r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b7407cc102d62a5acd5e61f8a79bed36
c2f4890a62454e514962b55b7fc14228339c8e90
be282de92da261128a7c8471f3067466aa9930fd0ab2a2cdda8cd2d6ce2bbd74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE282DE92DA261128A7C8471F3067466AA9930FD0AB2A2CDDA8CD2D6CE2BBD74"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2360
Expires: Thu, 09 Feb 2023 03:05:50 GMT
Date: Thu, 09 Feb 2023 02:26:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10694
Expires: Thu, 09 Feb 2023 05:24:44 GMT
Date: Thu, 09 Feb 2023 02:26:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13882
Expires: Thu, 09 Feb 2023 06:17:52 GMT
Date: Thu, 09 Feb 2023 02:26:30 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 09 Feb 2023 01:34:15 GMT
content-type: application/json
age: 3135
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: OxXTv46VcJpQFui9jxLsmGvxZJ2gCDAOr2M1MNNsupz36qOrXPT09s+lHGFdARHjjbohYM8xmshuneGWcBEC/Q==
x-amz-request-id: N37Q3X1FMSMKJ7YD
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 09 Feb 2023 01:36:10 GMT
age: 3020
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:26:30 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
newtechpipefitting.com/first/
199.79.62.190200 OK 17 kB URL HTTP/1.1 newtechpipefitting.com/first/
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (20931), with CRLF line terminators
Hash 262d51688d4ea71e2328d9bac7abf760
e989bb67bad0708e90cc5cb2cbddfcc4b3f1dc06
6a35f94377eefd4c9cea9419c08e44e86f6abfb7f9cdb958f0016951faaedff5
Analyzer Verdict Alert openphish First Tech Credit Union
fortinet Phishing
GET /first/ HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:30 GMT
Server: nginx/1.21.6
Content-Type: text/html; charset=UTF-8
Vary: Accept-Encoding
Content-Encoding: gzip
X-Server-Cache: true
X-Proxy-Cache: HIT
Transfer-Encoding: chunked
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Expires, Pragma, Retry-After, Last-Modified, ETag, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 09 Feb 2023 02:14:53 GMT
age: 698
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/aec7706684
199.79.62.190404 Not Found 4.7 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/aec7706684
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Hash e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48
Analyzer Verdict Alert fortinet Phishing
GET /first/Connexus%20Credit%20Union_files/aec7706684 HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 404 Not Found
Date: Thu, 09 Feb 2023 02:26:31 GMT
Server: nginx/1.21.6
Content-Type: text/html
Content-Length: 4677
Last-Modified: Tue, 15 Mar 2022 22:05:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/jquery-ui.css
199.79.62.190200 OK 9.0 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/jquery-ui.css
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (29352), with CRLF line terminators
Hash d7ed8aa205c5ccb0b833286776fe4e8a
33e0fb5bd09cfa0fd130f8d984c5eaccd447dab4
468ec5d5dce41159144fd673e4a6af2ef51474768f3d4644c34dd5d47fd673a0
GET /first/Connexus%20Credit%20Union_files/jquery-ui.css HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:31 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:10:02 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8977
Content-Type: text/css
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/pretty-checkboxes.css
199.79.62.190200 OK 361 B URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/pretty-checkboxes.css
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (743), with CRLF line terminators
Hash e73015807e4d4c679f8e15a2908ef1b6
3e5f6850497e9191ff4ec4370c7c393f87847306
071b116de4c58fd4012952a134f145d5aa2835801b8c43fd5d7354b968f71cfc
GET /first/Connexus%20Credit%20Union_files/pretty-checkboxes.css HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:31 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Tue, 07 Feb 2023 11:09:50 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 361
Content-Type: text/css
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/grid.css
199.79.62.190200 OK 1.7 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/grid.css
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (5600), with CRLF line terminators
Hash 02dfa246ebdec2f504ab1e10a1867995
6ce63d1a703b7af94be218d9c0003a849893f957
c45fe696949b6a4f1346ae06e5acd10a435f53e18e727db155fc3598fb582871
GET /first/Connexus%20Credit%20Union_files/grid.css HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:31 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:10:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1705
Content-Type: text/css
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/jquery.css
199.79.62.190200 OK 886 B URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/jquery.css
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2651), with CRLF line terminators
Hash 51533f44c8e9a51280bcc87a02682bfe
5234dcfe482aedba535c61d757f92eae3b7477fb
5a2c1a72554e5c5d7e934227f20fcff333d557d137b766b77231407ee4a024f6
GET /first/Connexus%20Credit%20Union_files/jquery.css HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:31 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Tue, 07 Feb 2023 11:09:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 886
Content-Type: text/css
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 248ce16379b12f11927ecc3142aec450
fa5b189f2d9182479170cb61cc1723571e437bd2
a8d259b331bdefb00625b9bf057d44d0b3290fda0734c57eda187b04e23d59d4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8D259B331BDEFB00625B9BF057D44D0B3290FDA0734C57EDA187B04E23D59D4"
Last-Modified: Wed, 08 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3538
Expires: Thu, 09 Feb 2023 03:25:29 GMT
Date: Thu, 09 Feb 2023 02:26:31 GMT
Connection: keep-alive
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/sidebar.css
199.79.62.190200 OK 906 B URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/sidebar.css
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2691), with CRLF line terminators
Hash 19a0f43086b5889795a3a371da8eb7ad
2658df6893003feb64df0c35bbdf1811ab206828
1ed0fdd147a315e49c9b4165b8e66c12f406ec2a93f29cdf75b4b74816eb6331
GET /first/Connexus%20Credit%20Union_files/sidebar.css HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:31 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:10:02 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 906
Content-Type: text/css
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/ext-all.css
199.79.62.190200 OK 25 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/ext-all.css
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (65409), with CRLF line terminators
Hash 8b5ba6cfde5bd8b65cbdf0b1aa5e91f1
fb0c3b9fde4109ee0bec3e85c9f8ec7cf73b1e44
7bf81dc41253c3f3baa411e5656b6d243fb1c6eedda880f2307ac655f78c4795
GET /first/Connexus%20Credit%20Union_files/ext-all.css HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:31 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Tue, 07 Feb 2023 11:09:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: text/css
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/iris.css
199.79.62.190200 OK 346 B URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/iris.css
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (537), with CRLF line terminators
Hash 4964dd45c5dcf3d2356aea1c469eee17
fcae1099d61898471a06505b54815e939e79a6b8
0dbed80cc950db35092e930a2548754253b58cdb1199d3a4eac0034122e68c34
GET /first/Connexus%20Credit%20Union_files/iris.css HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:31 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:10:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 346
Content-Type: text/css
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/browser-unsupported.css
199.79.62.190200 OK 2.6 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/browser-unsupported.css
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (10371), with CRLF line terminators
Hash 16a39e595c3c2527bc059f829f760213
5d5536f99f4e90590b8acd577b7f03f374024e73
2bcc69738acfe06829b73048fc131cb30724a7cd9743458d3248b00d68b0912a
GET /first/Connexus%20Credit%20Union_files/browser-unsupported.css HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:31 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:10:02 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2597
Content-Type: text/css
push.services.mozilla.com/
35.165.197.103101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.165.197.103:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: A8LfCmTnG0LbmIjvu+6poQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: MeHPaZ2PxeqkFf0IP+Akly73Wvs=
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/Authentication.css
199.79.62.190200 OK 4.6 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/Authentication.css
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (20220), with CRLF line terminators
Hash 6e1db34d8ec28f5742f1df11da7c9efb
7eb26f746005aa5eed74709101572bd011c2e230
d68fa8b168d9abd72177209abe68e1b039984d561db172988a14f592d4e1dd8f
GET /first/Connexus%20Credit%20Union_files/Authentication.css HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:31 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:09:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4633
Content-Type: text/css
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/theme.css
199.79.62.190200 OK 6.5 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/theme.css
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (27196), with CRLF line terminators
Hash ea04ee11dc5580b7fce36035d0011e93
fb8007e0df8dbabdb69c27cc49aff52d443c6179
4a6f9fe7a9cf5a59b24dbe8e9b5bb1b6a0d9751c652a3d2877711b0cc260c45f
GET /first/Connexus%20Credit%20Union_files/theme.css HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:31 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:10:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6458
Content-Type: text/css
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/base.css
199.79.62.190200 OK 51 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/base.css
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (32028), with CRLF line terminators
Hash 7e94a80523cd1ebcf74558daae7eb101
9ce066b75fa5164cb54be404616d78982eda0e51
2f365027fb500fe59e3ac6414e78f6733ec94f99d39dd122216eb9d4be8d309f
GET /first/Connexus%20Credit%20Union_files/base.css HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:31 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade
Last-Modified: Tue, 07 Feb 2023 11:09:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: text/css
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/iris_002.css
199.79.62.190200 OK 23 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/iris_002.css
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (65536), with no line terminators
Hash 11c98a48139d319a55e99b04f6cd77ac
a810884231391faf6f90fe9f5df2e8c01ce45833
6a9be52288890de8d2bb000b17047c2d2a54c6b54ea232de64f5315a0e6236c3
GET /first/Connexus%20Credit%20Union_files/iris_002.css HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:31 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:09:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: text/css
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/YodleeFastLink.css
199.79.62.190200 OK 99 B URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/YodleeFastLink.css
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with no line terminators
Hash fc23a0c679b13b3451236e284f4330b9
645e90c3d5cf7cfc0e23afd02c63eabf987715f9
63e578f6d6e2225151cd126931d55fa822949e94f8888cf81912fb7e492b0a9c
GET /first/Connexus%20Credit%20Union_files/YodleeFastLink.css HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:31 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:09:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 99
Content-Type: text/css
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/fi.css
199.79.62.190200 OK 11 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/fi.css
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (40820), with CRLF line terminators
Hash 0621763e521fa06d7bae4bef24bde52f
33e5fad449548ff518b3dbed1ed6addbd186e3cb
46f2f900ee928ce7b4f4ab8e7dab16e47120c9209daf203a08ee58216eda6f8d
GET /first/Connexus%20Credit%20Union_files/fi.css HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:31 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:10:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11409
Content-Type: text/css
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/nr-spa-1118.js
199.79.62.190200 OK 15 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/nr-spa-1118.js
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (32015), with CRLF line terminators
Hash 42c002726ef8e963c918a3fe6c8dcb41
6b758a92bfb034e59ce9fe897660e3f8d0f7a881
3fbf833007b6ab28e0bce8f7e6fc4a306e3e169cfb3e31cac63284690f9427f3
Analyzer Verdict Alert fortinet Phishing
GET /first/Connexus%20Credit%20Union_files/nr-spa-1118.js HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:32 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:09:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 15247
Content-Type: application/javascript
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/analytics.js
199.79.62.190200 OK 21 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/analytics.js
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1656), with CRLF line terminators
Hash 1340c2ba6fe5659afc3a059082d0f689
6f88ea50fa86f17802b7ae8f816ef5987820168b
b669d2919dc056b2083c33c7bb120372fbe051e19ae866a72f9aadf6c33637c3
Analyzer Verdict Alert fortinet Phishing
GET /first/Connexus%20Credit%20Union_files/analytics.js HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:32 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:09:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: application/javascript
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/yui-reset.css
199.79.62.190200 OK 442 B URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/yui-reset.css
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (746), with CRLF line terminators
Hash 8aef766dca9579bc37ec279321c88d9e
7f493dcb8b752edadf5832ecfef8614e70e47e9f
73bb19387863edd8a65876e39b94cda46abd5cfcc86d192a1825d74f3fbdb6ff
GET /first/Connexus%20Credit%20Union_files/yui-reset.css HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:32 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:10:02 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 442
Content-Type: text/css
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/localization-ts.js
199.79.62.190200 OK 441 B URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/localization-ts.js
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (741), with CRLF line terminators
Hash 1d8ae1e60c45ae774ff49222e2280292
9e4a2b2ce601adbb119c4d947fc8f83eec0346cb
55546107623083cdabfff5d70ce6f4f8b9511d5040ba96db568232dd53e28cf6
Analyzer Verdict Alert fortinet Phishing
GET /first/Connexus%20Credit%20Union_files/localization-ts.js HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:32 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:09:50 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 441
Content-Type: application/javascript
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/css.css
199.79.62.190200 OK 1.1 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/css.css
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with CRLF line terminators
Hash d9b6d2b41836553cc0737d0ba0d94e74
a12e968e0b7ac06720bd2dd78ed1cbe2998271f5
650431f10f48f341ca7d5b2ddf5d01c02378ecac288042d8680a77efbeebd718
GET /first/Connexus%20Credit%20Union_files/css.css HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:32 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:09:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1086
Content-Type: text/css
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/popper.js
199.79.62.190200 OK 8.6 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/popper.js
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (20164), with CRLF line terminators
Hash 054240d681181850c860343ae13264e6
2cf14bb8dcbed72cefdf40f2aae297a33ebb121b
1000a41f6d5d8adcf032bc44e5aa769b20410c1510db0399d6965ed8499347b2
Analyzer Verdict Alert fortinet Phishing
GET /first/Connexus%20Credit%20Union_files/popper.js HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:32 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:10:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8614
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:26:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:26:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/iris.js
199.79.62.190200 OK 48 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/iris.js
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4e9036fd9b0fe3725dd7d8102298deca
aca6da860853c97884a33730af4398eb685b67d9
5cb09e105417da5a4db3b62795fde6c596b8191995f8a1743d01670a83e86571
Analyzer Verdict Alert fortinet Phishing
GET /first/Connexus%20Credit%20Union_files/iris.js HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:32 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:09:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: application/javascript
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://newtechpipefitting.com
Connection: keep-alive
Referer: http://newtechpipefitting.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 21:48:03 GMT
expires: Fri, 02 Feb 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 535109
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15436, version 1.0\012- data
Hash 037d830416495def72b7881024c14b7b
619389190b3cafafb5db94113990350acc8a0278
1d5b7c64458f4af91dcfee0354be47adde1f739b5aded03a7ab6068a1bb6ca97
GET /s/roboto/v18/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://newtechpipefitting.com
Connection: keep-alive
Referer: http://newtechpipefitting.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15436
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 Feb 2023 18:48:55 GMT
expires: Wed, 07 Feb 2024 18:48:55 GMT
cache-control: public, max-age=31536000
age: 113857
last-modified: Mon, 16 Oct 2017 17:33:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:26:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15440, version 1.0\012- data
Hash 55536c8e9e9a532651e3cf374f290ea3
ff3a9b8ae317896cbbcbadfbe615d671bd1d32a2
eca8ffa764a66cd084800e2e71c4176ef089ebd805515664a6cb8d4fb3b598bf
GET /s/roboto/v18/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://newtechpipefitting.com
Connection: keep-alive
Referer: http://newtechpipefitting.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15440
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 Feb 2023 12:57:40 GMT
expires: Wed, 07 Feb 2024 12:57:40 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:43 GMT
content-type: font/woff2
age: 134932
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:26:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/vendor.js
199.79.62.190200 OK 46 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/vendor.js
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (51679), with CRLF line terminators
Hash 14fca7bc6415b1d169e2223ce17d00c3
cdc5f968562f5b72a7ff94ef4531ae023594e057
fce83237a74ba415dd7e4de73b13a1d94d25905671c295729621c010cffa56a5
Analyzer Verdict Alert fortinet Phishing
GET /first/Connexus%20Credit%20Union_files/vendor.js HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:32 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:09:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: application/javascript
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/jquery.js
199.79.62.190200 OK 20 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/jquery.js
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type Unicode text, UTF-8 text, with very long lines (32010), with CRLF line terminators
Hash bde6c444178a5c7d7f74202ee471724c
2a3cf6d9ec67b462011eb9871a29920cd9f6ae51
8098468a55f40cd7edad93e145065d03298e5592b40cbf5656a175938f0f4541
Analyzer Verdict Alert fortinet Phishing
GET /first/Connexus%20Credit%20Union_files/jquery.js HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:32 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:10:02 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: application/javascript
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/knockout.js
199.79.62.190200 OK 41 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/knockout.js
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (635), with CRLF line terminators
Hash 4e6c79b10ce9e3ba3aafedb09e15af5a
8adfd80f6fd6ef593e7e2703833641f3d9abf656
de84e3ea64d9a3e53536ac7f000b2e71b3f748017e2d8295b8f28068542955c1
Analyzer Verdict Alert fortinet Phishing
GET /first/Connexus%20Credit%20Union_files/knockout.js HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:32 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:09:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: application/javascript
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/jquery_002.js
199.79.62.190200 OK 92 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/jquery_002.js
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (32039), with CRLF line terminators
Hash 1431f0281a7cd91ab3e7c9158bb0399d
abc61cfea1a8e2949b5aaae1e8d3d2f43843710c
49307a9299c90c8eca13259847fd7100f1d711fe0ed0d218dcbf66642e22fee0
Analyzer Verdict Alert fortinet Phishing
GET /first/Connexus%20Credit%20Union_files/jquery_002.js HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:32 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:09:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: application/javascript
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/knockout_002.js
199.79.62.190200 OK 2.6 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/knockout_002.js
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (7656), with CRLF line terminators
Hash 1224504a1faace6ef612fb0ba6d25083
5cfba10ca2fa81687ff5bd2d9593a5eabe4095b8
42284b5fc71558e93c8a5ac699b93102c1531f26e75874230b037c4d18287bf4
Analyzer Verdict Alert fortinet Phishing
GET /first/Connexus%20Credit%20Union_files/knockout_002.js HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:32 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:09:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2584
Content-Type: application/javascript
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/shared.js
199.79.62.190200 OK 1.3 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/shared.js
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (3158), with CRLF line terminators
Hash f35f0648e1c6f5476e04ea09796327e1
646f6438ccd02ed6e9c43d9dfbb62b226324c1ba
02da03c5df27898a345014178bb4ce29b4e49b7b2ccc90f56a2da4f2660c601e
Analyzer Verdict Alert fortinet Phishing
GET /first/Connexus%20Credit%20Union_files/shared.js HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:32 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:09:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1288
Content-Type: application/javascript
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/login.js
199.79.62.190200 OK 6.2 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/login.js
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (16847), with CRLF line terminators
Hash c0a2b6bd6bfc4ac34dd3dbeda0f09075
e3370fcea19d6a2d4f9bf4519cb6c88f4cf6d013
e02c1c172f0c32c6dd2000ccd35f73119f7fa2777607b9a4bf4cb340f3fa05a7
Analyzer Verdict Alert fortinet Phishing
GET /first/Connexus%20Credit%20Union_files/login.js HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:32 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:09:50 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6170
Content-Type: application/javascript
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/flashInterface.js
199.79.62.190200 OK 1.1 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/flashInterface.js
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2644), with CRLF line terminators
Hash f6499019b9c1852d2526bfa02a1b125d
d3941b9291f3b2cf1c6f8c8c6923e5f3e8d89380
768012081830efaaf1cd012e6e07197b1e0771b7a6f8d27d2c2158e7adb6b2a1
Analyzer Verdict Alert fortinet Phishing
GET /first/Connexus%20Credit%20Union_files/flashInterface.js HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:32 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:09:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1131
Content-Type: application/javascript
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/plugindetect.js
199.79.62.190200 OK 13 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/plugindetect.js
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (30324), with CRLF line terminators
Hash bef111baa1b1d43b69a76dfbcb30771c
2a997b86402b8f9644ec91f71eef64c71da0c7a3
66b194b9c28a586e584705d32915ed0f3d1e250e07483d6ce89b397cf30fdba3
Analyzer Verdict Alert fortinet Phishing
GET /first/Connexus%20Credit%20Union_files/plugindetect.js HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:32 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:09:50 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13172
Content-Type: application/javascript
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/machineInfo.js
199.79.62.190200 OK 1.6 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/machineInfo.js
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (5113), with CRLF line terminators
Hash ab5d1e148e08732d42a6698922202b38
e96b2cc916f8ebdcf8957ccac45ae5921ee94269
1a6b8438935d1ea7352c887a9e82f91cb7b94c303b811b5d6ba04568a1c5d668
Analyzer Verdict Alert fortinet Phishing
GET /first/Connexus%20Credit%20Union_files/machineInfo.js HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:32 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:09:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1633
Content-Type: application/javascript
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/Helpers.js
199.79.62.190200 OK 502 B URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/Helpers.js
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (806), with CRLF line terminators
Hash 7a607a98175ec0d5d1cb350c862e5232
d4cdee18676f3cd4929a75e5a7b494586def2865
c81c4c1555d35a24e97d34ea2e6439884d407a7d22e2d3f0e868f00581f4577a
Analyzer Verdict Alert fortinet Phishing
GET /first/Connexus%20Credit%20Union_files/Helpers.js HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:32 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:10:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 502
Content-Type: application/javascript
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/Authentication.js
199.79.62.190200 OK 2.4 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/Authentication.js
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (6838), with CRLF line terminators
Hash 07ed394096c03cbc714061ea9a859d6c
9c719ca0f70d2d103224a797a1c327faecf0ce9a
d225715e973ee7b22e14ecd92f53203f0de6cdca1442932f2157c2a3741c5ecc
Analyzer Verdict Alert fortinet Phishing
GET /first/Connexus%20Credit%20Union_files/Authentication.js HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:32 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:09:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2364
Content-Type: application/javascript
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/MutualAuth.js
199.79.62.190200 OK 1.6 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/MutualAuth.js
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (3853), with CRLF line terminators
Hash 5485754e80316ae3601db16792cf248d
42aaf02366a816bde048526c2a0227b2b570344b
aeb23f1d1262f48c4f43c58526197c54e561c8ce1db14d1f7841f2cfccb26e47
Analyzer Verdict Alert fortinet Phishing
GET /first/Connexus%20Credit%20Union_files/MutualAuth.js HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:32 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:10:02 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1594
Content-Type: application/javascript
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/10051_2ByCxz7bbFvhP2fxyigUtkgcccc
199.79.62.190200 OK 20 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/10051_2ByCxz7bbFvhP2fxyigUtkgcccc
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (20326), with no line terminators
Hash 7273d85bed2a59b915ede8f961b8b5b8
8f83fbe7136638222d685c1d20b3e6b69977082b
c5d88ed239587baeaeafcc8ecdb4d583f711803b572a1b534c1046ecad93c75a
Analyzer Verdict Alert fortinet Phishing
GET /first/Connexus%20Credit%20Union_files/10051_2ByCxz7bbFvhP2fxyigUtkgcccc HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:32 GMT
Server: nginx/1.21.6
Content-Length: 20326
Last-Modified: Tue, 07 Feb 2023 11:09:52 GMT
X-Server-Cache: true
X-Proxy-Cache: HIT
Accept-Ranges: bytes
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/YodleeFastLink.js
199.79.62.190200 OK 2.7 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/YodleeFastLink.js
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (2344), with CRLF line terminators
Hash 292fb790b92f7b8c55f29d323a062e29
c0c21b4e2d3a84fb63baf445bb0dc41132c337b3
43e3e3dff0d6edb36dc66504d37a70698ca7790cbf9617d1bffbc9e8b40bcab9
Analyzer Verdict Alert fortinet Phishing
GET /first/Connexus%20Credit%20Union_files/YodleeFastLink.js HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:33 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:09:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2704
Content-Type: application/javascript
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/snippets.js
199.79.62.190200 OK 221 B URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/snippets.js
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (367), with no line terminators
Hash b5b47b204e93c8971937ba2ba02026b2
18f3efd3e63c8534af16cb5c71543ae94ddc7ce8
092dc89d63570e59cc5904471f90c5f83cae282ac6e6ac39098d9671512d494c
Analyzer Verdict Alert fortinet Phishing
GET /first/Connexus%20Credit%20Union_files/snippets.js HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:33 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:09:50 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 221
Content-Type: application/javascript
newtechpipefitting.com/stylesheets/fonts/AlkamiLogos.woff?636833168113336193
199.79.62.190404 Not Found 12 kB URL HTTP/1.1 newtechpipefitting.com/stylesheets/fonts/AlkamiLogos.woff?636833168113336193
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Hash a8063bd37d3c8fb3176a6bf140558a4d
e32cf4b407db3d3773ded13ff64b70fdbad7735f
bccb23d41c2cc69cf0c7d22c4314ca8181a513c6999b73e45307792830f4e482
GET /stylesheets/fonts/AlkamiLogos.woff?636833168113336193 HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 404 Not Found
Date: Thu, 09 Feb 2023 02:26:33 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 22:05:38 GMT
Accept-Ranges: bytes
Content-Length: 11816
Vary: Accept-Encoding
Content-Type: text/html
newtechpipefitting.com/stylesheets/fonts/Alkami-font.woff?636833168113306165
199.79.62.190404 Not Found 12 kB URL HTTP/1.1 newtechpipefitting.com/stylesheets/fonts/Alkami-font.woff?636833168113306165
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Hash a8063bd37d3c8fb3176a6bf140558a4d
e32cf4b407db3d3773ded13ff64b70fdbad7735f
bccb23d41c2cc69cf0c7d22c4314ca8181a513c6999b73e45307792830f4e482
GET /stylesheets/fonts/Alkami-font.woff?636833168113306165 HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 404 Not Found
Date: Thu, 09 Feb 2023 02:26:33 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 22:05:38 GMT
Accept-Ranges: bytes
Content-Length: 11816
Vary: Accept-Encoding
Content-Type: text/html
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/RiskEvaluation.js
199.79.62.190200 OK 5.5 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/RiskEvaluation.js
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1461), with CRLF line terminators
Hash e27154c602df8a35379e62786ab6d4ea
b0a5cdbd5b52fb00120ef61a3a18b49fd3c4b31d
64e7a48b24112545157843f3760a67b2b10646ab81b7626f96767ab4281c7904
Analyzer Verdict Alert fortinet Phishing
GET /first/Connexus%20Credit%20Union_files/RiskEvaluation.js HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:33 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:09:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5502
Content-Type: application/javascript
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7095
Expires: Thu, 09 Feb 2023 04:24:48 GMT
Date: Thu, 09 Feb 2023 02:26:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7095
Expires: Thu, 09 Feb 2023 04:24:48 GMT
Date: Thu, 09 Feb 2023 02:26:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7095
Expires: Thu, 09 Feb 2023 04:24:48 GMT
Date: Thu, 09 Feb 2023 02:26:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7095
Expires: Thu, 09 Feb 2023 04:24:48 GMT
Date: Thu, 09 Feb 2023 02:26:33 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8db31dc-3366-48e5-8c4b-ebe994dd40ef.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8db31dc-3366-48e5-8c4b-ebe994dd40ef.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 95081172f8e19d19921acc802488e019
8531c150cb11de44361a95624b11cf46b9e0ba02
7a2d8f012c7d590f3f39ad834d4f3f9fb729143b7395bc588bd608b5bdee039b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8db31dc-3366-48e5-8c4b-ebe994dd40ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15019
x-amzn-requestid: 574e3e2c-2fbe-4215-9500-021147338832
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f583LHiioAMFqkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0a82d-4f12aac524c39f822ca4f422;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 07:11:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _3jIo3Giw3zmTmnSkJArAllT6uigN7EEzLPfkGpd6168_mSdqdk_Cg==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 12:41:28 GMT
age: 49505
etag: "8531c150cb11de44361a95624b11cf46b9e0ba02"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac74c9c-b95e-40f4-a5ca-7180c40cc241.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac74c9c-b95e-40f4-a5ca-7180c40cc241.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ce710ab5746832fe637fada3e6d63abf
d545c85d4a8cf92dc8b88db0a056623d1ef7a943
40bae4a2fb9dd60e9339d15ad0838f3ca83b5b6275c35cd22878b6783fcd6247
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac74c9c-b95e-40f4-a5ca-7180c40cc241.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7450
x-amzn-requestid: c3dabd4b-797b-4bbe-8824-5f502ff477b0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2aG-IoAMFfnQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf5-68de905b2ed5bfe46a87e688;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CsMWJP4A64pbv9jhvJkyNF2SU7gQEIkQ5xWBlSVSlGjlfz9O0dkPGQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 03:38:47 GMT
age: 82066
etag: "d545c85d4a8cf92dc8b88db0a056623d1ef7a943"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc04429b-38db-4e0a-96bf-5a6d2bc7e8cf.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc04429b-38db-4e0a-96bf-5a6d2bc7e8cf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b42802dc628e38e9631a01b6320040a
c83355f0828815ecbff47d8195d2deed8077e368
d0f093b1769b568a5d68ada359eadfd1ab3360488a20e1deeb99b0a51b649441
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc04429b-38db-4e0a-96bf-5a6d2bc7e8cf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11256
x-amzn-requestid: fc079b98-a94a-4945-8e51-9b5941fda799
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fwD8SEOMIAMFomA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dcb381-72b83330325d280821ecf4c1;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 07:10:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8BUL5SSz4_Jh8-i92w6IGXQEnW6RH2580LbDBIul4S45Mtji53ieTw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 22:06:10 GMT
age: 15623
etag: "c83355f0828815ecbff47d8195d2deed8077e368"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f087272-940e-484d-ad9d-2c67bcd6dccd.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f087272-940e-484d-ad9d-2c67bcd6dccd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bb7c8b758fe17f6c06ce2bebb5008495
032d747cf20951f6ca6fd51489fefd7c09c4948d
835d89e028ec4c85a845f2835cb5eddb9653937f6736e2713b671419474608ed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f087272-940e-484d-ad9d-2c67bcd6dccd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12811
x-amzn-requestid: be33f9ef-31cb-4572-9f22-0a433423e195
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AChzZFiWIAMFgmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e4167b-70ed2a756b8da4372ccc1f83;Sampled=0
x-amzn-remapped-date: Wed, 08 Feb 2023 21:39:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JpeDqbyAp9qLkVVqTKxmVy96vqBfyK4-GDiWdgkAjQlUN4Fu160VLA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 21:45:55 GMT
etag: "032d747cf20951f6ca6fd51489fefd7c09c4948d"
content-type: image/jpeg
age: 16838
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc03326d1-bbfd-4654-a9db-ac431757b9f6.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc03326d1-bbfd-4654-a9db-ac431757b9f6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 764b732e88dd1e9c1824529b24b3dffc
2ba954a51c2972b267ae0536e343e608aa9aa7f4
a1efdf03b14bb05cf8e407b92476592c35fa2d27c5e66705322abdb4c6412a06
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc03326d1-bbfd-4654-a9db-ac431757b9f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8150
x-amzn-requestid: 3834493a-4162-4cc9-b67c-541cc9be895b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fwD8IH0TIAMFWqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dcb380-3746ff7b0a6894366efa848e;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 07:10:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: I3qmC4D6qdsheK8VO3oKbPDU7XV1r9_XEPMcExKnvATDkVUsJHjHbg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 04:19:43 GMT
age: 79610
etag: "2ba954a51c2972b267ae0536e343e608aa9aa7f4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/ext.js
199.79.62.190200 OK 11 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/ext.js
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash b11f9f70f5e8af4de6d9fc5b9f50ccbe
753cb08c3f8c7c0750d113253790a08db01986bc
d4b77ba995ea274fd169fc9bc66919b23e72a8edb88d6184bf3d7f3ab398c645
Analyzer Verdict Alert fortinet Phishing
GET /first/Connexus%20Credit%20Union_files/ext.js HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:32 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:09:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: application/javascript
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/print.css
199.79.62.190200 OK 2.2 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/print.css
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (7734), with CRLF line terminators
Hash f4b85f063145e293e6fc15282b184261
1eb7149f611541958aabd92b1cb4ba5d97d94cfe
8f779d827ad4299218d92b10f3455317a93b14298f73e7c17f2baa87cbd4c158
GET /first/Connexus%20Credit%20Union_files/print.css HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
Cookie: _ga=GA1.2.1799327863.1675909649; _gid=GA1.2.715909744.1675909649; _gat=1
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:33 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:09:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2150
Content-Type: text/css
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/Logo.png
199.79.62.190200 OK 20 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/Logo.png
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 400 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash 66dca570d8bfad1df77043a8cb37b022
5c9446e2658bd012bdcda954a8551c65cbf3cb25
e3760298dfe86fec826e4ee7df5d7508c64e5c7d37034ec2f571cd3ea6f63daa
GET /first/Connexus%20Credit%20Union_files/Logo.png HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:33 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:09:58 GMT
Accept-Ranges: bytes
Content-Length: 19597
Content-Type: image/png
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/app-store.webp
199.79.62.190200 OK 1.1 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/app-store.webp
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type RIFF (little-endian) data, Web/P image\012- data
Hash a72caeca44434193866af7e4a2502a47
b110bd3791902ae5fe8fa93863eac9d6b160c3f8
4692c5c686fcccfdb65e7239bb24412c9b7f7ce7ec023c44087a9adaafd6ca79
Analyzer Verdict Alert fortinet Phishing
GET /first/Connexus%20Credit%20Union_files/app-store.webp HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:32 GMT
Server: nginx/1.21.6
Content-Type: image/webp
Content-Length: 1088
Last-Modified: Tue, 07 Feb 2023 11:10:00 GMT
X-Server-Cache: true
X-Proxy-Cache: HIT
Accept-Ranges: bytes
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/play-store.webp
199.79.62.190200 OK 1.6 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/play-store.webp
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type RIFF (little-endian) data, Web/P image\012- data
Hash 489f5b3579b760db3d0646245463b17f
54f482928b2773502a74913f4d143b1bdb2ae1d5
657bab065986907065f0a8aa8779f453dfe1e3ac8a1b4ec9fbdd759f4ca2d2e7
Analyzer Verdict Alert fortinet Phishing
GET /first/Connexus%20Credit%20Union_files/play-store.webp HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:32 GMT
Server: nginx/1.21.6
Content-Type: image/webp
Content-Length: 1646
Last-Modified: Tue, 07 Feb 2023 11:09:52 GMT
X-Server-Cache: true
X-Proxy-Cache: HIT
Accept-Ranges: bytes
newtechpipefitting.com/stylesheets/fonts/Alkami-font.ttf?636833168113296155
199.79.62.190404 Not Found 4.7 kB URL HTTP/1.1 newtechpipefitting.com/stylesheets/fonts/Alkami-font.ttf?636833168113296155
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Hash e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48
GET /stylesheets/fonts/Alkami-font.ttf?636833168113296155 HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
Cookie: _ga=GA1.2.1799327863.1675909649; _gid=GA1.2.715909744.1675909649; _gat=1
HTTP/1.1 404 Not Found
Date: Thu, 09 Feb 2023 02:26:32 GMT
Server: nginx/1.21.6
Content-Type: text/html
Content-Length: 4677
Last-Modified: Tue, 15 Mar 2022 22:05:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
newtechpipefitting.com/stylesheets/fonts/AlkamiLogos.ttf?636833168113326186
199.79.62.190404 Not Found 4.7 kB URL HTTP/1.1 newtechpipefitting.com/stylesheets/fonts/AlkamiLogos.ttf?636833168113326186
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Hash e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48
GET /stylesheets/fonts/AlkamiLogos.ttf?636833168113326186 HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
Cookie: _ga=GA1.2.1799327863.1675909649; _gid=GA1.2.715909744.1675909649; _gat=1
HTTP/1.1 404 Not Found
Date: Thu, 09 Feb 2023 02:26:32 GMT
Server: nginx/1.21.6
Content-Type: text/html
Content-Length: 4677
Last-Modified: Tue, 15 Mar 2022 22:05:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
newtechpipefitting.com/Modules/YodleeFastLink/YodleeFastLink.css
199.79.62.190404 Not Found 4.7 kB URL HTTP/1.1 newtechpipefitting.com/Modules/YodleeFastLink/YodleeFastLink.css
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Hash e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48
GET /Modules/YodleeFastLink/YodleeFastLink.css HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
Cookie: _ga=GA1.2.1799327863.1675909649; _gid=GA1.2.715909744.1675909649; _gat=1
HTTP/1.1 404 Not Found
Date: Thu, 09 Feb 2023 02:26:33 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 22:05:38 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4677
Content-Type: text/html
newtechpipefitting.com/API/Locales
199.79.62.190404 Not Found 4.7 kB URL HTTP/1.1 newtechpipefitting.com/API/Locales
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Hash e6aae2410885df2f2629465b60a2691d
859d3d883fb8ca2aadedf5753abcd7acce922479
a113d210f17827a95d9d1eee68bf4e0aa8bd39d67df1d9420ff5e9c0f49b1d48
GET /API/Locales HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-NewRelic-ID: VgABWFdUGwACUFlWAwQ=
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
Cookie: _ga=GA1.2.1799327863.1675909649; _gid=GA1.2.715909744.1675909649; _gat=1
HTTP/1.1 404 Not Found
Date: Thu, 09 Feb 2023 02:26:33 GMT
Server: nginx/1.21.6
Content-Type: text/html
Content-Length: 4677
Last-Modified: Tue, 15 Mar 2022 22:05:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash c99599d6628f41d54430edaa40f5c533
4bbd35fd1097784ae5e1e046ba35595eb49ac57f
3cb4e5c0f89f5e97bd7b4a11c25b6bae84bb5a1d55982c44719b76b3f852035e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:26:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash c99599d6628f41d54430edaa40f5c533
4bbd35fd1097784ae5e1e046ba35595eb49ac57f
3cb4e5c0f89f5e97bd7b4a11c25b6bae84bb5a1d55982c44719b76b3f852035e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:26:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.46200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://newtechpipefitting.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 09 Feb 2023 01:45:20 GMT
expires: Thu, 09 Feb 2023 03:45:20 GMT
cache-control: public, max-age=7200
age: 2473
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/r/collect?v=1&_v=j73&a=182545807&t=pageview&_s=1&dl=http%3A%2F%2Fnewtechpipefitting.com%2Ffirst%2F&ul=en-us&de=UTF-8&dt=First%20Tech%20Federal%20Credit%20Union&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEAB~&jid=876062603&gjid=1901198348&cid=1799327863.1675909649&tid=UA-71023015-1&_gid=715909744.1675909649&_r=1&z=2114469274
142.250.74.46302 Found 418 B URL HTTP/2 www.google-analytics.com/r/collect?v=1&_v=j73&a=182545807&t=pageview&_s=1&dl=http%3A%2F%2Fnewtechpipefitting.com%2Ffirst%2F&ul=en-us&de=UTF-8&dt=First%20Tech%20Federal%20Credit%20Union&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEAB~&jid=876062603&gjid=1901198348&cid=1799327863.1675909649&tid=UA-71023015-1&_gid=715909744.1675909649&_r=1&z=2114469274
IP 142.250.74.46:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 7d2ba3f3a3f476fbf916cb7b93a67338
3d0c37210e58e6b2326264e66427dc287fe2600b
a6506b408549682921f9e101c503c327d84d4ae602a0de78b9a2641266d2bc47
GET /r/collect?v=1&_v=j73&a=182545807&t=pageview&_s=1&dl=http%3A%2F%2Fnewtechpipefitting.com%2Ffirst%2F&ul=en-us&de=UTF-8&dt=First%20Tech%20Federal%20Credit%20Union&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEAB~&jid=876062603&gjid=1901198348&cid=1799327863.1675909649&tid=UA-71023015-1&_gid=715909744.1675909649&_r=1&z=2114469274 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://newtechpipefitting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-71023015-1&cid=1799327863.1675909649&jid=876062603&_gid=715909744.1675909649&gjid=1901198348&_v=j73&z=2114469274
access-control-allow-origin: *
date: Thu, 09 Feb 2023 02:26:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: Golfe2
content-length: 418
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/fonts/AlkamiLogos.woff
199.79.62.190404 Not Found 12 kB URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/fonts/AlkamiLogos.woff
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Hash a8063bd37d3c8fb3176a6bf140558a4d
e32cf4b407db3d3773ded13ff64b70fdbad7735f
bccb23d41c2cc69cf0c7d22c4314ca8181a513c6999b73e45307792830f4e482
Analyzer Verdict Alert fortinet Phishing
GET /first/Connexus%20Credit%20Union_files/fonts/AlkamiLogos.woff HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/Connexus%20Credit%20Union_files/base.css
Cookie: _ga=GA1.2.1799327863.1675909649; _gid=GA1.2.715909744.1675909649; _gat=1
HTTP/1.1 404 Not Found
Date: Thu, 09 Feb 2023 02:26:33 GMT
Server: Apache
Last-Modified: Tue, 15 Mar 2022 22:05:38 GMT
Accept-Ranges: bytes
Content-Length: 11816
Vary: Accept-Encoding
Content-Type: text/html
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash c99599d6628f41d54430edaa40f5c533
4bbd35fd1097784ae5e1e046ba35595eb49ac57f
3cb4e5c0f89f5e97bd7b4a11c25b6bae84bb5a1d55982c44719b76b3f852035e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:26:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash a746d459d4fbc7da99072462ed09b456
6ca7c899101b7ddcc1228f148cdcf16113a805f7
cbed8854f94d225ec82298e5039b9c163f58f9fede0db72510d22867003cb4a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:26:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-71023015-1&cid=1799327863.1675909649&jid=876062603&_gid=715909744.1675909649&gjid=1901198348&_v=j73&z=2114469274
74.125.205.154302 Found 366 B URL HTTP/2 stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-71023015-1&cid=1799327863.1675909649&jid=876062603&_gid=715909744.1675909649&gjid=1901198348&_v=j73&z=2114469274
IP 74.125.205.154:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash feb4dc18836f0f21cac6555974a52707
7dbd114206fc1439b09be5c4e8c35f573a8b7f5b
85fb84a42c8d57e5e2ae834f4c85c759413875d15cb094b6c93080b10170b7cd
GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-71023015-1&cid=1799327863.1675909649&jid=876062603&_gid=715909744.1675909649&gjid=1901198348&_v=j73&z=2114469274 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://newtechpipefitting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-71023015-1&cid=1799327863.1675909649&jid=876062603&_v=j73&z=2114469274
access-control-allow-origin: *
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 09 Feb 2023 02:26:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: Golfe2
content-length: 366
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 84889b914548f7820766f27a40699cfa
bc674cdb5819759b5ecd5aabfde47f56127f5d89
e2a69fe4edd028d00a8a744b62ef51dada2aff144da0cd9813efc887a11f70a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:26:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash a746d459d4fbc7da99072462ed09b456
6ca7c899101b7ddcc1228f148cdcf16113a805f7
cbed8854f94d225ec82298e5039b9c163f58f9fede0db72510d22867003cb4a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:26:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash dbd5b0815c51a25d04540e38add1e4f7
545f5c1e33cf331a3c45888deb29fc9943337c3b
be6e704ffc4392855461adda00cd9d0f838a3429b0a8518bc05be59c3e690492
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6403
Cache-Control: max-age=126217
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:26:33 GMT
Etag: "63e38adf-1d7"
Expires: Fri, 10 Feb 2023 13:30:10 GMT
Last-Modified: Wed, 08 Feb 2023 11:43:27 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash dbd5b0815c51a25d04540e38add1e4f7
545f5c1e33cf331a3c45888deb29fc9943337c3b
be6e704ffc4392855461adda00cd9d0f838a3429b0a8518bc05be59c3e690492
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6369
Cache-Control: max-age=126183
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:26:33 GMT
Etag: "63e38adf-1d7"
Expires: Fri, 10 Feb 2023 13:29:36 GMT
Last-Modified: Wed, 08 Feb 2023 11:43:27 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-71023015-1&cid=1799327863.1675909649&jid=876062603&_v=j73&z=2114469274
216.58.207.228302 Found 0 B URL HTTP/2 www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-71023015-1&cid=1799327863.1675909649&jid=876062603&_v=j73&z=2114469274
IP 216.58.207.228:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-71023015-1&cid=1799327863.1675909649&jid=876062603&_v=j73&z=2114469274 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://newtechpipefitting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 09 Feb 2023 02:26:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-71023015-1&cid=1799327863.1675909649&jid=876062603&_v=j73&z=2114469274&slf_rd=1&random=3065240174
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 44fc0cb48c26edb9ce36736707b9182a
62de7faa3e8171c0d38a2e03a604d2545a3ede7f
9e511ad6ed9e7c5f28f573422e3891d2f4e5c2ba5107f7eda808c529a95931a2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:26:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 72226fa2f9513f894889fa652cb2a8bf
8a1b4f108db687c34b334a94e6d931544fd7508e
a70034db82d42d5deb58f551cb4de47a5cf6b226dbc9aa98892adb62c2f73289
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:26:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-71023015-1&cid=1799327863.1675909649&jid=876062603&_v=j73&z=2114469274&slf_rd=1&random=3065240174
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-71023015-1&cid=1799327863.1675909649&jid=876062603&_v=j73&z=2114469274&slf_rd=1&random=3065240174
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-71023015-1&cid=1799327863.1675909649&jid=876062603&_v=j73&z=2114469274&slf_rd=1&random=3065240174 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://newtechpipefitting.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 09 Feb 2023 02:26:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 72226fa2f9513f894889fa652cb2a8bf
8a1b4f108db687c34b334a94e6d931544fd7508e
a70034db82d42d5deb58f551cb4de47a5cf6b226dbc9aa98892adb62c2f73289
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:26:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js-agent.newrelic.com/nr-spa-1118.min.js
151.101.2.137200 OK 13 kB URL HTTP/2 js-agent.newrelic.com/nr-spa-1118.min.js
IP 151.101.2.137:0
File type ASCII text, with very long lines (32015)
Hash 8652588de7907a2ff449646421e5e5c1
593149229a462cd897d39da89552428d14cdaa7c
9169cade724eb2c4f34ae87c31fcd35529c2861d089fd659d653fd46d2dcd893
GET /nr-spa-1118.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://newtechpipefitting.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: SDc+WxvTlEQPwlJhb/7QnZI3M38odXNfGvp2mGdCsFi8qAewtsGBPoQK/WzcwRnyH2NJRtrjVn4=
x-amz-request-id: M3W8MKW97MDY82ZP
last-modified: Wed, 02 Jan 2019 18:42:31 GMT
etag: "7e24c95b9a35bca45860d13c1ef0a95b"
x-amz-version-id: null
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Thu, 09 Feb 2023 02:26:33 GMT
via: 1.1 varnish
x-served-by: cache-bma1635-BMA
x-cache: HIT
x-cache-hits: 7
x-timer: S1675909594.986644,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 12943
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 77eb3dc4a13b6279161ce34fecd13a37
75c885dcc4d648289b294c5b19d64e9323fe1b9a
c1597dafe5bd8e421f7faf04d5cd96d521ed653db4ab35b6a454f9e26c7120e0
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=154364
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:26:33 GMT
Etag: "63e411d5-1d7"
Expires: Fri, 10 Feb 2023 21:19:17 GMT
Last-Modified: Wed, 08 Feb 2023 21:19:17 GMT
Server: nginx
Content-Length: 471
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 77eb3dc4a13b6279161ce34fecd13a37
75c885dcc4d648289b294c5b19d64e9323fe1b9a
c1597dafe5bd8e421f7faf04d5cd96d521ed653db4ab35b6a454f9e26c7120e0
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=154364
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:26:33 GMT
Etag: "63e411d5-1d7"
Expires: Fri, 10 Feb 2023 21:19:17 GMT
Last-Modified: Wed, 08 Feb 2023 21:19:17 GMT
Server: nginx
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b6d2882874c540bdd4eaf9dd79ca3eb4
89edbe4e8d708c0588ad6bf0825f52b53fae05e6
6ca668b7e754592f44143418013e193fdba8469c01981427a0d2e707970039c8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4884
Cache-Control: max-age=164977
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:26:34 GMT
Etag: "63e42837-1d7"
Expires: Sat, 11 Feb 2023 00:16:11 GMT
Last-Modified: Wed, 08 Feb 2023 22:54:47 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
onlinebanking.connexuscu.org/Orbital/Connexus/favicons/favicon-16x16.png
104.17.43.19200 OK 284 B URL HTTP/2 onlinebanking.connexuscu.org/Orbital/Connexus/favicons/favicon-16x16.png
IP 104.17.43.19:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 5d15480a42008adfc6a2210aa3c0f34e
a1bb91beaef073f57551849fbd5414b3c4a8bfe1
44922a1bb754a26cf842a1031e8f0d3f2141564f1bfc444fe5cc433fa0a81ee4
GET /Orbital/Connexus/favicons/favicon-16x16.png HTTP/1.1
Host: onlinebanking.connexuscu.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://newtechpipefitting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:26:34 GMT
content-type: image/png
content-length: 284
last-modified: Thu, 19 Jan 2023 06:51:31 GMT
etag: "5dbb4076d22bd91:0"
x-svr: WEB1631140
expires: Thu, 09 Feb 2023 02:36:34 GMT
cache-control: max-age=600
cf-cache-status: MISS
accept-ranges: bytes
cf-request-id: 16d59813a700001c0ea2001000000001
set-cookie: __cf_bm=LzWmk4Mzle4Fqh1BQWcvhEvKTTBU7Jmq6CMOMyr.1qA-1675909594-0-Ad0Jb5pW0M1TXA0KfbdxmepwzBJuGvcn9ksIckA151bsjXJng1ZcGzrC3kiDcIx+gvX0cJCWT5oiwDJt4idSTBo=; path=/; expires=Thu, 09-Feb-23 02:56:34 GMT; domain=.connexuscu.org; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 79692932a9a21c0e-OSL
X-Firefox-Spdy: h2
onlinebanking.connexuscu.org/Orbital/Connexus/favicons/android-chrome-192x192.png
104.17.43.19200 OK 4.3 kB URL HTTP/2 onlinebanking.connexuscu.org/Orbital/Connexus/favicons/android-chrome-192x192.png
IP 104.17.43.19:0
File type PNG image data, 192 x 192, 4-bit colormap, non-interlaced\012- data
Hash f559d931134bca72ab30201a5d814e36
34a54f529ad572313cbbda37d5485dbf39693a04
7a10862a91523af52c5fb3b4dc50039d919a54a0a3365d7335a40d6f77f037bf
GET /Orbital/Connexus/favicons/android-chrome-192x192.png HTTP/1.1
Host: onlinebanking.connexuscu.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://newtechpipefitting.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:26:34 GMT
content-type: image/png
content-length: 4253
last-modified: Thu, 19 Jan 2023 06:51:32 GMT
etag: "313c3477d22bd91:0"
x-svr: WEB1648135
expires: Thu, 09 Feb 2023 02:36:34 GMT
cache-control: max-age=600
cf-cache-status: MISS
accept-ranges: bytes
cf-request-id: 16d59813ab00001c0e0b001000000001
set-cookie: __cf_bm=z9hl4LN.AjQChgfBK30wI819T7.WCL3sf0i2bsUpcrE-1675909594-0-AXO5C8qkl1qoGTsxdQjyxb94LkcB1BPaXuStls7w+EMymMNsLEDvnZ9WRYxv2jdA6M/Rl8v5gMxfHmkOwaCisT8=; path=/; expires=Thu, 09-Feb-23 02:56:34 GMT; domain=.connexuscu.org; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 79692932a9a41c0e-OSL
X-Firefox-Spdy: h2
bam.nr-data.net/1/aec7706684?a=3248445&v=1118.0c07c19&to=MlVRZUoCW0ZZBUdcXAsffmd7THRATA5WW0cMU1JFUQxbdlcIR0dcCVxWQxcqW1FdHg%3D%3D&rst=3494&ref=http://newtechpipefitting.com/first/&ap=27&be=1604&fe=3429&dc=2680&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1675909647576,%22n%22:0,%22f%22:-6,%22dn%22:81,%22dne%22:321,%22c%22:321,%22ce%22:495,%22rq%22:495,%22rp%22:676,%22rpe%22:850,%22dl%22:680,%22di%22:2677,%22ds%22:2679,%22de%22:2740,%22dc%22:3429,%22l%22:3429,%22le%22:3431%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken
162.247.241.14200 OK 73 B URL HTTP/1.1 bam.nr-data.net/1/aec7706684?a=3248445&v=1118.0c07c19&to=MlVRZUoCW0ZZBUdcXAsffmd7THRATA5WW0cMU1JFUQxbdlcIR0dcCVxWQxcqW1FdHg%3D%3D&rst=3494&ref=http://newtechpipefitting.com/first/&ap=27&be=1604&fe=3429&dc=2680&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1675909647576,%22n%22:0,%22f%22:-6,%22dn%22:81,%22dne%22:321,%22c%22:321,%22ce%22:495,%22rq%22:495,%22rp%22:676,%22rpe%22:850,%22dl%22:680,%22di%22:2677,%22ds%22:2679,%22de%22:2740,%22dc%22:3429,%22l%22:3429,%22le%22:3431%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken
IP 162.247.241.14:0
File type ASCII text, with no line terminators
Hash 814f8120cdf5a972bdb0fd5521a92a5d
47f7b3cd340d1fe91766ff27602e319a79bcd14c
5f520e553ae6a634e84b7c8c8d36908d2efa441d716834fd98c012c402b1c3c8
GET /1/aec7706684?a=3248445&v=1118.0c07c19&to=MlVRZUoCW0ZZBUdcXAsffmd7THRATA5WW0cMU1JFUQxbdlcIR0dcCVxWQxcqW1FdHg%3D%3D&rst=3494&ref=http://newtechpipefitting.com/first/&ap=27&be=1604&fe=3429&dc=2680&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1675909647576,%22n%22:0,%22f%22:-6,%22dn%22:81,%22dne%22:321,%22c%22:321,%22ce%22:495,%22rq%22:495,%22rp%22:676,%22rpe%22:850,%22dl%22:680,%22di%22:2677,%22ds%22:2679,%22de%22:2740,%22dc%22:3429,%22l%22:3429,%22le%22:3431%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://newtechpipefitting.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:34 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 796929332f14b51d-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=12faa0e83547f71; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
bam.nr-data.net/resources/1/aec7706684?a=3248445&v=1118.0c07c19&to=MlVRZUoCW0ZZBUdcXAsffmd7THRATA5WW0cMU1JFUQxbdlcIR0dcCVxWQxcqW1FdHg%3D%3D&rst=4248&ref=http://newtechpipefitting.com/first/&st=1675909647576
162.247.241.14200 OK 36 B URL HTTP/1.1 bam.nr-data.net/resources/1/aec7706684?a=3248445&v=1118.0c07c19&to=MlVRZUoCW0ZZBUdcXAsffmd7THRATA5WW0cMU1JFUQxbdlcIR0dcCVxWQxcqW1FdHg%3D%3D&rst=4248&ref=http://newtechpipefitting.com/first/&st=1675909647576
IP 162.247.241.14:0
File type ASCII text, with no line terminators
Hash 91485f0861e8192a03c3900f764a4bc4
337d3d0d3b2f2cc63d2d0f51590098d91b5b316c
198415fa1eb82c970424e5b13fe472b278e17e4664016101093df55049252809
POST /resources/1/aec7706684?a=3248445&v=1118.0c07c19&to=MlVRZUoCW0ZZBUdcXAsffmd7THRATA5WW0cMU1JFUQxbdlcIR0dcCVxWQxcqW1FdHg%3D%3D&rst=4248&ref=http://newtechpipefitting.com/first/&st=1675909647576 HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 8328
Origin: http://newtechpipefitting.com
Connection: keep-alive
Referer: http://newtechpipefitting.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:35 GMT
Content-Type: text/plain
Content-Length: 36
Connection: keep-alive
CF-Ray: 7969293749a5b51d-OSL
Access-Control-Allow-Origin: http://newtechpipefitting.com
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare
bam.nr-data.net/events/1/aec7706684?a=3248445&v=1118.0c07c19&to=MlVRZUoCW0ZZBUdcXAsffmd7THRATA5WW0cMU1JFUQxbdlcIR0dcCVxWQxcqW1FdHg%3D%3D&rst=4258&ref=http://newtechpipefitting.com/first/
162.247.241.14200 OK 24 B URL HTTP/1.1 bam.nr-data.net/events/1/aec7706684?a=3248445&v=1118.0c07c19&to=MlVRZUoCW0ZZBUdcXAsffmd7THRATA5WW0cMU1JFUQxbdlcIR0dcCVxWQxcqW1FdHg%3D%3D&rst=4258&ref=http://newtechpipefitting.com/first/
IP 162.247.241.14:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash bc32ed98d624acb4008f986349a20d26
2d3df8c11d2168ce2c27e0937421d11d85016361
0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300
POST /events/1/aec7706684?a=3248445&v=1118.0c07c19&to=MlVRZUoCW0ZZBUdcXAsffmd7THRATA5WW0cMU1JFUQxbdlcIR0dcCVxWQxcqW1FdHg%3D%3D&rst=4258&ref=http://newtechpipefitting.com/first/ HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 246
Origin: http://newtechpipefitting.com
Connection: keep-alive
Referer: http://newtechpipefitting.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:35 GMT
Content-Type: image/gif
Content-Length: 24
Connection: keep-alive
CF-Ray: 796929375cc1b4f3-OSL
Access-Control-Allow-Origin: http://newtechpipefitting.com
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/103929_awfcPP4TLsBKE7bbi7Z8kSgcccc
199.79.62.190200 OK 0 B URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/103929_awfcPP4TLsBKE7bbi7Z8kSgcccc
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Phishing
GET /first/Connexus%20Credit%20Union_files/103929_awfcPP4TLsBKE7bbi7Z8kSgcccc HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:31 GMT
Server: nginx/1.21.6
Content-Length: 84043
Last-Modified: Tue, 07 Feb 2023 11:09:54 GMT
X-Server-Cache: true
X-Proxy-Cache: HIT
Accept-Ranges: bytes
newtechpipefitting.com/first/Connexus%20Credit%20Union_files/globals.js
199.79.62.190200 OK 0 B URL HTTP/1.1 newtechpipefitting.com/first/Connexus%20Credit%20Union_files/globals.js
IP 199.79.62.190:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Phishing
GET /first/Connexus%20Credit%20Union_files/globals.js HTTP/1.1
Host: newtechpipefitting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://newtechpipefitting.com/first/
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:26:32 GMT
Server: Apache
Last-Modified: Tue, 07 Feb 2023 11:09:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: application/javascript