r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9f3cf7e36f17a535e53e5213c02cf2b4
e65acbc03135ce135b9e91b4f74b3e1439faa6f6
a2317476862acd0a92fe523454c3991752b07ba14e7667f421dd9624e0233758
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A2317476862ACD0A92FE523454C3991752B07BA14E7667F421DD9624E0233758"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5046
Expires: Mon, 19 Dec 2022 05:09:37 GMT
Date: Mon, 19 Dec 2022 03:45:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2039a1dda99e075b82840608771d2326
e89713a35b312f3b87fbeaad98f03fddecbf77ce
aae78c754635e9833fa6c231d775bddc82add02f9ce3197a0b260a0806e708c3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AAE78C754635E9833FA6C231D775BDDC82ADD02F9CE3197A0B260A0806E708C3"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12306
Expires: Mon, 19 Dec 2022 07:10:37 GMT
Date: Mon, 19 Dec 2022 03:45:31 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 19 Dec 2022 02:45:34 GMT
content-type: application/json
age: 3598
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 555fc6e99ad3bf077d1c4b9b805e428d
4e800fc8e809a950288df0e94992084647762561
fac00cada519279717e2a13528cb202d292fc92ed5eb42782c41f8e7b9509eaf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FAC00CADA519279717E2A13528CB202D292FC92ED5EB42782C41F8E7B9509EAF"
Last-Modified: Fri, 16 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3669
Expires: Mon, 19 Dec 2022 04:46:41 GMT
Date: Mon, 19 Dec 2022 03:45:32 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: CH22GpjgiRshNnxtgvrB/7e8eay1yzhRLMi0m9JOnv4uu0WVuZMgS7bgKQp3EgFd1ibfIohJJ4tu6aawyzlntw==
x-amz-request-id: PKZMGK72YD33Q3XW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 19 Dec 2022 03:28:50 GMT
age: 1002
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Dec 2022 03:45:32 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
clientboursoramas.com/
188.114.96.1200 OK 24 kB IP 188.114.96.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (63550)
Hash 6ff0a132549e45827a72004183fe3978
e6d5b508c78983d35039d845f3b5835d0492d412
ed6f7b4df62beded4ac08f6edc5a175e4906ab2e77ef3882cced17f09f63f3cc
Analyzer Verdict Alert openphish Societe Generale
fortinet Phishing
GET / HTTP/1.1
Host: clientboursoramas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 03:45:32 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 15 Dec 2022 19:01:32 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xGMtl065twPxF1G2WDLHs5cZzMTgKKYWC8KWuoRo5750VSlzm%2BtKl0KMQGhRaM5cjZLFXf9QuzGSsZpGx0GQ3B53Nh1Tw6lJOiOq3GyYPJe5QSHhg8UBuMX1OG4yn5wDpIz72b8CNtc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77bd255d7ad90b31-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 19 Dec 2022 03:08:01 GMT
age: 2251
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0bc27cdcd6c42d7f8eece6c074bc452f
ff1234b58f7381f51f9082c1ef4894b1ac5700ff
672fc3b7ba7ee7a8b376c73a86a5bab00b1a1aead54c3ca64c0bff83d831348e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2563
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 03:45:32 GMT
Last-Modified: Mon, 19 Dec 2022 03:02:49 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
clientboursoramas.com/assets/css/main.css
188.114.96.1200 OK 375 kB URL HTTP/1.1 clientboursoramas.com/assets/css/main.css
IP 188.114.96.1:0
File type ASCII text, with very long lines (2764), with CRLF line terminators
Size 375 kB (374939 bytes)
Hash 7e47f9501bbd8d56f9ec667aa9480990
e9f3c6aba781261572c5cb912e065fdb2a72b90a
cd88eb0983af843f14062f501dbb4888a9a4098d1605fa9dcd9cd0f8b2c2608f
Analyzer Verdict Alert openphish Societe Generale
GET /assets/css/main.css HTTP/1.1
Host: clientboursoramas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clientboursoramas.com/
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 03:45:32 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Cf-Bgj: minify
Cf-Polished: status=cannot_optimize
ETag: W/"639af154-53db4d"
Last-Modified: Thu, 15 Dec 2022 10:05:08 GMT
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m67nX8hQfpXmdg%2FkEMWGNYhq4gRf8zOnU02%2FgI3Di1hrncBdWqFrVeXvGrnYz8MqcO61GVtEGuIowijEaCLa5MMQd6HFy4reh9u744lh4oYqoWXR7HXw1YWMpisBHwQ%2FLvJgF%2BVsQfI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77bd25621bdc0b31-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
push.services.mozilla.com/
34.214.64.191101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.214.64.191:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: K1t2D28HWVPQ83Jo9TyO1A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3oQ7FJfwVR16pM980kiRZlPrQT0=
clientboursoramas.com/bundles/boursoramadesign/img/login/poster.jpg
188.114.96.1404 Not Found 208 B URL HTTP/1.1 clientboursoramas.com/bundles/boursoramadesign/img/login/poster.jpg
IP 188.114.96.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6947f2d4e2e8f99f22111d8b23342941
182d9160cafc164ebd589bac7ed79ccd5e9afc09
ff5cea651cbd5657e5a73db8ff039c0c0861d4bb333e87d75bd910831f1e3a0b
Analyzer Verdict Alert openphish Societe Generale
GET /bundles/boursoramadesign/img/login/poster.jpg HTTP/1.1
Host: clientboursoramas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clientboursoramas.com/
HTTP/1.1 404 Not Found
Date: Mon, 19 Dec 2022 03:45:33 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=euRtd1q7vbglOSdwNId2A%2B90gtkdGC%2FPeYRx8JxrO5pZ8Ct1ypB4FvoVtMdtgk4CvAng5E9oP8Z0JkQOhnjeeZ4HyypRxgRdQ20KLvRG1QBD8lIGCrgsYWRugqvTYlhXbi2mIj5K7do%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77bd25645d3fb4f3-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
clientboursoramas.com/bundles/boursoramadesign/video/gradient.webm
188.114.96.1404 Not Found 242 B URL HTTP/1.1 clientboursoramas.com/bundles/boursoramadesign/video/gradient.webm
IP 188.114.96.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8780a4db33cc5158bb2823185566c33a
a20c68629f739a654ba6bcea0c462279943dd92a
9cda1bf8b87bb696c16f6c84961a3002c94452e895326f0a467beac9961cd6ea
Analyzer Verdict Alert openphish Societe Generale
fortinet Phishing
GET /bundles/boursoramadesign/video/gradient.webm HTTP/1.1
Host: clientboursoramas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://clientboursoramas.com/
HTTP/1.1 404 Not Found
Date: Mon, 19 Dec 2022 03:45:33 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T%2F%2BS%2FBSEFelbpj5J9q5pmySCxgltBtFZDwqa5WBYkRyvLdp%2FWFCPGpF8veGzJ6b7NPheHimVnOVWc42qiURvL9cjFcXm074xU5ThovQN99FmQi6d4iLyMpG%2Bj0Wfnbj2K1KJdRDhGEc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77bd25645943b4fd-OSL
alt-svc: h2=":443"; ma=60
clientboursoramas.com/assets/img/favicon-16x16.png
188.114.96.1200 OK 367 B URL HTTP/1.1 clientboursoramas.com/assets/img/favicon-16x16.png
IP 188.114.96.1:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 55c8043c999a02c568e74a841ee7ffac
0c16394f295683af1562c0333e9a4f6b691bdf02
ed8ad2a7d5eef55bce51f7d128613cd8eb3381367f675912c47a930bd9b1da79
Analyzer Verdict Alert openphish Societe Generale
GET /assets/img/favicon-16x16.png HTTP/1.1
Host: clientboursoramas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clientboursoramas.com/
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 03:45:33 GMT
Content-Type: image/png
Content-Length: 367
Connection: keep-alive
Last-Modified: Thu, 15 Dec 2022 10:09:16 GMT
ETag: "639af24c-16f"
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TBW9Q8j0rK5YGjoe5NyETOwavgzVdVPHvuTZ7gKVIhwH7t0lU0%2BHjxu0pDIU%2FP5B3%2BuH%2Fi%2F5brPNDYkl%2B5TUvXNTC7PBB7ZuNe0sUmk6b42H9XSHs7GRaMkil%2FT6AuFIzmedBwUYVB4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77bd2565ac1b0b55-OSL
alt-svc: h2=":443"; ma=60
clientboursoramas.com/assets/img/android-chrome-192x192.png
188.114.96.1200 OK 1.4 kB URL HTTP/1.1 clientboursoramas.com/assets/img/android-chrome-192x192.png
IP 188.114.96.1:0
File type PNG image data, 192 x 192, 8-bit colormap, non-interlaced\012- data
Hash 13f6e0aae0b053591117e5364565da12
c10cd1a59d2e4e1ac0d81ab6084f79ccdf74d9b2
9082a6486c51843787c095ad1e0a4862a2e003e6f3c6f4ab0d0488ea23bad6ee
Analyzer Verdict Alert openphish Societe Generale
GET /assets/img/android-chrome-192x192.png HTTP/1.1
Host: clientboursoramas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clientboursoramas.com/
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 03:45:33 GMT
Content-Type: image/png
Content-Length: 1425
Connection: keep-alive
Last-Modified: Thu, 15 Dec 2022 10:09:54 GMT
ETag: "639af272-591"
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ooomx%2FkyxQcoQmEOFdqG5KQxkXuEtVguF2AAIGIlEybkvWHuIPGzJRFcijXFj%2BWL4xtbL6UCirHetLE2KFTKs%2Fk5J1bxrM8wwITLZ77crtd7rHCkFrPgzwbBJXpkJJyfOxWtn5K%2FaRY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77bd2565ac8f0b31-OSL
alt-svc: h2=":443"; ma=60
clientboursoramas.com/bundles/boursoramadesign/fonts/brs-icon/brs-icon.woff2?brs-1671026681224
188.114.96.1404 Not Found 252 B URL HTTP/1.1 clientboursoramas.com/bundles/boursoramadesign/fonts/brs-icon/brs-icon.woff2?brs-1671026681224
IP 188.114.96.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f65f3a402c9620d7e815e2e37f1f204d
d4c28659cb816714ee57a3faee2542fd777cb8ee
7ff7ffdbfc76ef9a8509bab5e303cc09f1313bbe9844d98e739b8b5470262626
Analyzer Verdict Alert openphish Societe Generale
fortinet Phishing
GET /bundles/boursoramadesign/fonts/brs-icon/brs-icon.woff2?brs-1671026681224 HTTP/1.1
Host: clientboursoramas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://clientboursoramas.com/assets/css/main.css
HTTP/1.1 404 Not Found
Date: Mon, 19 Dec 2022 03:45:33 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SNVG%2FPwZI%2FK4cMnxICGWzUEhNLCrV%2BGHT2WRLvFyOLQQIttNpzx1feAfh8jyH3dGQYmn8jez84iVjWA5MLNPGlC%2FnB%2FJuWy6YLqhpGhvAaMZSL6hw6q03m9Vs62HMB%2Fq1IouQ0WCles%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77bd25662b09b4ed-OSL
alt-svc: h2=":443"; ma=60
clientboursoramas.com/bundles/boursoramadesign/fonts/proximanova-regular-webfont-cache-1458301567.woff2
188.114.96.1404 Not Found 279 B URL HTTP/1.1 clientboursoramas.com/bundles/boursoramadesign/fonts/proximanova-regular-webfont-cache-1458301567.woff2
IP 188.114.96.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 17cd1116db2d58272fd36d347fe1e401
5d44c81d2c59d7511da41e430294bb16e492112c
35e1bdc488da7b7e05bfc1b24653b132a875ed9b000e8d99b84844b1ef1ac4fa
Analyzer Verdict Alert openphish Societe Generale
fortinet Phishing
GET /bundles/boursoramadesign/fonts/proximanova-regular-webfont-cache-1458301567.woff2 HTTP/1.1
Host: clientboursoramas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://clientboursoramas.com/
HTTP/1.1 404 Not Found
Date: Mon, 19 Dec 2022 03:45:33 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MK2r2PoFQ4oMQmNTrSvvgmv0H9%2BArjbgeLA1EHIKVMyaogYT2HDj8ZvLelze%2FCxutsFDL1ez1MOv%2Bs%2Fv4W0IubPL4VbuXzeQ8YhuW2Hrqy1nv%2FGF77U5NALaYx%2FRMoYUL2Z20%2Bl9bHY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77bd25662e35b4f3-OSL
alt-svc: h2=":443"; ma=60
clientboursoramas.com/bundles/boursoramadesign/fonts/proximanova-medium-webfont-cache-1521040380.woff2
188.114.96.1404 Not Found 278 B URL HTTP/1.1 clientboursoramas.com/bundles/boursoramadesign/fonts/proximanova-medium-webfont-cache-1521040380.woff2
IP 188.114.96.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ce56810f5117628dfff28712a6a3b70b
3a37703842b09ac9484c2c3dde2c75a5d1e7abef
fc9b499fc57baf6e8f798ef40911808a987b947712c16b600bcbe8d43f811990
Analyzer Verdict Alert openphish Societe Generale
fortinet Phishing
GET /bundles/boursoramadesign/fonts/proximanova-medium-webfont-cache-1521040380.woff2 HTTP/1.1
Host: clientboursoramas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://clientboursoramas.com/
HTTP/1.1 404 Not Found
Date: Mon, 19 Dec 2022 03:45:33 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K20d3ZxgeQ3zDWo4dkfJqYx2hoBbFolPDNDF6qV25pJRPafEosxKRQgizKb7UTZaWJ06LxrBb8RtZzFoCgHMAZbn4Egrn2t4ZCct70Px0f92sBUQ6Y7dBcJyqJtWoq2xqn3wQtTgfTU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77bd256619e6b4fd-OSL
alt-svc: h2=":443"; ma=60
clientboursoramas.com/bundles/boursoramadesign/fonts/proximanova-semibold-webfont-cache-1572260791.woff2
188.114.96.1404 Not Found 280 B URL HTTP/1.1 clientboursoramas.com/bundles/boursoramadesign/fonts/proximanova-semibold-webfont-cache-1572260791.woff2
IP 188.114.96.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fa63b3423f64777f46d5f3f0e2f0e1cb
7dd039485957001bfa0d75fda992da028867311e
d9e500781c1c21319ae0375ba55d151c961d6e31e3b20aefc88f260c4db26b0b
Analyzer Verdict Alert openphish Societe Generale
fortinet Phishing
GET /bundles/boursoramadesign/fonts/proximanova-semibold-webfont-cache-1572260791.woff2 HTTP/1.1
Host: clientboursoramas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://clientboursoramas.com/
HTTP/1.1 404 Not Found
Date: Mon, 19 Dec 2022 03:45:33 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sIuUkm8g1imV4RtotHZKyaAWW4vxuiv%2Fi%2FMnku6wGHWf%2BiTwTUlqHOPYdQaiB3gKLPB%2FE3j3RZH33AB6DtwZNtSJ36b4cbQcTXWgYjpodi3ezCPFpFLEl7poyvAIcg0hS98RxfukVtA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77bd25662e2fb515-OSL
alt-svc: h2=":443"; ma=60
clientboursoramas.com/bundles/boursoramadesign/fonts/proximanova-medium-webfont-cache-1521040380.woff
188.114.96.1404 Not Found 277 B URL HTTP/1.1 clientboursoramas.com/bundles/boursoramadesign/fonts/proximanova-medium-webfont-cache-1521040380.woff
IP 188.114.96.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5d026a0423cbdecc4422698645f9da34
e61d8aaf1b35fa58521a94e90f7fbae6cde7a51c
ab2bb378f1b93396d1b57e84041808e119f99b3a52a6a0c8ced6d686734bd008
Analyzer Verdict Alert openphish Societe Generale
fortinet Phishing
GET /bundles/boursoramadesign/fonts/proximanova-medium-webfont-cache-1521040380.woff HTTP/1.1
Host: clientboursoramas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://clientboursoramas.com/
HTTP/1.1 404 Not Found
Date: Mon, 19 Dec 2022 03:45:33 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dZILeId%2B9h1XzQsPAV5ZJ5cTAZT4WCYlT1CTxbqVGfxW7T9juKybAGVdyCk0uCriLCqVgR74C0KFbOy5OznzYEt6nvMf5c0vNHxaFWalqGMzm293HEECFU%2FvUMs12JLwjETIV3maeBs%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77bd2567da8fb4fd-OSL
alt-svc: h2=":443"; ma=60
clientboursoramas.com/bundles/boursoramadesign/fonts/brs-icon/brs-icon.woff?brs-1671026681224
188.114.96.1404 Not Found 251 B URL HTTP/1.1 clientboursoramas.com/bundles/boursoramadesign/fonts/brs-icon/brs-icon.woff?brs-1671026681224
IP 188.114.96.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f2dc840d1f9311778b5873e6ac1c69fa
6a5345c80ed6e45f4e44600d1e74b1b091e52cea
1eb6ddac5b1ddcd2d8ebf4d9071426bc54c78f984512620dd1c54e52d9494bb8
Analyzer Verdict Alert openphish Societe Generale
fortinet Phishing
GET /bundles/boursoramadesign/fonts/brs-icon/brs-icon.woff?brs-1671026681224 HTTP/1.1
Host: clientboursoramas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://clientboursoramas.com/assets/css/main.css
HTTP/1.1 404 Not Found
Date: Mon, 19 Dec 2022 03:45:33 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b8%2Fzo1S0qrpz2Ssx6knbjn%2FWuz8dnQhnUP9L9PmZ98ckcwvg3GjHw%2BtGeebEQPOhGdODOx%2B48sp5UH9%2BgH%2FGyIyLpgmUYEsHxeyeIydjo2I6qrg2KKLrgCRuLqhGAUGC8oxQEUGdx48%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77bd25679c630b55-OSL
alt-svc: h2=":443"; ma=60
clientboursoramas.com/bundles/boursoramadesign/fonts/proximanova-regular-webfont-cache-1458301567.woff
188.114.96.1404 Not Found 278 B URL HTTP/1.1 clientboursoramas.com/bundles/boursoramadesign/fonts/proximanova-regular-webfont-cache-1458301567.woff
IP 188.114.96.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0c1c9ffbd6b80d829a6b6d4341620b99
05753b0065b87570587dd5e0c1e3d89620ac50b3
6479c13c2dc8bb3f7d45ad3e83979f20b7b75f15c3dd030580dece4083ea89df
Analyzer Verdict Alert openphish Societe Generale
fortinet Phishing
GET /bundles/boursoramadesign/fonts/proximanova-regular-webfont-cache-1458301567.woff HTTP/1.1
Host: clientboursoramas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://clientboursoramas.com/
HTTP/1.1 404 Not Found
Date: Mon, 19 Dec 2022 03:45:33 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nWWCUEc2nWDP%2FGvV30QVVDUyuGoYMrg9r8U1HuGMahljcJlq2bVo45qLlKjipwCO5uOuNau4hoyrso%2FvcHX1xMf0BxVYTLbTJf%2BRBjwI%2Ftxwoxb6czqfS%2FzS%2BtW7wOesDvYJfCKCLL8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77bd2567ced3b4f3-OSL
alt-svc: h2=":443"; ma=60
clientboursoramas.com/bundles/boursoramadesign/fonts/proximanova-semibold-webfont-cache-1572260791.woff
188.114.96.1404 Not Found 279 B URL HTTP/1.1 clientboursoramas.com/bundles/boursoramadesign/fonts/proximanova-semibold-webfont-cache-1572260791.woff
IP 188.114.96.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e0b7ef29063a4fdf0bb38ab93eade9be
1f961d4f75d2c16c0ce0ca0f858b5d07c86d20ac
ec70633f472be2dc61a85a76712a340826cac6f345947058c0e78e0e415fe558
Analyzer Verdict Alert openphish Societe Generale
fortinet Phishing
GET /bundles/boursoramadesign/fonts/proximanova-semibold-webfont-cache-1572260791.woff HTTP/1.1
Host: clientboursoramas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://clientboursoramas.com/
HTTP/1.1 404 Not Found
Date: Mon, 19 Dec 2022 03:45:33 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VrQXut07cCHAaFTQ6P4lB%2FQ2BojqGFsQifuNHYACQuyJkJ5o%2FJZZt8fBiJuE8tTDxGMpPvuW4y%2FfhI8iF1B9jXReJOLkgxQ8RIzwPMB3EGfpnwjl6TCuVsLgdXCf1Z8YLmMuDuGflbk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77bd2567eedfb515-OSL
alt-svc: h2=":443"; ma=60
clientboursoramas.com/bundles/boursoramadesign/fonts/proximanova-medium-webfont-cache-1521040380.ttf
188.114.96.1404 Not Found 234 B URL HTTP/1.1 clientboursoramas.com/bundles/boursoramadesign/fonts/proximanova-medium-webfont-cache-1521040380.ttf
IP 188.114.96.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 47edcf1307bd65796d00fe5ebed5319e
dd258e6323a10c4b5c4f603cc9fd231097f4f5a8
8c97e460cfdf94a2f78a3da5526c9d01d785c9b6595b1cf84a2f247874c1fa39
Analyzer Verdict Alert openphish Societe Generale
fortinet Phishing
GET /bundles/boursoramadesign/fonts/proximanova-medium-webfont-cache-1521040380.ttf HTTP/1.1
Host: clientboursoramas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clientboursoramas.com/
HTTP/1.1 404 Not Found
Date: Mon, 19 Dec 2022 03:45:33 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3DXfDbXWboXvGO0KvHvyehWr1QwFSXIUWj0mQEFbl%2BP2l7sGa5cLs31vwLoOdN3Hg6Urrqb6M5I5tBn5QoQsB7ligOb9HOeYtOPvGmljLC9zYnS6sRMx4rCnjITL%2FXAbJVMhk2aPct8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77bd2568badeb4fd-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
clientboursoramas.com/bundles/boursoramadesign/fonts/brs-icon/brs-icon.ttf?brs-1671026681224
188.114.96.1404 Not Found 209 B URL HTTP/1.1 clientboursoramas.com/bundles/boursoramadesign/fonts/brs-icon/brs-icon.ttf?brs-1671026681224
IP 188.114.96.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 183767897217ff9aff2b27fa220e9f9b
2c25359f6961383645502f57a76cdc69afe04200
68a66b2893430c6a2e17adc02b323f25b125157087a90be9d574b7d0cf415ba9
GET /bundles/boursoramadesign/fonts/brs-icon/brs-icon.ttf?brs-1671026681224 HTTP/1.1
Host: clientboursoramas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clientboursoramas.com/assets/css/main.css
HTTP/1.1 404 Not Found
Date: Mon, 19 Dec 2022 03:45:33 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CqNIvCvBH%2Br60NyX11%2BjL4A%2B69z4%2BVi%2BT%2FAoxU1R0YifDEqT8ME5ga%2FNMomDy5RyFra9hPuXFtwWo1iQ5ogB%2FmuWxqR6cFA9DlH%2Bl2XIJBGjTOc%2B1%2BmnuS1Ku8qulKkMSrAmIoi0GGE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77bd25693c9c0b55-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
clientboursoramas.com/bundles/boursoramadesign/fonts/proximanova-regular-webfont-cache-1458301567.ttf
188.114.96.1404 Not Found 235 B URL HTTP/1.1 clientboursoramas.com/bundles/boursoramadesign/fonts/proximanova-regular-webfont-cache-1458301567.ttf
IP 188.114.96.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 144afecf66b89aa6a02553d547448b0a
e31841e8ca07124a671d03c832028863f4461485
1da254259f9802eb3e8a37951cf9decfc13f25a840f78c4229b775c448179aaf
Analyzer Verdict Alert openphish Societe Generale
fortinet Phishing
GET /bundles/boursoramadesign/fonts/proximanova-regular-webfont-cache-1458301567.ttf HTTP/1.1
Host: clientboursoramas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clientboursoramas.com/
HTTP/1.1 404 Not Found
Date: Mon, 19 Dec 2022 03:45:33 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ntO8SWiYqi0bBPX28Cold0SD0A260VvmCk8yG8Uyoaf7ikmxRP2%2BpU2RzI9Q0hvpUg2Ofh4QpQSxHLtXsVW3FT%2B5Vu6MtCtrx9RaYLNNFdCnE5%2B6POd0AJB9XYQ1PTIMk8h31mf4vZo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77bd25694fafb4f3-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
clientboursoramas.com/bundles/boursoramadesign/fonts/proximanova-semibold-webfont-cache-1572260791.ttf
188.114.96.1404 Not Found 236 B URL HTTP/1.1 clientboursoramas.com/bundles/boursoramadesign/fonts/proximanova-semibold-webfont-cache-1572260791.ttf
IP 188.114.96.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ba2a3ddea45800ae7fbc11fe37f9cc69
14a572075b07f04ca50e72d85899a91fb054a356
157a84e273559be2cd6411a1e1b9a07b19cef2fb55678f8f4c9469a773a3ddb9
Analyzer Verdict Alert openphish Societe Generale
fortinet Phishing
GET /bundles/boursoramadesign/fonts/proximanova-semibold-webfont-cache-1572260791.ttf HTTP/1.1
Host: clientboursoramas.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://clientboursoramas.com/
HTTP/1.1 404 Not Found
Date: Mon, 19 Dec 2022 03:45:33 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7vxedEZZDqDKdwgBaPWUPf2xEJN90JxF2D6sC%2Btf%2FfrlfUkQwCUhL4Psg1%2FWNG7uZbIEwDDCeb8co9minO%2FTTdg3u20m7GQtSpy%2Fj0jTrdLf4x3GsWuuVgGbl80K9GFidG2AIMS23UM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77bd25695f79b515-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b52a05c34a7c3eaee8f5c1f73954364c
89c5023a0c43860efd362d0d2751a0ea9a204f54
94de3b3351ec8035986be412843212eebe4a3c9d6521b2a0c922870d5365adb8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94DE3B3351EC8035986BE412843212EEBE4A3C9D6521B2A0C922870D5365ADB8"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8481
Expires: Mon, 19 Dec 2022 06:06:55 GMT
Date: Mon, 19 Dec 2022 03:45:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b52a05c34a7c3eaee8f5c1f73954364c
89c5023a0c43860efd362d0d2751a0ea9a204f54
94de3b3351ec8035986be412843212eebe4a3c9d6521b2a0c922870d5365adb8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94DE3B3351EC8035986BE412843212EEBE4A3C9D6521B2A0C922870D5365ADB8"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8481
Expires: Mon, 19 Dec 2022 06:06:55 GMT
Date: Mon, 19 Dec 2022 03:45:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b52a05c34a7c3eaee8f5c1f73954364c
89c5023a0c43860efd362d0d2751a0ea9a204f54
94de3b3351ec8035986be412843212eebe4a3c9d6521b2a0c922870d5365adb8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94DE3B3351EC8035986BE412843212EEBE4A3C9D6521B2A0C922870D5365ADB8"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8481
Expires: Mon, 19 Dec 2022 06:06:55 GMT
Date: Mon, 19 Dec 2022 03:45:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b52a05c34a7c3eaee8f5c1f73954364c
89c5023a0c43860efd362d0d2751a0ea9a204f54
94de3b3351ec8035986be412843212eebe4a3c9d6521b2a0c922870d5365adb8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94DE3B3351EC8035986BE412843212EEBE4A3C9D6521B2A0C922870D5365ADB8"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8481
Expires: Mon, 19 Dec 2022 06:06:55 GMT
Date: Mon, 19 Dec 2022 03:45:34 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe426aa98-61a0-4fb6-9e2a-8295c764a39b.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe426aa98-61a0-4fb6-9e2a-8295c764a39b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash da7f54bc8961e24cce4c3910d7657b9e
95f9529aa321d707eac3e133db97c6b641648bdf
ae58b97cc6f584713fbd73bc210ecfcfafd9c5c997008e7e79d59a6e45949846
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe426aa98-61a0-4fb6-9e2a-8295c764a39b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9266
x-amzn-requestid: 3739feb0-48e2-489d-908d-5aaa418796f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dLRqUE3goAMF6OA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639ac975-1dc9b7646f8ca8bb5210a16e;Sampled=0
x-amzn-remapped-date: Thu, 15 Dec 2022 07:15:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 4D3Ja11RqD7j1fygKDW7EEe9pBBFU4y87odkzUQhtI8LSywmc-TSXQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Dec 2022 13:23:18 GMT
age: 51736
etag: "95f9529aa321d707eac3e133db97c6b641648bdf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F469f917b-9e91-486a-b711-ccb25e7bfae0.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F469f917b-9e91-486a-b711-ccb25e7bfae0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f8b260b0cc287f1b66c97f552b2a3c21
7efa342abc52a36cd3fa2dd4b3e85cec1def58c0
7263d7176d5879c550158fee5259605dc298a99902cb8a2c340ab2b92f92bc90
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F469f917b-9e91-486a-b711-ccb25e7bfae0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7432
x-amzn-requestid: 3254bdde-1e56-4423-a87b-5955c64f52ee
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dHbA6FUVIAMF2gQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63993ed2-09a330722c1eec79103d9b9e;Sampled=0
x-amzn-remapped-date: Wed, 14 Dec 2022 03:11:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DasybViQx4_4UEeMrw-ltVJ4G0yacyPNarIMCcNmSPA-T9PEuA-Tdw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Dec 2022 21:35:50 GMT
age: 22184
etag: "7efa342abc52a36cd3fa2dd4b3e85cec1def58c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff17f5cdf-f263-46fc-b0f6-fb0fa1945efd.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff17f5cdf-f263-46fc-b0f6-fb0fa1945efd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5c990c360fd972821af876119dd8555b
458555bf2ac16225da8adfc9fbe75aed89526287
beae8e1d373cbe333272e54db93f44e18f063e93f12f005e793ba64e4f7696a8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff17f5cdf-f263-46fc-b0f6-fb0fa1945efd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7760
x-amzn-requestid: a0b96eff-245a-48ab-b09b-013861bbad27
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dKwhKFTtIAMF6TA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639a946d-513964bc657a326217d85e42;Sampled=0
x-amzn-remapped-date: Thu, 15 Dec 2022 03:28:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RIRrm1eTSOwWOIuw-YP0ga1-wyEVmsyLL4_9FnFauMDE_r290dds3Q==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Dec 2022 13:23:41 GMT
etag: "458555bf2ac16225da8adfc9fbe75aed89526287"
content-type: image/jpeg
age: 51713
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F098a9ffa-a930-493a-86d2-96d21a07d7ae.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F098a9ffa-a930-493a-86d2-96d21a07d7ae.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 945d09b8aa956ddee667614c08687f76
0db0497203df4f2ec5da40cd0ab89383479e5d9b
a0953dafcf933d120941f84b60d2884b3df33fa01dfbc5bfe62fc4910b392a83
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F098a9ffa-a930-493a-86d2-96d21a07d7ae.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9824
x-amzn-requestid: 921ea0f0-7d7d-467e-b3f8-2eb47a62747c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dURWQGoXIAMF_OA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e628e-6e4016837f2b38615bff371e;Sampled=0
x-amzn-remapped-date: Sun, 18 Dec 2022 00:45:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DgMx1NDqKgwNAIUP-itlH4d6NP5yvSMv8JYpgxo5rdMoPraPrwLzqw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Dec 2022 09:52:37 GMT
age: 64377
etag: "0db0497203df4f2ec5da40cd0ab89383479e5d9b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F340d7003-71e4-4f8e-a457-d067d05e0525.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F340d7003-71e4-4f8e-a457-d067d05e0525.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dce7a87ac0852f838007018af2e83cb5
379f7844a18284958ec0250cc45f2c91ac1ddfcf
31a5191700b9d5c2e471c0e6db15d43f1804b61c6a0867340e8001c32a0dabb5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F340d7003-71e4-4f8e-a457-d067d05e0525.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11667
x-amzn-requestid: f8f1832c-4269-4c4b-83c0-4c2d8c2fdd8f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dQjC7GLSIAMFd4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639ce545-4c54f9704a32da245a90ab0d;Sampled=0
x-amzn-remapped-date: Fri, 16 Dec 2022 21:38:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: X0VzM83Qjs_EN_OLbEU0Lq7M8QHLplIt8Q1TocQ093Qsb22jMoQyZw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Dec 2022 00:09:40 GMT
age: 12954
etag: "379f7844a18284958ec0250cc45f2c91ac1ddfcf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5029f8fb-29cf-4de0-b8e7-d6f183712d1c.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5029f8fb-29cf-4de0-b8e7-d6f183712d1c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3aba060983b21c03fd43a14b313fa70e
005128984586fbfa35db5e75e38c43603cae24e1
805ee8bc4be00bc288a082083281984c54cd802138636b9df01f40f22a860897
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5029f8fb-29cf-4de0-b8e7-d6f183712d1c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12172
x-amzn-requestid: 26e2fb4f-5bc5-4bc8-9e44-08461977187a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dVIjgHuiIAMFhYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639ebae3-79e72e6522d1c0016e46668f;Sampled=0
x-amzn-remapped-date: Sun, 18 Dec 2022 07:01:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rtAWDomNd7jCyemJptNJajRruNjBVSNAAbDoUra8_3xhVQmNJIj53w==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Dec 2022 21:08:29 GMT
etag: "005128984586fbfa35db5e75e38c43603cae24e1"
content-type: image/jpeg
age: 23825
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2