r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7af19a5145a4ee99bdf18831bad04bfd
7bdd2a4785b999ef54a2644211d2b2b7190fb8e1
3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0"
Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12126
Expires: Fri, 31 Mar 2023 05:01:47 GMT
Date: Fri, 31 Mar 2023 01:39:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cca063332ba9a89eadd62a8dd7f81a9b
d473b2a7a32c964599ff3bac8f98fa578f03d1d1
02fb74c7c695ad99f7f2fd7c02ae2b88e2da1c5db339f883333d9090291931dc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02FB74C7C695AD99F7F2FD7C02AE2B88E2DA1C5DB339F883333D9090291931DC"
Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14174
Expires: Fri, 31 Mar 2023 05:35:55 GMT
Date: Fri, 31 Mar 2023 01:39:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 76218c893040d958ae1c4231cdd2133c
6a7b336dee91d4aec26ace0a5883ecdfac52e68f
d35492b04d16ed00e9e195e7c84c99aa6a2b8a93abeb656baae0918986f0a7e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D35492B04D16ED00E9E195E7C84C99AA6A2B8A93ABEB656BAAE0918986F0A7E4"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12521
Expires: Fri, 31 Mar 2023 05:08:22 GMT
Date: Fri, 31 Mar 2023 01:39:41 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4ad6984a756720fbfff47b37a75513a2
355e35258114452af8b9638985ed9d8ef3bf0aca
43181fccb10652c68cae86e5e32b4e8f426fb5ad49d8125cb99e072cff573cf5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 31 Mar 2023 01:16:08 GMT
content-type: application/json
age: 1413
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: WDs8RV07kpOu13Wim2upe7as41AVoyAH1jRP/ANbBTY03xhcHzGu/DFS6rhrtzvxVhbYN7yiNHQ=
x-amz-request-id: B9ER9EZRV47FRYZQ
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 31 Mar 2023 01:33:54 GMT
age: 347
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 01:39:41 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
dennymoers.com/usaa/login/page/url/
204.93.183.35200 OK 16 kB URL HTTP/1.1 dennymoers.com/usaa/login/page/url/
IP 204.93.183.35:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (916), with CRLF line terminators
Hash b7e524eb3c18248e4d9dd59b81477ca1
671913fbd3daa3c47c14206ee5c5e05212bf30a9
18276be1068be4f6874bf8ebe0fab7e38d6196c6d63d6cb04b1e8fdee717cecc
Analyzer Verdict Alert openphish United Services Automobile Association
fortinet Phishing
GET /usaa/login/page/url/ HTTP/1.1
Host: dennymoers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 01:39:41 GMT
Server: Apache
Last-Modified: Fri, 12 Feb 2021 23:21:38 GMT
Accept-Ranges: bytes
Content-Length: 15658
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Pragma, Backoff, Expires, Last-Modified, Content-Type, Alert, Retry-After, Cache-Control, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 31 Mar 2023 01:17:26 GMT
age: 1336
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 934435daf7494aa2525d0556a06916f8
cf46914dedf6c86f7f3cd60acd61e775795c5586
76bab0b78c5a798682460a1cb164c48d67154ed99bb6cee630dd793b31c0501e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2609
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 01:39:42 GMT
Last-Modified: Fri, 31 Mar 2023 00:56:13 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 934435daf7494aa2525d0556a06916f8
cf46914dedf6c86f7f3cd60acd61e775795c5586
76bab0b78c5a798682460a1cb164c48d67154ed99bb6cee630dd793b31c0501e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2066
Cache-Control: max-age=170053
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 01:39:42 GMT
Etag: "64262711-1d7"
Expires: Sun, 02 Apr 2023 00:53:55 GMT
Last-Modified: Fri, 31 Mar 2023 00:19:29 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 934435daf7494aa2525d0556a06916f8
cf46914dedf6c86f7f3cd60acd61e775795c5586
76bab0b78c5a798682460a1cb164c48d67154ed99bb6cee630dd793b31c0501e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2609
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 01:39:42 GMT
Last-Modified: Fri, 31 Mar 2023 00:56:13 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 471
dennymoers.com/usaa/login/page/url/css/socialMediaBar_alt.css
204.93.183.35200 OK 11 kB URL HTTP/1.1 dennymoers.com/usaa/login/page/url/css/socialMediaBar_alt.css
IP 204.93.183.35:0
File type ASCII text, with very long lines (11101), with no line terminators
Hash d30bb88c31e9db71cc99b74decbe2e21
fdf023111ef0b58ca81fdcab9a0570910f6f7db6
65708352cb57de1def639834f293cd6df58c703e9d6a530c84b420825fa2d76d
GET /usaa/login/page/url/css/socialMediaBar_alt.css HTTP/1.1
Host: dennymoers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dennymoers.com/usaa/login/page/url/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 01:39:42 GMT
Server: Apache
Last-Modified: Fri, 12 Feb 2021 23:14:48 GMT
Accept-Ranges: bytes
Content-Length: 11101
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
dennymoers.com/usaa/login/page/url/css/mkt_logOffJumpPageExeptions_2018.css
204.93.183.35200 OK 2.6 kB URL HTTP/1.1 dennymoers.com/usaa/login/page/url/css/mkt_logOffJumpPageExeptions_2018.css
IP 204.93.183.35:0
File type ASCII text, with very long lines (2646), with no line terminators
Hash 49178702c72c9a37d1b7d7ccefa83476
94b8457c649280652f041ff5880c1b8bb51211b2
5d502b20e9613ccb9418cbdf5f6060f5a31c197b58e53fe1117fbd91588853c8
GET /usaa/login/page/url/css/mkt_logOffJumpPageExeptions_2018.css HTTP/1.1
Host: dennymoers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dennymoers.com/usaa/login/page/url/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 01:39:42 GMT
Server: Apache
Last-Modified: Fri, 12 Feb 2021 23:16:12 GMT
Accept-Ranges: bytes
Content-Length: 2646
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b3df8c73360b4239af64e11f9d2388be
dc5463ff26615b40e4eab388052790d6c30ea5e6
877b23d16abf2e0e9f649f53747e82af0b75e8595abd71728254e612847cfdb6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "877B23D16ABF2E0E9F649F53747E82AF0B75E8595ABD71728254E612847CFDB6"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14604
Expires: Fri, 31 Mar 2023 05:43:06 GMT
Date: Fri, 31 Mar 2023 01:39:42 GMT
Connection: keep-alive
content.usaa.com/mcontent/static_assets/Media/ehl-blk.svg?cacheid=258625760_p
104.110.3.205200 OK 3.8 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Media/ehl-blk.svg?cacheid=258625760_p
IP 104.110.3.205:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (3771), with no line terminators
Hash b59e55d9d830ec44fcf62cc98aaeff08
b7aa9504db4970ba5724ef2916f2a2ec6da09109
61e8a805163515bc3f9e456d6a414bf6b45e8ff4d9df9a90ef3ec24cf4b10ef2
GET /mcontent/static_assets/Media/ehl-blk.svg?cacheid=258625760_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dennymoers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 02 Feb 2018 20:04:54 GMT
etag: "ebb-5644039cd6580"
accept-ranges: bytes
content-length: 3771
content-type: image/svg+xml
cache-control: max-age=601462
date: Fri, 31 Mar 2023 01:39:42 GMT
set-cookie: akmachineid=akmaChx2IDyoL4hWz5mVU5NbNB43Pw6Ao4odRYNWDjmIRs/YG/cojU3Mqe1aeAjcgVTIsmI+WY8egY7MKDV9VLP2Tg==; expires=Mon, 28-Mar-2033 01:39:42 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaa0N3wX8IvoyjLY+X+Z3mxVPD4JWIr7fCH6Jnyri2uKzvVbYO7EPUvSRT7gNdKiVe2gdfp7YtnxnSgeYJmSZu7BQ==; expires=Mon, 28-Mar-2033 01:39:42 GMT; Secure; Path=/; domain=.usaa.com
x-ref-id: 0.e74d2417.1680226782.6ceca69
strict-transport-security: max-age=31536000
server: USAA-Service
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Media/usaa-sprite-globalNav_v2.png?cacheid=2167270257_p
104.110.3.205200 OK 58 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Media/usaa-sprite-globalNav_v2.png?cacheid=2167270257_p
IP 104.110.3.205:0
File type PNG image data, 962 x 270, 8-bit/color RGBA, non-interlaced\012- data
Hash 9617699ab943557ecbe3b8eae10ffe09
461f5561a94f24cdd1ac6d400bf931c5259949f9
522a5fe0b1921acbaa0925b2a50fa141b0719797d5c552ffc150415c7c44d23b
GET /mcontent/static_assets/Media/usaa-sprite-globalNav_v2.png?cacheid=2167270257_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dennymoers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 13 Feb 2015 21:43:34 GMT
etag: "e14a-50eff20d78d80"
accept-ranges: bytes
content-length: 57674
content-type: image/png
cache-control: max-age=520696
date: Fri, 31 Mar 2023 01:39:42 GMT
set-cookie: akmachineid=akma9NG9SmbPkloWzWd6l9+HeFRjNkWWDaNpXJs/rHCBEy6PjTRnDUOh/VKfBp4ZzJxldwGMM6MWfEHlMRbSF6vlYw==; expires=Mon, 28-Mar-2033 01:39:42 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaaRVwUVkXCV+YzXnH/WICpGXm2MXrZCy/TI3O3L7iC8Mh5a1PXyzbcwYgaVcoUSv6beL2uF6yRJbUoRmOeVHDvIQ==; expires=Mon, 28-Mar-2033 01:39:42 GMT; Secure; Path=/; domain=.usaa.com
x-ref-id: 0.e74d2417.1680226782.6ceca66
strict-transport-security: max-age=31536000
server: USAA-Service
X-Firefox-Spdy: h2
dennymoers.com/usaa/login/page/url/css/aggregator.css
204.93.183.35200 OK 192 kB URL HTTP/1.1 dennymoers.com/usaa/login/page/url/css/aggregator.css
IP 204.93.183.35:0
File type ASCII text, with very long lines (62562)
Size 192 kB (192020 bytes)
Hash 8d20c3d3817b4d81c57355987fe73e78
b5a9c894685d0f5fbbc3636d836ed80113a45266
a5ed6b8adfddcafd326eae9ec6440df282d705216345c4512f82d0502e522f3d
GET /usaa/login/page/url/css/aggregator.css HTTP/1.1
Host: dennymoers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dennymoers.com/usaa/login/page/url/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 01:39:42 GMT
Server: Apache
Last-Modified: Fri, 12 Feb 2021 23:13:20 GMT
Accept-Ranges: bytes
Content-Length: 192020
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
content.usaa.com/mcontent/static_assets/Media/background_general_fb.png?cacheid=2934981489_p
104.110.3.205200 OK 2.8 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Media/background_general_fb.png?cacheid=2934981489_p
IP 104.110.3.205:0
File type PNG image data, 1 x 700, 8-bit/color RGB, non-interlaced\012- data
Hash 9276c35dc16aecb16790d9c2a262ef70
072b3f31ddd9e514151c83e913d9a59d30ab7f1e
e2e04a8e937f5b74a4c50cb7592a8e0bba54b40818d44e43ffd5c40c6b4fe72a
GET /mcontent/static_assets/Media/background_general_fb.png?cacheid=2934981489_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dennymoers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 16 Sep 2013 11:24:14 GMT
etag: "b13-4e67e71a8d380"
accept-ranges: bytes
content-length: 2835
content-type: image/png
cache-control: max-age=546298
date: Fri, 31 Mar 2023 01:39:42 GMT
set-cookie: akmachineid=akmasZlhYGCNFc6Vdbbwj0QQqDEV5G3HU58NpDIQrsrGObGb+v95GRMCArbylgrZzxY7LJnaIm+W/mxKd8wDV3drow==; expires=Mon, 28-Mar-2033 01:39:42 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaamSP6sxkeQHvX5O+0DYiDf8X/3ZM/jSqg1ZBFmedAzkFEMFw8dWDffqC4jZA25+OotbH1n25Pj1yFoPbUM5nm9g==; expires=Mon, 28-Mar-2033 01:39:42 GMT; Secure; Path=/; domain=.usaa.com
x-ref-id: 0.e74d2417.1680226782.6ceca73
strict-transport-security: max-age=31536000
server: USAA-Service
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Fonts/CC8B46FD41C3A5502.woff2?cacheid=2159110100_p
104.110.3.205200 OK 22 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Fonts/CC8B46FD41C3A5502.woff2?cacheid=2159110100_p
IP 104.110.3.205:0
File type Web Open Font Format (Version 2), TrueType, length 21788, version 1.19726\012- data
Hash 99dfcf935e69f0fd3bf10a8f9920d71f
0329a65bbf246a88dd421520a3b43676d8cd1b53
6920b95f2b38b405f9932005eb14a44556c32fec22efb5d7a58e22f959a13282
GET /mcontent/static_assets/Fonts/CC8B46FD41C3A5502.woff2?cacheid=2159110100_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dennymoers.com
Connection: keep-alive
Referer: https://dennymoers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:34 GMT
etag: "551c-55f1360a50c80"
accept-ranges: bytes
content-length: 21788
content-type: font/woff2
cache-control: max-age=551738
date: Fri, 31 Mar 2023 01:39:42 GMT
set-cookie: akmachineid=akmakFXRqPwty5IBcn2usqx/LQLfvpSlLqDSITPOQOgkvK4yAM26XcS8Bi3lBJML8q78UhR3QeP5R3By0k9nqp+sjw==; expires=Mon, 28-Mar-2033 01:39:42 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaaK5S/NmJ0n0yaCRAPUk1/MaPTxHrL/eqovDMhwEioqztMD5uRs+Vrn5nIht8xUCmj1Vx45OquDzwQ39lzeBB0Pg==; expires=Mon, 28-Mar-2033 01:39:42 GMT; Secure; Path=/; domain=.usaa.com
x-ref-id: 0.e74d2417.1680226782.6ceca74
strict-transport-security: max-age=31536000
server: USAA-Service
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Fonts/9ECBC8FFB535D0532.woff2?cacheid=579254377_p
104.110.3.205200 OK 22 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Fonts/9ECBC8FFB535D0532.woff2?cacheid=579254377_p
IP 104.110.3.205:0
File type Web Open Font Format (Version 2), TrueType, length 22088, version 1.19726\012- data
Hash 3978a25659ccf40e136fefc4a3f1d4af
6e8f8d356dd36e89fe2059b4bff6e58869333f68
947dad01228bb6787ad0218540575dfafe48c76c0623fcb492b6d0b0cfc62e0b
GET /mcontent/static_assets/Fonts/9ECBC8FFB535D0532.woff2?cacheid=579254377_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dennymoers.com
Connection: keep-alive
Referer: https://dennymoers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:20 GMT
etag: "5648-55f135fcf6d00"
accept-ranges: bytes
content-length: 22088
content-type: font/woff2
cache-control: max-age=550125
date: Fri, 31 Mar 2023 01:39:42 GMT
set-cookie: akmachineid=akmaWq7OhD2cTZW9kK+MQBqkqmeBz97Ev5svpJZcw4vuJZfa6OTa1/8R/VAlrTKAS0Av77dm2PcW9RoyT9z9q7cPaw==; expires=Mon, 28-Mar-2033 01:39:42 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaaHMWDDOG/NLzoeNdx2phaHNW4guP9wSsmsKRTeiDzZJcdgDFT/IqJ8roy6SmHy6QvhwnwZgZajhRx5uFyPngZ4w==; expires=Mon, 28-Mar-2033 01:39:42 GMT; Secure; Path=/; domain=.usaa.com
x-ref-id: 0.e74d2417.1680226782.6ceca75
strict-transport-security: max-age=31536000
server: USAA-Service
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Fonts/9ECBC8FFB535D0532.woff?cacheid=2704893946_p
104.110.3.205200 OK 28 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Fonts/9ECBC8FFB535D0532.woff?cacheid=2704893946_p
IP 104.110.3.205:0
File type Web Open Font Format, TrueType, length 28201, version 1.0\012- data
Hash 48a2c0645c1a1b0af7f2f961b448dcc9
e3e70317a9d5a996a05e08ffb0c92bb12600c9b3
9bdae78a8c509f414cffdb7fee422988979841a09925b891b95a10d9088bd75f
GET /mcontent/static_assets/Fonts/9ECBC8FFB535D0532.woff?cacheid=2704893946_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dennymoers.com
Connection: keep-alive
Referer: https://dennymoers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:19 GMT
etag: "6e29-55f135fc02ac0"
content-type: text/plain
vary: Accept-Encoding
cache-control: max-age=474980
date: Fri, 31 Mar 2023 01:39:42 GMT
content-length: 28201
set-cookie: akmachineid=akmaPB0JoggGSY3t6DEoRlgf5HiUiAaS3rA6Q06E5ZUPrX0qscZYVPrbKjKknPsfgzW2wyG+qzbD7OtCz/u3nErS0w==; expires=Mon, 28-Mar-2033 01:39:42 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaae0XszVYSCOjBR7t4e7tgmDeHV6Bt9nXpxHjLTIPDEppD9WLwU/JtkUpgyYJSC2NVgVD2b5M0LOuhPpOZO2jYKw==; expires=Mon, 28-Mar-2033 01:39:42 GMT; Secure; Path=/; domain=.usaa.com
x-ref-id: 0.e74d2417.1680226782.6ceca77
strict-transport-security: max-age=31536000
server: USAA-Service
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Media/SocMedIcon_facebook_v2.png?cacheid=2110766211_p
104.110.3.205200 OK 1.3 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Media/SocMedIcon_facebook_v2.png?cacheid=2110766211_p
IP 104.110.3.205:0
File type PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash b92edde73a19bf66494978bec90968ff
3c783d2217ce302a5d916b24360743a6a50e4ec7
e9a681648676dcb7d958f77bed911c7a8a30dabe8ef0265b5ee894205c8aef60
GET /mcontent/static_assets/Media/SocMedIcon_facebook_v2.png?cacheid=2110766211_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dennymoers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 23 Jan 2014 15:26:32 GMT
etag: "518-4f0a4ddb87a00"
accept-ranges: bytes
content-length: 1304
content-type: image/png
cache-control: max-age=563125
date: Fri, 31 Mar 2023 01:39:42 GMT
set-cookie: akmachineid=akmanOGWXYoKdF/SbT7kGzy247TGjH9pIvqdlMqAXo7erKcHSOXucRYe4F8mfB8I1OY/9KPElyEkVdbC7/hYGQS7kA==; expires=Mon, 28-Mar-2033 01:39:42 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaaoMdx+NOnoXTqsf1xPoU/qUC4C9kzfeR96+YehrOAHlNKV/ztFPNPJtu9B8rAdtuPE1bbLx9Q5RPV0sUASwXo0w==; expires=Mon, 28-Mar-2033 01:39:42 GMT; Secure; Path=/; domain=.usaa.com
x-ref-id: 0.e74d2417.1680226782.6ceca67
strict-transport-security: max-age=31536000
server: USAA-Service
X-Firefox-Spdy: h2
dennymoers.com/usaa/login/page/url/images/enterprise_nav_globalnav_usaalogo.svg?cacheid=4189973775_p
204.93.183.35200 OK 11 kB URL HTTP/1.1 dennymoers.com/usaa/login/page/url/images/enterprise_nav_globalnav_usaalogo.svg?cacheid=4189973775_p
IP 204.93.183.35:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text
Hash 6fd96a29c53b5ce705a27b59aea154e5
0d1e25a57f20865e9c338c7aed7e36df1ff08bc3
d1886043ac668fcd2ccb7019ba9b35ef16f7d0c3db9d9dedf3862b036a4ae2d3
Analyzer Verdict Alert fortinet Phishing
GET /usaa/login/page/url/images/enterprise_nav_globalnav_usaalogo.svg?cacheid=4189973775_p HTTP/1.1
Host: dennymoers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dennymoers.com/usaa/login/page/url/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 01:39:42 GMT
Server: Apache
Last-Modified: Fri, 12 Feb 2021 23:18:12 GMT
Accept-Ranges: bytes
Content-Length: 10902
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml
content.usaa.com/mcontent/static_assets/Media/SocMedIcon_youtube_v2.png?cacheid=2107969893_p
104.110.3.205200 OK 1.4 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Media/SocMedIcon_youtube_v2.png?cacheid=2107969893_p
IP 104.110.3.205:0
File type PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash b17aee805c95fc4762e350c8875f1182
f33292c1ae2e547174498216f82bee07f0c6772e
d317c2e6324cdd35249a3d5b6370b68d5b018fdddecc1dec0b9660f2affff0bd
GET /mcontent/static_assets/Media/SocMedIcon_youtube_v2.png?cacheid=2107969893_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dennymoers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 23 Jan 2014 15:26:26 GMT
etag: "59a-4f0a4dd5cec80"
accept-ranges: bytes
content-length: 1434
content-type: image/png
cache-control: max-age=522665
date: Fri, 31 Mar 2023 01:39:42 GMT
set-cookie: akmachineid=akma0Xw4gHzpSprP4wYmgFac4AgHp9/LVCibDMLeY+2forMrCHYpLpc4Prk4B/c8KdQg7jK28MLAusP7nH3QMehnfA==; expires=Mon, 28-Mar-2033 01:39:42 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaacypjGC++G3/CreGYUBztdd39xbbSNq3lfd/hDGBw+U1S8ASraeOGky6l5hh5d8AzryK1J4y1QRUDdiUcGXBCtw==; expires=Mon, 28-Mar-2033 01:39:42 GMT; Secure; Path=/; domain=.usaa.com
x-ref-id: 0.e74d2417.1680226782.6ceca64
strict-transport-security: max-age=31536000
server: USAA-Service
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Fonts/CC8B46FD41C3A5502.woff?cacheid=1373003117_p
104.110.3.205200 OK 28 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Fonts/CC8B46FD41C3A5502.woff?cacheid=1373003117_p
IP 104.110.3.205:0
File type Web Open Font Format, TrueType, length 27731, version 1.0\012- data
Hash fc610f6c5d17b03d0613cde4df6e6f11
494713d3d1026ae75c9839c28b94bb379cb09824
d815893ea34e5805c4cfb5e497b666f690fa80a5153bb757437bf6bfd3abb47c
GET /mcontent/static_assets/Fonts/CC8B46FD41C3A5502.woff?cacheid=1373003117_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dennymoers.com
Connection: keep-alive
Referer: https://dennymoers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 28 Nov 2017 23:28:32 GMT
etag: "6c53-55f1360868800"
content-type: text/plain
vary: Accept-Encoding
cache-control: max-age=502280
date: Fri, 31 Mar 2023 01:39:42 GMT
content-length: 27731
set-cookie: akmachineid=akmatzgrcXz9v5jMTzPammkZ5t1xJ7ePbs8P7zCvXybYCLOGPL2dBLoCd8KXGIVHMo/+lISmmfUHh7sMl2V0xL98Eg==; expires=Mon, 28-Mar-2033 01:39:42 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaaZvmyOegNh/82aKXbP5JuVJxB2+4Jt+TsMbBv0YZCTqNHM6izZlUjT8ytybdHRNYr5sX96Lj1syB5Y7NgU29azA==; expires=Mon, 28-Mar-2033 01:39:42 GMT; Secure; Path=/; domain=.usaa.com
x-ref-id: 0.e74d2417.1680226782.6ceca76
strict-transport-security: max-age=31536000
server: USAA-Service
X-Firefox-Spdy: h2
content.usaa.com/mcontent/static_assets/Media/SocMedIcon_more.png?cacheid=1317144102_p
104.110.3.205200 OK 3.8 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Media/SocMedIcon_more.png?cacheid=1317144102_p
IP 104.110.3.205:0
File type PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash f11c723f01e6df49c1df767355e16194
e2a1ab64705be9f3194a4ba1ec5f85c2f69692d5
fda9dc9b1feb432da051add9ca8ccdcdedfe460e5e1be4df5f3d17e0bde69c87
GET /mcontent/static_assets/Media/SocMedIcon_more.png?cacheid=1317144102_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dennymoers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 23 Jan 2014 22:11:23 GMT
etag: "eb5-4f0aa8593b8c0"
accept-ranges: bytes
content-length: 3765
content-type: image/png
cache-control: max-age=563205
date: Fri, 31 Mar 2023 01:39:42 GMT
set-cookie: akmachineid=akmaqMSNcf2AImL1vaZS+ZuGwjDL+uL3VlYlMG8UqIbQqCnZ7K9Btch88NQDqF1qUqmNkbwhrMHxCJ2UK3rnxmwBfw==; expires=Mon, 28-Mar-2033 01:39:42 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaaQ1FYeQaKT8+d9b0TqtXti0RF7LC6GIVVXPJ6z/YDNh18gzGP5Nz8RpONQtyTJK4MGFnCCGMbwDklsjpa03dfVw==; expires=Mon, 28-Mar-2033 01:39:42 GMT; Secure; Path=/; domain=.usaa.com
x-ref-id: 0.e74d2417.1680226782.6ceca68
strict-transport-security: max-age=31536000
server: USAA-Service
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.166.224.175101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.166.224.175:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yfi7biPCsV0C9dt8NoTYWg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: lAjnzMJiJeFKRJZwtdgYDkA5aAc=
content.usaa.com/mcontent/static_assets/Media/SocMedIcon_twitter_v2.png?cacheid=2393434372_p
104.110.3.205200 OK 1.4 kB URL HTTP/2 content.usaa.com/mcontent/static_assets/Media/SocMedIcon_twitter_v2.png?cacheid=2393434372_p
IP 104.110.3.205:0
File type PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash 0e0c7aaf13e0181348f20f30b1712c56
4c7bc4014af6c2eb77caadb649f8c32c5fd54d0d
ad5980cb9d5ad82571e49366d26c086e2c2bbe7efe6feb729c12f9594948ba21
GET /mcontent/static_assets/Media/SocMedIcon_twitter_v2.png?cacheid=2393434372_p HTTP/1.1
Host: content.usaa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dennymoers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 23 Jan 2014 15:26:38 GMT
etag: "587-4f0a4de140780"
accept-ranges: bytes
content-length: 1415
content-type: image/png
cache-control: max-age=555527
date: Fri, 31 Mar 2023 01:39:42 GMT
set-cookie: akmachineid=akmaBCv7Jy3U4OIya/LZ/o6oxw72G9bMEosmtyXran7GGpratZz2OZjDFzHjEcaMqSxjo6WKuXRDH7Pb0THBUfpGsw==; expires=Mon, 28-Mar-2033 01:39:42 GMT; Secure; Path=/; domain=.usaa.com
akusaa=akusaaW6QEl9WpaInEMoCePGAUQZdQ5BXt9QnS6iBR3xuBeAel3FtP2OBWOx7F1Mq1VeZ9iDJb5N5l9Zk0f+3OxqTPvA==; expires=Mon, 28-Mar-2033 01:39:42 GMT; Secure; Path=/; domain=.usaa.com
x-ref-id: 0.e74d2417.1680226782.6ceca65
strict-transport-security: max-age=31536000
server: USAA-Service
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2428
Expires: Fri, 31 Mar 2023 02:20:11 GMT
Date: Fri, 31 Mar 2023 01:39:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2428
Expires: Fri, 31 Mar 2023 02:20:11 GMT
Date: Fri, 31 Mar 2023 01:39:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2428
Expires: Fri, 31 Mar 2023 02:20:11 GMT
Date: Fri, 31 Mar 2023 01:39:43 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d08ce93-4078-4b5f-be2d-c685c8b795ee.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d08ce93-4078-4b5f-be2d-c685c8b795ee.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e7f2b7ece732575bcc991ff6a5c08081
cb558f08cff9010fa146b0982654474e691fa725
5853ed88d731fd298632f35525f867fa4fffda46666a7d50ffafac07c62ad61c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d08ce93-4078-4b5f-be2d-c685c8b795ee.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5414
x-amzn-requestid: 7aaa48bf-3537-4cb7-98ac-da5abc5dc7bf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUnxEpLIAMFcQw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260164-27c9518b4b5bb25f006e4690;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:44 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: JTqaGErADvVNUmkBbrYw-VZmpB1fKNYPTJCLSsB7lF0C8-AN2-tL2g==
via: 1.1 ec27e2bbc77d9805bead471453d2094c.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:59:54 GMT
age: 13189
etag: "cb558f08cff9010fa146b0982654474e691fa725"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F365d7508-1de1-4bec-a51b-175fe20d9a9f.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F365d7508-1de1-4bec-a51b-175fe20d9a9f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5e73d7d060aa16202aa77d67393dd122
3aadec2044b0913fffe88327820ed7c587caaba7
357204ebe10133388d84c696f2c88410122b7e09e912c9273c8d361cc2ed1534
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F365d7508-1de1-4bec-a51b-175fe20d9a9f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14559
x-amzn-requestid: 83ebe919-68cb-4b0c-8454-1eae0b24b6dc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cb5eyE5XoAMFWcA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64216f91-2d34eee2088e57d16cbc3b04;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 10:27:29 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: jtcvlJFUNMmRPZBQHlfzKbQUSMN-CxoKCQHhzAY-ADOx2sKK8w-3mg==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 1570d93226c1bbca2ebaad510cff3e0c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:54:20 GMT
age: 13523
etag: "3aadec2044b0913fffe88327820ed7c587caaba7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F42b70575-9940-4e99-a92e-17d690615685.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F42b70575-9940-4e99-a92e-17d690615685.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1bf337b0dd2219c0785c9ecc7c6e0e94
9b0dc381be9752b9909b7b56d0c3af9eb33ea3c5
de98d51edbdd7227f98b4ff9623a53d76ed29dc09ff5d6be1bbec58e83cba130
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F42b70575-9940-4e99-a92e-17d690615685.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10259
x-amzn-requestid: adaa1761-c327-49ce-8f09-0abdabe9938a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CiBloEBJIAMFnBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6423e2f0-13b35ff4538db3155db5d195;Sampled=0
x-amzn-remapped-date: Wed, 29 Mar 2023 07:04:16 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: cZPMzBRfPcAtnOXrYn6WEmMFHaUORnXTTl_7-bx8rBo6n5omuvN45g==
via: 1.1 8591441a35c0af61913aec9af012bc38.cloudfront.net (CloudFront), 1.1 d16c3f15bd14953a9d4109eaaa991de2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 09:52:48 GMT
age: 56815
etag: "9b0dc381be9752b9909b7b56d0c3af9eb33ea3c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4de055bc-1569-4c9a-9ff5-b5ce7d869905.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4de055bc-1569-4c9a-9ff5-b5ce7d869905.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 41f0baa1423dbd529f6c47bd51fe708f
f09b44f30b63f5e29dd247f592147ffc6b308e72
313b769259453565919ab14410faea927a23ad75636abc57851dfe67d43ea156
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4de055bc-1569-4c9a-9ff5-b5ce7d869905.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4370
x-amzn-requestid: 5791c184-d5eb-4666-bc94-f838cd0183af
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUllHrcIAMFSWA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-15fb3d2f67359d6837df5d0d;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: opMjAWEDBvz7pKcnuQrmD_7njQ0X28fR3Ngnoe7WI96zNNNt9oQL5A==
via: 1.1 99db15345b0e5e7ad9c267ae999b8cf4.cloudfront.net (CloudFront), 1.1 599f04a365a179d553682d476509c388.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:43:37 GMT
age: 14166
etag: "f09b44f30b63f5e29dd247f592147ffc6b308e72"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash da174e6ccc9451c5071ba10eeb97f6f6
c38827a9ac1218768839877263e1f2984fbdc454
76da406c8ae8cd6ca8471928f3aec3876aed2c21bc10edc0fbdaef5c100c1030
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9859
x-amzn-requestid: c00efe5b-7fdb-445a-a924-75ddd461b72b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: COQPtHizoAMF7-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641bfa64-3eb90ae703b78e8a06130540;Sampled=0
x-amzn-remapped-date: Thu, 23 Mar 2023 07:06:12 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: nZfXy-IsoHliuLodEocEZlH-IvmIV9G-noSmSEU1wmuMPfBx3rLJ9w==
via: 1.1 02f1a759e4ec9fab6fc17c080dd851dc.cloudfront.net (CloudFront), 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 00:11:32 GMT
age: 5291
etag: "c38827a9ac1218768839877263e1f2984fbdc454"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe839dbf-d4ce-40ac-8521-465a0b645129.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe839dbf-d4ce-40ac-8521-465a0b645129.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0508099b8600ff33fdf51c431f4ee36f
eb84826750027ea2b3b012c5a7c5a845486cf23a
c16c7fa454753d5cd28374ef8ec6ad4f0d3a332f909904f5575eb39ef6cc7b42
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe839dbf-d4ce-40ac-8521-465a0b645129.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8936
x-amzn-requestid: bfab0377-25ae-4951-bd6a-04be3d0ff3c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cew7NE0gIAMFlQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64229514-4cc6447b59dbb96c3aaa1fc9;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 07:19:48 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: aJTViqmnIjKY8UrB_vYcGBRg0z2sFpCYKYHcANwXR6YnMo3d4ulQwg==
via: 1.1 b6cdb2111444305bd4957a473b711ad6.cloudfront.net (CloudFront), 1.1 ec2a2c75c16156e4d43504606c118b90.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 08:25:01 GMT
age: 62082
etag: "eb84826750027ea2b3b012c5a7c5a845486cf23a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
dennymoers.com/favicon.ico
204.93.183.35302 Found 0 B URL HTTP/1.1 dennymoers.com/favicon.ico
IP 204.93.183.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: dennymoers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dennymoers.com/usaa/login/page/url/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Date: Fri, 31 Mar 2023 01:39:43 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Link: <https://dennymoers.com/index.php/wp-json/>; rel="https://api.w.org/"
X-Redirect-By: WordPress
Location: https://dennymoers.com/wp/wp-includes/images/w-logo-blue-white-bg.png
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
dennymoers.com/wp/wp-includes/images/w-logo-blue-white-bg.png
204.93.183.35200 OK 4.1 kB URL HTTP/1.1 dennymoers.com/wp/wp-includes/images/w-logo-blue-white-bg.png
IP 204.93.183.35:0
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 000bf649cc8f6bf27cfb04d1bcdcd3c7
d73d2f6d74ec6cdcbae07955592962e77d8ae814
6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0
GET /wp/wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: dennymoers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dennymoers.com/usaa/login/page/url/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 01:39:46 GMT
Server: Apache
Last-Modified: Thu, 21 May 2020 19:40:12 GMT
Accept-Ranges: bytes
Content-Length: 4119
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
dennymoers.com/usaa/login/page/url/Media/misc_accent_socMedia.png
204.93.183.35404 Not Found 0 B URL HTTP/1.1 dennymoers.com/usaa/login/page/url/Media/misc_accent_socMedia.png
IP 204.93.183.35:0
GET /usaa/login/page/url/Media/misc_accent_socMedia.png HTTP/1.1
Host: dennymoers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dennymoers.com/usaa/login/page/url/css/socialMediaBar_alt.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 01:39:42 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://dennymoers.com/index.php/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
dennymoers.com/usaa/login/page/url/Media/mkt_login_background.jpg
204.93.183.35404 Not Found 0 B URL HTTP/1.1 dennymoers.com/usaa/login/page/url/Media/mkt_login_background.jpg
IP 204.93.183.35:0
GET /usaa/login/page/url/Media/mkt_login_background.jpg HTTP/1.1
Host: dennymoers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dennymoers.com/usaa/login/page/url/css/mkt_logOffJumpPageExeptions_2018.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 01:39:42 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://dennymoers.com/index.php/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
dennymoers.com/usaa/login/page/url/Media/icon-carrotNext.svg
204.93.183.35404 Not Found 0 B URL HTTP/1.1 dennymoers.com/usaa/login/page/url/Media/icon-carrotNext.svg
IP 204.93.183.35:0
Analyzer Verdict Alert fortinet Phishing
GET /usaa/login/page/url/Media/icon-carrotNext.svg HTTP/1.1
Host: dennymoers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dennymoers.com/usaa/login/page/url/css/mkt_logOffJumpPageExeptions_2018.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 01:39:42 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://dennymoers.com/index.php/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8