firefox.settings.services.mozilla.com/v1/
54.230.111.118200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.118:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: deuxWqoZUeGUWj3WpFLIqgHKrOXrY_FMH7GRsHYnOBMTwxT1rID1iQ==
Age: 22873
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
54.230.111.14200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 54.230.111.14:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 05 Oct 2022 04:02:33 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ywHHIKOlZ3kkgYAyjRhSYFrzzgjQINQRsovkQmr-fWl3Orjw59Kiew==
age: 65160
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash eabb7d9ffae717f7305d63c057755470
3b7f0baccfdbb8d9ffefa4a2215d4d6094be454a
ab48f17e54075e1ecf034278e82bcacd2e3689773186cc84fba9b79aac907294
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AB48F17E54075E1ECF034278E82BCACD2E3689773186CC84FBA9B79AAC907294"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6516
Expires: Wed, 05 Oct 2022 23:57:08 GMT
Date: Wed, 05 Oct 2022 22:08:32 GMT
Connection: keep-alive
hdbankcareer.com/en/american-express-credit-card-login
103.221.220.216301 Moved Permanently 707 B URL HTTP/1.1 hdbankcareer.com/en/american-express-credit-card-login
IP 103.221.220.216:0
ASN #63760 AZDIGI Corporation
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET /en/american-express-credit-card-login HTTP/1.1
Host: hdbankcareer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Wed, 05 Oct 2022 22:08:25 GMT
server: LiteSpeed
location: https://hdbankcareer.com/en/american-express-credit-card-login
vary: User-Agent
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 05 Oct 2022 22:08:32 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.118200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.118:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Wed, 05 Oct 2022 21:55:50 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Wed, 05 Oct 2022 21:49:19 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 78uDBKszgxIGKFVoRJw6Lo7Gx0xOe-_z5oSK59ViHusfS0ShMXlnqw==
Age: 2339
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 08363854ed599f13d3475393ecc2b192
2496c56bb661c45bcdac3ba456bb5a73913eeb62
150831d3ca8ef697f96db7fb651ac065ef36818fb7a1a9d792eed260d34f96c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "150831D3CA8EF697F96DB7FB651AC065EF36818FB7A1A9D792EED260D34F96C2"
Last-Modified: Wed, 05 Oct 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15442
Expires: Thu, 06 Oct 2022 02:25:54 GMT
Date: Wed, 05 Oct 2022 22:08:32 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1561c6be7c89d1357a80d12de47b6e74
9a705277922ecca583c867af58b3efce099f83bd
e33dc034dbf4b3b627cd3c1af2d942e2ca5704ec9a4aad5c46ad39eb070e82ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5076
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 22:08:32 GMT
Last-Modified: Wed, 05 Oct 2022 20:43:56 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
44.238.3.246101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.238.3.246:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: BK4B3VJEMgyTSlrxW/h5bg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ynA2Q0tvYi5pKx+GsJ/jHJliDQM=
hdbankcareer.com/en/american-express-credit-card-login
103.221.220.216200 OK 32 kB URL HTTP/2 hdbankcareer.com/en/american-express-credit-card-login
IP 103.221.220.216:0
ASN #63760 AZDIGI Corporation
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (10096), with CRLF, LF line terminators
Hash ceeed1b65330bfbac08cbc422a9b6ffc
e618332c97ca357404a388ae50dbb4d70a87ddee
9d4506ab2eaf53603401f0498d116fbdbfdbbea5230f0b3ea58c6fe0d7433f8f
Analyzer Verdict Alert fortinet Phishing
GET /en/american-express-credit-card-login HTTP/1.1
Host: hdbankcareer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
cache-control: public, max-age=0
expires: Wed, 05 Oct 2022 22:08:26 GMT
content-type: text/html; charset=UTF-8
last-modified: Wed, 05 Oct 2022 05:34:28 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent,Accept-Encoding,Accept-Encoding
content-length: 31659
date: Wed, 05 Oct 2022 22:08:26 GMT
server: LiteSpeed
alt-svc: h3-34=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-27=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
hdbankcareer.com/en/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
103.221.220.216200 OK 11 kB URL HTTP/2 hdbankcareer.com/en/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 103.221.220.216:0
ASN #63760 AZDIGI Corporation
File type ASCII text, with very long lines (43771)
Hash d45207ee05c1f0c57dfa075e61405ccd
a8d35143a2d828a739ea0fdde75f97d33621e7ec
a9a4adbbcee31ec277f1bdd573eef97dc4341f29f2db3b5685a02dfe4d2fe9bb
GET /en/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: hdbankcareer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hdbankcareer.com/en/american-express-credit-card-login
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public,public
expires: Thu, 05 Oct 2023 22:08:26 GMT
content-type: text/css; charset=UTF-8
last-modified: Tue, 12 Jul 2022 19:36:06 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent,Accept-Encoding,Accept-Encoding
content-length: 10946
date: Wed, 05 Oct 2022 22:08:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
hdbankcareer.com/en/wp-content/cache/min/1/en/wp-content/plugins/wp-automatic/css/wp-automatic.css?ver=1663137968
103.221.220.216200 OK 484 B URL HTTP/2 hdbankcareer.com/en/wp-content/cache/min/1/en/wp-content/plugins/wp-automatic/css/wp-automatic.css?ver=1663137968
IP 103.221.220.216:0
ASN #63760 AZDIGI Corporation
File type ASCII text, with very long lines (2373), with no line terminators
Hash 719774d95f0d7ec5052ed24413e65e16
c282a7452f949965284f9c6a39d3ca7cf72564c5
a2483d47f31f458edbca1b0eb7f9048f6a1a228abfb1f0153fb020435f06a1d3
GET /en/wp-content/cache/min/1/en/wp-content/plugins/wp-automatic/css/wp-automatic.css?ver=1663137968 HTTP/1.1
Host: hdbankcareer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hdbankcareer.com/en/american-express-credit-card-login
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public,public
expires: Thu, 05 Oct 2023 22:08:26 GMT
content-type: text/css; charset=UTF-8
last-modified: Wed, 14 Sep 2022 06:46:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent,Accept-Encoding,Accept-Encoding
content-length: 484
date: Wed, 05 Oct 2022 22:08:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
hdbankcareer.com/en/wp-content/cache/min/1/en/wp-content/plugins/easy-table-of-contents/vendor/icomoon/style.min.css?ver=1663137968
103.221.220.216200 OK 225 B URL HTTP/2 hdbankcareer.com/en/wp-content/cache/min/1/en/wp-content/plugins/easy-table-of-contents/vendor/icomoon/style.min.css?ver=1663137968
IP 103.221.220.216:0
ASN #63760 AZDIGI Corporation
File type ASCII text, with very long lines (876), with no line terminators
Hash 26369132b1ec66a02e817a1e8698b847
c105e4799536978f5ca0c4939ce670e9ee8911fd
cff94af81027e0844c205eaaacadf961211b5f952679e8555d77a22b115df71b
GET /en/wp-content/cache/min/1/en/wp-content/plugins/easy-table-of-contents/vendor/icomoon/style.min.css?ver=1663137968 HTTP/1.1
Host: hdbankcareer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hdbankcareer.com/en/american-express-credit-card-login
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public,public
expires: Thu, 05 Oct 2023 22:08:26 GMT
content-type: text/css; charset=UTF-8
last-modified: Wed, 14 Sep 2022 06:46:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent,Accept-Encoding,Accept-Encoding
content-length: 225
date: Wed, 05 Oct 2022 22:08:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
hdbankcareer.com/en/wp-content/plugins/easy-table-of-contents/assets/css/screen.min.css?ver=2.0.33.2
103.221.220.216200 OK 1.3 kB URL HTTP/2 hdbankcareer.com/en/wp-content/plugins/easy-table-of-contents/assets/css/screen.min.css?ver=2.0.33.2
IP 103.221.220.216:0
ASN #63760 AZDIGI Corporation
File type ASCII text, with very long lines (5192), with no line terminators
Hash b9e5b1a826cc5ec1440a6958df59219a
11f41db83251a08e9cae28a52747c3bcf8ce89bb
7d962c1cad6e95caaa09612346540ec7e367bc7f9c90b06b03846bd8e8f12ea8
Analyzer Verdict Alert fortinet Phishing
GET /en/wp-content/plugins/easy-table-of-contents/assets/css/screen.min.css?ver=2.0.33.2 HTTP/1.1
Host: hdbankcareer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hdbankcareer.com/en/american-express-credit-card-login
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public,public
expires: Thu, 05 Oct 2023 22:08:26 GMT
content-type: text/css; charset=UTF-8
last-modified: Thu, 08 Sep 2022 15:45:42 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent,Accept-Encoding,Accept-Encoding
content-length: 1300
date: Wed, 05 Oct 2022 22:08:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
hdbankcareer.com/en/wp-content/themes/kadence/assets/css/global.min.css?ver=1.1.29
103.221.220.216200 OK 4.3 kB URL HTTP/2 hdbankcareer.com/en/wp-content/themes/kadence/assets/css/global.min.css?ver=1.1.29
IP 103.221.220.216:0
ASN #63760 AZDIGI Corporation
File type Unicode text, UTF-8 text, with very long lines (19378)
Hash a8fdf2dcbd6a4bf8802a34e1bacb25cb
3b43ebbad31ede33f9c68a67495c210570315972
51dc5fde5e21f432ee7b4ccfaaed7087f6074736c6ab6f28a44be0eeb63d615d
GET /en/wp-content/themes/kadence/assets/css/global.min.css?ver=1.1.29 HTTP/1.1
Host: hdbankcareer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hdbankcareer.com/en/american-express-credit-card-login
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public,public
expires: Thu, 05 Oct 2023 22:08:26 GMT
content-type: text/css; charset=UTF-8
last-modified: Wed, 14 Sep 2022 08:01:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent,Accept-Encoding,Accept-Encoding
content-length: 4257
date: Wed, 05 Oct 2022 22:08:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
hdbankcareer.com/en/wp-content/themes/kadence/assets/css/header.min.css?ver=1.1.29
103.221.220.216200 OK 4.3 kB URL HTTP/2 hdbankcareer.com/en/wp-content/themes/kadence/assets/css/header.min.css?ver=1.1.29
IP 103.221.220.216:0
ASN #63760 AZDIGI Corporation
File type ASCII text, with very long lines (27779)
Hash c890468f90ca68ca4d7fa640e857b4f9
747a69e1bd90ccd776417b705e032809763d58b1
b03cf019145d7acbb8cc020aa0d373699995b5ed28298aae29a915fa6a90d23c
GET /en/wp-content/themes/kadence/assets/css/header.min.css?ver=1.1.29 HTTP/1.1
Host: hdbankcareer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hdbankcareer.com/en/american-express-credit-card-login
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public,public
expires: Thu, 05 Oct 2023 22:08:26 GMT
content-type: text/css; charset=UTF-8
last-modified: Wed, 14 Sep 2022 08:01:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent,Accept-Encoding,Accept-Encoding
content-length: 4298
date: Wed, 05 Oct 2022 22:08:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
hdbankcareer.com/en/wp-content/themes/kadence/assets/css/content.min.css?ver=1.1.29
103.221.220.216200 OK 5.6 kB URL HTTP/2 hdbankcareer.com/en/wp-content/themes/kadence/assets/css/content.min.css?ver=1.1.29
IP 103.221.220.216:0
ASN #63760 AZDIGI Corporation
File type ASCII text, with very long lines (32676)
Hash fe7e670a76b168269bde22be9d6d6d17
c6d7c7eadb515b68d6382be9327e7442de803f74
635b89751ccdcb039f96b483fe72bc096c85780d931f5d07cd95b2dea83d84ce
Analyzer Verdict Alert fortinet Phishing
GET /en/wp-content/themes/kadence/assets/css/content.min.css?ver=1.1.29 HTTP/1.1
Host: hdbankcareer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hdbankcareer.com/en/american-express-credit-card-login
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public,public
expires: Thu, 05 Oct 2023 22:08:26 GMT
content-type: text/css; charset=UTF-8
last-modified: Wed, 14 Sep 2022 08:01:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent,Accept-Encoding,Accept-Encoding
content-length: 5558
date: Wed, 05 Oct 2022 22:08:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
hdbankcareer.com/en/wp-content/themes/kadence/assets/css/comments.min.css?ver=1.1.29
103.221.220.216200 OK 1.3 kB URL HTTP/2 hdbankcareer.com/en/wp-content/themes/kadence/assets/css/comments.min.css?ver=1.1.29
IP 103.221.220.216:0
ASN #63760 AZDIGI Corporation
File type ASCII text, with very long lines (6445)
Hash 1a2f431bb01105a143c45325b87a9f5f
72ff568c2bf1748d464f4695349f6badc7169b34
2569727f6d607b5c9d4eb0b4c0b351e41cb03e879beb4af2eb6b7fb4793e98af
Analyzer Verdict Alert fortinet Phishing
GET /en/wp-content/themes/kadence/assets/css/comments.min.css?ver=1.1.29 HTTP/1.1
Host: hdbankcareer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hdbankcareer.com/en/american-express-credit-card-login
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public,public
expires: Thu, 05 Oct 2023 22:08:26 GMT
content-type: text/css; charset=UTF-8
last-modified: Wed, 14 Sep 2022 08:01:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent,Accept-Encoding,Accept-Encoding
content-length: 1288
date: Wed, 05 Oct 2022 22:08:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
hdbankcareer.com/en/wp-content/themes/kadence/assets/css/related-posts.min.css?ver=1.1.29
103.221.220.216200 OK 295 B URL HTTP/2 hdbankcareer.com/en/wp-content/themes/kadence/assets/css/related-posts.min.css?ver=1.1.29
IP 103.221.220.216:0
ASN #63760 AZDIGI Corporation
File type ASCII text, with very long lines (995)
Hash 831882b92821b3d87106309187ca05eb
9ab26a44c2f3a5392fe55e81b768cef3dc9077c3
75120a213fabae95bacc070935df1c9463c2bb2f494e02a56824ae345cfa2a14
Analyzer Verdict Alert fortinet Phishing
GET /en/wp-content/themes/kadence/assets/css/related-posts.min.css?ver=1.1.29 HTTP/1.1
Host: hdbankcareer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hdbankcareer.com/en/american-express-credit-card-login
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public,public
expires: Thu, 05 Oct 2023 22:08:26 GMT
content-type: text/css; charset=UTF-8
last-modified: Wed, 14 Sep 2022 08:01:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent,Accept-Encoding,Accept-Encoding
content-length: 295
date: Wed, 05 Oct 2022 22:08:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
hdbankcareer.com/en/wp-content/plugins/kadence-blocks-pro/dist/assets/css/kadence-splide.min.css?ver=1.7.15
103.221.220.216200 OK 1.5 kB URL HTTP/2 hdbankcareer.com/en/wp-content/plugins/kadence-blocks-pro/dist/assets/css/kadence-splide.min.css?ver=1.7.15
IP 103.221.220.216:0
ASN #63760 AZDIGI Corporation
File type ASCII text, with very long lines (8013)
Hash 38e32dfe07a171a2defc5b9eaf480ef4
1859ad5001ca39bf0385528ae7c46306fdc62bcc
e8b49b71f3358e4d8027d5a7bcb1633c62831f2f73161d2745067014677b4308
Analyzer Verdict Alert fortinet Phishing
GET /en/wp-content/plugins/kadence-blocks-pro/dist/assets/css/kadence-splide.min.css?ver=1.7.15 HTTP/1.1
Host: hdbankcareer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hdbankcareer.com/en/american-express-credit-card-login
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public,public
expires: Thu, 05 Oct 2023 22:08:26 GMT
content-type: text/css; charset=UTF-8
last-modified: Thu, 01 Sep 2022 23:24:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent,Accept-Encoding,Accept-Encoding
content-length: 1450
date: Wed, 05 Oct 2022 22:08:26 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 08363854ed599f13d3475393ecc2b192
2496c56bb661c45bcdac3ba456bb5a73913eeb62
150831d3ca8ef697f96db7fb651ac065ef36818fb7a1a9d792eed260d34f96c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "150831D3CA8EF697F96DB7FB651AC065EF36818FB7A1A9D792EED260D34F96C2"
Last-Modified: Wed, 05 Oct 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15441
Expires: Thu, 06 Oct 2022 02:25:54 GMT
Date: Wed, 05 Oct 2022 22:08:33 GMT
Connection: keep-alive
hdbankcareer.com/en/wp-content/themes/kadence/assets/css/footer.min.css?ver=1.1.29
103.221.220.216200 OK 1.6 kB URL HTTP/2 hdbankcareer.com/en/wp-content/themes/kadence/assets/css/footer.min.css?ver=1.1.29
IP 103.221.220.216:0
ASN #63760 AZDIGI Corporation
File type ASCII text, with very long lines (18613)
Hash f0597e943b419b76cb9d5a3df13f77c1
5e57565fdb380b21a4723d13c1002c51a8b335e8
13ca45e1fb515adfbf1025bdef400ae30b3a262d214b2f8db7bbe677673c30e6
GET /en/wp-content/themes/kadence/assets/css/footer.min.css?ver=1.1.29 HTTP/1.1
Host: hdbankcareer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hdbankcareer.com/en/american-express-credit-card-login
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public,public
expires: Thu, 05 Oct 2023 22:08:27 GMT
content-type: text/css; charset=UTF-8
last-modified: Wed, 14 Sep 2022 08:01:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent,Accept-Encoding,Accept-Encoding
content-length: 1627
date: Wed, 05 Oct 2022 22:08:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
hdbankcareer.com/en/wp-content/cache/min/1/en/wp-content/plugins/kadence-pro/dist/mega-menu/menu-addon.css?ver=1663137968
103.221.220.216200 OK 932 B URL HTTP/2 hdbankcareer.com/en/wp-content/cache/min/1/en/wp-content/plugins/kadence-pro/dist/mega-menu/menu-addon.css?ver=1663137968
IP 103.221.220.216:0
ASN #63760 AZDIGI Corporation
File type ASCII text, with very long lines (5687), with no line terminators
Hash a527f51cb27a73e5fbad290f220189ac
86d65dbd6a223534af71ee6ddd1e13634c73d7b8
4b0f0b9b5a8a708ba1a6ba993caa6ca76fc549a7a780cf614f0a4053c9539a8e
Analyzer Verdict Alert fortinet Phishing
GET /en/wp-content/cache/min/1/en/wp-content/plugins/kadence-pro/dist/mega-menu/menu-addon.css?ver=1663137968 HTTP/1.1
Host: hdbankcareer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hdbankcareer.com/en/american-express-credit-card-login
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public,public
expires: Thu, 05 Oct 2023 22:08:27 GMT
content-type: text/css; charset=UTF-8
last-modified: Wed, 14 Sep 2022 06:46:08 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent,Accept-Encoding,Accept-Encoding
content-length: 932
date: Wed, 05 Oct 2022 22:08:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
hdbankcareer.com/en/wp-content/plugins/ewww-image-optimizer/includes/lazysizes.min.js?ver=680
103.221.220.216200 OK 4.7 kB URL HTTP/2 hdbankcareer.com/en/wp-content/plugins/ewww-image-optimizer/includes/lazysizes.min.js?ver=680
IP 103.221.220.216:0
ASN #63760 AZDIGI Corporation
File type ASCII text, with very long lines (12498), with no line terminators
Hash ff899be4be43c9aa981f9c089c97dedd
506e231204e3ba01c5891ba93f42b219efa200b6
8c14eff011eaa262446009e6fb30c941bcc08ee770a66934c49f7d4076620064
Analyzer Verdict Alert fortinet Phishing
GET /en/wp-content/plugins/ewww-image-optimizer/includes/lazysizes.min.js?ver=680 HTTP/1.1
Host: hdbankcareer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hdbankcareer.com/en/american-express-credit-card-login
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public,public
expires: Thu, 05 Oct 2023 22:08:27 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Thu, 01 Sep 2022 23:23:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent,Accept-Encoding,Accept-Encoding
content-length: 4695
date: Wed, 05 Oct 2022 22:08:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
hdbankcareer.com/en/wp-content/plugins/wp-rocket/assets/js/lazyload/17.5/lazyload.min.js
103.221.220.216200 OK 2.7 kB URL HTTP/2 hdbankcareer.com/en/wp-content/plugins/wp-rocket/assets/js/lazyload/17.5/lazyload.min.js
IP 103.221.220.216:0
ASN #63760 AZDIGI Corporation
File type ASCII text, with very long lines (8290)
Hash 4d2a7a65f1d428537b9052b7bf5a6140
5089be111b4ae68c08882092227da06ca67ca157
114fed2dcaef63a9e06c88f300615501048e111601ed9ab75dfd3552448321f6
Analyzer Verdict Alert fortinet Phishing
GET /en/wp-content/plugins/wp-rocket/assets/js/lazyload/17.5/lazyload.min.js HTTP/1.1
Host: hdbankcareer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hdbankcareer.com/en/american-express-credit-card-login
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000,public,public
expires: Thu, 05 Oct 2023 22:08:27 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Fri, 09 Sep 2022 12:45:09 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent,Accept-Encoding,Accept-Encoding
content-length: 2738
date: Wed, 05 Oct 2022 22:08:27 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7489
Expires: Thu, 06 Oct 2022 00:13:23 GMT
Date: Wed, 05 Oct 2022 22:08:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7489
Expires: Thu, 06 Oct 2022 00:13:23 GMT
Date: Wed, 05 Oct 2022 22:08:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7489
Expires: Thu, 06 Oct 2022 00:13:23 GMT
Date: Wed, 05 Oct 2022 22:08:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7489
Expires: Thu, 06 Oct 2022 00:13:23 GMT
Date: Wed, 05 Oct 2022 22:08:34 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9e520f87cae411cfc2ed1c8a14184385
69ad212cb7ae309d4f02019552887135bfae67da
723b10bfbcde201b5811e3bd0560f02f90775e4d18b28d19e6c814899f2da71a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7511
x-amzn-requestid: 995b51dd-5484-4b4c-ad40-550f7fd85930
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6uG70IAMFjBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-70f17f6f24dce0003d03902a;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: BddSUzh-PKiFmfw2p9gPW-B0qtrXWxCXfee29Pk-wLqN7RO21Yic6g==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 f7283f3fe2c258cf54f8b7d3dd272e0e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:37:06 GMT
age: 1888
etag: "69ad212cb7ae309d4f02019552887135bfae67da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff35d320d-221e-46f6-ac6e-9c5b6e8ac6bc.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff35d320d-221e-46f6-ac6e-9c5b6e8ac6bc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23e10c01392e4958e4a4f19573290da9
59ab1c451c388f7b57da52bf518eff15e0c584ff
ece0b872f33166fcc2816595fdf1348664d985131bc943cd4a543524dede0274
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff35d320d-221e-46f6-ac6e-9c5b6e8ac6bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12752
x-amzn-requestid: 3c32a029-08d0-4f98-a0e0-48a7e05242b4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6sHXXIAMF-PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-176be5177b67ddc068060b19;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: nMQQhuMBlGVUc4XeG1S-BJ2_6QQQkcfjctV4xTXW8VENcNE0sVQ1rA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:37:06 GMT
age: 1888
etag: "59ab1c451c388f7b57da52bf518eff15e0c584ff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4fc2ddd86450d64d3fb659ab4e78be58
bbe71936b78a8c34d03ab87948dc840b35c6948f
84a760397a5912bd05f61bc8a953c13a88a677e2d17fbbf74bdf7d7ff4d3942f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10158
x-amzn-requestid: def1fc7e-8008-466f-9271-20fa1ab0fa5a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaqZCH7doAMFcPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a8aa0-7fd2fb1249366f2277d719d6;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 07:09:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: aeOU8fGkf5uHuYZ79k17EzxiFnwm0_z7SeZJElgwECzRyhR2N_SYJA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 04:06:09 GMT
age: 64945
etag: "bbe71936b78a8c34d03ab87948dc840b35c6948f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg
34.120.237.76200 OK 4.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dbba56f647bf5989ca51863632bbebfc
26694f34166345ee5693653e0101db6b910e68ba
ec5cc38f2a77e8e655aeeb7a376cf882ccb7163e4ef9d1ce4633ab4754e48765
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ce3d070-3bf1-47cd-bdd7-2bda7b826976.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4140
x-amzn-requestid: f3cb33c4-26b6-4fd8-9293-dfb42be34600
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjOZiEZ4IAMFvLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df770-424459547db8b3d721d75e54;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:30:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: q70sezhl0h-lASzUDh5_WQ6KraRa3fWYl_tO0iuE0CpbJ5GeiihgMw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 95785220a566cd050f3ad80928463374.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:37:06 GMT
etag: "26694f34166345ee5693653e0101db6b910e68ba"
content-type: image/jpeg
age: 1888
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4aaf2d0a-832d-4fe3-85f6-f6f55993a48e.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4aaf2d0a-832d-4fe3-85f6-f6f55993a48e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 83c37f49b9fb5eeb70a244a759a4ce0d
f2f4664206335b080db6a5608b463945e89de346
cbb8e24144c2118f3e2f2f9db09f2b4d582bca01da68fc2fb29b4d8a6df4dab5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4aaf2d0a-832d-4fe3-85f6-f6f55993a48e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8192
x-amzn-requestid: b61498b4-22cd-4860-98e0-c7aad18a4d96
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6sGTXoAMFZpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-23d0f24731d3bfab253f2677;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: oRlpmDZZ8uLu-tcn-j2H5XMAxfUCtHkm_xq9jUlROKsPgth0Gu-ugg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 ece5d4a731ece5ff46c564ab2b946ede.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:37:06 GMT
age: 1888
etag: "f2f4664206335b080db6a5608b463945e89de346"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feda182b7-6bc8-4aea-82c3-d9fa08748b61.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feda182b7-6bc8-4aea-82c3-d9fa08748b61.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e5a5ee14d41747f46e71f04782e1a3d3
b0205176a58913f57056b91674097bfb58046e97
b3bae0b56b50374cb85fc7fe4c9b551383d1969bf31e7adccb867e3467c59269
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feda182b7-6bc8-4aea-82c3-d9fa08748b61.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7385
x-amzn-requestid: 7ada8e43-9cb5-4793-9289-e308e9565e7d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjOZoF7aIAMF43A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df770-73da01595d32809e08b93a83;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:30:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: 14qQi5wDI-_EgyghHCMjRtdZliSj3L6veSqIeBoEjCTfdZfrKb-UzA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 7d01bcfcfe27ce0b8979cf621dd081de.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:37:06 GMT
etag: "b0205176a58913f57056b91674097bfb58046e97"
content-type: image/jpeg
age: 1888
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eac86f868b3967f1946c7f5fc712b25f
e2ae8eb09715a0af0791c085eb35bf66e0548e30
bceb14e7a478c0e34a0f1d8286eb954566c62051e996bc36189de922a76a6e06
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 05 Oct 2022 22:08:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN