r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b720c31d9c036cd2ef10e35fa29f5345
ac625d2e69284e5080bede4b37c31af62c26338b
323b76eceb5d3ad339a1c55bfa7eea4e39741258e08d5005b691f712a9e9c81c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "323B76ECEB5D3AD339A1C55BFA7EEA4E39741258E08D5005B691F712A9E9C81C"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5305
Expires: Fri, 04 Nov 2022 04:17:21 GMT
Date: Fri, 04 Nov 2022 02:48:56 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2842f538168981f07b56e2c69379841a
0cc4ad0a78c1407bc9b7850eb0fb1a02130e3b22
3f9e8fb02409a19ceb54fee3f0f7f73eeed9e0ad63fa778eac7b3e4633d7d682
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1471
Cache-Control: max-age=112003
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:48:56 GMT
Etag: "63638a5c-1d7"
Expires: Sat, 05 Nov 2022 09:55:39 GMT
Last-Modified: Thu, 03 Nov 2022 09:31:08 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2842f538168981f07b56e2c69379841a
0cc4ad0a78c1407bc9b7850eb0fb1a02130e3b22
3f9e8fb02409a19ceb54fee3f0f7f73eeed9e0ad63fa778eac7b3e4633d7d682
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6246
Cache-Control: max-age=116778
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:48:56 GMT
Etag: "63638a5c-1d7"
Expires: Sat, 05 Nov 2022 11:15:14 GMT
Last-Modified: Thu, 03 Nov 2022 09:31:08 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9f3527f898221f8ba6b5015f6decc100
ead93baa0e9d3a6297be3377dc3a624e5a3f509a
73a068f907cc50dd60af18d545b4264dd44bc4b9f40bf9adfceea157fdc33099
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "73A068F907CC50DD60AF18D545B4264DD44BC4B9F40BF9ADFCEEA157FDC33099"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2272
Expires: Fri, 04 Nov 2022 03:26:48 GMT
Date: Fri, 04 Nov 2022 02:48:56 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
Alt-Used: 0
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 04 Nov 2022 02:42:55 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 361
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: eAn9qHdzgxZ2q+qBIwEjcoJw+Y/zDmxeXXiCg4/wvM8tPZUka0z1n5JwnHcKKafVsIUAa9yz5DA=
x-amz-request-id: 2EFHC5JZVF4CDBZY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 04 Nov 2022 02:09:24 GMT
age: 2372
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 02:48:56 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ccr360.ca/wp-admin/rms/57415821762206627/
198.57.241.205200 OK 3.2 kB URL HTTP/1.1 ccr360.ca/wp-admin/rms/57415821762206627/
IP 198.57.241.205:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 9d069ef885e76d304d4dc51722445709
fffbc75bf78662efebfac0d2f49f73e7f5f40d7f
743ea09f9de53e0047a159994f334c01a03e0a650536ab2e599fad7731f4de0e
Analyzer Verdict Alert openphish Royal Mail
fortinet Phishing
GET /wp-admin/rms/57415821762206627/ HTTP/1.1
Host: ccr360.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 02:48:56 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3194
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
cdnjs.cloudflare.com/ajax/libs/jquery/3.1.1/jquery.min.js
104.17.25.14200 OK 30 kB URL HTTP/1.1 cdnjs.cloudflare.com/ajax/libs/jquery/3.1.1/jquery.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (32030)
Hash 04ba0252a9f264db106d4eaab8df4ccb
cf52d9b3df7839c5c64fbf33aafeced74b3db750
397852429e768ffbd12a78ce4b94f14e3ab4afabf84acb07c0bb5b7798e6e0b2
GET /ajax/libs/jquery/3.1.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ccr360.ca/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 02:48:56 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 30244
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=30672000
Content-Encoding: gzip
ETag: "5eb03ec4-152b5"
Last-Modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
Cross-Origin-Resource-Policy: cross-origin
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 120756
Expires: Wed, 25 Oct 2023 02:48:56 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LJIwrCtvmWBZ5vUWJLpx9woEgFmOkEddBUkGJHvmXzc5CsomSBGz%2F5PlcQ5CJlW9xqOIOiljQWU5W8QoOPB6oQUwcFSSGkcPONKQS9BCTxBe47MOXMlTD5nQkVC2D%2FMYkeAOB6xl"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 764a089c0db8b4f7-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 83d486212bc14d22d62e975c3f9b8064
0796c3e06235a719b345c9a9ff431b38ddf7be75
90f4954ad1dcdfc5f5ba2912fa54fb71cb0f8419566c983b240a90ea9029c052
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6598
Cache-Control: max-age=104544
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:48:56 GMT
Etag: "63635932-116"
Expires: Sat, 05 Nov 2022 07:51:20 GMT
Last-Modified: Thu, 03 Nov 2022 06:01:22 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 278
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
104.17.25.14200 OK 5.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.17.25.14:0
File type ASCII text, with very long lines (30837)
Hash 109d1ed85cd01f9cdab73a4cac5bf80d
d6c6498ad46de2d8e2008a8ff68e364ae7f16b32
8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ccr360.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 04 Nov 2022 02:48:56 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 123680
expires: Wed, 25 Oct 2023 02:48:56 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DUZGJh048kJo92qKJKbwRsWXtIPhK92O0jRpguSl%2FLZTT4TFjjEvW%2Bj6uiBP2QHE2BteQpJ2UDOugTJ4uRoCIoEWBgg%2BzD1TTK8XIykxnJXhhLPasCia5brlzErzEogTPl0OPPlV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 764a089c1f8cb4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js
216.58.207.202200 OK 31 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP 216.58.207.202:0
File type ASCII text, with very long lines (65451)
Hash 903bc7a7e510f87aa5d0201eb59a0832
ac9aa4dd94cde1bcba9037e94087138b127e41fc
41a7ac8150cc9f38421451d5143c1ffec7a1f1fafbf7a7fc0f51b98ad699cf8f
GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ccr360.ca/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 31021
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 01 Nov 2022 15:06:02 GMT
Expires: Wed, 01 Nov 2023 15:06:02 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Fri, 08 May 2020 07:05:03 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 214974
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 83d486212bc14d22d62e975c3f9b8064
0796c3e06235a719b345c9a9ff431b38ddf7be75
90f4954ad1dcdfc5f5ba2912fa54fb71cb0f8419566c983b240a90ea9029c052
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5797
Cache-Control: max-age=103742
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:48:57 GMT
Etag: "63635932-116"
Expires: Sat, 05 Nov 2022 07:37:59 GMT
Last-Modified: Thu, 03 Nov 2022 06:01:22 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 670d0b2f341e8ff1e4ee9fe4fe21e210
dcd277daebf63623b985a81a96bcdc6a6f67c518
75029ab8db44811ac539aa3e2f1f8e015a45b80cb5a1099cec7d64e55e2a72a6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1583
Cache-Control: max-age=107054
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:48:57 GMT
Etag: "63637698-1d7"
Expires: Sat, 05 Nov 2022 08:33:11 GMT
Last-Modified: Thu, 03 Nov 2022 08:06:48 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
ccr360.ca/wp-admin/rms/57415821762206627/htdocs/css/style_001.css
198.57.241.205200 OK 1.1 kB URL HTTP/1.1 ccr360.ca/wp-admin/rms/57415821762206627/htdocs/css/style_001.css
IP 198.57.241.205:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 40df57a0621b7cd9b4f144d3d7efc760
94f2148e982246b448d7335e5ac491112e7e9670
04f8d0ff40e09fb6ab6dd1c00a1b9ad7204f04f6d438f7c9369660fd9b3696af
GET /wp-admin/rms/57415821762206627/htdocs/css/style_001.css HTTP/1.1
Host: ccr360.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ccr360.ca/wp-admin/rms/57415821762206627/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 02:48:57 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 03 Nov 2022 22:28:51 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1129
Keep-Alive: timeout=5, max=75
Content-Type: text/css
ccr360.ca/wp-admin/rms/57415821762206627/htdocs/css/style_002.css
198.57.241.205200 OK 396 B URL HTTP/1.1 ccr360.ca/wp-admin/rms/57415821762206627/htdocs/css/style_002.css
IP 198.57.241.205:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash b2e5d40406fbcc1685493e718d8ebdfe
297a7999308480486ab9ba912106d01bbcdc1096
7047c8d6722acae4b05de36c4de1ed14dba73617034a8c3c51f99fc6a047b311
GET /wp-admin/rms/57415821762206627/htdocs/css/style_002.css HTTP/1.1
Host: ccr360.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ccr360.ca/wp-admin/rms/57415821762206627/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 02:48:57 GMT
Server: Apache
Last-Modified: Thu, 03 Nov 2022 22:28:51 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 396
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
ccr360.ca/wp-admin/rms/57415821762206627/htdocs/css/style_003.css
198.57.241.205200 OK 659 B URL HTTP/1.1 ccr360.ca/wp-admin/rms/57415821762206627/htdocs/css/style_003.css
IP 198.57.241.205:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 22d9a73a78af233d0ea588469890b682
a76f42b5f0e20857b018d9be90c5897c81cce58a
6e564fc55da0efd38b6b10adc65f4e22ec40ea9fccaca6938af72dff2096a129
GET /wp-admin/rms/57415821762206627/htdocs/css/style_003.css HTTP/1.1
Host: ccr360.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ccr360.ca/wp-admin/rms/57415821762206627/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 02:48:57 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 03 Nov 2022 22:28:51 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 659
Keep-Alive: timeout=5, max=75
Content-Type: text/css
ccr360.ca/wp-admin/rms/57415821762206627/sourceApp/chronopost_cc.js
198.57.241.205200 OK 519 B URL HTTP/1.1 ccr360.ca/wp-admin/rms/57415821762206627/sourceApp/chronopost_cc.js
IP 198.57.241.205:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash a8db1104ba4b0e79b28beb816387b1bb
6617a757b6dcdac302d328f69998e5367e9d629e
043e28f3b25f37eb908587445385aec2d53a9ba1d13c19e317e42e909aa5c5b8
Analyzer Verdict Alert fortinet Phishing
GET /wp-admin/rms/57415821762206627/sourceApp/chronopost_cc.js HTTP/1.1
Host: ccr360.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ccr360.ca/wp-admin/rms/57415821762206627/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 02:48:57 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 03 Nov 2022 22:28:51 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 519
Keep-Alive: timeout=5, max=75
Content-Type: application/javascript
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash af0914cda3339b5d3dd2aea43ce5b6b0
973b51162deb236f103352217fbad537fde4eff6
71339c783574d45f753c01e010ffd542bae6d2eb205553881848b6c1306687b5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4034
Cache-Control: max-age=127521
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:48:57 GMT
Etag: "6363bcf8-117"
Expires: Sat, 05 Nov 2022 14:14:18 GMT
Last-Modified: Thu, 03 Nov 2022 13:07:04 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 279
push.services.mozilla.com/
54.189.157.130101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.189.157.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: GyyoZl51jw8vY6JsmR7obw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: qKHWlsBa+VfGMQZA4kpJZ+bQn3E=
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash af0914cda3339b5d3dd2aea43ce5b6b0
973b51162deb236f103352217fbad537fde4eff6
71339c783574d45f753c01e010ffd542bae6d2eb205553881848b6c1306687b5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1831
Cache-Control: max-age=125318
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:48:57 GMT
Etag: "6363bcf8-117"
Expires: Sat, 05 Nov 2022 13:37:35 GMT
Last-Modified: Thu, 03 Nov 2022 13:07:04 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash af0914cda3339b5d3dd2aea43ce5b6b0
973b51162deb236f103352217fbad537fde4eff6
71339c783574d45f753c01e010ffd542bae6d2eb205553881848b6c1306687b5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4034
Cache-Control: max-age=127521
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:48:57 GMT
Etag: "6363bcf8-117"
Expires: Sat, 05 Nov 2022 14:14:18 GMT
Last-Modified: Thu, 03 Nov 2022 13:07:04 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 279
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 0f541a4f3d5df086adc4584c0b181efa
d2eb47a64c9fc2553fac77f8f46c478f9cc7a010
09125be2b1f608903306d29ffac90b515512e8f8cb09513d785b28c2b6d5930c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=146312
Date: Fri, 04 Nov 2022 02:48:57 GMT
Etag: "6363fef8-1d7"
Expires: Sat, 05 Nov 2022 19:27:29 GMT
Last-Modified: Thu, 03 Nov 2022 17:48:40 GMT
Server: ECS (bsa/EB20)
X-Cache: Miss from cloudfront
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: c9oI0JGz8gZRaYElo5fvZl_nrs3gO_-8Tjs21-fsA65QZ_htkvalMg==
Age: 5929
ccr360.ca/wp-admin/rms/57415821762206627/htdocs/img/iconregistro.png
198.57.241.205200 OK 690 B URL HTTP/1.1 ccr360.ca/wp-admin/rms/57415821762206627/htdocs/img/iconregistro.png
IP 198.57.241.205:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 26 x 26, 8-bit colormap, non-interlaced\012- data
Hash 5595536e2b34e56dc9aa2f500eac4062
ff17e1537185376abd6909e1091341c2d75e5190
74f8f3583825566b1d2235d4324f179fb8d9ef7001cfb7e3d147cd4867514559
GET /wp-admin/rms/57415821762206627/htdocs/img/iconregistro.png HTTP/1.1
Host: ccr360.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ccr360.ca/wp-admin/rms/57415821762206627/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 02:48:57 GMT
Server: Apache
Last-Modified: Thu, 03 Nov 2022 22:28:51 GMT
Accept-Ranges: bytes
Content-Length: 690
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/png
ccr360.ca/wp-admin/rms/57415821762206627/htdocs/img/logo.png
198.57.241.205200 OK 11 kB URL HTTP/1.1 ccr360.ca/wp-admin/rms/57415821762206627/htdocs/img/logo.png
IP 198.57.241.205:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 164 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 31c8a543afb1ae13bebf117b25b08273
7451fc7825f515406f7048631830b63cf6adf2c8
51408c93862de94b7471bcb9238cb17a0bf5047d77e9f4408471918cdd87ec1d
GET /wp-admin/rms/57415821762206627/htdocs/img/logo.png HTTP/1.1
Host: ccr360.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ccr360.ca/wp-admin/rms/57415821762206627/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 02:48:57 GMT
Server: Apache
Last-Modified: Thu, 03 Nov 2022 22:28:51 GMT
Accept-Ranges: bytes
Content-Length: 10850
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/png
ccr360.ca/wp-admin/rms/57415821762206627/htdocs/img/ServiRed1.gif
198.57.241.205200 OK 1.5 kB URL HTTP/1.1 ccr360.ca/wp-admin/rms/57415821762206627/htdocs/img/ServiRed1.gif
IP 198.57.241.205:0
ASN #46606 UNIFIEDLAYER-AS-1
File type GIF image data, version 89a, 125 x 35\012- data
Hash e830477051fb17058aa79ff161cddfbe
d560809864a8468c49d1c025673f8163a724ae6f
03c008491f6da9011f2ac15f1ab5e5482ee34bc42b26a1b60f07ad0f88d91d5a
GET /wp-admin/rms/57415821762206627/htdocs/img/ServiRed1.gif HTTP/1.1
Host: ccr360.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ccr360.ca/wp-admin/rms/57415821762206627/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 02:48:57 GMT
Server: Apache
Last-Modified: Thu, 03 Nov 2022 22:28:51 GMT
Accept-Ranges: bytes
Content-Length: 1523
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/gif
ccr360.ca/wp-admin/rms/57415821762206627/htdocs/img/logopie.png
198.57.241.205200 OK 7.5 kB URL HTTP/1.1 ccr360.ca/wp-admin/rms/57415821762206627/htdocs/img/logopie.png
IP 198.57.241.205:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 178 x 19, 8-bit/color RGBA, non-interlaced\012- data
Hash 6da6e4a1d790e15a650e209fe83d0d66
9ca404ae46dd6c8f93102c52a4be53048c47784e
6509b65b317182be4fcddc25c8590945ef86e1d3a6c4d7cf491dbf56526dd585
GET /wp-admin/rms/57415821762206627/htdocs/img/logopie.png HTTP/1.1
Host: ccr360.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ccr360.ca/wp-admin/rms/57415821762206627/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 02:48:57 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 03 Nov 2022 22:28:51 GMT
Accept-Ranges: bytes
Content-Length: 7539
Keep-Alive: timeout=5, max=75
Content-Type: image/png
ccr360.ca/wp-admin/rms/57415821762206627/htdocs/img/separadortop.png
198.57.241.205200 OK 97 B URL HTTP/1.1 ccr360.ca/wp-admin/rms/57415821762206627/htdocs/img/separadortop.png
IP 198.57.241.205:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1 x 20, 1-bit colormap, non-interlaced\012- data
Hash d25ae19c4aebe129cf2b14bff174214a
fceab361472dc2b6bcd3727abe3145054a5f39b1
044b69c2166262f61d2dbd4bb073af205c8dd16511aef56eee98e7377c90a6f1
GET /wp-admin/rms/57415821762206627/htdocs/img/separadortop.png HTTP/1.1
Host: ccr360.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ccr360.ca/wp-admin/rms/57415821762206627/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 02:48:57 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 03 Nov 2022 22:28:51 GMT
Accept-Ranges: bytes
Content-Length: 97
Keep-Alive: timeout=5, max=75
Content-Type: image/png
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash af0914cda3339b5d3dd2aea43ce5b6b0
973b51162deb236f103352217fbad537fde4eff6
71339c783574d45f753c01e010ffd542bae6d2eb205553881848b6c1306687b5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1831
Cache-Control: max-age=125318
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 02:48:57 GMT
Etag: "6363bcf8-117"
Expires: Sat, 05 Nov 2022 13:37:35 GMT
Last-Modified: Thu, 03 Nov 2022 13:07:04 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279
www.seur.com/images/fondoregistro4.png
107.154.76.162200 OK 543 B URL HTTP/2 www.seur.com/images/fondoregistro4.png
IP 107.154.76.162:0
File type PNG image data, 611 x 35, 8-bit colormap, non-interlaced\012- data
Hash 0112a6a8c62fff453c1a8807a897415d
fd9880bf0de798ee250c264b7aaadaca8d1c2883
376528af8443c26375488dbfec269230db4de68c13ed8a50edd55b26b839406c
GET /images/fondoregistro4.png HTTP/1.1
Host: www.seur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ccr360.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "4009a-54e-5ec783b9e1600"
last-modified: Wed, 02 Nov 2022 08:00:24 GMT
content-type: image/png
content-length: 543
cache-control: max-age=1, public
expires: Fri, 04 Nov 2022 02:48:58 GMT
date: Fri, 04 Nov 2022 02:48:57 GMT
set-cookie: visid_incap_768687=8Y8bCyTQR4qhDTS29HrzsZh9ZGMAAAAAQUIPAAAAAADnrI0KxHUib2iTnbCuHGqC; expires=Fri, 03 Nov 2023 22:34:21 GMT; HttpOnly; path=/; Domain=.seur.com
incap_ses_722_768687=pgytFG0IMgvliFeNFRAFCph9ZGMAAAAA3jB17gSza8IMMqZU987TiA==; path=/; Domain=.seur.com
x-cdn: Imperva
x-iinfo: 6-3077110-3071225 2cNN RT(1667530136577 18) q(0 0 0 0) r(0 0) U19
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v5.15.4/webfonts/free-fa-solid-900.woff2
172.64.202.28200 OK 78 kB URL HTTP/2 ka-f.fontawesome.com/releases/v5.15.4/webfonts/free-fa-solid-900.woff2
IP 172.64.202.28:0
File type Web Open Font Format (Version 2), TrueType, length 78168, version 331.-31196\012- data
Hash a9fd1225fb2cd32320e2b931dca01089
44ec5c6a868b4ce62350d9f040ed8e18f7a1d128
c5dd43f53f3af822cbf17b1fb75f46192cdbd51724f277acf6cf0dacb3fd57e7
GET /releases/v5.15.4/webfonts/free-fa-solid-900.woff2 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ccr360.ca
Connection: keep-alive
Referer: http://ccr360.ca/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 04 Nov 2022 02:48:57 GMT
content-type: font/woff2
content-length: 78168
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:58:24 GMT
etag: "a9fd1225fb2cd32320e2b931dca01089"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 329cb27be8d7871661ed5a94ecaacb28.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: aSvYig96vRGgYOcsrxHdov68RNEXuQ6y7HbNG4LH1pFoSrNWx6fo3g==
age: 118783
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ktjpv14ITSUzGweQXvC9cYFVHJJHzbA%2BV2no8qSNTuYnDTl07MkpXhA2lwKirU%2BVDNBYNXH0YKrypmqQ096V2BCKhfwdT6Oq3M2IYpZFL0cb%2F9K1%2FUReBFHz4PHn%2FfGRXVEoflZLyw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 764a089fd859770d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-font-face.min.css?token=00ce2dd051
172.64.202.28200 OK 78 kB URL HTTP/2 ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-font-face.min.css?token=00ce2dd051
IP 172.64.202.28:0
File type ASCII text, with very long lines (2774)
Hash 664f6ff0f0b5a450b50cb1747b747a6f
afdfa364cbee6df25ab505998d56ef7d39ec1b41
44f65e25b11571348abde4db8e3428f5d710c320c2c8d7dc3a2632307aa1f625
GET /releases/v5.15.4/css/free-v4-font-face.min.css?token=00ce2dd051 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ccr360.ca/
Origin: http://ccr360.ca
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 04 Nov 2022 02:48:57 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"f2e0b2680d9b0bcb6e0039c4424e5a59"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 cb8e2cd001e8928a49dc551941d5c7da.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: YS3FEalRbAKlV_cWTsSmbvjbPR9W8Lw-aItPU9sENGfMtS0XsZ2bZA==
age: 51548
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=msvtgrAZJJPEveC%2FVfWxqpXoTG%2ByKvU9MreWzVhLr5UoRVy352B%2FX6djBikLVa6UMfE0dJfmS7yh%2Fkhk1DIbVmno7Zos5Ti5%2BXVUnkfY3QYfQaMovaRcBQw6CP7OPlU7rBFuWaP7MQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 764a089ecf22770d-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ccr360.ca/wp-admin/rms/57415821762206627/htdocs/css/PlutoSansLight.otf
198.57.241.205200 OK 75 kB URL HTTP/1.1 ccr360.ca/wp-admin/rms/57415821762206627/htdocs/css/PlutoSansLight.otf
IP 198.57.241.205:0
ASN #46606 UNIFIEDLAYER-AS-1
File type OpenType font data\012- data
Hash 634ecfbc08e49b8d517ab13e0f090c15
d83da1785f498396d0b116ad11d5c53e260d544c
9313dc0bb516dd915f005d6ef818f501bc48caa176920d423212ec0250531454
Analyzer Verdict Alert fortinet Phishing
GET /wp-admin/rms/57415821762206627/htdocs/css/PlutoSansLight.otf HTTP/1.1
Host: ccr360.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ccr360.ca/wp-admin/rms/57415821762206627/htdocs/css/style_001.css
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 02:48:57 GMT
Server: Apache
Last-Modified: Thu, 03 Nov 2022 22:28:51 GMT
Accept-Ranges: bytes
Content-Length: 75004
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: font/otf
s3-us-west-2.amazonaws.com/s.cdpn.io/3/jquery.inputmask.bundle.js
52.218.252.80200 OK 176 kB URL HTTP/1.1 s3-us-west-2.amazonaws.com/s.cdpn.io/3/jquery.inputmask.bundle.js
IP 52.218.252.80:0
File type ASCII text, with very long lines (544)
Size 176 kB (176433 bytes)
Hash f0b02d9f2d3c6679556e63935ac23320
384bb74cdb2840da6eaa9400242faf4a2fac3daa
f708ad894d421f32ed297a914632db6bc1577841d1c210b34f1a0821ea0aaa4b
GET /s.cdpn.io/3/jquery.inputmask.bundle.js HTTP/1.1
Host: s3-us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ccr360.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: vg3dzn3rkwxFZxVeTYzpy2rZDvLCZRqReS7arpE1dxoUwrVncFyB9Vl1hJAJjViq/2L5fNOK3nY=
x-amz-request-id: 83Z5325Z4SV9S70S
Date: Fri, 04 Nov 2022 02:48:58 GMT
Last-Modified: Wed, 30 Nov 2016 13:28:36 GMT
ETag: "f0b02d9f2d3c6679556e63935ac23320"
Cache-Control: public
Expires: Mon, 30 Nov 2026 13:28:34 GMT
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Content-Length: 176433
ccr360.ca/wp-admin/rms/57415821762206627/htdocs/img/favicon.jpg
198.57.241.205200 OK 10 kB URL HTTP/1.1 ccr360.ca/wp-admin/rms/57415821762206627/htdocs/img/favicon.jpg
IP 198.57.241.205:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=32, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=32], baseline, precision 8, 32x32, components 3\012- data
Hash d6de414c0e62ac7cccd32d0baf8cf50d
90a113e371b7ec1c7b48d7cde14ab694093616e7
c7c2594979d0588d3383d9ebc44eaa6331a5cb12d82b4239d3838eca0d021378
GET /wp-admin/rms/57415821762206627/htdocs/img/favicon.jpg HTTP/1.1
Host: ccr360.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ccr360.ca/wp-admin/rms/57415821762206627/
HTTP/1.1 200 OK
Date: Fri, 04 Nov 2022 02:48:58 GMT
Server: Apache
Last-Modified: Thu, 03 Nov 2022 22:28:51 GMT
Accept-Ranges: bytes
Content-Length: 10100
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/jpeg
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6435
Expires: Fri, 04 Nov 2022 04:36:13 GMT
Date: Fri, 04 Nov 2022 02:48:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6435
Expires: Fri, 04 Nov 2022 04:36:13 GMT
Date: Fri, 04 Nov 2022 02:48:58 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178fad61-d3ee-4517-8b79-a9952a3fff8a.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178fad61-d3ee-4517-8b79-a9952a3fff8a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c67d8f51aff77b24d8cb3fd9ec479813
ebf192d282f763c6220d8d83423b4c1cb76332a1
941bab2bc237c080c6364198d3a183e5b513f72533c98b931b4503476f92e395
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178fad61-d3ee-4517-8b79-a9952a3fff8a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 1f8c3db7-e6e5-4503-a865-1a2407d91ada
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC0XYGP_oAMFvnw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364342f-66953a9f6f31915c375fd6ab;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:35:43 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 1vWc25iNyC4YygyUrZFKyk6DkYdFr2SibxZEfUzQ53ZEGp9VKgloNg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 21:51:37 GMT
age: 17841
etag: "ebf192d282f763c6220d8d83423b4c1cb76332a1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f483454-b074-4576-b487-76a14ccb2059.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f483454-b074-4576-b487-76a14ccb2059.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bd006407a4ea0fbeec2f1351a71f30bc
d1625420cdc79643e759247b0e9ac89dadfbe956
fd461665ee463fad26300630684a11e3c520485e3b001c2f08439d50589ddbb7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f483454-b074-4576-b487-76a14ccb2059.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10527
x-amzn-requestid: 1b709c25-8424-49d8-bc0e-dac3fbc154ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: apNEzH5ZoAMFWdA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359f551-3fb0703f27b571cf7f85e59e;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 03:04:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9A2gds6rdrlTJCrN3m05Yl3azoOYGCEaCd2OBH8qq21wHR8WgqI3CA==
via: 1.1 d16c3f15bd14953a9d4109eaaa991de2.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 00:54:07 GMT
age: 6891
etag: "d1625420cdc79643e759247b0e9ac89dadfbe956"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9c5889c4-d0fb-4545-94b4-f16b26e61aa2.webp
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9c5889c4-d0fb-4545-94b4-f16b26e61aa2.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 214b020ed417fbc4785b92f2bdb98834
57eed480ede736a0a948e9bd7c604427a8acf8a2
4228512d040b122d6e5d50418c507edeedbef4aee2fbb0a952da270734ece18f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9c5889c4-d0fb-4545-94b4-f16b26e61aa2.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8084
x-amzn-requestid: 2d0c493a-5c15-415e-a9d3-516c03b11dd8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC0WwGueIAMF--w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364342b-4d68f618620e18050704340e;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: fSwsKH1erxART-SQu0L7QcUoKiGiSkFNu-no6OvsVFJMHu4yOUdAGg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 22:10:40 GMT
age: 16698
etag: "57eed480ede736a0a948e9bd7c604427a8acf8a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa936c143-4ac1-4c0f-a7c9-35638fe066ce.jpeg
34.120.237.76200 OK 3.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa936c143-4ac1-4c0f-a7c9-35638fe066ce.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3e2c2868516a60c335361ccef89c6090
b71b29860aca017ac124fb4037cec5dc3101474e
3ac5d5410a9d31317c2f31fe3e08cdb188e26bfffce5275b85cce986f2841d22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa936c143-4ac1-4c0f-a7c9-35638fe066ce.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3559
x-amzn-requestid: 63f00dbe-834f-4fbb-91c0-5e5378dc48aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC0SvEOaIAMFRBg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63643411-43380b3457de631756afdb81;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:35:13 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: aJvfSrMGHDPyvjiAKHpqxfv7u4JNottpvAEcRBvmZ51qmQb9ucUEdA==
via: 1.1 ef6538ee7be7b17c84d06edb0f4c0a1a.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 21:53:09 GMT
age: 17749
etag: "b71b29860aca017ac124fb4037cec5dc3101474e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d1ffcec-ac2d-417a-85e7-0b20637346cd.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d1ffcec-ac2d-417a-85e7-0b20637346cd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 624674545b8fd9d4011cd2c1ddc67746
4f69918018bc3fb0ab6344279a8ab5aaab062279
f1b180cacf2f836e35b567d009e173dc8a8339d146d7157fc6bb429cc4e3adc6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d1ffcec-ac2d-417a-85e7-0b20637346cd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6535
x-amzn-requestid: 92454d07-58a9-4fbf-b528-bd481f9d8bbd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC0WkH58oAMFV2w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63643429-6394260c28b7778c7573b946;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:35:37 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Hwoh3Qf6s6V9hUqTmgYd2yXVdWAi0cHINMzCJM0ZCdNXhHLLiy_hYA==
via: 1.1 637ef0a7bc474e9a314fa064b65e8082.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 21:51:50 GMT
age: 17828
etag: "4f69918018bc3fb0ab6344279a8ab5aaab062279"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=00ce2dd051
172.64.202.28200 OK 20 kB URL HTTP/2 ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=00ce2dd051
IP 172.64.202.28:0
File type ASCII text, with very long lines (60130)
Hash aa48ae565f3c289310cb01e0de5a54ac
3d48a7f2d7e6e2a92677f08d1459f233a9ce079c
3add5dedb834cffb1ea8a1a4c8f5fe251c19f632c79c01b6b2421c43dffa5857
GET /releases/v5.15.4/css/free.min.css?token=00ce2dd051 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ccr360.ca/
Origin: http://ccr360.ca
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 04 Nov 2022 02:48:57 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"a12ec7ebe75a4d59a5dd6b79e2ba2e16"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 76cca2ef798b9dc955bb151bf3bff218.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: tMlbt6xfCzOssD_VbaOyUkzvnWJW74UecbDroIkCy41sqmre9wTMEA==
age: 118783
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9Gbpi4YTIdtIdns9oLw1ldl7FHmJsmnid%2Fwq80ocz%2BXXroLjQbyOSuk1RUWP%2Feu2O5ocVBJ1TlsMnSjFJkcY4zP5%2FWXjd7I0dpN3LHtc4Lhi752tpkpN90GylLpZbQFSifArdZF%2FUQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 764a089ecf1a770d-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kit.fontawesome.com/00ce2dd051.js
104.18.23.52200 OK 0 B URL HTTP/2 kit.fontawesome.com/00ce2dd051.js
IP 104.18.23.52:0
GET /00ce2dd051.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://ccr360.ca
Connection: keep-alive
Referer: http://ccr360.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 04 Nov 2022 02:48:57 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: FyPTKEz2w_qA_UH_Li6i
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 764a089c1ed2b506-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=00ce2dd051
172.64.202.28200 OK 0 B URL HTTP/2 ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=00ce2dd051
IP 172.64.202.28:0
GET /releases/v5.15.4/css/free-v4-shims.min.css?token=00ce2dd051 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ccr360.ca/
Origin: http://ccr360.ca
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 04 Nov 2022 02:48:57 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"76f34b71fc9fb641507ff6a822cc07f5"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 24639548230786af4bba1a9e26c6080e.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: LHpkkpIrbrUz8b3lI4JnbouYjNiOoZS8gHikiLS7SPXFTejw_vtoUw==
age: 51548
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4HXHI3glRvvEDyzfEvA2bPVYnBQyPyVcaEJPMXXDv0kQii%2FlIDX6hzzszduF9f1nZLhHqsLcFlk0PHjG2dlpMmxpFo5dvvG4AbSy4sJRJqQC9bWf5cTOPe09pPQnaRVmFT9C8J9OYw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 764a089eff52770d-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css
104.18.10.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css
IP 104.18.10.207:0
GET /bootstrap/4.0.0/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://ccr360.ca
Connection: keep-alive
Referer: http://ccr360.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 04 Nov 2022 02:48:56 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"450fc463b8b1a349df717056fbb3e078"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 08/20/2022 02:36:43
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: b800625a2f71ae0a997f522139c4ed76
cdn-cache: HIT
cf-cache-status: HIT
age: 89442
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 764a089c2e7fb4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2