firstcapitagecu.com/
176.31.60.250200 OK 5.0 kB IP 176.31.60.250:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 8b4200cdf614e8dd60cd0990007fa669
f9f7be856914f54bf8871dec136a188f6d82e6c7
3e3e7ae08e83e2b2ef0612180e10abaea12945f9b2095faef747ddc9ee2928f0
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 02 Sep 2022 02:41:34 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: guCMyZ5BCizoPL8q8X4buAjjle3RzEkNksLaf84JhOIhX0Z7P9oI_Q==
Age: 3411
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bcdebf7a2bad5db595e8a0c1abb2ddcb
249dda2fa5e37b8a8f3a8c797193bf0874b6eedc
9b43ec48b16f96449208a0094c4d660806a2a2d344b5862dbff4c393bf3f9f9f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B43EC48B16F96449208A0094C4D660806A2A2D344B5862DBFF4C393BF3F9F9F"
Last-Modified: Thu, 01 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19983
Expires: Fri, 02 Sep 2022 09:11:28 GMT
Date: Fri, 02 Sep 2022 03:38:25 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 02 Sep 2022 01:15:17 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cD4S48NDOqoal3Pq1tvTOBKjkX-r3e1sKNznehv97fAuR6Op7aq1xA==
age: 8588
X-Firefox-Spdy: h2
firstcapitagecu.com/css/color-default.css
176.31.60.250200 OK 6.0 kB URL HTTP/1.1 firstcapitagecu.com/css/color-default.css
IP 176.31.60.250:0
File type ASCII text, with CRLF line terminators
Hash 8c4d37df0e018bf4c6436c372f489728
d1c88e37a3b96c1e98b04d2d98a0d545aaba1f7c
81e87c4e444bc21446d536a97e5ae8e1bdfca5d43db15654a7c432e2d51ef54b
GET /css/color-default.css HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 5962
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 03:38:25 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6c2e5114156ac45cec856f3ea7f45872
011859d6358ad9298b557c1a4b33b80a7a5411ab
3a17c68f9f6cb51ef5c39157a5cae6526f7efae019cc9ae96706da80aea667da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 03:38:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firstcapitagecu.com/css/responsive.css
176.31.60.250200 OK 16 kB URL HTTP/1.1 firstcapitagecu.com/css/responsive.css
IP 176.31.60.250:0
File type assembler source, ASCII text, with CRLF line terminators
Hash 4e2063ce3c0faeae93a9c58af68695ce
808f47765cf3a01024a4eb919c0cbf6c30d916d5
dfe34ef7794216f6c50cd809d6894d7f50af1c60530b5ed8c4155c22bb713f29
GET /css/responsive.css HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 15772
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
firstcapitagecu.com/css/plugins.css
176.31.60.250200 OK 88 kB URL HTTP/1.1 firstcapitagecu.com/css/plugins.css
IP 176.31.60.250:0
File type ASCII text, with very long lines (28054), with CRLF line terminators
Hash 8cf5c204805e8f5fc7a96c02bf958edf
d3916b8d7bb2d7398fd158025ab8ad749b29004c
faf6d2be8bc7f73f3b6a721d2b3c5bfd5d00907fb18928c825d82ae53cb6ef85
GET /css/plugins.css HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 88332
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
firstcapitagecu.com/css/hero-slider.css
176.31.60.250200 OK 18 kB URL HTTP/1.1 firstcapitagecu.com/css/hero-slider.css
IP 176.31.60.250:0
Hash e40e9accebd0709072d944e33e00b20e
a44052ec1069a63efc0758c1a69900b00c66b948
d03e98ff5f0a390b9c93ab3875bc81f3e0be38568dbd54d90f57f3fda114a80c
GET /css/hero-slider.css HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 18389
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
firstcapitagecu.com/css/advisor.css
176.31.60.250200 OK 56 kB URL HTTP/1.1 firstcapitagecu.com/css/advisor.css
IP 176.31.60.250:0
File type ASCII text, with very long lines (405), with CRLF line terminators
Hash c2c52f0fb0e801cd3fa01a59fa7c4ab0
dc55610782d06ebc33363ab3baf70f68213b89a0
58c8fe9982480da89127069813585084c8190c618f02121cb631abd3326dc0c1
GET /css/advisor.css HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 55845
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
firstcapitagecu.com/js/modernizr.js
176.31.60.250200 OK 15 kB URL HTTP/1.1 firstcapitagecu.com/js/modernizr.js
IP 176.31.60.250:0
File type HTML document, ASCII text, with very long lines (14596)
Hash 1258d3cdc71540b07f3422a31e41f21a
a426c47c8eb8910ac2a552b2e51b8791858da693
7e26ca2fd58d9878a3754800828a0b4a1af34f747c19c7d48ff1add55b1759c3
Analyzer Verdict Alert fortinet Phishing
GET /js/modernizr.js HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 15250
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
firstcapitagecu.com/js/counter.js
176.31.60.250200 OK 8.7 kB URL HTTP/1.1 firstcapitagecu.com/js/counter.js
IP 176.31.60.250:0
File type ASCII text, with very long lines (8700), with no line terminators
Hash ba41b7f0434881a167f27266dc22bd09
cafba4913c14cb96180d8d7ff04b6c2db687b1c6
a29d0e46cdb79fc4bf9f50774cff99922cfc348327ea62c3739c465f8d88c8a6
Analyzer Verdict Alert fortinet Phishing
GET /js/counter.js HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 8700
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
firstcapitagecu.com/js/scripts.js
176.31.60.250200 OK 15 kB URL HTTP/1.1 firstcapitagecu.com/js/scripts.js
IP 176.31.60.250:0
Hash 34bc784a0fa4edc6966d04a4bfc689d8
af61f5926d00992aa53e8c5b4af8a5c2329878f7
3fbe0f1a07366179a864605ee76ba035380eeaa1cbd668f13bf10013d5b32f63
Analyzer Verdict Alert fortinet Phishing
GET /js/scripts.js HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 14729
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
firstcapitagecu.com/js/bootstrap.min.js
176.31.60.250200 OK 37 kB URL HTTP/1.1 firstcapitagecu.com/js/bootstrap.min.js
IP 176.31.60.250:0
File type ASCII text, with very long lines (32003)
Hash c5b5b2fa19bd66ff23211d9f844e0131
791aa054a026bddc0de92bad6cf7a1c6e73713d5
2979f9a6e32fc42c3e7406339ee9fe76b31d1b52059776a02b4a7fa6a4fd280a
Analyzer Verdict Alert fortinet Phishing
GET /js/bootstrap.min.js HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 36868
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
fonts.googleapis.com/css?family=Montserrat:400,700%7COpen+Sans:400,300,600,700
216.58.211.10200 OK 1.3 kB URL HTTP/2 fonts.googleapis.com/css?family=Montserrat:400,700%7COpen+Sans:400,300,600,700
IP 216.58.211.10:0
Hash ccb63a3688551b15fa4d750196564e53
8796b2ea70d8fe9b24a10ad238e5ebcaf8805adf
996d4ff35df035b0dca5d334993baac2a0dfea49271db324035fab06e9914b5d
GET /css?family=Montserrat:400,700%7COpen+Sans:400,300,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://firstcapitagecu.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Sep 2022 03:38:25 GMT
date: Fri, 02 Sep 2022 03:38:25 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 9681c904d16adfe4ece277c4b0293fe0
3805f74213fdb181f910e55168743d6e88a77ff6
7b4dec8f4a291cd527bed762fe6061f1428da2beb671c0613f552f49841211a6
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 05 Sep 2022 23:52:47 GMT
ETag: "3805f74213fdb181f910e55168743d6e88a77ff6"
Last-Modified: Thu, 01 Sep 2022 23:52:48 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 744336764c6d0b4d-OSL
firstcapitagecu.com/css/font-awesome.min.css
176.31.60.250200 OK 28 kB URL HTTP/1.1 firstcapitagecu.com/css/font-awesome.min.css
IP 176.31.60.250:0
File type ASCII text, with very long lines (27326)
Hash c1eb9078c3ae76797d437fa851eeb6fa
ee6f5965776a1beb1f12ca1d3920cfb2e8b2163c
6a60971843b5399cf64d56f3ffab48db9bdb1bf2b3ffbafc8801bc5a57b0b22d
GET /css/font-awesome.min.css HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/css/advisor.css
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 27489
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
firstcapitagecu.com/js/hero-slider.js
176.31.60.250200 OK 4.9 kB URL HTTP/1.1 firstcapitagecu.com/js/hero-slider.js
IP 176.31.60.250:0
Hash 6d8f297e0d9e28080815b001a3d718bc
1e13fd38b3cc10a0d81ede2be75c85a24aa202b1
cfb162a82180e5cc5a7886d235922eb3a64113bdc54dfca066f5b2c285f3cd8b
Analyzer Verdict Alert fortinet Phishing
GET /js/hero-slider.js HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 4885
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
firstcapitagecu.com/css/icons.css
176.31.60.250200 OK 62 kB URL HTTP/1.1 firstcapitagecu.com/css/icons.css
IP 176.31.60.250:0
Hash c02f622866c22bef696ccea7f6db3aa3
b4a1620951bfefa2847d3c6e3efabe84f67499b3
50bb45470a3c1f11d9228caa52bbf3a8a27ca40bc744df3fcf6a4b5029cc0abd
GET /css/icons.css HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/css/advisor.css
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 62314
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
firstcapitagecu.com/js/common.js
176.31.60.250200 OK 615 kB URL HTTP/1.1 firstcapitagecu.com/js/common.js
IP 176.31.60.250:0
File type ASCII text, with very long lines (32076), with CRLF line terminators
Size 615 kB (614671 bytes)
Hash e94f00d2992a4283f0342ff7e544b589
497e67141784de9ff936bc080c46b6ff16bddc94
f2d54e0717dfa055f6703914003e253492399957539fce48aa6c14ccc65c0cb5
Analyzer Verdict Alert fortinet Phishing
GET /js/common.js HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 614671
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
firstcapitagecu.com/images/img6.jpg
176.31.60.250200 OK 92 kB URL HTTP/1.1 firstcapitagecu.com/images/img6.jpg
IP 176.31.60.250:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 480x356, components 3\012- data
Hash 5ebc988b9255858f99212f715e2fca20
abf2ca865f966187f2b60264550cb498889e6239
c29349f12722733c642157ed359f5dc7a769b049f84f094fc31e18414ea4f21a
GET /images/img6.jpg HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 92278
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
firstcapitagecu.com/images/logo.png
176.31.60.250200 OK 18 kB URL HTTP/1.1 firstcapitagecu.com/images/logo.png
IP 176.31.60.250:0
File type PNG image data, 297 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash 746d1778dffe483134d4f1ed87511ca2
6cad8ac9d1358552965a97aa396d8031a70f43cb
04a82d4d4c3c3a84f1f780ffb8fa1c03b5f0c44aee73f82a2a0e91fc00d2c464
GET /images/logo.png HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 20:27:42 GMT
Accept-Ranges: bytes
Content-Length: 18252
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
firstcapitagecu.com/images/footer-logo.png
176.31.60.250200 OK 18 kB URL HTTP/1.1 firstcapitagecu.com/images/footer-logo.png
IP 176.31.60.250:0
File type PNG image data, 297 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash 746d1778dffe483134d4f1ed87511ca2
6cad8ac9d1358552965a97aa396d8031a70f43cb
04a82d4d4c3c3a84f1f780ffb8fa1c03b5f0c44aee73f82a2a0e91fc00d2c464
GET /images/footer-logo.png HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 20:30:16 GMT
Accept-Ranges: bytes
Content-Length: 18252
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
firstcapitagecu.com/images/video-thumb.jpg
176.31.60.250200 OK 122 kB URL HTTP/1.1 firstcapitagecu.com/images/video-thumb.jpg
IP 176.31.60.250:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 540x368, components 3\012- data
Size 122 kB (122539 bytes)
Hash 2b648209bf5793c8a65c86d041f592c3
925f51d251486bb924d519ce7bfc3c533ee3b2e7
6bde98678cb0d15d95173c6147518d74827f8fac532b057ef9aa5117ceb2f242
GET /images/video-thumb.jpg HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 122539
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
firstcapitagecu.com/images/img3.jpg
176.31.60.250200 OK 177 kB URL HTTP/1.1 firstcapitagecu.com/images/img3.jpg
IP 176.31.60.250:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 480x356, components 3\012- data
Size 177 kB (176997 bytes)
Hash a6c69d690bd164331e734fc161d7b63d
9d11e3ad641835c47a6500f15cc8c62930fe9c39
9d6c3e7f80beaaf4a17f78dfd18a54efb1e2c4e5534b6a253ff3ad0084429ecc
GET /images/img3.jpg HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 176997
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
firstcapitagecu.com/images/img5.jpg
176.31.60.250200 OK 97 kB URL HTTP/1.1 firstcapitagecu.com/images/img5.jpg
IP 176.31.60.250:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 480x356, components 3\012- data
Hash 2eea82b067245468c70894cfa62376e0
1d536ed89383f967815f3c3a4cf787508cd560fb
6c2412a3321795a4c655cc7e32990117f3958f56cf655fc637c2bc20de70c752
GET /images/img5.jpg HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 96812
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
firstcapitagecu.com/images/img4.jpg
176.31.60.250200 OK 153 kB URL HTTP/1.1 firstcapitagecu.com/images/img4.jpg
IP 176.31.60.250:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 480x356, components 3\012- data
Size 153 kB (152617 bytes)
Hash f2ed4327c759ce95636b41ce788d8df1
60d339c1132dd64879aa5ed2a5e1afff8a8b430f
acfa718b36b19982839810ae68b3d32cbe358d9620bfe6941eddb62d0041580b
GET /images/img4.jpg HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 152617
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
firstcapitagecu.com/images/img2.jpg
176.31.60.250200 OK 130 kB URL HTTP/1.1 firstcapitagecu.com/images/img2.jpg
IP 176.31.60.250:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 480x356, components 3\012- data
Size 130 kB (129715 bytes)
Hash b2a4915cdeb15fc068bb8af7de1eb0e7
bdfed06a68600a71052b6c31f379b912c97966b8
839b36beec197b394797f530b778f78ba9b3df4d450d2ed368b81391ceb7952b
GET /images/img2.jpg HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 129715
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
translate.yandex.net/website-widget/v1/widget.js?widgetId=ytWidget&pageLang=en&widgetTheme=light&autoMode=true
213.180.204.194200 OK 13 kB URL HTTP/2 translate.yandex.net/website-widget/v1/widget.js?widgetId=ytWidget&pageLang=en&widgetTheme=light&autoMode=true
IP 213.180.204.194:0
Hash 211e0b050117213dc2df71f4f2c7ce46
76ede78b0a6326d8690ca7e0b82fc4b726f1de9c
5236b3f8539028c105262986d9b3d87500ad0afb3d0f0cd503ce6c8083fead66
GET /website-widget/v1/widget.js?widgetId=ytWidget&pageLang=en&widgetTheme=light&autoMode=true HTTP/1.1
Host: translate.yandex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://firstcapitagecu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 12563
date: Fri, 02 Sep 2022 03:38:25 GMT
content-language: en
content-type: application/javascript; charset=utf-8
referrer-policy: no-referrer-when-downgrade
set-cookie: _yasc=9LN7OWCgNn8LiIGiLyhP0bBpmNx1GStZu/0GYfml+2ydGQ==; domain=.yandex.net; path=/; expires=Sun, 02-Oct-2022 03:38:25 GMT; secure
vary: Accept-Language
X-Firefox-Spdy: h2
firstcapitagecu.com/images/img1.jpg
176.31.60.250200 OK 105 kB URL HTTP/1.1 firstcapitagecu.com/images/img1.jpg
IP 176.31.60.250:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 480x356, components 3\012- data
Size 105 kB (104729 bytes)
Hash f802aa24374e552b3c07fc09c3e892e9
2ab465406e1ab68697ba248fc95c013b9b23a04d
a4af393b6f4bb56b272982970164a50691cc91b52663036b242659d7c05fd4f7
GET /images/img1.jpg HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 104729
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 660657162b524658006a1856e274a946
56c933c6682c0019f6dbd040da6b929044dc216a
9578fc0408868ae40d41af8d13787f4137853c056300524b5558b1c57d39b2b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 03:38:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.163200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://firstcapitagecu.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Sep 2022 16:40:18 GMT
expires: Fri, 01 Sep 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 39487
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://firstcapitagecu.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 18:53:20 GMT
expires: Tue, 29 Aug 2023 18:53:20 GMT
cache-control: public, max-age=31536000
age: 290705
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 660657162b524658006a1856e274a946
56c933c6682c0019f6dbd040da6b929044dc216a
9578fc0408868ae40d41af8d13787f4137853c056300524b5558b1c57d39b2b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 03:38:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firstcapitagecu.com/js/jquery-2.2.0.js
176.31.60.250200 OK 228 B URL HTTP/1.1 firstcapitagecu.com/js/jquery-2.2.0.js
IP 176.31.60.250:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 662836f7c0dbc0bfe69d42c0fadd4819
8c986409004febd1786840ec54b70a6b3951a394
dcb13932b10e6a4faaffce35b727270a41ca1defff88d934243259b033c55436
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery-2.2.0.js HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 258388
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
firstcapitagecu.com/images/colorfull-row.jpg
176.31.60.250200 OK 1.7 kB URL HTTP/1.1 firstcapitagecu.com/images/colorfull-row.jpg
IP 176.31.60.250:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1900x5, components 3\012- data
Hash a8752e3b72528f82689cd1dba308a220
c39c0dd5d02f39229a3e0cf82ffcf40bac02a8df
5992286d71758cd5476bbe1d8da845387793355ce9f777484dbcdd64dea3b9cf
GET /images/colorfull-row.jpg HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/css/advisor.css
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 1724
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
firstcapitagecu.com/fonts/fontawesome-webfont3295.html?v=4.5.0
176.31.60.250200 OK 67 kB URL HTTP/1.1 firstcapitagecu.com/fonts/fontawesome-webfont3295.html?v=4.5.0
IP 176.31.60.250:0
File type Web Open Font Format (Version 2), TrueType, length 66624, version 4.262\012- data
Hash db812d8a70a4e88e888744c1c9a27e89
638c652d623280a58144f93e7b552c66d1667a11
ff82aeed6b9bb6701696c84d1b223d2e682eb78c89117a438ce6cfea8c498995
Analyzer Verdict Alert fortinet Phishing
GET /fonts/fontawesome-webfont3295.html?v=4.5.0 HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://firstcapitagecu.com/css/font-awesome.min.css
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 66624
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html
firstcapitagecu.com/images/main-banner/1/2.jpg
176.31.60.250200 OK 339 kB URL HTTP/1.1 firstcapitagecu.com/images/main-banner/1/2.jpg
IP 176.31.60.250:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1900x802, components 3\012- data
Size 339 kB (339338 bytes)
Hash 61c20da4b193d761bfc13120e44c6d6b
12db8495a8a2afc429585f2fe7d9c52d58f7d61d
227ce0bbfda1c8dd67e2fa6f2b1e856f01acc582d421345c841340650ec9f3cf
GET /images/main-banner/1/2.jpg HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/css/hero-slider.css
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 339338
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
firstcapitagecu.com/images/main-banner/1/3.jpg
176.31.60.250200 OK 522 kB URL HTTP/1.1 firstcapitagecu.com/images/main-banner/1/3.jpg
IP 176.31.60.250:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1900x802, components 3\012- data
Size 522 kB (522010 bytes)
Hash 1f7bf554af92d04345a45f3b4e848060
e1e61c654d9cfdeaea3b06b43443e3e8ec1ab00f
e52c2f431b223cd7ab3645aa952d99fc1ffe74bbc38d06bf0bb5db400669b9f7
GET /images/main-banner/1/3.jpg HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/css/hero-slider.css
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 522010
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
firstcapitagecu.com/images/main-banner/1/4.jpg
176.31.60.250200 OK 543 kB URL HTTP/1.1 firstcapitagecu.com/images/main-banner/1/4.jpg
IP 176.31.60.250:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1900x802, components 3\012- data
Size 543 kB (543326 bytes)
Hash ac2f03587a71304b03190bc4d0910d19
cb1dac12519f538ccb523a80ccc538e4896e2124
5f6207423b6db0ff89b136e7d4216ab715b302d5c38b1068412246db65405c7a
GET /images/main-banner/1/4.jpg HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/css/hero-slider.css
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 543326
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Fri, 02 Sep 2022 03:38:16 GMT
Expires: Fri, 02 Sep 2022 04:10:21 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: xQ_mzGP95APHlIPHCZNd32LK2CTrEKNvE7_inzWpSU7oJ25f5FkcNA==
Age: 10
firstcapitagecu.com/images/main-banner/1/1.jpg
176.31.60.250200 OK 877 kB URL HTTP/1.1 firstcapitagecu.com/images/main-banner/1/1.jpg
IP 176.31.60.250:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1900x802, components 3\012- data
Size 877 kB (877330 bytes)
Hash afbd13801b840e317e419b6b95c4ece6
e16d1d507ca1f6f032d0ae3ed5d65a2da8db4402
fb3a2d85a31ce067825edf8c917446421480c69d307350e1f4e1093649a91eff
GET /images/main-banner/1/1.jpg HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/css/hero-slider.css
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 877330
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
firstcapitagecu.com/fonts/icomoonb7ff.woff?w33dbp
176.31.60.250200 OK 345 kB URL HTTP/1.1 firstcapitagecu.com/fonts/icomoonb7ff.woff?w33dbp
IP 176.31.60.250:0
File type Web Open Font Format, TrueType, length 345412, version 0.0\012- data
Size 345 kB (345412 bytes)
Hash cd5aac90a601c672076d893688345e8c
b93baa20ab7cc1597782a3467c418e595d39367e
9a07edcf7277b557bcaefe4af79bd6c0b69154870f3d421ec9bd5813f3f87c52
Analyzer Verdict Alert fortinet Phishing
GET /fonts/icomoonb7ff.woff?w33dbp HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://firstcapitagecu.com/css/icons.css
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 345412
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: font/woff
firstcapitagecu.com/fonts/fontawesome-webfont3295.woff?v=4.5.0
176.31.60.250200 OK 84 kB URL HTTP/1.1 firstcapitagecu.com/fonts/fontawesome-webfont3295.woff?v=4.5.0
IP 176.31.60.250:0
File type Web Open Font Format, TrueType, length 83588, version 1.0\012- data
Hash a35720c2fed2c7f043bc7e4ffb45e073
4a313eb93b959cc4154c684b915b0a31ddb68d84
c812ddc9e475d3e65d68a6b3b589ce598a2a5babb7afc55477d59215c4a38a40
Analyzer Verdict Alert fortinet Phishing
GET /fonts/fontawesome-webfont3295.woff?v=4.5.0 HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://firstcapitagecu.com/css/font-awesome.min.css
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 83588
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: font/woff
firstcapitagecu.com/
176.31.60.250200 OK 5.0 kB IP 176.31.60.250:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 8b4200cdf614e8dd60cd0990007fa669
f9f7be856914f54bf8871dec136a188f6d82e6c7
3e3e7ae08e83e2b2ef0612180e10abaea12945f9b2095faef747ddc9ee2928f0
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://firstcapitagecu.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2eb022bbcb69557dc09477b624814e87
6030f2c630a01fbc027c887d31e696f84cc60c97
d7a508e276f0ca1b58b6af39720fb7ebb26fb38df50a159eb82d1d2542610b85
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2914
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 03:38:26 GMT
Last-Modified: Fri, 02 Sep 2022 02:49:52 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 10a11b1be053b68e4e18e37f3ef529ae
c067112657e16faa1cf79ed6f458ee70990491bc
d74ed1945a098e1f58dc893841a66e5523b95a48ce0012726571f54c44a96841
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Tue, 06 Sep 2022 02:37:34 GMT
ETag: "c067112657e16faa1cf79ed6f458ee70990491bc"
Last-Modified: Fri, 02 Sep 2022 02:37:35 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2650
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7443367a6e420b4d-OSL
yastatic.net/s3/translate/v64.1/dist/scripts/addons/tr_page.js
178.154.131.215200 OK 38 kB URL HTTP/2 yastatic.net/s3/translate/v64.1/dist/scripts/addons/tr_page.js
IP 178.154.131.215:0
File type Unicode text, UTF-8 text, with very long lines (65516), with no line terminators
Hash c2e8884e7c36d0f9efc8622807795ffe
991c5ef310dce3de7fea97b859bc0e95c9dfd245
56f7f9c41c895ae5765ee4416077361399d0372818cb5de774cc092eca4fb4cb
GET /s3/translate/v64.1/dist/scripts/addons/tr_page.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://firstcapitagecu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 02 Sep 2022 03:38:26 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=31556952
content-encoding: br
etag: W/"15bfd4bb38f551e71de99640651c2c63"
expires: Sat, 02 Sep 2023 09:25:45 GMT
last-modified: Thu, 01 Sep 2022 09:37:31 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-nginx-request-id: f5007c9e59c4ed07
X-Firefox-Spdy: h2
firstcapitagecu.com/css/color-default.css
176.31.60.250200 OK 6.0 kB URL HTTP/1.1 firstcapitagecu.com/css/color-default.css
IP 176.31.60.250:0
File type ASCII text, with CRLF line terminators
Hash 8c4d37df0e018bf4c6436c372f489728
d1c88e37a3b96c1e98b04d2d98a0d545aaba1f7c
81e87c4e444bc21446d536a97e5ae8e1bdfca5d43db15654a7c432e2d51ef54b
GET /css/color-default.css HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 5962
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
firstcapitagecu.com/css/bootstrap.css
176.31.60.250200 OK 155 kB URL HTTP/1.1 firstcapitagecu.com/css/bootstrap.css
IP 176.31.60.250:0
File type ASCII text, with very long lines (540), with CRLF line terminators
Size 155 kB (155030 bytes)
Hash 7d3a42d741f3b8f8d4e0c3016efe10cc
ca7b691e0152836ab346bc54920337a61cea9573
8a201bffc9b0aab1934ba168bf2a618e38ae9c68e9c02ff97030ed64fe5dd45c
GET /css/bootstrap.css HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 155030
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
firstcapitagecu.com/css/hero-slider.css
176.31.60.250200 OK 18 kB URL HTTP/1.1 firstcapitagecu.com/css/hero-slider.css
IP 176.31.60.250:0
Hash e40e9accebd0709072d944e33e00b20e
a44052ec1069a63efc0758c1a69900b00c66b948
d03e98ff5f0a390b9c93ab3875bc81f3e0be38568dbd54d90f57f3fda114a80c
GET /css/hero-slider.css HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 18389
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
firstcapitagecu.com/js/modernizr.js
176.31.60.250200 OK 15 kB URL HTTP/1.1 firstcapitagecu.com/js/modernizr.js
IP 176.31.60.250:0
File type HTML document, ASCII text, with very long lines (14596)
Hash 1258d3cdc71540b07f3422a31e41f21a
a426c47c8eb8910ac2a552b2e51b8791858da693
7e26ca2fd58d9878a3754800828a0b4a1af34f747c19c7d48ff1add55b1759c3
Analyzer Verdict Alert fortinet Phishing
GET /js/modernizr.js HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 15250
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
firstcapitagecu.com/css/responsive.css
176.31.60.250200 OK 16 kB URL HTTP/1.1 firstcapitagecu.com/css/responsive.css
IP 176.31.60.250:0
File type assembler source, ASCII text, with CRLF line terminators
Hash 4e2063ce3c0faeae93a9c58af68695ce
808f47765cf3a01024a4eb919c0cbf6c30d916d5
dfe34ef7794216f6c50cd809d6894d7f50af1c60530b5ed8c4155c22bb713f29
GET /css/responsive.css HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 15772
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
firstcapitagecu.com/css/advisor.css
176.31.60.250200 OK 56 kB URL HTTP/1.1 firstcapitagecu.com/css/advisor.css
IP 176.31.60.250:0
File type ASCII text, with very long lines (405), with CRLF line terminators
Hash c2c52f0fb0e801cd3fa01a59fa7c4ab0
dc55610782d06ebc33363ab3baf70f68213b89a0
58c8fe9982480da89127069813585084c8190c618f02121cb631abd3326dc0c1
GET /css/advisor.css HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 55845
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
firstcapitagecu.com/css/plugins.css
176.31.60.250200 OK 88 kB URL HTTP/1.1 firstcapitagecu.com/css/plugins.css
IP 176.31.60.250:0
File type ASCII text, with very long lines (28054), with CRLF line terminators
Hash 8cf5c204805e8f5fc7a96c02bf958edf
d3916b8d7bb2d7398fd158025ab8ad749b29004c
faf6d2be8bc7f73f3b6a721d2b3c5bfd5d00907fb18928c825d82ae53cb6ef85
GET /css/plugins.css HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 88332
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
firstcapitagecu.com/js/counter.js
176.31.60.250200 OK 8.7 kB URL HTTP/1.1 firstcapitagecu.com/js/counter.js
IP 176.31.60.250:0
File type ASCII text, with very long lines (8700), with no line terminators
Hash ba41b7f0434881a167f27266dc22bd09
cafba4913c14cb96180d8d7ff04b6c2db687b1c6
a29d0e46cdb79fc4bf9f50774cff99922cfc348327ea62c3739c465f8d88c8a6
Analyzer Verdict Alert fortinet Phishing
GET /js/counter.js HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 8700
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
firstcapitagecu.com/js/jquery-2.2.0.js
176.31.60.250200 OK 258 kB URL HTTP/1.1 firstcapitagecu.com/js/jquery-2.2.0.js
IP 176.31.60.250:0
Size 258 kB (258388 bytes)
Hash 56f1d01ee4bb68d1572cfd60755cf67a
d912de9beb18f6e5b393ab38477fc4fa6b1aa3b8
a18aa92dea997bd71eb540d5f931620591e9dee27e5f817978bb385bab924d21
Analyzer Verdict Alert fortinet Phishing
GET /js/jquery-2.2.0.js HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 258388
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 9681c904d16adfe4ece277c4b0293fe0
3805f74213fdb181f910e55168743d6e88a77ff6
7b4dec8f4a291cd527bed762fe6061f1428da2beb671c0613f552f49841211a6
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 05 Sep 2022 23:52:47 GMT
ETag: "3805f74213fdb181f910e55168743d6e88a77ff6"
Last-Modified: Thu, 01 Sep 2022 23:52:48 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7443367c2f080b4d-OSL
firstcapitagecu.com/js/bootstrap.min.js
176.31.60.250200 OK 37 kB URL HTTP/1.1 firstcapitagecu.com/js/bootstrap.min.js
IP 176.31.60.250:0
File type ASCII text, with very long lines (32003)
Hash c5b5b2fa19bd66ff23211d9f844e0131
791aa054a026bddc0de92bad6cf7a1c6e73713d5
2979f9a6e32fc42c3e7406339ee9fe76b31d1b52059776a02b4a7fa6a4fd280a
Analyzer Verdict Alert fortinet Phishing
GET /js/bootstrap.min.js HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 36868
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
firstcapitagecu.com/js/hero-slider.js
176.31.60.250200 OK 4.9 kB URL HTTP/1.1 firstcapitagecu.com/js/hero-slider.js
IP 176.31.60.250:0
Hash 6d8f297e0d9e28080815b001a3d718bc
1e13fd38b3cc10a0d81ede2be75c85a24aa202b1
cfb162a82180e5cc5a7886d235922eb3a64113bdc54dfca066f5b2c285f3cd8b
Analyzer Verdict Alert fortinet Phishing
GET /js/hero-slider.js HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 4885
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
firstcapitagecu.com/css/font-awesome.min.css
176.31.60.250200 OK 28 kB URL HTTP/1.1 firstcapitagecu.com/css/font-awesome.min.css
IP 176.31.60.250:0
File type ASCII text, with very long lines (27326)
Hash c1eb9078c3ae76797d437fa851eeb6fa
ee6f5965776a1beb1f12ca1d3920cfb2e8b2163c
6a60971843b5399cf64d56f3ffab48db9bdb1bf2b3ffbafc8801bc5a57b0b22d
GET /css/font-awesome.min.css HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/css/advisor.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 27489
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
firstcapitagecu.com/js/smooth-scroll.js
176.31.60.250200 OK 107 kB URL HTTP/1.1 firstcapitagecu.com/js/smooth-scroll.js
IP 176.31.60.250:0
File type ASCII text, with very long lines (32187), with CRLF line terminators
Size 107 kB (106773 bytes)
Hash f4a7dca81fafdc9e052635aff63d61a3
36378c6532149fad7c7687f9bc04c53287205041
b8e99f712d1f67c9a09a9b8d45a1a5e762f473123a0ee9ac423bff77469f73fa
Analyzer Verdict Alert fortinet Phishing
GET /js/smooth-scroll.js HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 106773
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
firstcapitagecu.com/css/icons.css
176.31.60.250200 OK 62 kB URL HTTP/1.1 firstcapitagecu.com/css/icons.css
IP 176.31.60.250:0
Hash c02f622866c22bef696ccea7f6db3aa3
b4a1620951bfefa2847d3c6e3efabe84f67499b3
50bb45470a3c1f11d9228caa52bbf3a8a27ca40bc744df3fcf6a4b5029cc0abd
GET /css/icons.css HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/css/advisor.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 62314
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
firstcapitagecu.com/images/logo.png
176.31.60.250200 OK 18 kB URL HTTP/1.1 firstcapitagecu.com/images/logo.png
IP 176.31.60.250:0
File type PNG image data, 297 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash 746d1778dffe483134d4f1ed87511ca2
6cad8ac9d1358552965a97aa396d8031a70f43cb
04a82d4d4c3c3a84f1f780ffb8fa1c03b5f0c44aee73f82a2a0e91fc00d2c464
GET /images/logo.png HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 20:27:42 GMT
Accept-Ranges: bytes
Content-Length: 18252
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
firstcapitagecu.com/js/common.js
176.31.60.250200 OK 615 kB URL HTTP/1.1 firstcapitagecu.com/js/common.js
IP 176.31.60.250:0
File type ASCII text, with very long lines (32076), with CRLF line terminators
Size 615 kB (614671 bytes)
Hash e94f00d2992a4283f0342ff7e544b589
497e67141784de9ff936bc080c46b6ff16bddc94
f2d54e0717dfa055f6703914003e253492399957539fce48aa6c14ccc65c0cb5
Analyzer Verdict Alert fortinet Phishing
GET /js/common.js HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 614671
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
firstcapitagecu.com/images/img3.jpg
176.31.60.250200 OK 177 kB URL HTTP/1.1 firstcapitagecu.com/images/img3.jpg
IP 176.31.60.250:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 480x356, components 3\012- data
Size 177 kB (176997 bytes)
Hash a6c69d690bd164331e734fc161d7b63d
9d11e3ad641835c47a6500f15cc8c62930fe9c39
9d6c3e7f80beaaf4a17f78dfd18a54efb1e2c4e5534b6a253ff3ad0084429ecc
GET /images/img3.jpg HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 176997
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
firstcapitagecu.com/images/footer-logo.png
176.31.60.250200 OK 18 kB URL HTTP/1.1 firstcapitagecu.com/images/footer-logo.png
IP 176.31.60.250:0
File type PNG image data, 297 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash 746d1778dffe483134d4f1ed87511ca2
6cad8ac9d1358552965a97aa396d8031a70f43cb
04a82d4d4c3c3a84f1f780ffb8fa1c03b5f0c44aee73f82a2a0e91fc00d2c464
GET /images/footer-logo.png HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 20:30:16 GMT
Accept-Ranges: bytes
Content-Length: 18252
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
firstcapitagecu.com/images/img5.jpg
176.31.60.250200 OK 97 kB URL HTTP/1.1 firstcapitagecu.com/images/img5.jpg
IP 176.31.60.250:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 480x356, components 3\012- data
Hash 2eea82b067245468c70894cfa62376e0
1d536ed89383f967815f3c3a4cf787508cd560fb
6c2412a3321795a4c655cc7e32990117f3958f56cf655fc637c2bc20de70c752
GET /images/img5.jpg HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 96812
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
firstcapitagecu.com/images/img6.jpg
176.31.60.250200 OK 92 kB URL HTTP/1.1 firstcapitagecu.com/images/img6.jpg
IP 176.31.60.250:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 480x356, components 3\012- data
Hash 5ebc988b9255858f99212f715e2fca20
abf2ca865f966187f2b60264550cb498889e6239
c29349f12722733c642157ed359f5dc7a769b049f84f094fc31e18414ea4f21a
GET /images/img6.jpg HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 92278
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
firstcapitagecu.com/images/img4.jpg
176.31.60.250200 OK 153 kB URL HTTP/1.1 firstcapitagecu.com/images/img4.jpg
IP 176.31.60.250:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 480x356, components 3\012- data
Size 153 kB (152617 bytes)
Hash f2ed4327c759ce95636b41ce788d8df1
60d339c1132dd64879aa5ed2a5e1afff8a8b430f
acfa718b36b19982839810ae68b3d32cbe358d9620bfe6941eddb62d0041580b
GET /images/img4.jpg HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 152617
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
firstcapitagecu.com/images/img2.jpg
176.31.60.250200 OK 130 kB URL HTTP/1.1 firstcapitagecu.com/images/img2.jpg
IP 176.31.60.250:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 480x356, components 3\012- data
Size 130 kB (129715 bytes)
Hash b2a4915cdeb15fc068bb8af7de1eb0e7
bdfed06a68600a71052b6c31f379b912c97966b8
839b36beec197b394797f530b778f78ba9b3df4d450d2ed368b81391ceb7952b
GET /images/img2.jpg HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 129715
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
push.services.mozilla.com/
52.43.253.52101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.253.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Rr3DrbgJJWbyE7TXy0fYsg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ZEx5sQP21x3DuPWqW3EL21R+OHA=
firstcapitagecu.com/images/img1.jpg
176.31.60.250200 OK 105 kB URL HTTP/1.1 firstcapitagecu.com/images/img1.jpg
IP 176.31.60.250:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 480x356, components 3\012- data
Size 105 kB (104729 bytes)
Hash f802aa24374e552b3c07fc09c3e892e9
2ab465406e1ab68697ba248fc95c013b9b23a04d
a4af393b6f4bb56b272982970164a50691cc91b52663036b242659d7c05fd4f7
GET /images/img1.jpg HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 104729
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
firstcapitagecu.com/images/video-thumb.jpg
176.31.60.250200 OK 122 kB URL HTTP/1.1 firstcapitagecu.com/images/video-thumb.jpg
IP 176.31.60.250:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 540x368, components 3\012- data
Size 122 kB (122539 bytes)
Hash 2b648209bf5793c8a65c86d041f592c3
925f51d251486bb924d519ce7bfc3c533ee3b2e7
6bde98678cb0d15d95173c6147518d74827f8fac532b057ef9aa5117ceb2f242
GET /images/video-thumb.jpg HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 122539
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 660657162b524658006a1856e274a946
56c933c6682c0019f6dbd040da6b929044dc216a
9578fc0408868ae40d41af8d13787f4137853c056300524b5558b1c57d39b2b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 03:38:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firstcapitagecu.com/images/loader.html
176.31.60.250200 OK 228 B URL HTTP/1.1 firstcapitagecu.com/images/loader.html
IP 176.31.60.250:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 662836f7c0dbc0bfe69d42c0fadd4819
8c986409004febd1786840ec54b70a6b3951a394
dcb13932b10e6a4faaffce35b727270a41ca1defff88d934243259b033c55436
Analyzer Verdict Alert fortinet Phishing
GET /images/loader.html HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/css/advisor.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 228
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html
firstcapitagecu.com/images/colorfull-row.jpg
176.31.60.250200 OK 1.7 kB URL HTTP/1.1 firstcapitagecu.com/images/colorfull-row.jpg
IP 176.31.60.250:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1900x5, components 3\012- data
Hash a8752e3b72528f82689cd1dba308a220
c39c0dd5d02f39229a3e0cf82ffcf40bac02a8df
5992286d71758cd5476bbe1d8da845387793355ce9f777484dbcdd64dea3b9cf
GET /images/colorfull-row.jpg HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/css/advisor.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 1724
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.163200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://firstcapitagecu.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Sep 2022 16:40:18 GMT
expires: Fri, 01 Sep 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 39488
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
firstcapitagecu.com/images/main-banner/1/1.jpg
176.31.60.250200 OK 877 kB URL HTTP/1.1 firstcapitagecu.com/images/main-banner/1/1.jpg
IP 176.31.60.250:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1900x802, components 3\012- data
Size 877 kB (877330 bytes)
Hash afbd13801b840e317e419b6b95c4ece6
e16d1d507ca1f6f032d0ae3ed5d65a2da8db4402
fb3a2d85a31ce067825edf8c917446421480c69d307350e1f4e1093649a91eff
GET /images/main-banner/1/1.jpg HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/css/hero-slider.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 877330
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
firstcapitagecu.com/images/main-banner/1/2.jpg
176.31.60.250200 OK 339 kB URL HTTP/1.1 firstcapitagecu.com/images/main-banner/1/2.jpg
IP 176.31.60.250:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1900x802, components 3\012- data
Size 339 kB (339338 bytes)
Hash 61c20da4b193d761bfc13120e44c6d6b
12db8495a8a2afc429585f2fe7d9c52d58f7d61d
227ce0bbfda1c8dd67e2fa6f2b1e856f01acc582d421345c841340650ec9f3cf
GET /images/main-banner/1/2.jpg HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/css/hero-slider.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 339338
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
firstcapitagecu.com/images/main-banner/1/4.jpg
176.31.60.250200 OK 543 kB URL HTTP/1.1 firstcapitagecu.com/images/main-banner/1/4.jpg
IP 176.31.60.250:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1900x802, components 3\012- data
Size 543 kB (543326 bytes)
Hash ac2f03587a71304b03190bc4d0910d19
cb1dac12519f538ccb523a80ccc538e4896e2124
5f6207423b6db0ff89b136e7d4216ab715b302d5c38b1068412246db65405c7a
GET /images/main-banner/1/4.jpg HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/css/hero-slider.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 543326
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://firstcapitagecu.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 18:53:20 GMT
expires: Tue, 29 Aug 2023 18:53:20 GMT
cache-control: public, max-age=31536000
age: 290706
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
firstcapitagecu.com/fonts/icomoonb7ff.ttf?w33dbp
176.31.60.250200 OK 345 kB URL HTTP/1.1 firstcapitagecu.com/fonts/icomoonb7ff.ttf?w33dbp
IP 176.31.60.250:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Size 345 kB (345336 bytes)
Hash e89ad19dca380744e847308509c923e8
ae4942efb5aa95c1a721f218aa999fba2ca43e75
6c80b5726369b2fe0ee6d9d8017637aca86fd404e121dfe39668b8cc3b2bb80e
GET /fonts/icomoonb7ff.ttf?w33dbp HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/css/icons.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 345336
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: font/ttf
firstcapitagecu.com/images/main-banner/1/3.jpg
176.31.60.250200 OK 522 kB URL HTTP/1.1 firstcapitagecu.com/images/main-banner/1/3.jpg
IP 176.31.60.250:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1900x802, components 3\012- data
Size 522 kB (522010 bytes)
Hash 1f7bf554af92d04345a45f3b4e848060
e1e61c654d9cfdeaea3b06b43443e3e8ec1ab00f
e52c2f431b223cd7ab3645aa952d99fc1ffe74bbc38d06bf0bb5db400669b9f7
GET /images/main-banner/1/3.jpg HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/css/hero-slider.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 522010
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
firstcapitagecu.com/fonts/fontawesome-webfont3295.html?v=4.5.0
176.31.60.250200 OK 67 kB URL HTTP/1.1 firstcapitagecu.com/fonts/fontawesome-webfont3295.html?v=4.5.0
IP 176.31.60.250:0
File type Web Open Font Format (Version 2), TrueType, length 66624, version 4.262\012- data
Hash db812d8a70a4e88e888744c1c9a27e89
638c652d623280a58144f93e7b552c66d1667a11
ff82aeed6b9bb6701696c84d1b223d2e682eb78c89117a438ce6cfea8c498995
Analyzer Verdict Alert fortinet Phishing
GET /fonts/fontawesome-webfont3295.html?v=4.5.0 HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://firstcapitagecu.com/css/font-awesome.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 66624
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html
translate.yandex.net/website-widget/v1/widget.js?widgetId=ytWidget&pageLang=en&widgetTheme=light&autoMode=true
213.180.204.194200 OK 13 kB URL HTTP/2 translate.yandex.net/website-widget/v1/widget.js?widgetId=ytWidget&pageLang=en&widgetTheme=light&autoMode=true
IP 213.180.204.194:0
Hash 559116b15f03da33e26c708bceb1d0fa
01fa44514cb360ffcf51cd20ceb39ad76355db61
a1dcc923e4e17154101222fe336ab546571823540cb9b7966330db96baeeb5ae
GET /website-widget/v1/widget.js?widgetId=ytWidget&pageLang=en&widgetTheme=light&autoMode=true HTTP/1.1
Host: translate.yandex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 12563
content-language: en
date: Fri, 02 Sep 2022 03:38:26 GMT
content-type: application/javascript; charset=utf-8
referrer-policy: no-referrer-when-downgrade
set-cookie: _yasc=aeBCan494jGslrn4A8oLIo3KNiTVCM5GDo06WyCU3vgkbg==; domain=.yandex.net; path=/; expires=Sun, 02-Oct-2022 03:38:26 GMT; secure
vary: Accept-Language
X-Firefox-Spdy: h2
firstcapitagecu.com/images/dot.png
176.31.60.250200 OK 1.0 kB URL HTTP/1.1 firstcapitagecu.com/images/dot.png
IP 176.31.60.250:0
File type PNG image data, 5 x 5, 8-bit/color RGBA, non-interlaced\012- data
Hash b789702dc98e646456ef1a2e76247521
5abb2ae72c0541b4e063cf724bca5d625f2a844f
4f340ae3cbdcea03cca3d7a4ab77ab62be75e0f64ff5204bb42947451ccacd7e
GET /images/dot.png HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/css/advisor.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:26 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 1028
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 10a11b1be053b68e4e18e37f3ef529ae
c067112657e16faa1cf79ed6f458ee70990491bc
d74ed1945a098e1f58dc893841a66e5523b95a48ce0012726571f54c44a96841
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:27 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Tue, 06 Sep 2022 02:37:34 GMT
ETag: "c067112657e16faa1cf79ed6f458ee70990491bc"
Last-Modified: Fri, 02 Sep 2022 02:37:35 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2651
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7443367fc8600b4d-OSL
firstcapitagecu.com/images/favicon.png
176.31.60.250200 OK 6.5 kB URL HTTP/1.1 firstcapitagecu.com/images/favicon.png
IP 176.31.60.250:0
File type PNG image data, 47 x 47, 8-bit/color RGBA, non-interlaced\012- data
Hash 473e1abd8f5e13980fe044c4ebb3bb49
2683496a97f8139e4a28c6a715e0e6f50c23467b
49d26a4b19a6f3dd7d9a45a03ee36a44af4744ca23d9c49ceb459f4b310a1cb8
GET /images/favicon.png HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:27 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 6515
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
translate.yandex.net/website-widget/v1/widget.html
213.180.204.194200 OK 43 kB URL HTTP/2 translate.yandex.net/website-widget/v1/widget.html
IP 213.180.204.194:0
File type HTML document, ASCII text, with very long lines (2660)
Hash 5b0fec1482ae45dbdc7294d401a1bcca
83d2ef660d02eeba02d7cbc4b5e907b8c70d1753
ad2a5e1fdb042feb0a6e63e9c4ff0f8a46401d9cf109d5b116fc5fbfb8705af9
GET /website-widget/v1/widget.html HTTP/1.1
Host: translate.yandex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://firstcapitagecu.com
Connection: keep-alive
Referer: https://firstcapitagecu.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 43116
vary: Accept-Language
date: Fri, 02 Sep 2022 03:38:27 GMT
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: https://firstcapitagecu.com
set-cookie: _yasc=8x6cNjZJBtP+WxREB5xi9IQuEHZJLEX7Mi007GSAEKcwKw==; domain=.yandex.net; path=/; expires=Sun, 02-Oct-2022 03:38:27 GMT; secure
content-language: en
content-type: text/html
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/22.fd21eb42.chunk.js
54.230.111.20200 OK 13 kB URL HTTP/2 js.driftt.com/core/assets/js/22.fd21eb42.chunk.js
IP 54.230.111.20:0
Hash 87716a175ee17428681e48ea1409f9a9
be7941e203423350c7ba050e590556087182b69b
11994443a7d251c617b1e990e9ee383d270908a527c870d477c1428006b0c3c5
GET /core/assets/js/22.fd21eb42.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?embedId=xhbxuutbsthu®ion=US&forceShow=false&skipCampaigns=false&sessionId=97892627-0cbc-437c-8bc6-897ecccb0b9b&sessionStarted=1662089906.443&campaignRefreshToken=f77d2d90-7642-4d9a-bf5e-056923b14418&hideController=false&pageLoadStartTime=1662089905432&mode=CHAT&driftEnableLog=false&secureIframe=false
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Sun, 03 Jul 2022 23:15:05 GMT
server: nginx
last-modified: Fri, 01 Jul 2022 20:20:56 GMT
etag: W/"cbf1bca421271b2567e00a478296192b"
x-amz-server-side-encryption: AES256
x-amz-version-id: rhriNS8WygjGEv2GTbSa16tsLJlBsIO5
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: C1rLPMOSkVHVUlnoy3ev1RHmc0OZd70wUapDsGuaGYbqtAGDjKXcBg==
age: 5199802
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/9.535a3a94.chunk.js
54.230.111.20200 OK 22 kB URL HTTP/2 js.driftt.com/core/assets/js/9.535a3a94.chunk.js
IP 54.230.111.20:0
Hash 56bc34778eebfeae775c4913fcbf02a7
cbb21160097e78400d2b47f2bfa08f304a2f5a50
6565250a8fe3314c9543a22a8b764edbd2fe5e560af470f70328b9b0ab0097a1
GET /core/assets/js/9.535a3a94.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?embedId=xhbxuutbsthu®ion=US&forceShow=false&skipCampaigns=false&sessionId=97892627-0cbc-437c-8bc6-897ecccb0b9b&sessionStarted=1662089906.443&campaignRefreshToken=f77d2d90-7642-4d9a-bf5e-056923b14418&hideController=false&pageLoadStartTime=1662089905432&mode=CHAT&driftEnableLog=false&secureIframe=false
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Fri, 26 Aug 2022 13:20:22 GMT
server: nginx
last-modified: Thu, 25 Aug 2022 21:13:17 GMT
etag: W/"073dafbb4b9bd1b881e6475386b712ee"
x-amz-server-side-encryption: AES256
x-amz-version-id: oCovUdRwAlg.GGR_hVxwJrKIYj.O.YqJ
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FqiFN_1Q6bsvLoMGGKHdpvrFBbbBzEMJlo9matJ-jtt1gQfROBLavQ==
age: 569885
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4523
Expires: Fri, 02 Sep 2022 04:53:50 GMT
Date: Fri, 02 Sep 2022 03:38:27 GMT
Connection: keep-alive
js.driftt.com/core/assets/js/17.6ccd0f69.chunk.js
54.230.111.20200 OK 20 kB URL HTTP/2 js.driftt.com/core/assets/js/17.6ccd0f69.chunk.js
IP 54.230.111.20:0
Hash 3c038338546cda96f4468710b6aae2fa
3a437c8a5e9be32a1b287dcbee2b5fa963d73adb
c9c5c4764b322f5a9e6c448ebc3f1811028ed65cc1881eb9c408aa2815172ece
GET /core/assets/js/17.6ccd0f69.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?embedId=xhbxuutbsthu®ion=US&forceShow=false&skipCampaigns=false&sessionId=97892627-0cbc-437c-8bc6-897ecccb0b9b&sessionStarted=1662089906.443&campaignRefreshToken=f77d2d90-7642-4d9a-bf5e-056923b14418&hideController=false&pageLoadStartTime=1662089905432&mode=CHAT&driftEnableLog=false&secureIframe=false
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Fri, 26 Aug 2022 13:20:22 GMT
server: nginx
last-modified: Thu, 25 Aug 2022 21:13:15 GMT
etag: W/"a581fbb27874f93f15c3fe3784f2391a"
x-amz-server-side-encryption: AES256
x-amz-version-id: A6__olwCDz1FD.1X9WiQXDg59ZPZqaUK
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tz_IFBeNDLtRDXE2mAWSTuT_LwRDKHms74C8WtSVmDq1XRX53NY9eA==
age: 569885
X-Firefox-Spdy: h2
js.driftt.com/include/1662090000000/xhbxuutbsthu.js
54.230.111.20200 OK 74 kB URL HTTP/2 js.driftt.com/include/1662090000000/xhbxuutbsthu.js
IP 54.230.111.20:0
Hash 5ed505e79140605c351740b954d477d5
2dc29f40d6cde5eee134376e004b41da7820a43d
91e59800b4e2441d0a7a25410be2da1076ba41316e428e3b680ce8ad98bb78ca
GET /include/1662090000000/xhbxuutbsthu.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: nginx
last-modified: Wed, 31 Aug 2022 18:23:54 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: U0sriocF4WN07Hm2ZGmHfXq6eJt2Gqm6
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
date: Fri, 02 Sep 2022 03:38:27 GMT
cache-control: no-cache
etag: W/"bc71b7869279b01fc51fdc51af940b5e"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oHEz7a6QiRamck2Jh1WSuuDIgH6POUu3mP5aVDLaBYPjyhRAIfRHEQ==
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4523
Expires: Fri, 02 Sep 2022 04:53:50 GMT
Date: Fri, 02 Sep 2022 03:38:27 GMT
Connection: keep-alive
yastatic.net/s3/translate/v64.1/dist/scripts/addons/tr_page.js
178.154.131.216200 OK 53 kB URL HTTP/2 yastatic.net/s3/translate/v64.1/dist/scripts/addons/tr_page.js
IP 178.154.131.216:0
File type Unicode text, UTF-8 text, with very long lines (65516), with no line terminators
Hash aeb4d193993768c58830c3688ddb7e72
5a48da04434247b39c0207b2c3b2265c5543458c
158b543b481767f585955855f7196d8323e03c413f27851386ea55564fad86ef
GET /s3/translate/v64.1/dist/scripts/addons/tr_page.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 02 Sep 2022 03:38:27 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=31556952
content-encoding: br
etag: W/"15bfd4bb38f551e71de99640651c2c63"
expires: Sat, 02 Sep 2023 09:25:52 GMT
last-modified: Thu, 01 Sep 2022 09:37:31 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-nginx-request-id: b3ebf558275d80f5
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/19.c695453b.chunk.css
54.230.111.20200 OK 365 B URL HTTP/2 js.driftt.com/core/assets/css/19.c695453b.chunk.css
IP 54.230.111.20:0
File type ASCII text, with very long lines (365), with no line terminators
Hash 06b2963b029c0824382815165bfea73e
de23fb128e2589cf384603cfbb7f6b7bef969b05
ec3a84e593065a50cd77ce9fba273b4196936940c0813ca248b045df2e2c8eff
GET /core/assets/css/19.c695453b.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?embedId=xhbxuutbsthu®ion=US&forceShow=false&skipCampaigns=false&sessionId=97892627-0cbc-437c-8bc6-897ecccb0b9b&sessionStarted=1662089906.443&campaignRefreshToken=f77d2d90-7642-4d9a-bf5e-056923b14418&hideController=false&pageLoadStartTime=1662089905432&mode=CHAT&driftEnableLog=false&secureIframe=false
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 365
date: Sun, 03 Jul 2022 23:15:07 GMT
server: nginx
last-modified: Fri, 01 Jul 2022 20:20:53 GMT
etag: "06b2963b029c0824382815165bfea73e"
x-amz-server-side-encryption: AES256
x-amz-version-id: _GKDVm7cwHRbprAEZ8WoHMzXEQGGTOt2
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mR4PY_1awphXCCRkXTOFWh5bihr9yw_ZPnBe1XBxKJCe4mA82n0W0A==
age: 5199800
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/runtime~main.bef95df7.js
54.230.111.20200 OK 48 kB URL HTTP/2 js.driftt.com/core/assets/js/runtime~main.bef95df7.js
IP 54.230.111.20:0
Hash e1f6cc2e6e0b984aa17b6c6c8d82a6ac
e949cba11a26ab4be5b70c25a5758dce313acb32
42622042c405d4fc2b79b39d56e02ebeb1edc284965b99b2b429f40416903e1a
GET /core/assets/js/runtime~main.bef95df7.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?embedId=xhbxuutbsthu®ion=US&forceShow=false&skipCampaigns=false&sessionId=97892627-0cbc-437c-8bc6-897ecccb0b9b&sessionStarted=1662089906.443&campaignRefreshToken=f77d2d90-7642-4d9a-bf5e-056923b14418&hideController=false&pageLoadStartTime=1662089905432&mode=CHAT&driftEnableLog=false&secureIframe=false
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Wed, 31 Aug 2022 18:23:26 GMT
server: nginx
last-modified: Wed, 31 Aug 2022 18:10:12 GMT
etag: W/"e086f8acd2530042828444b37a1d77f9"
x-amz-server-side-encryption: AES256
x-amz-version-id: 5Bb2GA_q6cpdGdsbvIylHuOc7jJBWoOg
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lxCbEQ9y1cxzdidC9M6Eon_uaLNyiiqJSqKuPpvr56b_PIZojnYpRA==
age: 119701
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 955f2a35bd6b3802670e7fa8a7cda833
4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c
2fb517039f0704d2f6fe2fa78eae47c71c645add1c2276f8726248184ae45760
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10435
x-amzn-requestid: 813ec4ca-243d-46cb-a6a6-8ec58e5dd9f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLjdHwnIAMFhzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112615-4733cfb83cf0e8734abc5716;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: n6DJbsUGTdXT42cNLTDq6Uz28H2SDhwq6drdKP4axAHsBz471X7r_g==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:37:26 GMT
etag: "4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c"
content-type: image/jpeg
age: 21662
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/9.f50eb0b3.chunk.css
54.230.111.20200 OK 9.8 kB URL HTTP/2 js.driftt.com/core/assets/css/9.f50eb0b3.chunk.css
IP 54.230.111.20:0
Hash da1c94edbd5f74ab7c540b67475bd7d5
5542533e919127b71a31c6dd1f5d53777e8b4766
5c8ed2f6c16c3548d7612058af0b0086b8cf272db1f6f3291cdec39096574bb0
GET /core/assets/css/9.f50eb0b3.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?embedId=xhbxuutbsthu®ion=US&forceShow=false&skipCampaigns=false&sessionId=97892627-0cbc-437c-8bc6-897ecccb0b9b&sessionStarted=1662089906.443&campaignRefreshToken=f77d2d90-7642-4d9a-bf5e-056923b14418&hideController=false&pageLoadStartTime=1662089905432&mode=CHAT&driftEnableLog=false&secureIframe=false
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Fri, 26 Aug 2022 13:20:22 GMT
server: nginx
last-modified: Thu, 25 Aug 2022 21:13:13 GMT
etag: W/"e6efd75f849f72222df348ff402e8026"
x-amz-server-side-encryption: AES256
x-amz-version-id: cfUNfNdGGDHKWON2NXR5AFmNvq8uIDRB
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GZDFe_ZFHNexj6xy4UGxtbNlOjfn3efp-VzqMcF0U8OH2X0oz_BClQ==
age: 569885
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb286723e-5b07-4b35-8224-cdbe76a32724.jpeg
34.120.237.76200 OK 2.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb286723e-5b07-4b35-8224-cdbe76a32724.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 225b8d6b006bc34721fd5f986b3fb6f6
7b7e20e3036e32798cbcc251dacc89ac93085e4d
87b2404ad60df3c4421c4b1fae2d2c4c8391aec7ce809da223642fc0375044cd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb286723e-5b07-4b35-8224-cdbe76a32724.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2625
x-amzn-requestid: 45e03380-927b-4bc2-b53f-af2df7d8380c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLlfHq5IAMFQxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112622-5aa105d34993ee034a18138e;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:38 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: mPZC6Uuds4HDELnIhEAXe11QTYpEDgrjQT6_lBHiyiB5QnUFJjMfOw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:37:51 GMT
age: 21637
etag: "7b7e20e3036e32798cbcc251dacc89ac93085e4d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/21.b8c41db9.chunk.js
54.230.111.20200 OK 13 kB URL HTTP/2 js.driftt.com/core/assets/js/21.b8c41db9.chunk.js
IP 54.230.111.20:0
Hash a6db994d0ee666d7b592c56816de1de4
6e44fab0ea567f848da28bdd8cadcd0f3afd17c5
87a315d599d0fd1b6de738b0e4fdefa1055ebbee0b23e258c000d49a57840066
GET /core/assets/js/21.b8c41db9.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?embedId=xhbxuutbsthu®ion=US&forceShow=false&skipCampaigns=false&sessionId=97892627-0cbc-437c-8bc6-897ecccb0b9b&sessionStarted=1662089906.443&campaignRefreshToken=f77d2d90-7642-4d9a-bf5e-056923b14418&hideController=false&pageLoadStartTime=1662089905432&mode=CHAT&driftEnableLog=false&secureIframe=false
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Fri, 22 Jul 2022 00:55:28 GMT
server: nginx
last-modified: Wed, 20 Jul 2022 16:44:35 GMT
etag: W/"65e5c965272e021ae33ff8bc39565ef5"
x-amz-server-side-encryption: AES256
x-amz-version-id: f.0PmvFwFO6wHvpJ0r6JG1gTthOACCRK
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RDspZpuprvUdxOHoV3tIy0hgjZo85CT4pSbyHPHNykaGlokkqjlGQg==
age: 3638579
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 0f062bbaeac70ba98b4cdf9ac9d774af
01f95010d8cacde6d051eb36009f751932a0f9ee
cc82bebdb386b6284d721808993dd36b6e9c7a1dce1172645aa9f2f6ed6b7d81
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 02 Sep 2022 03:38:28 GMT
Last-Modified: Fri, 02 Sep 2022 01:54:14 GMT
Server: ECS (nyb/1D0E)
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 76soGs2bXk_ir75FrtkLkcD_eLm6FZxcovVhYTlWFNioTXHLW1M8_A==
Age: 6254
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 0f062bbaeac70ba98b4cdf9ac9d774af
01f95010d8cacde6d051eb36009f751932a0f9ee
cc82bebdb386b6284d721808993dd36b6e9c7a1dce1172645aa9f2f6ed6b7d81
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 02 Sep 2022 03:38:28 GMT
Last-Modified: Fri, 02 Sep 2022 02:03:03 GMT
Server: ECS (nyb/1D16)
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: gih5aLdN2CvTcVZrPDNi0W-m1tzI2IfqPKC2eI8ud6CAy2dRJC4J8A==
Age: 5725
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 0f062bbaeac70ba98b4cdf9ac9d774af
01f95010d8cacde6d051eb36009f751932a0f9ee
cc82bebdb386b6284d721808993dd36b6e9c7a1dce1172645aa9f2f6ed6b7d81
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 02 Sep 2022 03:38:28 GMT
Last-Modified: Fri, 02 Sep 2022 03:20:09 GMT
Server: ECS (nyb/1DD2)
X-Cache: Miss from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: LrhdMklsjaT8wd0FxyLNRb42_CJTZ7n4NVx50jdHDVOkON5w6Ytbmg==
Age: 1099
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 0f062bbaeac70ba98b4cdf9ac9d774af
01f95010d8cacde6d051eb36009f751932a0f9ee
cc82bebdb386b6284d721808993dd36b6e9c7a1dce1172645aa9f2f6ed6b7d81
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 02 Sep 2022 03:38:28 GMT
Last-Modified: Fri, 02 Sep 2022 02:49:40 GMT
Server: ECS (nyb/1D18)
X-Cache: Miss from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1hQuvrLPgSr53oDPhIIpaqS5UEl190B2JwENrsXkKsmGyw-dO-Ft8Q==
Age: 2928
js.driftt.com/core/assets/css/27.9bf46b67.chunk.css
54.230.111.20200 OK 27 kB URL HTTP/2 js.driftt.com/core/assets/css/27.9bf46b67.chunk.css
IP 54.230.111.20:0
Hash 906f36cab97b1e6ec9782aea85f7066b
6c9d94e9b38191ae8774baefcba7a7f0dc9da450
d006068ddc85ab786f1c56245e046f1b786055d0b3df12092d3a6d39e525886b
GET /core/assets/css/27.9bf46b67.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?embedId=xhbxuutbsthu®ion=US&forceShow=false&skipCampaigns=false&sessionId=97892627-0cbc-437c-8bc6-897ecccb0b9b&sessionStarted=1662089906.443&campaignRefreshToken=f77d2d90-7642-4d9a-bf5e-056923b14418&hideController=false&pageLoadStartTime=1662089905432&mode=CHAT&driftEnableLog=false&secureIframe=false
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Fri, 12 Aug 2022 18:08:02 GMT
server: nginx
last-modified: Fri, 12 Aug 2022 17:25:54 GMT
etag: W/"4f21faf2ba450e5fcdf7eda90813e185"
x-amz-server-side-encryption: AES256
x-amz-version-id: OwtYu1UfCDk9O65HArj6B6mV7fLBXaFN
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6LaSln6qGwi8dznkImzfZRklraa_sfFsYMVmK_xCIm1RxIwSOM5hhw==
age: 1762225
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/31.1f8907d7.chunk.css
54.230.111.20200 OK 2.2 kB URL HTTP/2 js.driftt.com/core/assets/css/31.1f8907d7.chunk.css
IP 54.230.111.20:0
Hash e57491873bbfcf5d03b22fbf749b1dfc
6b94d57243b6dded2eaae30b64716c432fa0a812
8e9753f486a73b73aa14b337ead1ed2fb7d25a8ce0a40e4cefb1a5839161f6b9
GET /core/assets/css/31.1f8907d7.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?region=US&driftEnableLog=false&pageLoadStartTime=1662089905432
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Fri, 26 Aug 2022 13:20:23 GMT
server: nginx
last-modified: Thu, 25 Aug 2022 21:13:13 GMT
etag: W/"cea19cf62d3d6bd9d3f16433e69c8464"
x-amz-server-side-encryption: AES256
x-amz-version-id: y_GckAHSFRel3MT0hH2mIHQBZxv6gp4Z
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GPKdjuF5cSbtRV4hckCp2IAi1c2kDiUNCj0dio4anyjXLPbshkxaOg==
age: 569885
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/26.2d4cdbd1.chunk.js
54.230.111.20200 OK 25 kB URL HTTP/2 js.driftt.com/core/assets/js/26.2d4cdbd1.chunk.js
IP 54.230.111.20:0
Hash 83feb5c767a9fa0d7674a88ac7ac55fd
8e756ac0a064a1a7586db3992caf12f72e4f763f
e8b2fbc79f00509effd1f45f2fd023851ac8052c47ba162df65123bb5c0e6b4d
GET /core/assets/js/26.2d4cdbd1.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?embedId=xhbxuutbsthu®ion=US&forceShow=false&skipCampaigns=false&sessionId=97892627-0cbc-437c-8bc6-897ecccb0b9b&sessionStarted=1662089906.443&campaignRefreshToken=f77d2d90-7642-4d9a-bf5e-056923b14418&hideController=false&pageLoadStartTime=1662089905432&mode=CHAT&driftEnableLog=false&secureIframe=false
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Wed, 31 Aug 2022 18:23:27 GMT
server: nginx
last-modified: Wed, 31 Aug 2022 18:10:09 GMT
etag: W/"c55d27c90bd5affbf7c7047151ac3b6a"
x-amz-server-side-encryption: AES256
x-amz-version-id: siv4sYmLp3BEOV5kWKjSS9V7tHMZAkGl
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kHRRIwNI76Y_HmNY5ZDhb16JyNuyHQyaM77dmSNo5VoGDYL1T-oxjQ==
age: 119700
X-Firefox-Spdy: h2
bootstrap.api.drift.com/widget_bootstrap/ping
50.16.7.188200 OK 147 B URL HTTP/2 bootstrap.api.drift.com/widget_bootstrap/ping
IP 50.16.7.188:0
File type JSON data\012- , ASCII text, with no line terminators
Hash e65e6024ba9fe72998b4cf5ac26b14a0
631085010c98f67c778bef696a251daa9ae9f614
05668a10409822c4082adf8b511c866121e8b007c936f2ad96b2276acdaa6fdb
POST /widget_bootstrap/ping HTTP/1.1
Host: bootstrap.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 67
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 03:38:28 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: a48c12069093cb2c
vary: Accept-Encoding
content-length: 147
x-envoy-upstream-service-time: 16
server: istio-envoy
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 1f1664aee1fc725ee9101ba07b60c101
d6d56f4da0e5c5b10e7df7bc029e032fd88b9380
3ba854083e0ffb8735c338a7a945997fea3cbeb416c0cadfdefb67e31d912d52
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 02 Sep 2022 03:38:29 GMT
Last-Modified: Fri, 02 Sep 2022 03:23:38 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Nzbnrc6yf3jf7Bg8ciXFXV16JeFdGj4f_RarzHYscj5MyqkzF0qLdw==
Age: 891
1497546-46.chat.api.drift.com/ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAAVMTQ5NzU0Ni0xNTQ4NjA4Njc1OS00ZAAGb3JnX2lkbQAAAAcxNDk3NTQ2ZAAJc2NvcGVfc2V0bQAAAARsZWFkZAAHdXNlcl9pZG0AAAALMTU0ODYwODY3NTlkAAl1c2VyX3R5cGVkAARsZWFkbgYA3FNH_IIBYgABUYA.S-mJC5IoAHZS-yHYtEfq3M361eMLW2FcyWFT2HCZ7l4&remote_ip=3.226.111.211&vsn=2.0.0
52.205.57.151101 Switching Protocols 0 B URL HTTP/1.1 1497546-46.chat.api.drift.com/ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAAVMTQ5NzU0Ni0xNTQ4NjA4Njc1OS00ZAAGb3JnX2lkbQAAAAcxNDk3NTQ2ZAAJc2NvcGVfc2V0bQAAAARsZWFkZAAHdXNlcl9pZG0AAAALMTU0ODYwODY3NTlkAAl1c2VyX3R5cGVkAARsZWFkbgYA3FNH_IIBYgABUYA.S-mJC5IoAHZS-yHYtEfq3M361eMLW2FcyWFT2HCZ7l4&remote_ip=3.226.111.211&vsn=2.0.0
IP 52.205.57.151:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAAVMTQ5NzU0Ni0xNTQ4NjA4Njc1OS00ZAAGb3JnX2lkbQAAAAcxNDk3NTQ2ZAAJc2NvcGVfc2V0bQAAAARsZWFkZAAHdXNlcl9pZG0AAAALMTU0ODYwODY3NTlkAAl1c2VyX3R5cGVkAARsZWFkbgYA3FNH_IIBYgABUYA.S-mJC5IoAHZS-yHYtEfq3M361eMLW2FcyWFT2HCZ7l4&remote_ip=3.226.111.211&vsn=2.0.0 HTTP/1.1
Host: 1497546-46.chat.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://js.driftt.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: aOULynT3EPzNz2cFLoRvzg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Fri, 02 Sep 2022 03:38:29 GMT
Connection: upgrade
cache-control: max-age=0, private, must-revalidate
sec-websocket-accept: uS1NrmNoTXCtMVbHrNO5wmqib6k=
server: Cowboy
upgrade: websocket
event.api.drift.com/track
54.147.21.139200 OK 13 B URL HTTP/2 event.api.drift.com/track
IP 54.147.21.139:0
File type ASCII text, with no line terminators
Hash 1424eb76249899d757e4d168341a50dc
42101e71440abd46c8112a96d4d5c0dd445120ce
16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
OPTIONS /track HTTP/1.1
Host: event.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 03:38:30 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: POST,OPTIONS
requestid: driftcead0664cd7a7594fbc3ed4ab72
content-length: 13
x-envoy-upstream-service-time: 0
server: istio-envoy
X-Firefox-Spdy: h2
targeting.api.drift.com/targeting/evaluate_with_log
54.147.21.139200 OK 13 B URL HTTP/2 targeting.api.drift.com/targeting/evaluate_with_log
IP 54.147.21.139:0
File type ASCII text, with no line terminators
Hash 1424eb76249899d757e4d168341a50dc
42101e71440abd46c8112a96d4d5c0dd445120ce
16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
OPTIONS /targeting/evaluate_with_log HTTP/1.1
Host: targeting.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 03:38:30 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: POST,OPTIONS
requestid: drift72742c84514a7739c06eb09fba8
content-length: 13
x-envoy-upstream-service-time: 0
server: istio-envoy
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/52.b6e19470.chunk.js
54.230.111.20200 OK 7.5 kB URL HTTP/2 js.driftt.com/core/assets/js/52.b6e19470.chunk.js
IP 54.230.111.20:0
Hash fdd002a63565acae90132af805048ad7
749a5fd75f35d11057188237979c2af4169f453b
ed1f5c937f10dfe7d3551ee6785f1f0ede380e660f83cca753d4733cdfb2de00
GET /core/assets/js/52.b6e19470.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?embedId=xhbxuutbsthu®ion=US&forceShow=false&skipCampaigns=false&sessionId=97892627-0cbc-437c-8bc6-897ecccb0b9b&sessionStarted=1662089906.443&campaignRefreshToken=f77d2d90-7642-4d9a-bf5e-056923b14418&hideController=false&pageLoadStartTime=1662089905432&mode=CHAT&driftEnableLog=false&secureIframe=false
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Mon, 15 Aug 2022 14:58:15 GMT
server: nginx
last-modified: Mon, 15 Aug 2022 14:54:41 GMT
etag: W/"bad20cb6447399d927f280df2d62ca0c"
x-amz-server-side-encryption: AES256
x-amz-version-id: RsSkBCjzvBw3GerIVkk_9htbmnC6yc51
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CI87dEkoOxgygaUO2NeRH_dRaBDS0QMu4eCFtKB7l7uAZd3CrxRKYw==
age: 1514415
X-Firefox-Spdy: h2
targeting.api.drift.com/targeting/evaluate_with_log
54.147.21.139200 OK 232 B URL HTTP/2 targeting.api.drift.com/targeting/evaluate_with_log
IP 54.147.21.139:0
File type JSON data\012- , ASCII text, with very long lines (409), with no line terminators
Hash 880394a7d56268fa78b57b92131a6a3b
29a245a9869376dc9341ced0271e24f4396ebc6c
5b625101241387ecc330e9e9973c79f9d4f001a9fa1458484d46c58935b54509
POST /targeting/evaluate_with_log HTTP/1.1
Host: targeting.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJzdWIiOiIxNTQ4NjA4Njc1OSIsImNsaWVudElkIjoiZjZ6dWl6ZHloeHJtN3IiLCJ1c2VySWRUeXBlIjoiTEVBRCIsInNjb3BlIjoibGVhZCIsImlzcyI6IjE0OTc1NDYiLCJleHAiOjE2OTM2MjU5MDksImlhdCI6MTY2MjA4OTkwOX0.zdscArJmRhIML27EtHNUB2ecj1Vmamh4Xp2QhvZDQ9tQaJhxPeJ_5lVs3YYiY5xCEFLCjeravTzAqtW-bGEReg
Content-Length: 413
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 03:38:30 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: ba618553426f0b0
vary: Accept-Encoding
content-encoding: gzip
content-length: 232
x-envoy-upstream-service-time: 1
server: istio-envoy
X-Firefox-Spdy: h2
targeting.api.drift.com/impressions/widget
54.147.21.139200 OK 13 B URL HTTP/2 targeting.api.drift.com/impressions/widget
IP 54.147.21.139:0
File type ASCII text, with no line terminators
Hash 1424eb76249899d757e4d168341a50dc
42101e71440abd46c8112a96d4d5c0dd445120ce
16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
OPTIONS /impressions/widget HTTP/1.1
Host: targeting.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 03:38:30 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: POST,OPTIONS
requestid: driftb7824f04fdbaa9de3feeb1ceed9
content-length: 13
x-envoy-upstream-service-time: 0
server: istio-envoy
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/19.c6476f9e.chunk.js
54.230.111.20200 OK 29 kB URL HTTP/2 js.driftt.com/core/assets/js/19.c6476f9e.chunk.js
IP 54.230.111.20:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5a2351becf7a8766c06b0202a1fa0a3e
91d4a227cf91012e9f12b2feb3b6b6dc2d7b700a
a897fb4a69fd2b7543bd4ba154d8ef84e1fed7398111912f620ec3bb5abd024f
GET /core/assets/js/19.c6476f9e.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?embedId=xhbxuutbsthu®ion=US&forceShow=false&skipCampaigns=false&sessionId=97892627-0cbc-437c-8bc6-897ecccb0b9b&sessionStarted=1662089906.443&campaignRefreshToken=f77d2d90-7642-4d9a-bf5e-056923b14418&hideController=false&pageLoadStartTime=1662089905432&mode=CHAT&driftEnableLog=false&secureIframe=false
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Fri, 26 Aug 2022 13:20:22 GMT
server: nginx
last-modified: Thu, 25 Aug 2022 21:13:15 GMT
etag: W/"577a5b4c4d4e15fe510f6e9d62882f27"
x-amz-server-side-encryption: AES256
x-amz-version-id: iwfAR0XWOD35qtGdWcZt_c4r2xii5fG_
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ts3fpkjLmz-qytTmMSp3bVqcJMSzGUrvpbve0GtdshPwXL_Sx_OQSg==
age: 569886
X-Firefox-Spdy: h2
targeting.api.drift.com/impressions/widget
54.147.21.139204 No Content 0 B URL HTTP/2 targeting.api.drift.com/impressions/widget
IP 54.147.21.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /impressions/widget HTTP/1.1
Host: targeting.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJzdWIiOiIxNTQ4NjA4Njc1OSIsImNsaWVudElkIjoiZjZ6dWl6ZHloeHJtN3IiLCJ1c2VySWRUeXBlIjoiTEVBRCIsInNjb3BlIjoibGVhZCIsImlzcyI6IjE0OTc1NDYiLCJleHAiOjE2OTM2MjU5MDksImlhdCI6MTY2MjA4OTkwOX0.zdscArJmRhIML27EtHNUB2ecj1Vmamh4Xp2QhvZDQ9tQaJhxPeJ_5lVs3YYiY5xCEFLCjeravTzAqtW-bGEReg
Content-Length: 619
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 02 Sep 2022 03:38:30 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
requestid: 4c34881bf9e038b2
x-envoy-upstream-service-time: 10
server: istio-envoy
X-Firefox-Spdy: h2
driftt.imgix.net/https%3A%2F%2Fdriftt.imgix.net%2Fhttps%253A%252F%252Fs3.amazonaws.com%252Fcustomer-api-avatars-prod%252F2212398%252F473e1abd8f5e13980fe044c4ebb3bb49siffzrwa3rxx%3Ffit%3Dmax%26fm%3Dpng%26h%3D200%26w%3D200%26s%3D6794ea15d67871601404dc2ac0312708?fit=max&fm=png&h=200&w=200&s=c61e8d361ec0c8c3bb4cdf4886e8123d
151.101.86.208200 OK 3.5 kB URL HTTP/2 driftt.imgix.net/https%3A%2F%2Fdriftt.imgix.net%2Fhttps%253A%252F%252Fs3.amazonaws.com%252Fcustomer-api-avatars-prod%252F2212398%252F473e1abd8f5e13980fe044c4ebb3bb49siffzrwa3rxx%3Ffit%3Dmax%26fm%3Dpng%26h%3D200%26w%3D200%26s%3D6794ea15d67871601404dc2ac0312708?fit=max&fm=png&h=200&w=200&s=c61e8d361ec0c8c3bb4cdf4886e8123d
IP 151.101.86.208:0
File type PNG image data, 47 x 47, 8-bit/color RGBA, non-interlaced\012- data
Hash a21cd6159cd9afb575ff7eff66486e0b
511f9f96b616bf148aaa46f747c4328ea766d9cb
a522982318f06b51013a4b96f60a6b78885fb3a00048fe017a85956cdc6feef9
GET /https%3A%2F%2Fdriftt.imgix.net%2Fhttps%253A%252F%252Fs3.amazonaws.com%252Fcustomer-api-avatars-prod%252F2212398%252F473e1abd8f5e13980fe044c4ebb3bb49siffzrwa3rxx%3Ffit%3Dmax%26fm%3Dpng%26h%3D200%26w%3D200%26s%3D6794ea15d67871601404dc2ac0312708?fit=max&fm=png&h=200&w=200&s=c61e8d361ec0c8c3bb4cdf4886e8123d HTTP/1.1
Host: driftt.imgix.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Fri, 02 Sep 2022 03:38:30 GMT
cache-control: public, max-age=315360000
server: imgix
x-imgix-id: f760ed54805ca145b94fada774e1d5ad9dbe67e2
x-imgix-render-farm: 01.1
date: Fri, 02 Sep 2022 03:38:30 GMT
age: 0
accept-ranges: bytes
content-type: image/png
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10053-SJC, cache-bma1662-BMA
x-cache: MISS, MISS
content-length: 3489
X-Firefox-Spdy: h2
metrics.api.drift.com/monitoring/metrics/event2/bulk
54.147.21.139200 OK 13 B URL HTTP/2 metrics.api.drift.com/monitoring/metrics/event2/bulk
IP 54.147.21.139:0
File type ASCII text, with no line terminators
Hash 1424eb76249899d757e4d168341a50dc
42101e71440abd46c8112a96d4d5c0dd445120ce
16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
OPTIONS /monitoring/metrics/event2/bulk HTTP/1.1
Host: metrics.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 03:38:31 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: POST,OPTIONS
requestid: driftc05b07c41ad9b074506373c2b7e
content-length: 13
x-envoy-upstream-service-time: 0
server: istio-envoy
X-Firefox-Spdy: h2
metrics.api.drift.com/monitoring/metrics/event2/bulk
54.147.21.139200 OK 25 B URL HTTP/2 metrics.api.drift.com/monitoring/metrics/event2/bulk
IP 54.147.21.139:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 61228f8f544358e9ea1f463f01b5853c
582766f30c82dc2df6938c8e16455fa5e329afb1
f8c91e009d219173c41b4c0b6e43ad28081f7580df6cb99a76aa0a476390ca47
POST /monitoring/metrics/event2/bulk HTTP/1.1
Host: metrics.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJzdWIiOiIxNTQ4NjA4Njc1OSIsImNsaWVudElkIjoiZjZ6dWl6ZHloeHJtN3IiLCJ1c2VySWRUeXBlIjoiTEVBRCIsInNjb3BlIjoibGVhZCIsImlzcyI6IjE0OTc1NDYiLCJleHAiOjE2OTM2MjU5MDksImlhdCI6MTY2MjA4OTkwOX0.zdscArJmRhIML27EtHNUB2ecj1Vmamh4Xp2QhvZDQ9tQaJhxPeJ_5lVs3YYiY5xCEFLCjeravTzAqtW-bGEReg
Content-Length: 648
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 03:38:31 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: 7826bbc966d30ed7
vary: Accept-Encoding
content-length: 25
x-envoy-upstream-service-time: 13
server: istio-envoy
X-Firefox-Spdy: h2
metrics.api.drift.com/monitoring/metrics/add/bulk
54.147.21.139200 OK 13 B URL HTTP/2 metrics.api.drift.com/monitoring/metrics/add/bulk
IP 54.147.21.139:0
File type ASCII text, with no line terminators
Hash 1424eb76249899d757e4d168341a50dc
42101e71440abd46c8112a96d4d5c0dd445120ce
16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
OPTIONS /monitoring/metrics/add/bulk HTTP/1.1
Host: metrics.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 03:38:34 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: POST,OPTIONS
requestid: driftab0911c42d6b282f09b26dd348a
content-length: 13
x-envoy-upstream-service-time: 1
server: istio-envoy
X-Firefox-Spdy: h2
metrics.api.drift.com/monitoring/metrics/add/bulk
54.147.21.139200 OK 25 B URL HTTP/2 metrics.api.drift.com/monitoring/metrics/add/bulk
IP 54.147.21.139:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 61228f8f544358e9ea1f463f01b5853c
582766f30c82dc2df6938c8e16455fa5e329afb1
f8c91e009d219173c41b4c0b6e43ad28081f7580df6cb99a76aa0a476390ca47
POST /monitoring/metrics/add/bulk HTTP/1.1
Host: metrics.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJzdWIiOiIxNTQ4NjA4Njc1OSIsImNsaWVudElkIjoiZjZ6dWl6ZHloeHJtN3IiLCJ1c2VySWRUeXBlIjoiTEVBRCIsInNjb3BlIjoibGVhZCIsImlzcyI6IjE0OTc1NDYiLCJleHAiOjE2OTM2MjU5MDksImlhdCI6MTY2MjA4OTkwOX0.zdscArJmRhIML27EtHNUB2ecj1Vmamh4Xp2QhvZDQ9tQaJhxPeJ_5lVs3YYiY5xCEFLCjeravTzAqtW-bGEReg
Content-Length: 539
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 03:38:34 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: 80530ca5e875a858
vary: Accept-Encoding
content-length: 25
x-envoy-upstream-service-time: 0
server: istio-envoy
X-Firefox-Spdy: h2
firstcapitagecu.com/js/smooth-scroll.js
176.31.60.250200 OK 0 B URL HTTP/1.1 firstcapitagecu.com/js/smooth-scroll.js
IP 176.31.60.250:0
Analyzer Verdict Alert fortinet Phishing
GET /js/smooth-scroll.js HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 106773
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
js.driftt.com/core/chat?region=US&driftEnableLog=false&pageLoadStartTime=1662089905432
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/chat?region=US&driftEnableLog=false&pageLoadStartTime=1662089905432
IP 54.230.111.20:0
GET /core/chat?region=US&driftEnableLog=false&pageLoadStartTime=1662089905432 HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
server: nginx
last-modified: Wed, 31 Aug 2022 18:23:27 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: Y5Qc9YCv9HnUtWRsyFhahbsVqQ0FTNR4
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
date: Fri, 02 Sep 2022 03:38:27 GMT
cache-control: no-cache
etag: W/"fee11af2184d7af2cbe07132a525513a"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GpsxbxlakfCx2hb9OACJiVomQt_6zsYIOaOaVmkMhlAVktMsAj53Tg==
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/39.0cc86423.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/39.0cc86423.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/39.0cc86423.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?embedId=xhbxuutbsthu®ion=US&forceShow=false&skipCampaigns=false&sessionId=97892627-0cbc-437c-8bc6-897ecccb0b9b&sessionStarted=1662089906.443&campaignRefreshToken=f77d2d90-7642-4d9a-bf5e-056923b14418&hideController=false&pageLoadStartTime=1662089905432&mode=CHAT&driftEnableLog=false&secureIframe=false
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Thu, 21 Jul 2022 05:13:08 GMT
server: nginx
last-modified: Wed, 20 Jul 2022 16:44:36 GMT
etag: W/"3cbfbd7bb911f7cfc3b4394f334cdb67"
x-amz-server-side-encryption: AES256
x-amz-version-id: oKmg4FrWOfQibH6GiwTJD5mzxlfV.GJ_
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jE-S2XtU-zbyvoQbaA3Tmzbsuo4IJbl9RvxrP2pB3i0SQl5Lk9Mztg==
age: 3709519
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/18.c13b3a33.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/18.c13b3a33.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/18.c13b3a33.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?embedId=xhbxuutbsthu®ion=US&forceShow=false&skipCampaigns=false&sessionId=97892627-0cbc-437c-8bc6-897ecccb0b9b&sessionStarted=1662089906.443&campaignRefreshToken=f77d2d90-7642-4d9a-bf5e-056923b14418&hideController=false&pageLoadStartTime=1662089905432&mode=CHAT&driftEnableLog=false&secureIframe=false
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Wed, 06 Jul 2022 01:05:58 GMT
server: nginx
last-modified: Fri, 01 Jul 2022 20:20:56 GMT
etag: W/"2e0e21fb7fd3dd146cc688e39d01d42e"
x-amz-server-side-encryption: AES256
x-amz-version-id: pxNOQ93Ry3SgjvjCpTdQZ2Sx3uMbDhCG
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: A_N37RILLHhWO1u8SkxoGfyG5ya2QmEG51V9qWfp3vOnmabYwiMJOA==
age: 5020349
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/11.639238ba.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/11.639238ba.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/11.639238ba.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?embedId=xhbxuutbsthu®ion=US&forceShow=false&skipCampaigns=false&sessionId=97892627-0cbc-437c-8bc6-897ecccb0b9b&sessionStarted=1662089906.443&campaignRefreshToken=f77d2d90-7642-4d9a-bf5e-056923b14418&hideController=false&pageLoadStartTime=1662089905432&mode=CHAT&driftEnableLog=false&secureIframe=false
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Sun, 03 Jul 2022 23:15:06 GMT
server: nginx
last-modified: Fri, 01 Jul 2022 20:20:55 GMT
etag: W/"4049f38c00add1738dc4806148ff8829"
x-amz-server-side-encryption: AES256
x-amz-version-id: 7WrloWWSc22pVf.7ICrUs7406unnhgom
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KFIIBepXAiHhmRLE6nbk0MKp1u7pfVq5ZBr_2bL3CZqsM2jOV03oHA==
age: 5199801
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/3.07aa08a5.chunk.css
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/css/3.07aa08a5.chunk.css
IP 54.230.111.20:0
GET /core/assets/css/3.07aa08a5.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?region=US&driftEnableLog=false&pageLoadStartTime=1662089905432
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Sun, 03 Jul 2022 23:15:07 GMT
server: nginx
last-modified: Fri, 01 Jul 2022 20:20:54 GMT
etag: W/"189aeffd571884559dababa22c66d75a"
x-amz-server-side-encryption: AES256
x-amz-version-id: tCdSVILzeupU.nQrAVkA0bwYUW3c2XL3
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1hcRq-jkpuInM9oCqsuSgX_YxJqYHNaeczLU7ufRZdcbagNuUvcpQQ==
age: 5199801
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/27.59c53bf0.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/27.59c53bf0.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/27.59c53bf0.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?embedId=xhbxuutbsthu®ion=US&forceShow=false&skipCampaigns=false&sessionId=97892627-0cbc-437c-8bc6-897ecccb0b9b&sessionStarted=1662089906.443&campaignRefreshToken=f77d2d90-7642-4d9a-bf5e-056923b14418&hideController=false&pageLoadStartTime=1662089905432&mode=CHAT&driftEnableLog=false&secureIframe=false
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Wed, 31 Aug 2022 18:23:27 GMT
server: nginx
last-modified: Wed, 31 Aug 2022 18:10:09 GMT
etag: W/"8a9a57d9c18d146019a9a91f3fa26db1"
x-amz-server-side-encryption: AES256
x-amz-version-id: GqYhAS8BbCVDI5aFKkQ5l2M8CdcQR368
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: r12UfWBEIBO_Jg5S8lkuTvOVI5MxqAO1ouo9_u11gM12g2bYnchnvg==
age: 119700
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/8.611ead2e.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/8.611ead2e.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/8.611ead2e.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?embedId=xhbxuutbsthu®ion=US&forceShow=false&skipCampaigns=false&sessionId=97892627-0cbc-437c-8bc6-897ecccb0b9b&sessionStarted=1662089906.443&campaignRefreshToken=f77d2d90-7642-4d9a-bf5e-056923b14418&hideController=false&pageLoadStartTime=1662089905432&mode=CHAT&driftEnableLog=false&secureIframe=false
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Thu, 09 Jun 2022 19:59:49 GMT
server: nginx
last-modified: Thu, 09 Jun 2022 14:58:14 GMT
etag: W/"6aa29962f34a8e117268142c7cc1cc3d"
x-amz-server-side-encryption: AES256
x-amz-version-id: _RZ1GDjUm5KuW3ooz6jLFMyJffaKXq96
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mBL8LzhlS1JUTE5X3z8khzUJDmtbvMiSdB9MifGjfIkasSskVFH1Aw==
age: 7285118
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/24.6872e542.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/24.6872e542.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/24.6872e542.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?embedId=xhbxuutbsthu®ion=US&forceShow=false&skipCampaigns=false&sessionId=97892627-0cbc-437c-8bc6-897ecccb0b9b&sessionStarted=1662089906.443&campaignRefreshToken=f77d2d90-7642-4d9a-bf5e-056923b14418&hideController=false&pageLoadStartTime=1662089905432&mode=CHAT&driftEnableLog=false&secureIframe=false
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Fri, 26 Aug 2022 13:20:22 GMT
server: nginx
last-modified: Thu, 25 Aug 2022 21:13:15 GMT
etag: W/"d5fca8bbc4fcf7b492843bcb9a12189b"
x-amz-server-side-encryption: AES256
x-amz-version-id: myoo_FG2jXaPzinerG5A.TSm8zp.AVWF
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qara3fBDeIGyOHDEAl04u_zayCqbBLtEFpf_PgwuzY-8GCU3P4MC2g==
age: 569885
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/0.0b2ebd4a.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/0.0b2ebd4a.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/0.0b2ebd4a.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?embedId=xhbxuutbsthu®ion=US&forceShow=false&skipCampaigns=false&sessionId=97892627-0cbc-437c-8bc6-897ecccb0b9b&sessionStarted=1662089906.443&campaignRefreshToken=f77d2d90-7642-4d9a-bf5e-056923b14418&hideController=false&pageLoadStartTime=1662089905432&mode=CHAT&driftEnableLog=false&secureIframe=false
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Wed, 22 Jun 2022 23:25:32 GMT
server: nginx
last-modified: Fri, 17 Jun 2022 14:39:26 GMT
etag: W/"c5efcdc9e465604f32cf24af10fd6c13"
x-amz-server-side-encryption: AES256
x-amz-version-id: FXhpBdntUhclEQbRyN38j73SJPN5DG6s
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xCY7EBb2I5Dx01N8eKezFKQC0QhdHu3Lljc2Y2TgubtMaZkXW4T9Kg==
age: 6149575
X-Firefox-Spdy: h2
bootstrap.api.drift.com/widget_bootstrap
50.16.7.188200 OK 0 B URL HTTP/2 bootstrap.api.drift.com/widget_bootstrap
IP 50.16.7.188:0
POST /widget_bootstrap HTTP/1.1
Host: bootstrap.api.drift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 502
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 03:38:29 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: e199f4f4630a128c
vary: Accept-Encoding
content-encoding: gzip
x-envoy-upstream-service-time: 219
server: istio-envoy
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/34.3cbd9261.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/34.3cbd9261.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/34.3cbd9261.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?region=US&driftEnableLog=false&pageLoadStartTime=1662089905432
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Fri, 26 Aug 2022 13:20:23 GMT
server: nginx
last-modified: Thu, 25 Aug 2022 21:13:15 GMT
etag: W/"748f87dc8e48bdf52edce2868c5c428c"
x-amz-server-side-encryption: AES256
x-amz-version-id: 9WcUo8FUpPIrUIsoQRc2Y_xjFIjq3R62
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: p85fQZJYeUVFLfkBfAEOhjE7VcWTPPYUyfh5Sx4IKZwA2sbluONbYw==
age: 569885
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/45.772158c8.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/45.772158c8.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/45.772158c8.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?embedId=xhbxuutbsthu®ion=US&forceShow=false&skipCampaigns=false&sessionId=97892627-0cbc-437c-8bc6-897ecccb0b9b&sessionStarted=1662089906.443&campaignRefreshToken=f77d2d90-7642-4d9a-bf5e-056923b14418&hideController=false&pageLoadStartTime=1662089905432&mode=CHAT&driftEnableLog=false&secureIframe=false
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Mon, 13 Jun 2022 06:43:42 GMT
server: nginx
last-modified: Fri, 10 Jun 2022 19:03:31 GMT
etag: W/"e683acc1d1d7a31204545c14f2e45dfc"
x-amz-server-side-encryption: AES256
x-amz-version-id: aEgB7rZxvs_rhrc47mnGdmzprDAsXGNL
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0BNTwijLF4USumnQsL4UBvT6MNMxypEmx95WAK1CxJKQb_tlaT0VdA==
age: 6987285
X-Firefox-Spdy: h2
firstcapitagecu.com/css/bootstrap.css
176.31.60.250200 OK 0 B URL HTTP/1.1 firstcapitagecu.com/css/bootstrap.css
IP 176.31.60.250:0
GET /css/bootstrap.css HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 155030
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
fonts.googleapis.com/css?family=Montserrat:400,700%7COpen+Sans:400,300,600,700
216.58.211.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat:400,700%7COpen+Sans:400,300,600,700
IP 216.58.211.10:0
GET /css?family=Montserrat:400,700%7COpen+Sans:400,300,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstcapitagecu.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Sep 2022 03:38:26 GMT
date: Fri, 02 Sep 2022 03:38:26 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/16.fde6fa28.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/16.fde6fa28.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/16.fde6fa28.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?embedId=xhbxuutbsthu®ion=US&forceShow=false&skipCampaigns=false&sessionId=97892627-0cbc-437c-8bc6-897ecccb0b9b&sessionStarted=1662089906.443&campaignRefreshToken=f77d2d90-7642-4d9a-bf5e-056923b14418&hideController=false&pageLoadStartTime=1662089905432&mode=CHAT&driftEnableLog=false&secureIframe=false
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Thu, 21 Jul 2022 03:22:54 GMT
server: nginx
last-modified: Wed, 20 Jul 2022 16:44:35 GMT
etag: W/"90795af8c950a50300cf801b300db7ab"
x-amz-server-side-encryption: AES256
x-amz-version-id: Czs8PHX517U6kDfcy5c9LsKW5uxut099
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XdYddPQonm4MxMMF5nGe68GWDfspPQl4GkDwo9y6l8ewGsxsjUnUlg==
age: 3716133
X-Firefox-Spdy: h2
firstcapitagecu.com/fonts/icomoonb7ff.ttf?w33dbp
176.31.60.250200 OK 0 B URL HTTP/1.1 firstcapitagecu.com/fonts/icomoonb7ff.ttf?w33dbp
IP 176.31.60.250:0
GET /fonts/icomoonb7ff.ttf?w33dbp HTTP/1.1
Host: firstcapitagecu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://firstcapitagecu.com/css/icons.css
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 03:38:25 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2020 05:34:46 GMT
Accept-Ranges: bytes
Content-Length: 345336
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: font/ttf
js.driftt.com/core/assets/js/main~493df0b3.ac3a9470.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/main~493df0b3.ac3a9470.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/main~493df0b3.ac3a9470.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?embedId=xhbxuutbsthu®ion=US&forceShow=false&skipCampaigns=false&sessionId=97892627-0cbc-437c-8bc6-897ecccb0b9b&sessionStarted=1662089906.443&campaignRefreshToken=f77d2d90-7642-4d9a-bf5e-056923b14418&hideController=false&pageLoadStartTime=1662089905432&mode=CHAT&driftEnableLog=false&secureIframe=false
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Sun, 03 Jul 2022 23:15:04 GMT
server: nginx
last-modified: Fri, 01 Jul 2022 20:20:58 GMT
etag: W/"ab6db2ea528099e4b4bcafc90b1f14a6"
x-amz-server-side-encryption: AES256
x-amz-version-id: hiapbHKSV4DShQCB29I8q9ZEQ_orBvh8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CpAzzkMo4Iu-J-Tc_RWAgsjSOhMqRW4KjW-lz7SEE1Dnj5jkcRL5ng==
age: 5199803
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/25.8f107198.chunk.js
54.230.111.20200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/25.8f107198.chunk.js
IP 54.230.111.20:0
GET /core/assets/js/25.8f107198.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?embedId=xhbxuutbsthu®ion=US&forceShow=false&skipCampaigns=false&sessionId=97892627-0cbc-437c-8bc6-897ecccb0b9b&sessionStarted=1662089906.443&campaignRefreshToken=f77d2d90-7642-4d9a-bf5e-056923b14418&hideController=false&pageLoadStartTime=1662089905432&mode=CHAT&driftEnableLog=false&secureIframe=false
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Sun, 03 Jul 2022 23:15:05 GMT
server: nginx
last-modified: Fri, 01 Jul 2022 20:20:56 GMT
etag: W/"e2511c69e5bdc03467952abaccdb5383"
x-amz-server-side-encryption: AES256
x-amz-version-id: WcCqQoAG3H9hj_QsryoONfIqJXy6i_Vu
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DkbVvzFQbV6dQ97EihfXMloqn-_xW4uUOgwEdCWa8kXchkVyATPrXw==
age: 5199802
X-Firefox-Spdy: h2