www.waterlily-btq.com/Huntingtonn/index2.html
69.49.230.194200 OK 11 kB URL HTTP/1.1 www.waterlily-btq.com/Huntingtonn/index2.html
IP 69.49.230.194:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (485), with CRLF line terminators
Hash 608f51e2a3285e5c9464ee66ee278bbc
9033e2fab9feec2fd80306ef91593806bbc574bd
8fb35e40d57743abc7bcd3cc26b39213043879173304191f76876a2866ae57a0
Analyzer Verdict Alert openphish Huntington Bank
fortinet Phishing
GET /Huntingtonn/index2.html HTTP/1.1
Host: www.waterlily-btq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 07:37:59 GMT
Server: Apache
Last-Modified: Fri, 20 Jan 2023 18:07:04 GMT
Accept-Ranges: bytes
Content-Length: 11014
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 37284a837312d6586460a3b86bbe7bd0
6ac0847abd48eb8607597218aaa2cb2d434c012b
6a0e11bb042555d72b397ae0cc3d5e242d3a3fe04418e28ffd222decca7d16ca
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A0E11BB042555D72B397AE0CC3D5E242D3A3FE04418E28FFD222DECCA7D16CA"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2187
Expires: Sat, 21 Jan 2023 08:14:27 GMT
Date: Sat, 21 Jan 2023 07:38:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4714c95a0c854e38f9be444f9343bf14
07ce5eb635448f2b3bafbe51e4dfeef47cdf4f7b
4d47e08c9afb704096e93a51f6e95c0dc7c7bc31e67ded39998ff37ed56e0965
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D47E08C9AFB704096E93A51F6E95C0DC7C7BC31E67DED39998FF37ED56E0965"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17307
Expires: Sat, 21 Jan 2023 12:26:27 GMT
Date: Sat, 21 Jan 2023 07:38:00 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 21 Jan 2023 07:34:42 GMT
content-type: application/json
age: 198
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 17094b856fde02b2c8c2d3845ad325cf
26dc3f2ebf81faf5ab96eb75ffcbead6085528b8
6547376c41dcaa352cc4e747291916902bcddc0032b750bd84c5e3b2fe6f7d16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6547376C41DCAA352CC4E747291916902BCDDC0032B750BD84C5E3B2FE6F7D16"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9238
Expires: Sat, 21 Jan 2023 10:11:58 GMT
Date: Sat, 21 Jan 2023 07:38:00 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: qwVoPgLGbTZdqiVbG6zXVKFpB0HN0wwuF1kxycdHLcYoo63HJSIx9msNf9O4s/3Vzm13mGueEu0=
x-amz-request-id: VR4277344CRZJGHF
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 21 Jan 2023 06:46:42 GMT
age: 3078
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 07:38:00 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.waterlily-btq.com/Huntingtonn/css/opensans.css
69.49.230.194200 OK 2.4 kB URL HTTP/1.1 www.waterlily-btq.com/Huntingtonn/css/opensans.css
IP 69.49.230.194:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 5bd7923fbd0b1d6db1c31394334f4510
2d24c3756bad6dc5b70b199766aebbd6923ef488
4e7588fe9002b8dfa03aa04e34aa12a908180cdcd40c7971204783bb207b1d2d
GET /Huntingtonn/css/opensans.css HTTP/1.1
Host: www.waterlily-btq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.waterlily-btq.com/Huntingtonn/index2.html
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 07:37:59 GMT
Server: Apache
Last-Modified: Mon, 12 Sep 2022 14:44:50 GMT
Accept-Ranges: bytes
Content-Length: 2431
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 456d7336d8d8766f068c1a488d6f7ee9
500f17e64e2838a041ce779c1d98419c3edbf15f
54e960b56ecb57315d092725d3f8f10b7928b1fffcce79f491ff028b56f11b44
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 21 Jan 2023 07:38:00 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 20 Jan 2023 20:55:57 GMT
Expires: Sat, 21 Jan 2023 20:55:57 GMT
ETag: "500f17e64e2838a041ce779c1d98419c3edbf15f"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
cdn.perfdrive.com/aperture/aperture.js
130.211.29.114200 OK 14 kB URL HTTP/2 cdn.perfdrive.com/aperture/aperture.js
IP 130.211.29.114:0
File type ASCII text, with very long lines (566)
Hash 9b690590c9a694107d7c7cfa0b731b68
c95e502d5d2d5437e168ae55af0439beef69d370
1b07b11a98a6e988acd3bc823b64b353702411709d8ef871e393dee1866d7cda
GET /aperture/aperture.js HTTP/1.1
Host: cdn.perfdrive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.waterlily-btq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.22.1
vary: Accept-Encoding
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
content-length: 13453
date: Sat, 21 Jan 2023 07:26:54 GMT
cache-control: max-age=3600,public
age: 666
last-modified: Thu, 05 Jan 2023 11:09:21 GMT
etag: W/"63b6afe1-ae3a"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.waterlily-btq.com/Huntingtonn/css/angular.css
69.49.230.194200 OK 5.4 kB URL HTTP/1.1 www.waterlily-btq.com/Huntingtonn/css/angular.css
IP 69.49.230.194:0
ASN #46606 UNIFIEDLAYER-AS-1
File type assembler source, ASCII text, with CRLF line terminators
Hash 1cd135a10368424ee961e4e190265da4
d9dba2925d2c69e2b3ba6209526d85a77049b83f
01d576ecec7ba742fe2d660d95cf62ad1a05138d1633e7615267db9df314565b
GET /Huntingtonn/css/angular.css HTTP/1.1
Host: www.waterlily-btq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.waterlily-btq.com/Huntingtonn/index2.html
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 07:37:59 GMT
Server: Apache
Last-Modified: Mon, 12 Sep 2022 14:42:22 GMT
Accept-Ranges: bytes
Content-Length: 5436
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.waterlily-btq.com/Huntingtonn/css/RadDockableObject.css
69.49.230.194200 OK 2.1 kB URL HTTP/1.1 www.waterlily-btq.com/Huntingtonn/css/RadDockableObject.css
IP 69.49.230.194:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 1a8244850eb3ae5a94862c4363f549b8
fd3f90fcb32e1ae287da38e9133c94bf423bc29e
926172c6f78bad8d437e449a3309ea0de03199f2bc0d2101899f3ce99df04f4b
GET /Huntingtonn/css/RadDockableObject.css HTTP/1.1
Host: www.waterlily-btq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.waterlily-btq.com/Huntingtonn/index2.html
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 07:37:59 GMT
Server: Apache
Last-Modified: Mon, 12 Sep 2022 14:45:04 GMT
Accept-Ranges: bytes
Content-Length: 2105
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.waterlily-btq.com/Huntingtonn/css/material-icons.css
69.49.230.194200 OK 1.1 kB URL HTTP/1.1 www.waterlily-btq.com/Huntingtonn/css/material-icons.css
IP 69.49.230.194:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 8c089ad2990bd0125dd3b8b4c690a9f3
3a41e3e8313c80acbb8a1415bc593cbdd04fdbcd
8d2b3b3f10ca6c187d1743874258809edabc2e3acbd05aa810e68db6c63dada0
GET /Huntingtonn/css/material-icons.css HTTP/1.1
Host: www.waterlily-btq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.waterlily-btq.com/Huntingtonn/index2.html
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 07:37:59 GMT
Server: Apache
Last-Modified: Mon, 12 Sep 2022 14:42:40 GMT
Accept-Ranges: bytes
Content-Length: 1105
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ocsp.godaddy.com/
192.124.249.41200 OK 1.7 kB IP 192.124.249.41:0
Hash d6feef009f306a0da27282041de55936
c0c47611a37b483e80b87480a1db416da88a9aa7
6d67916e6546019defb8ebac401eaaea7537641ca59de6de7919f4665e68f62e
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 68
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 21 Jan 2023 07:38:00 GMT
Content-Type: application/ocsp-response
Content-Length: 1731
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 20 Jan 2023 20:11:13 GMT
Expires: Sat, 21 Jan 2023 20:11:13 GMT
ETag: "c0c47611a37b483e80b87480a1db416da88a9aa7"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.41200 OK 1.7 kB IP 192.124.249.41:0
Hash d6feef009f306a0da27282041de55936
c0c47611a37b483e80b87480a1db416da88a9aa7
6d67916e6546019defb8ebac401eaaea7537641ca59de6de7919f4665e68f62e
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 68
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 21 Jan 2023 07:38:00 GMT
Content-Type: application/ocsp-response
Content-Length: 1731
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 20 Jan 2023 20:11:13 GMT
Expires: Sat, 21 Jan 2023 20:11:13 GMT
ETag: "c0c47611a37b483e80b87480a1db416da88a9aa7"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 9bf4b1018c06f12379b7c5df48bcb1f0
6a8b5cc10fb20f173ae2f54e21cfc94f69dfb4f8
0f9c79f25952ffeca0e9d4ec1dc59874a67ebcc6a952a3b190e1f83b6bc7d6c6
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 21 Jan 2023 07:38:00 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 20 Jan 2023 20:59:53 GMT
Expires: Sat, 21 Jan 2023 20:59:53 GMT
ETag: "6a8b5cc10fb20f173ae2f54e21cfc94f69dfb4f8"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 9bf4b1018c06f12379b7c5df48bcb1f0
6a8b5cc10fb20f173ae2f54e21cfc94f69dfb4f8
0f9c79f25952ffeca0e9d4ec1dc59874a67ebcc6a952a3b190e1f83b6bc7d6c6
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 21 Jan 2023 07:38:00 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 20 Jan 2023 20:59:53 GMT
Expires: Sat, 21 Jan 2023 20:59:53 GMT
ETag: "6a8b5cc10fb20f173ae2f54e21cfc94f69dfb4f8"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Pragma, Content-Length, Alert, Expires, ETag, Last-Modified, Backoff, Content-Type, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 21 Jan 2023 06:48:58 GMT
age: 2943
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 30a4225413acc1a0ebd98ea60c5850f5
e5700968c8e1ad3f210f54f183c2657f60b647f9
22fa4fe1f57376ce6972c0ccda1c39a14b96c6695223d29a06eb6d293a87afde
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 07:38:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.waterlily-btq.com/Huntingtonn/img/HUN.png
69.49.230.194200 OK 2.5 kB URL HTTP/1.1 www.waterlily-btq.com/Huntingtonn/img/HUN.png
IP 69.49.230.194:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 266 x 189, 8-bit colormap, non-interlaced\012- data
Hash 93c5b402b6e122f1053a7eaa35b45162
db35c27270ea3d3ef6055c8d3a767ad9f1caab64
391fbaeeb9b72b606d0fbb58c89e07451f9b2312cef6c432ac8a3f64895d5908
GET /Huntingtonn/img/HUN.png HTTP/1.1
Host: www.waterlily-btq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.waterlily-btq.com/Huntingtonn/index2.html
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 07:38:00 GMT
Server: Apache
Last-Modified: Fri, 20 Jan 2023 18:20:21 GMT
Accept-Ranges: bytes
Content-Length: 2489
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bdb8a13dfce39d6e151a9ef185a772a1
037a680510f9dbce3c7cc3c0f9115fd587dbcd1d
98c8b7f269b9aad73b73fd946788ebfd7a4d7afbdd5347b56c67f73b947f5ff6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3198
Cache-Control: max-age=94932
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 07:38:01 GMT
Etag: "63ca59af-1d7"
Expires: Sun, 22 Jan 2023 10:00:13 GMT
Last-Modified: Fri, 20 Jan 2023 09:06:55 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
developer.android.com/images/brand/en_generic_rgb_wo_45.png
216.58.211.14200 OK 4.1 kB URL HTTP/2 developer.android.com/images/brand/en_generic_rgb_wo_45.png
IP 216.58.211.14:0
File type PNG image data, 129 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash 6ea466e328da752cabd8787d8e4b9612
8725a80d388cd91574669bd301c1a87e4230889d
d838b2098a6dde4053f9ccdbbc0f889d4444b5a27da3ee211cd782a8458bb63e
GET /images/brand/en_generic_rgb_wo_45.png HTTP/1.1
Host: developer.android.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.waterlily-btq.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
set-cookie: _ga_devsite=GA1.3.2789137898.1674286681; Expires=Mon, 20 Jan 2025 07:38:01 GMT; Max-Age=63072000; Path=/
content-security-policy: base-uri 'self'; object-src 'none'; script-src 'strict-dynamic' 'unsafe-inline' https: http: 'nonce-UvivDq+RazWHcYZi5g/OP7k1OP1noF' 'unsafe-eval'; report-uri https://csp.withgoogle.com/csp/devsite/v2
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
cache-control: no-cache, must-revalidate
expires: 0
pragma: no-cache
x-cloud-trace-context: b30f2bcdade2b1b1c20b5c7773098338
date: Sat, 21 Jan 2023 07:38:01 GMT
server: Google Frontend
content-length: 4109
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9046bdd3634f2cfb8ace7c326c4af05f
d92d1610bbcc211f0648ec87b5aee6a562f606db
eea88fe2aaabd085058e3cf139e8780e1ddeff62e4fb94d6eeabe512a309d8ac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 07:38:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.waterlily-btq.com/favicon.ico
69.49.230.194404 Not Found 315 B URL HTTP/1.1 www.waterlily-btq.com/favicon.ico
IP 69.49.230.194:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /favicon.ico HTTP/1.1
Host: www.waterlily-btq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.waterlily-btq.com/Huntingtonn/index2.html
Cookie: __ssds=2; __ssuzjsr2=a9be0cd8e
HTTP/1.1 404 Not Found
Date: Sat, 21 Jan 2023 07:38:00 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
push.services.mozilla.com/
52.89.217.163101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.217.163:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DLNEL8uwG0cmz0h5Z9jimg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: EvNoeAVPgPEl4ZfRtnAdWL+HaEw=
olb.sccu.com/OnlineBanking/App_Themes/Theme5/spacecoast/fonts/montserrat/montserrat-regular.woff
66.22.0.11200 OK 24 kB URL HTTP/2 olb.sccu.com/OnlineBanking/App_Themes/Theme5/spacecoast/fonts/montserrat/montserrat-regular.woff
IP 66.22.0.11:0
ASN #25773 RADWARE-CLOUD-SERVICES
File type Web Open Font Format, TrueType, length 24388, version 7.200\012- data
Hash c13d6da7f8d4baefe259064aafcc5caa
5d13ea1a6aad8bc479b6b64575cb32e773290610
e1d9c2a74135a14aaa7ab70d89bcc8b303fc96138840aac3e19385d4a7d062d5
GET /OnlineBanking/App_Themes/Theme5/spacecoast/fonts/montserrat/montserrat-regular.woff HTTP/1.1
Host: olb.sccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.waterlily-btq.com
Connection: keep-alive
Referer: https://olb.sccu.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: font/x-woff
content-length: 24388
last-modified: Tue, 17 Nov 2020 15:59:52 GMT
accept-ranges: bytes
etag: "08c20affabcd61:0"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
x-ua-compatible: IE=Edge
date: Sat, 21 Jan 2023 07:38:01 GMT
set-cookie: ZJULCVVF=0285387f83-142a-4dULQphryQApFAyfVv0cFo2Y_1R6hUGs9GByWRizM4f_pbGvdVOwGQ7FWWDelUJjjhnMU; path=/; SameSite=None; Secure
X-Firefox-Spdy: h2
olb.sccu.com/OnlineBanking/content.aspx?theme=Theme5&color1=%23424242&color2=%23F5F5F5&image=EqualHousingLender.svg
66.22.0.11200 OK 1.3 kB URL HTTP/2 olb.sccu.com/OnlineBanking/content.aspx?theme=Theme5&color1=%23424242&color2=%23F5F5F5&image=EqualHousingLender.svg
IP 66.22.0.11:0
ASN #25773 RADWARE-CLOUD-SERVICES
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (344), with CRLF line terminators
Hash 5e4cb0126e52c254c52ab70905aa9ec2
ed921ebdea59577d56dca16b1380be213a3b8c3d
4a8eeb17a4d3f72a3a9bb52bebeec37bead3cc60ca4f475facbda9135a782f33
GET /OnlineBanking/content.aspx?theme=Theme5&color1=%23424242&color2=%23F5F5F5&image=EqualHousingLender.svg HTTP/1.1
Host: olb.sccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://olb.sccu.com/OnlineBanking/Theme5Css.aspx?h=7CC200ED151C8E95B54A8AB8314619D7
Cookie: ZJULCVVF=0285387f83-142a-4dk7dD7Kt7VGf5LdlM3G4pfa7pz8WmifrTgx5PG_D3tAIEYo1enoOfes9bbxDJYOtQYBE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 1281
set-cookie: __uzma=6c3fc7a8-ab87-44b2-a78a-176b301ae77e; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:02 GMT ; Max-Age=15724800; SameSite=Lax
__uzmb=1674286682; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:02 GMT ; Max-Age=15724800; SameSite=Lax
__uzme=7402; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:02 GMT ; Max-Age=15724800; SameSite=Lax
__uzmc=577811016659; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:02 GMT ; Max-Age=15724800; SameSite=Lax
__uzmd=1674286682; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:02 GMT ; Max-Age=15724800; SameSite=Lax
cache-control: public
last-modified: Mon, 01 Jan 0001 05:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
x-ua-compatible: IE=Edge
date: Sat, 21 Jan 2023 07:38:02 GMT
X-Firefox-Spdy: h2
olb.sccu.com/OnlineBanking/content.aspx?theme=Theme5&color1=%23000000&color2=%23000000&image=Logo.svg
66.22.0.11200 OK 12 kB URL HTTP/2 olb.sccu.com/OnlineBanking/content.aspx?theme=Theme5&color1=%23000000&color2=%23000000&image=Logo.svg
IP 66.22.0.11:0
ASN #25773 RADWARE-CLOUD-SERVICES
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (7287), with CRLF line terminators
Hash c7b060b7604197d6a0b12648830d9ee8
106494aaa57a809c485aeff1dcf43421250f17be
88978628e57207e83a74d047ca5aa90b9435741822fbefff1f1b9475fa1cbdb3
GET /OnlineBanking/content.aspx?theme=Theme5&color1=%23000000&color2=%23000000&image=Logo.svg HTTP/1.1
Host: olb.sccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://olb.sccu.com/OnlineBanking/Theme5Css.aspx?h=7CC200ED151C8E95B54A8AB8314619D7
Cookie: ZJULCVVF=0285387f83-142a-4dk7dD7Kt7VGf5LdlM3G4pfa7pz8WmifrTgx5PG_D3tAIEYo1enoOfes9bbxDJYOtQYBE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 12107
set-cookie: __uzma=ff7da566-fa0f-49e8-a964-b1e61f3b3119; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:02 GMT ; Max-Age=15724800; SameSite=Lax
__uzmb=1674286682; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:02 GMT ; Max-Age=15724800; SameSite=Lax
__uzme=6470; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:02 GMT ; Max-Age=15724800; SameSite=Lax
__uzmc=940941040861; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:02 GMT ; Max-Age=15724800; SameSite=Lax
__uzmd=1674286682; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:02 GMT ; Max-Age=15724800; SameSite=Lax
cache-control: public
last-modified: Mon, 01 Jan 0001 05:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
x-ua-compatible: IE=Edge
date: Sat, 21 Jan 2023 07:38:02 GMT
X-Firefox-Spdy: h2
olb.sccu.com/OnlineBanking/content.aspx?theme=Theme5&color1=%23424242&color2=%23F5F5F5&image=svg/ncua.svg
66.22.0.11200 OK 0 B URL HTTP/2 olb.sccu.com/OnlineBanking/content.aspx?theme=Theme5&color1=%23424242&color2=%23F5F5F5&image=svg/ncua.svg
IP 66.22.0.11:0
ASN #25773 RADWARE-CLOUD-SERVICES
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /OnlineBanking/content.aspx?theme=Theme5&color1=%23424242&color2=%23F5F5F5&image=svg/ncua.svg HTTP/1.1
Host: olb.sccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://olb.sccu.com/OnlineBanking/Theme5Css.aspx?h=7CC200ED151C8E95B54A8AB8314619D7
Cookie: ZJULCVVF=0285387f83-142a-4dk7dD7Kt7VGf5LdlM3G4pfa7pz8WmifrTgx5PG_D3tAIEYo1enoOfes9bbxDJYOtQYBE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-length: 0
set-cookie: __uzma=8081d868-52e6-4725-a5ae-262a920693e5; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:02 GMT ; Max-Age=15724800; SameSite=Lax
__uzmb=1674286682; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:02 GMT ; Max-Age=15724800; SameSite=Lax
__uzme=2798; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:02 GMT ; Max-Age=15724800; SameSite=Lax
__uzmc=692581058640; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:02 GMT ; Max-Age=15724800; SameSite=Lax
__uzmd=1674286682; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:02 GMT ; Max-Age=15724800; SameSite=Lax
ADRUM_BTa=R:84|g:140a555a-8495-42fa-b5f9-212ccf535fa8|n:spacecoastcreditunion_803322c3-bfcf-4bc3-b47a-bbd31c4c5806; expires=Sat, 21-Jan-2023 07:38:32 GMT; path=/
SameSite=None; expires=Sat, 21-Jan-2023 07:38:32 GMT; path=/
ADRUM_BT1=R:84|i:371912|e:9; expires=Sat, 21-Jan-2023 07:38:32 GMT; path=/
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
x-ua-compatible: IE=Edge
date: Sat, 21 Jan 2023 07:38:02 GMT
X-Firefox-Spdy: h2
cdn.appdynamics.com/adrum-ext.ebf1620b3b847dfbf76f6e109dcacd8e.js
143.204.55.107200 OK 22 kB URL HTTP/2 cdn.appdynamics.com/adrum-ext.ebf1620b3b847dfbf76f6e109dcacd8e.js
IP 143.204.55.107:0
Hash 34d591885fae12b2c174ef0c353a9cce
ca240b0dc6f5c3a301637028023700d647ae580c
7abb7e5255f3eec063b549d6429f38222cd8fe3cbf62bbf455eaf903e3d0158d
GET /adrum-ext.ebf1620b3b847dfbf76f6e109dcacd8e.js HTTP/1.1
Host: cdn.appdynamics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.waterlily-btq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Sat, 14 Jan 2023 22:00:16 GMT
server: nginx/1.16.1
last-modified: Fri, 15 Apr 2022 21:40:35 GMT
etag: W/"6259e653-ce76"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cache-control: public, max-age=2678400, s-max-age=14400
timing-allow-origin: *
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: u8ohF2Ykdbzpsv1pTKNr5JxI2uDVAaOS8jyzthX4KbK30K3oSNTruQ==
age: 553064
X-Firefox-Spdy: h2
olb.sccu.com/OnlineBanking/content.aspx?theme=Theme5&image=CheckBox-Unchecked.svg
66.22.0.11200 OK 253 B URL HTTP/2 olb.sccu.com/OnlineBanking/content.aspx?theme=Theme5&image=CheckBox-Unchecked.svg
IP 66.22.0.11:0
ASN #25773 RADWARE-CLOUD-SERVICES
File type SVG Scalable Vector Graphics image\012- , ASCII text, with CRLF line terminators
Hash c293b4e7e52cb442aba55335ef5483ba
8007a609ed0c55261ddcbfe284c32f5d40427516
f6c193e6063de296e0ffb86b076dd331efbb6bf1544b876af7c789ef4522ad47
GET /OnlineBanking/content.aspx?theme=Theme5&image=CheckBox-Unchecked.svg HTTP/1.1
Host: olb.sccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://olb.sccu.com/OnlineBanking/Theme5Css.aspx?h=7CC200ED151C8E95B54A8AB8314619D7
Cookie: ZJULCVVF=0285387f83-142a-4dk7dD7Kt7VGf5LdlM3G4pfa7pz8WmifrTgx5PG_D3tAIEYo1enoOfes9bbxDJYOtQYBE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 253
set-cookie: __uzma=8337b817-af94-4330-ac17-3a1652641125; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:02 GMT ; Max-Age=15724800; SameSite=Lax
__uzmb=1674286682; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:02 GMT ; Max-Age=15724800; SameSite=Lax
__uzme=7927; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:02 GMT ; Max-Age=15724800; SameSite=Lax
__uzmc=207941012121; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:02 GMT ; Max-Age=15724800; SameSite=Lax
__uzmd=1674286682; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:02 GMT ; Max-Age=15724800; SameSite=Lax
cache-control: public
last-modified: Mon, 01 Jan 0001 05:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
x-ua-compatible: IE=Edge
date: Sat, 21 Jan 2023 07:38:02 GMT
X-Firefox-Spdy: h2
olb.sccu.com/OnlineBanking/App_Themes/Theme5/images/spacecoast/1920x1080-04.jpg
66.22.0.11200 OK 272 kB URL HTTP/2 olb.sccu.com/OnlineBanking/App_Themes/Theme5/images/spacecoast/1920x1080-04.jpg
IP 66.22.0.11:0
ASN #25773 RADWARE-CLOUD-SERVICES
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1080, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1920], baseline, precision 8, 1920x1080, components 3\012- data
Size 272 kB (271563 bytes)
Hash f0c6f78e040226c7d10695933b9a25a7
fc56918d6da9a1810dcf64befcc9f7082971c5e0
b4f957811a348ba78bf5b02db3aa00e26e37c9e69987f5d459247dd0a1a70e61
GET /OnlineBanking/App_Themes/Theme5/images/spacecoast/1920x1080-04.jpg HTTP/1.1
Host: olb.sccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://olb.sccu.com/OnlineBanking/Theme5Css.aspx?h=7CC200ED151C8E95B54A8AB8314619D7
Cookie: ZJULCVVF=0285387f83-142a-4dk7dD7Kt7VGf5LdlM3G4pfa7pz8WmifrTgx5PG_D3tAIEYo1enoOfes9bbxDJYOtQYBE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 271563
last-modified: Tue, 27 Apr 2021 13:46:46 GMT
accept-ranges: bytes
etag: "0679bc36b3bd71:0"
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
x-ua-compatible: IE=Edge
date: Sat, 21 Jan 2023 07:38:02 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2335
Expires: Sat, 21 Jan 2023 08:16:58 GMT
Date: Sat, 21 Jan 2023 07:38:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2335
Expires: Sat, 21 Jan 2023 08:16:58 GMT
Date: Sat, 21 Jan 2023 07:38:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2335
Expires: Sat, 21 Jan 2023 08:16:58 GMT
Date: Sat, 21 Jan 2023 07:38:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2335
Expires: Sat, 21 Jan 2023 08:16:58 GMT
Date: Sat, 21 Jan 2023 07:38:03 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a7ab95a69ddfa5014258076e66a6e19
1a54cca86788536002d6d18c5180ccf265ba1169
09348afd6055b26b5dba6f8f6ef763d52e6e040c039c6f763d64f71b8ca08d51
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10988
x-amzn-requestid: 67c03c6c-3896-4890-a75b-ecd7c1c1a4e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3foHG8tIAMF3XQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61300-2de17e5b0225f9427c197bc5;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RlbJymJhU6Ti5RZCSIvPzloackAiBEBGapKI440u4ZIfB5FYBNugLw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 03:24:48 GMT
age: 15195
etag: "1a54cca86788536002d6d18c5180ccf265ba1169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcee2448b-66c5-48e7-89de-838393cf3f07.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcee2448b-66c5-48e7-89de-838393cf3f07.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b08ef55971faa2683ab9f2af8a11dcec
a46c748cccb714f05a068c2438181328b4fbd57a
1d073abf25fbea2d85f34076eae47f9e89502846815094f5288b8e80762a8fe4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcee2448b-66c5-48e7-89de-838393cf3f07.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11562
x-amzn-requestid: c3864d3b-caaa-4c44-a4bd-9339d0eede69
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e-E1UGw4IAMFtyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c8b4ee-703e32aa596019d42680e599;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 03:11:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ZxoIRkRgzS5Hp0D9gzxOiTg3GatK8zSCIokF3NWUghEUmePltkYVRQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 03:38:02 GMT
age: 14401
etag: "a46c748cccb714f05a068c2438181328b4fbd57a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F565a8eca-40af-442b-9fe9-95e12dc0170a.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F565a8eca-40af-442b-9fe9-95e12dc0170a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa786854fde0d99189b458067b9d9418
ddf0fb650816b969d53d6e32ae31074bcb7e944e
a3d08b87658f756aa2f9e3072e87d52db30884aa6b6ab0cd8b278d0c870db2b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F565a8eca-40af-442b-9fe9-95e12dc0170a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7000
x-amzn-requestid: 05354e13-330d-40fc-9a96-ac345cfc80f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e4BN9HBgoAMF9Iw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c648bf-146e89a423565a04139b19cb;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 07:05:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QW0Cg437BUF4aKTmUOtupoLb-zyWtwV7-hHTuSJIUORUC4KCyxSt1g==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 07:32:32 GMT
age: 331
etag: "ddf0fb650816b969d53d6e32ae31074bcb7e944e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4f85f34-177a-42e1-8337-e98ac6995842.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4f85f34-177a-42e1-8337-e98ac6995842.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b48f53e84a3ec564b35cf6b0754d09bb
dc7ad580f90e8af4349f409fb0302a79c672ff99
37d8f9a37eed22705123275ac7a36ff34bcdea1b2faaa7108a7112afe5a8201f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4f85f34-177a-42e1-8337-e98ac6995842.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6068
x-amzn-requestid: 8962c77a-e852-426f-b37a-024546e0a2ee
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fD5VKG_zoAMFgZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb08ed-368af491496d024a0142b0e4;Sampled=0
x-amzn-remapped-date: Fri, 20 Jan 2023 21:34:37 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GVOdNzEzcPvkVkDOfnHOI1RPDfuJ_gUmoqYFkge2Qdp87B0wdOA6Bw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 21:40:03 GMT
age: 35880
etag: "dc7ad580f90e8af4349f409fb0302a79c672ff99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02d903ef-00fc-4f25-8b4f-138ec32359bf.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02d903ef-00fc-4f25-8b4f-138ec32359bf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 893ea518ea7c11ec06ffea60b2ee7921
34675a13bbac6abd1b087e546425e141215cf072
675ec12ed5803fad5036cedc1a3b66229316836bb321b4ad3a34aab56a100ca7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02d903ef-00fc-4f25-8b4f-138ec32359bf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8698
x-amzn-requestid: 97c3bd04-2d8a-447e-85cb-376ea44b283c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0K85GOQIAMFbPw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4beb8-5b6517906d2f8bad6488e6f8;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:04:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: yqCw_c7tiFbJHxXvh65YuXnDX8bXdnsBupUJQXXfF141ODP-SBm48A==
via: 1.1 c9b161639a9353c2354b895548ea9fca.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 08:28:37 GMT
age: 83366
etag: "34675a13bbac6abd1b087e546425e141215cf072"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b7e829d-d4bc-4fa0-b5e5-e4527e48fd42.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b7e829d-d4bc-4fa0-b5e5-e4527e48fd42.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4483cb695fef2fe82f38a65e18ea1fd7
ea95504fc5be0259c8c3a39f47f8fcb322bca88d
807a120b964ee7ec7c83c5d943d29cea5df2171291ad1b99de9ef4df7e7e9046
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b7e829d-d4bc-4fa0-b5e5-e4527e48fd42.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9657
x-amzn-requestid: 63c51fc8-3cd1-486b-960b-91d0d4b14dbd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: exbnMFUvoAMFvYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c3a62d-3f30f1cb5bc13bf812d3cf71;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 07:07:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 34RyiiWTD7qtrgZHxL7KpjUkCETug9eJ0TvPh6b2qGiLWLcZnmT3wg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 16:05:34 GMT
age: 55949
etag: "ea95504fc5be0259c8c3a39f47f8fcb322bca88d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash 456d7336d8d8766f068c1a488d6f7ee9
500f17e64e2838a041ce779c1d98419c3edbf15f
54e960b56ecb57315d092725d3f8f10b7928b1fffcce79f491ff028b56f11b44
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 21 Jan 2023 07:38:02 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 20 Jan 2023 20:55:57 GMT
Expires: Sat, 21 Jan 2023 20:55:57 GMT
ETag: "500f17e64e2838a041ce779c1d98419c3edbf15f"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
olb.sccu.com/OnlineBanking/WebResource.axd?d=urCACUaUZeT6oPoIZXShbu_1mg_N_l4jShKx1J9bVPsVr2NBR6js8hj-QO5R4_ig_UM_6BTEvsUm0pVZPSI45Qh8HhMXpcfZ0-H_jz5gjdjFcqhl8Q2uekFcLFceEEhLFJKexQwJQYE-YZPPmEfmF2tz8ibp1V0Knp5fHHCZZeU1&t=637356698800000000
66.22.0.11200 OK 0 B URL HTTP/2 olb.sccu.com/OnlineBanking/WebResource.axd?d=urCACUaUZeT6oPoIZXShbu_1mg_N_l4jShKx1J9bVPsVr2NBR6js8hj-QO5R4_ig_UM_6BTEvsUm0pVZPSI45Qh8HhMXpcfZ0-H_jz5gjdjFcqhl8Q2uekFcLFceEEhLFJKexQwJQYE-YZPPmEfmF2tz8ibp1V0Knp5fHHCZZeU1&t=637356698800000000
IP 66.22.0.11:0
ASN #25773 RADWARE-CLOUD-SERVICES
GET /OnlineBanking/WebResource.axd?d=urCACUaUZeT6oPoIZXShbu_1mg_N_l4jShKx1J9bVPsVr2NBR6js8hj-QO5R4_ig_UM_6BTEvsUm0pVZPSI45Qh8HhMXpcfZ0-H_jz5gjdjFcqhl8Q2uekFcLFceEEhLFJKexQwJQYE-YZPPmEfmF2tz8ibp1V0Knp5fHHCZZeU1&t=637356698800000000 HTTP/1.1
Host: olb.sccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.waterlily-btq.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
set-cookie: __uzma=58e7d453-10a8-42ef-b22c-436e1f5cdb25; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:01 GMT ; Max-Age=15724800; SameSite=Lax
__uzmb=1674286681; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:01 GMT ; Max-Age=15724800; SameSite=Lax
__uzme=6927; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:01 GMT ; Max-Age=15724800; SameSite=Lax
__uzmc=830891078050; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:01 GMT ; Max-Age=15724800; SameSite=Lax
__uzmd=1674286681; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:01 GMT ; Max-Age=15724800; SameSite=Lax
ZJULCVVF=0285387f83-142a-4d5Azs-OiXxtjg3rWDG96BcKcBaFiUwR9G9X7unHZYrT-ni2u5HPkqhPfxPJ5_CCU7zjQ; path=/; SameSite=None; Secure
cache-control: public
expires: Sun, 21 Jan 2024 06:30:56 GMT
last-modified: Mon, 14 Sep 2020 12:44:40 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
x-ua-compatible: IE=Edge
date: Sat, 21 Jan 2023 07:38:01 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
olb.sccu.com/OnlineBanking/Theme5Css.aspx?h=7CC200ED151C8E95B54A8AB8314619D7
66.22.0.11200 OK 0 B URL HTTP/2 olb.sccu.com/OnlineBanking/Theme5Css.aspx?h=7CC200ED151C8E95B54A8AB8314619D7
IP 66.22.0.11:0
ASN #25773 RADWARE-CLOUD-SERVICES
GET /OnlineBanking/Theme5Css.aspx?h=7CC200ED151C8E95B54A8AB8314619D7 HTTP/1.1
Host: olb.sccu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.waterlily-btq.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
set-cookie: __uzma=af973eda-ad9b-4c54-b8d0-5e21a291d1da; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:01 GMT ; Max-Age=15724800; SameSite=Lax
__uzmb=1674286681; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:01 GMT ; Max-Age=15724800; SameSite=Lax
__uzme=7594; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:01 GMT ; Max-Age=15724800; SameSite=Lax
__uzmc=485581053123; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:01 GMT ; Max-Age=15724800; SameSite=Lax
__uzmd=1674286681; HttpOnly; path=/; Expires=Sat, 22-Jul-23 07:38:01 GMT ; Max-Age=15724800; SameSite=Lax
ASP.NET_SessionId=1kjpgitojz32mu4jts0in1ts; path=/; HttpOnly; SameSite=Lax
PortalLanguage_2173=en-US; expires=Sat, 21-Jan-2073 07:38:01 GMT; path=/; HttpOnly
ADRUM_BTa=R:29|g:f81efd3e-82bb-4779-985e-c9254e25c2d5|n:spacecoastcreditunion_803322c3-bfcf-4bc3-b47a-bbd31c4c5806; expires=Sat, 21-Jan-2023 07:38:31 GMT; path=/
SameSite=None; expires=Sat, 21-Jan-2023 07:38:31 GMT; path=/
ADRUM_BT1=R:29|i:1168032|e:31; expires=Sat, 21-Jan-2023 07:38:31 GMT; path=/
ZJULCVVF=0285387f83-142a-4dk7dD7Kt7VGf5LdlM3G4pfa7pz8WmifrTgx5PG_D3tAIEYo1enoOfes9bbxDJYOtQYBE; path=/; SameSite=None; Secure
cache-control: public, no-cache="Set-Cookie"
expires: Sun, 21 Jan 2024 07:38:01 GMT
last-modified: Sat, 21 Jan 2023 07:38:01 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains
x-ua-compatible: IE=Edge
date: Sat, 21 Jan 2023 07:38:01 GMT
content-encoding: gzip
X-Firefox-Spdy: h2