Report - technologycuratedpromotion.com/19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom

Report Overview

Submitted URL
technologycuratedpromotion.com/19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3
IP
52.207.173.28
ASN
#14618 AMAZON-AES
Submitted
2022-12-23 01:49:17
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
28

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
polyfill.io	102644	2016-02-12T01:04:58Z	2023-03-09T05:24:25Z	489 B	644 B	151.101.65.26
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-09T12:17:45Z	3.9 kB	8.6 kB	142.250.74.106
use.typekit.net	494	2012-07-05T03:42:39Z	2023-03-09T05:12:52Z	391 B	4.5 kB	23.36.76.122
p.typekit.net	620	2012-05-23T16:28:57Z	2023-03-09T05:12:52Z	858 B	338 B	23.36.76.122
technologycuratedpromotion.com	unknown	2021-10-30T04:34:06Z	2023-02-07T06:19:54Z	15 kB	3.5 MB	52.207.173.28
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-09T05:09:05Z	3.0 kB	8.0 kB	23.36.76.226
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-09T05:09:48Z	333 B	391 B	34.117.237.239
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-09T11:52:10Z	2.0 kB	3.8 kB	93.184.220.29
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-09T05:09:18Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-09T05:09:49Z	413 B	5.9 kB	34.160.144.191
stackpath.bootstrapcdn.com	2467	2018-06-15T22:36:43Z	2023-03-09T11:05:34Z	428 B	903 B	104.18.10.207
cdn.jsdelivr.net	439	2012-09-30T02:15:09Z	2023-03-09T06:49:10Z	423 B	8.6 kB	151.101.193.229
cdnjs.cloudflare.com	235	2015-04-17T22:46:33Z	2023-03-09T05:09:51Z	815 B	46 kB	104.17.25.14
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-09T05:09:13Z	606 B	127 B	35.82.221.194
via.placeholder.com	26595	2017-06-01T17:41:00Z	2023-03-09T07:52:42Z	409 B	2.6 kB	188.114.97.1
ocsp.globalsign.com	2075	2012-07-20T19:46:16Z	2023-03-09T05:09:04Z	368 B	1.9 kB	104.18.21.226
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-09T05:09:50Z	2.1 kB	4.2 kB	142.250.74.131
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-09T10:01:47Z	494 B	17 kB	216.58.207.227
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-09T10:04:36Z	3.2 kB	60 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-23	medium	technologycuratedpromotion.com/ckeditor/contents.css?t=M9RE	Phishing
2022-12-23	medium	technologycuratedpromotion.com/ckeditor/plugins/formBuilder/styles/formBuilder.css?v=1.3.1671727446165	Phishing
2022-12-23	medium	technologycuratedpromotion.com/lib/jq/validator/fb.validation.js	Phishing
2022-12-23	medium	technologycuratedpromotion.com/lib/jq/cqParams/fb.cqParams.js	Phishing
2022-12-23	medium	technologycuratedpromotion.com/lib/jq/otherInput/fb.otherInput.js	Phishing
2022-12-23	medium	technologycuratedpromotion.com/lib/jq/fb.utils.js	Phishing
2022-12-23	medium	technologycuratedpromotion.com/lib/jq/fb.autoSubmit.js	Phishing
2022-12-23	medium	technologycuratedpromotion.com/lpScripts/assetsBehavior.js?v=1	Phishing
2022-12-23	medium	technologycuratedpromotion.com/lib/uri/uri.js	Phishing
2022-12-23	medium	technologycuratedpromotion.com/lib/jq/validator/localization/jq_validation_localizations.boundled.js	Phishing
2022-12-23	medium	technologycuratedpromotion.com/lib/uri/uri.js	Phishing
2022-12-23	medium	technologycuratedpromotion.com/ckeditor/plugins/formBuilder/styles/formBuilder.css?v=1.3.1671722732525	Phishing
2022-12-23	medium	technologycuratedpromotion.com/ckeditor/contents.css?t=M9RE	Phishing
2022-12-23	medium	technologycuratedpromotion.com/lpScripts/assetsBehavior.js?v=1	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

Files detected

URL
technologycuratedpromotion.com/19779-138115-typ/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&mode=file
IP
52.207.173.28
ASN
#14618 AMAZON-AES

File type
PDF document, version 1.7 (zip deflate encoded)\012- data
Size
2.9 MB (2908284 bytes)
Hash
f707585fef8d5bcde7b904bbc789ff60
b23f5ef8d50cce38d7d9841bd4ae3fee412fcfb1
cd09c218dcb095dba873fa50f2ec2591d5b15356dc25c4bd6fb2cb4546e4ffab

JavaScript (16)

	URL	Size	First Seen	Last Seen
	technologycuratedpromotion.com/lib/uri/uri.js	77 kB	2023-03-07	2024-04-24
Pretty URL technologycuratedpromotion.com/lib/uri/uri.js IP 52.207.173.28 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:23:25 Last Seen2024-04-24 17:52:51 Times Seen1497 Hash 64437cd33e2fa1a40e6850ee6388639e 809078716153b491c00852f366ca3f8d6e03df22 96361c580499a6dd7afa83f352fb2a27c159a39daf794e2e6813514be8a8fbe9 Loading...

	polyfill.io/v3/polyfill.min.js?version=3.52.1&features=URL%2CURLSearchParams%2Ces5%2Ces6%2Ces7	72 B	2023-03-07	2024-04-21
Pretty URL polyfill.io/v3/polyfill.min.js?version=3.52.1&features=URL%2CURLSearchParams%2Ces5%2Ces6%2Ces7 IP 151.101.65.26 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:35 Last Seen2024-04-21 06:42:33 Times Seen290 Hash 7bf5fb2fd30cea050be6a48b90343984 e3d8fc7eec3e4338218b844d40a1ae86cc8581c6 aaecd144d2b8763b2fa5c91f09778294363cef363c10504205f4203922644d11 Loading...

	technologycuratedpromotion.com/19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3	58 B	2023-03-07	2023-05-24
Pretty URL technologycuratedpromotion.com/19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3 IP 52.207.173.28 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:32:08 Last Seen2023-05-24 08:12:57 Times Seen66 Hash ea4cdd05ea02fc381650389e3513ec3a ae902087b2cde7a4e0d58c1a5eb3fc8310b2c755 f2738345b1d22b55dbcfbd3c3fd7ed8ed4e9ed7ca68e35b86135c2a9211ef4ed Loading...

	pdf.js/web/viewer.js	374 kB	2023-03-07	2023-04-05
Pretty URL pdf.js/web/viewer.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:22 Last Seen2023-04-05 02:12:01 Times Seen1357 Hash 7f28003dcd68438eee3f0fb20757243c 7f119fdc77292f13ea6d6a72d0e16373e1d7bb23 f9a11592ab64edfa8c23f7f97c7ab331c689185292fdb490d039b89c70fb01b0 Loading...

	cdn.jsdelivr.net/npm/jquery-validation@1.19.1/dist/jquery.validate.min.js	24 kB	2023-03-07	2024-04-25
Pretty URL cdn.jsdelivr.net/npm/jquery-validation@1.19.1/dist/jquery.validate.min.js IP 151.101.193.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:26 Last Seen2024-04-25 09:44:29 Times Seen1189 Hash 8a25965d822705f957a243443d219787 0da4c535b50bdb4dffa3b5fae3e999aeee137cb5 b0f074179d185032b4a2d0e7b1f3476b0626039334a638d47f84ef44990616b2 Loading...

	cdnjs.cloudflare.com/ajax/libs/select2/4.0.13/js/select2.min.js	71 kB	2023-03-07	2024-04-25
Pretty URL cdnjs.cloudflare.com/ajax/libs/select2/4.0.13/js/select2.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:39 Last Seen2024-04-25 08:03:38 Times Seen4280 Hash 0f64f3a3a0c620a6756d36abaff1b4a6 4738d7f9885db2cb9370766974c8f6b22e9ec29d 00501810e93307a8882a74d864e7547fd1458deea539361dc1124ac133799a4b Loading...

	technologycuratedpromotion.com/lib/jq/validator/fb.validation.js	2.0 kB	2023-03-07	2023-03-26
Pretty URL technologycuratedpromotion.com/lib/jq/validator/fb.validation.js IP 52.207.173.28 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:32:08 Last Seen2023-03-26 08:44:40 Times Seen28 Hash 60f78449c35e69490026e3f739d322dc a0f988cad0941c050d4ecbe1d58f450193c604d2 ee75b43f5de847b148b9ed76c06b5db9566ba8da3ac35c726ed43ef9f9b2c3e3 Loading...

	pdf.js/build/pdf.js	322 kB	2023-03-07	2023-04-05
Pretty URL pdf.js/build/pdf.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:22 Last Seen2023-04-05 02:12:01 Times Seen1311 Hash 42ee10ee09176e186c5846bab608c4a8 03d49a21c62fc1e134d08cd62593dac460e9981b 7049dcd5d0dc1e88a111356c01ccf1098990dbece884a0d8f3b5f3cafd9f0e81 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js	90 kB	2023-03-07	2024-04-25
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-25 18:49:43 Times Seen139163 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	technologycuratedpromotion.com/lpScripts/assetsBehavior.js?v=1	9.5 kB	2023-03-08	2023-03-12
Pretty URL technologycuratedpromotion.com/lpScripts/assetsBehavior.js?v=1 IP 52.207.173.28 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:30:02 Last Seen2023-03-12 14:00:59 Times Seen1 Hash b3d79c3fb1a09ffcead07bd732d7d81a d73f923eea8f386c4d441a076e1e77e59f0f7cf4 01f6570da4691ac14aa5f882167414fa699581b41cacfa07f8f7731663392cd4 Loading...

	technologycuratedpromotion.com/lib/jq/cqParams/fb.cqParams.js	2.8 kB	2023-03-07	2024-02-26
Pretty URL technologycuratedpromotion.com/lib/jq/cqParams/fb.cqParams.js IP 52.207.173.28 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:32:08 Last Seen2024-02-26 20:40:06 Times Seen184 Hash 55159908ed60d22fd3992732aa7e42d3 57976f1953d1da224e9746296eaac849d69dc5f3 c6b1e77cd2f103d2fa292bf088a9680848a4f94b6c1ef6ee2017c2ba530a03c5 Loading...

	technologycuratedpromotion.com/lib/jq/otherInput/fb.otherInput.js	2.3 kB	2023-03-08	2024-02-26
Pretty URL technologycuratedpromotion.com/lib/jq/otherInput/fb.otherInput.js IP 52.207.173.28 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:30:02 Last Seen2024-02-26 20:40:06 Times Seen202 Hash 98ddf73de28f5fef1378553ea90dc407 9c76c82d52e3512a2fe53c754b135c5a91f1e97c 0bf7b8a2f9d4ebc076ca6ecbfad616bca4bb4d489ab2d021d935c4854585a0d0 Loading...

	technologycuratedpromotion.com/lib/jq/fb.autoSubmit.js	631 B	2023-03-07	2023-03-17
Pretty URL technologycuratedpromotion.com/lib/jq/fb.autoSubmit.js IP 52.207.173.28 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:32:08 Last Seen2023-03-17 12:45:25 Times Seen1 Hash d1b0ab11f9d2a041be621b97140bd0de 03eb391c2a4ec2e17385afdb695cb458bddb4dba 348cf9886114edd1ab2df04571fd8e6eeb192d2da111b4ef3200caa25ce0ffae Loading...

	technologycuratedpromotion.com/lib/jq/fb.utils.js	18 kB	2023-03-07	2023-03-17
Pretty URL technologycuratedpromotion.com/lib/jq/fb.utils.js IP 52.207.173.28 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:13:30 Last Seen2023-03-17 12:45:25 Times Seen1 Hash ae4404875fed763d83013c881e85a0ee b816ad607b6a4a89b901447ad513abbbf7fd16a9 827810c0c757314f1071132a70efabdf940d7a259cf21bc99f008f96f0859637 Loading...

	technologycuratedpromotion.com/lib/jq/validator/localization/jq_validation_localizations.boundled.js	110 kB	2023-03-07	2023-03-17
Pretty URL technologycuratedpromotion.com/lib/jq/validator/localization/jq_validation_localizations.boundled.js IP 52.207.173.28 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33:37 Last Seen2023-03-17 12:45:25 Times Seen1 Hash 590cfcdcec421c852434167b135406c7 aa035d2388b6576bbb0657b4347b88ec7d272bd7 90e8f80b16e3b6ee999a5400579399c6207291f3f5476fb3951c5230d75ec3db Loading...

	technologycuratedpromotion.com/19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3	98 B	2023-03-07	2023-05-24
Pretty URL technologycuratedpromotion.com/19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3 IP 52.207.173.28 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:32:08 Last Seen2023-05-24 08:12:57 Times Seen66 Hash bd1bb06e1eb2513d80d713f827f44a47 e16d34af3ee95682c44aea25471460209bf69f61 a415cd8038dc4ff7548175717a3c9d05be601ac83c010f17066c33bbaa9da799 Loading...

HTTP Transactions (76)

URL IP Response Size

technologycuratedpromotion.com/19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3

52.207.173.28

301 Moved Permanently

169 B

URL HTTP/1.1
technologycuratedpromotion.com/19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3
IP
52.207.173.28:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
169 B (169 bytes)
Hash
b51956ed2a6129f43c5d0ecc011cc5a5
c03157aff80067b6b57903d3843b9fd9e07b33ab
1ac63374d015eee8d9d875502aa63981dbeb9d86a14096de0d504763808e429b

HTTP Headers

GET /19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3 HTTP/1.1
Host: technologycuratedpromotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx/1.22.0
Date: Fri, 23 Dec 2022 01:49:06 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://technologycuratedpromotion.com/19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7e300ca7d2d586dd1ca0c185ef6b0da5
3914cfd3b7aa6e1d1117bf509319479e489ed2a4
91c8810ad137faf4393f7d15f9c619c06d124a7aaebfa21290dca614db2c7757

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "91C8810AD137FAF4393F7D15F9C619C06D124A7AAEBFA21290DCA614DB2C7757"
Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8687
Expires: Fri, 23 Dec 2022 04:13:53 GMT
Date: Fri, 23 Dec 2022 01:49:06 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ad598540c6639aaaa344fb3ce4f3162f
b0b9f86d50de7dc23bdc7aee2f45d79a06165afc
4e9aaff330ce0c9c11f6bb8502fe21296b1845151bace75f73908a3194d5d0a1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4E9AAFF330CE0C9C11F6BB8502FE21296B1845151BACE75F73908A3194D5D0A1"
Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11018
Expires: Fri, 23 Dec 2022 04:52:44 GMT
Date: Fri, 23 Dec 2022 01:49:06 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 23 Dec 2022 01:34:41 GMT
content-type: application/json
age: 865
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
32167242c3bbe7e45a2a865279df94a6
d03436f418ff77d50a553daa892c05e0725ba908
d5578d537296da18f3f349a98465e9fe930dca60a8ed62c183e9c9f6eb53f493

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D5578D537296DA18F3F349A98465E9FE930DCA60A8ED62C183E9C9F6EB53F493"
Last-Modified: Wed, 21 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5602
Expires: Fri, 23 Dec 2022 03:22:28 GMT
Date: Fri, 23 Dec 2022 01:49:06 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: X+oa1oZHKxfqUimnPCRSSpW9Py395Fp3ZvbAPNJE5tsDTga7i4ipXJbodQ4tAiyh3pYjt5DfCHxUc9Y7dbFJ1Q==
x-amz-request-id: AD7B2MJ9SGD1BR4Y
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 23 Dec 2022 00:55:59 GMT
age: 3187
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 23 Dec 2022 01:49:06 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3bb1012314757a5772734036c5cb2415
8d7c0b23770c9a54e178ed9cc104d6b532a2caaa
f49ac7a9510055472a60ff2eb1f65fc8d2fc45e76e7b3fb6328cce33ae6eca21

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F49AC7A9510055472A60FF2EB1F65FC8D2FC45E76E7B3FB6328CCE33AE6ECA21"
Last-Modified: Thu, 22 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 23 Dec 2022 07:49:06 GMT
Date: Fri, 23 Dec 2022 01:49:06 GMT
Connection: keep-alive

technologycuratedpromotion.com/19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3

52.207.173.28

200 OK

8.2 kB

URL HTTP/1.1
technologycuratedpromotion.com/19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3
IP
52.207.173.28:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (15037)
Size
8.2 kB (8188 bytes)
Hash
e7339983b764cd60b3eecd726cfb6c05
df98d17e6c00d7f6b2938d2d8798fd28726c4ca6
b7248e524dead3976fe70f3ff04e87428240c7041e5018496d025df73f2a1902

HTTP Headers

GET /19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3 HTTP/1.1
Host: technologycuratedpromotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Server: nginx/1.22.0
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.16
Cache-Control: max-age=0, must-revalidate, private
Date: Fri, 23 Dec 2022 01:49:06 GMT
Expires: Fri, 23 Dec 2022 01:49:06 GMT
Content-Encoding: gzip

cdn.jsdelivr.net/npm/jquery-validation@1.19.1/dist/jquery.validate.min.js

151.101.193.229

200 OK

7.8 kB

URL HTTP/2
cdn.jsdelivr.net/npm/jquery-validation@1.19.1/dist/jquery.validate.min.js
IP
151.101.193.229:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (24237)
Size
7.8 kB (7815 bytes)
Hash
144d2fdbeb2ac0a55e26fd4d3bcb6aa7
7b00473f6a8170bcb0573cec68acea35684250c7
5e9ecf8613ebbaae3c171d1ba18e6af51d41ed136730e2764784f12679fda526

HTTP Headers

GET /npm/jquery-validation@1.19.1/dist/jquery.validate.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.19.1
x-jsd-version-type: version
etag: W/"5f38-DaTFNbUL203/o7X64+mZru4TfLU"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 23 Dec 2022 01:49:07 GMT
age: 4490622
x-served-by: cache-fra-eddf8230052-FRA, cache-bma1645-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 7815
X-Firefox-Spdy: h2

technologycuratedpromotion.com/ckeditor/contents.css?t=M9RE

52.207.173.28

200 OK

2.9 kB

URL HTTP/1.1
technologycuratedpromotion.com/ckeditor/contents.css?t=M9RE
IP
52.207.173.28:0
ASN
#14618 AMAZON-AES

File type
ASCII text
Size
2.9 kB (2886 bytes)
Hash
ea34863bd1770c4274d7ed7c58449f2a
1aefe351289c27d7b741cd38baaaad3398e306ba
43b78285c786c968e35d8a44aafb06df291e840e106bd01ddf36df96ce84ff5d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /ckeditor/contents.css?t=M9RE HTTP/1.1
Host: technologycuratedpromotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Fri, 23 Dec 2022 01:49:07 GMT
Content-Type: text/css
Content-Length: 2886
Last-Modified: Thu, 01 Dec 2022 16:01:56 GMT
Connection: keep-alive
ETag: "6388cff4-b46"
Expires: Fri, 23 Dec 2022 01:49:07 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
187b708a31b2d76a7f294adbc532d151
b4d1de2c717a5c9f65e21999bee69d5521a26d45
96119e94128edede319ab0f7e5d861fd18d3b279ddb2272091e481514f6f4b6f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3536
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:49:07 GMT
Last-Modified: Fri, 23 Dec 2022 00:50:11 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
10d48b10752dd043ef911fe736536b8f
d880701c4fceaa30b84ef39d30d5266847780aa6
6f5445c341d431ef62b5c59e8818d795c8cd3e1b4d160a2b691aca2cc3f4821e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5182
Cache-Control: max-age=158537
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:49:07 GMT
Etag: "63a4bd1e-118"
Expires: Sat, 24 Dec 2022 21:51:24 GMT
Last-Modified: Thu, 22 Dec 2022 20:25:02 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 280

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
10d48b10752dd043ef911fe736536b8f
d880701c4fceaa30b84ef39d30d5266847780aa6
6f5445c341d431ef62b5c59e8818d795c8cd3e1b4d160a2b691aca2cc3f4821e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4683
Cache-Control: max-age=158038
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:49:07 GMT
Etag: "63a4bd1e-118"
Expires: Sat, 24 Dec 2022 21:43:05 GMT
Last-Modified: Thu, 22 Dec 2022 20:25:02 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 280

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
70a7b165f99b2b8fa0dc98318a7158d7
4d924f7febab9c8fe3fe9199e8879fd6ad892575
c5e0e414c34f2f328b487ae72b21a12a1b50d952aa1a31fb6314b4e700d27e05

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4567
Cache-Control: max-age=117230
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:49:07 GMT
Etag: "63a41e2a-1d7"
Expires: Sat, 24 Dec 2022 10:22:57 GMT
Last-Modified: Thu, 22 Dec 2022 09:06:50 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1

104.18.21.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1462 bytes)
Hash
84149a03f87f63630f686480e52e329d
a33289a2732503fd3531c9cc3f6d80c681543b16
b5bd22c4752135f4ca5997c8bac928763377a50e80255567577fb8eefe1b8b0a

HTTP Headers

POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 23 Dec 2022 01:49:07 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "46CB123C22C9CFAAEC1F499B2C249FEB8844E8D6"
Expires: Fri, 23 Dec 2022 13:00:00 GMT
Last-Modified: Fri, 23 Dec 2022 01:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 402
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77dd70590f59b518-OSL

cdnjs.cloudflare.com/ajax/libs/select2/4.0.13/js/select2.min.js

104.17.25.14

200 OK

16 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/select2/4.0.13/js/select2.min.js
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (64131)
Size
16 kB (16456 bytes)
Hash
e969f2fd683c8d12ccbfa6ec0487dadf
4efb5abd97f96f324fd3bd64902a02e4a8a3d3af
10375c0c9bd1d60f996e3b7eef19ada49ebc3790f78742204cef7026754d2ac2

HTTP Headers

GET /ajax/libs/select2/4.0.13/js/select2.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://technologycuratedpromotion.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 23 Dec 2022 01:49:07 GMT
content-type: application/javascript; charset=utf-8
content-length: 16456
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5ecc8659-114c3"
last-modified: Tue, 26 May 2020 03:00:41 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 9580520
expires: Wed, 13 Dec 2023 01:49:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QUxAz1kLAoctnaegqnHn0LfmW%2FsdUK2qQyFiWY1BH%2B1nvIc39mIq10abtD%2FKi1BFMD9htlVZo5XzxCzPs9ybTINb5jBLyKOVO6IbyW%2FJ934m6%2FQsrZJafEc1HEeNL04RIf8EGMQM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77dd70590b340b69-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Alert, ETag, Content-Type, Last-Modified, Cache-Control, Expires, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 23 Dec 2022 01:08:02 GMT
age: 2465
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

technologycuratedpromotion.com/ckeditor/plugins/formBuilder/styles/formBuilder.css?v=1.3.1671727446165

52.207.173.28

200 OK

5.2 kB

URL HTTP/1.1
technologycuratedpromotion.com/ckeditor/plugins/formBuilder/styles/formBuilder.css?v=1.3.1671727446165
IP
52.207.173.28:0
ASN
#14618 AMAZON-AES

File type
ASCII text
Size
5.2 kB (5201 bytes)
Hash
e741d2aa47efe7dda9dfe0a5014fef0e
30ebfe60d0832bb8114c6ba155f0ddb15c1a527c
68c2e3489d098db2a6e2ddba9f32ff172d1c0ff0983b9b3c3c0b59c8a850cf20

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /ckeditor/plugins/formBuilder/styles/formBuilder.css?v=1.3.1671727446165 HTTP/1.1
Host: technologycuratedpromotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Fri, 23 Dec 2022 01:49:07 GMT
Content-Type: text/css
Content-Length: 5201
Last-Modified: Thu, 01 Dec 2022 16:01:56 GMT
Connection: keep-alive
ETag: "6388cff4-1451"
Expires: Fri, 23 Dec 2022 01:49:07 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js

104.17.25.14

200 OK

28 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65451)
Size
28 kB (27958 bytes)
Hash
4b5f47439b640180cc3450f7de05d0d8
5a0dc9bcab80ddc409dd35fcb00a88fe6846fee2
1f85e8b327f42c17c025d69849914068536d9aa95412fe473ae90ffb2f4ebd82

HTTP Headers

GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 23 Dec 2022 01:49:07 GMT
content-type: application/javascript; charset=utf-8
content-length: 27958
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb09ed3-15d84"
last-modified: Mon, 04 May 2020 23:01:39 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 109143
expires: Wed, 13 Dec 2023 01:49:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t2ka6HyO8igurgMqnSijmfi8f7oI9pvhMbDb%2Fy5xUIp%2FRbkvEkz7CHIigC5PdpB09PpUE%2BYJ2vALHcgn2VjM6zzL4dnXmDbaAAUHq6OkbJZp6INKDOdb0yXSEbjO%2BAvHH2KTxeUK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77dd70593abd0afe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
187b708a31b2d76a7f294adbc532d151
b4d1de2c717a5c9f65e21999bee69d5521a26d45
96119e94128edede319ab0f7e5d861fd18d3b279ddb2272091e481514f6f4b6f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3565
Cache-Control: max-age=108694
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:49:07 GMT
Etag: "63a400bc-117"
Expires: Sat, 24 Dec 2022 08:00:41 GMT
Last-Modified: Thu, 22 Dec 2022 07:01:16 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
10d48b10752dd043ef911fe736536b8f
d880701c4fceaa30b84ef39d30d5266847780aa6
6f5445c341d431ef62b5c59e8818d795c8cd3e1b4d160a2b691aca2cc3f4821e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5182
Cache-Control: max-age=158537
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:49:07 GMT
Etag: "63a4bd1e-118"
Expires: Sat, 24 Dec 2022 21:51:24 GMT
Last-Modified: Thu, 22 Dec 2022 20:25:02 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 280

technologycuratedpromotion.com/lib/jq/validator/fb.validation.js

52.207.173.28

200 OK

2.0 kB

URL HTTP/1.1
technologycuratedpromotion.com/lib/jq/validator/fb.validation.js
IP
52.207.173.28:0
ASN
#14618 AMAZON-AES

File type
ASCII text
Size
2.0 kB (2011 bytes)
Hash
60f78449c35e69490026e3f739d322dc
a0f988cad0941c050d4ecbe1d58f450193c604d2
ee75b43f5de847b148b9ed76c06b5db9566ba8da3ac35c726ed43ef9f9b2c3e3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /lib/jq/validator/fb.validation.js HTTP/1.1
Host: technologycuratedpromotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Fri, 23 Dec 2022 01:49:07 GMT
Content-Type: application/javascript
Content-Length: 2011
Last-Modified: Wed, 09 Jun 2021 11:25:31 GMT
Connection: keep-alive
ETag: "60c0a52b-7db"
Expires: Fri, 23 Dec 2022 01:49:07 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

technologycuratedpromotion.com/ckeditor/plugins/lpLinkV2/css/styles.css

52.207.173.28

200 OK

2.2 kB

URL HTTP/1.1
technologycuratedpromotion.com/ckeditor/plugins/lpLinkV2/css/styles.css
IP
52.207.173.28:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (2158)
Size
2.2 kB (2159 bytes)
Hash
20944bcec784ce7e2b95b62808da9869
29fa6fc754e5f8cda684cfcadad4b996f7404e61
479da2477e3d7631c8cca6c411d1b2afad9d5e66bc6bb7acc8b1bdafadd75499

HTTP Headers

GET /ckeditor/plugins/lpLinkV2/css/styles.css HTTP/1.1
Host: technologycuratedpromotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Fri, 23 Dec 2022 01:49:07 GMT
Content-Type: text/css
Content-Length: 2159
Last-Modified: Thu, 01 Dec 2022 16:01:56 GMT
Connection: keep-alive
ETag: "6388cff4-86f"
Expires: Fri, 23 Dec 2022 01:49:07 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

polyfill.io/v3/polyfill.min.js?version=3.52.1&features=URL%2CURLSearchParams%2Ces5%2Ces6%2Ces7

151.101.65.26

200 OK

74 B

URL HTTP/2
polyfill.io/v3/polyfill.min.js?version=3.52.1&features=URL%2CURLSearchParams%2Ces5%2Ces6%2Ces7
IP
151.101.65.26:0
ASN
#54113 FASTLY

File type
ASCII text
Size
74 B (74 bytes)
Hash
bdb6d8e9b581dfbdb87566776ede0cbd
d18cdeacd5c146b34919955e97e51b7db50d0d9b
fe35c33df2fa5edeac1dbbe512a6e92c5b1e7fb5c204df818e23ea07b5121add

HTTP Headers

GET /v3/polyfill.min.js?version=3.52.1&features=URL%2CURLSearchParams%2Ces5%2Ces6%2Ces7 HTTP/1.1
Host: polyfill.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://technologycuratedpromotion.com
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: public, s-maxage=31536000, max-age=604800, stale-while-revalidate=604800, stale-if-error=604800
content-type: text/javascript; charset=utf-8
last-modified: Mon, 05 Dec 2022 19:13:17 GMT
content-encoding: br
age: 0
accept-ranges: bytes
useragent_normaliser: firefox/105.0.0
date: Fri, 23 Dec 2022 01:49:07 GMT
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
vary: User-Agent, Accept-Encoding
server-timing: cache-bma1648, PASS, fastly;desc="Edge time";dur=11
content-length: 74
X-Firefox-Spdy: h2

technologycuratedpromotion.com/lib/jq/cqParams/fb.cqParams.js

52.207.173.28

200 OK

2.8 kB

URL HTTP/1.1
technologycuratedpromotion.com/lib/jq/cqParams/fb.cqParams.js
IP
52.207.173.28:0
ASN
#14618 AMAZON-AES

File type
ASCII text
Size
2.8 kB (2815 bytes)
Hash
55159908ed60d22fd3992732aa7e42d3
57976f1953d1da224e9746296eaac849d69dc5f3
c6b1e77cd2f103d2fa292bf088a9680848a4f94b6c1ef6ee2017c2ba530a03c5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /lib/jq/cqParams/fb.cqParams.js HTTP/1.1
Host: technologycuratedpromotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Fri, 23 Dec 2022 01:49:07 GMT
Content-Type: application/javascript
Content-Length: 2815
Last-Modified: Tue, 14 Sep 2021 10:49:24 GMT
Connection: keep-alive
ETag: "61407e34-aff"
Expires: Fri, 23 Dec 2022 01:49:07 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

push.services.mozilla.com/

35.82.221.194

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.82.221.194:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: q/aExj9xsm8mCqhsTPZqDw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ja2aYX8Yq7mXVnonGqqLlWnK78w=

technologycuratedpromotion.com/lib/jq/otherInput/fb.otherInput.js

52.207.173.28

200 OK

2.3 kB

URL HTTP/1.1
technologycuratedpromotion.com/lib/jq/otherInput/fb.otherInput.js
IP
52.207.173.28:0
ASN
#14618 AMAZON-AES

File type
ASCII text
Size
2.3 kB (2332 bytes)
Hash
98ddf73de28f5fef1378553ea90dc407
9c76c82d52e3512a2fe53c754b135c5a91f1e97c
0bf7b8a2f9d4ebc076ca6ecbfad616bca4bb4d489ab2d021d935c4854585a0d0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /lib/jq/otherInput/fb.otherInput.js HTTP/1.1
Host: technologycuratedpromotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Fri, 23 Dec 2022 01:49:07 GMT
Content-Type: application/javascript
Content-Length: 2332
Last-Modified: Fri, 07 Oct 2022 13:13:57 GMT
Connection: keep-alive
ETag: "63402615-91c"
Expires: Fri, 23 Dec 2022 01:49:07 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

technologycuratedpromotion.com/lib/jq/fb.utils.js

52.207.173.28

200 OK

18 kB

URL HTTP/1.1
technologycuratedpromotion.com/lib/jq/fb.utils.js
IP
52.207.173.28:0
ASN
#14618 AMAZON-AES

File type
Unicode text, UTF-8 text
Size
18 kB (17827 bytes)
Hash
ae4404875fed763d83013c881e85a0ee
b816ad607b6a4a89b901447ad513abbbf7fd16a9
827810c0c757314f1071132a70efabdf940d7a259cf21bc99f008f96f0859637

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /lib/jq/fb.utils.js HTTP/1.1
Host: technologycuratedpromotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Fri, 23 Dec 2022 01:49:07 GMT
Content-Type: application/javascript
Content-Length: 17827
Last-Modified: Mon, 12 Sep 2022 09:24:07 GMT
Connection: keep-alive
ETag: "631efab7-45a3"
Expires: Fri, 23 Dec 2022 01:49:07 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

technologycuratedpromotion.com/lib/jq/fb.autoSubmit.js

52.207.173.28

200 OK

631 B

URL HTTP/1.1
technologycuratedpromotion.com/lib/jq/fb.autoSubmit.js
IP
52.207.173.28:0
ASN
#14618 AMAZON-AES

File type
ASCII text
Size
631 B (631 bytes)
Hash
d1b0ab11f9d2a041be621b97140bd0de
03eb391c2a4ec2e17385afdb695cb458bddb4dba
348cf9886114edd1ab2df04571fd8e6eeb192d2da111b4ef3200caa25ce0ffae

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /lib/jq/fb.autoSubmit.js HTTP/1.1
Host: technologycuratedpromotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Fri, 23 Dec 2022 01:49:07 GMT
Content-Type: application/javascript
Content-Length: 631
Last-Modified: Mon, 12 Apr 2021 20:19:39 GMT
Connection: keep-alive
ETag: "6074ab5b-277"
Expires: Fri, 23 Dec 2022 01:49:07 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

technologycuratedpromotion.com/lpScripts/assetsBehavior.js?v=1

52.207.173.28

200 OK

9.5 kB

URL HTTP/1.1
technologycuratedpromotion.com/lpScripts/assetsBehavior.js?v=1
IP
52.207.173.28:0
ASN
#14618 AMAZON-AES

File type
ASCII text
Size
9.5 kB (9493 bytes)
Hash
b3d79c3fb1a09ffcead07bd732d7d81a
d73f923eea8f386c4d441a076e1e77e59f0f7cf4
01f6570da4691ac14aa5f882167414fa699581b41cacfa07f8f7731663392cd4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /lpScripts/assetsBehavior.js?v=1 HTTP/1.1
Host: technologycuratedpromotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Fri, 23 Dec 2022 01:49:07 GMT
Content-Type: application/javascript
Content-Length: 9493
Last-Modified: Fri, 07 Oct 2022 13:13:57 GMT
Connection: keep-alive
ETag: "63402615-2515"
Expires: Fri, 23 Dec 2022 01:49:07 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

technologycuratedpromotion.com/lib/uri/uri.js

52.207.173.28

200 OK

77 kB

URL HTTP/1.1
technologycuratedpromotion.com/lib/uri/uri.js
IP
52.207.173.28:0
ASN
#14618 AMAZON-AES

File type
Unicode text, UTF-8 text, with very long lines (1107)
Size
77 kB (76862 bytes)
Hash
64437cd33e2fa1a40e6850ee6388639e
809078716153b491c00852f366ca3f8d6e03df22
96361c580499a6dd7afa83f352fb2a27c159a39daf794e2e6813514be8a8fbe9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /lib/uri/uri.js HTTP/1.1
Host: technologycuratedpromotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Fri, 23 Dec 2022 01:49:07 GMT
Content-Type: application/javascript
Content-Length: 76862
Last-Modified: Mon, 12 Apr 2021 20:19:39 GMT
Connection: keep-alive
ETag: "6074ab5b-12c3e"
Expires: Fri, 23 Dec 2022 01:49:07 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

technologycuratedpromotion.com/uploads/uploadedFonts/fontsImport.css?v=1671760146

52.207.173.28

200 OK

110 kB

URL HTTP/1.1
technologycuratedpromotion.com/uploads/uploadedFonts/fontsImport.css?v=1671760146
IP
52.207.173.28:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (508)
Size
110 kB (109543 bytes)
Hash
d046cdf976d4f63eb5e400700b98eda5
778066c8a78ab4f0f5510039b54042160feb76f6
4aec7e3aea87b1c085c6b495407a4908d6ad3423b38a8818a38428c046ec618b

HTTP Headers

GET /uploads/uploadedFonts/fontsImport.css?v=1671760146 HTTP/1.1
Host: technologycuratedpromotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Fri, 23 Dec 2022 01:49:07 GMT
Content-Type: text/css
Content-Length: 109543
Last-Modified: Wed, 30 Nov 2022 14:19:41 GMT
Connection: keep-alive
ETag: "6387667d-1abe7"
Expires: Fri, 23 Dec 2022 01:49:07 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

technologycuratedpromotion.com/lib/jq/validator/localization/jq_validation_localizations.boundled.js

52.207.173.28

200 OK

110 kB

URL HTTP/1.1
technologycuratedpromotion.com/lib/jq/validator/localization/jq_validation_localizations.boundled.js
IP
52.207.173.28:0
ASN
#14618 AMAZON-AES

File type
Unicode text, UTF-8 text
Size
110 kB (110384 bytes)
Hash
590cfcdcec421c852434167b135406c7
aa035d2388b6576bbb0657b4347b88ec7d272bd7
90e8f80b16e3b6ee999a5400579399c6207291f3f5476fb3951c5230d75ec3db

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /lib/jq/validator/localization/jq_validation_localizations.boundled.js HTTP/1.1
Host: technologycuratedpromotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Fri, 23 Dec 2022 01:49:07 GMT
Content-Type: application/javascript
Content-Length: 110384
Last-Modified: Thu, 14 Jul 2022 12:15:02 GMT
Connection: keep-alive
ETag: "62d008c6-1af30"
Expires: Fri, 23 Dec 2022 01:49:07 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b607f3e2facf61a8586563ae137d81eb
fc07f3f509b1a8f592efe951cc92bc07f307609d
68fef95cdc9deeb6a115e2869f3420a1e62dc7a64fd270f84c437bcc04642cd2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:49:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b607f3e2facf61a8586563ae137d81eb
fc07f3f509b1a8f592efe951cc92bc07f307609d
68fef95cdc9deeb6a115e2869f3420a1e62dc7a64fd270f84c437bcc04642cd2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:49:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b607f3e2facf61a8586563ae137d81eb
fc07f3f509b1a8f592efe951cc92bc07f307609d
68fef95cdc9deeb6a115e2869f3420a1e62dc7a64fd270f84c437bcc04642cd2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:49:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b607f3e2facf61a8586563ae137d81eb
fc07f3f509b1a8f592efe951cc92bc07f307609d
68fef95cdc9deeb6a115e2869f3420a1e62dc7a64fd270f84c437bcc04642cd2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:49:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b607f3e2facf61a8586563ae137d81eb
fc07f3f509b1a8f592efe951cc92bc07f307609d
68fef95cdc9deeb6a115e2869f3420a1e62dc7a64fd270f84c437bcc04642cd2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:49:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

via.placeholder.com/1280x320?text=LOGO

188.114.97.1

200 OK

1.8 kB

URL HTTP/2
via.placeholder.com/1280x320?text=LOGO
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 1280 x 320, 4-bit colormap, non-interlaced\012- data
Size
1.8 kB (1836 bytes)
Hash
c901b21688c204362c755b50dd01661c
21d804d25c253dbbebb24e2ec93c20e513d1aca9
cda6d49363c0eb3be56104f772fc8c2c334c132f2829ab30c246ad19f103454a

HTTP Headers

GET /1280x320?text=LOGO HTTP/1.1
Host: via.placeholder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 23 Dec 2022 01:49:08 GMT
content-type: image/png
content-length: 1836
last-modified: Wed, 30 Dec 2020 14:00:06 GMT
etag: "5fec87e6-72c"
expires: Fri, 30 Dec 2022 01:48:53 GMT
cache-control: max-age=604800
x-cache: L1
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LS2UaoKvb74WtFrYv6nRic78XZ%2BvX1bo5XX1CetfIbTViX7Cb4OAtv3oIXQljJ3Hp%2FDzW238BjsjTUDVkRnsrxMxDIvuQedPdVLaIaqGX7U5z7teydMzt5xss101LoRcqvx9SXau"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77dd705c39befab4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Source+Sans+Pro:ital,wght@0,200;0,300;0,400;0,600;0,700;0,900;1,200;1,300;1,400;1,600;1,700;1,900&display=swap

142.250.74.106

200 OK

1.6 kB

URL HTTP/2
fonts.googleapis.com/css2?family=Source+Sans+Pro:ital,wght@0,200;0,300;0,400;0,600;0,700;0,900;1,200;1,300;1,400;1,600;1,700;1,900&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
data
Size
1.6 kB (1625 bytes)
Hash
d1579c5c8d436a1395681c540d60e26a
2be9c9d565ad4a0b39825c5f5bae8b90c364909d
0d8203b9004a7fec7685acc080bc7ccf1d49e7479579bd63adcfe9001c38aec2

HTTP Headers

GET /css2?family=Source+Sans+Pro:ital,wght@0,200;0,300;0,400;0,600;0,700;0,900;1,200;1,300;1,400;1,600;1,700;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 23 Dec 2022 01:49:08 GMT
date: Fri, 23 Dec 2022 01:49:08 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

use.typekit.net/mgr2odi.css

23.36.76.122

200 OK

4.1 kB

URL HTTP/2
use.typekit.net/mgr2odi.css
IP
23.36.76.122:0
ASN
#20940 Akamai International B.V.

File type
Unicode text, UTF-8 text, with very long lines (520)
Size
4.1 kB (4083 bytes)
Hash
609b64c6359e37c88bbd245ba638b89f
dd850df3bcab5430f55c233b626cd8f446de3ba2
bfee3862850ad498e1f660bd51f135340cd36894b836ea0e4ae04dbdb9abc72b

HTTP Headers

GET /mgr2odi.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 4083
date: Fri, 23 Dec 2022 01:49:08 GMT
X-Firefox-Spdy: h2

p.typekit.net/p.css?s=1&k=mgr2odi&ht=tk&f=137.138.139.140.169.170.171.172.173.174.175.176.5474.5475.25136.25137.143.144.147.148.156.157.161.162.2003.2004.2005.2006.2007.2008.2009.2010.2011.2012.9938.9939.39002.39004.12046.12047.12048.12049.12050.12051.12053.12054.12055.12056.17398.17399.17400.17401.22618.22619.14032.14033.14034.14035.26425.26426.35617.35620.26435.35615.26438.26439.35630.35633.26448.35628.26893.26894.26897.26898.26909.26910.26913.26914.29382.29383&a=14392602&app=typekit&e=css

23.36.76.122

200 OK

5 B

URL HTTP/2
p.typekit.net/p.css?s=1&k=mgr2odi&ht=tk&f=137.138.139.140.169.170.171.172.173.174.175.176.5474.5475.25136.25137.143.144.147.148.156.157.161.162.2003.2004.2005.2006.2007.2008.2009.2010.2011.2012.9938.9939.39002.39004.12046.12047.12048.12049.12050.12051.12053.12054.12055.12056.17398.17399.17400.17401.22618.22619.14032.14033.14034.14035.26425.26426.35617.35620.26435.35615.26438.26439.35630.35633.26448.35628.26893.26894.26897.26898.26909.26910.26913.26914.29382.29383&a=14392602&app=typekit&e=css
IP
23.36.76.122:0
ASN
#20940 Akamai International B.V.

File type
ASCII text
Size
5 B (5 bytes)
Hash
83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb

HTTP Headers

GET /p.css?s=1&k=mgr2odi&ht=tk&f=137.138.139.140.169.170.171.172.173.174.175.176.5474.5475.25136.25137.143.144.147.148.156.157.161.162.2003.2004.2005.2006.2007.2008.2009.2010.2011.2012.9938.9939.39002.39004.12046.12047.12048.12049.12050.12051.12053.12054.12055.12056.17398.17399.17400.17401.22618.22619.14032.14033.14034.14035.26425.26426.35617.35620.26435.35615.26438.26439.35630.35633.26448.35628.26893.26894.26897.26898.26909.26910.26913.26914.29382.29383&a=14392602&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Thu, 28 Jul 2022 22:24:50 GMT
etag: "62e30cb2-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Fri, 23 Dec 2022 01:49:08 GMT
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Lato:ital,wght@0,100;0,300;0,400;0,700;0,900;1,100;1,300;1,400;1,700;1,900&display=swap

142.250.74.106

200 OK

1.0 kB

URL HTTP/2
fonts.googleapis.com/css2?family=Lato:ital,wght@0,100;0,300;0,400;0,700;0,900;1,100;1,300;1,400;1,700;1,900&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
data
Size
1.0 kB (1035 bytes)
Hash
f66de73a0fed59c5deeae337bc8cb444
d6b70f02a16e586e85e019b9f2a2b791b5af76d2
c7c7afc3e09ec42db44a8c4ec93796c83004cd92e4189bdeb594ebe5ecc2717a

HTTP Headers

GET /css2?family=Lato:ital,wght@0,100;0,300;0,400;0,700;0,900;1,100;1,300;1,400;1,700;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 23 Dec 2022 01:49:07 GMT
date: Fri, 23 Dec 2022 01:49:07 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://technologycuratedpromotion.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Dec 2022 19:33:54 GMT
expires: Thu, 21 Dec 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 108914
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
3d77c09bf616349faed27b1cd007b770
e3000238d463d88fdcf7625d6582eb86ce5a4021
8b0c929abbabdcd9d196792cf0789feddb6fbd98e9bb3c96c1bb6f473f28727a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 01:49:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

technologycuratedpromotion.com/favicon.ico

52.207.173.28

200 OK

34 kB

URL HTTP/1.1
technologycuratedpromotion.com/favicon.ico
IP
52.207.173.28:0
ASN
#14618 AMAZON-AES

File type
MS Windows icon resource - 5 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel\012- data
Size
34 kB (34494 bytes)
Hash
d4a95c780824be97bc45a187ab7ad24b
53aeb2d44190d91ec2006379b3ddbd202b865d24
502322d8592de8395d6e7c2c37b18e04904e62d8f8b3caaa53858e4ebc64b692

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: technologycuratedpromotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Fri, 23 Dec 2022 01:49:08 GMT
Content-Type: image/x-icon
Content-Length: 34494
Last-Modified: Wed, 14 Sep 2022 11:51:00 GMT
Connection: keep-alive
ETag: "6321c024-86be"
Expires: Fri, 23 Dec 2022 02:49:08 GMT
Cache-Control: max-age=3600
Accept-Ranges: bytes

technologycuratedpromotion.com/19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3

52.207.173.28

200 OK

20 B

URL HTTP/1.1
technologycuratedpromotion.com/19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3
IP
52.207.173.28:0
ASN
#14618 AMAZON-AES

File type
data
Size
20 B (20 bytes)
Hash
a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

HTTP Headers

POST /19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3 HTTP/1.1
Host: technologycuratedpromotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 101
Origin: https://technologycuratedpromotion.com
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.16
Cache-Control: max-age=0, must-revalidate, private
Date: Fri, 23 Dec 2022 01:49:08 GMT
Expires: Fri, 23 Dec 2022 01:49:08 GMT
Content-Encoding: gzip

technologycuratedpromotion.com/19779-138115-typ/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs

52.207.173.28

200 OK

2.4 kB

URL HTTP/1.1
technologycuratedpromotion.com/19779-138115-typ/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs
IP
52.207.173.28:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1965)
Size
2.4 kB (2404 bytes)
Hash
97a4a5f4b30e816896cd4988f5e8032d
a6938016c222aad5f772491f041995ef77c84ce1
45d727c222f1a0304521e19b728d4358fc91bc9b4467abd7f39ffc3207af5945

HTTP Headers

GET /19779-138115-typ/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs HTTP/1.1
Host: technologycuratedpromotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/19779-138116/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&prom_type=regular&prom_id=199142&pld=26L81sNgpwNGSq&answer-1=3
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.16
Cache-Control: no-cache, private
Date: Fri, 23 Dec 2022 01:49:08 GMT
Content-Encoding: gzip

technologycuratedpromotion.com/ckeditor/plugins/lpLinkV2/css/styles.css

52.207.173.28

304 Not Modified

0 B

URL HTTP/1.1
technologycuratedpromotion.com/ckeditor/plugins/lpLinkV2/css/styles.css
IP
52.207.173.28:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ckeditor/plugins/lpLinkV2/css/styles.css HTTP/1.1
Host: technologycuratedpromotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/19779-138115-typ/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
If-Modified-Since: Thu, 01 Dec 2022 16:01:56 GMT
If-None-Match: "6388cff4-86f"

HTTP/1.1 304 Not Modified
Server: nginx/1.22.0
Date: Fri, 23 Dec 2022 01:49:08 GMT
Last-Modified: Thu, 01 Dec 2022 16:01:56 GMT
Connection: keep-alive
ETag: "6388cff4-86f"
Expires: Fri, 23 Dec 2022 01:49:08 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *

technologycuratedpromotion.com/lib/uri/uri.js

52.207.173.28

304 Not Modified

0 B

URL HTTP/1.1
technologycuratedpromotion.com/lib/uri/uri.js
IP
52.207.173.28:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /lib/uri/uri.js HTTP/1.1
Host: technologycuratedpromotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/19779-138115-typ/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
If-Modified-Since: Mon, 12 Apr 2021 20:19:39 GMT
If-None-Match: "6074ab5b-12c3e"

HTTP/1.1 304 Not Modified
Server: nginx/1.22.0
Date: Fri, 23 Dec 2022 01:49:08 GMT
Last-Modified: Mon, 12 Apr 2021 20:19:39 GMT
Connection: keep-alive
ETag: "6074ab5b-12c3e"
Expires: Fri, 23 Dec 2022 01:49:08 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *

technologycuratedpromotion.com/ckeditor/plugins/formBuilder/styles/formBuilder.css?v=1.3.1671722732525

52.207.173.28

200 OK

5.2 kB

URL HTTP/1.1
technologycuratedpromotion.com/ckeditor/plugins/formBuilder/styles/formBuilder.css?v=1.3.1671722732525
IP
52.207.173.28:0
ASN
#14618 AMAZON-AES

File type
ASCII text
Size
5.2 kB (5201 bytes)
Hash
e741d2aa47efe7dda9dfe0a5014fef0e
30ebfe60d0832bb8114c6ba155f0ddb15c1a527c
68c2e3489d098db2a6e2ddba9f32ff172d1c0ff0983b9b3c3c0b59c8a850cf20

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /ckeditor/plugins/formBuilder/styles/formBuilder.css?v=1.3.1671722732525 HTTP/1.1
Host: technologycuratedpromotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/19779-138115-typ/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Fri, 23 Dec 2022 01:49:08 GMT
Content-Type: text/css
Content-Length: 5201
Last-Modified: Thu, 01 Dec 2022 16:01:56 GMT
Connection: keep-alive
ETag: "6388cff4-1451"
Expires: Fri, 23 Dec 2022 01:49:08 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

technologycuratedpromotion.com/ckeditor/contents.css?t=M9RE

52.207.173.28

304 Not Modified

0 B

URL HTTP/1.1
technologycuratedpromotion.com/ckeditor/contents.css?t=M9RE
IP
52.207.173.28:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /ckeditor/contents.css?t=M9RE HTTP/1.1
Host: technologycuratedpromotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/19779-138115-typ/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
If-Modified-Since: Thu, 01 Dec 2022 16:01:56 GMT
If-None-Match: "6388cff4-b46"

HTTP/1.1 304 Not Modified
Server: nginx/1.22.0
Date: Fri, 23 Dec 2022 01:49:08 GMT
Last-Modified: Thu, 01 Dec 2022 16:01:56 GMT
Connection: keep-alive
ETag: "6388cff4-b46"
Expires: Fri, 23 Dec 2022 01:49:08 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *

technologycuratedpromotion.com/lpScripts/assetsBehavior.js?v=1

52.207.173.28

304 Not Modified

0 B

URL HTTP/1.1
technologycuratedpromotion.com/lpScripts/assetsBehavior.js?v=1
IP
52.207.173.28:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /lpScripts/assetsBehavior.js?v=1 HTTP/1.1
Host: technologycuratedpromotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/19779-138115-typ/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
If-Modified-Since: Fri, 07 Oct 2022 13:13:57 GMT
If-None-Match: "63402615-2515"

HTTP/1.1 304 Not Modified
Server: nginx/1.22.0
Date: Fri, 23 Dec 2022 01:49:08 GMT
Last-Modified: Fri, 07 Oct 2022 13:13:57 GMT
Connection: keep-alive
ETag: "63402615-2515"
Expires: Fri, 23 Dec 2022 01:49:08 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fc328f2e44d4ac962c03be665dbf6436
7ac1bb5dd0d42c9cb2e6a67b06b55934190691fe
7d7ced4a7da10564449ddec77f05d85557a2b2f7e8fe2a7d15541c7b52aee928

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7CED4A7DA10564449DDEC77F05D85557A2B2F7E8FE2A7D15541C7B52AEE928"
Last-Modified: Thu, 22 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7565
Expires: Fri, 23 Dec 2022 03:55:14 GMT
Date: Fri, 23 Dec 2022 01:49:09 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fc328f2e44d4ac962c03be665dbf6436
7ac1bb5dd0d42c9cb2e6a67b06b55934190691fe
7d7ced4a7da10564449ddec77f05d85557a2b2f7e8fe2a7d15541c7b52aee928

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7CED4A7DA10564449DDEC77F05D85557A2B2F7E8FE2A7D15541C7B52AEE928"
Last-Modified: Thu, 22 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7565
Expires: Fri, 23 Dec 2022 03:55:14 GMT
Date: Fri, 23 Dec 2022 01:49:09 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fc328f2e44d4ac962c03be665dbf6436
7ac1bb5dd0d42c9cb2e6a67b06b55934190691fe
7d7ced4a7da10564449ddec77f05d85557a2b2f7e8fe2a7d15541c7b52aee928

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7CED4A7DA10564449DDEC77F05D85557A2B2F7E8FE2A7D15541C7B52AEE928"
Last-Modified: Thu, 22 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7565
Expires: Fri, 23 Dec 2022 03:55:14 GMT
Date: Fri, 23 Dec 2022 01:49:09 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fc328f2e44d4ac962c03be665dbf6436
7ac1bb5dd0d42c9cb2e6a67b06b55934190691fe
7d7ced4a7da10564449ddec77f05d85557a2b2f7e8fe2a7d15541c7b52aee928

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7CED4A7DA10564449DDEC77F05D85557A2B2F7E8FE2A7D15541C7B52AEE928"
Last-Modified: Thu, 22 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7565
Expires: Fri, 23 Dec 2022 03:55:14 GMT
Date: Fri, 23 Dec 2022 01:49:09 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fc328f2e44d4ac962c03be665dbf6436
7ac1bb5dd0d42c9cb2e6a67b06b55934190691fe
7d7ced4a7da10564449ddec77f05d85557a2b2f7e8fe2a7d15541c7b52aee928

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7CED4A7DA10564449DDEC77F05D85557A2B2F7E8FE2A7D15541C7B52AEE928"
Last-Modified: Thu, 22 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7565
Expires: Fri, 23 Dec 2022 03:55:14 GMT
Date: Fri, 23 Dec 2022 01:49:09 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2d5629e-fad4-47f4-b056-10a0b49847bf.jpeg

34.120.237.76

200 OK

7.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2d5629e-fad4-47f4-b056-10a0b49847bf.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.9 kB (7938 bytes)
Hash
2bbbb7eaaa4b72573f00472962e147b9
617524daae76010761f7c1a91ef7d820f3bfa18d
8bd70123b979f4fa9b0dfaac49a8fe5a13b7f61ea1b3355b66c2f4b9450f42ff

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2d5629e-fad4-47f4-b056-10a0b49847bf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7938
x-amzn-requestid: c9915489-5c21-4200-ad77-ce1bcc1094ca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: diJhHErEIAMF_pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a3efa0-50147a2c3de345c0015d4ecc;Sampled=0
x-amzn-remapped-date: Thu, 22 Dec 2022 05:48:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UqAJpml3Tp2OHPiH1BKm7xZQTZ_mzwjjYxnArqCgcKQ0CJYwLUEgHA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Dec 2022 08:03:23 GMT
age: 63946
etag: "617524daae76010761f7c1a91ef7d820f3bfa18d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba282dd4-f1e4-4f5c-9a46-b6e71aa327de.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8732 bytes)
Hash
e49802d7e560d6e9b5d17111d531af4d
c2c523d207935363931aa17cd9aaabb9a48c28a0
255ac832533c579d57dac6adc330f83d39de222b3496277b2394afc15fe74535

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba282dd4-f1e4-4f5c-9a46-b6e71aa327de.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8732
x-amzn-requestid: 25cbd9e6-ad97-4369-a02c-e740030b437c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: defNLECQIAMFiQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a278ba-4e1a2cd801c389584e320ffe;Sampled=0
x-amzn-remapped-date: Wed, 21 Dec 2022 03:08:42 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: msS0IMqy7kSdOGD3i1aqSjALrtrypvo0EFsqYOyZNo_hmCaFKWn6Uw==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 1d0860167e2100a6d1cd9c0213c2b8e8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Dec 2022 04:23:27 GMT
age: 77142
etag: "c2c523d207935363931aa17cd9aaabb9a48c28a0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb455abdd-02b7-40a4-8270-5537daf8bfa6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12703 bytes)
Hash
dc21adaf610ae3e2c03cb89e07049109
77aac4c52cf8c392b28400fa9d7cccf45f3d43d6
31efc3bc0a2a761a55340becd6ac62bcc7906742bafde0349b0fd0bb24cacffb

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb455abdd-02b7-40a4-8270-5537daf8bfa6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12703
x-amzn-requestid: 44e7f28d-fbca-4faa-8bec-554d9ca63c79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dkUi4E2uIAMFTrg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a4ce12-4f6520936d6b071938624b03;Sampled=0
x-amzn-remapped-date: Thu, 22 Dec 2022 21:37:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5rUH27LiE019TMmer0Ts_YUrJzZXb274xuuHOupa-2jxuYLlHIg4iQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Dec 2022 21:50:32 GMT
age: 14317
etag: "77aac4c52cf8c392b28400fa9d7cccf45f3d43d6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bd09861-a6e6-4462-b7cf-0572eabdfd71.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.1 kB (7117 bytes)
Hash
61b1b9ece5581fe0b212144f45243f1a
d161c613f1491ae6ab63b536c50c6630e80d6382
f5a2b23b66a05734b86755986573c07c5f75bc6cbe67d2b769aee9ef402b2c14

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bd09861-a6e6-4462-b7cf-0572eabdfd71.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7117
x-amzn-requestid: 470b959f-7f5f-4a64-8d8d-bfc91856fad2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dUnBBFhZIAMFhiQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e8539-3916bad034c86d5503e456f2;Sampled=0
x-amzn-remapped-date: Sun, 18 Dec 2022 03:12:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: n0BaTqs_U_Apyf2luwRS_FHBH-Tkf6NEq59S3IwJxBiiROghmg1yvg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Dec 2022 05:03:45 GMT
age: 74724
etag: "d161c613f1491ae6ab63b536c50c6630e80d6382"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e289df1-a1b6-4a7a-a3f0-0326ee48b354.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.6 kB (8628 bytes)
Hash
ada16d13af9310487aee9dae29df40fd
fcecaab531e403f8d5912cf29d977e549f96765b
66b7f13460489f1cd5f09b44cebadcf2f459b46aa6ff0c984c10fe0a48062942

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e289df1-a1b6-4a7a-a3f0-0326ee48b354.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8628
x-amzn-requestid: bf74fd40-dfac-4565-8e8d-a79bdaf4e1ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dVJpaHvTIAMF9ZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639ebca2-29fa0add445d8e0d1691645d;Sampled=0
x-amzn-remapped-date: Sun, 18 Dec 2022 07:09:22 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: v_cc-cskoH2Fd8guDwxt7OhXQozpMVr77b5YvSz5q3NQidTA3R5B2g==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 219e8f088c8c2a564bdacafe44be620a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Dec 2022 07:31:19 GMT
age: 65870
etag: "fcecaab531e403f8d5912cf29d977e549f96765b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F636d561f-4cac-46b6-9b12-799eb03be3f7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.1 kB (8103 bytes)
Hash
5aee260508b4a6317aa74cfa263fcf0f
0268b809b07f0126ae1c707f0a72cbf2c5ee5dde
b43410a5b53d6318d13a1b6cac311beaff9aaf2b21a6d68420ec7e3291ce44b4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F636d561f-4cac-46b6-9b12-799eb03be3f7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8103
x-amzn-requestid: 1dec4794-e477-4587-a919-10fed7e06f73
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: degIwFtioAMFZoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a27a37-2088c1ec6c0d3158153e907b;Sampled=0
x-amzn-remapped-date: Wed, 21 Dec 2022 03:15:03 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mBdKNm-n2HvTeSA3FxMS7yfjJvmpTCrNNCuOlJgt1Q6y258pawKQ0A==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Dec 2022 08:40:52 GMT
age: 61697
etag: "0268b809b07f0126ae1c707f0a72cbf2c5ee5dde"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

technologycuratedpromotion.com/uploads/uploadedFonts/fontsImport.css?v=1671760148

52.207.173.28

200 OK

110 kB

URL HTTP/1.1
technologycuratedpromotion.com/uploads/uploadedFonts/fontsImport.css?v=1671760148
IP
52.207.173.28:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (508)
Size
110 kB (109543 bytes)
Hash
d046cdf976d4f63eb5e400700b98eda5
778066c8a78ab4f0f5510039b54042160feb76f6
4aec7e3aea87b1c085c6b495407a4908d6ad3423b38a8818a38428c046ec618b

HTTP Headers

GET /uploads/uploadedFonts/fontsImport.css?v=1671760148 HTTP/1.1
Host: technologycuratedpromotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/19779-138115-typ/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Fri, 23 Dec 2022 01:49:08 GMT
Content-Type: text/css
Content-Length: 109543
Last-Modified: Wed, 30 Nov 2022 14:19:41 GMT
Connection: keep-alive
ETag: "6387667d-1abe7"
Expires: Fri, 23 Dec 2022 01:49:08 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

technologycuratedpromotion.com/uploads/cl_855/logotypes/download-1.png

52.207.173.28

200 OK

3.1 kB

URL HTTP/1.1
technologycuratedpromotion.com/uploads/cl_855/logotypes/download-1.png
IP
52.207.173.28:0
ASN
#14618 AMAZON-AES

File type
PNG image data, 372 x 135, 8-bit colormap, non-interlaced\012- data
Size
3.1 kB (3125 bytes)
Hash
24454af9ad06c14c12c1c224f43cbd17
f67f89d3c8a21aac3459eee964286951f12c6b95
8894c94e90951d988d153ea412df5d55189aa0cf44fcd58b0f2bc9a5c4217538

HTTP Headers

GET /uploads/cl_855/logotypes/download-1.png HTTP/1.1
Host: technologycuratedpromotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/19779-138115-typ/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Fri, 23 Dec 2022 01:49:09 GMT
Content-Type: image/png
Content-Length: 3125
Last-Modified: Thu, 22 Dec 2022 15:00:33 GMT
Connection: keep-alive
ETag: "63a47111-c35"
Expires: Fri, 23 Dec 2022 02:49:09 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

technologycuratedpromotion.com/uploads/cl_855/backgrounds/Vamur-background.jpg

52.207.173.28

200 OK

111 kB

URL HTTP/1.1
technologycuratedpromotion.com/uploads/cl_855/backgrounds/Vamur-background.jpg
IP
52.207.173.28:0
ASN
#14618 AMAZON-AES

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 150x150, segment length 16, baseline, precision 8, 1920x600, components 3\012- data
Size
111 kB (111087 bytes)
Hash
2490b06d6df6969fc761a9384d784d23
44c2efbbb50850a53510f9138b61c6744d718dc1
5075334480a12652b2174c4a082813403f22fb2c921b4819dd9791c2a63aa394

HTTP Headers

GET /uploads/cl_855/backgrounds/Vamur-background.jpg HTTP/1.1
Host: technologycuratedpromotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/19779-138115-typ/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Fri, 23 Dec 2022 01:49:09 GMT
Content-Type: image/jpeg
Content-Length: 111087
Last-Modified: Thu, 22 Dec 2022 15:00:33 GMT
Connection: keep-alive
ETag: "63a47111-1b1ef"
Expires: Fri, 23 Dec 2022 02:49:09 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Accept-Ranges: bytes

technologycuratedpromotion.com/19779-138115-typ/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&mode=file

52.207.173.28

200 OK

2.9 MB

URL HTTP/1.1
technologycuratedpromotion.com/19779-138115-typ/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&mode=file
IP
52.207.173.28:0
ASN
#14618 AMAZON-AES

File type
PDF document, version 1.7 (zip deflate encoded)\012- data
Size
2.9 MB (2908284 bytes)
Hash
f707585fef8d5bcde7b904bbc789ff60
b23f5ef8d50cce38d7d9841bd4ae3fee412fcfb1
cd09c218dcb095dba873fa50f2ec2591d5b15356dc25c4bd6fb2cb4546e4ffab

HTTP Headers

GET /19779-138115-typ/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs&mode=file HTTP/1.1
Host: technologycuratedpromotion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/19779-138115-typ/76362?uid=9z3QAdWX4tMxG2jexxubLeZgp4PL1qi3MnfRW5kRbs
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.22.0
Content-Type: application/force-download
Content-Length: 2908284
Connection: keep-alive
X-Powered-By: PHP/7.4.16
Content-transfer-encoding: binary
Content-disposition: attachment; filename="xdr-for-dummies.pdf"
Cache-Control: no-cache, private
Date: Fri, 23 Dec 2022 01:49:09 GMT

fonts.googleapis.com/css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 23 Dec 2022 01:49:08 GMT
date: Fri, 23 Dec 2022 01:49:08 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Open+Sans:ital,wght@0,300;0,400;0,600;0,700;0,800;1,300;1,400;1,600;1,700;1,800&display=swap

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css2?family=Open+Sans:ital,wght@0,300;0,400;0,600;0,700;0,800;1,300;1,400;1,600;1,700;1,800&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css2?family=Open+Sans:ital,wght@0,300;0,400;0,600;0,700;0,800;1,300;1,400;1,600;1,700;1,800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 23 Dec 2022 01:49:08 GMT
date: Fri, 23 Dec 2022 01:49:08 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Noto+Sans:ital,wght@0,400;0,700;1,400;1,700&display=swap

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css2?family=Noto+Sans:ital,wght@0,400;0,700;1,400;1,700&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css2?family=Noto+Sans:ital,wght@0,400;0,700;1,400;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 23 Dec 2022 01:49:08 GMT
date: Fri, 23 Dec 2022 01:49:08 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css

104.18.10.207

200 OK

0 B

URL HTTP/2
stackpath.bootstrapcdn.com/bootstrap/4.4.1/css/bootstrap.min.css
IP
104.18.10.207:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /bootstrap/4.4.1/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 23 Dec 2022 01:49:07 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:09 GMT
cdn-cachedat: 08/03/2021 15:16:56
cdn-edgestorageid: 601
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-proxyver: 1.0
cdn-status: 200
cdn-requestid: d6b43e13ddbcd4f60dded6d39b2abed5
cdn-cache: HIT
cf-cache-status: HIT
age: 17201135
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 77dd70590c5fb4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Montserrat:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css2?family=Montserrat:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css2?family=Montserrat:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 23 Dec 2022 01:49:07 GMT
date: Fri, 23 Dec 2022 01:49:07 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Ubuntu:ital,wght@0,300;0,400;0,500;0,700;1,300;1,400;1,500;1,700&display=swap

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css2?family=Ubuntu:ital,wght@0,300;0,400;0,500;0,700;1,300;1,400;1,500;1,700&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css2?family=Ubuntu:ital,wght@0,300;0,400;0,500;0,700;1,300;1,400;1,500;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 23 Dec 2022 01:49:07 GMT
date: Fri, 23 Dec 2022 01:49:07 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Muli

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Muli
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Muli HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://technologycuratedpromotion.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 23 Dec 2022 01:49:08 GMT
date: Fri, 23 Dec 2022 01:49:08 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files detected

URL

IP

ASN

File type

Size

Hash

JavaScript (16)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations