| rtm-att.directly.com/att-expert.html |  143.204.55.81 | 200 OK | 3.4 kB |
URL User Request GET HTTP/2rtm-att.directly.com/att-expert.html IP143.204.55.81:443
CertificateIssuerAmazon Subject*.directly.com Fingerprint89:A6:AD:2E:DA:51:38:E0:E6:9F:EC:CB:D5:F9:90:C5:DD:29:77:29 ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeHTML document, ASCII text Hashfdb9ae458997dd50841e9ecfd6d378a5 527b692b3ca8c849fca2ac2de0bb83372baf40f3 e20e605a31e3224f6e0bd2d0505a623e607db6a572a4ab42e48efc252a35db27
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | AT&T Inc. | | PhishTank | phishing | Other |
GET /att-expert.html HTTP/1.1
Host: rtm-att.directly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-length: 3357
date: Thu, 02 May 2024 05:39:25 GMT
last-modified: Tue, 28 Jun 2022 15:39:07 GMT
etag: "fdb9ae458997dd50841e9ecfd6d378a5"
x-amz-server-side-encryption: AES256
x-amz-version-id: KkvWRaI5y2sj2fhNgIPlhCzmB_KNvzIB
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kM4xBjSpsNijIh2HwGe_6ywumceqZeDosWqEHD4tleb2PHdttULGpQ==
age: 39217
X-Firefox-Spdy: h2
|
|
| rtm-att.directly.com/css/index.css?v=1 | 143.204.55.81 | 200 OK | 1.0 kB |
URL GET HTTP/2rtm-att.directly.com/css/index.css?v=1 IP143.204.55.81:443
Requested byhttps://rtm-att.directly.com/att-expert.html CertificateIssuerAmazon Subject*.directly.com Fingerprint89:A6:AD:2E:DA:51:38:E0:E6:9F:EC:CB:D5:F9:90:C5:DD:29:77:29 ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
Hash0ebbee6c553a52d9afea3b07b3181b87 47ef16c0f39fd3eb8c43106e155127d0b7c82066 76f0bbf6db6f3d2d923fb3de21592385a4212435df684d9c235266288b036d46
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | AT&T Inc. |
GET /css/index.css?v=1 HTTP/1.1
Host: rtm-att.directly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rtm-att.directly.com/att-expert.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 1042
date: Thu, 02 May 2024 10:48:28 GMT
last-modified: Mon, 15 Jun 2020 05:17:43 GMT
etag: "0ebbee6c553a52d9afea3b07b3181b87"
x-amz-server-side-encryption: AES256
x-amz-version-id: ITKqvU932YgwtrgvpdLaXvRWazOrs9mq
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: NLd4Ov7I_6vl8qpW9ycQIt6HxWbOouWDdpKC5kCcUKE_y_NZaFGQgQ==
age: 20674
X-Firefox-Spdy: h2
|
|
| rtm-att.directly.com/css/index.css?v=1 | 143.204.55.81 | 200 OK | 1.0 kB |
URL GET HTTP/2rtm-att.directly.com/css/index.css?v=1 IP143.204.55.81:443
Requested byhttps://rtm-att.directly.com/att-expert.html CertificateIssuerAmazon Subject*.directly.com Fingerprint89:A6:AD:2E:DA:51:38:E0:E6:9F:EC:CB:D5:F9:90:C5:DD:29:77:29 ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
Hash0ebbee6c553a52d9afea3b07b3181b87 47ef16c0f39fd3eb8c43106e155127d0b7c82066 76f0bbf6db6f3d2d923fb3de21592385a4212435df684d9c235266288b036d46
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | AT&T Inc. |
GET /css/index.css?v=1 HTTP/1.1
Host: rtm-att.directly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rtm-att.directly.com/att-expert.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 1042
date: Thu, 02 May 2024 10:48:28 GMT
last-modified: Mon, 15 Jun 2020 05:17:43 GMT
etag: "0ebbee6c553a52d9afea3b07b3181b87"
x-amz-server-side-encryption: AES256
x-amz-version-id: ITKqvU932YgwtrgvpdLaXvRWazOrs9mq
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: R0x6Hm2eWOhjiofgTt9aawjMx_NbeIsEMcpQmm6M5bB5ey3IIU_Mug==
age: 20674
X-Firefox-Spdy: h2
|
|
| rtm-att.directly.com/css/normalize.css | 143.204.55.81 | 200 OK | 6.7 kB |
URL GET HTTP/2rtm-att.directly.com/css/normalize.css IP143.204.55.81:443
Requested byhttps://rtm-att.directly.com/att-expert.html CertificateIssuerAmazon Subject*.directly.com Fingerprint89:A6:AD:2E:DA:51:38:E0:E6:9F:EC:CB:D5:F9:90:C5:DD:29:77:29 ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
Hash87c6dffe66915f887cf4bc01a73e2a14 5e2b4857929d44c85e03d44adf958e274644a1c5 ca34c47cbf06504fb3b6f19fdf21a6fcf7f269b522f93823cc7c086c0738ae5e
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | AT&T Inc. |
GET /css/normalize.css HTTP/1.1
Host: rtm-att.directly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rtm-att.directly.com/att-expert.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 6673
date: Thu, 02 May 2024 10:48:28 GMT
last-modified: Tue, 07 May 2019 18:27:43 GMT
etag: "87c6dffe66915f887cf4bc01a73e2a14"
x-amz-server-side-encryption: AES256
x-amz-version-id: EpB6RPkxf4bE6AdCOko0qKKQxy7LawXt
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: nciAnoh2xObTjeNmJKeMVAuERFPK1NSVyuLrqCjl4zlxFIvJbhLxbw==
age: 20674
X-Firefox-Spdy: h2
|
|
| rtm-att.directly.com/css/normalize.css | 143.204.55.81 | 200 OK | 6.7 kB |
URL GET HTTP/2rtm-att.directly.com/css/normalize.css IP143.204.55.81:443
Requested byhttps://rtm-att.directly.com/att-expert.html CertificateIssuerAmazon Subject*.directly.com Fingerprint89:A6:AD:2E:DA:51:38:E0:E6:9F:EC:CB:D5:F9:90:C5:DD:29:77:29 ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
Hash87c6dffe66915f887cf4bc01a73e2a14 5e2b4857929d44c85e03d44adf958e274644a1c5 ca34c47cbf06504fb3b6f19fdf21a6fcf7f269b522f93823cc7c086c0738ae5e
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | AT&T Inc. |
GET /css/normalize.css HTTP/1.1
Host: rtm-att.directly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rtm-att.directly.com/att-expert.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 6673
date: Thu, 02 May 2024 10:48:28 GMT
last-modified: Tue, 07 May 2019 18:27:43 GMT
etag: "87c6dffe66915f887cf4bc01a73e2a14"
x-amz-server-side-encryption: AES256
x-amz-version-id: EpB6RPkxf4bE6AdCOko0qKKQxy7LawXt
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Yh0_3A4iToE2-4j9IPBFj-gJ3zVpYT3tUH-qzde8xBw5a92ghC3YqQ==
age: 20674
X-Firefox-Spdy: h2
|
|
| rtm-att.directly.com/img/logo.png | 143.204.55.81 | 200 OK | 25 kB |
URL GET HTTP/2rtm-att.directly.com/img/logo.png IP143.204.55.81:443
Requested byhttps://rtm-att.directly.com/att-expert.html CertificateIssuerAmazon Subject*.directly.com Fingerprint89:A6:AD:2E:DA:51:38:E0:E6:9F:EC:CB:D5:F9:90:C5:DD:29:77:29 ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typePNG image data, 268 x 266, 8-bit/color RGBA, non-interlaced Hash2419f21af1c580051a3b6a96e05fee35 dcdb7b4d33193982263a00fcfba295b17fa7a206 4945ab864ce0ab3a7ed67cf35801257b7412f03911bf4fd461249a75b3aaf907
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | AT&T Inc. |
GET /img/logo.png HTTP/1.1
Host: rtm-att.directly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rtm-att.directly.com/att-expert.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 25335
date: Thu, 02 May 2024 10:48:28 GMT
last-modified: Tue, 07 May 2019 18:27:43 GMT
etag: "2419f21af1c580051a3b6a96e05fee35"
x-amz-server-side-encryption: AES256
x-amz-version-id: mJuPL8eQ7eU.2nHJqs85dYdAQq2z4g2I
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HHujOOuUivYv3cTZj57ZG87vIRJG2fXWVIf1vcgmu5PlfmF0bAPBbA==
age: 20674
X-Firefox-Spdy: h2
|
|
| rtm-att.directly.com/js/url-search-params-polyfill.js | 143.204.55.81 | 200 OK | 9.4 kB |
URL GET HTTP/2rtm-att.directly.com/js/url-search-params-polyfill.js IP143.204.55.81:443
Requested byhttps://rtm-att.directly.com/att-expert.html CertificateIssuerAmazon Subject*.directly.com Fingerprint89:A6:AD:2E:DA:51:38:E0:E6:9F:EC:CB:D5:F9:90:C5:DD:29:77:29 ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text Hash53ac48c9eb6e65625a96e7272a6f6e93 9756fbe8f43e66af1d0dd6f4f49b557202d90c97 ad0544e52367e81568c07f0efc053180c8e00ec3f7dbf3ff183c8972ecda3562
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | AT&T Inc. |
GET /js/url-search-params-polyfill.js HTTP/1.1
Host: rtm-att.directly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rtm-att.directly.com/att-expert.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 9414
date: Thu, 02 May 2024 10:48:28 GMT
last-modified: Tue, 02 Jul 2019 05:34:00 GMT
etag: "53ac48c9eb6e65625a96e7272a6f6e93"
x-amz-server-side-encryption: AES256
x-amz-version-id: BXF.izAl4a7YFKXhFqvJZM0mrEkeF9kL
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: nre3rKPi148byCJtKUySXxQ_DiIv0XKyZirjPU76rW1WeD32vjipOw==
age: 20674
X-Firefox-Spdy: h2
|
|
| rtm-att.directly.com/js/att-rtm.js | 143.204.55.81 | 200 OK | 14 kB |
URL GET HTTP/2rtm-att.directly.com/js/att-rtm.js IP143.204.55.81:443
Requested byhttps://rtm-att.directly.com/att-expert.html CertificateIssuerAmazon Subject*.directly.com Fingerprint89:A6:AD:2E:DA:51:38:E0:E6:9F:EC:CB:D5:F9:90:C5:DD:29:77:29 ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text Hash5516623b94f135b54f0e01fed877c62f 99a0a78112aea7c79cf8bd6d921b4e5261687a19 79680c2ae1c8e28f6e2f4b0331577b5ff9e99ebb96ce19736caca2774c5733ea
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | AT&T Inc. |
GET /js/att-rtm.js HTTP/1.1
Host: rtm-att.directly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rtm-att.directly.com/att-expert.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 14393
date: Thu, 02 May 2024 10:48:28 GMT
last-modified: Thu, 10 Feb 2022 01:06:28 GMT
etag: "5516623b94f135b54f0e01fed877c62f"
x-amz-server-side-encryption: AES256
x-amz-version-id: SE5bulYB0gHEYLcu3Cj3oTmP2zskz_M1
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Ozex1sQDO-Gjcyk0Zk0vffOo5UkgNYaRFJ8tUmKsee7IzkQrst7L1Q==
age: 20674
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/bowser@2.5.2/es5.min.js | 151.101.193.229 | 200 OK | 5.6 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/bowser@2.5.2/es5.min.js IP151.101.193.229:443
Requested byhttps://rtm-att.directly.com/att-expert.html CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (23509) Hashe31569852879e384fca4cd0b1125fe3e 75feb4a508829fb9a8f9e62fb643e35b5aca2aea 999ce18ec498b4cdabe8648204b88424be0027e0d4f70414bccbc08a67997dbb
GET /npm/bowser@2.5.2/es5.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rtm-att.directly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 2.5.2
x-jsd-version-type: version
etag: W/"5cac-df60pQiCn7mo+eYvtkPjW1rKKuo"
content-encoding: br
accept-ranges: bytes
age: 2313115
date: Thu, 02 May 2024 16:33:01 GMT
x-served-by: cache-fra-eddf8230116-FRA, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5645
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP216.58.207.227:443
Requested byhttps://rtm-att.directly.com/att-expert.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://rtm-att.directly.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:55:00 GMT
expires: Fri, 02 May 2025 01:55:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 52681
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://rtm-att.directly.com/att-expert.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://rtm-att.directly.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:01:10 GMT
expires: Fri, 02 May 2025 02:01:10 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 52311
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| rtm-att.directly.com/img/logo.png | 143.204.55.81 | 200 OK | 25 kB |
URL GET HTTP/2rtm-att.directly.com/img/logo.png IP143.204.55.81:443
Requested byhttps://rtm-att.directly.com/att-expert.html CertificateIssuerAmazon Subject*.directly.com Fingerprint89:A6:AD:2E:DA:51:38:E0:E6:9F:EC:CB:D5:F9:90:C5:DD:29:77:29 ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typePNG image data, 268 x 266, 8-bit/color RGBA, non-interlaced Hash2419f21af1c580051a3b6a96e05fee35 dcdb7b4d33193982263a00fcfba295b17fa7a206 4945ab864ce0ab3a7ed67cf35801257b7412f03911bf4fd461249a75b3aaf907
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | AT&T Inc. |
GET /img/logo.png HTTP/1.1
Host: rtm-att.directly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rtm-att.directly.com/att-expert.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 25335
date: Thu, 02 May 2024 10:48:28 GMT
last-modified: Tue, 07 May 2019 18:27:43 GMT
etag: "2419f21af1c580051a3b6a96e05fee35"
x-amz-server-side-encryption: AES256
x-amz-version-id: mJuPL8eQ7eU.2nHJqs85dYdAQq2z4g2I
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Grio-10Tflylj_JhiL0TQdG75XMd13yNwKk7rVqXjkZ25lU93yRjtQ==
age: 20675
X-Firefox-Spdy: h2
|
|
| www.directly.com/widgets/rtm/style.css?v=c27ec6c3ba00dffddca4 | 54.161.53.143 | 200 OK | 1.3 kB |
URL GET HTTP/2www.directly.com/widgets/rtm/style.css?v=c27ec6c3ba00dffddca4 IP54.161.53.143:443
Requested byhttps://rtm-att.directly.com/att-expert.html CertificateIssuerAmazon Subject*.directly.com Fingerprint89:A6:AD:2E:DA:51:38:E0:E6:9F:EC:CB:D5:F9:90:C5:DD:29:77:29 ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
Hash125a1e0522583a1ee6fc4419e1d5369a ce12d1d02881ecd6e86e21f38db738e6d725c7ab 655bcfc8c3e8483dfa186a0b3e696f65ca691bfd4176baf5ffe1a22bc5ade034
GET /widgets/rtm/style.css?v=c27ec6c3ba00dffddca4 HTTP/1.1
Host: www.directly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://rtm-att.directly.com
DNT: 1
Connection: keep-alive
Referer: https://rtm-att.directly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 02 May 2024 16:33:02 GMT
content-type: text/css
content-length: 1289
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
accept-ranges: bytes
etag: W/"5272-1714146110000-gzip"
last-modified: Fri, 26 Apr 2024 15:41:50 GMT
cache-control: max-age=7200
expires: Mon, 01 Jul 2024 16:33:02 GMT
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-headers: origin, x-requested-with, content-type, x-csrf-token
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
access-control-allow-origin: *
set-cookie: JSESSIONID=9AF5752E20F077724A9997718F0A7E48-n1.app1; Domain=.directly.com; Path=/; Secure; HttpOnly
AWSALBAPP-0=AAAAAAAAAACKYMHcCE3Yzr/JzHkqiok87JNovv7n/82rjUTAH7ORFRnoXcCK7LxxSQ+Wt4j5z6QyrjUoVQjCf9Ykfrti+0nWaCcCk3zPx3EYuK641zDD8TVhkCT4za5hQFePHHlLn3vyTLM=; Expires=Thu, 09 May 2024 16:33:02 GMT; Path=/
AWSALBAPP-1=_remove_; Expires=Thu, 09 May 2024 16:33:02 GMT; Path=/
AWSALBAPP-2=_remove_; Expires=Thu, 09 May 2024 16:33:02 GMT; Path=/
AWSALBAPP-3=_remove_; Expires=Thu, 09 May 2024 16:33:02 GMT; Path=/
X-Firefox-Spdy: h2
|
|
| www.directly.com/assets/bundles/chat.bundle-1b681862b1fd71fd743c675184bc380c.css | 54.161.53.143 | 200 OK | 11 kB |
URL GET HTTP/2www.directly.com/assets/bundles/chat.bundle-1b681862b1fd71fd743c675184bc380c.css IP54.161.53.143:443
Requested byhttps://www.directly.com/chat?cfgId=2c9985ab815b451c01818c819acd7dee CertificateIssuerAmazon Subject*.directly.com Fingerprint89:A6:AD:2E:DA:51:38:E0:E6:9F:EC:CB:D5:F9:90:C5:DD:29:77:29 ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeUnicode text, UTF-8 text, with very long lines (57669), with no line terminators Hasha871d6c4c7eb852f4138d0922dba7208 807ca452a050de1742240cf7490ec695748ccf85 992d35123f8124d35d9196950b6970550a291369085cc7472b224988f8fc7419
GET /assets/bundles/chat.bundle-1b681862b1fd71fd743c675184bc380c.css HTTP/1.1
Host: www.directly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.directly.com/chat?cfgId=2c9985ab815b451c01818c819acd7dee
Cookie: JSESSIONID=27BEF06E763979F567D17B6F6012176D-n1.app1; AWSALBAPP-0=AAAAAAAAAACmxU/BFHt1VkuLNOhCPrdeT80rQaSLzrWqh/lQFiviX71sJ1vxd6rNczt27yTyRkp2B0ehKfW+cy0iQuKMhBKWOZbKtCn24RibYRktbokiO3PEDPl9QNlQJ424X4J4FFvh3a8=; AWSALBAPP-1=_remove_; AWSALBAPP-2=_remove_; AWSALBAPP-3=_remove_
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 02 May 2024 16:33:02 GMT
content-type: text/css
content-length: 10591
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
last-modified: Fri, 26 Apr 2024 15:49:24 GMT
etag: "e155-gzip"
accept-ranges: bytes
cache-control: max-age=5184000
expires: Mon, 01 Jul 2024 16:33:02 GMT
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-headers: origin, x-requested-with, content-type, x-csrf-token
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
x-frame-options: sameOrigin
x-xss-protection: 1
x-content-type-options: nosniff
set-cookie: AWSALBAPP-0=AAAAAAAAAAA3pVW1YuLMxWWucyxfE+YhshALKkps/vzDhpw5ZXQ6PQwv6txf0vnX7Cyy3nAMnCe9Cn91PI8COYYEYa9phLxXIjCxcYQFz5CS3iTnRZLCPnYotOXeVYLDhA/MaQeohMH4KAQ=; Expires=Thu, 09 May 2024 16:33:02 GMT; Path=/
AWSALBAPP-1=_remove_; Expires=Thu, 09 May 2024 16:33:02 GMT; Path=/
AWSALBAPP-2=_remove_; Expires=Thu, 09 May 2024 16:33:02 GMT; Path=/
AWSALBAPP-3=_remove_; Expires=Thu, 09 May 2024 16:33:02 GMT; Path=/
X-Firefox-Spdy: h2
|
|
| www.directly.com/chat?cfgId=2c9985ab815b451c01818c819acd7dee | 54.161.53.143 | 200 OK | 2.6 kB |
URL GET HTTP/2www.directly.com/chat?cfgId=2c9985ab815b451c01818c819acd7dee IP54.161.53.143:443
Requested byhttps://rtm-att.directly.com/att-expert.html CertificateIssuerAmazon Subject*.directly.com Fingerprint89:A6:AD:2E:DA:51:38:E0:E6:9F:EC:CB:D5:F9:90:C5:DD:29:77:29 ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hashdc0e7428de351f36e7b603dc84e35e81 cd5c4f27346044ae4eae1e4bf531ab928bbbd653 c6195e627c2ed4135597835338790b16d13d51f13e7a6b06f8f9c04849bb726f
GET /chat?cfgId=2c9985ab815b451c01818c819acd7dee HTTP/1.1
Host: www.directly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rtm-att.directly.com/att-expert.html
DNT: 1
Connection: keep-alive
Cookie: JSESSIONID=27BEF06E763979F567D17B6F6012176D-n1.app1; AWSALBAPP-0=AAAAAAAAAAAuJTONA3lJNdCPAEVEAb+ALj8YPq7VpBTYAQI6GHB4Dn1T8Fte1iFDoADfXYk/JTjP4WEmMjtUD/K5YoUcM2J1ET1FYH//1vuVs1xYghO2lwNj+4+nZ4b0dMms/gWNuUnJAY4=; AWSALBAPP-1=_remove_; AWSALBAPP-2=_remove_; AWSALBAPP-3=_remove_
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 02 May 2024 16:33:02 GMT
content-type: text/html;charset=utf-8
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
x-xss-protection: 1
x-content-type-options: noSniff
cache-control: private
content-language: en-US
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-headers: origin, x-requested-with, content-type, x-csrf-token
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
set-cookie: AWSALBAPP-0=AAAAAAAAAACmxU/BFHt1VkuLNOhCPrdeT80rQaSLzrWqh/lQFiviX71sJ1vxd6rNczt27yTyRkp2B0ehKfW+cy0iQuKMhBKWOZbKtCn24RibYRktbokiO3PEDPl9QNlQJ424X4J4FFvh3a8=; Expires=Thu, 09 May 2024 16:33:02 GMT; Path=/
AWSALBAPP-1=_remove_; Expires=Thu, 09 May 2024 16:33:02 GMT; Path=/
AWSALBAPP-2=_remove_; Expires=Thu, 09 May 2024 16:33:02 GMT; Path=/
AWSALBAPP-3=_remove_; Expires=Thu, 09 May 2024 16:33:02 GMT; Path=/
X-Firefox-Spdy: h2
|
|
| www.directly.com/assets/build/chat.528b5906db1b02464f56.js | 54.161.53.143 | 200 OK | 322 kB |
URL GET HTTP/2www.directly.com/assets/build/chat.528b5906db1b02464f56.js IP54.161.53.143:443
Requested byhttps://www.directly.com/chat?cfgId=2c9985ab815b451c01818c819acd7dee CertificateIssuerAmazon Subject*.directly.com Fingerprint89:A6:AD:2E:DA:51:38:E0:E6:9F:EC:CB:D5:F9:90:C5:DD:29:77:29 ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typegzip compressed data, from Unix Size322 kB (321709 bytes) Hashb1f037342b820c620c12057eb131e05f 04c272857552e9977d7b69a61b18871ad4f6eecc cb0f46c8472251e5cb272189163a86917e44fa6168022aede7304d936495107e
GET /assets/build/chat.528b5906db1b02464f56.js HTTP/1.1
Host: www.directly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.directly.com/chat?cfgId=2c9985ab815b451c01818c819acd7dee
Cookie: JSESSIONID=27BEF06E763979F567D17B6F6012176D-n1.app1; AWSALBAPP-0=AAAAAAAAAACmxU/BFHt1VkuLNOhCPrdeT80rQaSLzrWqh/lQFiviX71sJ1vxd6rNczt27yTyRkp2B0ehKfW+cy0iQuKMhBKWOZbKtCn24RibYRktbokiO3PEDPl9QNlQJ424X4J4FFvh3a8=; AWSALBAPP-1=_remove_; AWSALBAPP-2=_remove_; AWSALBAPP-3=_remove_
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 02 May 2024 16:33:02 GMT
content-type: application/javascript
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
last-modified: Fri, 26 Apr 2024 15:49:14 GMT
etag: "115eaf-gzip"
accept-ranges: bytes
cache-control: max-age=5184000
expires: Mon, 01 Jul 2024 16:33:02 GMT
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-headers: origin, x-requested-with, content-type, x-csrf-token
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
x-frame-options: sameOrigin
x-xss-protection: 1
x-content-type-options: nosniff
set-cookie: AWSALBAPP-0=AAAAAAAAAAC0sOG/LfD8ckgTCeu7pWne5XFdhyd1yq9LLfWTkcP0A7EX5eLizYtVcP4gnHshw3ozxEvSQTfxljWg4fgRfRNCDst4DA53AXx20ox10jUt5FqwAPdMVPZvwNs500kPBoGB3SM=; Expires=Thu, 09 May 2024 16:33:02 GMT; Path=/
AWSALBAPP-1=_remove_; Expires=Thu, 09 May 2024 16:33:02 GMT; Path=/
AWSALBAPP-2=_remove_; Expires=Thu, 09 May 2024 16:33:02 GMT; Path=/
AWSALBAPP-3=_remove_; Expires=Thu, 09 May 2024 16:33:02 GMT; Path=/
X-Firefox-Spdy: h2
|
|
| www.directly.com/assets/proximanova-reg-webfont-db06bce44c4a5666a0d87f0afe73cfb7.woff2?chat | 54.161.53.143 | 200 OK | 28 kB |
URL GET HTTP/2www.directly.com/assets/proximanova-reg-webfont-db06bce44c4a5666a0d87f0afe73cfb7.woff2?chat IP54.161.53.143:443
Requested byhttps://www.directly.com/chat?cfgId=2c9985ab815b451c01818c819acd7dee CertificateIssuerAmazon Subject*.directly.com Fingerprint89:A6:AD:2E:DA:51:38:E0:E6:9F:EC:CB:D5:F9:90:C5:DD:29:77:29 ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 27960, version 2.197 Hashdb06bce44c4a5666a0d87f0afe73cfb7 4adfb59d8bc707c34a90b1a665aaac833b4c7fab 4799986d74fa55eee8989164ead89b9bd9f7f82f0272f1a1af4f4d1cea81e3e4
GET /assets/proximanova-reg-webfont-db06bce44c4a5666a0d87f0afe73cfb7.woff2?chat HTTP/1.1
Host: www.directly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.directly.com/assets/bundles/chat.bundle-1b681862b1fd71fd743c675184bc380c.css
Cookie: JSESSIONID=27BEF06E763979F567D17B6F6012176D-n1.app1; AWSALBAPP-0=AAAAAAAAAAC0sOG/LfD8ckgTCeu7pWne5XFdhyd1yq9LLfWTkcP0A7EX5eLizYtVcP4gnHshw3ozxEvSQTfxljWg4fgRfRNCDst4DA53AXx20ox10jUt5FqwAPdMVPZvwNs500kPBoGB3SM=; AWSALBAPP-1=_remove_; AWSALBAPP-2=_remove_; AWSALBAPP-3=_remove_
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 02 May 2024 16:33:03 GMT
content-length: 27960
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
last-modified: Fri, 26 Apr 2024 15:49:24 GMT
etag: "6d38"
accept-ranges: bytes
access-control-allow-headers: origin, x-requested-with, content-type, x-csrf-token
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
x-frame-options: sameOrigin
x-xss-protection: 1
x-content-type-options: nosniff
set-cookie: AWSALBAPP-0=AAAAAAAAAAAaHeUc9CuGYBQD/uU+00A1GOYj994TQoXqMDua6FMzAxQrTjUlhPfIvsSI7oGmu4Z+XXrmLeyw/IvGJnOB1AoqXq0AJGy/0O5DbFuByqEzt4UImjEPZLE6PBjWaKZOwfLXP2s=; Expires=Thu, 09 May 2024 16:33:03 GMT; Path=/
AWSALBAPP-1=_remove_; Expires=Thu, 09 May 2024 16:33:03 GMT; Path=/
AWSALBAPP-2=_remove_; Expires=Thu, 09 May 2024 16:33:03 GMT; Path=/
AWSALBAPP-3=_remove_; Expires=Thu, 09 May 2024 16:33:03 GMT; Path=/
X-Firefox-Spdy: h2
|
|
| www.directly.com/assets/build/0dcbc328f61e486f30312f68a980b9cd.svg | 54.161.53.143 | 200 OK | 24 kB |
URL GET HTTP/2www.directly.com/assets/build/0dcbc328f61e486f30312f68a980b9cd.svg IP54.161.53.143:443
Requested byhttps://www.directly.com/chat?cfgId=2c9985ab815b451c01818c819acd7dee CertificateIssuerAmazon Subject*.directly.com Fingerprint89:A6:AD:2E:DA:51:38:E0:E6:9F:EC:CB:D5:F9:90:C5:DD:29:77:29 ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash0dcbc328f61e486f30312f68a980b9cd 4afd52abcd89753a77ff15dbfbfdbc263a25b4ac 2ebc6b3b7d150c7ff6969503e986630b3ca843effbaea8481a3aadb6f703eebf
GET /assets/build/0dcbc328f61e486f30312f68a980b9cd.svg HTTP/1.1
Host: www.directly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.directly.com/chat?cfgId=2c9985ab815b451c01818c819acd7dee
Cookie: JSESSIONID=27BEF06E763979F567D17B6F6012176D-n1.app1; AWSALBAPP-0=AAAAAAAAAAAaHeUc9CuGYBQD/uU+00A1GOYj994TQoXqMDua6FMzAxQrTjUlhPfIvsSI7oGmu4Z+XXrmLeyw/IvGJnOB1AoqXq0AJGy/0O5DbFuByqEzt4UImjEPZLE6PBjWaKZOwfLXP2s=; AWSALBAPP-1=_remove_; AWSALBAPP-2=_remove_; AWSALBAPP-3=_remove_
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 02 May 2024 16:33:03 GMT
content-type: image/svg+xml
content-length: 24297
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
last-modified: Fri, 26 Apr 2024 15:49:14 GMT
etag: "5ee9"
accept-ranges: bytes
cache-control: max-age=5184000
expires: Mon, 01 Jul 2024 16:33:03 GMT
access-control-allow-headers: origin, x-requested-with, content-type, x-csrf-token
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
x-frame-options: sameOrigin
x-xss-protection: 1
x-content-type-options: nosniff
set-cookie: AWSALBAPP-0=AAAAAAAAAACDCSVofGvfyn5nzDZP2XGIMiMc4GcJv7HOwJAw8bJx8zLAswL2LWTH0VO1WteVP162VuLCJXPuDxGtVvD5GoR5Nl94riJY5l5r0UEx4IysuBqLcP5Hr1RQ6mXE9478KdeiaUM=; Expires=Thu, 09 May 2024 16:33:03 GMT; Path=/
AWSALBAPP-1=_remove_; Expires=Thu, 09 May 2024 16:33:03 GMT; Path=/
AWSALBAPP-2=_remove_; Expires=Thu, 09 May 2024 16:33:03 GMT; Path=/
AWSALBAPP-3=_remove_; Expires=Thu, 09 May 2024 16:33:03 GMT; Path=/
X-Firefox-Spdy: h2
|
|
| www.directly.com/chat/checkAuth | 54.161.53.143 | 200 OK | 50 kB |
URL GET HTTP/2www.directly.com/chat/checkAuth IP54.161.53.143:443
Requested byhttps://www.directly.com/chat?cfgId=2c9985ab815b451c01818c819acd7dee CertificateIssuerAmazon Subject*.directly.com Fingerprint89:A6:AD:2E:DA:51:38:E0:E6:9F:EC:CB:D5:F9:90:C5:DD:29:77:29 ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hasheb2ce88fafb68b1e940e770228df2af4 7116b03aee3b97182f757d77ce027be95984fcc5 d02e813eaf6cbe0528cf186fa9c9d8f9b2a0e5f269c35219ecf793315e855d19
GET /chat/checkAuth HTTP/1.1
Host: www.directly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJzdWIiOiI0YWNhYjI0MS03MjU2LTQwMGMtOTk0Yi1lZGJlZTIxNTZjMDMiLCJjaGF0Q29uZmlnSWQiOiIyYzk5ODVhYjgxNWI0NTFjMDE4MThjODE5YWNkN2RlZSIsImV4cGVydEZvciI6W10sIm9wZXJhdGlvbnNGb3IiOltdLCJhZG1pbkZvciI6W10sInJvbGVzIjpbIlJPTEVfQU5PTllNT1VTIl0sImlzcyI6ImRpcmVjdGx5Iiwic2Vzc2lvblN0YXJ0VGltZSI6MTcxNDY2NzU4MiwicmVmcmVzaFRva2VuV2luZG93SW5TZWNvbmRzIjo2MCwic2Vzc2lvbklkIjoiMjcxYTEwN2MtNzNmZS00YTZlLWIxNTgtOGUyNzUzYzRhYjA3Iiwic3ViamVjdFV1aWQiOiI0YWNhYjI0MS03MjU2LTQwMGMtOTk0Yi1lZGJlZTIxNTZjMDMiLCJleHAiOjE3MTQ2Njc4ODJ9.ajivhzWK8Pnu3vyicU4Kq_JDWK3mgQ6yqQzRNafRXurGDKv-SjTQGBHFzJAU3uQ3iB32ao_Tx-ZwGBhDRnrglP_02lznrjWQHmdLDFgMh4Cm8eX2ITUFh9sG3BbEEmnqkolqPW0yexIMaiwgRJrXcopJxp8NaUnzx-Si_ktxsRuezDc9JVHYt1tmJepR_DH-EdOn3hUjFaNoodDPMEQREpvNOgIlL8mK3z2DjgSqsvJ6L7bupqSRxacJgH9J_j0BQp4a_5cmXVffdKWoZftgyJ2T56q-6wnW8Gj3WcMalfN7L1UFg3RDiWBD5RWt58RaClpby5zOK5AtVa3edW0dBw
X-Insidr-Ajax: XMLHttpRequest
X-Top-Referer: https://rtm-att.directly.com/att-expert.html
Content-Type:
Cache-Control: no-cache
Pragma: no-cache
DNT: 1
Connection: keep-alive
Referer: https://www.directly.com/chat?cfgId=2c9985ab815b451c01818c819acd7dee
Cookie: JSESSIONID=27BEF06E763979F567D17B6F6012176D-n1.app1; AWSALBAPP-0=AAAAAAAAAAC0sOG/LfD8ckgTCeu7pWne5XFdhyd1yq9LLfWTkcP0A7EX5eLizYtVcP4gnHshw3ozxEvSQTfxljWg4fgRfRNCDst4DA53AXx20ox10jUt5FqwAPdMVPZvwNs500kPBoGB3SM=; AWSALBAPP-1=_remove_; AWSALBAPP-2=_remove_; AWSALBAPP-3=_remove_
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 May 2024 16:33:03 GMT
content-type: application/json;charset=UTF-8
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
x-xss-protection: 1
x-content-type-options: noSniff
cache-control: private
x-session-id: 27BEF06E763979F567D17B6F6012176D-n1.app1
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-headers: origin, x-requested-with, content-type, x-csrf-token
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
set-cookie: AWSALBAPP-0=AAAAAAAAAADxEy3PMmgJjSW6432Qly2cpuwWteijGR0mWklLsv9iBMSdfwBPs7Uxo4kzvxUMEiqt4ak/Ziy+Tj8/8LWaxTONTatB3Ma+QTTtPZ36VzdC1ldKgK6WARfFy9KP2rf5P/btqQU=; Expires=Thu, 09 May 2024 16:33:03 GMT; Path=/
AWSALBAPP-1=_remove_; Expires=Thu, 09 May 2024 16:33:03 GMT; Path=/
AWSALBAPP-2=_remove_; Expires=Thu, 09 May 2024 16:33:03 GMT; Path=/
AWSALBAPP-3=_remove_; Expires=Thu, 09 May 2024 16:33:03 GMT; Path=/
X-Firefox-Spdy: h2
|
|
| www.directly.com/chat/state?cfgId=2c9985ab815b451c01818c819acd7dee | 54.161.53.143 | 200 OK | 6.3 kB |
URL GET HTTP/2www.directly.com/chat/state?cfgId=2c9985ab815b451c01818c819acd7dee IP54.161.53.143:443
Requested byhttps://www.directly.com/chat?cfgId=2c9985ab815b451c01818c819acd7dee CertificateIssuerAmazon Subject*.directly.com Fingerprint89:A6:AD:2E:DA:51:38:E0:E6:9F:EC:CB:D5:F9:90:C5:DD:29:77:29 ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hashe44cd0e393f31613fc80e9b815354c30 e5b1a4c61f7ab473406ccf767605cc16625a368e 87221f3c1de3cfdfeeefe9971f18117284c2e94c910b054ce4e71285dc90a9ae
GET /chat/state?cfgId=2c9985ab815b451c01818c819acd7dee HTTP/1.1
Host: www.directly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJzdWIiOiI0YWNhYjI0MS03MjU2LTQwMGMtOTk0Yi1lZGJlZTIxNTZjMDMiLCJjaGF0Q29uZmlnSWQiOiIyYzk5ODVhYjgxNWI0NTFjMDE4MThjODE5YWNkN2RlZSIsImV4cGVydEZvciI6W10sIm9wZXJhdGlvbnNGb3IiOltdLCJhZG1pbkZvciI6W10sInJvbGVzIjpbIlJPTEVfQU5PTllNT1VTIl0sImlzcyI6ImRpcmVjdGx5Iiwic2Vzc2lvblN0YXJ0VGltZSI6MTcxNDY2NzU4MiwicmVmcmVzaFRva2VuV2luZG93SW5TZWNvbmRzIjo2MCwic2Vzc2lvbklkIjoiMjcxYTEwN2MtNzNmZS00YTZlLWIxNTgtOGUyNzUzYzRhYjA3Iiwic3ViamVjdFV1aWQiOiI0YWNhYjI0MS03MjU2LTQwMGMtOTk0Yi1lZGJlZTIxNTZjMDMiLCJleHAiOjE3MTQ2Njc4ODJ9.ajivhzWK8Pnu3vyicU4Kq_JDWK3mgQ6yqQzRNafRXurGDKv-SjTQGBHFzJAU3uQ3iB32ao_Tx-ZwGBhDRnrglP_02lznrjWQHmdLDFgMh4Cm8eX2ITUFh9sG3BbEEmnqkolqPW0yexIMaiwgRJrXcopJxp8NaUnzx-Si_ktxsRuezDc9JVHYt1tmJepR_DH-EdOn3hUjFaNoodDPMEQREpvNOgIlL8mK3z2DjgSqsvJ6L7bupqSRxacJgH9J_j0BQp4a_5cmXVffdKWoZftgyJ2T56q-6wnW8Gj3WcMalfN7L1UFg3RDiWBD5RWt58RaClpby5zOK5AtVa3edW0dBw
X-Insidr-Ajax: XMLHttpRequest
X-Top-Referer: https://rtm-att.directly.com/att-expert.html
Content-Type:
Cache-Control: no-cache
Pragma: no-cache
DNT: 1
Connection: keep-alive
Referer: https://www.directly.com/chat?cfgId=2c9985ab815b451c01818c819acd7dee
Cookie: JSESSIONID=27BEF06E763979F567D17B6F6012176D-n1.app1; AWSALBAPP-0=AAAAAAAAAAC0sOG/LfD8ckgTCeu7pWne5XFdhyd1yq9LLfWTkcP0A7EX5eLizYtVcP4gnHshw3ozxEvSQTfxljWg4fgRfRNCDst4DA53AXx20ox10jUt5FqwAPdMVPZvwNs500kPBoGB3SM=; AWSALBAPP-1=_remove_; AWSALBAPP-2=_remove_; AWSALBAPP-3=_remove_
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 02 May 2024 16:33:03 GMT
content-type: application/json;charset=UTF-8
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
x-xss-protection: 1
x-content-type-options: noSniff
cache-control: private
x-session-id: 27BEF06E763979F567D17B6F6012176D-n1.app1
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-headers: origin, x-requested-with, content-type, x-csrf-token
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
set-cookie: AWSALBAPP-0=AAAAAAAAAAARe0Nvmb64atbvx4ReWT2ED1nio16uLPGxEY7xcXWzzkf/W4hVgRGyHG5x86skyLkimyXqfsHbk2bGEbH3kEOt2zNHmG1N+0c5yKLte+GKN2yBzG4YSoN7NkfsDe5eHFc2sT8=; Expires=Thu, 09 May 2024 16:33:03 GMT; Path=/
AWSALBAPP-1=_remove_; Expires=Thu, 09 May 2024 16:33:03 GMT; Path=/
AWSALBAPP-2=_remove_; Expires=Thu, 09 May 2024 16:33:03 GMT; Path=/
AWSALBAPP-3=_remove_; Expires=Thu, 09 May 2024 16:33:03 GMT; Path=/
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto:400,700 | 142.250.74.74 | 200 OK | 4.4 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Roboto:400,700 IP142.250.74.74:443
Requested byhttps://rtm-att.directly.com/att-expert.html CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typeASCII text, with very long lines (4464), with no line terminators Hash663115e2d6c2b79a734763ca932e68ef 21a397fb4f8acc7394f1a09afb98ecbee44fb8c4 c9e395b80f3cd019065780e9132a980874cf8c9b29fc460d67cb132d7828db39
GET /css?family=Roboto:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rtm-att.directly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 May 2024 16:33:01 GMT
date: Thu, 02 May 2024 16:33:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.directly.com/widgets/rtm/embed.js | 54.161.53.143 | 200 OK | 148 kB |
URL GET HTTP/2www.directly.com/widgets/rtm/embed.js IP54.161.53.143:443
Requested byhttps://rtm-att.directly.com/att-expert.html CertificateIssuerAmazon Subject*.directly.com Fingerprint89:A6:AD:2E:DA:51:38:E0:E6:9F:EC:CB:D5:F9:90:C5:DD:29:77:29 ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
Size148 kB (148109 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widgets/rtm/embed.js HTTP/1.1
Host: www.directly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rtm-att.directly.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 02 May 2024 16:33:02 GMT
content-type: application/javascript
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
accept-ranges: bytes
etag: W/"148109-1714146306000-gzip"
last-modified: Fri, 26 Apr 2024 15:45:06 GMT
cache-control: max-age=7200
expires: Mon, 01 Jul 2024 16:33:02 GMT
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-headers: origin, x-requested-with, content-type, x-csrf-token
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
set-cookie: JSESSIONID=27BEF06E763979F567D17B6F6012176D-n1.app1; Domain=.directly.com; Path=/; Secure; HttpOnly
AWSALBAPP-0=AAAAAAAAAAAuJTONA3lJNdCPAEVEAb+ALj8YPq7VpBTYAQI6GHB4Dn1T8Fte1iFDoADfXYk/JTjP4WEmMjtUD/K5YoUcM2J1ET1FYH//1vuVs1xYghO2lwNj+4+nZ4b0dMms/gWNuUnJAY4=; Expires=Thu, 09 May 2024 16:33:02 GMT; Path=/
AWSALBAPP-1=_remove_; Expires=Thu, 09 May 2024 16:33:02 GMT; Path=/
AWSALBAPP-2=_remove_; Expires=Thu, 09 May 2024 16:33:02 GMT; Path=/
AWSALBAPP-3=_remove_; Expires=Thu, 09 May 2024 16:33:02 GMT; Path=/
X-Firefox-Spdy: h2
|
|
| www.directly.com/assets/proximanova-sbold-webfont-7b475d1fb6d89bb3688806a034701936.woff2?chat | 54.161.53.143 | 200 OK | 50 kB |
URL GET HTTP/2www.directly.com/assets/proximanova-sbold-webfont-7b475d1fb6d89bb3688806a034701936.woff2?chat IP54.161.53.143:443
Requested byhttps://www.directly.com/chat?cfgId=2c9985ab815b451c01818c819acd7dee CertificateIssuerAmazon Subject*.directly.com Fingerprint89:A6:AD:2E:DA:51:38:E0:E6:9F:EC:CB:D5:F9:90:C5:DD:29:77:29 ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), CFF, length 49472, version 2.197 Hash7b475d1fb6d89bb3688806a034701936 eac3742461f6c2be71ac674d607a24f3d2f78046 76e4668dfdce9f5eface4bac79f20af60113ce619987a74bcf6b57163a5537c4
GET /assets/proximanova-sbold-webfont-7b475d1fb6d89bb3688806a034701936.woff2?chat HTTP/1.1
Host: www.directly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.directly.com/assets/bundles/chat.bundle-1b681862b1fd71fd743c675184bc380c.css
Cookie: JSESSIONID=27BEF06E763979F567D17B6F6012176D-n1.app1; AWSALBAPP-0=AAAAAAAAAAAaHeUc9CuGYBQD/uU+00A1GOYj994TQoXqMDua6FMzAxQrTjUlhPfIvsSI7oGmu4Z+XXrmLeyw/IvGJnOB1AoqXq0AJGy/0O5DbFuByqEzt4UImjEPZLE6PBjWaKZOwfLXP2s=; AWSALBAPP-1=_remove_; AWSALBAPP-2=_remove_; AWSALBAPP-3=_remove_
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 02 May 2024 16:33:03 GMT
content-length: 49472
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
last-modified: Fri, 26 Apr 2024 15:49:24 GMT
etag: "c140"
accept-ranges: bytes
access-control-allow-headers: origin, x-requested-with, content-type, x-csrf-token
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
x-frame-options: sameOrigin
x-xss-protection: 1
x-content-type-options: nosniff
set-cookie: AWSALBAPP-0=AAAAAAAAAABlOheVfM5juswJQ6OZAYc0MxJeS5/5BRkJlJm65a80yyJqNb4VIy+Bbx3o+ryJbQFFrvhLHw08fI4192LsQkOu3gAa/uqMKS5lQOgzFzSk/K5No6lH2Ljf/5ZKhLb9uKP7rGA=; Expires=Thu, 09 May 2024 16:33:03 GMT; Path=/
AWSALBAPP-1=_remove_; Expires=Thu, 09 May 2024 16:33:03 GMT; Path=/
AWSALBAPP-2=_remove_; Expires=Thu, 09 May 2024 16:33:03 GMT; Path=/
AWSALBAPP-3=_remove_; Expires=Thu, 09 May 2024 16:33:03 GMT; Path=/
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto:400,700 | 142.250.74.74 | 200 OK | 4.4 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Roboto:400,700 IP142.250.74.74:443
Requested byhttps://rtm-att.directly.com/att-expert.html CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typeASCII text, with very long lines (4464), with no line terminators Hash663115e2d6c2b79a734763ca932e68ef 21a397fb4f8acc7394f1a09afb98ecbee44fb8c4 c9e395b80f3cd019065780e9132a980874cf8c9b29fc460d67cb132d7828db39
GET /css?family=Roboto:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://rtm-att.directly.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 May 2024 16:33:01 GMT
date: Thu, 02 May 2024 16:33:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.directly.com/chat/lastResponseTime?cfgId=2c9985ab815b451c01818c819acd7dee | 54.161.53.143 | 200 OK | 76 B |
URL GET HTTP/2www.directly.com/chat/lastResponseTime?cfgId=2c9985ab815b451c01818c819acd7dee IP54.161.53.143:443
Requested byhttps://www.directly.com/chat?cfgId=2c9985ab815b451c01818c819acd7dee CertificateIssuerAmazon Subject*.directly.com Fingerprint89:A6:AD:2E:DA:51:38:E0:E6:9F:EC:CB:D5:F9:90:C5:DD:29:77:29 ValiditySun, 04 Jun 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hash6f1c3f65ab7bd3cc6a77b52e116215a5 d998cb1586210e86c54ff47e930dd77f64ac13ed 7de687a5e093080628a5fa7f3038c7c0a51d792cf1ad402f8aefd5c271f42c63
GET /chat/lastResponseTime?cfgId=2c9985ab815b451c01818c819acd7dee HTTP/1.1
Host: www.directly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJzdWIiOiI0YWNhYjI0MS03MjU2LTQwMGMtOTk0Yi1lZGJlZTIxNTZjMDMiLCJjaGF0Q29uZmlnSWQiOiIyYzk5ODVhYjgxNWI0NTFjMDE4MThjODE5YWNkN2RlZSIsImV4cGVydEZvciI6W10sIm9wZXJhdGlvbnNGb3IiOltdLCJhZG1pbkZvciI6W10sInJvbGVzIjpbIlJPTEVfQU5PTllNT1VTIl0sImlzcyI6ImRpcmVjdGx5Iiwic2Vzc2lvblN0YXJ0VGltZSI6MTcxNDY2NzU4MiwicmVmcmVzaFRva2VuV2luZG93SW5TZWNvbmRzIjo2MCwic2Vzc2lvbklkIjoiMjcxYTEwN2MtNzNmZS00YTZlLWIxNTgtOGUyNzUzYzRhYjA3Iiwic3ViamVjdFV1aWQiOiI0YWNhYjI0MS03MjU2LTQwMGMtOTk0Yi1lZGJlZTIxNTZjMDMiLCJleHAiOjE3MTQ2Njc4ODJ9.ajivhzWK8Pnu3vyicU4Kq_JDWK3mgQ6yqQzRNafRXurGDKv-SjTQGBHFzJAU3uQ3iB32ao_Tx-ZwGBhDRnrglP_02lznrjWQHmdLDFgMh4Cm8eX2ITUFh9sG3BbEEmnqkolqPW0yexIMaiwgRJrXcopJxp8NaUnzx-Si_ktxsRuezDc9JVHYt1tmJepR_DH-EdOn3hUjFaNoodDPMEQREpvNOgIlL8mK3z2DjgSqsvJ6L7bupqSRxacJgH9J_j0BQp4a_5cmXVffdKWoZftgyJ2T56q-6wnW8Gj3WcMalfN7L1UFg3RDiWBD5RWt58RaClpby5zOK5AtVa3edW0dBw
X-Insidr-Ajax: XMLHttpRequest
X-Top-Referer: https://rtm-att.directly.com/att-expert.html
Content-Type:
Cache-Control: no-cache
Pragma: no-cache
DNT: 1
Connection: keep-alive
Referer: https://www.directly.com/chat?cfgId=2c9985ab815b451c01818c819acd7dee
Cookie: JSESSIONID=27BEF06E763979F567D17B6F6012176D-n1.app1; AWSALBAPP-0=AAAAAAAAAAAaHeUc9CuGYBQD/uU+00A1GOYj994TQoXqMDua6FMzAxQrTjUlhPfIvsSI7oGmu4Z+XXrmLeyw/IvGJnOB1AoqXq0AJGy/0O5DbFuByqEzt4UImjEPZLE6PBjWaKZOwfLXP2s=; AWSALBAPP-1=_remove_; AWSALBAPP-2=_remove_; AWSALBAPP-3=_remove_
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/2 200 OK
date: Thu, 02 May 2024 16:33:03 GMT
content-type: application/json;charset=UTF-8
server: Apache
strict-transport-security: max-age=63072000; includeSubdomains;
x-xss-protection: 1
x-content-type-options: noSniff
cache-control: private
x-session-id: 27BEF06E763979F567D17B6F6012176D-n1.app1
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-headers: origin, x-requested-with, content-type, x-csrf-token
access-control-allow-methods: PUT, GET, POST, DELETE, OPTIONS
set-cookie: AWSALBAPP-0=AAAAAAAAAADE8oHitSGkGJuM0avzv5b+41ikhmcpCrn7Y+9t5QF9J2Wft+GAfLpj5aWcVMh+unY5+1tHDgUoEfcVtcpjxWtqapNv4TFI0hTZ8u2TCBp1XDBgKD4CRCmB3ADJNwQqJrjZaME=; Expires=Thu, 09 May 2024 16:33:03 GMT; Path=/
AWSALBAPP-1=_remove_; Expires=Thu, 09 May 2024 16:33:03 GMT; Path=/
AWSALBAPP-2=_remove_; Expires=Thu, 09 May 2024 16:33:03 GMT; Path=/
AWSALBAPP-3=_remove_; Expires=Thu, 09 May 2024 16:33:03 GMT; Path=/
X-Firefox-Spdy: h2
|
|