Report - hs-bca.herokuapp.com/

Report Overview

Submitted URL
hs-bca.herokuapp.com/
IP
3.216.88.24
ASN
#14618 AMAZON-AES
Submitted
2022-10-16 15:34:38
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
10

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
akamai.tiqcdn.com	28769	2018-11-15T21:37:05Z	2023-03-09T09:38:23Z	398 B	555 B	23.38.200.249
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	338 B	1.0 kB	143.204.42.156
lptag.liveperson.net	3393	2012-08-02T18:15:51Z	2023-03-09T05:15:12Z	1.7 kB	4.4 kB	178.249.101.23
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-09T11:52:10Z	2.0 kB	4.7 kB	93.184.220.29
www.hsbc.ae	unknown	2012-07-11T16:10:02Z	2023-02-22T11:29:58Z	418 B	2.9 kB	54.230.111.14
tags.tiqcdn.com	969	2013-01-15T06:04:26Z	2023-03-09T05:44:42Z	5.5 kB	146 kB	23.38.200.249
www.isstmena.hsbc.ae	unknown	2018-07-24T13:53:13Z	2023-02-22T11:30:09Z	836 B	37 kB	91.214.5.199
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-09T05:09:18Z	758 B	2.8 kB	143.204.55.115
datacloud.tealiumiq.com	6058	2013-08-05T10:22:00Z	2023-03-09T12:30:01Z	680 B	1.1 kB	3.122.33.214
www.gstatic.com	unknown	2016-07-26T11:37:06Z	2023-03-09T12:13:09Z	1.2 kB	5.6 kB	142.250.74.163
cdn.hsbc.ae	unknown			6.1 kB	598 kB	23.36.79.17
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-09T10:04:36Z	2.6 kB	48 kB	34.120.237.76
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-09T05:09:05Z	2.0 kB	5.3 kB	23.36.77.32
hsbcbankglobal.demdex.net	240986			485 B	3.4 kB	54.154.199.204
connect.facebook.net	139	2012-05-22T04:51:28Z	2023-03-09T05:09:57Z	365 B	28 kB	31.13.72.12
www.facebook.com	99	2012-05-21T02:23:41Z	2021-02-04T00:31:35Z	746 B	349 B	31.13.72.36
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-09T11:25:06Z	1.6 kB	4.8 kB	104.18.32.68
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-09T05:09:49Z	401 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-09T05:09:48Z	321 B	229 B	34.117.237.239
cdn.appdynamics.com	3266	2017-01-26T21:49:30Z	2023-03-08T12:42:49Z	392 B	20 kB	143.204.55.51
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-09T05:09:50Z	4.3 kB	9.1 kB	142.250.74.3
visitor-service-eu-central-1.tealiumiq.com	41593	2017-01-30T06:04:05Z	2023-03-09T11:23:07Z	501 B	2.4 kB	18.157.51.52
hs-bca.herokuapp.com	unknown			8.1 kB	1.3 MB	3.219.96.23
lpcdn.lpsnmedia.net	3501	2014-04-27T12:17:58Z	2023-03-09T08:07:42Z	1.3 kB	28 kB	178.249.97.98
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-09T13:40:16Z	373 B	43 kB	142.250.74.168
cm.g.doubleclick.net	202	2012-05-22T11:58:28Z	2023-03-09T13:55:37Z	1.8 kB	4.4 kB	172.217.21.162
googleads.g.doubleclick.net	42	2021-02-20T16:43:32Z	2023-03-09T13:41:05Z	1.7 kB	4.1 kB	142.250.74.34
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-09T09:24:51Z	1.7 kB	1.5 kB	142.250.74.3
www.google.com	7	2015-05-10T13:11:19Z	2023-03-09T13:38:50Z	433 B	1.2 kB	142.250.74.164

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2022-10-16	medium	hs-bca.herokuapp.com/	HSBC Bank
2022-10-16	medium	hs-bca.herokuapp.com/	HSBC Bank
2022-10-16	medium	hs-bca.herokuapp.com/	HSBC Bank
2022-10-16	medium	hs-bca.herokuapp.com/	HSBC Bank
2022-10-16	medium	hs-bca.herokuapp.com/	HSBC Bank

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (40)

	URL	Size	First Seen	Last Seen
	hsbcbankglobal.demdex.net/dest5.html?d_nsid=0#https%3A%2F%2Fwww.hsbc.ae%2Fsecurity%2F	6.7 kB	2023-03-07	2024-03-23
Pretty URL hsbcbankglobal.demdex.net/dest5.html?d_nsid=0#https%3A%2F%2Fwww.hsbc.ae%2Fsecurity%2F IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:36 Last Seen2024-03-23 05:26:10 Times Seen1169 Hash bea2f42512935b636558e81988e2d51f 2c9772b62f6eb8a3cec9c3a6fb9c0b22c927e59d 0cc5ff21c24654308609656ebcfda2d792d15f6fda17c0a88b551fcf8e456fdb Loading...

	tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.56.js?utv=ut4.46.202007081247	40 kB	2023-03-10	2023-03-10
Pretty URL tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.56.js?utv=ut4.46.202007081247 IP 23.38.200.249 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2023-03-10 10:34:59 Times Seen1 Hash b18fb704b1b1e4d92e03de680d02447f 31fb58cafeda5cd9aa0bc06c2f53431be8c5e1d5 45fcb9b5044ae1ee78cea53720d3cd4886810d13b01fb3128c3fff24d05431a9 Loading...

	lpcdn.lpsnmedia.net/le_secure_storage/3.10.0.1-release_5033/storage.secure.min.js?loc=https%3A%2F%2Fwww.hsbc.ae&site=45066354&force=1&env=prod	38 kB	2023-03-07	2023-05-29
Pretty URL lpcdn.lpsnmedia.net/le_secure_storage/3.10.0.1-release_5033/storage.secure.min.js?loc=https%3A%2F%2Fwww.hsbc.ae&site=45066354&force=1&env=prod IP 178.249.97.98 ASN #11054 LIVEPERSON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:05:46 Last Seen2023-05-29 02:04:33 Times Seen5 Hash f3d41e017ab637c4bc53d5fbb2fe4643 385473ccdf36d27eb487fba97f5aad7e985354b4 90db019114bcb830c53464def2150205998e91e2f57435919648a90bde2a9805 Loading...

	lpcdn.lpsnmedia.net/le_re/3.41.0.2-release_5020/jsv2/overlay.js?_v=3.41.0.2-release_5020	6.6 kB	2023-03-07	2023-05-29
Pretty URL lpcdn.lpsnmedia.net/le_re/3.41.0.2-release_5020/jsv2/overlay.js?_v=3.41.0.2-release_5020 IP 178.249.97.98 ASN #11054 LIVEPERSON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:05:46 Last Seen2023-05-29 02:04:33 Times Seen4 Hash d19eb1fd00fde0a642c8e3666d9824d9 cf3b1b2ee96b36539520f93b3304b126309c7565 44027ec55ed8b2de1f3dcdaf00c6b0c72c466e85d515c60431f61da11f242047 Loading...

	tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.486.js?utv=ut4.46.202206241813	8.0 kB	2023-03-10	2023-03-10
Pretty URL tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.486.js?utv=ut4.46.202206241813 IP 23.38.200.249 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2023-03-10 10:27:18 Times Seen1 Hash e44c19b9aab69d9c9ad9953867cf5084 04c250081698b2c18f63b872b7bf7ab6a6af44fb 65d055566682369768e65f3f721b503c687f412e1b6f4032047ab6e975550950 Loading...

	www.google.com/recaptcha/api2/anchor?ar=2&k=6LerW7IUAAAAANjK8ZjtiTT1gY6SyoVP9FzKGIDh&co=aHR0cHM6Ly93d3cuaHNiYy5hZTo0NDM.&hl=en&v=TPiWapjoyMdQOtxLT9_b4n2W&size=invisible&cb=br342ngshczi	35 kB	2023-03-10	2023-03-10
Pretty URL www.google.com/recaptcha/api2/anchor?ar=2&k=6LerW7IUAAAAANjK8ZjtiTT1gY6SyoVP9FzKGIDh&co=aHR0cHM6Ly93d3cuaHNiYy5hZTo0NDM.&hl=en&v=TPiWapjoyMdQOtxLT9_b4n2W&size=invisible&cb=br342ngshczi IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2023-03-10 10:27:18 Times Seen1 Hash cca3b90b8855d838c07691c7dd8c7b9c e00895efd3e15cb460d0285284a24fd9bee5c122 d86472ba871637c071e9e110eddeab5829ffaa58cab42b91c6318466ca470596 Loading...

	www.gstatic.com/recaptcha/releases/vP4jQKq0YJFzU6e21-BGy3GP/recaptcha__en.js	402 kB	2023-03-08	2023-07-26
Pretty URL www.gstatic.com/recaptcha/releases/vP4jQKq0YJFzU6e21-BGy3GP/recaptcha__en.js IP 142.250.74.163 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 10:04:20 Last Seen2023-07-26 09:01:57 Times Seen5 Hash af538c6d81d575aac0416963bea7b208 22a080678c77639132902a5ef3ead0b4d06b3120 396c964c85a9b2e9a380bb18b1f6d51960f2bc7f7d4fd2bcf4754fc0ac443cd0 Loading...

	cdn.hsbc.ae/etc/designs/dpws/clientlib-jquery.5ea5c4f95742f26a1d6b25eb830feb0c.js	114 kB	2023-03-07	2024-02-12
Pretty URL cdn.hsbc.ae/etc/designs/dpws/clientlib-jquery.5ea5c4f95742f26a1d6b25eb830feb0c.js IP 23.36.79.17 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:51:32 Last Seen2024-02-12 05:19:21 Times Seen12 Hash 5ea5c4f95742f26a1d6b25eb830feb0c 3d884d939d30e52c5a977f4c2721eab747760f4a d5c2c8d7956e2af9082fe02f239bd97c426f12e7a867d1b4f1a405c124d26cea Loading...

	tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.275.js?utv=ut4.46.202007081247	4.2 kB	2023-03-10	2023-03-10
Pretty URL tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.275.js?utv=ut4.46.202007081247 IP 23.38.200.249 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2023-03-10 10:34:59 Times Seen1 Hash 6e8073b11e365c6ef4760d5feace92e1 bfd8b6a3a61c09105293edcb122edcae83d857d0 a3a37220c8eea2fe2449d422e1f5b413f5d3138281fe80386668b4a720d13dcb Loading...

	connect.facebook.net/signals/plugins/identity.js?v=2.9.85	65 kB	2023-03-08	2023-10-31
Pretty URL connect.facebook.net/signals/plugins/identity.js?v=2.9.85 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:47:10 Last Seen2023-10-31 18:18:05 Times Seen6 Hash 3db1d62e0f7e350997486f47458484bf 1fec0c1504d1b5afd937c7d8829c7ca76907c5d9 e3b9d52f002201be697fbc0ebf4bdcc61d6c01d0bb1359213e62c67e21850047 Loading...

	tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.542.js?utv=ut4.46.202206241813	11 kB	2023-03-10	2023-03-10
Pretty URL tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.542.js?utv=ut4.46.202206241813 IP 23.38.200.249 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2023-03-10 10:27:18 Times Seen1 Hash a43d5cc4f3dc584e5228c8242640bc21 6ace10512311195ca1f612aed0b161a95a96d436 9f30abd199630358d60f9be1b08812a5f27919a7a0cae28c844e0782769dedd4 Loading...

	tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.460.js?utv=ut4.46.202209291807	23 kB	2023-03-10	2023-03-10
Pretty URL tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.460.js?utv=ut4.46.202209291807 IP 23.38.200.249 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2023-03-10 10:27:18 Times Seen1 Hash a8b46a98653470cf592d6421edeb5d4f 5ec2a50b61ebd556a7f377f432aa2c8f8b5fc972 73bdf07e102bfa857b1d4d43b9416bea8b89ca1a2f9590d9430d0e2380ea5795 Loading...

	connect.facebook.net/signals/config/1805307739551132?v=2.9.85&r=stable	26 kB	2023-03-10	2023-03-10
Pretty URL connect.facebook.net/signals/config/1805307739551132?v=2.9.85&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2023-03-10 10:27:18 Times Seen1 Hash 0ec3358bec5e7bc5fd1a9acd515adb7a 57815046be8a4b98cbd22ae5038d5625749c78a3 0c462a4c3f49292724e1878436939d9fd0673a2ac7f5bfac4ddb1e780b2b7ab2 Loading...

	hs-bca.herokuapp.com/	464 B	2023-03-10	2023-03-10
Pretty URL hs-bca.herokuapp.com/ IP 3.219.96.23 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2023-03-10 10:34:59 Times Seen1 Hash b982a45705dd5290589cd6ba06ad2e7d d5a39fe606358ce41d0e2ce20cf63bc57b034b30 1eba9b89677badaaa0cff9fa75d51732c166d851fbc3e5fc8e1b8873cb47e650 Loading...

	cdn.hsbc.ae/etc/designs/dpws/clientlib-all.min.270df5e827e881826b3d81f998b2cea3.js	590 kB	2023-03-10	2024-02-12
Pretty URL cdn.hsbc.ae/etc/designs/dpws/clientlib-all.min.270df5e827e881826b3d81f998b2cea3.js IP 23.36.79.17 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2024-02-12 05:19:21 Times Seen11 Hash 435122d2607461d21c7d5b4555291ad2 a81665f41f15dabeb996c4d846226b4fc8b6447b 48f364ef034cf0c9cf115d0a022682eae3745c67e098f13ed9b4167f184b05b1 Loading...

	tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.35.js?utv=ut4.46.202007081247	14 kB	2023-03-10	2023-03-10
Pretty URL tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.35.js?utv=ut4.46.202007081247 IP 23.38.200.249 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2023-03-10 10:34:59 Times Seen1 Hash 47dd45618015a6a39cb2f0dcd1c0e5c6 f1132fe42e7a32d4c7f990f73e8833e593225031 ce08b420f631854888220e09a5ae041b3e9b0ec2eae273479868673eff708061 Loading...

	tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.338.js?utv=ut4.46.202008191228	5.0 kB	2023-03-10	2023-03-10
Pretty URL tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.338.js?utv=ut4.46.202008191228 IP 23.38.200.249 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2023-03-10 10:27:18 Times Seen1 Hash 2fea90e8c1714b1e3219d4c1f6840d93 f2880a6017d619cbe33ef52603ce406250397eb8 3651a63ecab67079eb3bf79d1a5a27a5a99d016295fb9ae1b817a762ed0d481a Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/797652105/?random=1665934473792&cv=9&fst=1665934473792&num=1&userId=0183e16eb3220021b0eceb57dc7e00044001c00900918&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaaa0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Fhs-bca.herokuapp.com%2F&tiba=Username%20%7C%20Log%20on%20%7C%20HSBC&auid=753071335.1665934474&hn=www.google.com&async=1&rfmt=3&fmt=4	2.4 kB	2023-03-10	2023-03-10
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/797652105/?random=1665934473792&cv=9&fst=1665934473792&num=1&userId=0183e16eb3220021b0eceb57dc7e00044001c00900918&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaaa0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Fhs-bca.herokuapp.com%2F&tiba=Username%20%7C%20Log%20on%20%7C%20HSBC&auid=753071335.1665934474&hn=www.google.com&async=1&rfmt=3&fmt=4 IP 142.250.74.34 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2023-03-10 10:27:18 Times Seen1 Hash 0e6b83e7bac8963ebd9a3969fbb0959b 3eb5192e13e0df51479d0e7b23dcf1ad8ebfaab2 038333b203dae053330734f125256947eb69b182045f749bc7c084389dd07d94 Loading...

	cdn.appdynamics.com/adrum-ext.18b6b3ec105ee15f14ef7c382e15f446.js	48 kB	2023-03-10	2023-03-12
Pretty URL cdn.appdynamics.com/adrum-ext.18b6b3ec105ee15f14ef7c382e15f446.js IP 143.204.55.51 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2023-03-12 09:24:09 Times Seen1 Hash 8489dd163e7f88615dfc2846fe92b179 1049e0b21eb6d3c5ba043ca52be7fc66872dac12 6619ba77a7043416a164874dcacbf5ca4a6b53746f720c8c62c56d1832599307 Loading...

	www.google.com/recaptcha/api.js?onload=ReCaptchaCallbackV3&render=6LerW7IUAAAAANjK8ZjtiTT1gY6SyoVP9FzKGIDh	946 B	2023-03-10	2023-03-10
Pretty URL www.google.com/recaptcha/api.js?onload=ReCaptchaCallbackV3&render=6LerW7IUAAAAANjK8ZjtiTT1gY6SyoVP9FzKGIDh IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2023-03-10 10:34:59 Times Seen1 Hash 79322fcf19c14ca1d80c56790ceedade 8d8c35ce8b4f27b38bef34a3f4389fb48b9ac6a1 f3a5daece826d41bfd8f12b589475b7a090ba0253943b6d4dbc5b4478f1d844b Loading...

	www.googletagmanager.com/gtag/js?id=DC-8715533	108 kB	2023-03-10	2023-03-10
Pretty URL www.googletagmanager.com/gtag/js?id=DC-8715533 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2023-03-10 10:27:18 Times Seen1 Hash 347a34eab696faa49eed0200e2c9b24a 146065362474d2c1483eeef9917aa251b1423d3c 702f959ad2aa47bd6a30625b75d443547c01a92c530b07cd3a9e6c78f45326c4 Loading...

	www.google.com/pagead/conversion_async.js	42 kB	2023-03-08	2023-03-10
Pretty URL www.google.com/pagead/conversion_async.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:10:58 Last Seen2023-03-10 12:05:33 Times Seen1 Hash 7ebf0fce2f7b7c5a547d76da320bd16f cf5575cac6328d1538893b09ddcc0e1d9ece0bd2 a355dc6fd53a94ca23cff781b3cf5f19d3851d899687b32bdfb4ecf6adb0ecb3 Loading...

	hs-bca.herokuapp.com/	232 B	2023-03-10	2023-03-10
Pretty URL hs-bca.herokuapp.com/ IP 3.219.96.23 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2023-03-10 10:34:59 Times Seen1 Hash 657ab1f8914b7cdb5ef64a60c2d9f1ec 16b3de68631c99d8a6037f71e06e23b912474199 d7fef8ea32f54af373c47754cc178ef9737192c4972ce0a38e03faf204824db6 Loading...

	tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.471.js?utv=ut4.46.202209291807	5.3 kB	2023-03-10	2023-03-10
Pretty URL tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.471.js?utv=ut4.46.202209291807 IP 23.38.200.249 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2023-03-10 10:27:18 Times Seen1 Hash 542a6a009410e68057a37200a12875d1 bdcac96b9dc968fbbb1b02cfd52324c634c28a4c aee688bdab5fa1abf1aec470d5c0186df9aa1f6692e9eb95024d1bc01754cf62 Loading...

	www.google.com/recaptcha/api2/anchor?ar=2&k=6LerW7IUAAAAANjK8ZjtiTT1gY6SyoVP9FzKGIDh&co=aHR0cHM6Ly93d3cuaHNiYy5hZTo0NDM.&hl=en&v=TPiWapjoyMdQOtxLT9_b4n2W&size=invisible&cb=br342ngshczi	69 B	2023-03-07	2024-04-27
Pretty URL www.google.com/recaptcha/api2/anchor?ar=2&k=6LerW7IUAAAAANjK8ZjtiTT1gY6SyoVP9FzKGIDh&co=aHR0cHM6Ly93d3cuaHNiYy5hZTo0NDM.&hl=en&v=TPiWapjoyMdQOtxLT9_b4n2W&size=invisible&cb=br342ngshczi IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-27 06:20:28 Times Seen99644 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/797652105/?random=1665934473794&cv=9&fst=1665934473794&num=1&userId=0183e16eb3220021b0eceb57dc7e00044001c00900918&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaaa0&sendb=1&ig=0&data=event%3Dpage_view%3Ballow_custom_scripts%3Dtrue&frm=0&url=http%3A%2F%2Fhs-bca.herokuapp.com%2F&tiba=Username%20%7C%20Log%20on%20%7C%20HSBC&auid=753071335.1665934474&hn=www.google.com&async=1&rfmt=3&fmt=4	2.5 kB	2023-03-10	2023-03-10
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/797652105/?random=1665934473794&cv=9&fst=1665934473794&num=1&userId=0183e16eb3220021b0eceb57dc7e00044001c00900918&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaaa0&sendb=1&ig=0&data=event%3Dpage_view%3Ballow_custom_scripts%3Dtrue&frm=0&url=http%3A%2F%2Fhs-bca.herokuapp.com%2F&tiba=Username%20%7C%20Log%20on%20%7C%20HSBC&auid=753071335.1665934474&hn=www.google.com&async=1&rfmt=3&fmt=4 IP 142.250.74.34 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2023-03-10 10:27:18 Times Seen1 Hash fd0d084d24e51089e9fd58036ee88726 d6fb6b297137b2baa9ceb433a62ffeb8b90fa081 43e18857d5ab61e97858c488de878669d21cf01b3aef5edec29a7eeb012471ac Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LerW7IUAAAAANjK8ZjtiTT1gY6SyoVP9FzKGIDh&co=aHR0cDovL2hzLWJjYS5oZXJva3VhcHAuY29tOjgw&hl=en&v=vP4jQKq0YJFzU6e21-BGy3GP&size=invisible&cb=50kzxadyp44b	315 B	2023-03-07	2023-04-05
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LerW7IUAAAAANjK8ZjtiTT1gY6SyoVP9FzKGIDh&co=aHR0cDovL2hzLWJjYS5oZXJva3VhcHAuY29tOjgw&hl=en&v=vP4jQKq0YJFzU6e21-BGy3GP&size=invisible&cb=50kzxadyp44b IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:35 Last Seen2023-04-05 02:11:13 Times Seen249 Hash 312a2a397ac7ddf5a927eebe419d7df2 2a35fbcb23a052f9ec3f0621c2e8f69959a16fff 014d324c605331878f1b40bfccc4d6c5fa9af407ef5331491a34fdd68e768273 Loading...

	www.isstmena.hsbc.ae/JavascriptInsert.js	100 kB	2023-03-10	2023-03-10
Pretty URL www.isstmena.hsbc.ae/JavascriptInsert.js IP 91.214.5.199 ASN #20705 HSBC Bank plc Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2023-03-10 10:34:59 Times Seen1 Hash b96fa9f2dcb0ff05762313f9cb0bfb0f 266d8f1389cbbfb08951b1e7958a99cfa593d337 141ab6e3cd186ac2f6543c756d2eb0f28102c4c39abd3b57b744e40868810989 Loading...

	tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.365.js?utv=ut4.46.202101201807	8.1 kB	2023-03-10	2023-03-10
Pretty URL tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.365.js?utv=ut4.46.202101201807 IP 23.38.200.249 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2023-03-10 10:27:18 Times Seen1 Hash 83e41cdefef7ccbdcb3e9f5ea0085d52 e836502ebf164189f6b86e380b349bb76b308c59 f163f3665465ce009e420ad920ac8f1dab402c8e4772e226ab52951b9fe35356 Loading...

	lpcdn.lpsnmedia.net/le_re/3.41.0.2-release_5020/jsv2/UISuite.js?_v=3.41.0.2-release_5020	31 kB	2023-03-07	2024-01-21
Pretty URL lpcdn.lpsnmedia.net/le_re/3.41.0.2-release_5020/jsv2/UISuite.js?_v=3.41.0.2-release_5020 IP 178.249.97.98 ASN #11054 LIVEPERSON Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:04 Last Seen2024-01-21 17:37:30 Times Seen99 Hash 5029176fb80c9ff59fe934390c879671 ab16a82e9ec1563fb05f69e363bbea4d1a1364a0 9bebc276e1808d8b0b29ad4ab94d77652bf14f69839f540b8a874f82d73d5a51 Loading...

	www.googletagmanager.com/gtag/js?id=AW-797652105&l=dataLayer&cx=c	165 kB	2023-03-10	2023-03-10
Pretty URL www.googletagmanager.com/gtag/js?id=AW-797652105&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2023-03-10 10:27:18 Times Seen1 Hash ad684769d5b201f310839905761735e4 4173689143354f0269ec0163e8c08157a8a65563 c1ece272499cf6d4fba8b6a41829b9e6d40ab8e61f1b7250c7ceb132b110f503 Loading...

	visitor-service-eu-central-1.tealiumiq.com/hsbc/wpb-stream-ae/0183e16eb3220021b0eceb57dc7e00044001c00900918?callback=utag.ut%5B%22writevawpb-stream-ae%22%5D&rnd=1665934474144	2.0 kB	2023-03-10	2023-03-10
Pretty URL visitor-service-eu-central-1.tealiumiq.com/hsbc/wpb-stream-ae/0183e16eb3220021b0eceb57dc7e00044001c00900918?callback=utag.ut%5B%22writevawpb-stream-ae%22%5D&rnd=1665934474144 IP 18.157.51.52 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2023-03-10 10:27:18 Times Seen1 Hash 90509e40c9905966fb6e4d9de843b1e7 57b2b9004de060d134bf584ffda77411aeec2841 14fc366b3bc5a0a91d9a6236fcc99bb8013911522c8ab1ae96403d8b3e1c8dcb Loading...

	tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.141.js?utv=ut4.46.202007081247	8.0 kB	2023-03-10	2023-03-10
Pretty URL tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.141.js?utv=ut4.46.202007081247 IP 23.38.200.249 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2023-03-10 10:34:59 Times Seen1 Hash d4a7bf2e84e28038cb5490e84726b987 687edf669734e42ff84611f2e4eeaa834a0c3d35 142d824c5d8acb129087d715bb8329a6151634d7401b58dee8c54da0879858d1 Loading...

	tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.262.js?utv=ut4.46.202007081247	4.9 kB	2023-03-10	2023-03-10
Pretty URL tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.262.js?utv=ut4.46.202007081247 IP 23.38.200.249 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2023-03-10 10:34:59 Times Seen1 Hash b6650cceb1f06f8046a344da057b4dec 7e7c73cb78e43904a7737dd4c222f79b7690b8ba 39a5db94d94f2a31847d702e7ff1c0f527e55ee86cd073c32e262de711cd35d0 Loading...

	tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.sync.js	801 B	2023-03-10	2023-03-10
Pretty URL tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.sync.js IP 23.38.200.249 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2023-03-10 10:34:59 Times Seen1 Hash baaecab2263f51d9af809c6580ecd8b3 44b3d627e2c76142744a035e1e93224ab11094cd ff01871a0649ad04ae1d8a2a94e294232da1766d7ee34339c627151cdc55ede2 Loading...

	tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.381.js?utv=ut4.46.202206241813	14 kB	2023-03-10	2023-03-10
Pretty URL tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.381.js?utv=ut4.46.202206241813 IP 23.38.200.249 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2023-03-10 10:27:18 Times Seen1 Hash d4f84e0440e3784311b44504024ada16 28315e4afcf7347d671164e7079d5a332a2de2a9 18ced98699d131ba209441845cdff7fedd9213fcf6f41e3e4e95b296c347166c Loading...

	tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.352.js?utv=ut4.46.202206241813	49 kB	2023-03-10	2023-03-10
Pretty URL tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.352.js?utv=ut4.46.202206241813 IP 23.38.200.249 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2023-03-10 10:27:18 Times Seen1 Hash 61653ea5b013bedfc8a4eeaf7d393f04 e44bfac76bef0084bd2e3828348af8f966eaccff 56d45d001f4acab160ea866006d510626a5cefb0d9980871aaab821b4d4b54de Loading...

	tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.540.js?utv=ut4.46.202206241813	48 kB	2023-03-10	2023-03-10
Pretty URL tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.540.js?utv=ut4.46.202206241813 IP 23.38.200.249 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2023-03-10 10:27:18 Times Seen1 Hash 8d5362f63cb1d2d5ee89e74363381738 5ee31dbc8fcaa63c0031d9c9768b4bf6f1704400 d34548a50f07b52aa4d43ee4447a952675f19c74e578880de77460628adda4b7 Loading...

	tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.110.js?utv=ut4.46.202007081247	124 kB	2023-03-10	2023-03-10
Pretty URL tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.110.js?utv=ut4.46.202007081247 IP 23.38.200.249 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2023-03-10 10:34:59 Times Seen1 Hash 9b7f9c8aad0a0c1ac759c21f26007464 206b679b70750a99b87b04f4a58ce8ba772dbd64 47351b051a90736fbb4235766dbdf918fbec761e3721920306d3355b9c87cddc Loading...

	tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.js	88 kB	2023-03-10	2023-03-10
Pretty URL tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.js IP 23.38.200.249 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:27:18 Last Seen2023-03-10 10:34:59 Times Seen1 Hash c188227f5417d749731638f853e13621 e05cba8a13e3131f36c4172abacf7ba2aebfb159 3f626d32bc9262647f4f094617eca41b4600a05f877b8e87c96cd5ece7012638 Loading...

HTTP Transactions (119)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
10ab470535c002d333b4f27d38b51091
ed3b0850c5d75881de410f7e8ca35e012e38bd38
31d6655d048ec8a62e00125766fea65cde04beae0b11f12ce7f722c9a5f7e232

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "31D6655D048EC8A62E00125766FEA65CDE04BEAE0B11F12CE7F722C9A5F7E232"
Last-Modified: Sun, 16 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17949
Expires: Sun, 16 Oct 2022 20:33:36 GMT
Date: Sun, 16 Oct 2022 15:34:27 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

143.204.55.115

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bdb8b66c705a7b996496d780f50c00b5
403ae92039fcc933870f51f913f78ccaf9652256
c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 16 Oct 2022 14:50:34 GMT
Expires: Sun, 16 Oct 2022 15:09:33 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: z046QLjNlRCtadWjqBkcaZsMMNy31T8CGgfBdgcFkqLB7vDD6MB-gA==
Age: 2632

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a57d0f62d9bd29668b94a513fa45d18e
d7cb263502e21f9235b4523a596e2138d22042ec
df7acd4fe34cc9c4945a5d83ef538105a73dfc1a8b485bc7a62488c5406b1294

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF7ACD4FE34CC9C4945A5D83EF538105A73DFC1A8B485BC7A62488C5406B1294"
Last-Modified: Sat, 15 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7537
Expires: Sun, 16 Oct 2022 17:40:04 GMT
Date: Sun, 16 Oct 2022 15:34:27 GMT
Connection: keep-alive

hs-bca.herokuapp.com/

3.219.96.23

200 OK

57 kB

URL HTTP/1.1
hs-bca.herokuapp.com/
IP
3.219.96.23:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (36955)
Size
57 kB (57277 bytes)
Hash
427689b055af7fed97228eb255f5aeaa
74cd9db8cf90f7d306e490a5a2e0461f35be5942
fd8e92d367555d5c2d994b44c44059e6b89cebaf5ff78becad5e676768977cc2

HTTP Headers

GET / HTTP/1.1
Host: hs-bca.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Content-Type: text/html; charset=utf-8
Content-Length: 57277
Etag: W/"dfbd-dM2duM+Q99MG5JClouBGHzW+WUI"
Date: Sun, 16 Oct 2022 15:34:27 GMT
Via: 1.1 vegur

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: cQs9ixpg6FHMYqXEfePU763OBmrOXtgjNf18MxBddbpdidO2E/gDhaTa1vkSQP6nwrZrUMrAO9Q=
x-amz-request-id: K0F8KEPZ3ZNHK619
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 16 Oct 2022 15:03:03 GMT
age: 1884
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 15:34:27 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

cdn.hsbc.ae/etc/designs/dpws/clientlib-jquery.5ea5c4f95742f26a1d6b25eb830feb0c.js

23.36.79.17

200 OK

38 kB

URL HTTP/2
cdn.hsbc.ae/etc/designs/dpws/clientlib-jquery.5ea5c4f95742f26a1d6b25eb830feb0c.js
IP
23.36.79.17:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (65451)
Size
38 kB (37902 bytes)
Hash
e6c1eb34928962764101ac31bd728acf
c7f7f848b7079b711ab15b7f651f6e6fccf0dbe7
8f7cebe2ae5f05374be98e72c55c9b84c176eb876689e4d35427315fe6898400

HTTP Headers

GET /etc/designs/dpws/clientlib-jquery.5ea5c4f95742f26a1d6b25eb830feb0c.js HTTP/1.1
Host: cdn.hsbc.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Apache
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Thu, 09 Jun 2022 06:31:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
s: gbl-prod-sy-aempub
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-length: 37902
content-type: application/x-javascript
cache-control: max-age=20920556
date: Sun, 16 Oct 2022 15:34:27 GMT
X-Firefox-Spdy: h2

cdn.hsbc.ae/content/dam/hsbc/ae/images/logos/hsbc-logo.svg

23.36.79.17

200 OK

2.0 kB

URL HTTP/2
cdn.hsbc.ae/content/dam/hsbc/ae/images/logos/hsbc-logo.svg
IP
23.36.79.17:0
ASN
#20940 Akamai International B.V.

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
2.0 kB (1966 bytes)
Hash
89f7498687c8b5a0d195bab8f2479525
90f4c4be87ebb5817b2076f550e328309e2bd9ad
84a2f3ff3552a3973117586ec05698ab251852973f7c0cdc00cdfe898537e669

HTTP Headers

GET /content/dam/hsbc/ae/images/logos/hsbc-logo.svg HTTP/1.1
Host: cdn.hsbc.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Tue, 11 Oct 2022 07:26:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
s: gbl-prod-wk-aempub
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-length: 1966
content-type: image/svg+xml
cache-control: max-age=2297945
date: Sun, 16 Oct 2022 15:34:27 GMT
X-Firefox-Spdy: h2

cdn.hsbc.ae/etc/designs/logonEnhancements/clientlib-all.min.5c23575dd2a45b73c671a7797acc5d2d.css

23.36.79.17

200 OK

77 kB

URL HTTP/2
cdn.hsbc.ae/etc/designs/logonEnhancements/clientlib-all.min.5c23575dd2a45b73c671a7797acc5d2d.css
IP
23.36.79.17:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (60270)
Size
77 kB (77063 bytes)
Hash
0165a705ce9d06124078726a077163b6
219c1ee9ec0cd7bc3eb4c65af098d0896cf50e35
3a928279d2b8262c7f0ef104c79027941723f366c0033ce2df4f16023dc17172

HTTP Headers

GET /etc/designs/logonEnhancements/clientlib-all.min.5c23575dd2a45b73c671a7797acc5d2d.css HTTP/1.1
Host: cdn.hsbc.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Apache
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Fri, 10 Jun 2022 00:49:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
s: gbl-prod-sy-aempub
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-type: text/css
content-length: 77063
cache-control: max-age=20920594
date: Sun, 16 Oct 2022 15:34:27 GMT
X-Firefox-Spdy: h2

cdn.appdynamics.com/adrum-ext.18b6b3ec105ee15f14ef7c382e15f446.js

143.204.55.51

200 OK

19 kB

URL HTTP/2
cdn.appdynamics.com/adrum-ext.18b6b3ec105ee15f14ef7c382e15f446.js
IP
143.204.55.51:0
ASN
#16509 AMAZON-02

File type
data
Size
19 kB (19099 bytes)
Hash
c3e62cdc6f6523da6a02239aeb847da2
ea72de6f79a247b345d1ff0ba8c7bd111082eae7
58c63e4b5339867354880b7717ee2d412d1d60060a21a6fd934cd840ef4c6492

HTTP Headers

GET /adrum-ext.18b6b3ec105ee15f14ef7c382e15f446.js HTTP/1.1
Host: cdn.appdynamics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
date: Wed, 28 Sep 2022 04:36:22 GMT
server: nginx/1.16.1
last-modified: Thu, 21 Dec 2017 23:37:57 GMT
etag: W/"5a3c45d5-bbee"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cache-control: public, max-age=2678400, s-max-age=14400
timing-allow-origin: *
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cbvdLyvI0WIqXDvHx7e46wKzhDhADmLvjrCqOppqZwt_jAxEhBstAA==
age: 1594685
X-Firefox-Spdy: h2

www.google.com/recaptcha/api.js?onload=ReCaptchaCallbackV3&render=6LerW7IUAAAAANjK8ZjtiTT1gY6SyoVP9FzKGIDh

142.250.74.164

200 OK

613 B

URL HTTP/2
www.google.com/recaptcha/api.js?onload=ReCaptchaCallbackV3&render=6LerW7IUAAAAANjK8ZjtiTT1gY6SyoVP9FzKGIDh
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (946), with no line terminators
Size
613 B (613 bytes)
Hash
54284ff3287300a2fd8a969ebcd3e2e4
66d5e16ef89168647d479e3bba02a205b40d347a
d3cb07d4381c7111153ecce134c7d89e66599c26aa2ed43af46547fdbe8fe2e6

HTTP Headers

GET /recaptcha/api.js?onload=ReCaptchaCallbackV3&render=6LerW7IUAAAAANjK8ZjtiTT1gY6SyoVP9FzKGIDh HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
expires: Sun, 16 Oct 2022 15:34:27 GMT
date: Sun, 16 Oct 2022 15:34:27 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 613
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.275.js?utv=ut4.46.202007081247

23.38.200.249

200 OK

1.6 kB

URL HTTP/1.1
tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.275.js?utv=ut4.46.202007081247
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type
C source, ASCII text, with very long lines (592)
Size
1.6 kB (1638 bytes)
Hash
bff066ed307728f9253fc7a13064f213
1aa18e916fb112f1d29ef1c47a2051a4b4cd76b9
dd47892dcd9b76245a1decbab6f0dc0e1f2ec437dea9ab2e2d676cba6c4ec684

HTTP Headers

GET /utag/hsbc/ae-rbwm-gsp/prod/utag.275.js?utv=ut4.46.202007081247 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "6e8073b11e365c6ef4760d5feace92e1:1594212475.208573"
Last-Modified: Wed, 08 Jul 2020 12:47:55 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1296000
Expires: Mon, 31 Oct 2022 15:34:27 GMT
Date: Sun, 16 Oct 2022 15:34:27 GMT
Content-Length: 1638
Connection: keep-alive

tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.141.js?utv=ut4.46.202007081247

23.38.200.249

200 OK

2.9 kB

URL HTTP/1.1
tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.141.js?utv=ut4.46.202007081247
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type
C source, ASCII text, with very long lines (916)
Size
2.9 kB (2897 bytes)
Hash
a89bdf0ffdbcae05cf8208d32d374d0f
c81019a98a829ed7a17827addc7160173b6afa90
53fe2b801d00cd1a86db2a27f0c1be7fd148199c2489e9d6c7e7def8e02213a4

HTTP Headers

GET /utag/hsbc/ae-rbwm-gsp/prod/utag.141.js?utv=ut4.46.202007081247 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "d4a7bf2e84e28038cb5490e84726b987:1583761360.808527"
Last-Modified: Mon, 09 Mar 2020 13:42:40 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1296000
Expires: Mon, 31 Oct 2022 15:34:27 GMT
Date: Sun, 16 Oct 2022 15:34:27 GMT
Content-Length: 2897
Connection: keep-alive

tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.262.js?utv=ut4.46.202007081247

23.38.200.249

200 OK

2.1 kB

URL HTTP/1.1
tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.262.js?utv=ut4.46.202007081247
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type
C source, ASCII text, with very long lines (517)
Size
2.1 kB (2068 bytes)
Hash
2943f7aa2e9aaf740ca2c4eb50a9150a
f85895f9dff43ea1e9a4b8f8f4ec2b45408b30fc
2a4a62925c94b443264e05459a46f86ab26472a9882008cb502c9979f328c9cb

HTTP Headers

GET /utag/hsbc/ae-rbwm-gsp/prod/utag.262.js?utv=ut4.46.202007081247 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "b6650cceb1f06f8046a344da057b4dec:1592239251.180258"
Last-Modified: Mon, 15 Jun 2020 16:40:51 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1296000
Expires: Mon, 31 Oct 2022 15:34:27 GMT
Date: Sun, 16 Oct 2022 15:34:27 GMT
Content-Length: 2068
Connection: keep-alive

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
bd574db7d3b9026c9c3481d914973b5c
20580d93af801ba843e31a014fcacf79e208e10b
15514345849ecbb12404327ff9627567fd48186520a9212fc1d38440504bc756

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 15:34:27 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 15 Oct 2022 15:43:24 GMT
Expires: Sat, 22 Oct 2022 15:43:23 GMT
Etag: "20580d93af801ba843e31a014fcacf79e208e10b"
Cache-Control: max-age=518335,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75b1dbd8b90d0b55-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
a64973adeeebe703983384b38b505536
436415b024639aadc7af90ed96c0315b9fbe4d45
48f6cf419e2601fa1eaee009575af400a90f117c6a3c3049be0a27f003d50db4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 15:34:28 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 14 Oct 2022 16:31:55 GMT
Expires: Fri, 21 Oct 2022 16:31:54 GMT
Etag: "436415b024639aadc7af90ed96c0315b9fbe4d45"
Cache-Control: max-age=434846,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75b1dbd8a9f50b45-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
a64973adeeebe703983384b38b505536
436415b024639aadc7af90ed96c0315b9fbe4d45
48f6cf419e2601fa1eaee009575af400a90f117c6a3c3049be0a27f003d50db4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 15:34:28 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 14 Oct 2022 16:31:55 GMT
Expires: Fri, 21 Oct 2022 16:31:54 GMT
Etag: "436415b024639aadc7af90ed96c0315b9fbe4d45"
Cache-Control: max-age=434846,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75b1dbd8babd1c16-OSL

tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.110.js?utv=ut4.46.202007081247

23.38.200.249

200 OK

41 kB

URL HTTP/1.1
tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.110.js?utv=ut4.46.202007081247
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (11381)
Size
41 kB (40727 bytes)
Hash
f846dd85268cf0b801de19782972da17
3fe3a6bc9df623ca4e52f84f68685676121eabe9
e23e2b530f0dd72703f79d5cec443badd233cccab64944bde6ad7e3cc8b215ce

HTTP Headers

GET /utag/hsbc/ae-rbwm-gsp/prod/utag.110.js?utv=ut4.46.202007081247 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "9b7f9c8aad0a0c1ac759c21f26007464:1600260970.992749"
Last-Modified: Wed, 16 Sep 2020 12:56:11 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1296000
Expires: Mon, 31 Oct 2022 15:34:28 GMT
Date: Sun, 16 Oct 2022 15:34:28 GMT
Content-Length: 40727
Connection: keep-alive

tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.56.js?utv=ut4.46.202007081247

23.38.200.249

200 OK

12 kB

URL HTTP/1.1
tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.56.js?utv=ut4.46.202007081247
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (2225)
Size
12 kB (11789 bytes)
Hash
2bf339a77870fc6b0c326645adf6eafe
da0ba64389928f56eae40c2e41691d3771bce114
9adfb54d53215df6c11e4fae18884d6fda8ff8dbbda41772647f7cf51b4d88a2

HTTP Headers

GET /utag/hsbc/ae-rbwm-gsp/prod/utag.56.js?utv=ut4.46.202007081247 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "b18fb704b1b1e4d92e03de680d02447f:1604891499.966482"
Last-Modified: Mon, 09 Nov 2020 03:11:40 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1296000
Expires: Mon, 31 Oct 2022 15:34:28 GMT
Date: Sun, 16 Oct 2022 15:34:28 GMT
Content-Length: 11789
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b71c1dfe563720287179a76edf29c680
6096cc371998151d37a2f7698b0fe0371bb43269
7472e945b0ae9b967b68ec85dc8a005c74c2f5c63c68a9de142be69983062a90

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 15:34:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hs-bca.herokuapp.com/stylesheets/Transmittan.css

3.219.96.23

200 OK

282 kB

URL HTTP/1.1
hs-bca.herokuapp.com/stylesheets/Transmittan.css
IP
3.219.96.23:0
ASN
#14618 AMAZON-AES

File type
assembler source, ASCII text, with very long lines (493)
Size
282 kB (281910 bytes)
Hash
101bab5b9519fb50d9d4799f8ebec5d6
c05993f9348fccb577e11575497b12359d776b19
4709e618ec4f8ee5774887825a9831cf4771e5b31178e73b27700ccb11ed2fcc

Detections

Analyzer	Verdict	Alert
openphish	HSBC Bank

HTTP Headers

GET /stylesheets/Transmittan.css HTTP/1.1
Host: hs-bca.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/

HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Wed, 10 Feb 2021 05:12:39 GMT
Etag: W/"44d36-1778a5b0d58"
Content-Type: text/css; charset=UTF-8
Content-Length: 281910
Date: Sun, 16 Oct 2022 15:34:27 GMT
Via: 1.1 vegur

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
8e57952692b8dca0eefd91d99ce381c4
baca5f23a043a2e5ae0c846de520bb1c35d2fa09
5c290b4e3b5247cc043e454e450b93444f99c1d071d87dc4e06bbd210836f92c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=96633
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 15:34:28 GMT
Etag: "634afafd-1d7"
Expires: Mon, 17 Oct 2022 18:25:01 GMT
Last-Modified: Sat, 15 Oct 2022 18:25:01 GMT
Server: nginx
Content-Length: 471

tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.sync.js

23.38.200.249

200 OK

801 B

URL HTTP/2
tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.sync.js
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (343)
Size
801 B (801 bytes)
Hash
baaecab2263f51d9af809c6580ecd8b3
44b3d627e2c76142744a035e1e93224ab11094cd
ff01871a0649ad04ae1d8a2a94e294232da1766d7ee34339c627151cdc55ede2

HTTP Headers

GET /utag/hsbc/ae-rbwm-gsp/prod/utag.sync.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "baaecab2263f51d9af809c6580ecd8b3:1664474842.754475"
last-modified: Thu, 29 Sep 2022 18:07:22 GMT
server: AkamaiNetStorage
content-length: 801
cache-control: max-age=300
expires: Sun, 16 Oct 2022 15:39:28 GMT
date: Sun, 16 Oct 2022 15:34:28 GMT
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
a64973adeeebe703983384b38b505536
436415b024639aadc7af90ed96c0315b9fbe4d45
48f6cf419e2601fa1eaee009575af400a90f117c6a3c3049be0a27f003d50db4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 15:34:28 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 14 Oct 2022 16:31:55 GMT
Expires: Fri, 21 Oct 2022 16:31:54 GMT
Etag: "436415b024639aadc7af90ed96c0315b9fbe4d45"
Cache-Control: max-age=434845,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75b1dbd8cae51c06-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
bd574db7d3b9026c9c3481d914973b5c
20580d93af801ba843e31a014fcacf79e208e10b
15514345849ecbb12404327ff9627567fd48186520a9212fc1d38440504bc756

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 15:34:28 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 15 Oct 2022 15:43:24 GMT
Expires: Sat, 22 Oct 2022 15:43:23 GMT
Etag: "20580d93af801ba843e31a014fcacf79e208e10b"
Cache-Control: max-age=518334,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75b1dbd89b8afab8-OSL

tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.35.js?utv=ut4.46.202007081247

23.38.200.249

200 OK

4.4 kB

URL HTTP/1.1
tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.35.js?utv=ut4.46.202007081247
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (1827)
Size
4.4 kB (4386 bytes)
Hash
9aaa5bb4083eb7d395fdf592d6d6b6b2
da14a2358b12dfdaa31a79bbd8a505626d8cd3ec
ae098dbe5027e6c2b00b6fffe81e02cf9cedec08b3d4771f54df317b79736863

HTTP Headers

GET /utag/hsbc/ae-rbwm-gsp/prod/utag.35.js?utv=ut4.46.202007081247 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "47dd45618015a6a39cb2f0dcd1c0e5c6:1594212474.755595"
Last-Modified: Wed, 08 Jul 2020 12:47:54 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1296000
Expires: Mon, 31 Oct 2022 15:34:28 GMT
Date: Sun, 16 Oct 2022 15:34:28 GMT
Content-Length: 4386
Connection: keep-alive

www.isstmena.hsbc.ae/JavascriptInsert.js

91.214.5.199

200 OK

36 kB

URL HTTP/1.1
www.isstmena.hsbc.ae/JavascriptInsert.js
IP
91.214.5.199:0
ASN
#20705 HSBC Bank plc

File type
Unicode text, UTF-8 text, with very long lines (809)
Size
36 kB (36385 bytes)
Hash
5d38ed79ae1445d08e9206febc88d383
b842488ccfe05c6b0e6cefd5e0ca29e20c036516
e19c447afc2492fc1beb4fc273f97948a70554ac590b398d07374cc2b64d27a8

HTTP Headers

GET /JavascriptInsert.js HTTP/1.1
Host: www.isstmena.hsbc.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 15:34:28 GMT
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Type: application/x-javascript
X-Content-Type-Options: nosniff
Last-Modified: Mon, 25 Jun 2018 10:58:28 GMT
Cache-Control: max-age=900, s-maxage=900
ETag: b96fa9f2dcb0ff05762313f9cb0bfb0f
Vary: Accept-Encoding
Content-Encoding: gzip
S: LISST02RPUK-WS
Content-Length: 36385
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.115

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 16 Oct 2022 15:07:43 GMT
Cache-Control: max-age=3600
Expires: Sun, 16 Oct 2022 15:16:07 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: KI1_NGIIAW-uhyjQ9m0Qj_g-C5-OCoiLFMQLHH6Us7IVTJu5jJUTTg==
Age: 1605

hs-bca.herokuapp.com/stylesheets/clientb.css

3.219.96.23

200 OK

885 kB

URL HTTP/1.1
hs-bca.herokuapp.com/stylesheets/clientb.css
IP
3.219.96.23:0
ASN
#14618 AMAZON-AES

File type
Unicode text, UTF-8 text, with very long lines (457)
Size
885 kB (885379 bytes)
Hash
6b44a69e263fed867be1b9ef3eca8834
79366971fcfc2a6e52b978c1bb8eb103b2f6b20e
8c74e7d5354279f1809ccda3e8f04dd75cba8c6ae9558177203b5e5a0681f802

Detections

Analyzer	Verdict	Alert
openphish	HSBC Bank

HTTP Headers

GET /stylesheets/clientb.css HTTP/1.1
Host: hs-bca.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/

HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Wed, 10 Feb 2021 05:12:39 GMT
Etag: W/"d8283-1778a5b0d58"
Content-Type: text/css; charset=UTF-8
Content-Length: 885379
Date: Sun, 16 Oct 2022 15:34:27 GMT
Via: 1.1 vegur

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
cfc92c8f6ee7599505d969732542ac42
7f4804d49c8ccd76ccffa6b72d41b1df611eb090
406c057a8392b9fa0ab09efa8b3222a58ec5fc17fa73f55a1f093e3d1092b0e4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3237
Cache-Control: max-age=149176
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 15:34:28 GMT
Etag: "634bbb97-1d7"
Expires: Tue, 18 Oct 2022 09:00:44 GMT
Last-Modified: Sun, 16 Oct 2022 08:06:47 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
38011620b384154949f31778ef96816d
fe4e1ce6730cab72050d81337728bbb684884484
c1863a4c0abd2c88fae759b036803b839d9f9823cc03d9f8854d7e678c75dffa

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2363
Cache-Control: max-age=120256
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 15:34:28 GMT
Etag: "634b4e09-1d7"
Expires: Tue, 18 Oct 2022 00:58:44 GMT
Last-Modified: Sun, 16 Oct 2022 00:19:21 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.js

23.38.200.249

200 OK

23 kB

URL HTTP/1.1
tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.js
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (10811), with CRLF, LF line terminators
Size
23 kB (22735 bytes)
Hash
eda9e2843f3459fd0240c65fac10cd60
4abb1be28390b9b3a79734b0cb1888e2d2159ddb
596df13687dc31f51d292c0090d3e45133918531f8aae8b0b6e758db0500a323

HTTP Headers

GET /utag/hsbc/ae-rbwm-gsp/prod/utag.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "c188227f5417d749731638f853e13621:1664474844.208572"
Last-Modified: Thu, 29 Sep 2022 18:07:24 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=300
Expires: Sun, 16 Oct 2022 15:39:28 GMT
Date: Sun, 16 Oct 2022 15:34:28 GMT
Content-Length: 22735
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
44fd0c4b37920d1fac58efc7dd81d3a5
cea635128f33a312089fe28256bfd1cc778d8bbc
134040fe44bc52e9a96a173c44034eed1fa75040386b7a28d4aee809077b2613

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=166462
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 15:34:28 GMT
Etag: "634c0bc2-1d7"
Expires: Tue, 18 Oct 2022 13:48:50 GMT
Last-Modified: Sun, 16 Oct 2022 13:48:50 GMT
Server: nginx
Content-Length: 471

akamai.tiqcdn.com/location/location.js

23.38.200.249

200 OK

18 B

URL HTTP/1.1
akamai.tiqcdn.com/location/location.js
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type
ASCII text
Size
18 B (18 bytes)
Hash
6c98be5fda77913799e8ef24b86a7abd
2c9a2a706436c6c8d7c0b7eeaf9c02ce47eeab4d
d753f8ee126736431a1cd8170dbfcf94f553eeb1d24f2baa7c66474a80d0e559

HTTP Headers

GET /location/location.js HTTP/1.1
Host: akamai.tiqcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://hs-bca.herokuapp.com
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "6c98be5fda77913799e8ef24b86a7abd:1525129759"
Last-Modified: Mon, 30 Apr 2018 23:09:19 GMT
Server: AkamaiNetStorage
Content-Length: 18
Cache-Control: max-age=1296000
Expires: Mon, 31 Oct 2022 15:34:28 GMT
Date: Sun, 16 Oct 2022 15:34:28 GMT
Connection: keep-alive
Access-Control-Expose-Headers: X-EdgeScape-Location
Access-Control-Allow-Origin: *
X-EdgeScape-Location: country_code=NO,region_code=0,city=OSLO,areacode=0,zip=0,bandwidth=5000

www.hsbc.ae/content/dam/hsbc/ae/images/livechat/sticky-button-help.png

54.230.111.14

200 OK

2.3 kB

URL HTTP/2
www.hsbc.ae/content/dam/hsbc/ae/images/livechat/sticky-button-help.png
IP
54.230.111.14:0
ASN
#16509 AMAZON-02

File type
PNG image data, 31 x 135, 8-bit/color RGBA, non-interlaced\012- data
Size
2.3 kB (2254 bytes)
Hash
04b939fe2fa8c85cec326f830a943be6
7f730ff00397475b27912ffabc18cf51f49021e8
88f0b4ea6782e4d1a440aaf77422175990fd0c0fba2be50827e5a25ed8034cf0

HTTP Headers

GET /content/dam/hsbc/ae/images/livechat/sticky-button-help.png HTTP/1.1
Host: www.hsbc.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/png
content-length: 2254
date: Fri, 14 Oct 2022 10:38:50 GMT
server: Apache
strict-transport-security: max-age=31536000; includeSubdomains
last-modified: Fri, 14 Oct 2022 10:25:40 GMT
accept-ranges: bytes
s: dispatcher3euwest2
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=2592000, s-maxage=2592000
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1B4-PJdadATkh0UAAnLVq1qJ3Avy-hZnCh9jcbp7xSx5v_BYew5lnA==
age: 190538
X-Firefox-Spdy: h2

lpcdn.lpsnmedia.net/le_secure_storage/3.10.0.1-release_5033/storage.secure.min.js?loc=https%3A%2F%2Fwww.hsbc.ae&site=45066354&force=1&env=prod

178.249.97.98

200 OK

15 kB

URL HTTP/2
lpcdn.lpsnmedia.net/le_secure_storage/3.10.0.1-release_5033/storage.secure.min.js?loc=https%3A%2F%2Fwww.hsbc.ae&site=45066354&force=1&env=prod
IP
178.249.97.98:0
ASN
#11054 LIVEPERSON

File type
ASCII text, with very long lines (38150), with no line terminators
Size
15 kB (14693 bytes)
Hash
d6a6fdf622d75aa38eefd4ecdec7b425
a579685d4149795cfb1e51e1b89984dc741c4822
ebc5413272f837269534b952688ec4884a5d392612f36eeac466189b5b7298cf

HTTP Headers

GET /le_secure_storage/3.10.0.1-release_5033/storage.secure.min.js?loc=https%3A%2F%2Fwww.hsbc.ae&site=45066354&force=1&env=prod HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 16 Oct 2022 15:34:28 GMT
content-type: application/javascript
last-modified: Mon, 30 Mar 2020 14:49:28 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Mon, 16 Oct 2023 15:34:28 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: MISS
X-Firefox-Spdy: h2

cdn.hsbc.ae/etc/designs/dpws/clientlib-all.min.270df5e827e881826b3d81f998b2cea3.js

23.36.79.17

200 OK

174 kB

URL HTTP/2
cdn.hsbc.ae/etc/designs/dpws/clientlib-all.min.270df5e827e881826b3d81f998b2cea3.js
IP
23.36.79.17:0
ASN
#20940 Akamai International B.V.

File type
data
Size
174 kB (174215 bytes)
Hash
28da92999acd629c6d850961a99985fb
ce4d36ed0ba61045dc841f8aada0ec7cf6a367b2
6b629bd5669a536274f2885a02b7b18a1073348c794377627af9be29c2c184a9

HTTP Headers

GET /etc/designs/dpws/clientlib-all.min.270df5e827e881826b3d81f998b2cea3.js HTTP/1.1
Host: cdn.hsbc.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
x-content-type-options: nosniff
last-modified: Tue, 22 Jun 2021 05:36:59 GMT
content-encoding: gzip
s: gbl-prod-wk-aempub
x-xss-protection: 1; mode=block
content-type: application/x-javascript; charset=UTF-8
cache-control: no-cache, no-store, must-revalidate
date: Sun, 16 Oct 2022 15:34:28 GMT
vary: Accept-Encoding
set-cookie: DIGITAL-AE-AEM-DYN-WDC=!0f0bBHB+hGPMywzhWgFhMJbjTKbV4KO1cJJRRYNN0VvzkCv3tXoFNNqwZ/Vohc0pQHfI+MXUO1jtzA==; path=/; Httponly; Secure
TS019e0bf9=013f1c4538dedb7712a8c13e730236bb78bd3f9c3733e0be7d90d37a51f369e0d849136f7703220d1d34c53964de066ba89346c5a0; Path=/
X-Firefox-Spdy: h2

hs-bca.herokuapp.com/stylesheets/common/img/flags_16.png

3.219.96.23

404 Not Found

2.0 kB

URL HTTP/1.1
hs-bca.herokuapp.com/stylesheets/common/img/flags_16.png
IP
3.219.96.23:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (2021), with no line terminators
Size
2.0 kB (2021 bytes)
Hash
6319cb05fd0ed8f4aa633ad7beb74c5b
46f99bb4f595712e6005ef01f7c9faf7909bd513
0c0f89b2b616e71e7b34ba6dcfff8eddf00b8f1219e537c5354e474702058ab6

Detections

Analyzer	Verdict	Alert
openphish	HSBC Bank

HTTP Headers

GET /stylesheets/common/img/flags_16.png HTTP/1.1
Host: hs-bca.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/stylesheets/clientb.css

HTTP/1.1 404 Not Found
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Content-Type: text/html; charset=utf-8
Content-Length: 2021
Etag: W/"7e5-RvmbtPWVcS5gBe8B98n695Cb1RM"
Date: Sun, 16 Oct 2022 15:34:28 GMT
Via: 1.1 vegur

cdn.hsbc.ae/etc/designs/dpws/clientlib-default.min.43a5518a5e69c0e362121af5c04e0ea9.css

23.36.79.17

200 OK

98 kB

URL HTTP/2
cdn.hsbc.ae/etc/designs/dpws/clientlib-default.min.43a5518a5e69c0e362121af5c04e0ea9.css
IP
23.36.79.17:0
ASN
#20940 Akamai International B.V.

File type
data
Size
98 kB (98091 bytes)
Hash
151462fde590b0e43236ebbf40fc3c19
7f850c052875601e48b56423f1f9991db3bc3219
4b6250588759435be434b35c2fe5c4266efa43dd02e1ede4bd8a405b82043f2e

HTTP Headers

GET /etc/designs/dpws/clientlib-default.min.43a5518a5e69c0e362121af5c04e0ea9.css HTTP/1.1
Host: cdn.hsbc.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
x-content-type-options: nosniff
last-modified: Wed, 11 Aug 2021 05:55:25 GMT
content-encoding: gzip
s: gbl-prod-wk-aempub
x-xss-protection: 1; mode=block
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, must-revalidate
date: Sun, 16 Oct 2022 15:34:28 GMT
vary: Accept-Encoding
set-cookie: DIGITAL-AE-AEM-DYN-WDC=!3+xKe5IaRy6CBkThWgFhMJbjTKbV4JDIFqOT2XFb0wFbY1fm1OFve6WmmSnK3BPGVdRfHKh+AwZqlg==; path=/; Httponly; Secure
TS019e0bf9=013f1c4538acd036d45c840fd4cd26974c84897b75ed1fd1ccd0cc2a85b66eaf5855ef6ac4416743ce5ab83437b493a804292e2779; Path=/
X-Firefox-Spdy: h2

cdn.hsbc.ae/etc/designs/logonEnhancements/assets/fonts/UniversNextforHSBC-Light/UniversNextforHSBC-Light.woff

23.36.79.17

200 OK

25 kB

URL HTTP/2
cdn.hsbc.ae/etc/designs/logonEnhancements/assets/fonts/UniversNextforHSBC-Light/UniversNextforHSBC-Light.woff
IP
23.36.79.17:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format, TrueType, length 24956, version 1.0\012- data
Size
25 kB (24956 bytes)
Hash
ba45ea55eaf54d0b9a803db2a4ad9cea
9f33012dc42c590a0a63d632e5d352e10b1e07f0
9546a2b27fb48b2fcd03c45591d0c74aad14f707365f55b366937762204c41fa

HTTP Headers

GET /etc/designs/logonEnhancements/assets/fonts/UniversNextforHSBC-Light/UniversNextforHSBC-Light.woff HTTP/1.1
Host: cdn.hsbc.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://hs-bca.herokuapp.com
Connection: keep-alive
Referer: https://cdn.hsbc.ae/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Thu, 01 Sep 2022 09:27:22 GMT
accept-ranges: bytes
content-length: 24956
s: gbl-prod-sy-aempub
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-origin: *
content-type: application/font-woff
cache-control: max-age=4205798
date: Sun, 16 Oct 2022 15:34:28 GMT
X-Firefox-Spdy: h2

hs-bca.herokuapp.com/stylesheets/common/fonts/UniversNextforHSBCW02-Rg.woff

3.219.96.23

404 Not Found

2.0 kB

URL HTTP/1.1
hs-bca.herokuapp.com/stylesheets/common/fonts/UniversNextforHSBCW02-Rg.woff
IP
3.219.96.23:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (2021), with no line terminators
Size
2.0 kB (2021 bytes)
Hash
6319cb05fd0ed8f4aa633ad7beb74c5b
46f99bb4f595712e6005ef01f7c9faf7909bd513
0c0f89b2b616e71e7b34ba6dcfff8eddf00b8f1219e537c5354e474702058ab6

HTTP Headers

GET /stylesheets/common/fonts/UniversNextforHSBCW02-Rg.woff HTTP/1.1
Host: hs-bca.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/stylesheets/clientb.css

HTTP/1.1 404 Not Found
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Content-Type: text/html; charset=utf-8
Content-Length: 2021
Etag: W/"7e5-RvmbtPWVcS5gBe8B98n695Cb1RM"
Date: Sun, 16 Oct 2022 15:34:28 GMT
Via: 1.1 vegur

hs-bca.herokuapp.com/stylesheets/common/fonts/HSBCIcon-Font-Extension.woff?ee39a20e77cff3aec879befe2cd1d29d

3.219.96.23

404 Not Found

2.0 kB

URL HTTP/1.1
hs-bca.herokuapp.com/stylesheets/common/fonts/HSBCIcon-Font-Extension.woff?ee39a20e77cff3aec879befe2cd1d29d
IP
3.219.96.23:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (2021), with no line terminators
Size
2.0 kB (2021 bytes)
Hash
6319cb05fd0ed8f4aa633ad7beb74c5b
46f99bb4f595712e6005ef01f7c9faf7909bd513
0c0f89b2b616e71e7b34ba6dcfff8eddf00b8f1219e537c5354e474702058ab6

HTTP Headers

GET /stylesheets/common/fonts/HSBCIcon-Font-Extension.woff?ee39a20e77cff3aec879befe2cd1d29d HTTP/1.1
Host: hs-bca.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/stylesheets/clientb.css

HTTP/1.1 404 Not Found
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Content-Type: text/html; charset=utf-8
Content-Length: 2021
Etag: W/"7e5-RvmbtPWVcS5gBe8B98n695Cb1RM"
Date: Sun, 16 Oct 2022 15:34:29 GMT
Via: 1.1 vegur

hs-bca.herokuapp.com/authorize.auth.json?q&_=1665934472311

3.219.96.23

404 Not Found

2.0 kB

URL HTTP/1.1
hs-bca.herokuapp.com/authorize.auth.json?q&_=1665934472311
IP
3.219.96.23:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (2021), with no line terminators
Size
2.0 kB (2021 bytes)
Hash
6319cb05fd0ed8f4aa633ad7beb74c5b
46f99bb4f595712e6005ef01f7c9faf7909bd513
0c0f89b2b616e71e7b34ba6dcfff8eddf00b8f1219e537c5354e474702058ab6

HTTP Headers

GET /authorize.auth.json?q&_=1665934472311 HTTP/1.1
Host: hs-bca.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: json
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/

HTTP/1.1 404 Not Found
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Content-Type: text/html; charset=utf-8
Content-Length: 2021
Etag: W/"7e5-RvmbtPWVcS5gBe8B98n695Cb1RM"
Date: Sun, 16 Oct 2022 15:34:29 GMT
Via: 1.1 vegur

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
254c0f79943125eff7adbf9cb30d2b46
e24342391b47646fbbe9fa6a26dd95c0eadda7e5
35052bd13c72ac6c33ec3aa08ae793c5e12d2edeec5c91c9e2b2ac4762c3fc67

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 15:34:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hs-bca.herokuapp.com/stylesheets/common/fonts/UniversNextforHSBCW02-Bd.ttf

3.219.96.23

404 Not Found

2.0 kB

URL HTTP/1.1
hs-bca.herokuapp.com/stylesheets/common/fonts/UniversNextforHSBCW02-Bd.ttf
IP
3.219.96.23:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (2021), with no line terminators
Size
2.0 kB (2021 bytes)
Hash
6319cb05fd0ed8f4aa633ad7beb74c5b
46f99bb4f595712e6005ef01f7c9faf7909bd513
0c0f89b2b616e71e7b34ba6dcfff8eddf00b8f1219e537c5354e474702058ab6

HTTP Headers

GET /stylesheets/common/fonts/UniversNextforHSBCW02-Bd.ttf HTTP/1.1
Host: hs-bca.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/stylesheets/clientb.css

HTTP/1.1 404 Not Found
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Content-Type: text/html; charset=utf-8
Content-Length: 2021
Etag: W/"7e5-RvmbtPWVcS5gBe8B98n695Cb1RM"
Date: Sun, 16 Oct 2022 15:34:29 GMT
Via: 1.1 vegur

hs-bca.herokuapp.com/stylesheets/common/fonts/HSBCIcon-Font-Extension.ttf?ee39a20e77cff3aec879befe2cd1d29d

3.219.96.23

404 Not Found

2.0 kB

URL HTTP/1.1
hs-bca.herokuapp.com/stylesheets/common/fonts/HSBCIcon-Font-Extension.ttf?ee39a20e77cff3aec879befe2cd1d29d
IP
3.219.96.23:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (2021), with no line terminators
Size
2.0 kB (2021 bytes)
Hash
6319cb05fd0ed8f4aa633ad7beb74c5b
46f99bb4f595712e6005ef01f7c9faf7909bd513
0c0f89b2b616e71e7b34ba6dcfff8eddf00b8f1219e537c5354e474702058ab6

HTTP Headers

GET /stylesheets/common/fonts/HSBCIcon-Font-Extension.ttf?ee39a20e77cff3aec879befe2cd1d29d HTTP/1.1
Host: hs-bca.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/stylesheets/clientb.css

HTTP/1.1 404 Not Found
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Content-Type: text/html; charset=utf-8
Content-Length: 2021
Etag: W/"7e5-RvmbtPWVcS5gBe8B98n695Cb1RM"
Date: Sun, 16 Oct 2022 15:34:29 GMT
Via: 1.1 vegur

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
78b7645f1c755a897caba5a6e41f40be
3aae69c7b4828bbcf4ab3149e2c95445e582c616
ae99de957282172b4585bba3f8d09a3f6e774a1bbf270031b99f31a1b07c219a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 15:34:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hs-bca.herokuapp.com/stylesheets/common/fonts/UniversNextforHSBCW02-Rg.ttf

3.219.96.23

404 Not Found

2.0 kB

URL HTTP/1.1
hs-bca.herokuapp.com/stylesheets/common/fonts/UniversNextforHSBCW02-Rg.ttf
IP
3.219.96.23:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (2021), with no line terminators
Size
2.0 kB (2021 bytes)
Hash
6319cb05fd0ed8f4aa633ad7beb74c5b
46f99bb4f595712e6005ef01f7c9faf7909bd513
0c0f89b2b616e71e7b34ba6dcfff8eddf00b8f1219e537c5354e474702058ab6

HTTP Headers

GET /stylesheets/common/fonts/UniversNextforHSBCW02-Rg.ttf HTTP/1.1
Host: hs-bca.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/stylesheets/clientb.css

HTTP/1.1 404 Not Found
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Content-Type: text/html; charset=utf-8
Content-Length: 2021
Etag: W/"7e5-RvmbtPWVcS5gBe8B98n695Cb1RM"
Date: Sun, 16 Oct 2022 15:34:29 GMT
Via: 1.1 vegur

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
fb7e209e71081287c73ca92e4e8e84ed
8e67a89c5705bd3ef585d5dd0085cc8d1828d8f0
89cd60c71579fe1338a92225112266640c60d3711aef88eaf9296716d129a54e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3188
Cache-Control: max-age=138333
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 15:34:29 GMT
Etag: "634b916e-1d7"
Expires: Tue, 18 Oct 2022 06:00:02 GMT
Last-Modified: Sun, 16 Oct 2022 05:06:54 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

cdn.hsbc.ae/etc/designs/dpws/common/fonts/HSBCIcon-Font-Extension.woff?ee39a20e77cff3aec879befe2cd1d29d

23.36.79.17

200 OK

38 kB

URL HTTP/2
cdn.hsbc.ae/etc/designs/dpws/common/fonts/HSBCIcon-Font-Extension.woff?ee39a20e77cff3aec879befe2cd1d29d
IP
23.36.79.17:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format, TrueType, length 38384, version 0.0\012- data
Size
38 kB (38384 bytes)
Hash
ced5148c31f62660bbcc10126d75f58c
784cab62be1426036fcc0dff5645955032348289
76e6fcb163f76c23e3595acdb5c37457b8529ae4612bdfd266a9ef3d83550586

HTTP Headers

GET /etc/designs/dpws/common/fonts/HSBCIcon-Font-Extension.woff?ee39a20e77cff3aec879befe2cd1d29d HTTP/1.1
Host: cdn.hsbc.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://hs-bca.herokuapp.com
Connection: keep-alive
Referer: https://cdn.hsbc.ae/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Thu, 01 Sep 2022 04:56:17 GMT
accept-ranges: bytes
content-length: 38384
s: gbl-prod-sy-aempub
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-origin: *
content-type: application/font-woff
cache-control: max-age=4205798
date: Sun, 16 Oct 2022 15:34:29 GMT
X-Firefox-Spdy: h2

cdn.hsbc.ae/etc/designs/dpws/common/fonts/UniversNextforHSBCW02-Rg.woff

23.36.79.17

200 OK

28 kB

URL HTTP/2
cdn.hsbc.ae/etc/designs/dpws/common/fonts/UniversNextforHSBCW02-Rg.woff
IP
23.36.79.17:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format, TrueType, length 27464, version 1.0\012- data
Size
28 kB (27464 bytes)
Hash
e69fa5710cf91ca2d0d966b5f3f7ac16
c4404277c5f8295e65acb3bbc87ba4c61e2f9f94
e57fa923e1242b94093a29bc1497e22d7b5f78d6f124fe5ffc651383af545e13

HTTP Headers

GET /etc/designs/dpws/common/fonts/UniversNextforHSBCW02-Rg.woff HTTP/1.1
Host: cdn.hsbc.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://hs-bca.herokuapp.com
Connection: keep-alive
Referer: https://cdn.hsbc.ae/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Thu, 01 Sep 2022 01:43:03 GMT
accept-ranges: bytes
content-length: 27464
s: gbl-prod-sy-aempub
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-origin: *
content-type: application/font-woff
cache-control: max-age=4205798
date: Sun, 16 Oct 2022 15:34:29 GMT
X-Firefox-Spdy: h2

cdn.hsbc.ae/etc/designs/dpws/common/fonts/HSBCIcon-Font.woff?ee39a20e77cff3aec879befe2cd1d29d

23.36.79.17

200 OK

22 kB

URL HTTP/2
cdn.hsbc.ae/etc/designs/dpws/common/fonts/HSBCIcon-Font.woff?ee39a20e77cff3aec879befe2cd1d29d
IP
23.36.79.17:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format, TrueType, length 22532, version 1.0\012- data
Size
22 kB (22532 bytes)
Hash
c834d585a8944cf0b0c22d83d8f3d4a7
9b39448614e12eef7b0bc2613e875b9823c61b14
580245633d829cdc4a80192bc505ad254af0ed2955d5add87b56917a1c0f64df

HTTP Headers

GET /etc/designs/dpws/common/fonts/HSBCIcon-Font.woff?ee39a20e77cff3aec879befe2cd1d29d HTTP/1.1
Host: cdn.hsbc.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://hs-bca.herokuapp.com
Connection: keep-alive
Referer: https://cdn.hsbc.ae/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Thu, 01 Sep 2022 16:09:57 GMT
accept-ranges: bytes
content-length: 22532
s: gbl-prod-sy-aempub
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-origin: *
content-type: application/font-woff
cache-control: max-age=4205801
date: Sun, 16 Oct 2022 15:34:29 GMT
X-Firefox-Spdy: h2

cdn.hsbc.ae/etc/designs/dpws/common/fonts/UniversNextforHSBCW02-Bd.woff

23.36.79.17

200 OK

26 kB

URL HTTP/2
cdn.hsbc.ae/etc/designs/dpws/common/fonts/UniversNextforHSBCW02-Bd.woff
IP
23.36.79.17:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format, TrueType, length 26328, version 1.0\012- data
Size
26 kB (26328 bytes)
Hash
d20ee0309f4cabbf82f4a3e1ba2347e5
748c720666c0abf61b35cc65c517700172e7e823
1fe93d773a537c17456fc95e7dbfb69cba2914ac73c5f9b01d4db046667c688e

HTTP Headers

GET /etc/designs/dpws/common/fonts/UniversNextforHSBCW02-Bd.woff HTTP/1.1
Host: cdn.hsbc.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://hs-bca.herokuapp.com
Connection: keep-alive
Referer: https://cdn.hsbc.ae/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Thu, 01 Sep 2022 23:52:23 GMT
accept-ranges: bytes
content-length: 26328
s: gbl-prod-sy-aempub
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-origin: *
content-type: application/font-woff
cache-control: max-age=4205798
date: Sun, 16 Oct 2022 15:34:29 GMT
X-Firefox-Spdy: h2

cdn.hsbc.ae/etc/designs/logonEnhancements/assets/fonts/HSBCIcon-Font/HSBCIcon-Font.woff

23.36.79.17

200 OK

24 kB

URL HTTP/2
cdn.hsbc.ae/etc/designs/logonEnhancements/assets/fonts/HSBCIcon-Font/HSBCIcon-Font.woff
IP
23.36.79.17:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format, TrueType, length 23724, version 1.0\012- data
Size
24 kB (23724 bytes)
Hash
0a7dff91e34a70924e71ba8f65883664
bc3c3650b2995c4cb8c75edf3c576a6a9462524b
e9a3b36151838b0f414f746033f07a79989e9b4bbe327190e395ffe631ff7a31

HTTP Headers

GET /etc/designs/logonEnhancements/assets/fonts/HSBCIcon-Font/HSBCIcon-Font.woff HTTP/1.1
Host: cdn.hsbc.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://hs-bca.herokuapp.com
Connection: keep-alive
Referer: https://cdn.hsbc.ae/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Thu, 01 Sep 2022 01:50:55 GMT
accept-ranges: bytes
content-length: 23724
s: gbl-prod-sy-aempub
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-origin: *
content-type: application/font-woff
cache-control: max-age=4205805
date: Sun, 16 Oct 2022 15:34:29 GMT
X-Firefox-Spdy: h2

hsbcbankglobal.demdex.net/dest5.html?d_nsid=0

54.154.199.204

200 OK

2.8 kB

URL HTTP/1.1
hsbcbankglobal.demdex.net/dest5.html?d_nsid=0
IP
54.154.199.204:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (550)
Size
2.8 kB (2791 bytes)
Hash
ccbdcb1e84c241950763ec4cd516cdfc
55dfa8d4b09c5c3a80fcd101152f6ebed3d27a2c
de9ccb9b168945a24f20edc28c39be4135b328129ba8ee378401a7aedc925d12

HTTP Headers

GET /dest5.html?d_nsid=0 HTTP/1.1
Host: hsbcbankglobal.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: text/html;charset=UTF-8
date: Sun, 16 Oct 2022 15:34:29 GMT
DCS: dcs-prod-irl1-2-v044-08a9bb06a.edge-irl1.demdex.com 2 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
last-modified: Thu, 29 Sep 2022 16:47:44 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
vary: accept-encoding
X-TID: Ul24HqPbRnQ=
Content-Length: 2791
Connection: keep-alive

hs-bca.herokuapp.com/stylesheets/common/fonts/HSBCIcon-Font.woff?ee39a20e77cff3aec879befe2cd1d29d

3.219.96.23

404 Not Found

2.0 kB

URL HTTP/1.1
hs-bca.herokuapp.com/stylesheets/common/fonts/HSBCIcon-Font.woff?ee39a20e77cff3aec879befe2cd1d29d
IP
3.219.96.23:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (2021), with no line terminators
Size
2.0 kB (2021 bytes)
Hash
6319cb05fd0ed8f4aa633ad7beb74c5b
46f99bb4f595712e6005ef01f7c9faf7909bd513
0c0f89b2b616e71e7b34ba6dcfff8eddf00b8f1219e537c5354e474702058ab6

HTTP Headers

GET /stylesheets/common/fonts/HSBCIcon-Font.woff?ee39a20e77cff3aec879befe2cd1d29d HTTP/1.1
Host: hs-bca.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/stylesheets/clientb.css

HTTP/1.1 404 Not Found
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Content-Type: text/html; charset=utf-8
Content-Length: 2021
Etag: W/"7e5-RvmbtPWVcS5gBe8B98n695Cb1RM"
Date: Sun, 16 Oct 2022 15:34:29 GMT
Via: 1.1 vegur

cdn.hsbc.ae/etc/designs/dpws/common/fonts/HelveticaNeueforHSBCW84-Rm.woff

23.36.79.17

200 OK

38 kB

URL HTTP/2
cdn.hsbc.ae/etc/designs/dpws/common/fonts/HelveticaNeueforHSBCW84-Rm.woff
IP
23.36.79.17:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format, TrueType, length 38490, version 1.0\012- data
Size
38 kB (38490 bytes)
Hash
7846a7e31d97fae6d5106a6fdb8f13e5
cebbf092520cd003abb9043024e2bedc0a68fb70
da6f74a0323d322059b4ed78eebe01c74b5a03c49f3a95d20c29f7dfbbd5da50

HTTP Headers

GET /etc/designs/dpws/common/fonts/HelveticaNeueforHSBCW84-Rm.woff HTTP/1.1
Host: cdn.hsbc.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://hs-bca.herokuapp.com
Connection: keep-alive
Referer: https://cdn.hsbc.ae/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Sun, 16 Oct 2022 15:34:29 GMT
accept-ranges: bytes
content-length: 38490
s: gbl-prod-wk-aempub
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-origin: *
content-type: application/font-woff
cache-control: max-age=7776000
date: Sun, 16 Oct 2022 15:34:29 GMT
set-cookie: DIGITAL-AE-AEM-DYN-WDC=!sAgnJRLN+Aw3rgjhWgFhMJbjTKbV4GX0T9WYExGl+ERKG/oFWQAYvuC4I7UQCNO3Jq8rjXwfdeq1Hg==; path=/; Httponly; Secure
TS019e0bf9=013f1c4538317fb39b15ac49552c30fb17935f78f5fd5ef11cf980c1ba23ae011f78f35e6891ff97cb083062e10ede57276cfbfb82; Path=/
X-Firefox-Spdy: h2

hs-bca.herokuapp.com/stylesheets/common/fonts/HelveticaNeueforHSBCW84-Rm.woff

3.219.96.23

404 Not Found

2.0 kB

URL HTTP/1.1
hs-bca.herokuapp.com/stylesheets/common/fonts/HelveticaNeueforHSBCW84-Rm.woff
IP
3.219.96.23:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (2021), with no line terminators
Size
2.0 kB (2021 bytes)
Hash
6319cb05fd0ed8f4aa633ad7beb74c5b
46f99bb4f595712e6005ef01f7c9faf7909bd513
0c0f89b2b616e71e7b34ba6dcfff8eddf00b8f1219e537c5354e474702058ab6

Detections

Analyzer	Verdict	Alert
openphish	HSBC Bank

HTTP Headers

GET /stylesheets/common/fonts/HelveticaNeueforHSBCW84-Rm.woff HTTP/1.1
Host: hs-bca.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/stylesheets/clientb.css

HTTP/1.1 404 Not Found
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Content-Type: text/html; charset=utf-8
Content-Length: 2021
Etag: W/"7e5-RvmbtPWVcS5gBe8B98n695Cb1RM"
Date: Sun, 16 Oct 2022 15:34:29 GMT
Via: 1.1 vegur

tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.381.js?utv=ut4.46.202206241813

23.38.200.249

200 OK

4.6 kB

URL HTTP/1.1
tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.381.js?utv=ut4.46.202206241813
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (1866), with CR, LF line terminators
Size
4.6 kB (4646 bytes)
Hash
1a4021dfd5af7e36675082e0eacd9cb5
f25172c0048628eda77d53cc398c166e3bcd151f
32a58d5c7c52ab77e7915c3622482dc752df2540dcb94feec7ab2dd14b6bc7f4

HTTP Headers

GET /utag/hsbc/ae-rbwm-gsp/prod/utag.381.js?utv=ut4.46.202206241813 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "d4f84e0440e3784311b44504024ada16:1612460865.878483"
Last-Modified: Thu, 04 Feb 2021 17:47:45 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1296000
Expires: Mon, 31 Oct 2022 15:34:29 GMT
Date: Sun, 16 Oct 2022 15:34:29 GMT
Content-Length: 4646
Connection: keep-alive

tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.338.js?utv=ut4.46.202008191228

23.38.200.249

200 OK

2.1 kB

URL HTTP/1.1
tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.338.js?utv=ut4.46.202008191228
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type
C source, ASCII text, with very long lines (505)
Size
2.1 kB (2080 bytes)
Hash
848254ba9c1056f978d76ec380eda1fb
cdd67163631fcea5ce4f77d429343f9a62cd2b10
7457fbfd94959292d30ddad5123cd82a030124ed45df84347640f5af7281b4c0

HTTP Headers

GET /utag/hsbc/ae-rbwm-gsp/prod/utag.338.js?utv=ut4.46.202008191228 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "2fea90e8c1714b1e3219d4c1f6840d93:1597840118.667093"
Last-Modified: Wed, 19 Aug 2020 12:28:38 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1296000
Expires: Mon, 31 Oct 2022 15:34:29 GMT
Date: Sun, 16 Oct 2022 15:34:29 GMT
Content-Length: 2080
Connection: keep-alive

hs-bca.herokuapp.com/stylesheets/common/fonts/HelveticaNeueforHSBCW84-Bd.woff

3.219.96.23

404 Not Found

2.0 kB

URL HTTP/1.1
hs-bca.herokuapp.com/stylesheets/common/fonts/HelveticaNeueforHSBCW84-Bd.woff
IP
3.219.96.23:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (2021), with no line terminators
Size
2.0 kB (2021 bytes)
Hash
6319cb05fd0ed8f4aa633ad7beb74c5b
46f99bb4f595712e6005ef01f7c9faf7909bd513
0c0f89b2b616e71e7b34ba6dcfff8eddf00b8f1219e537c5354e474702058ab6

HTTP Headers

GET /stylesheets/common/fonts/HelveticaNeueforHSBCW84-Bd.woff HTTP/1.1
Host: hs-bca.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/stylesheets/clientb.css

HTTP/1.1 404 Not Found
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Content-Type: text/html; charset=utf-8
Content-Length: 2021
Etag: W/"7e5-RvmbtPWVcS5gBe8B98n695Cb1RM"
Date: Sun, 16 Oct 2022 15:34:29 GMT
Via: 1.1 vegur

tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.365.js?utv=ut4.46.202101201807

23.38.200.249

200 OK

2.5 kB

URL HTTP/1.1
tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.365.js?utv=ut4.46.202101201807
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (1620)
Size
2.5 kB (2476 bytes)
Hash
0381401e8f18c2fb981c05fd603e3da9
d371312c1d6ec0ea0bcea0e4b2920c46750a9ac6
07a6e41a8ac8e0f87ee6f6df7872ffcca4b3a533ea5f7eaf3947fb980591f834

HTTP Headers

GET /utag/hsbc/ae-rbwm-gsp/prod/utag.365.js?utv=ut4.46.202101201807 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "83e41cdefef7ccbdcb3e9f5ea0085d52:1611166072.999415"
Last-Modified: Wed, 20 Jan 2021 18:07:52 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1296000
Expires: Mon, 31 Oct 2022 15:34:29 GMT
Date: Sun, 16 Oct 2022 15:34:29 GMT
Content-Length: 2476
Connection: keep-alive

hs-bca.herokuapp.com/etc/designs/logonEnhancements/assets/fonts/HSBCIcon-Font/HSBCIcon-Font.woff

3.219.96.23

404 Not Found

2.0 kB

URL HTTP/1.1
hs-bca.herokuapp.com/etc/designs/logonEnhancements/assets/fonts/HSBCIcon-Font/HSBCIcon-Font.woff
IP
3.219.96.23:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (2021), with no line terminators
Size
2.0 kB (2021 bytes)
Hash
6319cb05fd0ed8f4aa633ad7beb74c5b
46f99bb4f595712e6005ef01f7c9faf7909bd513
0c0f89b2b616e71e7b34ba6dcfff8eddf00b8f1219e537c5354e474702058ab6

HTTP Headers

GET /etc/designs/logonEnhancements/assets/fonts/HSBCIcon-Font/HSBCIcon-Font.woff HTTP/1.1
Host: hs-bca.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/

HTTP/1.1 404 Not Found
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Content-Type: text/html; charset=utf-8
Content-Length: 2021
Etag: W/"7e5-RvmbtPWVcS5gBe8B98n695Cb1RM"
Date: Sun, 16 Oct 2022 15:34:29 GMT
Via: 1.1 vegur

tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.352.js?utv=ut4.46.202206241813

23.38.200.249

200 OK

14 kB

URL HTTP/1.1
tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.352.js?utv=ut4.46.202206241813
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (2375)
Size
14 kB (14019 bytes)
Hash
d351e307adc84ad914637b0f8f5f34fb
a971d158263eb73df311b58c50c525401e23a700
638785b526e5bc938687188b54780c90aac0d8ee54a46a743d1c369e2bcdc4cb

HTTP Headers

GET /utag/hsbc/ae-rbwm-gsp/prod/utag.352.js?utv=ut4.46.202206241813 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "61653ea5b013bedfc8a4eeaf7d393f04:1604891504.462166"
Last-Modified: Mon, 09 Nov 2020 03:11:44 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1296000
Expires: Mon, 31 Oct 2022 15:34:29 GMT
Date: Sun, 16 Oct 2022 15:34:29 GMT
Content-Length: 14019
Connection: keep-alive

hs-bca.herokuapp.com/stylesheets/common/fonts/HSBCIcon-Font.ttf?ee39a20e77cff3aec879befe2cd1d29d

3.219.96.23

404 Not Found

2.0 kB

URL HTTP/1.1
hs-bca.herokuapp.com/stylesheets/common/fonts/HSBCIcon-Font.ttf?ee39a20e77cff3aec879befe2cd1d29d
IP
3.219.96.23:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (2021), with no line terminators
Size
2.0 kB (2021 bytes)
Hash
6319cb05fd0ed8f4aa633ad7beb74c5b
46f99bb4f595712e6005ef01f7c9faf7909bd513
0c0f89b2b616e71e7b34ba6dcfff8eddf00b8f1219e537c5354e474702058ab6

HTTP Headers

GET /stylesheets/common/fonts/HSBCIcon-Font.ttf?ee39a20e77cff3aec879befe2cd1d29d HTTP/1.1
Host: hs-bca.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/stylesheets/clientb.css

HTTP/1.1 404 Not Found
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Content-Type: text/html; charset=utf-8
Content-Length: 2021
Etag: W/"7e5-RvmbtPWVcS5gBe8B98n695Cb1RM"
Date: Sun, 16 Oct 2022 15:34:29 GMT
Via: 1.1 vegur

www.isstmena.hsbc.ae/8156/handler9/session.json

91.214.5.199

403 Forbidden

0 B

URL HTTP/1.1
www.isstmena.hsbc.ae/8156/handler9/session.json
IP
91.214.5.199:0
ASN
#20705 HSBC Bank plc

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /8156/handler9/session.json HTTP/1.1
Host: www.isstmena.hsbc.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 445
Origin: http://hs-bca.herokuapp.com
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 403 Forbidden
Date: Sun, 16 Oct 2022 15:34:29 GMT
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains
S: LISST02RPUK-WS
X-Content-Type-Options: nosniff
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/json
Transfer-Encoding: chunked

hs-bca.herokuapp.com/stylesheets/common/fonts/HelveticaNeueforHSBCW84-Rm.ttf

3.219.96.23

404 Not Found

2.0 kB

URL HTTP/1.1
hs-bca.herokuapp.com/stylesheets/common/fonts/HelveticaNeueforHSBCW84-Rm.ttf
IP
3.219.96.23:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (2021), with no line terminators
Size
2.0 kB (2021 bytes)
Hash
6319cb05fd0ed8f4aa633ad7beb74c5b
46f99bb4f595712e6005ef01f7c9faf7909bd513
0c0f89b2b616e71e7b34ba6dcfff8eddf00b8f1219e537c5354e474702058ab6

HTTP Headers

GET /stylesheets/common/fonts/HelveticaNeueforHSBCW84-Rm.ttf HTTP/1.1
Host: hs-bca.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/stylesheets/clientb.css

HTTP/1.1 404 Not Found
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Content-Type: text/html; charset=utf-8
Content-Length: 2021
Etag: W/"7e5-RvmbtPWVcS5gBe8B98n695Cb1RM"
Date: Sun, 16 Oct 2022 15:34:29 GMT
Via: 1.1 vegur

hs-bca.herokuapp.com/

3.219.96.23

302 Found

23 B

URL HTTP/1.1
hs-bca.herokuapp.com/
IP
3.219.96.23:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with no line terminators
Size
23 B (23 bytes)
Hash
19f1429ad5f6eb308725dc533ddbf8be
58ed14b4156f90188137f0328c9201825426a934
4a420424a2c575891b5947fe46615eb7968fc4e8d212361d6a631dc01407558b

HTTP Headers

POST / HTTP/1.1
Host: hs-bca.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-HSBC-Channel-Id: web
X-HSBC-Locale: en
X-HSBC-Chnl-CountryCode: AE
X-HSBC-Chnl-Group-Member: BBME
Requested_Token: LIVECHAT
Token_Type: SESSION_TOKEN
Content-Type: text/plain;charset=UTF-8
Content-Length: 2
Origin: http://hs-bca.herokuapp.com
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/

HTTP/1.1 302 Found
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Location: /
Vary: Accept
Content-Type: text/plain; charset=utf-8
Content-Length: 23
Date: Sun, 16 Oct 2022 15:34:29 GMT
Via: 1.1 vegur

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
467c98217b3c90dedabafc249207b8eb
8a0756b2c6003aaaba58cc75be784e8e283feb45
82b3ac154fd4347d2a7827d48ff7f0ccc8c0abe562cb6796a52b02e7cc9b6467

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82B3AC154FD4347D2A7827D48FF7F0CCC8C0ABE562CB6796A52B02E7CC9B6467"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14970
Expires: Sun, 16 Oct 2022 19:43:59 GMT
Date: Sun, 16 Oct 2022 15:34:29 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
467c98217b3c90dedabafc249207b8eb
8a0756b2c6003aaaba58cc75be784e8e283feb45
82b3ac154fd4347d2a7827d48ff7f0ccc8c0abe562cb6796a52b02e7cc9b6467

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82B3AC154FD4347D2A7827D48FF7F0CCC8C0ABE562CB6796A52B02E7CC9B6467"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14970
Expires: Sun, 16 Oct 2022 19:43:59 GMT
Date: Sun, 16 Oct 2022 15:34:29 GMT
Connection: keep-alive

hs-bca.herokuapp.com/etc/designs/logonEnhancements/assets/fonts/HSBCIcon-Font/HSBCIcon-Font.ttf

3.219.96.23

404 Not Found

2.0 kB

URL HTTP/1.1
hs-bca.herokuapp.com/etc/designs/logonEnhancements/assets/fonts/HSBCIcon-Font/HSBCIcon-Font.ttf
IP
3.219.96.23:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (2021), with no line terminators
Size
2.0 kB (2021 bytes)
Hash
6319cb05fd0ed8f4aa633ad7beb74c5b
46f99bb4f595712e6005ef01f7c9faf7909bd513
0c0f89b2b616e71e7b34ba6dcfff8eddf00b8f1219e537c5354e474702058ab6

HTTP Headers

GET /etc/designs/logonEnhancements/assets/fonts/HSBCIcon-Font/HSBCIcon-Font.ttf HTTP/1.1
Host: hs-bca.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/

HTTP/1.1 404 Not Found
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Content-Type: text/html; charset=utf-8
Content-Length: 2021
Etag: W/"7e5-RvmbtPWVcS5gBe8B98n695Cb1RM"
Date: Sun, 16 Oct 2022 15:34:29 GMT
Via: 1.1 vegur

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
467c98217b3c90dedabafc249207b8eb
8a0756b2c6003aaaba58cc75be784e8e283feb45
82b3ac154fd4347d2a7827d48ff7f0ccc8c0abe562cb6796a52b02e7cc9b6467

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82B3AC154FD4347D2A7827D48FF7F0CCC8C0ABE562CB6796A52B02E7CC9B6467"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14970
Expires: Sun, 16 Oct 2022 19:43:59 GMT
Date: Sun, 16 Oct 2022 15:34:29 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
467c98217b3c90dedabafc249207b8eb
8a0756b2c6003aaaba58cc75be784e8e283feb45
82b3ac154fd4347d2a7827d48ff7f0ccc8c0abe562cb6796a52b02e7cc9b6467

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82B3AC154FD4347D2A7827D48FF7F0CCC8C0ABE562CB6796A52B02E7CC9B6467"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14970
Expires: Sun, 16 Oct 2022 19:43:59 GMT
Date: Sun, 16 Oct 2022 15:34:29 GMT
Connection: keep-alive

lpcdn.lpsnmedia.net/le_re/3.41.0.2-release_5020/jsv2/overlay.js?_v=3.41.0.2-release_5020

178.249.97.98

200 OK

9.8 kB

URL HTTP/2
lpcdn.lpsnmedia.net/le_re/3.41.0.2-release_5020/jsv2/overlay.js?_v=3.41.0.2-release_5020
IP
178.249.97.98:0
ASN
#11054 LIVEPERSON

File type
data
Size
9.8 kB (9818 bytes)
Hash
ca74f4619be31642d8441ffe1810dfdc
530eed694b44423904874cc9de25777a3fc3bd46
4ba969287e1098973a33485ad16c14d9899077945cc9d7020e47b36aa1e6aefe

HTTP Headers

GET /le_re/3.41.0.2-release_5020/jsv2/overlay.js?_v=3.41.0.2-release_5020 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 16 Oct 2022 15:34:28 GMT
content-type: application/javascript
last-modified: Mon, 06 Jul 2020 14:51:24 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Mon, 16 Oct 2023 15:34:28 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: MISS
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb25d7cce-c352-4b25-a8c5-aa8493d99e4c.jpeg

34.120.237.76

200 OK

9.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb25d7cce-c352-4b25-a8c5-aa8493d99e4c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.3 kB (9260 bytes)
Hash
e20daa74ab04b1b9859672acfc070f7e
d291947f161c928e6c6682a05835478b5f0cffc5
ebbe051930f46dd25de2a4c5795f3bdddf1513c0657cdc986c48f3dfdc90f575

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb25d7cce-c352-4b25-a8c5-aa8493d99e4c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9260
x-amzn-requestid: dfd8deb0-fc73-4321-b024-330b2a3d1759
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aENyFH9RoAMF24w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634b29a6-0aaf75c43b51d5775bc48a95;Sampled=0
x-amzn-remapped-date: Sat, 15 Oct 2022 21:44:06 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: YVZ4EN-w7lmXTXKTy_A-9P0TW0zAqSa7j5_G2M1XnS-j3EfJSEFplw==
via: 1.1 ef6538ee7be7b17c84d06edb0f4c0a1a.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 15 Oct 2022 21:58:49 GMT
age: 63340
etag: "d291947f161c928e6c6682a05835478b5f0cffc5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F89b2ee08-a53a-4763-aca2-fe23fd25f3d1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6367 bytes)
Hash
df5f38c3dc43ccc382d0274bffb6b350
9a305072cce8bb61ca3753bb98b999695fb4706e
20ff21892e65787fecbadca0f59c05e54dee3a1359271839dab0ee5c9e796ab0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F89b2ee08-a53a-4763-aca2-fe23fd25f3d1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6367
x-amzn-requestid: 485c3cf9-d305-4540-8eef-8304d1103ccc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aEL5EHbOoAMFWsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634b26a0-2ac206d826bf23193740e74c;Sampled=0
x-amzn-remapped-date: Sat, 15 Oct 2022 21:31:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: j4GFPRLOwyEGJVrC4uk01vi858DLWzDtUNZkfmbJ1ybrMV4xEdOIVg==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Sat, 15 Oct 2022 21:50:24 GMT
age: 63845
etag: "9a305072cce8bb61ca3753bb98b999695fb4706e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbdbc5b51-a9c2-4f99-ad40-8ab061924326.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.1 kB (7082 bytes)
Hash
cd94762992136ed2f4d24dd34a745154
2050cee63f8005c5d9ac1a817730ada51b323f34
4548836d8846da958f477e1df952f6da9b9640e204804a7c76194d3e061b90a4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbdbc5b51-a9c2-4f99-ad40-8ab061924326.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7082
x-amzn-requestid: 5e98988f-faad-4e52-a49f-28d5a77b15d4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aEL46HFloAMFSag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634b269f-6759e36c79241479181c1d05;Sampled=0
x-amzn-remapped-date: Sat, 15 Oct 2022 21:31:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p2Ytir5IhFSnRKz3OJ3J6_SieMyoFAAysH8-jBf_Bh_xfKEDRGy18g==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 15 Oct 2022 21:36:56 GMT
age: 64653
etag: "2050cee63f8005c5d9ac1a817730ada51b323f34"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6ea4d5d-0df9-4cfe-a9fc-e70b8e32f8ef.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13261 bytes)
Hash
54edb9ab897821172fc13756df376ee7
2010f9656d87e6f5220f131628c537720c3673e1
6694c1be0adf97fa77d1bfa29337d9e609b729a58d42e141e9bb55ed6367b1d8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6ea4d5d-0df9-4cfe-a9fc-e70b8e32f8ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13261
x-amzn-requestid: dd760e09-701e-4956-9723-386edc97c694
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z0fH6FzIoAMFzJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6344deff-197cf4f048e146af5654d0bd;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 03:11:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: GqrnIWT2tXfLFsliOhOKbPHcYY56gN8Ig4Nlbx9vb6vjSkD66XDvCw==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 16 Oct 2022 07:36:42 GMT
age: 28667
etag: "2010f9656d87e6f5220f131628c537720c3673e1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72044c0-fdd0-4da5-aa61-159d966f040f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.1 kB (7075 bytes)
Hash
3e86d948bf8ed2f5918f8323b043ad5f
41548e231e2358d3453e7630f0d07a645cc25ddc
6602f2a020618234d34a9b6cd107398f0405de6dd14227e265aca84b38eaa5cc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72044c0-fdd0-4da5-aa61-159d966f040f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7075
x-amzn-requestid: 254a8860-b3bf-4e8d-a08d-31effa209a6e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aEL5iGQqIAMFmkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634b26a3-1a2820f550f35bf830444c22;Sampled=0
x-amzn-remapped-date: Sat, 15 Oct 2022 21:31:15 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: psWLknan4sVucDaNcLURe-XRPs5FKeJ0Il7ZGWvBxV2rgpTrQvbyVw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Sat, 15 Oct 2022 21:41:19 GMT
etag: "41548e231e2358d3453e7630f0d07a645cc25ddc"
content-type: image/jpeg
age: 64390
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

hs-bca.herokuapp.com/stylesheets/common/fonts/HelveticaNeueforHSBCW84-Bd.ttf

3.219.96.23

404 Not Found

2.0 kB

URL HTTP/1.1
hs-bca.herokuapp.com/stylesheets/common/fonts/HelveticaNeueforHSBCW84-Bd.ttf
IP
3.219.96.23:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (2021), with no line terminators
Size
2.0 kB (2021 bytes)
Hash
6319cb05fd0ed8f4aa633ad7beb74c5b
46f99bb4f595712e6005ef01f7c9faf7909bd513
0c0f89b2b616e71e7b34ba6dcfff8eddf00b8f1219e537c5354e474702058ab6

Detections

Analyzer	Verdict	Alert
openphish	HSBC Bank

HTTP Headers

GET /stylesheets/common/fonts/HelveticaNeueforHSBCW84-Bd.ttf HTTP/1.1
Host: hs-bca.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/stylesheets/clientb.css

HTTP/1.1 404 Not Found
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Content-Type: text/html; charset=utf-8
Content-Length: 2021
Etag: W/"7e5-RvmbtPWVcS5gBe8B98n695Cb1RM"
Date: Sun, 16 Oct 2022 15:34:29 GMT
Via: 1.1 vegur

tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.486.js?utv=ut4.46.202206241813

23.38.200.249

200 OK

2.7 kB

URL HTTP/1.1
tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.486.js?utv=ut4.46.202206241813
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (1839)
Size
2.7 kB (2665 bytes)
Hash
c0aec0646c9ef56c39dfc77f394d3d01
367d67db338b5cba9a70ea080ff1f802268d6053
9e0c42cd333a3b19c06ac54e615f2f6b4f455a4ea997fc3b73dd93cfc9763125

HTTP Headers

GET /utag/hsbc/ae-rbwm-gsp/prod/utag.486.js?utv=ut4.46.202206241813 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "e44c19b9aab69d9c9ad9953867cf5084:1643310295.646246"
Last-Modified: Thu, 27 Jan 2022 19:04:55 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1296000
Expires: Mon, 31 Oct 2022 15:34:29 GMT
Date: Sun, 16 Oct 2022 15:34:29 GMT
Content-Length: 2665
Connection: keep-alive

tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.471.js?utv=ut4.46.202209291807

23.38.200.249

200 OK

2.0 kB

URL HTTP/1.1
tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.471.js?utv=ut4.46.202209291807
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (1117)
Size
2.0 kB (2045 bytes)
Hash
5a6e8c5f94bd065f54097ade0d397cbe
23ea17883d7a37a6375b61284a2ebe5fdbe89c16
11cab3c27eea1f833043f0b9296646deb1e75080241e737ec312fc9173710fdd

HTTP Headers

GET /utag/hsbc/ae-rbwm-gsp/prod/utag.471.js?utv=ut4.46.202209291807 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "542a6a009410e68057a37200a12875d1:1643310298.001134"
Last-Modified: Thu, 27 Jan 2022 19:04:57 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1296000
Expires: Mon, 31 Oct 2022 15:34:29 GMT
Date: Sun, 16 Oct 2022 15:34:29 GMT
Content-Length: 2045
Connection: keep-alive

tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.542.js?utv=ut4.46.202206241813

23.38.200.249

200 OK

3.7 kB

URL HTTP/1.1
tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.542.js?utv=ut4.46.202206241813
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type
C source, ASCII text, with very long lines (1038)
Size
3.7 kB (3652 bytes)
Hash
fd263f2b97227ecbdc7f842973f4bfd7
4845e748066e3f9aed023cd4ce463a0f89522d99
56a48dab57898d92ab7b778e25cfd809fc5b02a00b86a547ebefcaf80038ab0b

HTTP Headers

GET /utag/hsbc/ae-rbwm-gsp/prod/utag.542.js?utv=ut4.46.202206241813 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "a43d5cc4f3dc584e5228c8242640bc21:1656094463.13689"
Last-Modified: Fri, 24 Jun 2022 18:14:23 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1296000
Expires: Mon, 31 Oct 2022 15:34:30 GMT
Date: Sun, 16 Oct 2022 15:34:30 GMT
Content-Length: 3652
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5f309b801fdcff49c832652cf9f67fed
f0b6a27d0995fd7fd40f23ee385f8fe1fd752c13
53663428a1b73aeee2fc68815b072ad9ced52bfd3726416aaab332c29eb3aab6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 15:34:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.460.js?utv=ut4.46.202209291807

23.38.200.249

200 OK

7.3 kB

URL HTTP/1.1
tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.460.js?utv=ut4.46.202209291807
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (3442)
Size
7.3 kB (7275 bytes)
Hash
9132e311504e9f266b1960db04842240
4d82dcb78fa504524bac82b2279d1bc81278565a
92fc80b431985dd3e4b436b71a3530961997c12e72b3bed7c356497f96331601

HTTP Headers

GET /utag/hsbc/ae-rbwm-gsp/prod/utag.460.js?utv=ut4.46.202209291807 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "a8b46a98653470cf592d6421edeb5d4f:1643310295.825884"
Last-Modified: Thu, 27 Jan 2022 19:04:55 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1296000
Expires: Mon, 31 Oct 2022 15:34:30 GMT
Date: Sun, 16 Oct 2022 15:34:30 GMT
Content-Length: 7275
Connection: keep-alive

www.googletagmanager.com/gtag/js?id=DC-8715533

142.250.74.168

200 OK

42 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=DC-8715533
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1934)
Size
42 kB (42485 bytes)
Hash
564b75166e8512d80697daef09a7d15b
342a6e5b8d08095ad258ee840875a13cb2c77a05
a518883770ecf6fefb4469b8cd9406c0bac3487a17d46ded981cee940bcdc0c8

HTTP Headers

GET /gtag/js?id=DC-8715533 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 16 Oct 2022 15:34:30 GMT
expires: Sun, 16 Oct 2022 15:34:30 GMT
cache-control: private, max-age=900
last-modified: Sun, 16 Oct 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42485
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5f309b801fdcff49c832652cf9f67fed
f0b6a27d0995fd7fd40f23ee385f8fe1fd752c13
53663428a1b73aeee2fc68815b072ad9ced52bfd3726416aaab332c29eb3aab6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 15:34:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/recaptcha/releases/TPiWapjoyMdQOtxLT9_b4n2W/styles__ltr.css

142.250.74.163

404 Not Found

1.6 kB

URL HTTP/2
www.gstatic.com/recaptcha/releases/TPiWapjoyMdQOtxLT9_b4n2W/styles__ltr.css
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size
1.6 kB (1620 bytes)
Hash
36ad1efdd1271971fad5299dd0f40d9c
d13076e5bfcc75f78a65b35dc987c89097253df7
2f6ab5d6acbc6d77d184c44c5bb676884088ba2bcbcdafa1a132919d837e7a9c

HTTP Headers

GET /recaptcha/releases/TPiWapjoyMdQOtxLT9_b4n2W/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
date: Sun, 16 Oct 2022 15:34:30 GMT
content-type: text/html; charset=UTF-8
server: sffe
content-length: 1620
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
254c0f79943125eff7adbf9cb30d2b46
e24342391b47646fbbe9fa6a26dd95c0eadda7e5
35052bd13c72ac6c33ec3aa08ae793c5e12d2edeec5c91c9e2b2ac4762c3fc67

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 15:34:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hs-bca.herokuapp.com/

3.219.96.23

200 OK

57 kB

URL HTTP/1.1
hs-bca.herokuapp.com/
IP
3.219.96.23:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (36955)
Size
57 kB (57277 bytes)
Hash
427689b055af7fed97228eb255f5aeaa
74cd9db8cf90f7d306e490a5a2e0461f35be5942
fd8e92d367555d5c2d994b44c44059e6b89cebaf5ff78becad5e676768977cc2

HTTP Headers

GET / HTTP/1.1
Host: hs-bca.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-HSBC-Channel-Id: web
X-HSBC-Locale: en
X-HSBC-Chnl-CountryCode: AE
X-HSBC-Chnl-Group-Member: BBME
Requested_Token: LIVECHAT
Token_Type: SESSION_TOKEN
Referer: http://hs-bca.herokuapp.com/
Connection: keep-alive
Cookie: usy46gabsosd=HSBCMENA_16659344732450.a84fd5a4443e064c93271f3f5eff7ca5_8156

HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Content-Type: text/html; charset=utf-8
Content-Length: 57277
Etag: W/"dfbd-dM2duM+Q99MG5JClouBGHzW+WUI"
Date: Sun, 16 Oct 2022 15:34:29 GMT
Via: 1.1 vegur

tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.540.js?utv=ut4.46.202206241813

23.38.200.249

200 OK

13 kB

URL HTTP/1.1
tags.tiqcdn.com/utag/hsbc/ae-rbwm-gsp/prod/utag.540.js?utv=ut4.46.202206241813
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (2975), with CR, LF line terminators
Size
13 kB (12621 bytes)
Hash
9f1ce826998ac5d83e92d11782bdbf93
b685a55b85773b2b3e78b8f93ff20bed140afb69
91fcbc877b317c20d867e52b80866249e0ecba789e1d96915e6df341bffa386d

HTTP Headers

GET /utag/hsbc/ae-rbwm-gsp/prod/utag.540.js?utv=ut4.46.202206241813 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "8d5362f63cb1d2d5ee89e74363381738:1656094464.814875"
Last-Modified: Fri, 24 Jun 2022 18:14:24 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1296000
Expires: Mon, 31 Oct 2022 15:34:30 GMT
Date: Sun, 16 Oct 2022 15:34:30 GMT
Content-Length: 12621
Connection: keep-alive

cdn.hsbc.ae/etc/designs/dpws/common/favicons/favicon.ico

23.36.79.17

200 OK

1.1 kB

URL HTTP/2
cdn.hsbc.ae/etc/designs/dpws/common/favicons/favicon.ico
IP
23.36.79.17:0
ASN
#20940 Akamai International B.V.

File type
MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
1.1 kB (1072 bytes)
Hash
42ce9c0854603cdb9bde507c2a0271cc
a45078d586db640cc0120bdf2cee557c577f6d77
cddaba4a41dc8c00d6639fb63a25e313fabbcc9e84877c5a0079eee42aa247e8

HTTP Headers

GET /etc/designs/dpws/common/favicons/favicon.ico HTTP/1.1
Host: cdn.hsbc.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
strict-transport-security: max-age=16070400; includeSubDomains
last-modified: Thu, 15 Sep 2022 08:55:23 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
s: gbl-prod-wk-aempub
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-length: 1072
content-type: image/x-icon
cache-control: max-age=5090295
date: Sun, 16 Oct 2022 15:34:30 GMT
X-Firefox-Spdy: h2

cm.g.doubleclick.net/pixel?tealium_cookie_sync=true&google_nid=tealium_dmp&google_cm&tealium_vid=0183e16eb3220021b0eceb57dc7e00044001c00900918&tealium_account=hsbc&tealium_profile=wpb-stream-ae

172.217.21.162

302 Found

569 B

URL HTTP/1.1
cm.g.doubleclick.net/pixel?tealium_cookie_sync=true&google_nid=tealium_dmp&google_cm&tealium_vid=0183e16eb3220021b0eceb57dc7e00044001c00900918&tealium_account=hsbc&tealium_profile=wpb-stream-ae
IP
172.217.21.162:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (392), with CRLF, LF line terminators
Size
569 B (569 bytes)
Hash
e2afae8771fe3fbe699aff5c2ddbf7d8
9002717bdcd9af8670defb757a27938d5ade7b47
9d44b174ddf359d2d335d1029387d4818fcf3978bc78351c3230ada8939dc19f

HTTP Headers

GET /pixel?tealium_cookie_sync=true&google_nid=tealium_dmp&google_cm&tealium_vid=0183e16eb3220021b0eceb57dc7e00044001c00900918&tealium_account=hsbc&tealium_profile=wpb-stream-ae HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/

HTTP/1.1 302 Found
Location: https://cm.g.doubleclick.net/pixel?tealium_cookie_sync=true&google_nid=tealium_dmp&google_cm=&tealium_vid=0183e16eb3220021b0eceb57dc7e00044001c00900918&tealium_account=hsbc&tealium_profile=wpb-stream-ae&tealium_cookie_sync=true&tealium_vid=0183e16eb3220021b0eceb57dc7e00044001c00900918&tealium_account=hsbc&tealium_profile=wpb-stream-ae
Date: Sun, 16 Oct 2022 15:34:30 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Cross-Origin-Resource-Policy: cross-origin
Content-Type: text/html; charset=UTF-8
Server: HTTP server (unknown)
Content-Length: 569
X-XSS-Protection: 0

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
bead97fd5b956473eedc7126a873efc0
33d5a9b3d85ed7f3288f9bf019761c9a0061a39c
a67ef0d7843eba0464cce46bd133d839ca39bdbd85f81119ff5ce145311be780

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3201
Cache-Control: max-age=167483
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 15:34:30 GMT
Etag: "634c0341-1d7"
Expires: Tue, 18 Oct 2022 14:05:53 GMT
Last-Modified: Sun, 16 Oct 2022 13:12:33 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

www.gstatic.com/recaptcha/releases/TPiWapjoyMdQOtxLT9_b4n2W/recaptcha__en.js

142.250.74.163

404 Not Found

1.6 kB

URL HTTP/2
www.gstatic.com/recaptcha/releases/TPiWapjoyMdQOtxLT9_b4n2W/recaptcha__en.js
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size
1.6 kB (1621 bytes)
Hash
5ea13b99274328a03acbf58319ddfba5
12be1a3fcfef49456a9edec2a67c96312ccf1203
f8eb8ea2b219b459b6fc2df428e6e21fdf30d50bd42ecc1256f0a5fd4e7411e2

HTTP Headers

GET /recaptcha/releases/TPiWapjoyMdQOtxLT9_b4n2W/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
date: Sun, 16 Oct 2022 15:34:30 GMT
content-type: text/html; charset=UTF-8
server: sffe
content-length: 1621
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

27 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
27 kB (27029 bytes)
Hash
24e72797c2387d3949fd48bff0869138
9987f23f7289affffb99587c703c95d4448f0d3c
ff6231326f473d1d8e7999bde0bb9c34aedd5e47aefdceb94629c75c771984f1

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: BvjIfICxcE1a0f3A24tSTeIiohoAHWOFPpz5C2eABE1yy7QPuBusCmj7nXJ+4zGff7moO6Uf4S5Y+3gBj0GhTw==
priority: u=3,i
content-length: 27029
x-fb-trip-id: 2074150462
date: Sun, 16 Oct 2022 15:34:30 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/vP4jQKq0YJFzU6e21-BGy3GP/recaptcha__en.js

142.250.74.163

200 OK

471 B

URL HTTP/2
www.gstatic.com/recaptcha/releases/vP4jQKq0YJFzU6e21-BGy3GP/recaptcha__en.js
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
bead97fd5b956473eedc7126a873efc0
33d5a9b3d85ed7f3288f9bf019761c9a0061a39c
a67ef0d7843eba0464cce46bd133d839ca39bdbd85f81119ff5ce145311be780

HTTP Headers

GET /recaptcha/releases/vP4jQKq0YJFzU6e21-BGy3GP/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://hs-bca.herokuapp.com
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 159789
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 15 Oct 2022 14:11:40 GMT
expires: Sun, 15 Oct 2023 14:11:40 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 02 Oct 2022 20:02:07 GMT
content-type: text/javascript
age: 91370
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

143.204.42.156

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.156:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
6a1b3ec91b0316e7a2dbbba78275f1d7
be905330e66b2aadd2d7f9a0368f740d03d3ba60
e33d32057a4ab5dbe2ed99fda795b54832bf86dcd3eb41c021308ad6aa86bc52

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=142342
Date: Sun, 16 Oct 2022 15:34:30 GMT
Etag: "634b9451-1d7"
Expires: Tue, 18 Oct 2022 07:06:52 GMT
Last-Modified: Sun, 16 Oct 2022 05:19:13 GMT
Server: ECS (nyb/1D23)
X-Cache: Miss from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: W_lroebAw32NmKkQUIvoRRa6-7hwzPeyACKEXu6ro4MtXYWxf7OKZw==
Age: 6459

lptag.liveperson.net/tag/tag.js?site=45066354

178.249.101.23

403 Forbidden

123 B

URL HTTP/2
lptag.liveperson.net/tag/tag.js?site=45066354
IP
178.249.101.23:0
ASN
#11054 LIVEPERSON

File type
data
Size
123 B (123 bytes)
Hash
ae9389a10758a60e1252ad022552f48d
53b55ab9bfb9b1d0e220b7428c03c323d85f8ad3
a55b7e3c9942541d6b7a53dd5541c71e85d1d2e3c8dcddfe68e2c9acd8cc1a4e

HTTP Headers

GET /tag/tag.js?site=45066354 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 403 Forbidden
date: Sun, 16 Oct 2022 15:34:30 GMT
content-type: text/plain
server: ws
strict-transport-security: max-age=300; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4f05f7d85c5d7c2aa09651804f80a019
cd118fbc41657bfdf0fcfb9e3a4a2813f3b08e5b
76a6c1ae0a435403ac10b6478f029bb8b871dbdcc2a2c7e3e97b56982a9767e7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 15:34:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4f05f7d85c5d7c2aa09651804f80a019
cd118fbc41657bfdf0fcfb9e3a4a2813f3b08e5b
76a6c1ae0a435403ac10b6478f029bb8b871dbdcc2a2c7e3e97b56982a9767e7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 15:34:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4f05f7d85c5d7c2aa09651804f80a019
cd118fbc41657bfdf0fcfb9e3a4a2813f3b08e5b
76a6c1ae0a435403ac10b6478f029bb8b871dbdcc2a2c7e3e97b56982a9767e7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 15:34:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

googleads.g.doubleclick.net/pagead/viewthroughconversion/797652105/?random=1665934473794&cv=9&fst=1665934473794&num=1&userId=0183e16eb3220021b0eceb57dc7e00044001c00900918&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaaa0&sendb=1&ig=0&data=event%3Dpage_view%3Ballow_custom_scripts%3Dtrue&frm=0&url=http%3A%2F%2Fhs-bca.herokuapp.com%2F&tiba=Username%20%7C%20Log%20on%20%7C%20HSBC&auid=753071335.1665934474&hn=www.google.com&async=1&rfmt=3&fmt=4

142.250.74.34

200 OK

1.1 kB

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/797652105/?random=1665934473794&cv=9&fst=1665934473794&num=1&userId=0183e16eb3220021b0eceb57dc7e00044001c00900918&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaaa0&sendb=1&ig=0&data=event%3Dpage_view%3Ballow_custom_scripts%3Dtrue&frm=0&url=http%3A%2F%2Fhs-bca.herokuapp.com%2F&tiba=Username%20%7C%20Log%20on%20%7C%20HSBC&auid=753071335.1665934474&hn=www.google.com&async=1&rfmt=3&fmt=4
IP
142.250.74.34:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2454), with no line terminators
Size
1.1 kB (1106 bytes)
Hash
f7541cbe463a5f971b4c8ea759bd32f8
e16040ffce91cb00c276068112a4c22879bf4e59
82fdc839e4b2b92a2cc7792d9824fdffaf03bd8b427ba0d081585fe6e7da13aa

HTTP Headers

GET /pagead/viewthroughconversion/797652105/?random=1665934473794&cv=9&fst=1665934473794&num=1&userId=0183e16eb3220021b0eceb57dc7e00044001c00900918&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaaa0&sendb=1&ig=0&data=event%3Dpage_view%3Ballow_custom_scripts%3Dtrue&frm=0&url=http%3A%2F%2Fhs-bca.herokuapp.com%2F&tiba=Username%20%7C%20Log%20on%20%7C%20HSBC&auid=753071335.1665934474&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 16 Oct 2022 15:34:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1106
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 16-Oct-2022 15:49:30 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cm.g.doubleclick.net/pixel?tealium_cookie_sync=true&google_nid=tealium_dmp&google_cm=&tealium_vid=0183e16eb3220021b0eceb57dc7e00044001c00900918&tealium_account=hsbc&tealium_profile=wpb-stream-ae&tealium_cookie_sync=true&tealium_vid=0183e16eb3220021b0eceb57dc7e00044001c00900918&tealium_account=hsbc&tealium_profile=wpb-stream-ae

172.217.21.162

302 Found

584 B

URL HTTP/2
cm.g.doubleclick.net/pixel?tealium_cookie_sync=true&google_nid=tealium_dmp&google_cm=&tealium_vid=0183e16eb3220021b0eceb57dc7e00044001c00900918&tealium_account=hsbc&tealium_profile=wpb-stream-ae&tealium_cookie_sync=true&tealium_vid=0183e16eb3220021b0eceb57dc7e00044001c00900918&tealium_account=hsbc&tealium_profile=wpb-stream-ae
IP
172.217.21.162:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (407), with CRLF, LF line terminators
Size
584 B (584 bytes)
Hash
6603a47335af36981b6e99bf967a78a7
13c7e48a65a369bb38cfdc06f26fb14fe9a3dc32
7eb0d97ebd665ad61496973c9f6c78b1a44233c65a19ba9aecc85b81c61b9e45

HTTP Headers

GET /pixel?tealium_cookie_sync=true&google_nid=tealium_dmp&google_cm=&tealium_vid=0183e16eb3220021b0eceb57dc7e00044001c00900918&tealium_account=hsbc&tealium_profile=wpb-stream-ae&tealium_cookie_sync=true&tealium_vid=0183e16eb3220021b0eceb57dc7e00044001c00900918&tealium_account=hsbc&tealium_profile=wpb-stream-ae HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://hs-bca.herokuapp.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?tealium_cookie_sync=true&google_nid=tealium_dmp&google_cm=&tealium_vid=0183e16eb3220021b0eceb57dc7e00044001c00900918&tealium_account=hsbc&tealium_profile=wpb-stream-ae&tealium_cookie_sync=true&tealium_vid=0183e16eb3220021b0eceb57dc7e00044001c00900918&tealium_account=hsbc&tealium_profile=wpb-stream-ae&google_tc=
date: Sun, 16 Oct 2022 15:34:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 584
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 16-Oct-2022 15:49:30 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

172.217.21.162

302 Found

555 B

URL HTTP/2
cm.g.doubleclick.net/pixel?tealium_cookie_sync=true&google_nid=tealium_dmp&google_cm=&tealium_vid=0183e16eb3220021b0eceb57dc7e00044001c00900918&tealium_account=hsbc&tealium_profile=wpb-stream-ae&tealium_cookie_sync=true&tealium_vid=0183e16eb3220021b0eceb57dc7e00044001c00900918&tealium_account=hsbc&tealium_profile=wpb-stream-ae&google_tc=
IP
172.217.21.162:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (378), with CRLF, LF line terminators
Size
555 B (555 bytes)
Hash
b238b27f9dae336aad1a4c49c20506dd
d31b858e11ffe5197094cf8c5d3c2257dca5ef6f
b9d85105dac23dd71fc92d7968e18880dafe660027f8cb290339ced8712dfe9e

HTTP Headers

GET /pixel?tealium_cookie_sync=true&google_nid=tealium_dmp&google_cm=&tealium_vid=0183e16eb3220021b0eceb57dc7e00044001c00900918&tealium_account=hsbc&tealium_profile=wpb-stream-ae&tealium_cookie_sync=true&tealium_vid=0183e16eb3220021b0eceb57dc7e00044001c00900918&tealium_account=hsbc&tealium_profile=wpb-stream-ae&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://hs-bca.herokuapp.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
location: https://datacloud.tealiumiq.com/vdata/i.gif?tealium_cookie_sync=true&tealium_vid=0183e16eb3220021b0eceb57dc7e00044001c00900918&tealium_account=hsbc&tealium_profile=wpb-stream-ae&tealium_cookie_sync=true&tealium_vid=0183e16eb3220021b0eceb57dc7e00044001c00900918&tealium_account=hsbc&tealium_profile=wpb-stream-ae&google_error=3
date: Sun, 16 Oct 2022 15:34:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 555
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4f05f7d85c5d7c2aa09651804f80a019
cd118fbc41657bfdf0fcfb9e3a4a2813f3b08e5b
76a6c1ae0a435403ac10b6478f029bb8b871dbdcc2a2c7e3e97b56982a9767e7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 15:34:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4f05f7d85c5d7c2aa09651804f80a019
cd118fbc41657bfdf0fcfb9e3a4a2813f3b08e5b
76a6c1ae0a435403ac10b6478f029bb8b871dbdcc2a2c7e3e97b56982a9767e7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 15:34:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
695cea3df950db7392b70395df1d8b05
b7fe7c9dd9f38fd23ad37dd92b9085f35a6fe823
4bad472e725699f54c9983fe6cb3ce0783b831ea2877b1a22f80197b953cfaf6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 15:34:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

datacloud.tealiumiq.com/vdata/i.gif?tealium_cookie_sync=true&tealium_vid=0183e16eb3220021b0eceb57dc7e00044001c00900918&tealium_account=hsbc&tealium_profile=wpb-stream-ae&tealium_cookie_sync=true&tealium_vid=0183e16eb3220021b0eceb57dc7e00044001c00900918&tealium_account=hsbc&tealium_profile=wpb-stream-ae&google_error=3

3.122.33.214

200 OK

43 B

URL HTTP/2
datacloud.tealiumiq.com/vdata/i.gif?tealium_cookie_sync=true&tealium_vid=0183e16eb3220021b0eceb57dc7e00044001c00900918&tealium_account=hsbc&tealium_profile=wpb-stream-ae&tealium_cookie_sync=true&tealium_vid=0183e16eb3220021b0eceb57dc7e00044001c00900918&tealium_account=hsbc&tealium_profile=wpb-stream-ae&google_error=3
IP
3.122.33.214:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7

HTTP Headers

GET /vdata/i.gif?tealium_cookie_sync=true&tealium_vid=0183e16eb3220021b0eceb57dc7e00044001c00900918&tealium_account=hsbc&tealium_profile=wpb-stream-ae&tealium_cookie_sync=true&tealium_vid=0183e16eb3220021b0eceb57dc7e00044001c00900918&tealium_account=hsbc&tealium_profile=wpb-stream-ae&google_error=3 HTTP/1.1
Host: datacloud.tealiumiq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://hs-bca.herokuapp.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 16 Oct 2022 15:34:30 GMT
content-type: image/gif
content-length: 43
x-acc: hsbc:wpb-stream-ae:2:vdata
x-did: 0183e16eb3220021b0eceb57dc7e00044001c00900918
x-region: eu-central-1
x-serverid: uconnect_i-09528e0fd9dfd593f
pragma: no-cache
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR ADM DEV OUR BUS"
cache-control: no-transform,private,no-cache,no-store,max-age=0,s-maxage=0
x-tid: 0183e16eb3220021b0eceb57dc7e00044001c00900918
x-ulver: 631420fadf76c2899b32aaf6774de2c7f621de3a-SNAPSHOT
vary: Origin
expires: Sun, 16 Oct 2022 15:34:30 GMT
x-uuid: 078c7e86-13e0-4d74-b142-9bdf0251782e
set-cookie: TAPID=hsbc/wpb-stream-ae>0183e16eb3220021b0eceb57dc7e00044001c00900918|; Path=/; Domain=.tealiumiq.com; Expires=Mon, 16-Oct-2023 15:34:30 GMT; Max-Age=31536000; Secure; HttpOnly; SameSite=None
tcs.google_error=eyJoc2JjL3dwYi1zdHJlYW0tYWUiOiIzfDE2NjU5MzQ0NzA3MzMifQ==; Path=/; Domain=.tealiumiq.com; Expires=Sun, 16-Apr-2023 15:34:30 GMT; Max-Age=15724800; Secure; HttpOnly; SameSite=None
X-Firefox-Spdy: h2

www.google.no/pagead/1p-user-list/797652105/?random=1665934473794&cv=9&fst=1665932400000&num=1&userId=0183e16eb3220021b0eceb57dc7e00044001c00900918&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaaa0&sendb=1&data=event%3Dpage_view%3Ballow_custom_scripts%3Dtrue&frm=0&url=http%3A%2F%2Fhs-bca.herokuapp.com%2F&tiba=Username%20%7C%20Log%20on%20%7C%20HSBC&async=1&fmt=3&is_vtc=1&random=3239220875&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y

142.250.74.3

200 OK

42 B

URL HTTP/2
www.google.no/pagead/1p-user-list/797652105/?random=1665934473794&cv=9&fst=1665932400000&num=1&userId=0183e16eb3220021b0eceb57dc7e00044001c00900918&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaaa0&sendb=1&data=event%3Dpage_view%3Ballow_custom_scripts%3Dtrue&frm=0&url=http%3A%2F%2Fhs-bca.herokuapp.com%2F&tiba=Username%20%7C%20Log%20on%20%7C%20HSBC&async=1&fmt=3&is_vtc=1&random=3239220875&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/797652105/?random=1665934473794&cv=9&fst=1665932400000&num=1&userId=0183e16eb3220021b0eceb57dc7e00044001c00900918&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaaa0&sendb=1&data=event%3Dpage_view%3Ballow_custom_scripts%3Dtrue&frm=0&url=http%3A%2F%2Fhs-bca.herokuapp.com%2F&tiba=Username%20%7C%20Log%20on%20%7C%20HSBC&async=1&fmt=3&is_vtc=1&random=3239220875&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 16 Oct 2022 15:34:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

googleads.g.doubleclick.net/pagead/viewthroughconversion/797652105/?random=1665934473792&cv=9&fst=1665934473792&num=1&userId=0183e16eb3220021b0eceb57dc7e00044001c00900918&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaaa0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Fhs-bca.herokuapp.com%2F&tiba=Username%20%7C%20Log%20on%20%7C%20HSBC&auid=753071335.1665934474&hn=www.google.com&async=1&rfmt=3&fmt=4

142.250.74.34

200 OK

1.1 kB

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/797652105/?random=1665934473792&cv=9&fst=1665934473792&num=1&userId=0183e16eb3220021b0eceb57dc7e00044001c00900918&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaaa0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Fhs-bca.herokuapp.com%2F&tiba=Username%20%7C%20Log%20on%20%7C%20HSBC&auid=753071335.1665934474&hn=www.google.com&async=1&rfmt=3&fmt=4
IP
142.250.74.34:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2398), with no line terminators
Size
1.1 kB (1087 bytes)
Hash
4f95aa3688904174982ceccae7d353e1
edee3f36a6041682a3aebff10069ec8671d9f41b
f406e727be21b279c063e9f6a2a63db5e1c829da96e1d9fe7daf4d871affb0ff

HTTP Headers

GET /pagead/viewthroughconversion/797652105/?random=1665934473792&cv=9&fst=1665934473792&num=1&userId=0183e16eb3220021b0eceb57dc7e00044001c00900918&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaaa0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Fhs-bca.herokuapp.com%2F&tiba=Username%20%7C%20Log%20on%20%7C%20HSBC&auid=753071335.1665934474&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 16 Oct 2022 15:34:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1087
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 16-Oct-2022 15:49:30 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.no/pagead/1p-user-list/797652105/?random=1665934473792&cv=9&fst=1665932400000&num=1&userId=0183e16eb3220021b0eceb57dc7e00044001c00900918&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaaa0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Fhs-bca.herokuapp.com%2F&tiba=Username%20%7C%20Log%20on%20%7C%20HSBC&async=1&fmt=3&is_vtc=1&random=3104985567&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y

142.250.74.3

200 OK

42 B

URL HTTP/2
www.google.no/pagead/1p-user-list/797652105/?random=1665934473792&cv=9&fst=1665932400000&num=1&userId=0183e16eb3220021b0eceb57dc7e00044001c00900918&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaaa0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Fhs-bca.herokuapp.com%2F&tiba=Username%20%7C%20Log%20on%20%7C%20HSBC&async=1&fmt=3&is_vtc=1&random=3104985567&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/797652105/?random=1665934473792&cv=9&fst=1665932400000&num=1&userId=0183e16eb3220021b0eceb57dc7e00044001c00900918&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaaa0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Fhs-bca.herokuapp.com%2F&tiba=Username%20%7C%20Log%20on%20%7C%20HSBC&async=1&fmt=3&is_vtc=1&random=3104985567&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 16 Oct 2022 15:34:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
695cea3df950db7392b70395df1d8b05
b7fe7c9dd9f38fd23ad37dd92b9085f35a6fe823
4bad472e725699f54c9983fe6cb3ce0783b831ea2877b1a22f80197b953cfaf6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 15:34:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

visitor-service-eu-central-1.tealiumiq.com/hsbc/wpb-stream-ae/0183e16eb3220021b0eceb57dc7e00044001c00900918?callback=utag.ut%5B%22writevawpb-stream-ae%22%5D&rnd=1665934474144

18.157.51.52

200 OK

2.0 kB

URL HTTP/2
visitor-service-eu-central-1.tealiumiq.com/hsbc/wpb-stream-ae/0183e16eb3220021b0eceb57dc7e00044001c00900918?callback=utag.ut%5B%22writevawpb-stream-ae%22%5D&rnd=1665934474144
IP
18.157.51.52:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (2025), with no line terminators
Size
2.0 kB (2025 bytes)
Hash
90509e40c9905966fb6e4d9de843b1e7
57b2b9004de060d134bf584ffda77411aeec2841
14fc366b3bc5a0a91d9a6236fcc99bb8013911522c8ab1ae96403d8b3e1c8dcb

HTTP Headers

GET /hsbc/wpb-stream-ae/0183e16eb3220021b0eceb57dc7e00044001c00900918?callback=utag.ut%5B%22writevawpb-stream-ae%22%5D&rnd=1665934474144 HTTP/1.1
Host: visitor-service-eu-central-1.tealiumiq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 16 Oct 2022 15:34:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 2025
x-region: eu-central-1
x-nodeid: i-072a0ce0f1bba2769
x-version: 631420fadf76c2899b32aaf6774de2c7f621de3a-SNAPSHOT
strict-transport-security: max-age=31536000; includeSubdomains
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=1805307739551132&ev=PageView&dl=http%3A%2F%2Fhs-bca.herokuapp.com%2F&rl=&if=false&ts=1665934474241&cd[base_tracking_type]=track&sw=1280&sh=1024&ud[external_id]=2c2ef7fe79cb8dcb2c2dcfab940791cefa6aeb03c23b42a7fb0a078cf7c75280&v=2.9.85&r=stable&a=tmtealium&ec=0&o=28&fbp=fb.2.1665934474241.573118779&it=1665934473860&coo=false&eid=d55846419a5869da0ef4c634378aceb0&tm=1&rqm=GET

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=1805307739551132&ev=PageView&dl=http%3A%2F%2Fhs-bca.herokuapp.com%2F&rl=&if=false&ts=1665934474241&cd[base_tracking_type]=track&sw=1280&sh=1024&ud[external_id]=2c2ef7fe79cb8dcb2c2dcfab940791cefa6aeb03c23b42a7fb0a078cf7c75280&v=2.9.85&r=stable&a=tmtealium&ec=0&o=28&fbp=fb.2.1665934474241.573118779&it=1665934473860&coo=false&eid=d55846419a5869da0ef4c634378aceb0&tm=1&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=1805307739551132&ev=PageView&dl=http%3A%2F%2Fhs-bca.herokuapp.com%2F&rl=&if=false&ts=1665934474241&cd[base_tracking_type]=track&sw=1280&sh=1024&ud[external_id]=2c2ef7fe79cb8dcb2c2dcfab940791cefa6aeb03c23b42a7fb0a078cf7c75280&v=2.9.85&r=stable&a=tmtealium&ec=0&o=28&fbp=fb.2.1665934474241.573118779&it=1665934473860&coo=false&eid=d55846419a5869da0ef4c634378aceb0&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sun, 16 Oct 2022 15:34:30 GMT
X-Firefox-Spdy: h2

lptag.liveperson.net/tag/tag.js?site=45066354

178.249.101.23

403 Forbidden

0 B

URL HTTP/2
lptag.liveperson.net/tag/tag.js?site=45066354
IP
178.249.101.23:0
ASN
#11054 LIVEPERSON

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /tag/tag.js?site=45066354 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 403 Forbidden
date: Sun, 16 Oct 2022 15:34:28 GMT
content-type: text/plain
server: ws
strict-transport-security: max-age=300; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

lpcdn.lpsnmedia.net/le_re/3.41.0.2-release_5020/jsv2/UISuite.js?_v=3.41.0.2-release_5020

178.249.97.98

200 OK

0 B

URL HTTP/2
lpcdn.lpsnmedia.net/le_re/3.41.0.2-release_5020/jsv2/UISuite.js?_v=3.41.0.2-release_5020
IP
178.249.97.98:0
ASN
#11054 LIVEPERSON

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /le_re/3.41.0.2-release_5020/jsv2/UISuite.js?_v=3.41.0.2-release_5020 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 16 Oct 2022 15:34:28 GMT
content-type: application/javascript
last-modified: Mon, 06 Jul 2020 14:51:24 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Mon, 16 Oct 2023 15:34:28 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: MISS
X-Firefox-Spdy: h2

lptag.liveperson.net/lptag/api/account/45066354/configuration/applications/taglets/.jsonp?v=2.0&df=0&s=security_login_enter-username&b=1

178.249.101.23

403 Forbidden

0 B

URL HTTP/2
lptag.liveperson.net/lptag/api/account/45066354/configuration/applications/taglets/.jsonp?v=2.0&df=0&s=security_login_enter-username&b=1
IP
178.249.101.23:0
ASN
#11054 LIVEPERSON

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /lptag/api/account/45066354/configuration/applications/taglets/.jsonp?v=2.0&df=0&s=security_login_enter-username&b=1 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 403 Forbidden
date: Sun, 16 Oct 2022 15:34:28 GMT
content-type: text/plain
server: ws
strict-transport-security: max-age=300; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

lptag.liveperson.net/lptag/api/account/45066354/configuration/applications/taglets/.jsonp?v=2.0&df=0&s=security_login_enter-username&b=1

178.249.101.23

403 Forbidden

0 B

URL HTTP/2
lptag.liveperson.net/lptag/api/account/45066354/configuration/applications/taglets/.jsonp?v=2.0&df=0&s=security_login_enter-username&b=1
IP
178.249.101.23:0
ASN
#11054 LIVEPERSON

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /lptag/api/account/45066354/configuration/applications/taglets/.jsonp?v=2.0&df=0&s=security_login_enter-username&b=1 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hs-bca.herokuapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 403 Forbidden
date: Sun, 16 Oct 2022 15:34:28 GMT
content-type: text/plain
server: ws
strict-transport-security: max-age=300; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (40)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations