abtbank.applicantlist.com/account/login.php
192.230.77.49301 Moved Permanently 0 B URL HTTP/1.1 abtbank.applicantlist.com/account/login.php
IP 192.230.77.49:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /account/login.php HTTP/1.1
Host: abtbank.applicantlist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://abtbank.applicantlist.com/account/login.php
Content-Length: 0
Connection: close
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1f67827b21be68d925837dd729590f2d
dc24511141f5352e496b300d7d7e81b0cffb7475
afb1850e7c16f02d267a1310f1681367ecf598816fc62bd02447ffcd26117a9f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AFB1850E7C16F02D267A1310F1681367ECF598816FC62BD02447FFCD26117A9F"
Last-Modified: Mon, 09 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5191
Expires: Wed, 11 Jan 2023 14:18:25 GMT
Date: Wed, 11 Jan 2023 12:51:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e6b7a72139d0ef7688330456e9be9a4c
e130a94e7d531768300071764dd1e81fee5bbbcb
d3818afd1493030105341b4cfb91037acbf27085c96068b3ef91c5071277c8e5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3818AFD1493030105341B4CFB91037ACBF27085C96068B3EF91C5071277C8E5"
Last-Modified: Mon, 09 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3411
Expires: Wed, 11 Jan 2023 13:48:45 GMT
Date: Wed, 11 Jan 2023 12:51:54 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 11 Jan 2023 12:48:37 GMT
content-type: application/json
age: 197
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 718fc486cd6a70fcacc1653759703fae
bf60ba7a37d2deef1b7000e91cc88da586bb75ca
398d02e16da466ffe87b64ac34b007615951cca14d43610b4acd58bc2a5fadff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "398D02E16DA466FFE87B64AC34B007615951CCA14D43610B4ACD58BC2A5FADFF"
Last-Modified: Tue, 10 Jan 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4131
Expires: Wed, 11 Jan 2023 14:00:45 GMT
Date: Wed, 11 Jan 2023 12:51:54 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: AxHaJOq3pu0AWJoAH6wGo+xlLnrlkeFkZ8mc6OqwYnxjTrjgYKx0oPLKnLZWYE25XUS3PeuTwuY=
x-amz-request-id: 1Q9ZZ2K9E7SBZ8B8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 11 Jan 2023 12:17:02 GMT
age: 2092
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 11 Jan 2023 12:51:54 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Pragma, Content-Length, Alert, Expires, ETag, Last-Modified, Backoff, Content-Type, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 11 Jan 2023 12:17:24 GMT
age: 2071
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
abtbank.applicantlist.com/account/login.php
192.230.77.49200 OK 6.2 kB URL HTTP/1.1 abtbank.applicantlist.com/account/login.php
IP 192.230.77.49:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1647)
Hash 9328a23d841d0839e31ea264024d6411
6e684cf8f8de441489dbe8e08e5e548005517c8f
61abca902cce7171730e78539b1f49a97cf77dab41af5482479a99893d5b47ab
Analyzer Verdict Alert fortinet Phishing
GET /account/login.php HTTP/1.1
Host: abtbank.applicantlist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 12:51:55 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=15768000
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
Set-Cookie: PHPSESSID=hjggp5o7e3ukntcbth43a1se4d; path=/; secure; HttpOnly
visid_incap_683608=ju26tmdFQAeWgof3k0o0wuqwvmMAAAAAQUIPAAAAAABbZPipxZoVM0Fn3iE4U8ye; expires=Wed, 10 Jan 2024 22:30:00 GMT; HttpOnly; path=/; Domain=.applicantlist.com
nlbi_683608=LS/ecsmu1jcRNp/4ZxcJEgAAAAA8PyO0D8+pkA3E9fvjJaVY; path=/; Domain=.applicantlist.com
incap_ses_723_683608=vbavQakOV2cMruP4g50ICuuwvmMAAAAAgUs6++1MWMwCnCWjH7KpuQ==; path=/; Domain=.applicantlist.com
X-CDN: Imperva
Transfer-Encoding: chunked
X-Iinfo: 14-243814941-243814945 NNNN CT(156 159 0) RT(1673441514570 43) q(0 0 3 0) r(4 5) U5
abtbank.applicantlist.com/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=1&cb=1250159051
192.230.77.49200 OK 20 kB URL HTTP/1.1 abtbank.applicantlist.com/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=1&cb=1250159051
IP 192.230.77.49:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash d628e5023135103b431c8dd06b4e7aa3
a6665147fa3417baff5374dbf1ea3499af1af242
5d3a3e8498d89ff238758aa1f5196dfefe6efb290cca128c644ced81c6125530
GET /_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=1&cb=1250159051 HTTP/1.1
Host: abtbank.applicantlist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abtbank.applicantlist.com/account/login.php
Cookie: PHPSESSID=hjggp5o7e3ukntcbth43a1se4d; visid_incap_683608=ju26tmdFQAeWgof3k0o0wuqwvmMAAAAAQUIPAAAAAABbZPipxZoVM0Fn3iE4U8ye; nlbi_683608=LS/ecsmu1jcRNp/4ZxcJEgAAAAA8PyO0D8+pkA3E9fvjJaVY; incap_ses_723_683608=vbavQakOV2cMruP4g50ICuuwvmMAAAAAgUs6++1MWMwCnCWjH7KpuQ==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Content-Type: application/javascript
Content-Encoding: gzip
X-Robots-Tag: noindex
Content-Length: 20055
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ce604e6f88a42844a4ec7d404879bdcf
d462a2a194a67d39d091ff49c4435fdfc39b3e5b
9e0222bcc67f019bb5c61657fc921fc42aa0cd7a75f6b1358d05231c53cc26e4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2861
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 12:51:55 GMT
Last-Modified: Wed, 11 Jan 2023 12:04:14 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.184.253.181101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.184.253.181:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: U+OKp6E14XAcmxHI7Tn8yw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: EjY/2oHxhZq1uCjhafcUx6MfJpI=
abtbank.applicantlist.com/styles/all.min.css?ver=1.2.47052
192.230.77.49200 OK 25 kB URL HTTP/1.1 abtbank.applicantlist.com/styles/all.min.css?ver=1.2.47052
IP 192.230.77.49:0
File type ASCII text, with very long lines (65369)
Hash db6d5cde06ff22229600eaa7a84a8e79
91568ec3ec71dd45779994eaaa7ef0669e3e0531
605ebef2f0561fad6a941c936036cb3b2d88f0fab1f3843709155db57ddc5e32
GET /styles/all.min.css?ver=1.2.47052 HTTP/1.1
Host: abtbank.applicantlist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abtbank.applicantlist.com/account/login.php
Cookie: PHPSESSID=hjggp5o7e3ukntcbth43a1se4d; visid_incap_683608=ju26tmdFQAeWgof3k0o0wuqwvmMAAAAAQUIPAAAAAABbZPipxZoVM0Fn3iE4U8ye; nlbi_683608=LS/ecsmu1jcRNp/4ZxcJEgAAAAA8PyO0D8+pkA3E9fvjJaVY; incap_ses_723_683608=vbavQakOV2cMruP4g50ICuuwvmMAAAAAgUs6++1MWMwCnCWjH7KpuQ==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 12:51:55 GMT
Server: Apache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=15768000
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-type: text/css
Cache-Control: no-store, no-cache, must-revalidate, max-age=864000, public, must-revalidate
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Tue, 31 Dec 2030 12:00:00 GMT
Content-Length: 24850
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
X-CDN: Imperva
X-Iinfo: 14-243814941-243814945 SNNN RT(1673441514570 667) q(0 0 0 -1) r(2 2) U5
abtbank.applicantlist.com/styles/font-awesome-4.7.0/css/font-awesome.css?ver=
192.230.77.49200 OK 7.4 kB URL HTTP/1.1 abtbank.applicantlist.com/styles/font-awesome-4.7.0/css/font-awesome.css?ver=
IP 192.230.77.49:0
File type troff or preprocessor input, ASCII text, with very long lines (372)
Hash 57a8ee32de25312ab303210ef3c556a9
388f783ee7c84801442370bf8d3812213a1198f5
8bdd62fda01c7b19a4d2ee31cfb4d2fc6123a958cb23bf902c9fead7fc6a9c0d
Analyzer Verdict Alert fortinet Phishing
GET /styles/font-awesome-4.7.0/css/font-awesome.css?ver= HTTP/1.1
Host: abtbank.applicantlist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abtbank.applicantlist.com/account/login.php
Cookie: PHPSESSID=hjggp5o7e3ukntcbth43a1se4d; visid_incap_683608=ju26tmdFQAeWgof3k0o0wuqwvmMAAAAAQUIPAAAAAABbZPipxZoVM0Fn3iE4U8ye; nlbi_683608=LS/ecsmu1jcRNp/4ZxcJEgAAAAA8PyO0D8+pkA3E9fvjJaVY; incap_ses_723_683608=vbavQakOV2cMruP4g50ICuuwvmMAAAAAgUs6++1MWMwCnCWjH7KpuQ==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 12:51:55 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=15768000
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-type: text/css
Cache-Control: max-age=864000, public, must-revalidate
Expires: Tue, 31 Dec 2030 12:00:00 GMT
Content-Length: 7439
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
X-CDN: Imperva
X-Iinfo: 13-207493996-207494000 NNNN CT(156 158 0) RT(1673441515247 14) q(0 0 3 -1) r(5 5) U5
abtbank.applicantlist.com/styles/awesomer.css?ver=1.1.46678
192.230.77.49200 OK 4.6 kB URL HTTP/1.1 abtbank.applicantlist.com/styles/awesomer.css?ver=1.1.46678
IP 192.230.77.49:0
Hash cfc1b5c1174a7508451890b266aa87fc
00b27311c59e03c18bc2e6ce8b9ac46f8d29d6d6
20a9b9057cc300e7b194da115ad5ca495428a419b253184aa723774499bc6b05
Analyzer Verdict Alert fortinet Phishing
GET /styles/awesomer.css?ver=1.1.46678 HTTP/1.1
Host: abtbank.applicantlist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abtbank.applicantlist.com/account/login.php
Cookie: PHPSESSID=hjggp5o7e3ukntcbth43a1se4d; visid_incap_683608=ju26tmdFQAeWgof3k0o0wuqwvmMAAAAAQUIPAAAAAABbZPipxZoVM0Fn3iE4U8ye; nlbi_683608=LS/ecsmu1jcRNp/4ZxcJEgAAAAA8PyO0D8+pkA3E9fvjJaVY; incap_ses_723_683608=vbavQakOV2cMruP4g50ICuuwvmMAAAAAgUs6++1MWMwCnCWjH7KpuQ==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 12:51:55 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=15768000
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-type: text/css
Cache-Control: max-age=864000, public, must-revalidate
Expires: Tue, 31 Dec 2030 12:00:00 GMT
Content-Length: 4616
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
X-CDN: Imperva
X-Iinfo: 13-207493997-207494001 NNNN CT(157 157 0) RT(1673441515247 16) q(0 0 3 -1) r(5 5) U5
abtbank.applicantlist.com/js/all.min.js?ver=2.3.47194
192.230.77.49200 OK 66 kB URL HTTP/1.1 abtbank.applicantlist.com/js/all.min.js?ver=2.3.47194
IP 192.230.77.49:0
File type ASCII text, with very long lines (65447)
Hash 7b9eb4a42227f91a1ddc485c4ff37cd7
20606f59ad9b9a218c1d82a26fdd00084c0bd8e3
bef597ea9577b2c1563d5e4e5d61c55128f7a66cf96286c5b7ad070819c614a4
Analyzer Verdict Alert fortinet Phishing
GET /js/all.min.js?ver=2.3.47194 HTTP/1.1
Host: abtbank.applicantlist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abtbank.applicantlist.com/account/login.php
Cookie: PHPSESSID=hjggp5o7e3ukntcbth43a1se4d; visid_incap_683608=ju26tmdFQAeWgof3k0o0wuqwvmMAAAAAQUIPAAAAAABbZPipxZoVM0Fn3iE4U8ye; nlbi_683608=LS/ecsmu1jcRNp/4ZxcJEgAAAAA8PyO0D8+pkA3E9fvjJaVY; incap_ses_723_683608=vbavQakOV2cMruP4g50ICuuwvmMAAAAAgUs6++1MWMwCnCWjH7KpuQ==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 12:51:55 GMT
Server: Apache
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=15768000
Vary: Accept-Encoding
Content-Encoding: gzip
Content-type: text/javascript
Expires: Thu, 19 Nov 1981 08:52:00 GMT, Tue, 31 Dec 2030 12:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, max-age=864000, public, must-revalidate
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
X-CDN: Imperva
X-Iinfo: 13-207493998-207494002 NNNN CT(156 157 0) RT(1673441515247 17) q(0 0 3 -1) r(5 5) U5
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c63e18d9aa30ccb1a6e759dc3a52eaa8
8f1c5cb7c89c9158f31d6f5a69e0dfecf0a5b788
741318b757fc57cf3e84a5b3f8fc2f290a8acdd67d07aebc4c40ad8e2b581474
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 12:51:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
abtbank.applicantlist.com/_Incapsula_Resource?SWKMTFSR=1&e=0.4894207648876062
192.230.77.49200 OK 1 B URL HTTP/1.1 abtbank.applicantlist.com/_Incapsula_Resource?SWKMTFSR=1&e=0.4894207648876062
IP 192.230.77.49:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
GET /_Incapsula_Resource?SWKMTFSR=1&e=0.4894207648876062 HTTP/1.1
Host: abtbank.applicantlist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abtbank.applicantlist.com/account/login.php
Cookie: PHPSESSID=hjggp5o7e3ukntcbth43a1se4d; visid_incap_683608=ju26tmdFQAeWgof3k0o0wuqwvmMAAAAAQUIPAAAAAABbZPipxZoVM0Fn3iE4U8ye; nlbi_683608=LS/ecsmu1jcRNp/4ZxcJEgAAAAA8PyO0D8+pkA3E9fvjJaVY; incap_ses_723_683608=vbavQakOV2cMruP4g50ICuuwvmMAAAAAgUs6++1MWMwCnCWjH7KpuQ==; ___utmvc=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
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Content-Type: text/plain
X-Robots-Tag: noindex
Content-Length: 1
widget-dot-refer-io.appspot.com/refer.js
216.58.207.212200 OK 12 kB URL HTTP/2 widget-dot-refer-io.appspot.com/refer.js
IP 216.58.207.212:0
File type HTML document, ASCII text
Hash e4bd8f662072a5ed8d09733d3e9e0049
e6359983c510b04f778246e7315c9b6f6246372e
1ed2103c089715583ac8ade207a5dc428e9fddd586455ab7eae8581d59f9af38
GET /refer.js HTTP/1.1
Host: widget-dot-refer-io.appspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abtbank.applicantlist.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-cloud-trace-context: 4869c69452c1a451af92d7fcb76fbfbd
content-encoding: gzip
server: Google Frontend
content-length: 12532
date: Wed, 11 Jan 2023 12:51:56 GMT
expires: Wed, 11 Jan 2023 13:01:56 GMT
cache-control: public, max-age=600
etag: "O9rALA"
content-type: application/javascript
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c63e18d9aa30ccb1a6e759dc3a52eaa8
8f1c5cb7c89c9158f31d6f5a69e0dfecf0a5b788
741318b757fc57cf3e84a5b3f8fc2f290a8acdd67d07aebc4c40ad8e2b581474
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 12:51:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10500
Expires: Wed, 11 Jan 2023 15:46:56 GMT
Date: Wed, 11 Jan 2023 12:51:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10500
Expires: Wed, 11 Jan 2023 15:46:56 GMT
Date: Wed, 11 Jan 2023 12:51:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10500
Expires: Wed, 11 Jan 2023 15:46:56 GMT
Date: Wed, 11 Jan 2023 12:51:56 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F94fd75b6-8b38-4585-a6d9-7fe9c9b69e86.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F94fd75b6-8b38-4585-a6d9-7fe9c9b69e86.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3d51c94181cae0f64af5a64d0a154598
e540e8d54f425408d38a4ad69144ec87041a440c
4577272b9ef8c0d2c431d84dd241fe174ab986900f9c78075e8938e15eaff731
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F94fd75b6-8b38-4585-a6d9-7fe9c9b69e86.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7412
x-amzn-requestid: 1794e3d3-4c51-4745-bfdd-330ffdb2ac6f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eTxflFI3oAMFx6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b7c930-2060926968f809af6f667c72;Sampled=0
x-amzn-remapped-date: Fri, 06 Jan 2023 07:09:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wfzYApGFYslBRrmfzylooEWafrwNyLN1xOo2YyYMrPYa3caAdV6SSw==
via: 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 12:10:15 GMT
age: 2501
etag: "e540e8d54f425408d38a4ad69144ec87041a440c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febe61553-0d3d-4c00-8e9b-da1405590a9b.jpeg
34.120.237.76200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febe61553-0d3d-4c00-8e9b-da1405590a9b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a708649e0d6b128eb599b221445a8e06
59f9b06ee8e4c9608e29e7b19832fb925789f373
b4e17cfdee53b56ac33cb5a86253e4839ed7bd9bb1604209834bb22d881472f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febe61553-0d3d-4c00-8e9b-da1405590a9b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7140
x-amzn-requestid: 96450c55-6068-4946-9e5f-650c19d2772a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ei739GoJIAMF0lA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bdd9cc-2bf965d47a10fd61619d945f;Sampled=0
x-amzn-remapped-date: Tue, 10 Jan 2023 21:34:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: t5mK-tl3WskwkQLUXPKR2ljEW32-Yo6_BHwqP2dNVUr09WoMyxYeZw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 10 Jan 2023 21:42:06 GMT
age: 54590
etag: "59f9b06ee8e4c9608e29e7b19832fb925789f373"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4869fe48-260f-46c9-81a4-5ac67e647443.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4869fe48-260f-46c9-81a4-5ac67e647443.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7a241015ff8d404c1837655539fc53ed
6dc1b2fd2ef31f12d95e912ed56316c2fb01ae35
c289b877f9e66a830ec4effffd411d1e1a251aac2fa82ac80bee8369bce1748b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4869fe48-260f-46c9-81a4-5ac67e647443.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8772
x-amzn-requestid: 0d049342-a984-487a-b48b-862704fa3d5c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ei8QdFKXIAMFX0g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bdda69-1caef78222b6470241e7db53;Sampled=0
x-amzn-remapped-date: Tue, 10 Jan 2023 21:36:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aE4f4yuWkPLj8UAKwg4efQzzP1fI9fcXpv2AG2ZJZxMVx920yqqbQg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 10 Jan 2023 21:49:25 GMT
age: 54151
etag: "6dc1b2fd2ef31f12d95e912ed56316c2fb01ae35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd94a5360-2ddf-4088-a880-212e75db1287.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd94a5360-2ddf-4088-a880-212e75db1287.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aad80e2c0386d7c7d88ac85b00d2e50f
291629800087b85000b89165892b05fd7babd8b3
bac555de181f5181e01bccf20691916725baae448130a1de3c8da908f60a727f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd94a5360-2ddf-4088-a880-212e75db1287.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7602
x-amzn-requestid: 10f2172b-1c93-4525-bdc7-23cb66d878dd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eS1mOHeuoAMFfpQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b7695a-385d20e03946bf41036d6378;Sampled=0
x-amzn-remapped-date: Fri, 06 Jan 2023 00:20:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fo2aHbnZ37zVVknHYPZwnmSlDQFOUOb4CP5u60hl4V0v2vJc_9EJsw==
via: 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 10 Jan 2023 21:51:20 GMT
age: 54036
etag: "291629800087b85000b89165892b05fd7babd8b3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a23d61d610c7b55d943fcb2636a01b65
82c4c5170c7b586c2a7a1f2d2d5c9ff0219af065
28bf3039cc8c1213e64893c71bc150eda573223feb2cc15ad0814a44960d434a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9539
x-amzn-requestid: 9f388939-cfb7-432e-a921-e9188736bb45
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eTw5QGZ6oAMFxQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b7c83b-4f9d5bfc30e5ee126333d54e;Sampled=0
x-amzn-remapped-date: Fri, 06 Jan 2023 07:05:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KagwDWv4x4hYmkcjYZeGCVtIk4CEiK_QOPd02qkm7qdRLc0TDrUKeA==
via: 1.1 1f6e68152880a39d72e6bf2996cd6a60.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 05:42:12 GMT
age: 25784
etag: "82c4c5170c7b586c2a7a1f2d2d5c9ff0219af065"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe834a7de-1ed4-4b8b-a3be-fce3151bd1b1.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe834a7de-1ed4-4b8b-a3be-fce3151bd1b1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 68af9d9acdc08345ac38ae59f83a9a24
d3c0b7fa6ab4f421835acd595a75b5035d1ff9ee
1ae2e194f6bb20166d326002b39a4e3f44a9a97046e77ffd2a186eae384b7ce1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe834a7de-1ed4-4b8b-a3be-fce3151bd1b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10640
x-amzn-requestid: 0b0b6732-7692-4b35-9625-154dc39386dd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ei745GEooAMFafA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bdd9d2-314dad90600e9d8c737adf05;Sampled=0
x-amzn-remapped-date: Tue, 10 Jan 2023 21:34:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rr9hTjSynlIWtcOCn7hv3-rRhhGEl0A0_uV1jC2ljrpr8ybnZP72Zw==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 10 Jan 2023 21:42:10 GMT
age: 54586
etag: "d3c0b7fa6ab4f421835acd595a75b5035d1ff9ee"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 4475516cd46e5a73f3002f1fc9b68cc5
114957dbe1042296e6ea7542445dbee8d9084d82
08d1e5edf085d4051c346087631febfdb48ab158a5e337a8902bc07efb588394
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 12:51:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abtbank.applicantlist.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 11 Jan 2023 12:41:08 GMT
expires: Wed, 11 Jan 2023 14:41:08 GMT
cache-control: public, max-age=7200
age: 648
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 4475516cd46e5a73f3002f1fc9b68cc5
114957dbe1042296e6ea7542445dbee8d9084d82
08d1e5edf085d4051c346087631febfdb48ab158a5e337a8902bc07efb588394
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 11 Jan 2023 12:51:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j98&a=2126876154&t=pageview&_s=1&dl=https%3A%2F%2Fabtbank.applicantlist.com%2Faccount%2Flogin.php&ul=en-us&de=UTF-8&dt=Adams%20Bank%20and%20Trust%20Login%20-%20Adams%20Bank%20and%20Trust&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1853536818&gjid=1826133683&cid=4045416.1673441503&tid=UA-57286717-2&_gid=1328891026.1673441503&_r=1&_slc=1&z=1141792861
142.250.74.110200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=2126876154&t=pageview&_s=1&dl=https%3A%2F%2Fabtbank.applicantlist.com%2Faccount%2Flogin.php&ul=en-us&de=UTF-8&dt=Adams%20Bank%20and%20Trust%20Login%20-%20Adams%20Bank%20and%20Trust&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1853536818&gjid=1826133683&cid=4045416.1673441503&tid=UA-57286717-2&_gid=1328891026.1673441503&_r=1&_slc=1&z=1141792861
IP 142.250.74.110:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j98&a=2126876154&t=pageview&_s=1&dl=https%3A%2F%2Fabtbank.applicantlist.com%2Faccount%2Flogin.php&ul=en-us&de=UTF-8&dt=Adams%20Bank%20and%20Trust%20Login%20-%20Adams%20Bank%20and%20Trust&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1853536818&gjid=1826133683&cid=4045416.1673441503&tid=UA-57286717-2&_gid=1328891026.1673441503&_r=1&_slc=1&z=1141792861 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://abtbank.applicantlist.com
Connection: keep-alive
Referer: https://abtbank.applicantlist.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://abtbank.applicantlist.com
date: Wed, 11 Jan 2023 12:51:56 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
abtbank.applicantlist.com/images/12/3327/AdamsBank_headerNEW2.png
192.230.77.49200 OK 461 kB URL HTTP/1.1 abtbank.applicantlist.com/images/12/3327/AdamsBank_headerNEW2.png
IP 192.230.77.49:0
File type PNG image data, 1100 x 549, 8-bit/color RGBA, non-interlaced\012- data
Size 461 kB (461015 bytes)
Hash 1ab4889801b78095572f0aaf286ade8e
87fca27e0e51c78f9b6215b169dc34737c1e2e01
d413a119916e6f38b93266353fd06ace53bc37dab6764f25d5767f9515b9bb5e
GET /images/12/3327/AdamsBank_headerNEW2.png HTTP/1.1
Host: abtbank.applicantlist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abtbank.applicantlist.com/account/login.php
Cookie: PHPSESSID=hjggp5o7e3ukntcbth43a1se4d; visid_incap_683608=ju26tmdFQAeWgof3k0o0wuqwvmMAAAAAQUIPAAAAAABbZPipxZoVM0Fn3iE4U8ye; nlbi_683608=LS/ecsmu1jcRNp/4ZxcJEgAAAAA8PyO0D8+pkA3E9fvjJaVY; incap_ses_723_683608=vbavQakOV2cMruP4g50ICuuwvmMAAAAAgUs6++1MWMwCnCWjH7KpuQ==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 12:51:56 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=15768000
Last-Modified: Thu, 05 Mar 2020 21:17:18 GMT
Accept-Ranges: bytes
Content-Length: 461015
Cache-Control: max-age=864000, public, must-revalidate
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
X-CDN: Imperva
X-Iinfo: 14-243814941-243814945 SNNN RT(1673441514570 1501) q(0 0 0 -1) r(2 2) U5
abtbank.applicantlist.com/favicon.ico
192.230.77.49200 OK 3.3 kB URL HTTP/1.1 abtbank.applicantlist.com/favicon.ico
IP 192.230.77.49:0
File type MS Windows icon resource - 1 icon, 32x32, 24 bits/pixel\012- data
Hash 0aefbd6b13769b524c207807bdabe1b3
d6a565e23ea938f1faf5fcf0fd09d07b20d6568e
39ffab66c749bd7de8f5219de7713d5978f526e2494ebaa7b3d77f9d80a1390a
GET /favicon.ico HTTP/1.1
Host: abtbank.applicantlist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abtbank.applicantlist.com/account/login.php
Cookie: PHPSESSID=hjggp5o7e3ukntcbth43a1se4d; visid_incap_683608=ju26tmdFQAeWgof3k0o0wuqwvmMAAAAAQUIPAAAAAABbZPipxZoVM0Fn3iE4U8ye; nlbi_683608=LS/ecsmu1jcRNp/4ZxcJEgAAAAA8PyO0D8+pkA3E9fvjJaVY; incap_ses_723_683608=vbavQakOV2cMruP4g50ICuuwvmMAAAAAgUs6++1MWMwCnCWjH7KpuQ==; ___utmvc=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
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 12:51:56 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=15768000
Last-Modified: Fri, 06 Dec 2019 23:09:18 GMT
Accept-Ranges: bytes
Content-Length: 3262
Cache-Control: max-age=864000, public, must-revalidate
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/vnd.microsoft.icon
X-CDN: Imperva
X-Iinfo: 13-207493996-207494000 SNNN RT(1673441515247 1472) q(0 0 0 -1) r(1 1) U5
abtbank.applicantlist.com/includes/link_tracking.php
192.230.77.49200 OK 0 B URL HTTP/1.1 abtbank.applicantlist.com/includes/link_tracking.php
IP 192.230.77.49:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
POST /includes/link_tracking.php HTTP/1.1
Host: abtbank.applicantlist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://abtbank.applicantlist.com
Connection: keep-alive
Referer: https://abtbank.applicantlist.com/account/login.php
Cookie: PHPSESSID=hjggp5o7e3ukntcbth43a1se4d; visid_incap_683608=ju26tmdFQAeWgof3k0o0wuqwvmMAAAAAQUIPAAAAAABbZPipxZoVM0Fn3iE4U8ye; nlbi_683608=LS/ecsmu1jcRNp/4ZxcJEgAAAAA8PyO0D8+pkA3E9fvjJaVY; incap_ses_723_683608=vbavQakOV2cMruP4g50ICuuwvmMAAAAAgUs6++1MWMwCnCWjH7KpuQ==; ___utmvc=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
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 12:51:56 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=15768000
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
X-CDN: Imperva
X-Iinfo: 14-243814964-243815006 NNNN CT(156 158 0) RT(1673441515248 1171) q(0 0 3 -1) r(4 5) U5
abtbank.applicantlist.com/images/12/3327/AdamsBank_bkgNEW2.jpg
192.230.77.49200 OK 1.6 MB URL HTTP/1.1 abtbank.applicantlist.com/images/12/3327/AdamsBank_bkgNEW2.jpg
IP 192.230.77.49:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 2000x5000, components 3\012- data
Size 1.6 MB (1575357 bytes)
Hash 3abe7e9f8f6217a551a6876bf7fae6ae
cfd3adeb56e083f89365e22d1ba130e279077055
b03021d8c7fd58bd433d7e563f454f4d8a516aa6913eff8cc417f8d7b4801eb2
GET /images/12/3327/AdamsBank_bkgNEW2.jpg HTTP/1.1
Host: abtbank.applicantlist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abtbank.applicantlist.com/styles/all.min.css?ver=1.2.47052
Cookie: PHPSESSID=hjggp5o7e3ukntcbth43a1se4d; visid_incap_683608=ju26tmdFQAeWgof3k0o0wuqwvmMAAAAAQUIPAAAAAABbZPipxZoVM0Fn3iE4U8ye; nlbi_683608=LS/ecsmu1jcRNp/4ZxcJEgAAAAA8PyO0D8+pkA3E9fvjJaVY; incap_ses_723_683608=vbavQakOV2cMruP4g50ICuuwvmMAAAAAgUs6++1MWMwCnCWjH7KpuQ==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 11 Jan 2023 12:51:56 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=15768000
Last-Modified: Wed, 11 Mar 2020 05:24:31 GMT
Accept-Ranges: bytes
Content-Length: 1575357
Cache-Control: max-age=864000, public, must-revalidate
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
X-CDN: Imperva
X-Iinfo: 13-207493998-207494002 SNNN RT(1673441515247 899) q(0 0 0 -1) r(2 2) U5