Report - www.amberunionapartments.com/

Report Overview

Submitted URL
www.amberunionapartments.com/
IP
104.18.193.20
ASN
#13335 CLOUDFLARENET
Submitted
2022-09-15 09:48:07
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
10

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	52.43.46.140
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	386 B	43 kB	142.250.74.72
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	980 B	50 kB	142.250.74.163
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	513 B	694 B	142.250.74.164
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.6 kB	9.8 kB	142.250.74.3
js.callrail.com	10348	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	903 B	1.2 kB	143.204.55.73
cdn.callrail.com	9100	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	404 B	493 B	143.204.55.73
resource.rentcafe.com	65041	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.4 kB	304 kB	151.101.86.92
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.1 kB	42 kB	34.120.237.76
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	613 B	723 B	142.251.1.156
www.amberunionapartments.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.8 kB	11 kB	104.18.194.20
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	978 B	2.7 kB	23.36.77.32
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.27
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.25
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
cdngeneralmvc.rentcafe.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	10 kB	185 kB	104.18.194.20
t.rentcafe.com	36836	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	365 B	3.8 kB	104.19.173.21

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-15	medium	www.amberunionapartments.com/	Malware
2022-09-15	medium	www.amberunionapartments.com/admin/admin-area.js	Malware
2022-09-15	medium	www.amberunionapartments.com/ajaxhandler?handler=LeadAttributionAndDNI	Malware
2022-09-15	medium	www.amberunionapartments.com/offline	Malware
2022-09-15	medium	www.amberunionapartments.com/	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (36)

	URL	Size	First Seen	Last Seen
	cdngeneralmvc.rentcafe.com/common/js/siteeditor-preview.133076892650000000.js	585 B	2023-03-07	2023-11-26
Pretty URL cdngeneralmvc.rentcafe.com/common/js/siteeditor-preview.133076892650000000.js IP 104.18.194.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-11-26 11:53:16 Times Seen12 Hash 6181e519162e2cec9197e0655bbe558a 433eb3127d547a03169294646894e3828fc003e1 5bf6b23666b715e96052353245c50186ce889d2e92371bf3ebc7d58ebf55af87 Loading...

	cdngeneralmvc.rentcafe.com/common/js/adwords_gadid.133076892490000000.js	3.4 kB	2023-03-07	2023-03-10
Pretty URL cdngeneralmvc.rentcafe.com/common/js/adwords_gadid.133076892490000000.js IP 104.18.194.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-03-10 09:37:51 Times Seen1 Hash 3b675da477591339915ae072cfe93c5e f19e78ca811545ea0b18db8001300aa053e2cdef 48e7732b9f1ec0cd8615a2e9c8cf3fd389a4fae82bce16909021ceefb1ee81a9 Loading...

	www.amberunionapartments.com/	384 B	2023-03-07	2023-11-26
Pretty URL www.amberunionapartments.com/ IP 104.18.194.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-11-26 11:53:16 Times Seen6 Hash 5f9f7cd718bd975fdaf44d099aecf10a a71ac70c07deedade1d1414b00b1e2743b420985 0e5a266c9302e4f6405dc9a9e7d236c06e2da693faf7a0821620b35bf39fe06f Loading...

	cdngeneralmvc.rentcafe.com/common/js/widgets/menu.133076892700000000.js	8.3 kB	2023-03-07	2023-03-07
Pretty URL cdngeneralmvc.rentcafe.com/common/js/widgets/menu.133076892700000000.js IP 104.18.194.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-03-07 21:53:55 Times Seen1 Hash ba4f49ea927c06becbd309e98dbade15 de60a9453b95cb92c58e8f4fc99a7472c3dfa52c 96032f27d917c5b72cfd831ed30522e16a1d3604326df521fe80771d45f6e6e5 Loading...

	www.amberunionapartments.com/	468 B	2023-03-07	2023-03-10
Pretty URL www.amberunionapartments.com/ IP 104.18.194.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-03-10 09:37:51 Times Seen1 Hash 499166b8ddf779e78411b9bad2ea339d b7b54fbf5c90936c3a2e2f88dbfe5b088b0ca841 525e6e49f6940f78f2d093046b12aa58b85da53ed4c06687383ced43412a4584 Loading...

	www.amberunionapartments.com/	1.1 kB	2023-03-07	2023-06-19
Pretty URL www.amberunionapartments.com/ IP 104.18.194.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-06-19 13:44:12 Times Seen4 Hash 85f29ec5aaec2b3ba8c373abccbdfdc6 957ea7ed21963fa596bb60f932e960478ad4e670 411c25c654c4ef24a6cf54897b916e63a82a6d7609a5408e30a9b5dad332f5b4 Loading...

	www.amberunionapartments.com/	470 B	2023-03-07	2023-03-10
Pretty URL www.amberunionapartments.com/ IP 104.18.194.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-03-10 09:37:51 Times Seen1 Hash 6cf078f015a40084e2bfecffe1b02d4a 3cc161f2f386185cf7e33c97475dc1d150c50128 cb55d8f0b15f54b88c2971f5ba1c18d8888177852283c0abdc703e6b712cebd4 Loading...

	www.amberunionapartments.com/	371 B	2023-03-07	2023-11-26
Pretty URL www.amberunionapartments.com/ IP 104.18.194.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-11-26 11:53:16 Times Seen8 Hash eedadc48de714d7119ebbc20253f4c63 c09ae9cbfeaf248cb4d98eea74609f2d2c4b8b31 b3609db0ad6e97a7546df0d53d33d694da7fe56ebb9c426e96b9e015c734d79b Loading...

	www.amberunionapartments.com/	4.4 kB	2023-03-07	2023-03-07
Pretty URL www.amberunionapartments.com/ IP 104.18.194.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-03-07 21:53:55 Times Seen1 Hash ce85ea954d429024867809097bb977fc 50717e71e5d3bb49e80a4ebfb502b58e6465e0e6 f10447430a7728210adbc1591e2560898c8bb4e8259c78c15736a364297b0eec Loading...

	cdngeneralmvc.rentcafe.com/common/js/widgets/clicktrack-widget.133076892660000000.js	842 B	2023-03-07	2023-11-26
Pretty URL cdngeneralmvc.rentcafe.com/common/js/widgets/clicktrack-widget.133076892660000000.js IP 104.18.194.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-11-26 11:53:17 Times Seen12 Hash 2b57093fd6cdb7592b079e3ed4922b7f b8e1db2842162fa34d4d131dc3f7d74d14f9ea46 e8c4c225ffe1b6ddc4fa89080c54d854d06d0bdd54a9c23a8a1d0b27be6886f1 Loading...

	cdngeneralmvc.rentcafe.com/common/js/widgets/leadattributionanddni.133076892680000000.js	3.7 kB	2023-03-07	2023-11-26
Pretty URL cdngeneralmvc.rentcafe.com/common/js/widgets/leadattributionanddni.133076892680000000.js IP 104.18.194.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-11-26 11:53:16 Times Seen9 Hash f2299c05b5acefcc1bc1801a82618120 79adc01b9634379c4e4ccfae24b4294054f2dbd7 004094a29d6d6be879049a5d26c8ce03b3b5094dc52bc573e8ec618d2f1f76ee Loading...

	cdngeneralmvc.rentcafe.com/common/js/ysi.bsn.133076892750000000.js	24 kB	2023-03-07	2023-03-10
Pretty URL cdngeneralmvc.rentcafe.com/common/js/ysi.bsn.133076892750000000.js IP 104.18.194.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-03-10 09:37:51 Times Seen1 Hash 1f92582a11d0554549bca50fc084d307 956674b09b43220001d0282d1f17cbe853db54fe ac8a8d6f7ebd7a8521f1002f60c1a061aed9431368394dc2b995701085cf8a24 Loading...

	t.rentcafe.com/rctv1.4.min.js	8.9 kB	2023-03-07	2023-03-10
Pretty URL t.rentcafe.com/rctv1.4.min.js IP 104.19.173.21 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-03-10 22:28:47 Times Seen1 Hash 2dd88819434df8b8a93304d979799454 ad2e374bb151ad4166991efc305a19ec1c141495 b94ec5d9cac8e1e80cc889ee4109d189d025695512735559804c2d25bcd242ab Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-07	2024-05-01
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-05-01 17:51:21 Times Seen850 Hash d40531c5e99a6f84e42535859476fe35 a901817d77b2fe5259c298c91bc65c54d7f8a1a9 a1925038db769477ab74b4df34350c35688a795bb718727b0f4292a4a78a6210 Loading...

	www.googletagmanager.com/gtag/js?id=UA-36373447-1&l=dataLayer&cx=c	109 kB	2023-03-07	2023-03-07
Pretty URL www.googletagmanager.com/gtag/js?id=UA-36373447-1&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-03-07 16:52:51 Times Seen1 Hash 1e6144ba861fd0f4c0f084ff670385a1 bd82913908e8e5c9cad13bc7e30d3d58ebfbed8c 1df36e130b46be80ce36e8d27f8d47d695e9c4669c85a55e2e1e077202db7540 Loading...

	js.callrail.com/companies/157314790/external_forms.js?t=1663235264071&	23 kB	2023-03-07	2023-03-26
Pretty URL js.callrail.com/companies/157314790/external_forms.js?t=1663235264071& IP 143.204.55.73 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:08 Last Seen2023-03-26 13:56:49 Times Seen7 Hash 39622db956e9b95ea1c86e78751ed6ab 9e16e18a4c1a910282ebc136b3c96453a22ec41d e398c800cb5323885a4a2af58eafdf27404df74e0072f33ed964dc6211f6b68b Loading...

	www.amberunionapartments.com/admin/admin-area.js	131 B	2023-03-07	2023-11-26
Pretty URL www.amberunionapartments.com/admin/admin-area.js IP 104.18.194.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-11-26 11:53:16 Times Seen11 Hash 5cd5646f7457c2078c8403ac7ec5de49 0002f4e5c8d6b99e1f0dd0b553a4de01beed8ba4 cd9d36b03fd7d34384160a75dd177b8469b27d4d41f2ab43a750bb9ef47e9ed4 Loading...

	cdngeneralmvc.rentcafe.com/common/js/widgets/go-to-top.133076892670000000.js	1.1 kB	2023-03-07	2023-11-26
Pretty URL cdngeneralmvc.rentcafe.com/common/js/widgets/go-to-top.133076892670000000.js IP 104.18.194.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-11-26 11:53:16 Times Seen11 Hash e83321b87447e9c04f9fe286dc9ba7db 5dba9a753d8ea8c9526f3aa51a5f4f17a36970db c4db5cc1a66c02e613964c29e643878f177a29fcd9f7054c01433f51ec29df57 Loading...

	www.amberunionapartments.com/	209 B	2023-03-07	2023-03-10
Pretty URL www.amberunionapartments.com/ IP 104.18.194.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-03-10 09:37:51 Times Seen1 Hash 052dba1b868794bd8c30e9c27080f90b 695e7046447280536d0d04e946df457fc607e02d 9a5df0d2d642af12760fb4f31a0dd6c8936e046f8f24c1ce3580a01fca999478 Loading...

	cdngeneralmvc.rentcafe.com/common/js/widgets/socialmedia-widget.133076892710000000.js	1.3 kB	2023-03-07	2023-05-02
Pretty URL cdngeneralmvc.rentcafe.com/common/js/widgets/socialmedia-widget.133076892710000000.js IP 104.18.194.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-05-02 22:11:04 Times Seen3 Hash b7be266bec840f4ea8b2a4cf4e66bbae a126eb7e0bf1411539f16391602c85f5c4a9dce6 3e8f90b85ef05ddb3be772f05b232bf2735f03ac6f848d472209beb17512fa68 Loading...

	www.amberunionapartments.com/	570 B	2023-03-07	2023-03-07
Pretty URL www.amberunionapartments.com/ IP 104.18.194.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-03-07 16:52:51 Times Seen1 Hash 506f3e9619ddca98f88e6287ec2d27f4 d92ec141d6c6017acf3cd7488987646c69b2ea7a 7335af35173fe8395b4163b7cc4882a23ec3273f72a01bb63f291d03d30db795 Loading...

	cdn.callrail.com/companies/157314790/e5bd1b6511664fd0e166/12/swap.js	36 kB	2023-03-07	2023-03-07
Pretty URL cdn.callrail.com/companies/157314790/e5bd1b6511664fd0e166/12/swap.js IP 143.204.55.73 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-03-07 21:53:55 Times Seen1 Hash 6a9ad49c2d9a60209ee523fda2a3ffc6 05478e90f4e484b396e94dce82317fced7a8d775 9bc2e72e5b3fafdc09473a6169c803d64a1d554c175d6c1e3b2562136f0ae9e9 Loading...

	www.amberunionapartments.com/	205 B	2023-03-07	2023-11-17
Pretty URL www.amberunionapartments.com/ IP 104.18.194.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-11-17 10:44:02 Times Seen8 Hash d1d523f45670970d8af455fd200cad71 507623ef3e62cfce7694bfa3e3a1a20ac182cde7 a7e9cf9163e77c7eb54c4958d81140d1c01268abe5a475f52c9b54ee58148a32 Loading...

	cdngeneralmvc.rentcafe.com/common/js/ysi.localstorage.133076892760000000.js	932 B	2023-03-07	2023-11-26
Pretty URL cdngeneralmvc.rentcafe.com/common/js/ysi.localstorage.133076892760000000.js IP 104.18.194.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-11-26 11:53:15 Times Seen11 Hash 735a9ba299b337b841f56655b27fc416 7fcefd004a6b2803a31f0a9f2754d1263151f301 f196471b7428db64bb8c234040dd1304006cedfce44aa1a323ca79566388ccee Loading...

	www.googletagmanager.com/gtag/js?id=UA-73820216-97	109 kB	2023-03-07	2023-03-07
Pretty URL www.googletagmanager.com/gtag/js?id=UA-73820216-97 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-03-07 16:52:51 Times Seen1 Hash ee115acf641653b8c76cfe4a73968aca e71317932bc6f9aa8f8147a0f07fe9adc3c9104a d58b143412588b2124c8a27eba2bab151646e5665c199dd95e43013dc2a6155f Loading...

	cdngeneralmvc.rentcafe.com/common/js/cookiepolicy.js	7.6 kB	2023-03-07	2023-03-07
Pretty URL cdngeneralmvc.rentcafe.com/common/js/cookiepolicy.js IP 104.18.194.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-03-07 21:53:55 Times Seen1 Hash ee011c726208bce779b4bb651a7cc1a5 1e96e97c39222badbaa240b8246743973d8edb3b 490a8ceca354e102d167b529967d45305b3448922043425b94445b264f6e136c Loading...

	www.amberunionapartments.com/	264 B	2023-03-07	2023-03-07
Pretty URL www.amberunionapartments.com/ IP 104.18.194.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-03-07 21:53:55 Times Seen1 Hash f91f4faa52d4a51a4e1f83e98191d158 36ce43eb5602e92c80fee1c50791b17494117e1d 13602f1e03319bb9977b76755dfd8fb1ae8f1942e5453d2aa819247523a425d1 Loading...

	www.amberunionapartments.com/	535 B	2023-03-07	2023-11-26
Pretty URL www.amberunionapartments.com/ IP 104.18.194.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-11-26 11:53:16 Times Seen11 Hash c9f5ca361d3aea3dae1e9aeb3c129dbc 8b0cea6b557513d3d09897112bd47ad6847b559b c20d384fcb8731a32f7ec1c0219c9033db8144846d479c5b5745a31fd4d38e77 Loading...

	www.amberunionapartments.com/	61 B	2023-03-07	2023-11-17
Pretty URL www.amberunionapartments.com/ IP 104.18.194.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-11-17 10:44:02 Times Seen6 Hash 40bfe1a4c0c82018b3d4e95fcc2ec7c7 44ffb3c8a129a71cc5cde8b278f95943ec71be48 adc85b1340b20f9ebf81efce431a6b40ffd652a048466d277971c91b8294d7d5 Loading...

	js.callrail.com/group/0/e5bd1b6511664fd0e166/12/icap.js?t=1663235264456&uuid=fa422560-5e84-4e95-bcd2-9bdac16a0421&ids%5B%5D=157314790	22 B	2023-03-07	2024-04-30
Pretty URL js.callrail.com/group/0/e5bd1b6511664fd0e166/12/icap.js?t=1663235264456&uuid=fa422560-5e84-4e95-bcd2-9bdac16a0421&ids%5B%5D=157314790 IP 143.204.55.73 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:02 Last Seen2024-04-30 18:20:24 Times Seen795 Hash 428fbfbe32240731c2093be221cc8df3 8b831bc780288cdfce6dba1a93d062c9379f4def 1643b5cec44cc597bc2cce3448ce5434241eec9b92db8af268ee3ee1f198441d Loading...

	cdngeneralmvc.rentcafe.com/common/js/ysi.lib.133076892760000000.js	22 kB	2023-03-07	2023-03-07
Pretty URL cdngeneralmvc.rentcafe.com/common/js/ysi.lib.133076892760000000.js IP 104.18.194.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-03-07 21:53:55 Times Seen1 Hash afb66a1471617b0b2836c67c10f346a2 0dcd370df92f06bca8c81941bf2dcd1ff2072ffe 785240bb20c6d72562d9edc0ddf5718673ba5005e20eafd23694a04df4390613 Loading...

	cdngeneralmvc.rentcafe.com/common/js/ysi.bootstrap.carousel.133076892720000000.js	12 kB	2023-03-07	2023-03-10
Pretty URL cdngeneralmvc.rentcafe.com/common/js/ysi.bootstrap.carousel.133076892720000000.js IP 104.18.194.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-03-10 09:37:51 Times Seen1 Hash 0d31bac2aa359f69feed02e1cd1b9be9 0189d1474dcd4c6af93684ca2fc41aeca12023cd 58015a017d6b88e7edebae34d290ebe37b2bfb570b802b47bd452428a23604e7 Loading...

	cdngeneralmvc.rentcafe.com/common/js/ysi.scrollbars.133076892760000000.js	797 B	2023-03-07	2023-11-26
Pretty URL cdngeneralmvc.rentcafe.com/common/js/ysi.scrollbars.133076892760000000.js IP 104.18.194.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-11-26 11:53:16 Times Seen11 Hash d5f690e7680ade6f189c6879725e76ec e0c82ffe86b6a8be5e1975a29586b8bde7170c3a 679bbd97efc0abb8d4dee7029c613702d7ba61706e6c9e2fd994892f8031f198 Loading...

	www.amberunionapartments.com/	332 B	2023-03-07	2023-11-17
Pretty URL www.amberunionapartments.com/ IP 104.18.194.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-11-17 10:44:02 Times Seen10 Hash 2ae1f2b65ed577d82efb7d3f92161ee8 e3ebae5159c47bae73ee14038bc434dc6c8f092a b9dc8de042a928afc6f40804bc2ea12e4f0b9eae0d8c616d391e19344b1250b5 Loading...

	www.amberunionapartments.com/	1.6 kB	2023-03-07	2023-03-07
Pretty URL www.amberunionapartments.com/ IP 104.18.194.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:52:51 Last Seen2023-03-07 21:53:55 Times Seen1 Hash 3e7e14d5c9941ea1214c0c154ae5d848 d38929fab0e3e771dd86baa75974e997d7c10995 534465887547f2898c0f72fa4416d14a34dced1a340a64059dbf1515d22b5a9b Loading...

		Size	First Seen	Last Seen
	#1 Eval - 4a2bf1422e31feff5c6c43374a523f47	216 B	2023-03-07	2023-03-07
Pretty Observations First Seen2023-03-07 16:52:51 Last Seen2023-03-07 16:52:51 Times Seen1 Hash 4a2bf1422e31feff5c6c43374a523f47 e7d1fa556ce6a76f4e5eab5036e77171a627489d 364cb042dd3d99ce4561720726944da542f903cac8bad2080f197a889d18afc6 Loading...

HTTP Transactions (74)

URL IP Response Size

www.amberunionapartments.com/

104.18.194.20

301 Moved Permanently

0 B

URL HTTP/1.1
www.amberunionapartments.com/
IP
104.18.194.20:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: www.amberunionapartments.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Thu, 15 Sep 2022 09:47:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 15 Sep 2022 10:47:56 GMT
Location: https://www.amberunionapartments.com/
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b0719e5f351c16-OSL

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
be88d3e043e3b95b52e41812e50fb634
0318ba1ce487817ea7cba61dd9413bed29213800
b5f178d23e633283f226cca7a9ae79b01e6cab2299ff7065c980d3a9953212fd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5F178D23E633283F226CCA7A9AE79B01E6CAB2299FF7065C980D3A9953212FD"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10849
Expires: Thu, 15 Sep 2022 12:48:45 GMT
Date: Thu, 15 Sep 2022 09:47:56 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

143.204.55.27

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 15 Sep 2022 09:10:23 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: YwECeMdj6p6PaPyd_v-Jg1qEnbm4U2ae10Q1UB4o3z6J-k669UmYig==
Age: 2253

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.25

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.25:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 15 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: O2R2bMBw563L_ykWaTPPNA3LhsKVY1mF4_0yQmWoCjPY0vJEp8LaHw==
age: 18761
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 15 Sep 2022 09:47:56 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.27

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 15 Sep 2022 09:03:22 GMT
Cache-Control: max-age=3600
Expires: Thu, 15 Sep 2022 09:56:56 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: TEKomAg7opai2b3Jdd1yPQlfxQERSPN6UmkzI34wtSvbS_-l1HNKow==
Age: 2675

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
d3ac56507d17ffff5e8b486406985d68
17d26336cd8ea65af3f23db166945f1b3fbbfbab
e7e321340eed681c1269f715b0214e1511d5762fffbe930e7c157b800afa9a39

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6049
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 09:47:57 GMT
Last-Modified: Thu, 15 Sep 2022 08:07:08 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

52.43.46.140

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.43.46.140:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: lPedQcsZ6cJ1NEoIO8e9qA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: SR6vb/RgTLWk8tebIoULHiHrUz4=

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ed1a966e9770807ef8b4f57a5113d29a
d843a3d371ee0424004f68ccc32ce06e6bc6e6c7
4932c01d3db39a9ac2f0f7e2693af95e5a334697edfd8d078fd52e421ba43721

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 09:47:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-73820216-97

142.250.74.72

200 OK

42 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-73820216-97
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1720)
Size
42 kB (42421 bytes)
Hash
cc83789ef4b70cdb50ce092756ed6c7a
5ba3a95241731b0cb93befe08fb77fd54165c65e
2a5d78b2d3054a70b51cf461f9f04164977944e8ebe810c3101ab8faafd60433

HTTP Headers

GET /gtag/js?id=UA-73820216-97 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 15 Sep 2022 09:47:57 GMT
expires: Thu, 15 Sep 2022 09:47:57 GMT
cache-control: private, max-age=900
last-modified: Thu, 15 Sep 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42421
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ed1a966e9770807ef8b4f57a5113d29a
d843a3d371ee0424004f68ccc32ce06e6bc6e6c7
4932c01d3db39a9ac2f0f7e2693af95e5a334697edfd8d078fd52e421ba43721

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 09:47:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

resource.rentcafe.com/image/upload/w_250,h_461/q_auto,f_auto,c_lfill,w_250,ar_0.788/s3/2/58193/image-from-rawpixel-id-2910342_250px.png

151.101.86.92

200 OK

14 kB

URL HTTP/2
resource.rentcafe.com/image/upload/w_250,h_461/q_auto,f_auto,c_lfill,w_250,ar_0.788/s3/2/58193/image-from-rawpixel-id-2910342_250px.png
IP
151.101.86.92:0
ASN
#54113 FASTLY

File type
RIFF (little-endian) data, Web/P image\012- data
Size
14 kB (13944 bytes)
Hash
dd99a6c359902470f572564a5311428d
7b9a7a9fa9cb5ad4e4800dcbc27e7487b17d438e
2b207413cd33a1540a47fe0579015c74d012ccd821bf4fefa46df94b3f96e185

HTTP Headers

GET /image/upload/w_250,h_461/q_auto,f_auto,c_lfill,w_250,ar_0.788/s3/2/58193/image-from-rawpixel-id-2910342_250px.png HTTP/1.1
Host: resource.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-disposition: inline; filename="image-from-rawpixel-id-2910342_250px.webp"
content-type: image/webp
etag: "dd99a6c359902470f572564a5311428d"
last-modified: Fri, 01 Jul 2022 22:38:58 GMT
date: Thu, 15 Sep 2022 09:47:58 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=31557600
server-timing: fastly;dur=137;cpu=0;start=2022-09-15T09:47:57.874Z;desc=miss,rtt;dur=15,cloudinary;dur=43;start=2022-09-15T09:47:57.922Z
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 13944
X-Firefox-Spdy: h2

resource.rentcafe.com/image/upload/w_250,h_461/q_auto,f_auto,c_lfill,w_250,ar_0.64/s3/2/58193/image-from-rawpixel-id-2910342_250px.png

151.101.86.92

200 OK

17 kB

URL HTTP/2
resource.rentcafe.com/image/upload/w_250,h_461/q_auto,f_auto,c_lfill,w_250,ar_0.64/s3/2/58193/image-from-rawpixel-id-2910342_250px.png
IP
151.101.86.92:0
ASN
#54113 FASTLY

File type
RIFF (little-endian) data, Web/P image\012- data
Size
17 kB (17224 bytes)
Hash
d97f1e88e20b4e1eeb30b98ac5f2003c
14df7882ded1c9b92f61bec1992a59b85645e4b6
5f3759092596266c46e793b5f5e2c0106aa749cad0f695f0b7c270739675a407

HTTP Headers

GET /image/upload/w_250,h_461/q_auto,f_auto,c_lfill,w_250,ar_0.64/s3/2/58193/image-from-rawpixel-id-2910342_250px.png HTTP/1.1
Host: resource.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-disposition: inline; filename="image-from-rawpixel-id-2910342_250px.webp"
content-type: image/webp
etag: "d97f1e88e20b4e1eeb30b98ac5f2003c"
last-modified: Fri, 01 Jul 2022 22:59:46 GMT
date: Thu, 15 Sep 2022 09:47:58 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=31557600
server-timing: fastly;dur=151;cpu=1;start=2022-09-15T09:47:57.874Z;desc=miss,rtt;dur=15,cloudinary;dur=55;start=2022-09-15T09:47:57.923Z
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 17224
X-Firefox-Spdy: h2

resource.rentcafe.com/image/upload/w_866,h_1338/q_auto,f_auto,c_lfill,w_320,ar_1,g_auto/s3/2/58193/annie-spratt-osjtqstiayy-unsplash(1).jpg

151.101.86.92

200 OK

9.3 kB

URL HTTP/2
resource.rentcafe.com/image/upload/w_866,h_1338/q_auto,f_auto,c_lfill,w_320,ar_1,g_auto/s3/2/58193/annie-spratt-osjtqstiayy-unsplash(1).jpg
IP
151.101.86.92:0
ASN
#54113 FASTLY

File type
RIFF (little-endian) data, Web/P image\012- data
Size
9.3 kB (9342 bytes)
Hash
a3e4e2823c610382ab679316d3c8beab
526172480bb466df65391a2e00dbf9c2d04a905c
3788e44c6f2056825bc142206049004dccc0ea52acf07c876d03308e973a2f58

HTTP Headers

GET /image/upload/w_866,h_1338/q_auto,f_auto,c_lfill,w_320,ar_1,g_auto/s3/2/58193/annie-spratt-osjtqstiayy-unsplash(1).jpg HTTP/1.1
Host: resource.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-disposition: inline; filename="annie-spratt-osjtqstiayy-unsplash(1).webp"
content-type: image/webp
etag: "a3e4e2823c610382ab679316d3c8beab"
last-modified: Wed, 10 Aug 2022 06:07:40 GMT
date: Thu, 15 Sep 2022 09:47:58 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=31557600
server-timing: fastly;dur=162;cpu=1;start=2022-09-15T09:47:57.873Z;desc=miss,rtt;dur=15,cloudinary;dur=59;start=2022-09-15T09:47:57.921Z
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 9342
X-Firefox-Spdy: h2

resource.rentcafe.com/image/upload/w_892,h_1338/q_auto,f_auto,c_lfill,w_319,ar_0.627,g_auto/s3/2/58193/sarandy-westfall-vycdfmskuaa-unsplash(2).jpg

151.101.86.92

200 OK

15 kB

URL HTTP/2
resource.rentcafe.com/image/upload/w_892,h_1338/q_auto,f_auto,c_lfill,w_319,ar_0.627,g_auto/s3/2/58193/sarandy-westfall-vycdfmskuaa-unsplash(2).jpg
IP
151.101.86.92:0
ASN
#54113 FASTLY

File type
RIFF (little-endian) data, Web/P image\012- data
Size
15 kB (14726 bytes)
Hash
4b73adb61522896b32c22b857eb9ff33
19d7e00f49ef4d576217d0cd399b9cbdd7dc4bd6
693e7117b3562962ea6c230d2316a7d8d88d08a56ca4e546909cbcd58187ecd5

HTTP Headers

GET /image/upload/w_892,h_1338/q_auto,f_auto,c_lfill,w_319,ar_0.627,g_auto/s3/2/58193/sarandy-westfall-vycdfmskuaa-unsplash(2).jpg HTTP/1.1
Host: resource.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-disposition: inline; filename="sarandy-westfall-vycdfmskuaa-unsplash(2).webp"
content-type: image/webp
etag: "4b73adb61522896b32c22b857eb9ff33"
last-modified: Wed, 10 Aug 2022 06:07:40 GMT
date: Thu, 15 Sep 2022 09:47:58 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=31557600
server-timing: fastly;dur=171;cpu=0;start=2022-09-15T09:47:57.877Z;desc=miss,rtt;dur=15,cloudinary;dur=78;start=2022-09-15T09:47:57.924Z
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 14726
X-Firefox-Spdy: h2

resource.rentcafe.com/image/upload/q_auto,f_auto,c_limit,w_180,h_70/s3/2/58193/au-logo-edit%20copy%20web.png

151.101.86.92

200 OK

2.0 kB

URL HTTP/2
resource.rentcafe.com/image/upload/q_auto,f_auto,c_limit,w_180,h_70/s3/2/58193/au-logo-edit%20copy%20web.png
IP
151.101.86.92:0
ASN
#54113 FASTLY

File type
RIFF (little-endian) data, Web/P image\012- data
Size
2.0 kB (1976 bytes)
Hash
7b01ac0f9a57f3c664b859b52ef47061
f3b680b7d6704ac5f784cdcfeb06ad9ccb51a38f
543340aeac7b75883c1c1612555e274017c10662371da790e0f0d14a0017347b

HTTP Headers

GET /image/upload/q_auto,f_auto,c_limit,w_180,h_70/s3/2/58193/au-logo-edit%20copy%20web.png HTTP/1.1
Host: resource.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-disposition: inline; filename="au-logo-edit copy web.webp"
content-type: image/webp
etag: "7b01ac0f9a57f3c664b859b52ef47061"
last-modified: Mon, 06 Jun 2022 23:20:12 GMT
date: Thu, 15 Sep 2022 09:47:58 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=31557600
server-timing: fastly;dur=181;cpu=1;start=2022-09-15T09:47:57.873Z;desc=miss,rtt;dur=15,cloudinary;dur=87;start=2022-09-15T09:47:57.922Z
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 1976
X-Firefox-Spdy: h2

resource.rentcafe.com/image/upload/w_665,h_624/q_auto,f_auto,c_lfill,w_320,ar_1,g_auto/s3/2/58193/amber%20union_mood%201.jpg

151.101.86.92

200 OK

26 kB

URL HTTP/2
resource.rentcafe.com/image/upload/w_665,h_624/q_auto,f_auto,c_lfill,w_320,ar_1,g_auto/s3/2/58193/amber%20union_mood%201.jpg
IP
151.101.86.92:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x320, components 3\012- data
Size
26 kB (26256 bytes)
Hash
af6ab9018d6cd255958f7253c67dfbb0
8ad442407918d15cc6dcce8b10a427d7664d9352
c7c223e46ac3d2e3cb036ee951a7892359fe7d511d3bb493ef96592aac5f1a22

HTTP Headers

GET /image/upload/w_665,h_624/q_auto,f_auto,c_lfill,w_320,ar_1,g_auto/s3/2/58193/amber%20union_mood%201.jpg HTTP/1.1
Host: resource.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
etag: "af6ab9018d6cd255958f7253c67dfbb0"
last-modified: Wed, 10 Aug 2022 06:07:40 GMT
date: Thu, 15 Sep 2022 09:47:58 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=31557600
server-timing: fastly;dur=252;cpu=0;start=2022-09-15T09:47:57.882Z;desc=miss,rtt;dur=14,cloudinary;dur=70;start=2022-09-15T09:47:57.928Z
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 26256
X-Firefox-Spdy: h2

resource.rentcafe.com/image/upload/w_665,h_624/q_auto,f_auto,c_fill,w_599,ar_0.937,g_auto/s3/2/58193/amber%20union_mood%203.jpg

151.101.86.92

200 OK

18 kB

URL HTTP/2
resource.rentcafe.com/image/upload/w_665,h_624/q_auto,f_auto,c_fill,w_599,ar_0.937,g_auto/s3/2/58193/amber%20union_mood%203.jpg
IP
151.101.86.92:0
ASN
#54113 FASTLY

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 599x639, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
18 kB (17922 bytes)
Hash
0302b7369033e7edefce7ed87b75b545
233ce32ab3608546c606c19567ab068b3bb4ed4e
fc84dc9bde080b8d5953b989211bc0c4bea1da6e95e745ff337e0d8ffe1c19a1

HTTP Headers

GET /image/upload/w_665,h_624/q_auto,f_auto,c_fill,w_599,ar_0.937,g_auto/s3/2/58193/amber%20union_mood%203.jpg HTTP/1.1
Host: resource.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-disposition: inline; filename="amber union_mood 3.webp"
content-type: image/webp
etag: "0302b7369033e7edefce7ed87b75b545"
last-modified: Wed, 10 Aug 2022 06:07:40 GMT
date: Thu, 15 Sep 2022 09:47:58 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=31557600
server-timing: fastly;dur=181;cpu=0;start=2022-09-15T09:47:57.874Z;desc=miss,rtt;dur=15,cloudinary;dur=88;start=2022-09-15T09:47:57.920Z
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 17922
X-Firefox-Spdy: h2

cdngeneralmvc.rentcafe.com/common/scss/fontawesome/webfonts/ysi-fa-solid.woff2

104.18.194.20

200 OK

8.7 kB

URL HTTP/2
cdngeneralmvc.rentcafe.com/common/scss/fontawesome/webfonts/ysi-fa-solid.woff2
IP
104.18.194.20:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 8696, version 1.0\012- data
Size
8.7 kB (8696 bytes)
Hash
da005833ada3eee226c56b4506daf857
683287f135e5629ba7c61c0a1c3e2c510054262f
47c2656be44429c7146ca07392fe7d2cd4a81b8c29dac6476422e78afc1cad38

HTTP Headers

GET /common/scss/fontawesome/webfonts/ysi-fa-solid.woff2 HTTP/1.1
Host: cdngeneralmvc.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.amberunionapartments.com
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 15 Sep 2022 09:47:58 GMT
content-type: font/woff2
content-length: 8696
x-yardi-svcaddr: rentcaffeine-propertysite-mvc.rentcaffeine.svc.cluster.local:5000
last-modified: Thu, 15 Sep 2022 04:20:12 GMT
etag: "1d8c8ba72a007f8"
access-control-allow-origin: *
expires: Fri, 15 Sep 2023 09:47:58 GMT
cache-control: max-age=31536000, public
x-proxy: gke-useast4-rentcaffeine-prod-a-nginx-77c86cb558-9b5pn
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b071a62fb3b517-OSL
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11049
Expires: Thu, 15 Sep 2022 12:52:07 GMT
Date: Thu, 15 Sep 2022 09:47:58 GMT
Connection: keep-alive

www.amberunionapartments.com/admin/admin-area.js

104.18.194.20

200 OK

617 B

URL HTTP/2
www.amberunionapartments.com/admin/admin-area.js
IP
104.18.194.20:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
617 B (617 bytes)
Hash
c97526fac44cd19fe77635833289ba05
7edb8d8a0ec76aa2b412b6af95d85fdb2f260610
eb8fc7cac3cb66c37aea2663b968cad4ab1b31d3a2d7d35f7d29f8e145f70a16

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /admin/admin-area.js HTTP/1.1
Host: www.amberunionapartments.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.amberunionapartments.com/
Connection: keep-alive
Cookie: .AspNetCore.Antiforgery.-rXc1S2HjzU=CfDJ8CtwjdPBESBMu9DVKc5_ZZ3vTDIQoGgrBoaTplfqbLN9TF2foaSHXflA05rG2e_-pxcymqsqKXVN0x2LYtf0wuw-Q-eK4d2rv9XmnHb-wpnDtU4xLvOZok_x12F8A2qr9Ytsa1zma3Un8nwo-Aer6nM; .AspNetCore.Mvc.CookieTempDataProvider=CfDJ8CtwjdPBESBMu9DVKc5_ZZ3ZnwSsNObcAl8sfheL4XWS85jjjzHGoTso5MoZyDXX51_27AbqYk7vj5uY5rC1vqzgYEVbdGE5UKt3XYAKBOZVauyBj8HdXWZPhKVsKqNwQw
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Sep 2022 09:47:58 GMT
content-type: application/javascript
x-yardi-svcaddr: rentcaffeine-propertysite-mvc.rentcaffeine.svc.cluster.local:5000
last-modified: Thu, 15 Sep 2022 04:20:45 GMT
etag: W/"1d8c8ba864b8c03"
expires: Fri, 15 Sep 2023 09:47:58 GMT
cache-control: max-age=31536000, public
x-proxy: gke-uswest2-rentcaffeine-prod-d-nginx-c6fbff568-pzsh2
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b071a65a95b515-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

cdngeneralmvc.rentcafe.com/common/js/siteeditor-preview.133076892650000000.js

104.18.194.20

200 OK

845 B

URL HTTP/2
cdngeneralmvc.rentcafe.com/common/js/siteeditor-preview.133076892650000000.js
IP
104.18.194.20:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
845 B (845 bytes)
Hash
e0e9a41f6d5bfa96dd896ea1df33d833
038e6953b6dabbd198cbcb6e2d9921b95f7fbd63
4fd3e0f42c961bad80c3db3a62c27b5c34c464946b442d9390ffb93637e5ac87

HTTP Headers

GET /common/js/siteeditor-preview.133076892650000000.js HTTP/1.1
Host: cdngeneralmvc.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Sep 2022 09:47:57 GMT
content-type: text/javascript
x-yardi-svcaddr: rentcaffeine-propertysite-mvc.rentcaffeine.svc.cluster.local:5000
cache-control: max-age=31536000, public
last-modified: Thursday, 15 September 2022
access-control-allow-origin: *
x-server: rentcaffeine-propertysite-mvc-8679c7678c-6c7nc
expires: Fri, 15 Sep 2023 07:04:36 GMT
x-proxy: gke-useast4-rentcaffeine-prod-b-nginx-5f749c7ff4-hc6cm
cf-cache-status: HIT
age: 9801
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b071a658e8b50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11049
Expires: Thu, 15 Sep 2022 12:52:07 GMT
Date: Thu, 15 Sep 2022 09:47:58 GMT
Connection: keep-alive

t.rentcafe.com/rctv1.4.min.js

104.19.173.21

200 OK

3.2 kB

URL HTTP/2
t.rentcafe.com/rctv1.4.min.js
IP
104.19.173.21:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
3.2 kB (3182 bytes)
Hash
2f1005f013b1b3d5e20efe5ff1360217
eaeb0d3ad28acfa4998b91432a03f24afd26cf80
347c64f7b45125cf7c67c89d9dd6c7e0b75b1523ec84345a5a08e652f30382a8

HTTP Headers

GET /rctv1.4.min.js HTTP/1.1
Host: t.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 15 Sep 2022 09:47:57 GMT
content-type: application/javascript
last-modified: Tue, 25 May 2021 05:08:58 GMT
etag: W/"1d751241133f3cf"
cf-cache-status: HIT
age: 5731
set-cookie: __cf_bm=srYTZKjo2AfkIKs70cpB3A43leQLMzwy2OBAIAiFewE-1663235277-0-AbGETtS6CKAGUVPRsj16mcq8aIWBWNyiHwTHUNAjJAxP5wuCYTjLtZGopazRX7RvSfKl2jCmS4aFe5Iwrv/RtJk=; path=/; expires=Thu, 15-Sep-22 10:17:57 GMT; domain=.rentcafe.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b071a6bb700b45-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3545c74-7af3-4ad8-815b-6a50681a2362.jpeg

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3545c74-7af3-4ad8-815b-6a50681a2362.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10633 bytes)
Hash
f42b72c3fd66a6758ebcf0ca8cc1a046
13d42d455f5131b7b861b97eb3f0e91236d4d222
4a07fcacde77dc890164fda9f295b61af6947b2d7f3f84f64749d93e3a1e5b99

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3545c74-7af3-4ad8-815b-6a50681a2362.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10633
x-amzn-requestid: 8dbc7f5f-1cb9-4b45-913d-2d4db71449fd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X7FSvG98IAMFeLQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63144f44-3094163533977c6d1ee90274;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 07:09:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5Gx5Pfp0fH7GtvITXwV1CVZlM6wbfIXmyk_4xZtIVf8qkmg0AyxBPQ==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 20:21:01 GMT
age: 48417
etag: "13d42d455f5131b7b861b97eb3f0e91236d4d222"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

cdngeneralmvc.rentcafe.com/common/js/ysi.bsn.133076892750000000.js

104.18.194.20

200 OK

13 kB

URL HTTP/2
cdngeneralmvc.rentcafe.com/common/js/ysi.bsn.133076892750000000.js
IP
104.18.194.20:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
13 kB (13034 bytes)
Hash
c3836cb1d331ac6b6f34672c62bc7adc
69e5a7c0b4fbee5dd06b73c24c98490dda838870
1086f0862bc9340f6690e33a0fd110789524028a3be0bea05d05508ede22aea1

HTTP Headers

GET /common/js/ysi.bsn.133076892750000000.js HTTP/1.1
Host: cdngeneralmvc.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Sep 2022 09:47:57 GMT
content-type: text/javascript
vary: Accept-Encoding
x-yardi-svcaddr: rentcaffeine-propertysite-mvc.rentcaffeine.svc.cluster.local:5000
cache-control: max-age=31536000, public
last-modified: Thursday, 15 September 2022
access-control-allow-origin: *
x-server: rentcaffeine-propertysite-mvc-66dfbf449c-2vljd
expires: Fri, 15 Sep 2023 07:04:36 GMT
x-proxy: gke-uswest2-rentcaffeine-prod-d-nginx-c6fbff568-k5hn7
content-encoding: gzip
cf-cache-status: HIT
age: 9801
server: cloudflare
cf-ray: 74b071a648c2b50c-OSL
X-Firefox-Spdy: h2

cdngeneralmvc.rentcafe.com/common/js/ysi.bootstrap.carousel.133076892720000000.js

104.18.194.20

200 OK

14 kB

URL HTTP/2
cdngeneralmvc.rentcafe.com/common/js/ysi.bootstrap.carousel.133076892720000000.js
IP
104.18.194.20:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
14 kB (14194 bytes)
Hash
aacae157988e55d841670340af94aab9
c0ffae6fd3501915d0b3cbe249018751ca54987e
34c685ffa971ed9d1497d578662459c6f7b4b87eee022900fd5e57198b1d4e94

HTTP Headers

GET /common/js/ysi.bootstrap.carousel.133076892720000000.js HTTP/1.1
Host: cdngeneralmvc.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Sep 2022 09:47:57 GMT
content-type: text/javascript
vary: Accept-Encoding
x-yardi-svcaddr: rentcaffeine-propertysite-mvc.rentcaffeine.svc.cluster.local:5000
cache-control: max-age=31536000, public
last-modified: Thursday, 15 September 2022
access-control-allow-origin: *
x-server: rentcaffeine-propertysite-mvc-7dcb945d99-75kq4
expires: Fri, 15 Sep 2023 07:04:36 GMT
x-proxy: gke-uswest2-rentcaffeine-prod-c-nginx-85648f5b88-nxrkb
content-encoding: gzip
cf-cache-status: HIT
age: 9801
server: cloudflare
cf-ray: 74b071a658e9b50c-OSL
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f370e89-6cc5-4da8-83dc-68d5a685ce0f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.3 kB (9340 bytes)
Hash
a05eafb022d09a0c88432fe018f2c325
b8ae9f4346fe63c5aa7a3b07ef84eac8fc63ca94
91b3994632d954d1c93ee53a46d2d8850ebe387af40962aad787d341b742e9f0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f370e89-6cc5-4da8-83dc-68d5a685ce0f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9340
x-amzn-requestid: 23ab295a-91a0-4a91-ba26-8302088a50c2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNxvmEPIIAMFZlQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bc996-10ccfaf45b93ef066901573d;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 23:17:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: j_TffmLpWMBRCuHyrY6e6DuD3g8nOMX296pqnkra4KHsAwSkXj-3_w==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 22:00:43 GMT
age: 42435
etag: "b8ae9f4346fe63c5aa7a3b07ef84eac8fc63ca94"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e9a2626-acb3-4c73-9ff9-e09ad82d489e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.4 kB (8447 bytes)
Hash
5a6939786c9343412c9af87efd3f44e0
14131148fda4e8d85b582fd20e76bcc814341bf1
8412c50f0fdc131d9c4422f2d7307fc1ee062c3580a1d754ef71cf84f9727d49

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e9a2626-acb3-4c73-9ff9-e09ad82d489e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8447
x-amzn-requestid: 3237c2fa-bc17-4b8d-8afd-bacfaa90ca71
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X7FypF7KIAMFd7A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63145010-7052273b184685c83569c712;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 07:13:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: wzi_WnjJW5XjIfj8kyVL4LcQEjcuw1_zwrDiJegEZ2r8GOZcQahPEw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 21:46:45 GMT
age: 43273
etag: "14131148fda4e8d85b582fd20e76bcc814341bf1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

cdngeneralmvc.rentcafe.com/common/js/widgets/menu.133076892700000000.js

104.18.194.20

200 OK

13 kB

URL HTTP/2
cdngeneralmvc.rentcafe.com/common/js/widgets/menu.133076892700000000.js
IP
104.18.194.20:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
13 kB (12866 bytes)
Hash
0a172f9ab5710bb0bde05149fd547cb3
45d45dece134af9b2e5ad585337b199fe2e0968e
70b88a59bfef8d340d8b09e1020ca7f99f4a0c386e969bb40281ab3d2266b5c1

HTTP Headers

GET /common/js/widgets/menu.133076892700000000.js HTTP/1.1
Host: cdngeneralmvc.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Sep 2022 09:47:57 GMT
content-type: text/javascript
vary: Accept-Encoding
x-yardi-svcaddr: rentcaffeine-propertysite-mvc.rentcaffeine.svc.cluster.local:5000
cache-control: max-age=31536000, public
last-modified: Thursday, 15 September 2022
access-control-allow-origin: *
x-server: rentcaffeine-propertysite-mvc-7d9fdb5b46-jg85z
expires: Fri, 15 Sep 2023 07:04:36 GMT
x-proxy: gke-useast4-rentcaffeine-prod-a-nginx-77c86cb558-pswdg
content-encoding: gzip
cf-cache-status: HIT
age: 9801
server: cloudflare
cf-ray: 74b071a658edb50c-OSL
X-Firefox-Spdy: h2

resource.rentcafe.com/image/upload/x_0,y_0,w_2000,h_1414,c_crop/q_auto,f_auto,c_lfill,w_1440,ar_2.5396825396825395,g_auto/s3/2/58193/cozy%20bright%20living%20room_web.jpg

151.101.86.92

200 OK

75 kB

URL HTTP/2
resource.rentcafe.com/image/upload/x_0,y_0,w_2000,h_1414,c_crop/q_auto,f_auto,c_lfill,w_1440,ar_2.5396825396825395,g_auto/s3/2/58193/cozy%20bright%20living%20room_web.jpg
IP
151.101.86.92:0
ASN
#54113 FASTLY

File type
RIFF (little-endian) data, Web/P image\012- data
Size
75 kB (74930 bytes)
Hash
50b5ce938ad564dc9a691a8c368925d5
840f5312134de2b910d3b0da5578337486439618
f6229599ca534d2e9fe4260145a7be8fadb8610ad0b26750abd508469b91e689

HTTP Headers

GET /image/upload/x_0,y_0,w_2000,h_1414,c_crop/q_auto,f_auto,c_lfill,w_1440,ar_2.5396825396825395,g_auto/s3/2/58193/cozy%20bright%20living%20room_web.jpg HTTP/1.1
Host: resource.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-disposition: inline; filename="cozy bright living room_web.webp"
content-type: image/webp
etag: "50b5ce938ad564dc9a691a8c368925d5"
last-modified: Thu, 15 Sep 2022 09:47:59 GMT
x-request-id: 5be4a8e5ff63468e5bd7c7ccf240c20f
date: Thu, 15 Sep 2022 09:47:58 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=31557600
server-timing: fastly;dur=990;cpu=0;start=2022-09-15T09:47:57.882Z;desc=miss,rtt;dur=14,cloudinary;dur=895;start=2022-09-15T09:47:57.929Z,cld-id;desc=5be4a8e5ff63468e5bd7c7ccf240c20f
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 74930
X-Firefox-Spdy: h2

cdngeneralmvc.rentcafe.com/common/js/widgets/leadattributionanddni.133076892680000000.js

104.18.194.20

200 OK

1.9 kB

URL HTTP/2
cdngeneralmvc.rentcafe.com/common/js/widgets/leadattributionanddni.133076892680000000.js
IP
104.18.194.20:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.9 kB (1914 bytes)
Hash
6709386b175aeb88d1875bb4db9a97c0
741ca255b4b28e4efdff303fdee330f53bc23eca
e2811ecb86ef675a05630a2af625ac6f2df93c9a5acf6352a7098018a68ba551

HTTP Headers

GET /common/js/widgets/leadattributionanddni.133076892680000000.js HTTP/1.1
Host: cdngeneralmvc.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Sep 2022 09:47:57 GMT
content-type: text/javascript
vary: Accept-Encoding
x-yardi-svcaddr: rentcaffeine-propertysite-mvc.rentcaffeine.svc.cluster.local:5000
cache-control: max-age=31536000, public
last-modified: Thursday, 15 September 2022
access-control-allow-origin: *
x-server: rentcaffeine-propertysite-mvc-66dfbf449c-lzgpf
expires: Fri, 15 Sep 2023 07:04:37 GMT
x-proxy: gke-uswest2-rentcaffeine-prod-d-nginx-c6fbff568-pzsh2
content-encoding: gzip
cf-cache-status: HIT
age: 9800
server: cloudflare
cf-ray: 74b071a668f6b50c-OSL
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d5a5d04d15c71a4e71821b6ddd4110e0
7c5495f9d4165a90ce681ddd1b330675e55a4993
545c765db5e55c1d89bc56d93a3cde1a3b6f5c9d741ad9b58253f9fd7ab24457

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 09:47:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdngeneralmvc.rentcafe.com/common/js/ysi.scrollbars.133076892760000000.js

104.18.194.20

200 OK

879 B

URL HTTP/2
cdngeneralmvc.rentcafe.com/common/js/ysi.scrollbars.133076892760000000.js
IP
104.18.194.20:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
879 B (879 bytes)
Hash
669e32105b0b6c95fb6fc56e8bc6543d
52b3c0f48f208f1fc9a85fa9815ba6de96010342
e74d7a741fc6493a7084b959e6a8d5187d303ade7b2bb066ff8dd5d78549f263

HTTP Headers

GET /common/js/ysi.scrollbars.133076892760000000.js HTTP/1.1
Host: cdngeneralmvc.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Sep 2022 09:47:57 GMT
content-type: text/javascript
x-yardi-svcaddr: rentcaffeine-propertysite-mvc.rentcaffeine.svc.cluster.local:5000
cache-control: max-age=31536000, public
last-modified: Thursday, 15 September 2022
access-control-allow-origin: *
x-server: rentcaffeine-propertysite-mvc-8679c7678c-9tqqm
expires: Fri, 15 Sep 2023 07:04:39 GMT
x-proxy: gke-useast4-rentcaffeine-prod-b-nginx-5f749c7ff4-djhsf
cf-cache-status: HIT
age: 9798
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b071a6993ab50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d5a5d04d15c71a4e71821b6ddd4110e0
7c5495f9d4165a90ce681ddd1b330675e55a4993
545c765db5e55c1d89bc56d93a3cde1a3b6f5c9d741ad9b58253f9fd7ab24457

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 09:47:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/mulish/v3/1Ptvg83HX_SGhgqk3wot.woff2

142.250.74.163

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/mulish/v3/1Ptvg83HX_SGhgqk3wot.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 31176, version 1.0\012- data
Size
31 kB (31176 bytes)
Hash
0a34978396bb8482f314503caf3bdb6b
c680d8d864f3c61fb790b73770307a845fe4c3b1
704cadf79a0d06795f99128ef632007f435a6259f5472329cd73fbd350e0d2b9

HTTP Headers

GET /s/mulish/v3/1Ptvg83HX_SGhgqk3wot.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.amberunionapartments.com
Connection: keep-alive
Referer: https://cdngeneralmvc.rentcafe.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31176
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 14:20:35 GMT
expires: Wed, 13 Sep 2023 14:20:35 GMT
cache-control: public, max-age=31536000
age: 156444
last-modified: Thu, 21 Jan 2021 05:15:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/yesevaone/v15/OpNJno4ck8vc-xYpwWWxli1VWw.woff2

142.250.74.163

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/yesevaone/v15/OpNJno4ck8vc-xYpwWWxli1VWw.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 16652, version 1.0\012- data
Size
17 kB (16652 bytes)
Hash
7a862e29ede310b5ba103d2a43e1b441
09d931a3dd1c2c765afbadc9ca2c0bc24bebdd6b
b8fa160cf16de5a4ff0ba1dab23df14735f27555ff8d9efb44baeb4dbeba8367

HTTP Headers

GET /s/yesevaone/v15/OpNJno4ck8vc-xYpwWWxli1VWw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.amberunionapartments.com
Connection: keep-alive
Referer: https://cdngeneralmvc.rentcafe.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16652
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 10 Sep 2022 21:01:41 GMT
expires: Sun, 10 Sep 2023 21:01:41 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 01 Sep 2020 03:49:36 GMT
content-type: font/woff2
age: 391578
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d5a5d04d15c71a4e71821b6ddd4110e0
7c5495f9d4165a90ce681ddd1b330675e55a4993
545c765db5e55c1d89bc56d93a3cde1a3b6f5c9d741ad9b58253f9fd7ab24457

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 09:47:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdngeneralmvc.rentcafe.com/common/scss/nucleo/webfonts/ysi-nucleo-64.woff2?v=1

104.18.194.20

200 OK

25 kB

URL HTTP/2
cdngeneralmvc.rentcafe.com/common/scss/nucleo/webfonts/ysi-nucleo-64.woff2?v=1
IP
104.18.194.20:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 24828, version 1.0\012- data
Size
25 kB (24828 bytes)
Hash
b515633c86c04e2af8c60926be307d3f
21df3f3f6d3bc00cb2859f3450f565087c85922b
df47e8cb7cc0a9f1b07dcd737edc9a8ed594fa8fed3f5381029c06b8d1c4b450

HTTP Headers

GET /common/scss/nucleo/webfonts/ysi-nucleo-64.woff2?v=1 HTTP/1.1
Host: cdngeneralmvc.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.amberunionapartments.com
Connection: keep-alive
Referer: https://cdngeneralmvc.rentcafe.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Sep 2022 09:47:59 GMT
content-type: font/woff2
content-length: 24828
x-yardi-svcaddr: rentcaffeine-propertysite-mvc.rentcaffeine.svc.cluster.local:5000
last-modified: Thu, 15 Sep 2022 04:20:12 GMT
etag: "1d8c8ba72a046fc"
access-control-allow-origin: *
expires: Fri, 15 Sep 2023 09:47:59 GMT
cache-control: max-age=31536000, public
x-proxy: gke-useast4-rentcaffeine-prod-b-nginx-5f749c7ff4-djhsf
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b071adcabdb517-OSL
X-Firefox-Spdy: h2

cdngeneralmvc.rentcafe.com/common/scss/fontawesome/webfonts/fa-solid-900.woff2

104.18.194.20

200 OK

67 kB

URL HTTP/2
cdngeneralmvc.rentcafe.com/common/scss/fontawesome/webfonts/fa-solid-900.woff2
IP
104.18.194.20:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 67400, version 1.0\012- data
Size
67 kB (67400 bytes)
Hash
14a08198ec7d1eb96d515362293fed36
965d78c34637d1bdab6277805faecb6caa959669
ca3ea16761b7d443c64cfd99dd1cf8aa84790a25bb4709582935956fe71d014d

HTTP Headers

GET /common/scss/fontawesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdngeneralmvc.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.amberunionapartments.com
Connection: keep-alive
Referer: https://cdngeneralmvc.rentcafe.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Sep 2022 09:47:59 GMT
content-type: font/woff2
content-length: 67400
x-yardi-svcaddr: rentcaffeine-propertysite-mvc.rentcaffeine.svc.cluster.local:5000
last-modified: Thu, 15 Sep 2022 04:20:12 GMT
etag: "1d8c8ba72a12148"
access-control-allow-origin: *
expires: Fri, 15 Sep 2023 09:47:59 GMT
cache-control: max-age=31536000, public
x-proxy: gke-uswest2-rentcaffeine-prod-d-nginx-c6fbff568-k5hn7
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b071ad9a8db517-OSL
X-Firefox-Spdy: h2

cdngeneralmvc.rentcafe.com/css/scss/98251/daze/widgets/office-hours-layout1-widget.153272.133076894810000000.css

104.18.194.20

200 OK

20 kB

URL HTTP/2
cdngeneralmvc.rentcafe.com/css/scss/98251/daze/widgets/office-hours-layout1-widget.153272.133076894810000000.css
IP
104.18.194.20:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (1325)
Size
20 kB (20237 bytes)
Hash
384300ebb7e03b9569078ebbd1823035
4f0a65276e904930304c0651b7875649f6c40a2e
f759c6276d97f0a653873fdc1e22cf5a76b6c11101fd766dd1155e0c1a35f66b

HTTP Headers

GET /css/scss/98251/daze/widgets/office-hours-layout1-widget.153272.133076894810000000.css HTTP/1.1
Host: cdngeneralmvc.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Cookie: __cf_bm=srYTZKjo2AfkIKs70cpB3A43leQLMzwy2OBAIAiFewE-1663235277-0-AbGETtS6CKAGUVPRsj16mcq8aIWBWNyiHwTHUNAjJAxP5wuCYTjLtZGopazRX7RvSfKl2jCmS4aFe5Iwrv/RtJk=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Sep 2022 09:48:00 GMT
content-type: text/css
x-yardi-svcaddr: rentcaffeine-propertysite-mvc.rentcaffeine.svc.cluster.local:5000
cache-control: max-age=31536000, public
last-modified: Thursday, 15 September 2022
access-control-allow-origin: *
x-server: rentcaffeine-propertysite-mvc-6676f4cf87-rx5t7
expires: Fri, 15 Sep 2023 09:48:00 GMT
x-proxy: gke-useast4-rentcaffeine-prod-a-nginx-77c86cb558-pswdg
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b071b1fa15b50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

cdngeneralmvc.rentcafe.com/css/scss/98251/daze/widgets/photogallery-slider-widget.153272.133076894810000000.css

104.18.194.20

200 OK

2.5 kB

URL HTTP/2
cdngeneralmvc.rentcafe.com/css/scss/98251/daze/widgets/photogallery-slider-widget.153272.133076894810000000.css
IP
104.18.194.20:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
2.5 kB (2538 bytes)
Hash
44d6325c0ca1647fed98e44361fd8a92
0a164016070d80faf64a7646efac37bf92f2bdea
fc3470c61c25fe8aba4d6d8ba4f4fa4052396a3a24587f645243ac1158cb4546

HTTP Headers

GET /css/scss/98251/daze/widgets/photogallery-slider-widget.153272.133076894810000000.css HTTP/1.1
Host: cdngeneralmvc.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Cookie: __cf_bm=srYTZKjo2AfkIKs70cpB3A43leQLMzwy2OBAIAiFewE-1663235277-0-AbGETtS6CKAGUVPRsj16mcq8aIWBWNyiHwTHUNAjJAxP5wuCYTjLtZGopazRX7RvSfKl2jCmS4aFe5Iwrv/RtJk=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Sep 2022 09:47:59 GMT
content-type: text/css
vary: Accept-Encoding
x-yardi-svcaddr: rentcaffeine-propertysite-mvc.rentcaffeine.svc.cluster.local:5000
cache-control: max-age=31536000, public
last-modified: Thursday, 15 September 2022
access-control-allow-origin: *
x-server: rentcaffeine-propertysite-mvc-59b8bcf95d-88p6b
expires: Fri, 15 Sep 2023 09:47:59 GMT
x-proxy: gke-uswest2-rentcaffeine-prod-c-nginx-85648f5b88-nxrkb
content-encoding: gzip
cf-cache-status: MISS
server: cloudflare
cf-ray: 74b071ad4ae1b50c-OSL
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
20620ba615dba1de34528390492c3f53
2ca43d3a828682e10eb7638972b79b7136395e2b
12cf30cf1de58b4bab8af4a5d159b42909c554ae7b34e6f7361d9a49f1e861b7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 09:48:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
20620ba615dba1de34528390492c3f53
2ca43d3a828682e10eb7638972b79b7136395e2b
12cf30cf1de58b4bab8af4a5d159b42909c554ae7b34e6f7361d9a49f1e861b7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 09:48:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdngeneralmvc.rentcafe.com/css/scss/98251/daze/widgets/address-widget.153272.133076894810000000.css

104.18.194.20

200 OK

261 B

URL HTTP/2
cdngeneralmvc.rentcafe.com/css/scss/98251/daze/widgets/address-widget.153272.133076894810000000.css
IP
104.18.194.20:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
261 B (261 bytes)
Hash
7ed85c5932d9cbe62dfb1d61a00d4501
1d8377e840704f26b86e7eea20d498e735eb9b9e
df87fd4c29c78b7e6c55f34b41fd93c831fd812807b0dcf4888efeb65363065c

HTTP Headers

GET /css/scss/98251/daze/widgets/address-widget.153272.133076894810000000.css HTTP/1.1
Host: cdngeneralmvc.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Cookie: __cf_bm=srYTZKjo2AfkIKs70cpB3A43leQLMzwy2OBAIAiFewE-1663235277-0-AbGETtS6CKAGUVPRsj16mcq8aIWBWNyiHwTHUNAjJAxP5wuCYTjLtZGopazRX7RvSfKl2jCmS4aFe5Iwrv/RtJk=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Sep 2022 09:48:00 GMT
content-type: text/css
x-yardi-svcaddr: rentcaffeine-propertysite-mvc.rentcaffeine.svc.cluster.local:5000
cache-control: max-age=31536000, public
last-modified: Thursday, 15 September 2022
access-control-allow-origin: *
x-server: rentcaffeine-propertysite-mvc-59b8bcf95d-qfjkz
expires: Fri, 15 Sep 2023 09:48:00 GMT
x-proxy: gke-uswest2-rentcaffeine-prod-c-nginx-85648f5b88-h8kwm
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b071b1fa16b50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-73820216-97&cid=55071798.1663235265&jid=1928260705&gjid=625326781&_gid=838729155.1663235265&_u=YEBAAUAAAAAAAC~&z=46306972

142.251.1.156

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-73820216-97&cid=55071798.1663235265&jid=1928260705&gjid=625326781&_gid=838729155.1663235265&_u=YEBAAUAAAAAAAC~&z=46306972
IP
142.251.1.156:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-73820216-97&cid=55071798.1663235265&jid=1928260705&gjid=625326781&_gid=838729155.1663235265&_u=YEBAAUAAAAAAAC~&z=46306972 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.amberunionapartments.com
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://www.amberunionapartments.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 15 Sep 2022 09:48:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
20620ba615dba1de34528390492c3f53
2ca43d3a828682e10eb7638972b79b7136395e2b
12cf30cf1de58b4bab8af4a5d159b42909c554ae7b34e6f7361d9a49f1e861b7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 09:48:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a8b2bb270d78a6dddeb5b7fa01bd896c
eee28c4dd10c090f100c6ed383392b67d9fb9200
5c929c1a5e85ed508916eda62cccedb3ef1a5f407468596fa2726c476e2a9340

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 09:48:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a8b2bb270d78a6dddeb5b7fa01bd896c
eee28c4dd10c090f100c6ed383392b67d9fb9200
5c929c1a5e85ed508916eda62cccedb3ef1a5f407468596fa2726c476e2a9340

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 09:48:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ed97a4b82680caefc4ffdebf786e12fc
a638a68f346844709bac57a92bf3d2c28043165e
b81ed44963f5d8b54c62e7fe18db301d3c8eeaf8fbbfb099270562156e12fdc9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 09:48:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ed97a4b82680caefc4ffdebf786e12fc
a638a68f346844709bac57a92bf3d2c28043165e
b81ed44963f5d8b54c62e7fe18db301d3c8eeaf8fbbfb099270562156e12fdc9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 09:48:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdngeneralmvc.rentcafe.com/common/js/cookiepolicy.js

104.18.194.20

200 OK

3.5 kB

URL HTTP/2
cdngeneralmvc.rentcafe.com/common/js/cookiepolicy.js
IP
104.18.194.20:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
3.5 kB (3463 bytes)
Hash
58b6a881c249219bb124efd538ca2a71
d70324584c1b591902c66f5d6608aa6223d3292c
11f3366c287804af43ccd6096936c3fac7529c6bf434b07ca32bf8365f81e99e

HTTP Headers

GET /common/js/cookiepolicy.js HTTP/1.1
Host: cdngeneralmvc.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Sep 2022 09:47:57 GMT
content-type: application/javascript
vary: Accept-Encoding
x-yardi-svcaddr: rentcaffeine-propertysite-mvc.rentcaffeine.svc.cluster.local:5000
last-modified: Wed, 15 Jun 2022 17:16:20 GMT
etag: W/"1d880dba15017ba"
expires: Fri, 16 Jun 2023 04:36:04 GMT
cache-control: max-age=31536000, public
pragma: public
content-encoding: gzip
cf-cache-status: HIT
age: 7881113
server: cloudflare
cf-ray: 74b071a6790eb50c-OSL
X-Firefox-Spdy: h2

www.amberunionapartments.com/ajaxhandler?handler=LeadAttributionAndDNI

104.18.194.20

200 OK

151 B

URL HTTP/2
www.amberunionapartments.com/ajaxhandler?handler=LeadAttributionAndDNI
IP
104.18.194.20:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
151 B (151 bytes)
Hash
3da2d5ffeefec17b67fe774bb7317835
ac790f381f14d5acb3b0e158f0eaf58688f8dcd3
390d820326dfe7ed8736929016df7824ad87f5708dc3f6faa97506ffa52d3285

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

POST /ajaxhandler?handler=LeadAttributionAndDNI HTTP/1.1
Host: www.amberunionapartments.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.amberunionapartments.com/
Content-Type: application/x-www-form-urlencoded
RequestVerificationToken: CfDJ8CtwjdPBESBMu9DVKc5_ZZ0e5vxGyTr_QcoH3z_5d4Ii1FFZylqBIgiguk7i-C7-jicAjrFfcWaM24jABfMHBx_45FCCa0SGag4LwyDKhcYsrlHoFvW_tHnd7DhizEythMQYU8fbsK4-sVx-1zt7AfE
Content-Length: 0
Origin: https://www.amberunionapartments.com
Connection: keep-alive
Cookie: .AspNetCore.Antiforgery.-rXc1S2HjzU=CfDJ8CtwjdPBESBMu9DVKc5_ZZ3vTDIQoGgrBoaTplfqbLN9TF2foaSHXflA05rG2e_-pxcymqsqKXVN0x2LYtf0wuw-Q-eK4d2rv9XmnHb-wpnDtU4xLvOZok_x12F8A2qr9Ytsa1zma3Un8nwo-Aer6nM; .AspNetCore.Mvc.CookieTempDataProvider=CfDJ8CtwjdPBESBMu9DVKc5_ZZ3ZnwSsNObcAl8sfheL4XWS85jjjzHGoTso5MoZyDXX51_27AbqYk7vj5uY5rC1vqzgYEVbdGE5UKt3XYAKBOZVauyBj8HdXWZPhKVsKqNwQw; calltrk_referrer=direct; calltrk_landing=https%3A//www.amberunionapartments.com/; yTrackUser=T7CU8LI5OY141LAWRFWRKW3235264060; yTrackVisit=64EJFPMOGKEP9A6E1HEJGV3235264061; trackThisPage=1663235264061; PropLeadSource_1501198=portal; sReferrerURL=; sCurrentURL=https%253A%252F%252Fwww.amberunionapartments.com%252F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Sep 2022 09:47:59 GMT
content-type: text/plain; charset=utf-8
x-yardi-svcaddr: rentcaffeine-propertysite-mvc.rentcaffeine.svc.cluster.local:5000
x-server: rentcaffeine-propertysite-mvc-6676f4cf87-dtqbv
x-upstream: 10.0.122.229:5000
x-proxy: gke-useast4-rentcaffeine-prod-a-nginx-77c86cb558-pswdg
x-powered-by: Yardi
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74b071adebc1b515-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-73820216-97&cid=55071798.1663235265&jid=1928260705&_u=YEBAAUAAAAAAAC~&z=198357217

142.250.74.164

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-73820216-97&cid=55071798.1663235265&jid=1928260705&_u=YEBAAUAAAAAAAC~&z=198357217
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-73820216-97&cid=55071798.1663235265&jid=1928260705&_u=YEBAAUAAAAAAAC~&z=198357217 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 15 Sep 2022 09:48:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cdngeneralmvc.rentcafe.com/common/js/adwords_gadid.133076892490000000.js

104.18.194.20

200 OK

1.5 kB

URL HTTP/2
cdngeneralmvc.rentcafe.com/common/js/adwords_gadid.133076892490000000.js
IP
104.18.194.20:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1482 bytes)
Hash
66603c6231d57f14d141424675dd9b31
b0913b851c3051757a67a7f3f277296b2af38ff7
65fcfdbfc094d63c00dd374f28f52d3d65329f86adfe49d3354eab6e3ca53c51

HTTP Headers

GET /common/js/adwords_gadid.133076892490000000.js HTTP/1.1
Host: cdngeneralmvc.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Sep 2022 09:47:57 GMT
content-type: text/javascript
vary: Accept-Encoding
x-yardi-svcaddr: rentcaffeine-propertysite-mvc.rentcaffeine.svc.cluster.local:5000
cache-control: max-age=31536000, public
last-modified: Thursday, 15 September 2022
access-control-allow-origin: *
x-server: rentcaffeine-propertysite-mvc-7d9fdb5b46-bpn7b
expires: Fri, 15 Sep 2023 07:04:37 GMT
x-proxy: gke-useast4-rentcaffeine-prod-a-nginx-77c86cb558-pswdg
content-encoding: gzip
cf-cache-status: HIT
age: 9800
server: cloudflare
cf-ray: 74b071a668f8b50c-OSL
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a8b2bb270d78a6dddeb5b7fa01bd896c
eee28c4dd10c090f100c6ed383392b67d9fb9200
5c929c1a5e85ed508916eda62cccedb3ef1a5f407468596fa2726c476e2a9340

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 09:48:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
39aa25d8411997d98f9093c19b0ccbca
3cb31e92d707cd561897042ed1a09de5a79e7108
f1b7b71241b580ec34281f5addc49d716eac9ecc46a3217e646c76e6dc8d4578

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Sep 2022 09:48:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.amberunionapartments.com/offline

104.18.194.20

200 OK

6.6 kB

URL HTTP/2
www.amberunionapartments.com/offline
IP
104.18.194.20:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
6.6 kB (6586 bytes)
Hash
aa4b7a1d9c6b0001c55099454e113445
59fefa4a39a185445ff359390a42957f7b85525b
29de2245c0dbd9dfdc93794c7bdfff7da53aa70b0842c7f4932f2484f5e5cc83

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /offline HTTP/1.1
Host: www.amberunionapartments.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.amberunionapartments.com/serviceworker.js?version=rentcafe.com/css/scss/98251/daze/daze.153272.133076894810000000&css=https://cdngeneralmvc.rentcafe.com/css/scss/98251/daze/daze.153272.133076894810000000.css&logo=&serviceworker=1
Connection: keep-alive
Cookie: .AspNetCore.Antiforgery.-rXc1S2HjzU=CfDJ8CtwjdPBESBMu9DVKc5_ZZ3vTDIQoGgrBoaTplfqbLN9TF2foaSHXflA05rG2e_-pxcymqsqKXVN0x2LYtf0wuw-Q-eK4d2rv9XmnHb-wpnDtU4xLvOZok_x12F8A2qr9Ytsa1zma3Un8nwo-Aer6nM; .AspNetCore.Mvc.CookieTempDataProvider=CfDJ8CtwjdPBESBMu9DVKc5_ZZ3ZnwSsNObcAl8sfheL4XWS85jjjzHGoTso5MoZyDXX51_27AbqYk7vj5uY5rC1vqzgYEVbdGE5UKt3XYAKBOZVauyBj8HdXWZPhKVsKqNwQw; calltrk_referrer=direct; calltrk_landing=https%3A//www.amberunionapartments.com/; yTrackUser=T7CU8LI5OY141LAWRFWRKW3235264060; yTrackVisit=64EJFPMOGKEP9A6E1HEJGV3235264061; trackThisPage=1663235264061; PropLeadSource_1501198=portal; sReferrerURL=; sCurrentURL=https%253A%252F%252Fwww.amberunionapartments.com%252F; calltrk_session_id=fa422560-5e84-4e95-bcd2-9bdac16a0421; calltrk_fcid=66ed6f8d-ea11-4af7-8c52-fbb1cb6ff84f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Sep 2022 09:48:00 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-yardi-svcaddr: rentcaffeine-propertysite-mvc.rentcaffeine.svc.cluster.local:5000
x-server: rentcaffeine-propertysite-mvc-6676f4cf87-7928d
x-upstream: 10.0.122.229:5000
x-proxy: gke-useast4-rentcaffeine-prod-a-nginx-77c86cb558-pswdg
x-powered-by: Yardi
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74b071b2597ab515-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

resource.rentcafe.com/image/upload/x_0,y_0,w_1999,h_1333,c_crop/q_auto,f_auto,c_lfill,w_1440,ar_2.5396825396825395,g_auto/s3/2/58193/gettyimages-1083939500(2).jpg

151.101.86.92

200 OK

61 kB

URL HTTP/2
resource.rentcafe.com/image/upload/x_0,y_0,w_1999,h_1333,c_crop/q_auto,f_auto,c_lfill,w_1440,ar_2.5396825396825395,g_auto/s3/2/58193/gettyimages-1083939500(2).jpg
IP
151.101.86.92:0
ASN
#54113 FASTLY

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1440x567, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
61 kB (61086 bytes)
Hash
bf6c749081c32a46f626999ba4ec007f
763fda75dee5f22b47a10169afa929a03c93454f
251119e5a691c423998a6d0089442e690c70da89fa419f89398ad5ed43af43d6

HTTP Headers

GET /image/upload/x_0,y_0,w_1999,h_1333,c_crop/q_auto,f_auto,c_lfill,w_1440,ar_2.5396825396825395,g_auto/s3/2/58193/gettyimages-1083939500(2).jpg HTTP/1.1
Host: resource.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Cookie: __cf_bm=srYTZKjo2AfkIKs70cpB3A43leQLMzwy2OBAIAiFewE-1663235277-0-AbGETtS6CKAGUVPRsj16mcq8aIWBWNyiHwTHUNAjJAxP5wuCYTjLtZGopazRX7RvSfKl2jCmS4aFe5Iwrv/RtJk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-disposition: inline; filename="gettyimages-1083939500(2).webp"
content-type: image/webp
etag: "bf6c749081c32a46f626999ba4ec007f"
last-modified: Thu, 15 Sep 2022 09:48:04 GMT
x-request-id: f8c4e6b3d80de529706dc707ac7a2802
date: Thu, 15 Sep 2022 09:48:03 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=31557600
server-timing: fastly;dur=737;cpu=0;start=2022-09-15T09:48:03.020Z;desc=miss,rtt;dur=7,cloudinary;dur=641;start=2022-09-15T09:48:03.070Z,cld-id;desc=f8c4e6b3d80de529706dc707ac7a2802
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 61086
X-Firefox-Spdy: h2

resource.rentcafe.com/image/upload/x_0,y_0,w_2000,h_1242,c_crop/q_auto,f_auto,c_lfill,w_1440,ar_2.5396825396825395,g_auto/s3/2/58193/gettyimages-969385122.jpg

151.101.86.92

200 OK

58 kB

URL HTTP/2
resource.rentcafe.com/image/upload/x_0,y_0,w_2000,h_1242,c_crop/q_auto,f_auto,c_lfill,w_1440,ar_2.5396825396825395,g_auto/s3/2/58193/gettyimages-969385122.jpg
IP
151.101.86.92:0
ASN
#54113 FASTLY

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1440x567, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
58 kB (57984 bytes)
Hash
c84b6672bd8ddad98fd741922e54faef
a381c38d3499d1f8f1005f7f6f4cf8c12a3414b3
3e2d148b3c66c93257142f8f502e543bcfa1e8ab0c8baba9caa35cb1050ba4ab

HTTP Headers

GET /image/upload/x_0,y_0,w_2000,h_1242,c_crop/q_auto,f_auto,c_lfill,w_1440,ar_2.5396825396825395,g_auto/s3/2/58193/gettyimages-969385122.jpg HTTP/1.1
Host: resource.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Cookie: __cf_bm=srYTZKjo2AfkIKs70cpB3A43leQLMzwy2OBAIAiFewE-1663235277-0-AbGETtS6CKAGUVPRsj16mcq8aIWBWNyiHwTHUNAjJAxP5wuCYTjLtZGopazRX7RvSfKl2jCmS4aFe5Iwrv/RtJk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-disposition: inline; filename="gettyimages-969385122.webp"
content-type: image/webp
etag: "c84b6672bd8ddad98fd741922e54faef"
last-modified: Thu, 15 Sep 2022 09:48:04 GMT
x-request-id: 580aced293128096fd6166d70224f688
date: Thu, 15 Sep 2022 09:48:03 GMT
vary: Save-Data
strict-transport-security: max-age=604800
cache-control: private, no-transform, immutable, max-age=31557600
server-timing: fastly;dur=934;cpu=0;start=2022-09-15T09:48:03.021Z;desc=miss,rtt;dur=7,cloudinary;dur=827;start=2022-09-15T09:48:03.070Z,cld-id;desc=580aced293128096fd6166d70224f688
server: Cloudinary
timing-allow-origin: *
access-control-allow-origin: *
accept-ranges: bytes
x-content-type-options: nosniff
access-control-expose-headers: Content-Length,Content-Disposition,ETag,Server-Timing,Vary,X-Content-Type-Options
content-length: 57984
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb035d64b-46a7-4c49-b95b-e454aa90f817.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.1 kB (9071 bytes)
Hash
1633672fad0b564108cf81ad711dc881
d37ad0f40bc1f3f0022467dd0af2478980bd858a
cc7176a297f6009f07074fb9af796132b4452833be675bf378cc950fe81a582a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb035d64b-46a7-4c49-b95b-e454aa90f817.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 9071
x-amzn-requestid: b450f7cf-6cc7-4d1f-aef3-4496f0971727
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeIxuEq6oAMF9jQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632254d7-6912ef8731d81fa43b805e5b;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:25:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 6LDUuDX1W8-Q88pDJma0xCAd5QuJ0YV-VpJ_8LVyDHX9YN1k0fQZ8Q==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 22:36:39 GMT
etag: "d37ad0f40bc1f3f0022467dd0af2478980bd858a"
content-type: image/jpeg
age: 40286
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

js.callrail.com/companies/157314790/external_forms.js?t=1663235264071&

143.204.55.73

200 OK

0 B

URL HTTP/2
js.callrail.com/companies/157314790/external_forms.js?t=1663235264071&
IP
143.204.55.73:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /companies/157314790/external_forms.js?t=1663235264071& HTTP/1.1
Host: js.callrail.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Thu, 15 Sep 2022 09:47:59 GMT
cache-control: max-age=0, private, must-revalidate
etag: W/"e398c800cb5323885a4a2af58eafdf27"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-request-id: 17a8f1e6-e30b-4f68-9986-132fe1f64431
x-runtime: 0.003019
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: laze8woIUlPE5iU2APigaYkADfdbS4OQrKd4mK5nIuLKDPJUvgSYEQ==
X-Firefox-Spdy: h2

cdngeneralmvc.rentcafe.com/common/js/widgets/socialmedia-widget.133076892710000000.js

104.18.194.20

200 OK

0 B

URL HTTP/2
cdngeneralmvc.rentcafe.com/common/js/widgets/socialmedia-widget.133076892710000000.js
IP
104.18.194.20:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /common/js/widgets/socialmedia-widget.133076892710000000.js HTTP/1.1
Host: cdngeneralmvc.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Sep 2022 09:47:57 GMT
content-type: text/javascript
vary: Accept-Encoding
x-yardi-svcaddr: rentcaffeine-propertysite-mvc.rentcaffeine.svc.cluster.local:5000
cache-control: max-age=31536000, public
last-modified: Thursday, 15 September 2022
access-control-allow-origin: *
x-server: rentcaffeine-propertysite-mvc-66dfbf449c-75vth
expires: Fri, 15 Sep 2023 07:04:36 GMT
x-proxy: gke-uswest2-rentcaffeine-prod-d-nginx-c6fbff568-k5hn7
content-encoding: gzip
cf-cache-status: HIT
age: 9801
server: cloudflare
cf-ray: 74b071a658ebb50c-OSL
X-Firefox-Spdy: h2

cdngeneralmvc.rentcafe.com/css/scss/98251/daze/widgets/footerlinks-widget.153272.133076894810000000.css

104.18.194.20

200 OK

0 B

URL HTTP/2
cdngeneralmvc.rentcafe.com/css/scss/98251/daze/widgets/footerlinks-widget.153272.133076894810000000.css
IP
104.18.194.20:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css/scss/98251/daze/widgets/footerlinks-widget.153272.133076894810000000.css HTTP/1.1
Host: cdngeneralmvc.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Cookie: __cf_bm=srYTZKjo2AfkIKs70cpB3A43leQLMzwy2OBAIAiFewE-1663235277-0-AbGETtS6CKAGUVPRsj16mcq8aIWBWNyiHwTHUNAjJAxP5wuCYTjLtZGopazRX7RvSfKl2jCmS4aFe5Iwrv/RtJk=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Sep 2022 09:48:00 GMT
content-type: text/css
x-yardi-svcaddr: rentcaffeine-propertysite-mvc.rentcaffeine.svc.cluster.local:5000
cache-control: max-age=31536000, public
last-modified: Thursday, 15 September 2022
access-control-allow-origin: *
x-server: rentcaffeine-propertysite-mvc-59b8bcf95d-wcxl6
expires: Fri, 15 Sep 2023 09:48:00 GMT
x-proxy: gke-uswest2-rentcaffeine-prod-c-nginx-85648f5b88-jpfnh
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b071b1fa1ab50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

www.amberunionapartments.com/favicon.ico

104.18.194.20

200 OK

0 B

URL HTTP/2
www.amberunionapartments.com/favicon.ico
IP
104.18.194.20:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.amberunionapartments.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.amberunionapartments.com/serviceworker.js?version=rentcafe.com/css/scss/98251/daze/daze.153272.133076894810000000&css=https://cdngeneralmvc.rentcafe.com/css/scss/98251/daze/daze.153272.133076894810000000.css&logo=&serviceworker=1
Connection: keep-alive
Cookie: .AspNetCore.Antiforgery.-rXc1S2HjzU=CfDJ8CtwjdPBESBMu9DVKc5_ZZ3vTDIQoGgrBoaTplfqbLN9TF2foaSHXflA05rG2e_-pxcymqsqKXVN0x2LYtf0wuw-Q-eK4d2rv9XmnHb-wpnDtU4xLvOZok_x12F8A2qr9Ytsa1zma3Un8nwo-Aer6nM; .AspNetCore.Mvc.CookieTempDataProvider=CfDJ8CtwjdPBESBMu9DVKc5_ZZ3ZnwSsNObcAl8sfheL4XWS85jjjzHGoTso5MoZyDXX51_27AbqYk7vj5uY5rC1vqzgYEVbdGE5UKt3XYAKBOZVauyBj8HdXWZPhKVsKqNwQw; calltrk_referrer=direct; calltrk_landing=https%3A//www.amberunionapartments.com/; yTrackUser=T7CU8LI5OY141LAWRFWRKW3235264060; yTrackVisit=64EJFPMOGKEP9A6E1HEJGV3235264061; trackThisPage=1663235264061; PropLeadSource_1501198=portal; sReferrerURL=; sCurrentURL=https%253A%252F%252Fwww.amberunionapartments.com%252F; calltrk_session_id=fa422560-5e84-4e95-bcd2-9bdac16a0421; calltrk_fcid=66ed6f8d-ea11-4af7-8c52-fbb1cb6ff84f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Sep 2022 09:48:00 GMT
content-type: image/x-icon
x-yardi-svcaddr: rentcaffeine-propertysite-mvc.rentcaffeine.svc.cluster.local:5000
last-modified: Thu, 15 Sep 2022 04:20:14 GMT
etag: W/"1d8c8ba73d143be"
expires: Fri, 15 Sep 2023 09:48:00 GMT
cache-control: max-age=31536000, public
x-proxy: gke-uswest2-rentcaffeine-prod-d-nginx-c6fbff568-k5hn7
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b071b2697bb515-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

cdngeneralmvc.rentcafe.com/common/js/ysi.localstorage.133076892760000000.js

104.18.194.20

200 OK

0 B

URL HTTP/2
cdngeneralmvc.rentcafe.com/common/js/ysi.localstorage.133076892760000000.js
IP
104.18.194.20:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /common/js/ysi.localstorage.133076892760000000.js HTTP/1.1
Host: cdngeneralmvc.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Sep 2022 09:47:57 GMT
content-type: text/javascript
x-yardi-svcaddr: rentcaffeine-propertysite-mvc.rentcaffeine.svc.cluster.local:5000
cache-control: max-age=31536000, public
last-modified: Thursday, 15 September 2022
access-control-allow-origin: *
x-server: rentcaffeine-propertysite-mvc-66dfbf449c-pdf9q
expires: Fri, 15 Sep 2023 07:04:37 GMT
x-proxy: gke-uswest2-rentcaffeine-prod-d-nginx-c6fbff568-k5hn7
cf-cache-status: HIT
age: 9800
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b071a668f7b50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

cdngeneralmvc.rentcafe.com/common/js/ysi.lib.133076892760000000.js

104.18.194.20

200 OK

0 B

URL HTTP/2
cdngeneralmvc.rentcafe.com/common/js/ysi.lib.133076892760000000.js
IP
104.18.194.20:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /common/js/ysi.lib.133076892760000000.js HTTP/1.1
Host: cdngeneralmvc.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Sep 2022 09:47:57 GMT
content-type: text/javascript
vary: Accept-Encoding
x-yardi-svcaddr: rentcaffeine-propertysite-mvc.rentcaffeine.svc.cluster.local:5000
cache-control: max-age=31536000, public
last-modified: Thursday, 15 September 2022
access-control-allow-origin: *
x-server: rentcaffeine-propertysite-mvc-8679c7678c-9ks65
expires: Fri, 15 Sep 2023 07:04:35 GMT
x-proxy: gke-useast4-rentcaffeine-prod-b-nginx-5f749c7ff4-djhsf
content-encoding: gzip
cf-cache-status: HIT
age: 9801
server: cloudflare
cf-ray: 74b071a648c4b50c-OSL
X-Firefox-Spdy: h2

cdngeneralmvc.rentcafe.com/common/js/widgets/clicktrack-widget.133076892660000000.js

104.18.194.20

200 OK

0 B

URL HTTP/2
cdngeneralmvc.rentcafe.com/common/js/widgets/clicktrack-widget.133076892660000000.js
IP
104.18.194.20:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /common/js/widgets/clicktrack-widget.133076892660000000.js HTTP/1.1
Host: cdngeneralmvc.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Sep 2022 09:47:57 GMT
content-type: text/javascript
x-yardi-svcaddr: rentcaffeine-propertysite-mvc.rentcaffeine.svc.cluster.local:5000
cache-control: max-age=31536000, public
last-modified: Thursday, 15 September 2022
access-control-allow-origin: *
x-server: rentcaffeine-propertysite-mvc-7dcb945d99-wsj8z
expires: Fri, 15 Sep 2023 07:04:38 GMT
x-proxy: gke-uswest2-rentcaffeine-prod-c-nginx-85648f5b88-nxrkb
cf-cache-status: HIT
age: 9799
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b071a668f4b50c-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

cdngeneralmvc.rentcafe.com/common/js/widgets/go-to-top.133076892670000000.js

104.18.194.20

200 OK

0 B

URL HTTP/2
cdngeneralmvc.rentcafe.com/common/js/widgets/go-to-top.133076892670000000.js
IP
104.18.194.20:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /common/js/widgets/go-to-top.133076892670000000.js HTTP/1.1
Host: cdngeneralmvc.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Sep 2022 09:47:57 GMT
content-type: text/javascript
vary: Accept-Encoding
x-yardi-svcaddr: rentcaffeine-propertysite-mvc.rentcaffeine.svc.cluster.local:5000
cache-control: max-age=31536000, public
last-modified: Thursday, 15 September 2022
access-control-allow-origin: *
x-server: rentcaffeine-propertysite-mvc-8679c7678c-v8jnr
expires: Fri, 15 Sep 2023 07:04:39 GMT
x-proxy: gke-useast4-rentcaffeine-prod-b-nginx-5f749c7ff4-djhsf
content-encoding: gzip
cf-cache-status: HIT
age: 9798
server: cloudflare
cf-ray: 74b071a68929b50c-OSL
X-Firefox-Spdy: h2

js.callrail.com/group/0/e5bd1b6511664fd0e166/12/icap.js?t=1663235264456&uuid=fa422560-5e84-4e95-bcd2-9bdac16a0421&ids%5B%5D=157314790

143.204.55.73

200 OK

0 B

URL HTTP/2
js.callrail.com/group/0/e5bd1b6511664fd0e166/12/icap.js?t=1663235264456&uuid=fa422560-5e84-4e95-bcd2-9bdac16a0421&ids%5B%5D=157314790
IP
143.204.55.73:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /group/0/e5bd1b6511664fd0e166/12/icap.js?t=1663235264456&uuid=fa422560-5e84-4e95-bcd2-9bdac16a0421&ids%5B%5D=157314790 HTTP/1.1
Host: js.callrail.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Thu, 15 Sep 2022 09:47:59 GMT
cache-control: max-age=0, private, must-revalidate
etag: W/"1643b5cec44cc597bc2cce3448ce5434"
x-request-id: da76b0cb-02db-40e2-a3fc-ba2fee9b00e6
x-runtime: 0.010749
x-cache: Miss from cloudfront
via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: v78DtjTULBU3xlBatM48HefbB7LolexVl4Aoa7Msb9eN40jEpJORXQ==
X-Firefox-Spdy: h2

cdn.callrail.com/companies/157314790/e5bd1b6511664fd0e166/12/swap.js

143.204.55.73

200 OK

0 B

URL HTTP/2
cdn.callrail.com/companies/157314790/e5bd1b6511664fd0e166/12/swap.js
IP
143.204.55.73:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /companies/157314790/e5bd1b6511664fd0e166/12/swap.js HTTP/1.1
Host: cdn.callrail.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Thu, 15 Sep 2022 09:47:57 GMT
cache-control: max-age=3600, public
etag: W/"9bc2e72e5b3fafdc09473a6169c803d6"
timing-allow-origin: *
x-request-id: 7ee189bd-4985-46f9-9793-069c8eb7df60
x-runtime: 0.007609
x-cache: Miss from cloudfront
via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: --seiWDMM9G0io2e_rf9bb1WECnbNRB-8oa1ZdVQJxaZNnj1Ug-81A==
X-Firefox-Spdy: h2

www.amberunionapartments.com/

104.18.194.20

200 OK

0 B

URL HTTP/2
www.amberunionapartments.com/
IP
104.18.194.20:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: www.amberunionapartments.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Thu, 15 Sep 2022 09:47:57 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-yardi-svcaddr: rentcaffeine-propertysite-mvc.rentcaffeine.svc.cluster.local:5000
cache-control: no-cache, no-store
pragma: no-cache
set-cookie: .AspNetCore.Antiforgery.-rXc1S2HjzU=CfDJ8CtwjdPBESBMu9DVKc5_ZZ3vTDIQoGgrBoaTplfqbLN9TF2foaSHXflA05rG2e_-pxcymqsqKXVN0x2LYtf0wuw-Q-eK4d2rv9XmnHb-wpnDtU4xLvOZok_x12F8A2qr9Ytsa1zma3Un8nwo-Aer6nM; path=/; samesite=strict; httponly
.AspNetCore.Mvc.CookieTempDataProvider=CfDJ8CtwjdPBESBMu9DVKc5_ZZ3ZnwSsNObcAl8sfheL4XWS85jjjzHGoTso5MoZyDXX51_27AbqYk7vj5uY5rC1vqzgYEVbdGE5UKt3XYAKBOZVauyBj8HdXWZPhKVsKqNwQw; path=/; samesite=lax; httponly
x-server: rentcaffeine-propertysite-mvc-6676f4cf87-sznqp
x-frame-options: SAMEORIGIN
x-upstream: 10.0.122.229:5000
x-proxy: gke-useast4-rentcaffeine-prod-a-nginx-77c86cb558-pswdg
x-powered-by: Yardi
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74b071a00901b515-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

cdngeneralmvc.rentcafe.com/css/scss/98251/daze/daze.153272.133076894810000000.css

104.18.194.20

200 OK

0 B

URL HTTP/2
cdngeneralmvc.rentcafe.com/css/scss/98251/daze/daze.153272.133076894810000000.css
IP
104.18.194.20:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css/scss/98251/daze/daze.153272.133076894810000000.css HTTP/1.1
Host: cdngeneralmvc.rentcafe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.amberunionapartments.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 15 Sep 2022 09:47:58 GMT
content-type: text/css
vary: Accept-Encoding
x-yardi-svcaddr: rentcaffeine-propertysite-mvc.rentcaffeine.svc.cluster.local:5000
cache-control: max-age=31536000, public
last-modified: Thursday, 15 September 2022
access-control-allow-origin: *
x-server: rentcaffeine-propertysite-mvc-78f4c5c7f7-5mn57
expires: Fri, 15 Sep 2023 09:47:58 GMT
x-proxy: gke-uswest2-rentcaffeine-prod-d-nginx-c6fbff568-pzsh2
content-encoding: gzip
cf-cache-status: MISS
server: cloudflare
cf-ray: 74b071a628a2b50c-OSL
X-Firefox-Spdy: h2

www.amberunionapartments.com/serviceworker.js?version=rentcafe.com/css/scss/98251/daze/daze.153272.133076894810000000&css=https://cdngeneralmvc.rentcafe.com/css/scss/98251/daze/daze.153272.133076894810000000.css&logo=&serviceworker=1

104.18.194.20

200 OK

0 B

URL HTTP/2
www.amberunionapartments.com/serviceworker.js?version=rentcafe.com/css/scss/98251/daze/daze.153272.133076894810000000&css=https://cdngeneralmvc.rentcafe.com/css/scss/98251/daze/daze.153272.133076894810000000.css&logo=&serviceworker=1
IP
104.18.194.20:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /serviceworker.js?version=rentcafe.com/css/scss/98251/daze/daze.153272.133076894810000000&css=https://cdngeneralmvc.rentcafe.com/css/scss/98251/daze/daze.153272.133076894810000000.css&logo=&serviceworker=1 HTTP/1.1
Host: www.amberunionapartments.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: .AspNetCore.Antiforgery.-rXc1S2HjzU=CfDJ8CtwjdPBESBMu9DVKc5_ZZ3vTDIQoGgrBoaTplfqbLN9TF2foaSHXflA05rG2e_-pxcymqsqKXVN0x2LYtf0wuw-Q-eK4d2rv9XmnHb-wpnDtU4xLvOZok_x12F8A2qr9Ytsa1zma3Un8nwo-Aer6nM; .AspNetCore.Mvc.CookieTempDataProvider=CfDJ8CtwjdPBESBMu9DVKc5_ZZ3ZnwSsNObcAl8sfheL4XWS85jjjzHGoTso5MoZyDXX51_27AbqYk7vj5uY5rC1vqzgYEVbdGE5UKt3XYAKBOZVauyBj8HdXWZPhKVsKqNwQw; calltrk_referrer=direct; calltrk_landing=https%3A//www.amberunionapartments.com/
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 15 Sep 2022 09:47:59 GMT
content-type: application/javascript
vary: Accept-Encoding
x-yardi-svcaddr: rentcaffeine-propertysite-mvc.rentcaffeine.svc.cluster.local:5000
last-modified: Thu, 15 Sep 2022 04:20:14 GMT
etag: W/"1d8c8ba73d15db4"
expires: Fri, 15 Sep 2023 09:47:59 GMT
cache-control: max-age=31536000, public
x-proxy: gke-uswest2-rentcaffeine-prod-c-nginx-85648f5b88-jpfnh
content-encoding: gzip
cf-cache-status: MISS
server: cloudflare
cf-ray: 74b071ad5b1db515-OSL
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (36)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations