fsmserror2.php&bp=3&app=5f15dc81410a75c1&crc=3204909612&en=gpalpirq&end=1
77.222.40.224404 Not Found 719 B URL HTTP/1.1 augovtax2.temp.swtest.ru/LoginServices/main/rb_6de8e2e9-6719-45b3-86be-7effcb9f6525?type=js3&sn=v_4_srv_-2D45_sn_KV8UO4QBISRL414F8VPF1NUBCCI8IIFN&svrid=-45&flavor=post&vi=UMLWISMHJFOMRQUKCQLKGTUOHNCBNJRK-0&modifiedSince=1664408259780&rf=http%3A%2F%2Faugovtax2.temp.swtest.ru%2Fbaya%2Fapp%2Fsmserror2.php&bp=3&app=5f15dc81410a75c1&crc=3204909612&en=gpalpirq&end=1
IP 77.222.40.224:0
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 9308ac4e7da017ff7370531aa3ebcffe
9db95feeafbd1437ce34cd0543817299642ef933
759fafb0fadf0bbba77cfa9ab1e19def6df0b06470bcf2739bb76a2566ca6013
POST /LoginServices/main/rb_6de8e2e9-6719-45b3-86be-7effcb9f6525?type=js3&sn=v_4_srv_-2D45_sn_KV8UO4QBISRL414F8VPF1NUBCCI8IIFN&svrid=-45&flavor=post&vi=UMLWISMHJFOMRQUKCQLKGTUOHNCBNJRK-0&modifiedSince=1664408259780&rf=http%3A%2F%2Faugovtax2.temp.swtest.ru%2Fbaya%2Fapp%2Fsmserror2.php&bp=3&app=5f15dc81410a75c1&crc=3204909612&en=gpalpirq&end=1 HTTP/1.1
Host: augovtax2.temp.swtest.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: text/plain;charset=UTF-8
Content-Length: 2261
Origin: http://augovtax2.temp.swtest.ru
Connection: keep-alive
Referer: http://augovtax2.temp.swtest.ru/baya/app/smserror2.php
Cookie: rxVisitor=16692693102321QTL0KBQCRGOKB8VE04R0QIFJQ19HH7H; PHPSESSID=f4829afbfb126c20ca5a982b5e528022; dtCookie=v_4_srv_-2D45_sn_KV8UO4QBISRL414F8VPF1NUBCCI8IIFN; dtPC=-45$69352645_134h-vUMLWISMHJFOMRQUKCQLKGTUOHNCBNJRK-0e0; rxvt=1669271153061|1669269352671; dtLatC=83; dtSa=-
HTTP/1.1 404 Not Found
Server: nginx/1.19.1
Date: Thu, 24 Nov 2022 05:55:56 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding, accept-language,accept-charset
Content-Language: en
Content-Encoding: gzip