firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 28 Sep 2022 09:15:39 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hpw6ewTRVexnpMZIohnpfpkm--bFVtFhLt3EqzzpVLFAIx0ORW70Mg==
Age: 3534
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7fb7c70f7f4e2cee27eb0e7d875931f7
98fca3817a551b1daecebae103a48e718b8b5a53
2a40f957a6b1734aa3f87cff51b673f0536732db15b09033dd604879692df349
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A40F957A6B1734AA3F87CFF51B673F0536732DB15B09033DD604879692DF349"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8025
Expires: Wed, 28 Sep 2022 12:28:18 GMT
Date: Wed, 28 Sep 2022 10:14:33 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 28 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HWe0zR1kGxuacETEPNdY-5JTC4OdbEf2fUJrwnhvujS7t5jnIrIGKQ==
age: 17167
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 10:14:33 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 28 Sep 2022 09:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Wed, 28 Sep 2022 10:03:11 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: nPbtqC3Pu7DA7U6kRc_FA8hV96fh7hNfG3lRz6NcbpwVa-IZOiIDuw==
Age: 2700
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3526d5ce1381ba26cbc553db057e1915
fe01c920696448e8bf12e6fff877bce8281d34a2
09604aed7cbca7971bfcb5afcb53591600b944f28eff21aa65dc601e78cdda53
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6364
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:14:33 GMT
Last-Modified: Wed, 28 Sep 2022 08:28:29 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.165.41.15101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.165.41.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: TM30C4N+crCi7/wHn4VFFw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 4anw9ODKOzczN1mSJecVPrhR/zw=
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 2ccef9fae77c0060989d3ce04eda4954
e1ee944e4daecf891571b9b2f8f4b54fd8c4b906
9565ccc3f69a2d6db27a218851d61fdc6c63201cca88cb121e3f7fda4ee5f534
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "9565CCC3F69A2D6DB27A218851D61FDC6C63201CCA88CB121E3F7FDA4EE5F534"
Last-Modified: Tue, 27 Sep 2022 22:00:00 UTC
Content-Length: 1586
Cache-Control: public, no-transform, must-revalidate, max-age=3600
Expires: Wed, 28 Sep 2022 11:14:34 GMT
Date: Wed, 28 Sep 2022 10:14:34 GMT
Connection: keep-alive
bmwvslexustexas.com/cancel/debit/Yes/
210.16.120.16206 Partial Content 80 kB URL HTTP/1.1 bmwvslexustexas.com/cancel/debit/Yes/
IP 210.16.120.16:0
File type Unicode text, UTF-8 text, with very long lines (22537), with CRLF line terminators
Hash d7f56fbc8e0aed2b2ab7f0b207595285
fccd8763803e362569c7f636ce661942760a820b
97d3ce92489f48009a175194c9fb3d471a342a970ea06d261fb7b4aca63d99bd
Analyzer Verdict Alert openphish Idaho Central Credit Union
fortinet Phishing
GET /cancel/debit/Yes/ HTTP/1.1
Host: bmwvslexustexas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Range: bytes=7948-
If-Range: Mon, 08 Aug 2022 20:09:38 GMT
HTTP/1.1 206 Partial Content
Date: Wed, 28 Sep 2022 10:14:33 GMT
Server: Apache
Last-Modified: Mon, 08 Aug 2022 20:09:38 GMT
Accept-Ranges: bytes
Content-Length: 79723
Content-Range: bytes 7948-87670/87671
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html
assets.orb.alkamitech.com/production/icons/IdahoCentral/font/font-icons.css
143.204.55.44200 OK 8.5 kB URL HTTP/2 assets.orb.alkamitech.com/production/icons/IdahoCentral/font/font-icons.css
IP 143.204.55.44:0
File type ASCII text, with CRLF line terminators
Hash 1c28ae91d114e3499306cbb73a0cf082
3e7a2e878baa1e097a9699708b2e74ad4da4cdf1
5e48db38fa71a9041dc0a2bf689c6a52e4040f19673a8ec5eb68b9213b81e07a
GET /production/icons/IdahoCentral/font/font-icons.css HTTP/1.1
Host: assets.orb.alkamitech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bmwvslexustexas.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
content-length: 8497
x-amz-replication-status: COMPLETED
last-modified: Tue, 30 Aug 2022 21:54:34 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: qv4zgBGFP50K.A4MByiQXfVJR_oFy3ck
accept-ranges: bytes
server: AmazonS3
date: Wed, 28 Sep 2022 10:14:35 GMT
cache-control: max-age=630720000, no-cache, no-transform, public
expires: Mon, 25 Aug 2042 21:53:41 GMT
etag: "1c28ae91d114e3499306cbb73a0cf082"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: I2jBjJsJf0TOyeTXA3mM0wdxNRFvoxaxBEi_6Q9F_Mb9AmMDODbXkw==
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash cb600c4fe611e7a9f6e1df50d934375d
afac81b549aade8b7a1ba18e63432036343fdadf
4ac0f690be6e1e0c0f070e8600e05e7c235ba70b4baf3f4e5a35d207b1db168c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4423
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:14:34 GMT
Last-Modified: Wed, 28 Sep 2022 09:00:51 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5f4b013b5656bef604b0022eb233d049
5b5ac71b8dbb5b488d7267d0d70292c2f7651c5b
238fd305a8853df61050a601a24c483728ab6695658f993bc179a075a5616cd9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6558
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:14:34 GMT
Last-Modified: Wed, 28 Sep 2022 08:25:16 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 279
cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.0/umd/popper.min.js
104.17.25.14200 OK 6.5 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.0/umd/popper.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (20322)
Hash df9fe6d48e380554eb0ec9687bed3246
207263d754220200c1916edfbda262f62223ecf5
91d57502b7260e6752c2b5f1636d77707929fa9f09da28589691e61816a448f9
GET /ajax/libs/popper.js/1.14.0/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bmwvslexustexas.com
Connection: keep-alive
Referer: https://bmwvslexustexas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:14:34 GMT
content-type: application/javascript; charset=utf-8
content-length: 6458
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-500f"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 7403321
expires: Mon, 18 Sep 2023 10:14:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d3XLHUsxoyxOWzAamk%2Bx04R6NJPuXwDjUF0ogR1V%2BfonfU%2FgaVX22KOJsJgfo6IBf31ZJ3Vt35ph1%2B1k25QE2LT0rxR1E5lm2HC0lKAueAtI4%2BOK99pvIWzNKqyljJPmuvsOsIIE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 751bb682fdbab4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash cb600c4fe611e7a9f6e1df50d934375d
afac81b549aade8b7a1ba18e63432036343fdadf
4ac0f690be6e1e0c0f070e8600e05e7c235ba70b4baf3f4e5a35d207b1db168c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4423
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:14:34 GMT
Last-Modified: Wed, 28 Sep 2022 09:00:51 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 278
code.jquery.com/jquery-3.2.1.min.js
69.16.175.42200 OK 30 kB URL HTTP/2 code.jquery.com/jquery-3.2.1.min.js
IP 69.16.175.42:0
File type ASCII text, with very long lines (32058)
Hash 148f8d3ffd9cc02048c5f4d1cc83c407
9f2b89cfd151be6a29b4d43ad64d164fb8471046
4dc681da48ba2b417e613e8e027ff5322963c3a3697a8ba97973cfefb48def5e
GET /jquery-3.2.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bmwvslexustexas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:14:34 GMT
content-encoding: gzip
content-length: 30125
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15283"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1664360074.dop026.sk1.t,1664360074.cds261.sk1.hn,1664360074.cds222.sk1.c
X-Firefox-Spdy: h2
ajax.aspnetcdn.com/ajax/jQuery/jquery-3.3.1.min.js
152.199.19.160200 OK 30 kB URL HTTP/2 ajax.aspnetcdn.com/ajax/jQuery/jquery-3.3.1.min.js
IP 152.199.19.160:0
File type ASCII text, with very long lines (65451)
Hash a263be51483c81a54aa8c85104a93e55
555a54a73531c553bd2aede6abc25c128b63312e
b2f13ad730928958c09d89e6e32bb6a227c0260d032a39ca464d998a59e57a66
GET /ajax/jQuery/jquery-3.3.1.min.js HTTP/1.1
Host: ajax.aspnetcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bmwvslexustexas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 17361569
cache-control: public,max-age=31536000
content-type: application/javascript
date: Wed, 28 Sep 2022 10:14:34 GMT
etag: "80288516b793d31:0"
last-modified: Mon, 22 Jan 2018 19:27:49 GMT
server: ECAcc (ska/F7A8)
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 30394
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.3.1.slim.min.js
69.16.175.42200 OK 24 kB URL HTTP/2 code.jquery.com/jquery-3.3.1.slim.min.js
IP 69.16.175.42:0
File type ASCII text, with very long lines (65247)
Hash 0f2e7d37e730fdbb1d8a1e8638529ecb
c21d16978a858baa75be15cb7e799ff000929429
cc938c08b93e67c94c68995709f52133c62cac78991f42058503b9c3d9e4b0b0
GET /jquery-3.3.1.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bmwvslexustexas.com
Connection: keep-alive
Referer: https://bmwvslexustexas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:14:34 GMT
content-encoding: gzip
content-length: 24038
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-1111d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1664360074.dop222.sk1.t,1664360074.cds201.sk1.hn,1664360074.cds230.sk1.c
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.10/jquery.mask.js
104.17.25.14200 OK 4.5 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.10/jquery.mask.js
IP 104.17.25.14:0
Hash e40e054c5726f042bad463e3774a2777
5c9413b72837a440b327444104830c35ae3b052c
fcc8a86d2e89e8fbe9815d50c23bf205191ab8a6c0bec67358cd975d94283ff8
GET /ajax/libs/jquery.mask/1.14.10/jquery.mask.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bmwvslexustexas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:14:34 GMT
content-type: application/javascript; charset=utf-8
content-length: 4517
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-4e98"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 3075260
expires: Mon, 18 Sep 2023 10:14:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mw7yNE%2FMdeVFUk31sjNDT6C2mgZbL1E7UiXCm3CRcdFB1Bpf2R%2B3LfKsC3jo1%2BpGQYY7vPsQDg3I94l1z%2FtuajZdPprJRd%2BvlbqeRDuj%2BtUgCaUzT7Z6AKcFUJZ7Ok4nKdy5Raxj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 751bb68308a9b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash cb600c4fe611e7a9f6e1df50d934375d
afac81b549aade8b7a1ba18e63432036343fdadf
4ac0f690be6e1e0c0f070e8600e05e7c235ba70b4baf3f4e5a35d207b1db168c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4423
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:14:34 GMT
Last-Modified: Wed, 28 Sep 2022 09:00:51 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5f4b013b5656bef604b0022eb233d049
5b5ac71b8dbb5b488d7267d0d70292c2f7651c5b
238fd305a8853df61050a601a24c483728ab6695658f993bc179a075a5616cd9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3612
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:14:34 GMT
Last-Modified: Wed, 28 Sep 2022 09:14:22 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/iris-foundation.min.css
210.16.120.16200 OK 51 kB URL HTTP/1.1 bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/iris-foundation.min.css
IP 210.16.120.16:0
File type ASCII text, with very long lines (50964)
Hash b8c864cda1f61ea4ffc57ba52f038a41
5c8784412d182c24f931531629a9bcf1455e9e76
f6fca06e2aac270b488f73bcf0a10d249e2722a015135e60dbb49360c5335a72
GET /cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/iris-foundation.min.css HTTP/1.1
Host: bmwvslexustexas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bmwvslexustexas.com/cancel/debit/Yes/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:14:34 GMT
Server: Apache
Last-Modified: Sun, 24 Jul 2022 20:40:18 GMT
Accept-Ranges: bytes
Content-Length: 51310
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/css.css
210.16.120.16200 OK 2.2 kB URL HTTP/1.1 bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/css.css
IP 210.16.120.16:0
File type ASCII text, with CRLF line terminators
Hash 97acb2e9d91232e52e0a1c1d080398dc
d3de8c063a9236eb0cb1a08d86bab68153033823
9a27f05d9ea8ad4565490e3c5f20ee8c7aa21bd9902ed8943f9bd0a4d9f74954
GET /cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/css.css HTTP/1.1
Host: bmwvslexustexas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bmwvslexustexas.com/cancel/debit/Yes/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:14:34 GMT
Server: Apache
Last-Modified: Wed, 27 Jul 2022 17:01:12 GMT
Accept-Ranges: bytes
Content-Length: 2190
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/iris.shim.mobile.min.css
210.16.120.16200 OK 611 B URL HTTP/1.1 bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/iris.shim.mobile.min.css
IP 210.16.120.16:0
File type ASCII text, with very long lines (557)
Hash 2b495c471e337eac5d280f5519c6fc53
285689d6b41833ced6b63a3f82892d2901d4039b
06dee56fb4e2677948bc2f6ce7e20e9900e3c7431843ae3d9c9d975ff03889a7
GET /cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/iris.shim.mobile.min.css HTTP/1.1
Host: bmwvslexustexas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bmwvslexustexas.com/cancel/debit/Yes/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:14:34 GMT
Server: Apache
Last-Modified: Sun, 24 Jul 2022 20:40:20 GMT
Accept-Ranges: bytes
Content-Length: 611
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 139d64e28724086d1d5ab6d2f534ff25
2c717905e83564a17bd8ca61dd934133416f629b
a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5404
Expires: Wed, 28 Sep 2022 11:44:39 GMT
Date: Wed, 28 Sep 2022 10:14:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 139d64e28724086d1d5ab6d2f534ff25
2c717905e83564a17bd8ca61dd934133416f629b
a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5404
Expires: Wed, 28 Sep 2022 11:44:39 GMT
Date: Wed, 28 Sep 2022 10:14:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 139d64e28724086d1d5ab6d2f534ff25
2c717905e83564a17bd8ca61dd934133416f629b
a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5404
Expires: Wed, 28 Sep 2022 11:44:39 GMT
Date: Wed, 28 Sep 2022 10:14:35 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b794c6812cb546de0295e087ebe66a7
a54803cca7d3c509c195f65961e1110c8ec56f55
6a207f75eb3951f3dea5252bc8d185cd604d3d657f15b838774e8087e91f37f5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12016
x-amzn-requestid: ec1b3715-5d0f-4045-aa5b-b70a55c81d72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3EtyIAMFdZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-201dd1ef1426a09965c68dab;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pR4b1-lZZRMnWf-PdXFGXaHBCGAfOyp3AjeuCvtu5imWmf9N9l2wKQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:48:38 GMT
age: 44757
etag: "a54803cca7d3c509c195f65961e1110c8ec56f55"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7723c423-9c9b-4e58-93cc-7198e8ff6f62.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7723c423-9c9b-4e58-93cc-7198e8ff6f62.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 46dc8f1499f4de5f03bd87a68c3c6c7b
0cd28a243f9704140ccb9eb1415a77fcccc7cf87
3d7a5cdc0812857efabd7ab941aea6d6582790b86a9587809d222c0a8546262b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7723c423-9c9b-4e58-93cc-7198e8ff6f62.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7359
x-amzn-requestid: 6e3123b2-ea7e-4e3e-8399-19a66d27923f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI34CEYtIAMF01w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336d00-5995316c70da7a0c460ac432;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:37:04 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: t_uz9vKifWkMj014gCS83STU-fnM39a49_LB5By3j9NqLpqfl8tKSA==
via: 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:57:38 GMT
age: 44217
etag: "0cd28a243f9704140ccb9eb1415a77fcccc7cf87"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ad84ed0c5b2090df7996007514cf1984
651600f2ef18cecc2e38370069bbb5e1d86f68e0
a3d0729e1d43afeadd2dd8273c858b8839d9e476f773c8ec9d96b5969a9e0b4a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13299
x-amzn-requestid: 926df8b6-beec-470d-b0b3-33be326cd379
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPF8YIAMF3Nw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-343e91e735af43d01fc83ddd;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: fcxclGRP3zfWwb6opjYU2bL9VAq_mCSNjFtfp9iMLq6tbZu57EDqpQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:50:04 GMT
etag: "651600f2ef18cecc2e38370069bbb5e1d86f68e0"
content-type: image/jpeg
age: 44671
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63a7aeb3-999a-4e57-9255-c40e0376d08e.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63a7aeb3-999a-4e57-9255-c40e0376d08e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 46e31aa06b8e86a9a5f9ba1cc3feca08
75df3341e30281fcbf78c7074980356fdf0be8e2
d1fd4f81b7e0f43de960f0ee024d9e87bcb395f032a4ab0360e3829d1ec8a42b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63a7aeb3-999a-4e57-9255-c40e0376d08e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5319
x-amzn-requestid: 74191b02-ebea-48bd-8522-f05bf8080f31
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlOKFtsIAMFyGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bf4-1f2daa9d7906bf9812e10953;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:39:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Y0gjPs-l9_JD9F-LSH_i1uL2Nz0UcWCG-9PmDmRH8cN_cNAeSchJTA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:32:06 GMT
age: 45749
etag: "75df3341e30281fcbf78c7074980356fdf0be8e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02722822-e024-44b9-8ec1-48ec9500ca58.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02722822-e024-44b9-8ec1-48ec9500ca58.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f3e1fd3401c5e635a8dbeec5f78b721d
2142075b27d0d355c51231ab06fea46e25eb9c59
2e17a43985b624e6b6592d402c36dd45b915cd6e1ac84e187c18c46420eb9a1d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02722822-e024-44b9-8ec1-48ec9500ca58.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9733
x-amzn-requestid: fff8214b-48f7-4b45-bd91-69ea4db871d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCAWhG9HIAMFloQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330adc3-1cffa63711378c525e49e11d;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 19:36:35 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: L2Of12XTKmTF2EPL4MHpJvBW7GNS8gSRs3FuUMB-RUpTZaY8ew_o_w==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 05:26:00 GMT
age: 17315
etag: "2142075b27d0d355c51231ab06fea46e25eb9c59"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6139c878a7d2bd32c61fc8287996eb5b
9c4692ea64832895fbd107d91f879728b6a440c7
3839df92f0a10c1433d5b576df50c9f7953912ae4f425012262f08ee8a59ce2e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8500
x-amzn-requestid: 626c21ec-f29b-4b69-b275-c22c864c2409
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3VmENnIAMFeTQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c23-75eccc381fbd6e5d4ff59c06;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Eyy8qoYVCJbt6b6hTGJ-rOrYex9RuX1InyZbpHkeu9yQqPUEvowKcw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:48:58 GMT
etag: "9c4692ea64832895fbd107d91f879728b6a440c7"
content-type: image/jpeg
age: 44737
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/iris-components.shim.mobile.min.css
210.16.120.16200 OK 915 B URL HTTP/1.1 bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/iris-components.shim.mobile.min.css
IP 210.16.120.16:0
File type ASCII text, with very long lines (687)
Hash 017e853767e051918649a58405ed9ec7
00bd5489213b470369c84e48493a6004a4818551
cff89d4c6f0f1863f7d3e48ec06982b347c1ab656c2b590655eee47e06a98db5
GET /cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/iris-components.shim.mobile.min.css HTTP/1.1
Host: bmwvslexustexas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bmwvslexustexas.com/cancel/debit/Yes/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:14:35 GMT
Server: Apache
Last-Modified: Sun, 24 Jul 2022 20:40:18 GMT
Accept-Ranges: bytes
Content-Length: 915
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/isotope.min.css
210.16.120.16200 OK 15 kB URL HTTP/1.1 bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/isotope.min.css
IP 210.16.120.16:0
File type ASCII text, with very long lines (5685), with CRLF line terminators
Hash cbea8b3b158166c4d66c97296b6de5a1
8d2bbe9bdf52feff172cc1f4498add317eacc3d8
8282735c40a60985c94bdd1923f7a5178abc9bc0b907b71c6d7d2baaead3486c
GET /cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/isotope.min.css HTTP/1.1
Host: bmwvslexustexas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bmwvslexustexas.com/cancel/debit/Yes/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:14:35 GMT
Server: Apache
Last-Modified: Wed, 27 Jul 2022 17:01:24 GMT
Accept-Ranges: bytes
Content-Length: 14685
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/iris.android.min.css
210.16.120.16200 OK 98 kB URL HTTP/1.1 bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/iris.android.min.css
IP 210.16.120.16:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6cbe72b331253f45cefadc34017bc798
850ce439b199c54426298f74c710479e64a1a87b
140d50926d28db75b90d58dbec98dc8388d4e9ca76f2c11ff7f68c5491d19767
GET /cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/iris.android.min.css HTTP/1.1
Host: bmwvslexustexas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bmwvslexustexas.com/cancel/debit/Yes/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:14:34 GMT
Server: Apache
Last-Modified: Wed, 27 Jul 2022 17:01:24 GMT
Accept-Ranges: bytes
Content-Length: 97832
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/iris-foundation.min-1.css
210.16.120.16200 OK 51 kB URL HTTP/1.1 bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/iris-foundation.min-1.css
IP 210.16.120.16:0
File type ASCII text, with very long lines (50964)
Hash 0160c354e11f9e1f2ffcd720f880dc2e
7c3b5681a9483a0f37110476e04375e7e88d8fcc
037e5f8a4d2ef765d97f6c14e087cab4f8f27a1ac2a6a7584793b1a76a08fb8f
GET /cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/iris-foundation.min-1.css HTTP/1.1
Host: bmwvslexustexas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bmwvslexustexas.com/cancel/debit/Yes/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:14:35 GMT
Server: Apache
Last-Modified: Sun, 24 Jul 2022 20:40:22 GMT
Accept-Ranges: bytes
Content-Length: 51310
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
bmwvslexustexas.com/cancel/debit/Yes/AdditionalServices/Contact/EBranch/Career/style.css
210.16.120.16200 OK 414 B URL HTTP/1.1 bmwvslexustexas.com/cancel/debit/Yes/AdditionalServices/Contact/EBranch/Career/style.css
IP 210.16.120.16:0
File type ASCII text, with CRLF line terminators
Hash f9653fbeecf34b04791fee59eb3e253b
fcbbad7c6616682a22a9d0de09d715c61cb17722
7924e7e8b95825e4cefbfc31444ea9247e1b0d04cb066b56f06addf9cc7c5eaf
GET /cancel/debit/Yes/AdditionalServices/Contact/EBranch/Career/style.css HTTP/1.1
Host: bmwvslexustexas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bmwvslexustexas.com/cancel/debit/Yes/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:14:35 GMT
Server: Apache
Last-Modified: Tue, 16 Nov 2021 14:01:14 GMT
Accept-Ranges: bytes
Content-Length: 414
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/jquery-ui.min.css
210.16.120.16200 OK 29 kB URL HTTP/1.1 bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/jquery-ui.min.css
IP 210.16.120.16:0
File type ASCII text, with very long lines (27086), with CRLF line terminators
Hash 414fd75aaf05d6e8d1f55f1344c3ac55
e5ecd6bce9dd97b187fc9cd07bfbca73c78db2cf
a376e58d8801445934ef54c39f7b6c5245c9c229b910c1d62fcd4caed3356105
GET /cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/jquery-ui.min.css HTTP/1.1
Host: bmwvslexustexas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bmwvslexustexas.com/cancel/debit/Yes/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:14:35 GMT
Server: Apache
Last-Modified: Wed, 27 Jul 2022 17:01:26 GMT
Accept-Ranges: bytes
Content-Length: 28897
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/base.min.css
210.16.120.16200 OK 2.2 kB URL HTTP/1.1 bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/base.min.css
IP 210.16.120.16:0
File type ASCII text, with very long lines (2160), with CRLF line terminators
Hash b9a878ae53fbc745c04d73c0db31dbd8
02d1d82f465afd1111535c8fbbde0a62e4b2c686
9ab2090bfb0c86bdff1e4bd4948bfc24309ca516e88365bb4b3c6d5dc1653dd0
GET /cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/base.min.css HTTP/1.1
Host: bmwvslexustexas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bmwvslexustexas.com/cancel/debit/Yes/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:14:36 GMT
Server: Apache
Last-Modified: Wed, 27 Jul 2022 17:01:10 GMT
Accept-Ranges: bytes
Content-Length: 2204
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
bmwvslexustexas.com/cancel/debit/Yes/AdditionalServices/Contact/EBranch/Career/actions.js
210.16.120.16200 OK 1.3 kB URL HTTP/1.1 bmwvslexustexas.com/cancel/debit/Yes/AdditionalServices/Contact/EBranch/Career/actions.js
IP 210.16.120.16:0
File type ASCII text, with CRLF line terminators
Hash baef84e203e58801d16d5d460360570e
fc4e9a602bdb59fc7056cb6e53686ad6a992774e
8bcecbd1eeb6e999bc9583d1e35c12a74d044dba44ee22e185e138f05ca05414
Analyzer Verdict Alert fortinet Phishing
GET /cancel/debit/Yes/AdditionalServices/Contact/EBranch/Career/actions.js HTTP/1.1
Host: bmwvslexustexas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bmwvslexustexas.com/cancel/debit/Yes/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:14:36 GMT
Server: Apache
Last-Modified: Tue, 16 Nov 2021 13:48:10 GMT
Accept-Ranges: bytes
Content-Length: 1291
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/theme.mobile.min.css
210.16.120.16200 OK 114 kB URL HTTP/1.1 bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/theme.mobile.min.css
IP 210.16.120.16:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 114 kB (113597 bytes)
Hash 1af249d993c77297395544679633b118
5421a3a9a131f56150c19ee620780fccb23c1542
54ca927a6c5e02997371a855cb89b0d9d743c638c46a8cd61d47148602e52399
GET /cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/theme.mobile.min.css HTTP/1.1
Host: bmwvslexustexas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bmwvslexustexas.com/cancel/debit/Yes/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:14:35 GMT
Server: Apache
Last-Modified: Wed, 27 Jul 2022 17:01:40 GMT
Accept-Ranges: bytes
Content-Length: 113597
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/iris-components.min.css
210.16.120.16200 OK 192 kB URL HTTP/1.1 bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/iris-components.min.css
IP 210.16.120.16:0
File type ASCII text, with very long lines (65309)
Size 192 kB (192398 bytes)
Hash efed3e3f6370b1f1e4bf7620e89b2471
e0833930b2f050e31796fa465c673d73eceef96b
be62d354c566524d04269ae0aecdb24ddf557f986e3b98f797940a7d507bf2c5
GET /cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/iris-components.min.css HTTP/1.1
Host: bmwvslexustexas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bmwvslexustexas.com/cancel/debit/Yes/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:14:35 GMT
Server: Apache
Last-Modified: Sun, 24 Jul 2022 20:40:22 GMT
Accept-Ranges: bytes
Content-Length: 192398
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/1ca8ebd0.js
210.16.120.16200 OK 628 kB URL HTTP/1.1 bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/1ca8ebd0.js
IP 210.16.120.16:0
File type ASCII text, with very long lines (60538), with CRLF, LF line terminators
Size 628 kB (628019 bytes)
Hash 508aa7e5b5b3d2ded5a876cae0e58213
9a6e09fd3e898de27bcbd752d3efc5162c476420
d47c1346c52c0852d822943bfca34fc528d65158de4aec5992b6c5f04b56aeff
Analyzer Verdict Alert fortinet Phishing
GET /cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/1ca8ebd0.js HTTP/1.1
Host: bmwvslexustexas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bmwvslexustexas.com/cancel/debit/Yes/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:14:35 GMT
Server: Apache
Last-Modified: Sun, 24 Jul 2022 20:40:26 GMT
Accept-Ranges: bytes
Content-Length: 628019
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash df5e8a2b82dd0d71c41468f5823d5c7e
c7d171a6b539e694c16f8c77c279b6365120338d
69cdf67d490cbbe575e9932198de393ef7d257d39ab90f27f52d41a3253c6220
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "69CDF67D490CBBE575E9932198DE393EF7D257D39AB90F27F52D41A3253C6220"
Last-Modified: Tue, 27 Sep 2022 23:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=2970
Expires: Wed, 28 Sep 2022 11:04:07 GMT
Date: Wed, 28 Sep 2022 10:14:37 GMT
Connection: keep-alive
bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/app-store-badge.svg
210.16.120.16200 OK 11 kB URL HTTP/1.1 bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/app-store-badge.svg
IP 210.16.120.16:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1356), with CRLF line terminators
Hash 1b65926236d951b2af57201b275f595b
1ce3e7bf2853a59f0fc9ad064e1fd48260da0f38
86c9954e1457d27db013c1f10a96ffaba845e5af7765c4ef9df4ac1549e47d67
Analyzer Verdict Alert fortinet Phishing
GET /cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/app-store-badge.svg HTTP/1.1
Host: bmwvslexustexas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bmwvslexustexas.com/cancel/debit/Yes/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:14:37 GMT
Server: Apache
Last-Modified: Sun, 24 Jul 2022 20:40:18 GMT
Accept-Ranges: bytes
Content-Length: 10850
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml
bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/google-play-badge.svg
210.16.120.16200 OK 9.3 kB URL HTTP/1.1 bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/google-play-badge.svg
IP 210.16.120.16:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5e01637f08de80e8c27c414687738968
2d4fe2500bb550dc45c048e78aa62356fb4cbc2c
2dcf765854f1fe869b1674016feb1638870c1066f156f8d7dfd47b53d0dc093f
Analyzer Verdict Alert fortinet Phishing
GET /cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/google-play-badge.svg HTTP/1.1
Host: bmwvslexustexas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bmwvslexustexas.com/cancel/debit/Yes/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:14:37 GMT
Server: Apache
Last-Modified: Sun, 24 Jul 2022 20:40:18 GMT
Accept-Ranges: bytes
Content-Length: 9332
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 0e78eb4350faa493c02b5458d6ae9987
cda1ea4e22df35b5f237dadf7eebdf696397ed37
82ed9c41b2a08a8ee7aa5106b5cbdd5e919c277ac4f31934899b2812c91c3676
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "82ED9C41B2A08A8EE7AA5106B5CBDD5E919C277AC4F31934899B2812C91C3676"
Last-Modified: Wed, 28 Sep 2022 09:00:00 UTC
Content-Length: 1585
Cache-Control: public, no-transform, must-revalidate, max-age=3600
Expires: Wed, 28 Sep 2022 11:14:37 GMT
Date: Wed, 28 Sep 2022 10:14:37 GMT
Connection: keep-alive
bmwvslexustexas.com/cancel/debit/Yes/AdditionalServices/Contact/EBranch/Career/loading.gif
210.16.120.16200 OK 39 kB URL HTTP/1.1 bmwvslexustexas.com/cancel/debit/Yes/AdditionalServices/Contact/EBranch/Career/loading.gif
IP 210.16.120.16:0
File type GIF image data, version 89a, 200 x 200\012- data
Hash d10ef01e81faa2c2d812bdf670b4e072
77d09a57b2091fd7665dff763a5eab23e0ff907e
5e3d5246b17e19e65385092db07554d8e1c5c4a226a6d7f97824b8e1e8571e34
GET /cancel/debit/Yes/AdditionalServices/Contact/EBranch/Career/loading.gif HTTP/1.1
Host: bmwvslexustexas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bmwvslexustexas.com/cancel/debit/Yes/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:14:37 GMT
Server: Apache
Last-Modified: Sat, 11 Aug 2018 13:03:52 GMT
Accept-Ranges: bytes
Content-Length: 38636
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/gif
bmwvslexustexas.com/cancel/debit/Yes/About/ContactUs/BecomeAMember/CompanyProfile/KFOmCnqEu92Fr1Mu4mxK.woff2
210.16.120.16404 Not Found 315 B URL HTTP/1.1 bmwvslexustexas.com/cancel/debit/Yes/About/ContactUs/BecomeAMember/CompanyProfile/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 210.16.120.16:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert fortinet Phishing
GET /cancel/debit/Yes/About/ContactUs/BecomeAMember/CompanyProfile/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: bmwvslexustexas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/css.css
Cookie: cdContextId=1; bmuid=1664360075105-13955072-190A-439D-BDE9-A44D483E6E93
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 10:14:37 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
bmwvslexustexas.com/cancel/debit/Yes/About/ContactUs/BecomeAMember/CompanyProfile/MobileLogo.png
210.16.120.16404 Not Found 315 B URL HTTP/1.1 bmwvslexustexas.com/cancel/debit/Yes/About/ContactUs/BecomeAMember/CompanyProfile/MobileLogo.png
IP 210.16.120.16:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /cancel/debit/Yes/About/ContactUs/BecomeAMember/CompanyProfile/MobileLogo.png HTTP/1.1
Host: bmwvslexustexas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/isotope.min.css
Cookie: cdContextId=1; bmuid=1664360075105-13955072-190A-439D-BDE9-A44D483E6E93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Wed, 28 Sep 2022 10:14:37 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 60ce5f0f04f3cb32c814407e17a79cf4
3f3a4e3ffbce4cb1bc045cce2bc4c4a0990600d5
a5af095bca3ef642f85cb35b02caa0bc574a2cb94e4e4263888e522e96bbec52
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 28 Sep 2022 10:14:37 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 28 Sep 2022 04:19:03 GMT
Expires: Thu, 29 Sep 2022 04:19:03 GMT
ETag: "3f3a4e3ffbce4cb1bc045cce2bc4c4a0990600d5"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
myebranch.iccu.com/Image/MobileLogo
104.18.218.35200 OK 6.9 kB URL HTTP/2 myebranch.iccu.com/Image/MobileLogo
IP 104.18.218.35:0
File type PNG image data, 285 x 132, 8-bit/color RGBA, non-interlaced\012- data
Hash 793de00c2e5c94dfe4d879e33f78ef40
1fbca0c5c7261136ba2dcbf11b98c975d442e8f0
2dc417c13f956f7a5f91634d4629bcc1492ac237ba8839f8513227ae02b510d2
GET /Image/MobileLogo HTTP/1.1
Host: myebranch.iccu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bmwvslexustexas.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:14:38 GMT
content-type: image/png
content-length: 6884
cache-control: private, max-age=604800, s-maxage=0
expires: Wed, 05 Oct 2022 10:14:38 GMT
last-modified: Wed, 28 Sep 2022 10:14:38 GMT
x-content-type-options: nosniff
x-robots-tag: none
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-svr: WEB1663202
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
cf-request-id: 142530719e00000b494b801000000001
set-cookie: PackageAssignment=; path=/; secure; HttpOnly; SameSite=Strict
PackageAssignment=; path=/; secure; HttpOnly; SameSite=Strict
ob_sess=QjlCMEEzMkE3REYyM0VFNkJENTBBN0U3MThkODQ1ODQ0NDliMzM1ZjM5ODJiN2Y1ODcxZjJkM2I=; path=/; secure; HttpOnly; SameSite=Strict
__cf_bm=z_dMrSC4dHSzihuYmGB5PiHJgJNzWYWjZ32IpHL0_x0-1664360078-0-AdLGb74DJOmTqczrQqQlqnDYJTKclvVNoobtKor5sIAs01hILYqxW4CNaFWIu9OkWn4AiAdn836Q5mX+l2ieFp4=; path=/; expires=Wed, 28-Sep-22 10:44:38 GMT; domain=.iccu.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 751bb695cc770b49-OSL
X-Firefox-Spdy: h2
assets.orb.alkamitech.com/production/icons/IdahoCentral/font/Alkami.woff2
143.204.55.44200 OK 42 kB URL HTTP/2 assets.orb.alkamitech.com/production/icons/IdahoCentral/font/Alkami.woff2
IP 143.204.55.44:0
File type Web Open Font Format (Version 2), TrueType, length 42192, version 1.0\012- data
Hash 68a1c6b8524583dc37cdc2a6a8698a99
6c4c2bc1f57f2e7a09a941f8c49eeeac461192c9
129e2475b6e501d5d3b00edffc78aca22aaf0342132e84687a8e7e9c2861ae9f
GET /production/icons/IdahoCentral/font/Alkami.woff2 HTTP/1.1
Host: assets.orb.alkamitech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bmwvslexustexas.com
Connection: keep-alive
Referer: https://assets.orb.alkamitech.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: font/woff2
content-length: 42225
date: Wed, 28 Sep 2022 10:14:39 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Tue, 30 Aug 2022 21:54:34 GMT
etag: "68a1c6b8524583dc37cdc2a6a8698a99"
x-amz-server-side-encryption: AES256
cache-control: max-age=630720000, no-cache, no-transform, public
content-encoding: gzip
expires: Mon, 25 Aug 2042 21:53:41 GMT
x-amz-version-id: 4.XeR2ogf8OnI8RmBceTwl32vowVdzIZ
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Miss from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: MNISnO598rttTVI6X-Osx0QzlW3Wv7-mQG7S4TEMR0t9PBoAT6GFAg==
X-Firefox-Spdy: h2
wup-1ca8ebd0.us.v2.we-stats.com/client/v3.1/web/wup?cid=attina
52.141.217.134200 OK 898 B URL HTTP/2 wup-1ca8ebd0.us.v2.we-stats.com/client/v3.1/web/wup?cid=attina
IP 52.141.217.134:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , ASCII text, with very long lines (898), with no line terminators
Hash 0606c594c9bb039906dd26a8093caba5
eebd25091c673088489dbaeddf22d3ff2d1fd317
daa0a0659dda052a6be420664ad043d9d3f65c94711a8e63b3c2e39d0a414e65
POST /client/v3.1/web/wup?cid=attina HTTP/1.1
Host: wup-1ca8ebd0.us.v2.we-stats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 172
Origin: https://bmwvslexustexas.com
Connection: keep-alive
Referer: https://bmwvslexustexas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 898
date: Wed, 28 Sep 2022 10:14:37 GMT
server: uvicorn
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache, no-store
pragma: no-cache
tail-id: bff81e02-b3a3-4c2f-9aa8-22900a226f1d
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/favicon-16x16.png
210.16.120.16200 OK 453 B URL HTTP/1.1 bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/favicon-16x16.png
IP 210.16.120.16:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 73e77c462e9cf12b81e6eadcca253f6a
d8594646b979c09f848519271a79f1042106297d
d1ffdd528c8b988b8e8c5020c870bfce1a2bb5fa5b323cbf8576639dffa4db1b
GET /cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/favicon-16x16.png HTTP/1.1
Host: bmwvslexustexas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bmwvslexustexas.com/cancel/debit/Yes/
Cookie: cdContextId=1; bmuid=1664360075105-13955072-190A-439D-BDE9-A44D483E6E93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:14:38 GMT
Server: Apache
Last-Modified: Sun, 24 Jul 2022 20:40:20 GMT
Accept-Ranges: bytes
Content-Length: 453
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash f78c4377fed813c5041f31b116714539
3eca094f337b484fa34d4bbb6e57bbbb2dfd7149
bf2208a8578ac007a94903dc31a9e576b1bb73c3c7a5fdc3e36200d64bec48d7
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:14:38 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 26 Sep 2022 11:15:46 GMT
Expires: Mon, 03 Oct 2022 11:15:45 GMT
Etag: "3eca094f337b484fa34d4bbb6e57bbbb2dfd7149"
Cache-Control: max-age=435066,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 751bb699d9630afa-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 8e11a45d26e67fcf04c6044bc624d11f
a2a58632696a88e7f59197cef69b904cf1048934
1653e08691f0509738d63a3538a0502b4477177dd56f3727d18dec8f8b91f1b1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:14:38 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 06:00:07 GMT
Expires: Tue, 04 Oct 2022 06:00:06 GMT
Etag: "a2a58632696a88e7f59197cef69b904cf1048934"
Cache-Control: max-age=502527,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 751bb699dc54fabc-OSL
1.b406929acabac9b095f124c81bdfcf57f.com/scripts/prod/crossdomain.html
54.230.111.103200 OK 221 B URL HTTP/2 1.b406929acabac9b095f124c81bdfcf57f.com/scripts/prod/crossdomain.html
IP 54.230.111.103:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 21e34cf6a03f570df49e212018a567d0
f0be4058936850ae0163f5137600d14b6632bbb3
0a23512ea579554af1f2614d6dea6120d38660028fc7624c71a978478fae0eb6
GET /scripts/prod/crossdomain.html HTTP/1.1
Host: 1.b406929acabac9b095f124c81bdfcf57f.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bmwvslexustexas.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 221
last-modified: Tue, 13 Oct 2020 12:04:25 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Wed, 28 Sep 2022 07:51:28 GMT
etag: "21e34cf6a03f570df49e212018a567d0"
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Lz_duVYEBtl6Kz6m7w70qYCpsM8W7v01UfqT_BgAUSPXUDa5shKgtw==
age: 8591
X-Firefox-Spdy: h2
1.c81358859121583b7adf2ace89cb39f44.com/scripts/prod/crossdomain.html
54.230.111.39200 OK 221 B URL HTTP/2 1.c81358859121583b7adf2ace89cb39f44.com/scripts/prod/crossdomain.html
IP 54.230.111.39:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 21e34cf6a03f570df49e212018a567d0
f0be4058936850ae0163f5137600d14b6632bbb3
0a23512ea579554af1f2614d6dea6120d38660028fc7624c71a978478fae0eb6
GET /scripts/prod/crossdomain.html HTTP/1.1
Host: 1.c81358859121583b7adf2ace89cb39f44.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bmwvslexustexas.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 221
last-modified: Tue, 13 Oct 2020 12:04:25 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Wed, 28 Sep 2022 10:04:53 GMT
etag: "21e34cf6a03f570df49e212018a567d0"
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AtR7lJrhpVp28WvBD5d14NiDpqKfaGXhTXi25CTEPfrW8yN2pq5ZYA==
age: 586
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 7bcaac4393afff7dddc7255ff78d5850
a29b4b75545fb24e3e8df8fb02a109b18fd98b15
78ab8c4fe3696ab46713ded6bba2b2d51e41057c79795891814cb6234e31e7a3
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:14:38 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 25 Sep 2022 00:17:20 GMT
Expires: Sun, 02 Oct 2022 00:17:19 GMT
Etag: "a29b4b75545fb24e3e8df8fb02a109b18fd98b15"
Cache-Control: max-age=309160,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 751bb699dc61b4f3-OSL
1.a79ab95c1589a13f8a4cab612bc71f9f7.com/scripts/prod/crossdomain.html
54.230.111.29200 OK 221 B URL HTTP/2 1.a79ab95c1589a13f8a4cab612bc71f9f7.com/scripts/prod/crossdomain.html
IP 54.230.111.29:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 21e34cf6a03f570df49e212018a567d0
f0be4058936850ae0163f5137600d14b6632bbb3
0a23512ea579554af1f2614d6dea6120d38660028fc7624c71a978478fae0eb6
GET /scripts/prod/crossdomain.html HTTP/1.1
Host: 1.a79ab95c1589a13f8a4cab612bc71f9f7.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bmwvslexustexas.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 221
last-modified: Tue, 13 Oct 2020 12:04:25 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Tue, 27 Sep 2022 14:26:38 GMT
etag: "21e34cf6a03f570df49e212018a567d0"
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: siRb1k-MIlTb-WaMUQsfgY2SONuQ14nbD7QOdWm0tTvQFE5zrHT-uA==
age: 71281
X-Firefox-Spdy: h2
bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/android-chrome-192x192.png
210.16.120.16200 OK 1.4 kB URL HTTP/1.1 bmwvslexustexas.com/cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/android-chrome-192x192.png
IP 210.16.120.16:0
File type PNG image data, 192 x 192, 8-bit colormap, non-interlaced\012- data
Hash 617c4058b7a5608d8794cfb57c722d5e
f12b2ca683ad372cc2a27a2fb3ab39d86187d2cd
532ab0216976347b86739466a2366f058dacb5a6741aedd9242d0c898841692e
GET /cancel/debit/Yes/BusinessHour/ATM/Security_Center/AccountAgreement/android-chrome-192x192.png HTTP/1.1
Host: bmwvslexustexas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bmwvslexustexas.com/cancel/debit/Yes/
Cookie: cdContextId=1; bmuid=1664360075105-13955072-190A-439D-BDE9-A44D483E6E93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:14:38 GMT
Server: Apache
Last-Modified: Sun, 24 Jul 2022 20:40:20 GMT
Accept-Ranges: bytes
Content-Length: 1384
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
1.b406929acabac9b095f124c81bdfcf57f.com/scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js
54.230.111.103200 OK 3.2 kB URL HTTP/2 1.b406929acabac9b095f124c81bdfcf57f.com/scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js
IP 54.230.111.103:0
File type ASCII text, with very long lines (3227), with no line terminators
Hash 9ee48a4da9c402e8a23ad085fb71f28f
f0c59306d6313f9bee02b53ca8903991bd24bfd7
9cdad69a4b967c882c3d8e9cb054e7334b7f8870e96427a5d20ae2d17eff2622
GET /scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js HTTP/1.1
Host: 1.b406929acabac9b095f124c81bdfcf57f.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.b406929acabac9b095f124c81bdfcf57f.com/scripts/prod/crossdomain.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 3227
last-modified: Tue, 13 Oct 2020 12:04:25 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Wed, 28 Sep 2022 01:15:51 GMT
etag: "9ee48a4da9c402e8a23ad085fb71f28f"
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cLxVONz-0IdDstlO59u8afMsxiqAXIyKIMaBXJe5kjiTvMzvq3_MLw==
age: 32328
X-Firefox-Spdy: h2
1.c81358859121583b7adf2ace89cb39f44.com/scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js
54.230.111.39200 OK 3.2 kB URL HTTP/2 1.c81358859121583b7adf2ace89cb39f44.com/scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js
IP 54.230.111.39:0
File type ASCII text, with very long lines (3227), with no line terminators
Hash 9ee48a4da9c402e8a23ad085fb71f28f
f0c59306d6313f9bee02b53ca8903991bd24bfd7
9cdad69a4b967c882c3d8e9cb054e7334b7f8870e96427a5d20ae2d17eff2622
GET /scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js HTTP/1.1
Host: 1.c81358859121583b7adf2ace89cb39f44.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.c81358859121583b7adf2ace89cb39f44.com/scripts/prod/crossdomain.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 3227
last-modified: Tue, 13 Oct 2020 12:04:25 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Wed, 28 Sep 2022 02:16:47 GMT
etag: "9ee48a4da9c402e8a23ad085fb71f28f"
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 14ZJKRgddYzAvAu7xTEj_eo9vzU4OWDbme4J4VnOhzGB1Hzr-ZJLHA==
age: 28672
X-Firefox-Spdy: h2
1.a79ab95c1589a13f8a4cab612bc71f9f7.com/scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js
54.230.111.29200 OK 3.2 kB URL HTTP/2 1.a79ab95c1589a13f8a4cab612bc71f9f7.com/scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js
IP 54.230.111.29:0
File type ASCII text, with very long lines (3227), with no line terminators
Hash 9ee48a4da9c402e8a23ad085fb71f28f
f0c59306d6313f9bee02b53ca8903991bd24bfd7
9cdad69a4b967c882c3d8e9cb054e7334b7f8870e96427a5d20ae2d17eff2622
GET /scripts/prod/crossdomain2.12.0.5273.b96c35cc.min.js HTTP/1.1
Host: 1.a79ab95c1589a13f8a4cab612bc71f9f7.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://1.a79ab95c1589a13f8a4cab612bc71f9f7.com/scripts/prod/crossdomain.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 3227
last-modified: Tue, 13 Oct 2020 12:04:25 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Wed, 28 Sep 2022 07:33:20 GMT
etag: "9ee48a4da9c402e8a23ad085fb71f28f"
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yolJOIZ3mLJQ3ANCOtyD8V1AHY8zKM8iuOOMD-xJ8Uq_fdS7BMHHsw==
age: 9679
X-Firefox-Spdy: h2
wup-1ca8ebd0.us.v2.we-stats.com/client/v3.1/web/wup?cid=attina
52.141.217.134200 OK 557 B URL HTTP/2 wup-1ca8ebd0.us.v2.we-stats.com/client/v3.1/web/wup?cid=attina
IP 52.141.217.134:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , ASCII text, with very long lines (557), with no line terminators
Hash ceb6b6d4e4208dce770711f28baef36e
ffbb2053985622ce8e8abd7e281495594c7c5cac
7c5f24521205fbf7ae086d32bc8ea677a379e915e1c4199c9f536494818917c2
POST /client/v3.1/web/wup?cid=attina HTTP/1.1
Host: wup-1ca8ebd0.us.v2.we-stats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2186
Origin: https://bmwvslexustexas.com
Connection: keep-alive
Referer: https://bmwvslexustexas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 557
date: Wed, 28 Sep 2022 10:14:38 GMT
server: uvicorn
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache, no-store
pragma: no-cache
tail-id: 1de6283d-0292-4490-99af-2da0c701826f
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
wup-1ca8ebd0.us.v2.we-stats.com/client/v3.1/web/wup?cid=attina
52.141.217.134200 OK 557 B URL HTTP/2 wup-1ca8ebd0.us.v2.we-stats.com/client/v3.1/web/wup?cid=attina
IP 52.141.217.134:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , ASCII text, with very long lines (557), with no line terminators
Hash cf863480c29d6fb1a5f27fcf5bc61b26
744396187835367f44a74df446a9f24d710ca32e
a14904782529f3c1e78af741eb29f927d8c66928a955b0fb7dca2e5fdeaa759c
POST /client/v3.1/web/wup?cid=attina HTTP/1.1
Host: wup-1ca8ebd0.us.v2.we-stats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1050
Origin: https://bmwvslexustexas.com
Connection: keep-alive
Referer: https://bmwvslexustexas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 557
date: Wed, 28 Sep 2022 10:14:39 GMT
server: uvicorn
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache, no-store
pragma: no-cache
tail-id: 88b8af97-19e5-44a0-ac55-dc574889d943
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
log-1ca8ebd0.us.v2.we-stats.com/api/v1/sendLogs?cid=attina&cdsnum=1664360078233-sjn0000251-22db6b67-868d-492a-b468-96be514c4b5b&csid=null&ds=js&sdkVer=2.21.1.702.b35a966
52.238.253.184204 No Content 0 B URL HTTP/2 log-1ca8ebd0.us.v2.we-stats.com/api/v1/sendLogs?cid=attina&cdsnum=1664360078233-sjn0000251-22db6b67-868d-492a-b468-96be514c4b5b&csid=null&ds=js&sdkVer=2.21.1.702.b35a966
IP 52.238.253.184:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v1/sendLogs?cid=attina&cdsnum=1664360078233-sjn0000251-22db6b67-868d-492a-b468-96be514c4b5b&csid=null&ds=js&sdkVer=2.21.1.702.b35a966 HTTP/1.1
Host: log-1ca8ebd0.us.v2.we-stats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1304
Origin: https://bmwvslexustexas.com
Connection: keep-alive
Referer: https://bmwvslexustexas.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Wed, 28 Sep 2022 10:14:41 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
bmwvslexustexas.com/cancel/debit/Yes/
210.16.120.16200 OK 0 B URL HTTP/1.1 bmwvslexustexas.com/cancel/debit/Yes/
IP 210.16.120.16:0
Analyzer Verdict Alert openphish Idaho Central Credit Union
fortinet Phishing
GET /cancel/debit/Yes/ HTTP/1.1
Host: bmwvslexustexas.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:14:33 GMT
Server: Apache
Last-Modified: Mon, 08 Aug 2022 20:09:38 GMT
Accept-Ranges: bytes
Content-Length: 87671
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html
stackpath.bootstrapcdn.com/bootstrap/4.1.0/js/bootstrap.min.js
104.18.10.207200 OK 0 B URL HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.0/js/bootstrap.min.js
IP 104.18.10.207:0
GET /bootstrap/4.1.0/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bmwvslexustexas.com
Connection: keep-alive
Referer: https://bmwvslexustexas.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:14:34 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"ce6e785579ae4cb555c9de311d1b9271"
last-modified: Mon, 25 Jan 2021 22:04:05 GMT
cdn-cachedat: 08/20/2022 03:07:07
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 4a5582fca5495b254a9b428ae9631f58
cdn-cache: HIT
cf-cache-status: HIT
age: 23
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 751bb682f828fac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2