Report - mail-update-2023.company.com/

Report Overview

Submitted URL
mail-update-2023.company.com/
IP
199.34.228.55
ASN
#27647 WEEBLY
Submitted
2023-01-20 08:02:16
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
12

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	368 B	1.9 kB	104.18.20.226
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	796 B	93.184.220.29
p.typekit.net	620	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	531 B	390 B	23.36.76.186
www.weebly.com	21455	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	348 B	4.0 kB	74.115.50.110
use.typekit.net	494	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	119 kB	23.36.76.186
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	394 B	1.2 kB	216.58.211.4
ec.editmysite.com	12806	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	433 B	470 B	35.85.214.41
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	69 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
mail-update-2023.company.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.3 kB	13 kB	199.34.228.55
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	34.215.55.199
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	296 B	18 kB	142.250.74.110
cdn2.editmysite.com	11564	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.2 kB	364 kB	151.101.65.46
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.8 kB	142.250.74.131
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	465 B	165 kB	142.250.74.99

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-01-19	medium	mail-update-2023.company.com/	AT&T Inc.
2023-01-19	medium	mail-update-2023.company.com/	AT&T Inc.
2023-01-19	medium	mail-update-2023.company.com/	AT&T Inc.
2023-01-19	medium	mail-update-2023.company.com/	AT&T Inc.
2023-01-19	medium	mail-update-2023.company.com/	AT&T Inc.
2023-01-19	medium	mail-update-2023.company.com/	AT&T Inc.

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (22)

	URL	Size	First Seen	Last Seen
	mail-update-2023.company.com/	266 B	2023-03-13	2023-03-13
Pretty URL mail-update-2023.company.com/ IP 199.34.228.55 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:50:39 Last Seen2023-03-13 03:50:39 Times Seen1 Hash 958b2a7ec9a7dc84261250b2a6e364e3 c041eb358870fe56eee5ce352fe82739e64a2ac5 581ac946e3dfc60c94fea41af4cf68f384c3263a36cd18949548315ea64d3b46 Loading...

	mail-update-2023.company.com/	22 B	2023-03-07	2024-04-19
Pretty URL mail-update-2023.company.com/ IP 199.34.228.55 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2024-04-19 08:00:10 Times Seen2254 Hash 9a33cbad7c996ea8903a3eb3332a125c 8efed109b301f8aa0f3768dcd824d669d0129741 5d3b8f4578ca89904a46d014a8433346ca2773e8691f6cc9d09b2b30f0802dbc Loading...

	mail-update-2023.company.com/	655 B	2023-03-07	2024-04-12
Pretty URL mail-update-2023.company.com/ IP 199.34.228.55 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:47 Last Seen2024-04-12 01:58:40 Times Seen197 Hash 281d44c09019792d8dca082979acb61d a149459e9cf088254d997f8830ad4752f766818e b75f9b50ed6bf45bb64864df0b4cfd3f650fb18ba0ad368494b67a91590758e1 Loading...

	mail-update-2023.company.com/	1.2 kB	2023-03-07	2024-04-19
Pretty URL mail-update-2023.company.com/ IP 199.34.228.55 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-19 08:00:10 Times Seen2878 Hash 24449345e209b8641a813eaef44a5244 21617897e4d35717e2e41b766501fbd883a8f16d 3e72636c6cf854c8657ccbf9e03f7af05bd4836066c329417a4f8251bb5d18c1 Loading...

	www.google-analytics.com/ga.js	46 kB	2023-03-07	2024-04-16
Pretty URL www.google-analytics.com/ga.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2024-04-16 23:24:27 Times Seen3495 Hash e9372f0ebbcf71f851e3d321ef2a8e5a 2c7d19d1af7d97085c977d1b69dcb8b84483d87c 1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f Loading...

	mail-update-2023.company.com/	23 B	2023-03-07	2024-04-18
Pretty URL mail-update-2023.company.com/ IP 199.34.228.55 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:41 Last Seen2024-04-18 10:55:16 Times Seen177 Hash 9c38874ff03199b732e554ac5d16e57e 21f73581cb04ef4d2261a25326d62f3a26dd6aa5 19661648f5429fc450334613db4baadec338413076878891d57053b6e3638d62 Loading...

	mail-update-2023.company.com/	62 B	2023-03-07	2024-04-19
Pretty URL mail-update-2023.company.com/ IP 199.34.228.55 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-19 08:00:10 Times Seen2680 Hash 1afa8234115c6f382672d91917a6fb26 e96957cb655865327588927ebc34d1ae376e9e64 45988af53e17c3bc8103bbe22bd47dd6d2d03d4a90c4116dc0621ab24ff87258 Loading...

	www.google.com/recaptcha/api.js?_=1674201725713	850 B	2023-03-13	2023-04-02
Pretty URL www.google.com/recaptcha/api.js?_=1674201725713 IP 216.58.211.4 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:24:51 Last Seen2023-04-02 21:32:24 Times Seen3 Hash 42721d2823d4c076ec1fe8cff7df5beb 70ca93c88fa465ca56877c3ff711620dceac764f 739d15813e44541ba24dfd3ba66d2051426686cf7d2e7b7b5aa72d9a1d5fc135 Loading...

	cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1673987310&	181 kB	2023-03-12	2023-03-14
Pretty URL cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1673987310& IP 151.101.65.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 15:26:02 Last Seen2023-03-14 00:07:24 Times Seen1 Hash e9a279a9d10efe4ffc02e9419cec94a7 6c36b7e0a49fa1b000cfd34543b0d1b5ec4d9874 c07c4c91e8faf55b8b15a8f518d7ca4ade1d7bf71eb071317a7aa33d909da2af Loading...

	mail-update-2023.company.com/	1.8 kB	2023-03-13	2023-03-13
Pretty URL mail-update-2023.company.com/ IP 199.34.228.55 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:50:39 Last Seen2023-03-13 03:50:39 Times Seen1 Hash ce3c6be9a25197089d5184166f4fbf33 6eab83d205bd935c009a63c294fe9328d57b2683 a345a95011690c0784a0e16d2de32f364fb80bf099a7a55e1bcd896459605ebb Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 19:02:48 Times Seen36965685 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	mail-update-2023.company.com/	117 B	2023-03-07	2024-04-19
Pretty URL mail-update-2023.company.com/ IP 199.34.228.55 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-19 08:00:10 Times Seen2904 Hash ef142665f07ac27f698aa34d471c4439 b9e0d81f97054a9a0a68f57096d992ba58f33184 fbfd3b11452dce82b76e405100aece37dcfe12df4c71fb8f2bc2fe2166e9f07f Loading...

	mail-update-2023.company.com/	1.8 kB	2023-03-07	2024-04-19
Pretty URL mail-update-2023.company.com/ IP 199.34.228.55 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-19 08:00:10 Times Seen2901 Hash 563cec0ace2baea4e867b491f66cd6b0 fc4451f8fa76c5d1e3714e9008510633cffaa4f7 e4538493fc4f43f93806d0239acac9b38b0453c8440dc5ba4fcb47eae6ab2556 Loading...

	mail-update-2023.company.com/	35 B	2023-03-07	2024-04-19
Pretty URL mail-update-2023.company.com/ IP 199.34.228.55 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2024-04-19 08:00:10 Times Seen2918 Hash 13385ea3f3e6184de3bfa80f08fe938b 6f859a2fd4b7e15ed74990516d97a52e7b4eeb20 5e87d85ec57af5d97b6c0d4c6e766afd2b53d077102827d19625a37d8cd11c2d Loading...

	mail-update-2023.company.com/	32 B	2023-03-07	2024-04-19
Pretty URL mail-update-2023.company.com/ IP 199.34.228.55 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2024-04-19 08:00:10 Times Seen2927 Hash 1bca01edca83d94091a2bb38d7ef8183 d05117e4ab3b3461be3855e95813a5c607e3ca95 fcf1cbf5cfad6d605868f42d38a0a937f5e6eaa91b05dcfbbbc95e4c3e23e528 Loading...

	mail-update-2023.company.com/	2.3 kB	2023-03-13	2023-03-13
Pretty URL mail-update-2023.company.com/ IP 199.34.228.55 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:50:39 Last Seen2023-03-13 03:50:39 Times Seen1 Hash 366cd286a0b239ff29349b3b8489e48a 3b90e9fe4b5f19135a4e765bbdd34460233ebe02 14c8ba97ae68af01fca97259ac4f81e2f7653955c8216c7a3d4cad27639e8fc5 Loading...

	cdn2.editmysite.com/js/wsnbn/snowday262.js	75 kB	2023-03-07	2024-04-19
Pretty URL cdn2.editmysite.com/js/wsnbn/snowday262.js IP 151.101.65.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:13 Last Seen2024-04-19 17:44:29 Times Seen28286 Hash 99bbe560926e583b8e99036251deb783 8d81b73ae06f664f9d9e53dd5829a799bf434491 648e766bf519673f9a90cc336cbecede80dcbe3419b43d36ecbb25d88f5584a3 Loading...

	cdn2.editmysite.com/js/jquery-1.8.3.min.js	94 kB	2023-03-07	2024-04-19
Pretty URL cdn2.editmysite.com/js/jquery-1.8.3.min.js IP 151.101.65.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:53 Last Seen2024-04-19 13:22:27 Times Seen16185 Hash 3576a6e73c9dccdbbc4a2cf8ff544ad7 06e872300088b9ba8a08427d28ed0efcdf9c6ff5 61c6caebd23921741fb5ffe6603f16634fca9840c2bf56ac8201e9264d6daccf Loading...

	mail-update-2023.company.com/	64 B	2023-03-13	2023-03-13
Pretty URL mail-update-2023.company.com/ IP 199.34.228.55 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:50:39 Last Seen2023-03-13 03:50:39 Times Seen1 Hash 2b6729778bc39564ddaba7a9865cfd0e 82d7ba22cfd28011f82ec49eff95e5fe9ddf7ef9 2fcc650d4005fb15e12701f26b3bc2713eadc673adf7b164243ac0196c44ba24 Loading...

	mail-update-2023.company.com/	62 B	2023-03-07	2024-04-19
Pretty URL mail-update-2023.company.com/ IP 199.34.228.55 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-19 08:00:10 Times Seen2913 Hash 461bd236ddeca3b8b6e3cca8599ccb43 73c74d3281452e483c11f944d798738afc7f5b89 aebd4ac1ead5b4987d8b975cafa889ca1a6831175bc206ca9552863e390bc0f1 Loading...

	use.typekit.net/nxe1ajf.js	18 kB	2023-03-07	2023-03-25
Pretty URL use.typekit.net/nxe1ajf.js IP 23.36.76.186 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:47 Last Seen2023-03-25 22:18:34 Times Seen4 Hash 2fc71c058eadfd45123aba77fdb20da4 8f1efbc0c6063f90dcd0352853faf85619961dbf eaab058577f0791a0bad0a8abd8dc50a477f03ad2724dad7d19352386c309003 Loading...

	mail-update-2023.company.com/	664 B	2023-03-07	2024-04-19
Pretty URL mail-update-2023.company.com/ IP 199.34.228.55 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-04-19 08:00:10 Times Seen2872 Hash fdd0b895b9cf69a9a4f4817533aa51f5 afc67ab62c3c91df626260407845fc41bf5d895e a50f8a487c23d76460681440220a85a28cdb09912ef451d59aa2b4f47c32aea0 Loading...

HTTP Transactions (61)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
37284a837312d6586460a3b86bbe7bd0
6ac0847abd48eb8607597218aaa2cb2d434c012b
6a0e11bb042555d72b397ae0cc3d5e242d3a3fe04418e28ffd222decca7d16ca

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A0E11BB042555D72B397AE0CC3D5E242D3A3FE04418E28FFD222DECCA7D16CA"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5876
Expires: Fri, 20 Jan 2023 09:40:01 GMT
Date: Fri, 20 Jan 2023 08:02:05 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cc07d664b5dadee6f9120d54904dfa57
df75a55b0b2019684a6c512bee528c51a2c4a756
14a1bd6315a3256468edafedfd1c02a6ba147914c0f01e8504e7d8cc67781c34

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "14A1BD6315A3256468EDAFEDFD1C02A6BA147914C0F01E8504E7D8CC67781C34"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9081
Expires: Fri, 20 Jan 2023 10:33:26 GMT
Date: Fri, 20 Jan 2023 08:02:05 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
38c102db4bcfb9c4fb19174986950fd3
51c2cc8a3aca4da5c9ab3438467c29203fc0b0c3
dad6b64bc9f4dd827471ccc2e5273fceee574685376083aaa80f9d2f918037f2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DAD6B64BC9F4DD827471CCC2E5273FCEEE574685376083AAA80F9D2F918037F2"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19765
Expires: Fri, 20 Jan 2023 13:31:30 GMT
Date: Fri, 20 Jan 2023 08:02:05 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 20 Jan 2023 07:49:33 GMT
content-type: application/json
age: 752
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

mail-update-2023.company.com/

199.34.228.55

200 OK

6.1 kB

URL HTTP/1.1
mail-update-2023.company.com/
IP
199.34.228.55:0
ASN
#27647 WEEBLY

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1350), with CRLF, LF line terminators
Size
6.1 kB (6133 bytes)
Hash
d9180d84c43508a1a33332c7b6b890b7
f00ab9d6e52c3e783d90c2fa6a454c6653981656
dcf181d06dddd0602962a95aaaa7293bb1878290ef73d47db28a7ca9f36037b9

Detections

Analyzer	Verdict	Alert
openphish	AT&T Inc.

HTTP Headers

GET / HTTP/1.1
Host: mail-update-2023.company.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Fri, 20 Jan 2023 08:02:05 GMT
Server: Apache
Vary: X-W-SSL,Accept-Encoding,User-Agent
Set-Cookie: is_mobile=0; path=/; domain=mail-update-2023.company.com
language=en; expires=Fri, 03-Feb-2023 08:02:05 GMT; Max-Age=1209600; path=/
Cache-Control: private
ETag: W/"fae3c2599a04b3973d96977725566977-gzip"
Content-Encoding: gzip
X-Host: blu43.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 6133
Keep-Alive: timeout=10, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: e/Apus6AOLKPtYZj68w5jOoG029lLaOWlErw2VShDgbbNn7N8JtocyoSCOdb6PMq40oIQkFOP/o=
x-amz-request-id: C3EKK3GTKA53TK29
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 20 Jan 2023 07:17:31 GMT
age: 2674
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 20 Jan 2023 08:02:05 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

cdn2.editmysite.com/fonts/Josefin_Sans/font.css?2

151.101.65.46

200 OK

369 B

URL HTTP/1.1
cdn2.editmysite.com/fonts/Josefin_Sans/font.css?2
IP
151.101.65.46:0
ASN
#54113 FASTLY

File type
ASCII text
Size
369 B (369 bytes)
Hash
61972000424433036aaa2a1a70cac8cf
8ea702922b0e3106922bab608bbaffcac8593561
53be35406d06762ecd5caa4416a449d646ca5df909689cf1ef6fa70683f38ab7

HTTP Headers

GET /fonts/Josefin_Sans/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mail-update-2023.company.com/

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 369
Server: nginx
Content-Type: text/css
Last-Modified: Tue, 10 Jan 2023 18:07:38 GMT
ETag: "63bda96a-a3c"
Expires: Thu, 26 Jan 2023 12:03:27 GMT
Cache-Control: max-age=1209600
X-Host: grn46.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 20 Jan 2023 08:02:05 GMT
Age: 676718
X-Served-By: cache-sjc10064-SJC, cache-bma1622-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 25, 8
X-Timer: S1674201725.455450,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn2.editmysite.com/css/old/fancybox.css?1673987310

151.101.65.46

200 OK

1.2 kB

URL HTTP/1.1
cdn2.editmysite.com/css/old/fancybox.css?1673987310
IP
151.101.65.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (3910)
Size
1.2 kB (1218 bytes)
Hash
b644e92258f4c7c0b4270047652d1e60
93734d52ee9e86a768159e514076051813c39cd9
29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907

HTTP Headers

GET /css/old/fancybox.css?1673987310 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mail-update-2023.company.com/

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1218
Server: nginx
Content-Type: text/css
Last-Modified: Tue, 17 Jan 2023 19:56:22 GMT
ETag: "63c6fd66-f47"
Expires: Tue, 31 Jan 2023 20:31:41 GMT
Cache-Control: max-age=1209600
X-Host: grn79.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 20 Jan 2023 08:02:05 GMT
Age: 214224
X-Served-By: cache-sjc10053-SJC, cache-bma1633-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 32, 21
X-Timer: S1674201725.455287,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn2.editmysite.com/css/social-icons.css?buildtime=1673987310

151.101.65.46

200 OK

1.6 kB

URL HTTP/1.1
cdn2.editmysite.com/css/social-icons.css?buildtime=1673987310
IP
151.101.65.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (13080)
Size
1.6 kB (1639 bytes)
Hash
93353defee3a1b298721b4eab3dc258e
00ebd49f5c18cea1d82a1ff717cafdcfd641bcaf
2bdcd84a5887729b7f695523c088b3b852453a1ab0d66b295a9b72758d92bbd2

HTTP Headers

GET /css/social-icons.css?buildtime=1673987310 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mail-update-2023.company.com/

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1639
Server: nginx
Content-Type: text/css
Last-Modified: Tue, 17 Jan 2023 19:56:16 GMT
ETag: W/"63c6fd60-3319"
Expires: Tue, 31 Jan 2023 20:31:37 GMT
Cache-Control: max-age=1209600
X-Host: grn129.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 20 Jan 2023 08:02:05 GMT
Age: 214228
X-Served-By: cache-sjc10037-SJC, cache-bma1655-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 32, 197
X-Timer: S1674201725.455057,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn2.editmysite.com/fonts/Quattrocento/font.css?2

151.101.65.46

200 OK

278 B

URL HTTP/1.1
cdn2.editmysite.com/fonts/Quattrocento/font.css?2
IP
151.101.65.46:0
ASN
#54113 FASTLY

File type
ASCII text
Size
278 B (278 bytes)
Hash
89f53b13b9fb642f135f7e95bb63aa1c
17070d03b523b9bf26fff8a2caddb4875b3c452b
b7e57a5cab9d35e7050dc07ae397be67e0abefc881ce5027c567918281a6ec3e

HTTP Headers

GET /fonts/Quattrocento/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mail-update-2023.company.com/

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 278
Server: nginx
Content-Type: text/css
Last-Modified: Fri, 06 Jan 2023 20:17:59 GMT
ETag: "63b881f7-358"
Expires: Mon, 23 Jan 2023 12:06:11 GMT
Cache-Control: max-age=1209600
X-Host: grn119.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 20 Jan 2023 08:02:05 GMT
Age: 935755
X-Served-By: cache-sjc10051-SJC, cache-bma1663-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 809, 5
X-Timer: S1674201725.456334,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn2.editmysite.com/css/sites.css?buildTime=1673987310

151.101.65.46

200 OK

30 kB

URL HTTP/1.1
cdn2.editmysite.com/css/sites.css?buildTime=1673987310
IP
151.101.65.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65536), with no line terminators
Size
30 kB (29746 bytes)
Hash
d10158b22b553f723d99dc78eaee6390
80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6
939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e

HTTP Headers

GET /css/sites.css?buildTime=1673987310 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mail-update-2023.company.com/

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 29746
Server: nginx
Content-Type: text/css
Last-Modified: Tue, 17 Jan 2023 19:56:16 GMT
ETag: W/"63c6fd60-347ac"
Expires: Tue, 31 Jan 2023 20:31:35 GMT
Cache-Control: max-age=1209600
X-Host: blu124.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 20 Jan 2023 08:02:05 GMT
Age: 214229
X-Served-By: cache-sjc10067-SJC, cache-bma1637-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 14, 445
X-Timer: S1674201725.454814,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn2.editmysite.com/fonts/Crimson_Text/font.css?2

151.101.65.46

200 OK

331 B

URL HTTP/1.1
cdn2.editmysite.com/fonts/Crimson_Text/font.css?2
IP
151.101.65.46:0
ASN
#54113 FASTLY

File type
ASCII text
Size
331 B (331 bytes)
Hash
297fb1dbadb800cab350a71f86f2d805
aac92d8de39dea8b175f55a845dbde461d1a96c1
42901c57766c2e03f738c5762137aec0091e7343cfdc193cd3d82fc2e53b71c9

HTTP Headers

GET /fonts/Crimson_Text/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mail-update-2023.company.com/

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 331
Server: nginx
Content-Type: text/css
Last-Modified: Mon, 16 Jan 2023 14:57:39 GMT
ETag: "63c565e3-6ca"
Expires: Wed, 01 Feb 2023 11:34:58 GMT
Cache-Control: max-age=1209600
X-Host: blu108.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 20 Jan 2023 08:02:05 GMT
Age: 160027
X-Served-By: cache-sjc10053-SJC, cache-bma1643-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 25, 1
X-Timer: S1674201725.456672,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn2.editmysite.com/fonts/Montserrat/font.css?2

151.101.65.46

200 OK

276 B

URL HTTP/1.1
cdn2.editmysite.com/fonts/Montserrat/font.css?2
IP
151.101.65.46:0
ASN
#54113 FASTLY

File type
ASCII text
Size
276 B (276 bytes)
Hash
559eefb63fcae2a3f85471dd3903016a
5e4a9f5b529f2f6d2ee1de511231f856e673066c
09110f0d179c52677e2caf24d4bad70e5d717acb2eff2887ac36dbc1d9583fae

HTTP Headers

GET /fonts/Montserrat/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mail-update-2023.company.com/

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 276
Server: nginx
Content-Type: text/css
Last-Modified: Tue, 10 Jan 2023 18:07:38 GMT
ETag: "63bda96a-354"
Expires: Thu, 26 Jan 2023 18:07:57 GMT
Cache-Control: max-age=1209600
X-Host: blu41.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 20 Jan 2023 08:02:05 GMT
Age: 654848
X-Served-By: cache-sjc10070-SJC, cache-bma1622-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 18, 1040
X-Timer: S1674201725.464430,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn2.editmysite.com/fonts/Playfair_Display/font.css?2

151.101.65.46

200 OK

332 B

URL HTTP/1.1
cdn2.editmysite.com/fonts/Playfair_Display/font.css?2
IP
151.101.65.46:0
ASN
#54113 FASTLY

File type
ASCII text
Size
332 B (332 bytes)
Hash
d19ce27855300b97a4501c36fb6e1e0a
e7fd66d174d796dbe52e4fb2f22db19b575e5702
f75c76daf4f88f3977cd0f6cff4ad2897497d71349cbf3c8e1e610d4bbcdab0d

HTTP Headers

GET /fonts/Playfair_Display/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mail-update-2023.company.com/

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 332
Server: nginx
Content-Type: text/css
Last-Modified: Tue, 10 Jan 2023 18:07:39 GMT
ETag: "63bda96b-6da"
Expires: Thu, 26 Jan 2023 18:07:15 GMT
Cache-Control: max-age=1209600
X-Host: grn144.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 20 Jan 2023 08:02:05 GMT
Age: 654890
X-Served-By: cache-sjc10078-SJC, cache-bma1633-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1487, 44
X-Timer: S1674201725.464817,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn2.editmysite.com/fonts/Lora/font.css?2

151.101.65.46

200 OK

321 B

URL HTTP/1.1
cdn2.editmysite.com/fonts/Lora/font.css?2
IP
151.101.65.46:0
ASN
#54113 FASTLY

File type
ASCII text
Size
321 B (321 bytes)
Hash
73bc8f5c36181a89bab4c7388c6e964b
a1489dba52342bcb09ae18bb2c71805489ac2c6a
ffe360dfb861aaf517a2bea4dd5dcb9615073984186f2e3bd4a49b00871b776d

HTTP Headers

GET /fonts/Lora/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mail-update-2023.company.com/

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 321
Server: nginx
Content-Type: text/css
Last-Modified: Mon, 16 Jan 2023 14:57:40 GMT
ETag: "63c565e4-6aa"
Expires: Tue, 31 Jan 2023 11:35:59 GMT
Cache-Control: max-age=1209600
X-Host: blu81.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 20 Jan 2023 08:02:05 GMT
Age: 246366
X-Served-By: cache-sjc10034-SJC, cache-bma1655-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 20, 360
X-Timer: S1674201725.465564,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1673987310&

151.101.65.46

200 OK

33 kB

URL HTTP/1.1
cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1673987310&
IP
151.101.65.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65024)
Size
33 kB (32827 bytes)
Hash
db51c112ec84c20205d2bb0c609b12bb
95145a5ca01c0c404f9143b25f22b93a15e7fa3f
2136f467e2f6295a5978f160521626ee3b2295ed3611e5a6750869dfe37c236e

HTTP Headers

GET /js/lang/en/stl.js?buildTime=1673987310& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mail-update-2023.company.com/

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 32827
Server: nginx
Content-Type: application/javascript
Last-Modified: Tue, 17 Jan 2023 19:55:07 GMT
ETag: "63c6fd1b-2c2a4"
Expires: Tue, 31 Jan 2023 20:31:35 GMT
Cache-Control: max-age=1209600
X-Host: blu141.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 20 Jan 2023 08:02:05 GMT
Age: 214230
X-Served-By: cache-sjc10047-SJC, cache-bma1663-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 13, 340
X-Timer: S1674201725.466185,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn2.editmysite.com/js/site/main.js?buildTime=1673987310

151.101.65.46

200 OK

0 B

URL HTTP/1.1
cdn2.editmysite.com/js/site/main.js?buildTime=1673987310
IP
151.101.65.46:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/site/main.js?buildTime=1673987310 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mail-update-2023.company.com/

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 146400
Server: nginx
Content-Type: application/javascript
Last-Modified: Tue, 17 Jan 2023 19:56:39 GMT
ETag: "63c6fd77-74804"
Expires: Tue, 31 Jan 2023 20:31:36 GMT
Cache-Control: max-age=1209600
X-Host: grn79.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 20 Jan 2023 08:02:05 GMT
Age: 214229
X-Served-By: cache-sjc10071-SJC, cache-bma1637-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 10, 4
X-Timer: S1674201725.465863,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1673987310

151.101.65.46

200 OK

159 kB

URL HTTP/1.1
cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1673987310
IP
151.101.65.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (32007)
Size
159 kB (158982 bytes)
Hash
c21d75280f52dcc8183f032627fb619c
0512c8f160b0d0842c1ce9b020ade68ef8120a04
9e9fb70dc252c27c63ac4b0b99bea392abeb327cb6155e6b9fd27372be72e617

HTTP Headers

GET /js/site/main-customer-accounts-site.js?buildTime=1673987310 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mail-update-2023.company.com/

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 158982
Server: nginx
Content-Type: application/javascript
Last-Modified: Tue, 17 Jan 2023 19:56:39 GMT
ETag: "63c6fd77-825b0"
Expires: Tue, 31 Jan 2023 20:31:36 GMT
Cache-Control: max-age=1209600
X-Host: grn91.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 20 Jan 2023 08:02:05 GMT
Age: 214229
X-Served-By: cache-sjc10050-SJC, cache-bma1643-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 10, 8
X-Timer: S1674201725.466897,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn2.editmysite.com/js/jquery-1.8.3.min.js

151.101.65.46

200 OK

34 kB

URL HTTP/2
cdn2.editmysite.com/js/jquery-1.8.3.min.js
IP
151.101.65.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65483)
Size
34 kB (33467 bytes)
Hash
67a5a77f65f13559b3d723829f2e0108
5e861ec7c2993abffc3591d6132c47bc7cdc3e98
ac4ffabaed7382810a3829d812e1a45c77984a1dbfaf7d172c8bc19b3cf68ca6

HTTP Headers

GET /js/jquery-1.8.3.min.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mail-update-2023.company.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 10 Jan 2023 21:19:17 GMT
etag: "63bdd655-16dc4"
expires: Tue, 24 Jan 2023 23:08:14 GMT
cache-control: max-age=1209600
x-host: blu28.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 20 Jan 2023 08:02:05 GMT
age: 809631
x-served-by: cache-sjc10032-SJC, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 23, 2332
x-timer: S1674201726.543669,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 33467
X-Firefox-Spdy: h2

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1462 bytes)
Hash
56f2d1497915fdf8d5554abe659af9f3
a442bda90360b455edd2af7eec9dee04a7af0316
3cbcecb23ce868840d267655b663536142f7850cef912785f8437697f0916251

HTTP Headers

POST /ca/gsatlasr3dvtlsca2022q3 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 20 Jan 2023 08:02:05 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "E6ADF4E0417F1F1BBE379327596D026E95072C60"
Expires: Fri, 20 Jan 2023 18:00:00 GMT
Last-Modified: Fri, 20 Jan 2023 06:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3160
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78c64930eca8b4eb-OSL

mail-update-2023.company.com/files/main_style.css?1674114634

199.34.228.55

500 Internal Server Error

0 B

URL HTTP/1.1
mail-update-2023.company.com/files/main_style.css?1674114634
IP
199.34.228.55:0
ASN
#27647 WEEBLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
openphish	AT&T Inc.

HTTP Headers

GET /files/main_style.css?1674114634 HTTP/1.1
Host: mail-update-2023.company.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mail-update-2023.company.com/
Cookie: is_mobile=0; language=en

HTTP/1.1 500 Internal Server Error
Server: nginx
Date: Fri, 20 Jan 2023 08:02:05 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: grn61.sf2p.intern.weebly.net

mail-update-2023.company.com/files/theme/plugins.js?1673627446

199.34.228.55

500 Internal Server Error

0 B

URL HTTP/1.1
mail-update-2023.company.com/files/theme/plugins.js?1673627446
IP
199.34.228.55:0
ASN
#27647 WEEBLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
openphish	AT&T Inc.

HTTP Headers

GET /files/theme/plugins.js?1673627446 HTTP/1.1
Host: mail-update-2023.company.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mail-update-2023.company.com/
Cookie: is_mobile=0; language=en

HTTP/1.1 500 Internal Server Error
Server: nginx
Date: Fri, 20 Jan 2023 08:02:05 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: blu81.sf2p.intern.weebly.net

mail-update-2023.company.com/files/theme/custom.js?1673627446

199.34.228.55

500 Internal Server Error

0 B

URL HTTP/1.1
mail-update-2023.company.com/files/theme/custom.js?1673627446
IP
199.34.228.55:0
ASN
#27647 WEEBLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /files/theme/custom.js?1673627446 HTTP/1.1
Host: mail-update-2023.company.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mail-update-2023.company.com/
Cookie: is_mobile=0; language=en

HTTP/1.1 500 Internal Server Error
Server: nginx
Date: Fri, 20 Jan 2023 08:02:05 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: grn82.sf2p.intern.weebly.net

mail-update-2023.company.com/uploads/1/4/4/5/144505264/published/out.jpg?1674114431

199.34.228.55

200 OK

3.8 kB

URL HTTP/1.1
mail-update-2023.company.com/uploads/1/4/4/5/144505264/published/out.jpg?1674114431
IP
199.34.228.55:0
ASN
#27647 WEEBLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 170x153, components 3\012- data
Size
3.8 kB (3848 bytes)
Hash
f768c53eaf5301fd98d3db2a433d9ba2
0b9dcb367bdfd8ce7c655638f95facd8f36bab0c
923dd4a459826c455514c862a5b12668db920b7de947a86d4d4ae6d63a3bfffd

Detections

Analyzer	Verdict	Alert
openphish	AT&T Inc.

HTTP Headers

GET /uploads/1/4/4/5/144505264/published/out.jpg?1674114431 HTTP/1.1
Host: mail-update-2023.company.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mail-update-2023.company.com/
Cookie: is_mobile=0; language=en

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 20 Jan 2023 08:02:05 GMT
Content-Type: image/jpeg
Content-Length: 3848
Connection: keep-alive
Last-Modified: Thu, 19 Jan 2023 07:47:11 GMT
x-rgw-object-type: Normal
ETag: "f768c53eaf5301fd98d3db2a433d9ba2"
x-amz-request-id: tx000000000000062383857-0063c956ef-c696eea-sfo1
X-Storage-Bucket: z923d
X-Storage-Object: 923dd4a459826c455514c862a5b12668db920b7de947a86d4d4ae6d63a3bfffd
X-Host: blu40.sf2p.intern.weebly.net
Accept-Ranges: bytes

cdn2.editmysite.com/images/common/form_input_bg.gif

151.101.65.46

200 OK

46 B

URL HTTP/1.1
cdn2.editmysite.com/images/common/form_input_bg.gif
IP
151.101.65.46:0
ASN
#54113 FASTLY

File type
GIF image data, version 89a, 10 x 2\012- data
Size
46 B (46 bytes)
Hash
65b4a2162b0f82abb91661fc20946b1d
2e0799122f0ff240bd88644cde820972e797ec2b
b8fce252370181fc5b673e17ed101251a8d1139f253610fc912b07597219ab1b

HTTP Headers

GET /images/common/form_input_bg.gif HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn2.editmysite.com/css/sites.css?buildTime=1673987310

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 46
X-GUploader-UploadID: ADPycdv143wWqHeMozCBL9f5LcaRzVh5wpQWHtclqEEhWZmPCb6w8wr4f_Ec8vdizw7uQrzexZSDycQ9DcrHP66kQOtqRA
Cache-Control: public, max-age=86400, s-maxage=259200
Expires: Fri, 13 Jan 2023 02:38:16 GMT
Last-Modified: Thu, 25 May 2017 17:20:12 GMT
ETag: "65b4a2162b0f82abb91661fc20946b1d"
x-goog-generation: 1495732813003292
x-goog-metageneration: 6
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 46
Content-Type: image/gif
x-goog-hash: crc32c=nbFW7Q==, md5=ZbSiFisPgqu5FmH8IJRrHQ==
x-goog-storage-class: STANDARD
Server: UploadServer
Accept-Ranges: bytes
Date: Fri, 20 Jan 2023 08:02:05 GMT
Via: 1.1 varnish
Age: 105057
X-Served-By: cache-bma1643-BMA
X-Cache: HIT
X-Cache-Hits: 6
X-Timer: S1674201726.844849,VS0,VE0
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn2.editmysite.com/images/common/buttons/small_grey.png

151.101.65.46

200 OK

4.0 kB

URL HTTP/1.1
cdn2.editmysite.com/images/common/buttons/small_grey.png
IP
151.101.65.46:0
ASN
#54113 FASTLY

File type
PNG image data, 400 x 280, 8-bit/color RGBA, non-interlaced\012- data
Size
4.0 kB (4034 bytes)
Hash
61dafe0f6d2ca774a65b1550f051eed1
2b4e3bc03fbb14703895c035c35e258cc8015b73
7cabc5b806b8c7af3f807f29e419594cfcd2a2d8e90346b5ad3af148be181ca8

HTTP Headers

GET /images/common/buttons/small_grey.png HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn2.editmysite.com/css/sites.css?buildTime=1673987310

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 4034
X-GUploader-UploadID: ADPycdsGcgihQsQ1di1OcpG9hQHswEFepUu2TbkyOxAXOk1sPiDbnDLN3UC-l76nYUC5TyfdNuCOtSTSZ7RvXBcsjANMng
Cache-Control: public, max-age=86400, s-maxage=259200
Expires: Fri, 09 Dec 2022 01:52:17 GMT
Last-Modified: Thu, 25 May 2017 17:20:46 GMT
ETag: "61dafe0f6d2ca774a65b1550f051eed1"
x-goog-generation: 1495732846162533
x-goog-metageneration: 6
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 4034
Content-Type: image/png
x-goog-hash: crc32c=2KYPDg==, md5=Ydr+D20sp3SmWxVQ8FHu0Q==
x-goog-storage-class: STANDARD
Server: UploadServer
Accept-Ranges: bytes
Date: Fri, 20 Jan 2023 08:02:05 GMT
Via: 1.1 varnish
Age: 4283
X-Served-By: cache-bma1637-BMA
X-Cache: HIT
X-Cache-Hits: 1
X-Timer: S1674201726.845041,VS0,VE1
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn2.editmysite.com/fonts/Crimson_Text/bold.woff2

151.101.65.46

200 OK

26 kB

URL HTTP/1.1
cdn2.editmysite.com/fonts/Crimson_Text/bold.woff2
IP
151.101.65.46:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 25540, version 1.0\012- data
Size
26 kB (25540 bytes)
Hash
19ab149056827f64d640fa3d65f4e536
754c09533c5b386067e762ae85f39c345ec10915
60b9b9640fc716abd752df41f38ad81052f4905e42be2ff3c1f78e851863aee0

HTTP Headers

GET /fonts/Crimson_Text/bold.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://mail-update-2023.company.com
Connection: keep-alive
Referer: http://cdn2.editmysite.com/

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 25540
Server: nginx
Content-Type: font/woff2
Last-Modified: Fri, 06 Jan 2023 20:17:58 GMT
ETag: "63b881f6-63c4"
Expires: Mon, 23 Jan 2023 13:01:25 GMT
Cache-Control: max-age=1209600
X-Host: blu85.sf2p.intern.weebly.net
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 20 Jan 2023 08:02:05 GMT
Age: 932441
X-Served-By: cache-sjc10039-SJC, cache-bma1628-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 5367, 2
X-Timer: S1674201726.860177,VS0,VE0
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

cdn2.editmysite.com/fonts/Quattrocento/bold.woff2

151.101.65.46

200 OK

36 kB

URL HTTP/1.1
cdn2.editmysite.com/fonts/Quattrocento/bold.woff2
IP
151.101.65.46:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 35952, version 1.0\012- data
Size
36 kB (35952 bytes)
Hash
1ede9b49c70635ad07115dc802702118
a7cea5ca5f71b4fed7fc4a69434091c87faf71f5
5e232623c90033b45c4ca98c53ff6b4b5b6c54b1c2da2f05a3a1a7e68e2ca8f5

HTTP Headers

GET /fonts/Quattrocento/bold.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://mail-update-2023.company.com
Connection: keep-alive
Referer: http://cdn2.editmysite.com/

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 35952
Server: nginx
Content-Type: font/woff2
Last-Modified: Tue, 03 Jan 2023 17:24:49 GMT
ETag: "63b464e1-8c70"
Expires: Fri, 20 Jan 2023 22:35:04 GMT
Cache-Control: max-age=1209600
X-Host: blu114.sf2p.intern.weebly.net
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 20 Jan 2023 08:02:05 GMT
Age: 1157221
X-Served-By: cache-sjc10043-SJC, cache-bma1663-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 75, 1
X-Timer: S1674201726.863262,VS0,VE1
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

use.typekit.net/nxe1ajf.js

23.36.76.186

200 OK

6.7 kB

URL HTTP/2
use.typekit.net/nxe1ajf.js
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Unicode text, UTF-8 text, with very long lines (2258)
Size
6.7 kB (6739 bytes)
Hash
9189ca8b387979d5f2feeae6aad5ee64
938a8a1410b1927887df90e08aca8f587fb82fec
0429adbc18a19bede29b164f41a4ab37e2193bb45ec37471cc361c3292536f28

HTTP Headers

GET /nxe1ajf.js HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mail-update-2023.company.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: text/javascript;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: public, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 6739
date: Fri, 20 Jan 2023 08:02:05 GMT
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 20 Jan 2023 07:48:58 GMT
age: 787
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

use.typekit.net/af/1da05b/0000000000000000000132df/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3

23.36.76.186

200 OK

27 kB

URL HTTP/2
use.typekit.net/af/1da05b/0000000000000000000132df/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 26888, version 1.0\012- data
Size
27 kB (26888 bytes)
Hash
6c288957e1ea69636d76b434a53c65ef
b8e0e2074136f3b167567d532312cc0f838bdf5f
c763917e443b5583abccb9674edfaf82deada941ad5894d28c672c632fcd64dc

HTTP Headers

GET /af/1da05b/0000000000000000000132df/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://mail-update-2023.company.com
Connection: keep-alive
Referer: http://mail-update-2023.company.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 26888
etag: "49d80c15efa35e0c65ed7e265d2c0333b309aa4e"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Fri, 20 Jan 2023 08:02:06 GMT
X-Firefox-Spdy: h2

mail-update-2023.company.com/files/theme/plugins.js?1673627446

199.34.228.55

500 Internal Server Error

0 B

URL HTTP/1.1
mail-update-2023.company.com/files/theme/plugins.js?1673627446
IP
199.34.228.55:0
ASN
#27647 WEEBLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
openphish	AT&T Inc.

HTTP Headers

GET /files/theme/plugins.js?1673627446 HTTP/1.1
Host: mail-update-2023.company.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mail-update-2023.company.com/
Cookie: is_mobile=0; language=en

HTTP/1.1 500 Internal Server Error
Server: nginx
Date: Fri, 20 Jan 2023 08:02:05 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: grn72.sf2p.intern.weebly.net

use.typekit.net/af/32d3ee/0000000000000000000132e0/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i4&v=3

23.36.76.186

200 OK

27 kB

URL HTTP/2
use.typekit.net/af/32d3ee/0000000000000000000132e0/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i4&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 26568, version 1.0\012- data
Size
27 kB (26568 bytes)
Hash
69d7f21af427ec644440343c1bcd0606
186c5445f00e61e82a73ce3207965ce28c410f72
2a1074cd5044c672760ad745fdbbd125381d63a86f5380b57a1dd28ad0da0d75

HTTP Headers

GET /af/32d3ee/0000000000000000000132e0/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://mail-update-2023.company.com
Connection: keep-alive
Referer: http://mail-update-2023.company.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 26568
etag: "c11943bfe7851ce643a829e2f815ebf55030b555"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Fri, 20 Jan 2023 08:02:06 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/031bc7/0000000000000000000132e5/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n9&v=3

23.36.76.186

200 OK

29 kB

URL HTTP/2
use.typekit.net/af/031bc7/0000000000000000000132e5/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n9&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 29052, version 1.0\012- data
Size
29 kB (29052 bytes)
Hash
3437e060c8710bccafd202e3da9a25dc
8e1bbee3d09332165b23156a05b43641f8d9f913
0656089e2e797a739897875d68a79ca62256a3c76ab3f4c31cb2f363cd778fee

HTTP Headers

GET /af/031bc7/0000000000000000000132e5/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n9&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://mail-update-2023.company.com
Connection: keep-alive
Referer: http://mail-update-2023.company.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 29052
etag: "a6e56bc1473094b110819c4cfa4169b4a97bd255"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Fri, 20 Jan 2023 08:02:06 GMT
X-Firefox-Spdy: h2

use.typekit.net/af/099730/0000000000000000000132e6/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i9&v=3

23.36.76.186

200 OK

28 kB

URL HTTP/2
use.typekit.net/af/099730/0000000000000000000132e6/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i9&v=3
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), CFF, length 27788, version 1.0\012- data
Size
28 kB (27788 bytes)
Hash
ccc7b72fb1a80abb8cbafa94de34a554
0c68982548e2af3c6d6e8c49128be51e3f5dd0d1
3d25e0efebb8648cd1fcb31872cf5200c2e577259ad589b6e802bb1d95d03efe

HTTP Headers

GET /af/099730/0000000000000000000132e6/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i9&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://mail-update-2023.company.com
Connection: keep-alive
Referer: http://mail-update-2023.company.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 27788
etag: "d76106a15ff619ce03b2c3ca28b4559b159b1b63"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Fri, 20 Jan 2023 08:02:06 GMT
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
dce4a8be753d4a93db03ffca50421c43
068040a8f69777484e545c0053ad54f273710797
7e6dddef8a4a5502c9715f8c20dcb75e132ecc875f13459a967c9e235e9ce3e4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4042
Cache-Control: max-age=94321
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 08:02:06 GMT
Etag: "63c90825-1d7"
Expires: Sat, 21 Jan 2023 10:14:07 GMT
Last-Modified: Thu, 19 Jan 2023 09:06:45 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

p.typekit.net/p.gif?s=1&k=nxe1ajf&ht=tk&h=mail-update-2023.company.com&f=10294.10295.10304.10305&a=3024360&js=1.21.0&app=typekit&e=js&_=1674201725464

23.36.76.186

200 OK

35 B

URL HTTP/2
p.typekit.net/p.gif?s=1&k=nxe1ajf&ht=tk&h=mail-update-2023.company.com&f=10294.10295.10304.10305&a=3024360&js=1.21.0&app=typekit&e=js&_=1674201725464
IP
23.36.76.186:0
ASN
#20940 Akamai International B.V.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
81144d75b3e69e9aa2fa3e9d83a64d03
f0fbc60b50edf5b2a0b76e0aa0537b76bf346ffc
9b9265c69a5cc295d1ab0d04e0273b3677db1a6216ce2ccf4efc8c277ed84b39

HTTP Headers

GET /p.gif?s=1&k=nxe1ajf&ht=tk&h=mail-update-2023.company.com&f=10294.10295.10304.10305&a=3024360&js=1.21.0&app=typekit&e=js&_=1674201725464 HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mail-update-2023.company.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=604800
content-type: image/gif
cross-origin-resource-policy: cross-origin
etag: "61c32ad2-23"
last-modified: Wed, 22 Dec 2021 13:40:34 GMT
server: nginx
content-length: 35
unused62: 8096267
date: Fri, 20 Jan 2023 08:02:06 GMT
X-Firefox-Spdy: h2

mail-update-2023.company.com/files/theme/custom.js?1673627446

199.34.228.55

500 Internal Server Error

0 B

URL HTTP/1.1
mail-update-2023.company.com/files/theme/custom.js?1673627446
IP
199.34.228.55:0
ASN
#27647 WEEBLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /files/theme/custom.js?1673627446 HTTP/1.1
Host: mail-update-2023.company.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mail-update-2023.company.com/
Cookie: is_mobile=0; language=en

HTTP/1.1 500 Internal Server Error
Server: nginx
Date: Fri, 20 Jan 2023 08:02:06 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: grn62.sf2p.intern.weebly.net

cdn2.editmysite.com/js/wsnbn/snowday262.js

151.101.65.46

200 OK

26 kB

URL HTTP/1.1
cdn2.editmysite.com/js/wsnbn/snowday262.js
IP
151.101.65.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (2512)
Size
26 kB (25752 bytes)
Hash
234327230add9a5a5d61a48829ea4565
7966cc0e4bd76f88ff193c8a99a067de804b7129
bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75

HTTP Headers

GET /js/wsnbn/snowday262.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mail-update-2023.company.com/

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 25752
Server: nginx
Content-Type: application/javascript
Last-Modified: Tue, 17 Jan 2023 19:56:07 GMT
ETag: "63c6fd57-124fe"
Expires: Thu, 02 Feb 2023 08:38:42 GMT
Cache-Control: max-age=1209600
X-Host: blu11.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 20 Jan 2023 08:02:06 GMT
Age: 84204
X-Served-By: cache-sjc10061-SJC, cache-bma1643-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 51, 1112
X-Timer: S1674201726.275983,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

push.services.mozilla.com/

34.215.55.199

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.215.55.199:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: GOppz3ZsiFP8M9Thcfj3Nw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 7R67Z5ClijZjSslVaiLAEwA2B9w=

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
149a7cdd0e94d31b2237ac241b3bad35
c6e2c3aba0c96ffc26114f79306930a4554964b3
fe9cd8e03a847278924ed338131b5ef16b8ef315db81f3e6387c0621baa46232

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 08:02:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/recaptcha/api.js?_=1674201725713

216.58.211.4

200 OK

555 B

URL HTTP/2
www.google.com/recaptcha/api.js?_=1674201725713
IP
216.58.211.4:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (850), with no line terminators
Size
555 B (555 bytes)
Hash
4fcc8cffc198bb1436d5e909506b0b2a
a6269c7bf1d3614a78b9ba99cfec2b29e0b6ab7e
33b2950d981dcb3af46004be957506985ea0c185b5436fc6435efcdea7699d89

HTTP Headers

GET /recaptcha/api.js?_=1674201725713 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mail-update-2023.company.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
expires: Fri, 20 Jan 2023 08:02:06 GMT
date: Fri, 20 Jan 2023 08:02:06 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 555
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
623f341fa3fd0e09d3a2b649ea882919
98c12490034b5633fcc6386b627947806495fc61
edf2873ae5aee565800ffbd38c62519e683adf9f4624bd49af202b64f158f5eb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 08:02:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

mail-update-2023.company.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]

199.34.228.55

200 OK

348 B

URL HTTP/1.1
mail-update-2023.company.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
IP
199.34.228.55:0
ASN
#27647 WEEBLY

File type
JSON data\012- , ASCII text, with very long lines (348), with no line terminators
Size
348 B (348 bytes)
Hash
a944dd688c99d2901d6719be713271c0
4f5454d5d434829baf46671638610791758725d9
adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49

Detections

Analyzer	Verdict	Alert
openphish	AT&T Inc.

HTTP Headers

POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1
Host: mail-update-2023.company.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: http://mail-update-2023.company.com
Connection: keep-alive
Referer: http://mail-update-2023.company.com/
Cookie: is_mobile=0; language=en; _snow_ses.8a80=*; _snow_id.8a80=c6f1d971-a880-4e79-8462-5f60141ce153.1674201726.1.1674201726.1674201726.be6e816d-e7b1-46cc-b5ed-2bf0d8654a4a

HTTP/1.1 200 OK
Date: Fri, 20 Jan 2023 08:02:06 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn124.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 348
Keep-Alive: timeout=10, max=57
Connection: Keep-Alive
Content-Type: application/json

www.google-analytics.com/ga.js

142.250.74.110

200 OK

17 kB

URL HTTP/1.1
www.google-analytics.com/ga.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1305)
Size
17 kB (17168 bytes)
Hash
01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d

HTTP Headers

GET /ga.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mail-update-2023.company.com/

HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Fri, 20 Jan 2023 07:06:56 GMT
Expires: Fri, 20 Jan 2023 09:06:56 GMT
Cache-Control: public, max-age=7200
Age: 3310
Last-Modified: Tue, 10 Jan 2023 21:29:14 GMT
Content-Type: text/javascript

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2710e6694429ed2cf5082b6e48eb6ebe
fd6e63ac90e1d86f37e5f46c98c7592a86106217
928ff655e10cf8a01515e4ca9ad5c7128044617acd61fbd46b613b4861aa5379

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 08:02:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/recaptcha/releases/Gg72x2_SHmxi8X0BLo33HMpr/recaptcha__en.js

142.250.74.99

200 OK

164 kB

URL HTTP/2
www.gstatic.com/recaptcha/releases/Gg72x2_SHmxi8X0BLo33HMpr/recaptcha__en.js
IP
142.250.74.99:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (636)
Size
164 kB (163892 bytes)
Hash
f2995e9cc3eedf3359420fb8d714b2ca
bdc68875ff161b35dbe9d8d85241e41c862ec8e3
fbe663b4f0f239aca19a5a2720c2b494ac58a53e0d68288155eb772ae04935c1

HTTP Headers

GET /recaptcha/releases/Gg72x2_SHmxi8X0BLo33HMpr/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://mail-update-2023.company.com
Connection: keep-alive
Referer: http://mail-update-2023.company.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163892
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jan 2023 11:59:09 GMT
expires: Fri, 19 Jan 2024 11:59:09 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Jan 2023 01:02:16 GMT
content-type: text/javascript
age: 72177
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2710e6694429ed2cf5082b6e48eb6ebe
fd6e63ac90e1d86f37e5f46c98c7592a86106217
928ff655e10cf8a01515e4ca9ad5c7128044617acd61fbd46b613b4861aa5379

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 20 Jan 2023 08:02:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ec.editmysite.com/com.snowplowanalytics.snowplow/tp2

35.85.214.41

200 OK

2 B

URL HTTP/1.1
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP
35.85.214.41:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df

HTTP Headers

POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json; charset=UTF-8
Content-Length: 1781
Origin: http://mail-update-2023.company.com
Connection: keep-alive
Referer: http://mail-update-2023.company.com/

HTTP/1.1 200 OK
Date: Fri, 20 Jan 2023 08:02:06 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 2
Connection: keep-alive
Server: nginx
Set-Cookie: sp=e9a444bc-3cf7-4f2e-b4e2-e9ae13165f04; Expires=Sat, 20 Jan 2024 08:02:06 GMT; Domain=; Path=/; Secure; SameSite=None
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
Access-Control-Allow-Origin: http://mail-update-2023.company.com
Access-Control-Allow-Credentials: true

www.weebly.com/uploads/reseller/assets/356764895-favicon.ico

74.115.50.110

404 Not Found

3.7 kB

URL HTTP/1.1
www.weebly.com/uploads/reseller/assets/356764895-favicon.ico
IP
74.115.50.110:0
ASN
#27647 WEEBLY

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (368)
Size
3.7 kB (3739 bytes)
Hash
2eeb3e560ca8f369be20ceb5858a4701
6c53e6b66c1bc6d0b93116e14fb79c30424bf36c
ac2d9485acf7e9c29d94d31f19d3aedda958cd4f6119ddc888fbbde52d6078dd

HTTP Headers

GET /uploads/reseller/assets/356764895-favicon.ico HTTP/1.1
Host: www.weebly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mail-update-2023.company.com/

HTTP/1.1 404 Not Found
Server: nginx
Date: Fri, 20 Jan 2023 08:02:06 GMT
Content-Type: text/html
Content-Length: 3739
Connection: keep-alive
ETag: "630fbfe7-e9b"
X-Host: grn73.sf2p.intern.weebly.net
X-W-DC: SFO

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18967
Expires: Fri, 20 Jan 2023 13:18:14 GMT
Date: Fri, 20 Jan 2023 08:02:07 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18967
Expires: Fri, 20 Jan 2023 13:18:14 GMT
Date: Fri, 20 Jan 2023 08:02:07 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18967
Expires: Fri, 20 Jan 2023 13:18:14 GMT
Date: Fri, 20 Jan 2023 08:02:07 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18967
Expires: Fri, 20 Jan 2023 13:18:14 GMT
Date: Fri, 20 Jan 2023 08:02:07 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51d12cb7-b021-47eb-a0b0-ff949f96b6de.jpeg

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51d12cb7-b021-47eb-a0b0-ff949f96b6de.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10359 bytes)
Hash
86ca07c03adbaa31374225110924b188
b1bd67630aea727a624f00b8cfd660d3b0848de1
471e3db64c9a6ec7ae4a76ea1a0835bd90dc55b389e3fe2f90c18c4dd2dbec27

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51d12cb7-b021-47eb-a0b0-ff949f96b6de.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10359
x-amzn-requestid: 0f2758cc-430d-4fd0-903a-a9acb7f6f7b1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fAmNKHw7oAMFmDQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c9b720-797bcd6220bfa89f0c7a76e1;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 21:33:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5F3zD1CI_SJgBrnnUC10ysMwNoxcN_CAhpZT4medpy5I3Nxuzo9MJQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 22:08:45 GMT
age: 35602
etag: "b1bd67630aea727a624f00b8cfd660d3b0848de1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccd80a00-28b1-4908-8a08-93d9379c2c2e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (8968 bytes)
Hash
7fe166bba32d744d841252f3e0e3957e
0f43812cddf63c4b33dbe922c27ca32ce9e6406f
db17ff864c0a82bee284dbcaaabfb5bb8afc7b764e3882b9b9408594d6000c54

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccd80a00-28b1-4908-8a08-93d9379c2c2e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8968
x-amzn-requestid: ec02528a-588b-46fe-8a37-eae74c3231fe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e7UZ2EWqoAMF8Cg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c79aa5-3bc049985202e47479d910ac;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 07:07:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Jf6Ad0o0J4U_QLrvkWF4plIdm3zITZkmQoZ-Zw0eYihzCL6RPrV_ig==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 07:50:47 GMT
age: 680
etag: "0f43812cddf63c4b33dbe922c27ca32ce9e6406f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbb60a79-f6ba-46cb-8679-5da65b53c107.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10867 bytes)
Hash
3638dc76d0638625ac9a31c038df3a44
deff1903d591273a96d538ae77988d8a080e228c
8382af3843ebeca8e5c13fdd60f7fb92b479915416f36686fce40566fd87ce68

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbb60a79-f6ba-46cb-8679-5da65b53c107.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10867
x-amzn-requestid: 8d882e21-d4c5-49ac-b76a-198cec065377
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fAnVTEfpoAMFgJA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c9b8ee-6579537e6a82269f4bc99395;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 21:41:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 83ssVBkpe4gl1kI8bKYu90Vee3r32V_IiqQxtvt_TfAFk6DsDfyoTw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 22:09:52 GMT
age: 35535
etag: "deff1903d591273a96d538ae77988d8a080e228c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa1ca04e6-1065-4245-9b8a-3ffd11238e67.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13383 bytes)
Hash
10654c1f4148826354dc8ccd8a3ed20b
6a53a07e284a316073fb2d40c2515978b662c947
d7d46a3c5470f1ead1b3a992782d4f07f913187f47155c62e13acf511930d569

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa1ca04e6-1065-4245-9b8a-3ffd11238e67.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13383
x-amzn-requestid: c9bade48-e562-4b6c-bd14-c9641643ae09
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fAmRaEodIAMFhow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c9b73c-3e5ddece6ab24f464b4a6cab;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 21:33:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: MPvJJabVYfTMYR4nuKuxwTx3P3uuw_sOrwBXIrG1O0iYQ8fhZzvAOQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 22:12:56 GMT
etag: "6a53a07e284a316073fb2d40c2515978b662c947"
content-type: image/jpeg
age: 35351
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0c09209-bc9e-43f8-ace4-c90a39c75c63.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6557 bytes)
Hash
5553b06c7dde4dc377f9f4e65bc8ace7
9dca5486485416d1aef199be08a50abd717addc7
33a5d1a21738218e0a6fe16d79045bd390af2e84073330a0a94c03812e1ba3ba

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0c09209-bc9e-43f8-ace4-c90a39c75c63.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6557
x-amzn-requestid: 70710215-b8fd-44eb-8b50-f0948f98366c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fAmQWFNvoAMF3ZQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c9b735-19e7e3865ce991cb5447f0f2;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 21:33:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Fc9dIiT5QQaTowAA6lp8ffJl4Niq3i_iVe54lYhAV52kJ8Q98EMJqQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 19 Jan 2023 22:04:44 GMT
age: 35843
etag: "9dca5486485416d1aef199be08a50abd717addc7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03bd9522-eeb8-49fc-b9be-5881b7bc5ce5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12174 bytes)
Hash
eeb5713ea23c36906255e88dc10eadbf
896d92a22f676b5946004feb723b094a8a36e09c
eb75a6fcc83d5134137caa6aa110e284a93149faab9557aea8853f9d63f82bc8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03bd9522-eeb8-49fc-b9be-5881b7bc5ce5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12174
x-amzn-requestid: 79fee0c7-be5a-4467-b351-aeb8a7e7d19f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e7ULMH_noAMF77g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c79a47-7d7d140511fbcb6063868fd3;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 07:05:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: inrHCjhHSn9kFnUL6cUzJLO2VNxG9Ui1Q2haNm-fb_VaVt74cbSX9A==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 07:43:05 GMT
age: 1142
etag: "896d92a22f676b5946004feb723b094a8a36e09c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (22)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML