www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/?entity=1994173
192.185.48.147200 OK 6.5 kB URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/?entity=1994173
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Non-ISO extended-ASCII text, with very long lines (466), with CRLF line terminators
Hash cb043b71e382688ed4f226ae7ce1707d
7142366ac3c91143efaa9bd3ef14dae2e69604a6
3a0cb36a97b82461dc794b65e4d8a8f2469b592155901a01e1c0300447eca64c
Analyzer Verdict Alert openphish Navy Federal Credit Union
fortinet Phishing
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/?entity=1994173 HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:32 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sun, 18 Sep 2022 18:30:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6489
Keep-Alive: timeout=5, max=75
Content-Type: text/html
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9732
Expires: Wed, 30 Nov 2022 00:17:44 GMT
Date: Tue, 29 Nov 2022 21:35:32 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4ed065cb23b5fca1a179dd73b3c5b7b2
4422eb24688f5e056fc1b18b127c7f63b1dbf5e0
b723d770d0dec7441d8505dc5a4e7d34f55c9f564ec52f20d9b70c7c3a0d9d35
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1554
Cache-Control: max-age=134493
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 21:35:32 GMT
Etag: "6385df6f-1d7"
Expires: Thu, 01 Dec 2022 10:57:05 GMT
Last-Modified: Tue, 29 Nov 2022 10:31:11 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11832
Expires: Wed, 30 Nov 2022 00:52:44 GMT
Date: Tue, 29 Nov 2022 21:35:32 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 21:17:55 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1057
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: gYQi+wPGY5NNjrqvY3XL7EyDSrAjcompX7d39EaBGDeT8SslorbAJrkWiEYSGcfAMEbcwYrHF1g=
x-amz-request-id: 5TD9WKX28EJ3S1QV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 20:45:36 GMT
age: 2996
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 21:35:32 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/css.css
192.185.48.147200 OK 865 B URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/css.css
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d02e38268578172d773c65be520c57e7
079966d15fcf3510861e9e55fbab4a43520b3a3b
543c1dbc35f28af1e9fde0e49c80550a8e1adaacf57d8434ec247782ed49d269
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/css.css HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/?entity=1994173
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:32 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sun, 18 Sep 2022 18:30:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 865
Keep-Alive: timeout=5, max=75
Content-Type: text/css
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/nfcu-icons-599150400912c8247ee1872211972b2a.css
192.185.48.147200 OK 1.9 kB URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/nfcu-icons-599150400912c8247ee1872211972b2a.css
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 551b7f0f3c8f8fc30c58b7d6211902c2
bc98f0bcfcb86c66efc4605e3338b143684e01a5
3737d1d94e0fe103df0abb9c28e53cf5d8cd9fc4d28c4c5ab35cca5c0f0dec80
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/nfcu-icons-599150400912c8247ee1872211972b2a.css HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/?entity=1994173
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:32 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 18:30:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1866
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bdf8fcc67ef5a6697d5b9e25088bb9e1
d7390ff89e205cc059d4466a4dcdcb66f5726c0b
99aab94597be8e161f919be17ad0a5b286a3263147c323fbb1ba20354f5b6d12
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1627
Cache-Control: max-age=101467
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 21:35:32 GMT
Etag: "63855e24-1d7"
Expires: Thu, 01 Dec 2022 01:46:39 GMT
Last-Modified: Tue, 29 Nov 2022 01:19:32 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bdf8fcc67ef5a6697d5b9e25088bb9e1
d7390ff89e205cc059d4466a4dcdcb66f5726c0b
99aab94597be8e161f919be17ad0a5b286a3263147c323fbb1ba20354f5b6d12
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1627
Cache-Control: max-age=101467
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 21:35:32 GMT
Etag: "63855e24-1d7"
Expires: Thu, 01 Dec 2022 01:46:39 GMT
Last-Modified: Tue, 29 Nov 2022 01:19:32 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/all-599150400912c8247ee1872211972b2a.css
192.185.48.147200 OK 11 kB URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/all-599150400912c8247ee1872211972b2a.css
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (50194), with CRLF line terminators
Hash 451fe0b791ab243968de31f9b02a4d73
b354fd8c1e9854ee3128eef6a208f9207000bc63
b960b0ad591e14dd5d88706912da23bc4fd044e5d794a93935e870a74da93f15
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/all-599150400912c8247ee1872211972b2a.css HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/?entity=1994173
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:32 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sun, 18 Sep 2022 18:30:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11002
Keep-Alive: timeout=5, max=75
Content-Type: text/css
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/nauth-599150400912c8247ee1872211972b2a.css
192.185.48.147200 OK 1.5 kB URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/nauth-599150400912c8247ee1872211972b2a.css
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 60f4b22e91296cf3751f169af3b55719
19a6f1d77ab79cbc3dcbbed6a364da83f6905d0a
ad04f02376698c398bfd4ab5d98eff3335f3505d526b30cac8415264ad5a6bda
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/nauth-599150400912c8247ee1872211972b2a.css HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/?entity=1994173
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:32 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sun, 18 Sep 2022 18:30:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1457
Keep-Alive: timeout=5, max=75
Content-Type: text/css
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
192.185.48.147200 OK 35 kB URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type assembler source, ASCII text, with very long lines (384), with CRLF line terminators
Hash 3a2ff2183cbc6391b5d2184e5aae683c
3f1d930c177f0f6dff2394490ec4a1e1c5e7ffd3
32272635cbd804a48e2400e5e3467d99428bdb60d4899218bb584ac47496d99b
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/responsivemain-599150400912c8247ee1872211972b2a.css HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/?entity=1994173
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:32 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 18:30:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/common-ec401aee041a200e3dd94ec7982f0f2f.js
192.185.48.147200 OK 2.7 kB URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/common-ec401aee041a200e3dd94ec7982f0f2f.js
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 5098d2c7f79ad8d65eeec3b84b4f1b86
243334a14e555ffeeaa41a378938545b5854b742
853faed9b0a824f7b1091bc653661f32915afcba8c3cf987568f4f5c48d70200
Analyzer Verdict Alert fortinet Phishing
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/common-ec401aee041a200e3dd94ec7982f0f2f.js HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/?entity=1994173
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:33 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 18:30:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2678
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/dropdown-ec401aee041a200e3dd94ec7982f0f2f.js
192.185.48.147200 OK 1.8 kB URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/dropdown-ec401aee041a200e3dd94ec7982f0f2f.js
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 9844fa0b12f1b7719f2765088c8f1016
c7f5a52c7b33c2f98dff9b82b791120f02d01e50
eda28f0f228845a3174a65dade1e191b7050439f4ffd2c4ea8c91b168b5b6103
Analyzer Verdict Alert fortinet Phishing
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/dropdown-ec401aee041a200e3dd94ec7982f0f2f.js HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/?entity=1994173
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:33 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 18:30:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1804
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/s_code.js
192.185.48.147200 OK 22 kB URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/s_code.js
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (954)
Hash 6a4caba352461b811f99e27aa9d3a2b1
392a9096fce322c8400bedf71112f26c1be4deff
499b117e6c3a73d906bc350011aae847c9cc939bb2eac85a52e3eabafe57d270
Analyzer Verdict Alert fortinet Phishing
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/s_code.js HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/?entity=1994173
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:32 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sun, 18 Sep 2022 18:30:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: application/javascript
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 21:08:56 GMT
cache-control: public,max-age=3600
age: 1597
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/keypad-ec401aee041a200e3dd94ec7982f0f2f.js
192.185.48.147200 OK 809 B URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/keypad-ec401aee041a200e3dd94ec7982f0f2f.js
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (1213), with CRLF line terminators
Hash 45aebf5c2b18c946a50740e31f811676
6c01eb6f3b907dce39d258b203b96a42703fed00
1e66b8120ad1a52baa0ae15343ec31775bb0329db16ca70927ba1a58e013e782
Analyzer Verdict Alert fortinet Phishing
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/keypad-ec401aee041a200e3dd94ec7982f0f2f.js HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/?entity=1994173
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:33 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 18:30:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 809
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/bootstrap-select.js
192.185.48.147200 OK 11 kB URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/bootstrap-select.js
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (31148), with CRLF, LF line terminators
Hash 79b07f8c5ed334eebcfc3499758a2e17
d33b2949948f61d1835f40a0733bdee35a1505a3
6a90dee90ed1ebac761aa3162c2fc288111664ff4c5e4b62910d18a9463d7e1e
Analyzer Verdict Alert fortinet Phishing
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/bootstrap-select.js HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/?entity=1994173
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:33 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 18:30:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11396
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/modal-ec401aee041a200e3dd94ec7982f0f2f.js
192.185.48.147200 OK 3.4 kB URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/modal-ec401aee041a200e3dd94ec7982f0f2f.js
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 509395c0534009e4764a584a4531ecf6
740964e4c50e24c932a7430faacd895072f70acb
ed5409d2e4c24fcacfb9885676b2e3c93a5f5d9ad00eb4f03c7c036ab62e74e4
Analyzer Verdict Alert fortinet Phishing
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/modal-ec401aee041a200e3dd94ec7982f0f2f.js HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/?entity=1994173
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:33 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 18:30:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3379
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/jquery-ec401aee041a200e3dd94ec7982f0f2f.js
192.185.48.147200 OK 113 kB URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/jquery-ec401aee041a200e3dd94ec7982f0f2f.js
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Size 113 kB (113263 bytes)
Hash f40ad71649206a9cef86d87a20954ea8
2e6f78ee145bfc695af7efeb801fb5ee6f91b1b5
67e04e515e5f4db5c7cdbd70bc2df4a92058df590b835cb1114d72355045a942
Analyzer Verdict Alert fortinet Phishing
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/jquery-ec401aee041a200e3dd94ec7982f0f2f.js HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/?entity=1994173
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:32 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 18:30:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/cookieGenerator-ec401aee041a200e3dd94ec7982f0f2f.js
192.185.48.147200 OK 947 B URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/cookieGenerator-ec401aee041a200e3dd94ec7982f0f2f.js
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 0fecde5e44685c6c0354fa673ee6d991
ab9e6f9b04cdb2631f28ae7bc0e29f67abfc52bb
f7f56ebc8141501c2061f521f0fc7ce296835e3ffd67d027431aacb4eadcd75f
Analyzer Verdict Alert fortinet Phishing
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/cookieGenerator-ec401aee041a200e3dd94ec7982f0f2f.js HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/?entity=1994173
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:33 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 18:30:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 947
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/api.js
192.185.48.147200 OK 558 B URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/api.js
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (850), with no line terminators
Hash 2a0fbeaff401daf7f8d961960efa46c4
8c4c3f2d10be69f7fb0fcb659e9232a03f7d7955
8d6f9522208a16b57d9930f7b2b0d828c91492d747c2d9cdd8915abe57842e63
Analyzer Verdict Alert fortinet Phishing
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/api.js HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/?entity=1994173
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:33 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 18:30:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 558
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/login-ec401aee041a200e3dd94ec7982f0f2f.js
192.185.48.147200 OK 1.1 kB URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/login-ec401aee041a200e3dd94ec7982f0f2f.js
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash ae9cf250ae0e95a05cf79864a6a9733b
f70b5a2eb90895813fcba6d2b7ca0e572f601663
35b41994ff8bc04c6c752e477eceef7f262688ee832891624f2f4b0714d9a6f8
Analyzer Verdict Alert fortinet Phishing
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/login-ec401aee041a200e3dd94ec7982f0f2f.js HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/?entity=1994173
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:33 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 18:30:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1127
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/le2-mtagconfig.js
192.185.48.147200 OK 6.3 kB URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/le2-mtagconfig.js
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1788)
Hash ff03bc1e2abf22d3fddcddbb66a117f9
92b92a8c319971623952b279773fbb92c6a872ad
1fea4db473f153cd0d025a2a9dd2a675e256c46c4c66faf28aafbeb8eb307279
Analyzer Verdict Alert fortinet Phishing
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/le2-mtagconfig.js HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/?entity=1994173
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:33 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 18:30:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6320
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/tag.js
192.185.48.147200 OK 9.1 kB URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/tag.js
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (21652), with no line terminators
Hash ff5a1baedd30f131b97f3c012245e423
750abb823d81773ea6546d93dff844a1752cfe20
db6299bc5bc23671fc25dd62a5acd79d69a9cbc10d0d6a4052aee8f30b8d6e62
Analyzer Verdict Alert fortinet Phishing
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/tag.js HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/?entity=1994173
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:33 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 18:30:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9066
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.digicert.com/
93.184.220.29200 OK 55 B IP 93.184.220.29:0
File type HTML document, ASCII text
Hash 9f073354411bbaf7a319b1519f10b4b7
571498f38548829bf186f49f5be9d5fa6e689a68
4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4817
Content-Type: text/html
Date: Tue, 29 Nov 2022 21:35:33 GMT
Etag: "638651c5-37"
Last-Modified: Tue, 29 Nov 2022 18:39:01 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 55
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/recaptcha__en.js
192.185.48.147200 OK 171 kB URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/recaptcha__en.js
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (549)
Size 171 kB (171072 bytes)
Hash 4fd1b897f82a482db5a98e9e4b4d343d
460180c539a54f344c165d90edc378d15c346eaa
d4f1558662072a2147cf212f796719a46a79e357a0857d7c8ae8eb321b321469
Analyzer Verdict Alert fortinet Phishing
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/recaptcha__en.js HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/?entity=1994173
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:32 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sun, 18 Sep 2022 18:30:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: application/javascript
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/f67c327263eti209967cda713cd843baa
192.185.48.147200 OK 72 kB URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/f67c327263eti209967cda713cd843baa
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Hash 335f2776eaf4ca7eca9953d2240c3316
5f5702f072d8e721dd3557ccd2a0944b3cc58fa5
ca9ee108c9cd3072864c1fcfe42f8fa40f829a33267388e0adbf41fa8b2da9a5
Analyzer Verdict Alert fortinet Phishing
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/f67c327263eti209967cda713cd843baa HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/?entity=1994173
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:33 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 18:30:25 GMT
Accept-Ranges: bytes
Content-Length: 72012
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/a.js
192.185.48.147200 OK 110 kB URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/a.js
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Size 110 kB (109737 bytes)
Hash ecd77a3452c060ed1d9272f7870df38f
1539a56ae6ced4eea3e9c393bc9f2db079209b97
f305ae4bb0d2115314e85a9bb8bb6ea9f8495704858387ef7a3b0335a071596a
Analyzer Verdict Alert fortinet Phishing
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/a.js HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/?entity=1994173
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:33 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 18:30:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/img_logo-veterans-1d62888b4b662af9142e3c385f423f32.svg
192.185.48.147200 OK 22 kB URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/img_logo-veterans-1d62888b4b662af9142e3c385f423f32.svg
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2618), with CRLF line terminators
Hash e9412a7e111241810e74c5cf267fb64a
cae22fc983a55384e31ad2a4e43f812bc68efbfc
3e700f9ff93a023fcaee00daeb83062c9492803afc78643532d41d369133f991
Analyzer Verdict Alert fortinet Phishing
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/img_logo-veterans-1d62888b4b662af9142e3c385f423f32.svg HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/?entity=1994173
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:33 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 18:30:25 GMT
Accept-Ranges: bytes
Content-Length: 21962
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/svg+xml
push.services.mozilla.com/
35.163.114.208101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.163.114.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: q7BhFbY9YjBZo3bDqssxfQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: gGXAlKDTOmlslQ1L54TzwH7UYuw=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 21:35:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 21:35:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/sourcesanspro/v14/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v14/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 16112, version 1.0\012- data
Hash 899c8f78ce650d4009d42443897aa723
d2e2faa9780b7fca5a5cb20a853dd7df55b3101e
a9950fa5ca9cf47072770900d259bcf6778aa1119652d2e706d5eb92df254199
GET /s/sourcesanspro/v14/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.kirkney-village.co.za
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16112
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 14:39:02 GMT
expires: Sun, 26 Nov 2023 14:39:02 GMT
cache-control: public, max-age=31536000
age: 284191
last-modified: Tue, 15 Sep 2020 18:10:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v14/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v14/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15948, version 1.0\012- data
Hash c85615b296302af51e683eecb5e371d4
ff7c20b0947804c607759aa46eab666d94cf12ea
efb3cdc5e4582fd67dffab6fc6e5062074ce3f8c51747346af944e97749dc309
GET /s/sourcesanspro/v14/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.kirkney-village.co.za
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15948
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 15:43:15 GMT
expires: Wed, 29 Nov 2023 15:43:15 GMT
cache-control: public, max-age=31536000
age: 21138
last-modified: Tue, 15 Sep 2020 18:10:32 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/a_003.htm
192.185.48.147200 OK 108 B URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/a_003.htm
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1a7562ff802f8301970ff574c2e4277f
3532997324bc5f31ad7ad464603226c08ed2eedd
f6a6049d8f3fdd43ab20af67a303f4d00f211e367b5a026384bf0e7283875a0b
Analyzer Verdict Alert fortinet Phishing
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/a_003.htm HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/?entity=1994173
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:33 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 18:30:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 108
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/storage.htm
192.185.48.147200 OK 17 kB URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/storage.htm
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32192), with CRLF line terminators
Hash beb16499bbd73c457678fef1d69445e3
6655c3c37e7fb97177c24f937a2959be323217eb
6d9709a66ea5f4e4cd0b2d670e5efb0d71cbcbe79401ad2688a1b32a6ab49c08
Analyzer Verdict Alert fortinet Phishing
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/storage.htm HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/?entity=1994173
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:33 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 18:30:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16602
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/images/css/bg_globe.png
192.185.48.147404 Not Found 315 B URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/images/css/bg_globe.png
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/images/css/bg_globe.png HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 21:35:33 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/images/css/img-billboard-BG.svg
192.185.48.147404 Not Found 315 B URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/images/css/img-billboard-BG.svg
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert fortinet Phishing
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/images/css/img-billboard-BG.svg HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 21:35:33 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/img-BecomeAMember-1d62888b4b662af9142e3c385f423f32.jpg
192.185.48.147200 OK 186 kB URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/img-BecomeAMember-1d62888b4b662af9142e3c385f423f32.jpg
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1024x500, components 3\012- data
Size 186 kB (185745 bytes)
Hash 71bb90e5a3fb345196f166e4389c4ac1
5687c3c6f0146d9094d49cc6fe4cd5390a170672
ee4321efb356cf875dacf07419eb2649351e5907c159754a94b7b3be02479fe9
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/img-BecomeAMember-1d62888b4b662af9142e3c385f423f32.jpg HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/?entity=1994173
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:33 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 18:30:25 GMT
Accept-Ranges: bytes
Content-Length: 185745
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/jpeg
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/fonts/nfcu-icons.woff
192.185.48.147404 Not Found 315 B URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/fonts/nfcu-icons.woff
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert fortinet Phishing
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/fonts/nfcu-icons.woff HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 21:35:33 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 21:35:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
my.navyfederal.org/NFOAA_Auth/resources/images/Group5158-1d62888b4b662af9142e3c385f423f32.svg
104.88.20.141404 Not Found 1.0 kB URL HTTP/1.1 my.navyfederal.org/NFOAA_Auth/resources/images/Group5158-1d62888b4b662af9142e3c385f423f32.svg
IP 104.88.20.141:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- C source text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 1536cc36842f2165300106001ee4b19a
d3bd2ed7be7778ebb3fef66672f216982e1d2e45
4ece4a1ee577bdbd46f9f55ee93ad77713bdd635c5a547e575f230fca329ae42
GET /NFOAA_Auth/resources/images/Group5158-1d62888b4b662af9142e3c385f423f32.svg HTTP/1.1
Host: my.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
X-Powered-By: Servlet/3.0
X-Frame-Options: DENY
$WSEP:
Last-Modified: Wed, 07 Sep 2022 21:50:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/html
Content-Language: en-US
Content-Length: 1018
Date: Tue, 29 Nov 2022 21:35:33 GMT
Connection: keep-alive
Set-Cookie: navyfed-opentoken=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-extracted=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-deviceprint=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-useractive=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-pingolb=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-obo=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
SMSESSION=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
acctsvcs_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=w; path=/; domain=.navyfederal.org; secure
akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=87~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=0dc16fc84557a8fde7456a09e58754ad; path=/; Secure; SameSite=None; Domain=.navyfederal.org
ak_bmsc=B5234219C44FCE9AA696BC737B3CB87D~000000000000000000000000000000~YAAQPDIQYDFHFHqEAQAAZgxRxRF28gFp9BkSr6IvpbzfO3IE1lctBIXuzP4BXtaRu/MXPyhQvDl3DsROChrdcCXxgsWxPJkBzR51J7JNMPtFMv9dbbEMhpptRr8wDgmvYtSvqorbxpa/V8YF8GBYNyeuwZQMK4Xy7vUPh1/tsL714yyvNNQAWK4tcLuGW3M+jVYUymJ0vhY7pbcTsXDDRG5/ygSAm2V6KysCbyH7EnSyB6GPwIxmyjL7kS4DX4h7xKfoQNnW82EZeGVumtdJ3cpbP5Qx+BvXb6hxZ6qWgxvf8rp1QF0JHVTHxszgWSHK8efksNNTp6qFWmcS7a0OlG36IWmEedXWCZMi8i8Vj2fHpWuwFkvav35SOoCLntpBBi9z2g==; Domain=.navyfederal.org; Path=/; Expires=Tue, 29 Nov 2022 23:35:33 GMT; Max-Age=7200; HttpOnly
Strict-Transport-Security: max-age=31536000
my.navyfederal.org/NFOAA_Auth/resources/images/Group5166-1d62888b4b662af9142e3c385f423f32.svg
104.88.20.141404 Not Found 1.0 kB URL HTTP/1.1 my.navyfederal.org/NFOAA_Auth/resources/images/Group5166-1d62888b4b662af9142e3c385f423f32.svg
IP 104.88.20.141:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- C source text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 1536cc36842f2165300106001ee4b19a
d3bd2ed7be7778ebb3fef66672f216982e1d2e45
4ece4a1ee577bdbd46f9f55ee93ad77713bdd635c5a547e575f230fca329ae42
GET /NFOAA_Auth/resources/images/Group5166-1d62888b4b662af9142e3c385f423f32.svg HTTP/1.1
Host: my.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
X-Powered-By: Servlet/3.0
X-Frame-Options: DENY
$WSEP:
Last-Modified: Wed, 07 Sep 2022 21:50:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/html
Content-Language: en-US
Content-Length: 1018
Date: Tue, 29 Nov 2022 21:35:33 GMT
Connection: keep-alive
Set-Cookie: navyfed-opentoken=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-extracted=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-deviceprint=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-useractive=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-pingolb=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-obo=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
SMSESSION=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
acctsvcs_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=w; path=/; domain=.navyfederal.org; secure
akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=37~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=2a5364695ce9d6e7f4b70f3407c14232; path=/; Secure; SameSite=None; Domain=.navyfederal.org
ak_bmsc=363B9717A63F7172161B847DAEDA06B5~000000000000000000000000000000~YAAQPDIQYDJHFHqEAQAAagxRxRFaDTSr1c6vQDlbt3RfqiWBJIk77tzvr1a/VoaEL1wBMCWLzUPTz06A7esAgyy8SRmc4qdnBFfDu/1MRUsaogi7fhxozyGK8FQe/YNBIOoqyGit4uxS6exKEr5gEj4HuBgRytduR4ckWcIMIQqkUgnNHAvcdFb1CKw1qpfmNTYjyyzGKUkMN1AwbGik7IaRte3yu3oyUumuINvn6XkUWYjOAoDZ4ZMaUUD4MdXRD+Rf0yTNGCTIXuB2BqU8TrKM1y/oM6DCmXUiSDme89fOb8GSxraJk8PQhRmkUN0z4qZRBCW/RRhMXWgUNKGlmMiW3Ghsz+OBNvcrpdwv1iAEAJJCorBfF9YPHgZAwSjo01blyA==; Domain=.navyfederal.org; Path=/; Expires=Tue, 29 Nov 2022 23:35:33 GMT; Max-Age=7200; HttpOnly
Strict-Transport-Security: max-age=31536000
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/images/css/toolTip.svg
192.185.48.147404 Not Found 315 B URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/images/css/toolTip.svg
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert fortinet Phishing
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/images/css/toolTip.svg HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 21:35:33 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
my.navyfederal.org/NFOAA_Auth/resources/images/contact-us-1d62888b4b662af9142e3c385f423f32.svg
104.88.20.141404 Not Found 1.0 kB URL HTTP/1.1 my.navyfederal.org/NFOAA_Auth/resources/images/contact-us-1d62888b4b662af9142e3c385f423f32.svg
IP 104.88.20.141:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- C source text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 1536cc36842f2165300106001ee4b19a
d3bd2ed7be7778ebb3fef66672f216982e1d2e45
4ece4a1ee577bdbd46f9f55ee93ad77713bdd635c5a547e575f230fca329ae42
GET /NFOAA_Auth/resources/images/contact-us-1d62888b4b662af9142e3c385f423f32.svg HTTP/1.1
Host: my.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
X-Powered-By: Servlet/3.0
X-Frame-Options: DENY
$WSEP:
Last-Modified: Wed, 07 Sep 2022 21:50:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/html
Content-Language: en-US
Content-Length: 1018
Date: Tue, 29 Nov 2022 21:35:34 GMT
Connection: keep-alive
Set-Cookie: navyfed-opentoken=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-extracted=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-deviceprint=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-useractive=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-pingolb=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-obo=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
SMSESSION=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
acctsvcs_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=w; path=/; domain=.navyfederal.org; secure
akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=78~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=33841ea726693fe38b327d521c13d3d8; path=/; Secure; SameSite=None; Domain=.navyfederal.org
ak_bmsc=BC06D8D99BF8ACDBBFF5A6D0954241D8~000000000000000000000000000000~YAAQPDIQYDNHFHqEAQAAcgxRxREKjrHCflmdEJpSYGEJShvt+l648Y4643WzmM7Kv85tQ7eaYILTSNzrsBn9xbsb68/RdJvSr+y/mbU2XSkXHxbB9MaU5PfdqwD+Ar5SfQ565cMnmMLldADgV6IjqhSkBuezyQNfovsenA2mE4UTzNSfB/PU0F8y8PZa/d6Z+vqO0lsZO2x4WFOEeqztTS7YvObOwn39VfD5C4LSZnKPbDLlV1IGFTGXOETrvRtRog6xGK3e0EhqG4TwuTx5bwXvq2iSgT2Q1PDKMqTbueT+hREJP3NusUpqr7Q+Nu76l2w6AzJ90XRligzMVKd8GpPgbnmbpJiJb5AvTP16j7Ubd2y1A+T69S3DCuOPhk+q9ZMIVw==; Domain=.navyfederal.org; Path=/; Expires=Tue, 29 Nov 2022 23:35:33 GMT; Max-Age=7199; HttpOnly
Strict-Transport-Security: max-age=31536000
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/a_003.htm
192.185.48.147200 OK 108 B URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/a_003.htm
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1a7562ff802f8301970ff574c2e4277f
3532997324bc5f31ad7ad464603226c08ed2eedd
f6a6049d8f3fdd43ab20af67a303f4d00f211e367b5a026384bf0e7283875a0b
Analyzer Verdict Alert fortinet Phishing
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/a_003.htm HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/?entity=1994173
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:33 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 18:30:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 108
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/html
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/images/css/icons.png
192.185.48.147404 Not Found 315 B URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/images/css/icons.png
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/images/css/icons.png HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 21:35:33 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/a_003.htm
192.185.48.147200 OK 108 B URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/a_003.htm
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1a7562ff802f8301970ff574c2e4277f
3532997324bc5f31ad7ad464603226c08ed2eedd
f6a6049d8f3fdd43ab20af67a303f4d00f211e367b5a026384bf0e7283875a0b
Analyzer Verdict Alert fortinet Phishing
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/a_003.htm HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/?entity=1994173
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:33 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 18:30:25 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 108
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/html
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/fonts/sourcesanspro-semibold-webfont.woff2
192.185.48.147404 Not Found 315 B URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/fonts/sourcesanspro-semibold-webfont.woff2
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert fortinet Phishing
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/fonts/sourcesanspro-semibold-webfont.woff2 HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 21:35:34 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 98c9cebf3edad6222af434f1bf632366
3e2cf4bca7b5c85d46ccd20f067e7ed50ee71dc3
aca22d32c33d849ad84af4b0a6dce68385b5d0fbe7cb53d9693554091def039d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 709
Cache-Control: max-age=109132
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 21:35:34 GMT
Etag: "63857fad-1d7"
Expires: Thu, 01 Dec 2022 03:54:26 GMT
Last-Modified: Tue, 29 Nov 2022 03:42:37 GMT
Server: ECS (amb/6BAE)
X-Cache: HIT
Content-Length: 471
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/fonts/nfcu-icons.ttf
192.185.48.147404 Not Found 315 B URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/fonts/nfcu-icons.ttf
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert fortinet Phishing
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/fonts/nfcu-icons.ttf HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 21:35:34 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash e7de49da8836d1221462d949e6d9c902
f7bfa20592de96814622531d659c742de0c50edf
4e8405233bb5e4b03a04b6045987670a6e6cd651eafbe3af8378811113f68541
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:34 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 04:31:52 GMT
Expires: Tue, 06 Dec 2022 04:31:51 GMT
Etag: "f7bfa20592de96814622531d659c742de0c50edf"
Cache-Control: max-age=542776,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 771e794d5817b4ee-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash e7de49da8836d1221462d949e6d9c902
f7bfa20592de96814622531d659c742de0c50edf
4e8405233bb5e4b03a04b6045987670a6e6cd651eafbe3af8378811113f68541
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:34 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 04:31:52 GMT
Expires: Tue, 06 Dec 2022 04:31:51 GMT
Etag: "f7bfa20592de96814622531d659c742de0c50edf"
Cache-Control: max-age=542776,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 771e794d5c120afe-OSL
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/fonts/sourcesanspro-semibold-webfont.woff
192.185.48.147404 Not Found 315 B URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/fonts/sourcesanspro-semibold-webfont.woff
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert fortinet Phishing
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/fonts/sourcesanspro-semibold-webfont.woff HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 21:35:34 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e66f8cd427a375a57b962be8d5ef060d
2012a16d2490afc367a78696b16af11dbffc1518
8b7094ce438de8bb8dd942263ab753337876e12a12acf53ec60b28d24a5e2d82
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B7094CE438DE8BB8DD942263AB753337876E12A12ACF53EC60B28D24A5E2D82"
Last-Modified: Tue, 29 Nov 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21546
Expires: Wed, 30 Nov 2022 03:34:40 GMT
Date: Tue, 29 Nov 2022 21:35:34 GMT
Connection: keep-alive
www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/fonts/sourcesanspro-semibold-webfont.ttf
192.185.48.147404 Not Found 315 B URL HTTP/1.1 www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/fonts/sourcesanspro-semibold-webfont.ttf
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert fortinet Phishing
GET /wp-include/b17af3bca767db6e7bf66466eb5cb1af/fonts/sourcesanspro-semibold-webfont.ttf HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/wp-include/b17af3bca767db6e7bf66466eb5cb1af/index_files/responsivemain-599150400912c8247ee1872211972b2a.css
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 21:35:34 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.kirkney-village.co.za/static/f67c327263eti209967cda713cd843baa
192.185.48.147302 Found 0 B URL HTTP/2 www.kirkney-village.co.za/static/f67c327263eti209967cda713cd843baa
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
POST /static/f67c327263eti209967cda713cd843baa HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1031
Origin: http://www.kirkney-village.co.za
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
set-cookie: __gads=id%3Dwww.kirkney-village.co.za; expires=Tue, 06-Dec-2022 21:35:34 GMT; Max-Age=604800; path=/
location: https://helpotus.com/?s=www.kirkney-village.co.za
content-length: 0
content-type: text/html; charset=UTF-8
date: Tue, 29 Nov 2022 21:35:34 GMT
server: Apache
X-Firefox-Spdy: h2
www.kirkney-village.co.za/static/f67c327263eti209967cda713cd843baa
192.185.48.147302 Found 0 B URL HTTP/2 www.kirkney-village.co.za/static/f67c327263eti209967cda713cd843baa
IP 192.185.48.147:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
POST /static/f67c327263eti209967cda713cd843baa HTTP/1.1
Host: www.kirkney-village.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1285
Origin: http://www.kirkney-village.co.za
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
set-cookie: __gads=id%3Dwww.kirkney-village.co.za; expires=Tue, 06-Dec-2022 21:35:34 GMT; Max-Age=604800; path=/
location: https://helpotus.com/?s=www.kirkney-village.co.za
content-length: 0
content-type: text/html; charset=UTF-8
date: Tue, 29 Nov 2022 21:35:34 GMT
server: Apache
X-Firefox-Spdy: h2
my.navyfederal.org/NFOAA_Auth/favicon.ico
104.88.20.141200 OK 351 B URL HTTP/1.1 my.navyfederal.org/NFOAA_Auth/favicon.ico
IP 104.88.20.141:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 1ff701ad319400203220d48758838e99
e603d649127b743e4c32988dd40cde0c0924c11b
4bb25e1c20ad9bb64afc21206c14f5c25140a4056b8bddc06ac554559d59c71e
GET /NFOAA_Auth/favicon.ico HTTP/1.1
Host: my.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/
Cookie: akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=78~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=33841ea726693fe38b327d521c13d3d8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
X-Powered-By: Servlet/3.0
X-Frame-Options: DENY
Last-Modified: Wed, 07 Sep 2022 21:50:18 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: image/x-icon
Content-Language: en-US
Content-Length: 351
Cache-Control: max-age=900
Expires: Tue, 29 Nov 2022 21:50:34 GMT
Date: Tue, 29 Nov 2022 21:35:34 GMT
Connection: keep-alive
Set-Cookie: my_dc=w; path=/; domain=.navyfederal.org; secure
Strict-Transport-Security: max-age=31536000
www.gstatic.com/recaptcha/releases/1AZgzF1o3OlP73CVr69UmL65/recaptcha__en.js
142.250.74.35404 Not Found 1.6 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/1AZgzF1o3OlP73CVr69UmL65/recaptcha__en.js
IP 142.250.74.35:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 42ce5054207c737a4539726fff1cea32
338e12cc1019e8e080cdb985f9afc817b0eb76b8
54a34b914df3e1ca89045c816c2080c66586977a941d241209038047f1ffea5c
GET /recaptcha/releases/1AZgzF1o3OlP73CVr69UmL65/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.kirkney-village.co.za
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
date: Tue, 29 Nov 2022 21:35:34 GMT
content-type: text/html; charset=UTF-8
server: sffe
content-length: 1621
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
rnemsg.navyfederal.org/ci/pta/logout
147.154.117.92302 Found 25 B URL HTTP/1.1 rnemsg.navyfederal.org/ci/pta/logout
IP 147.154.117.92:0
ASN #31898 ORACLE-BMC-31898
Hash 3f8372f15e761c5f9e4ed6515f744df3
81a6e71371d2a46f6116e045fce6feb258b2d9f3
61c08f21cca5983f6f115bd91b9cc97bd29ef835d1cabed197d79fa7e1e7bd76
GET /ci/pta/logout HTTP/1.1
Host: rnemsg.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Tue, 29 Nov 2022 21:35:34 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
F5_do_compression: yes
Content-Encoding: gzip
RNT-JN-Ext-Machine: 43.2
Strict-Transport-Security: max-age=31536000
Set-Cookie: cp_session=fUpB9aZH9F3JAj2eQ8zIxaA3ycy_Q5xMRrAX7phrUbDiVS7NrS35vAdY~isWtU7f2d7JDRwscbqZtP_w8c6mmSfP4Ruwts0OLXeFfJ1hJQ4nD5J1Udapx7THw~i_OphXIC8w8b~CVyu12tI08NMVeAxiVG7KsLjv1ukNzFIhTRICKbdbwCauiKk2MQjoE_DEZsgZuBdSsZR~NS5o0TaOqoerdc0rXVt6UskbUCVAUQkXMVG7NOf2psz1m5CL8S_H6cFSvviAvxZ8BZG0DukYTTNEf0NBfInPy_7ZnX7jQX_udq6nCV7Rpv2qBUh1mlMG~KyKZ7ABHcjucDrS1os27Ia9RAWx2ajURbd_c_a1P5D5AhHoKQ0tj6d_56d174TpmdYJTfhKgzgCoqTyD2p0Y2hnkWE7LPCL_0GvuTnLKwaA7r6UXl4wK5JZI5MMUfe5oAfEbviRo80UsmNxfllRSiOAok~j3vSK7Jo4bqh4MhY4SHk1KccIJJLw!!; path=/; httponly; SameSite=None; Secure
cp_session=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
RNT-JN-Ext-UUID: ea5e2d5d-e78f-4c61-966c-053a57ae31b9
RNT-Time: D=177409 t=1669757734273470
Location: https://www.navyfederal.org/images/spacer.gif
RNT-Machine: 0.67
www.navyfederal.org/images/spacer.gif
104.110.18.91301 Moved Permanently 0 B URL HTTP/2 www.navyfederal.org/images/spacer.gif
IP 104.110.18.91:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/spacer.gif HTTP/1.1
Host: www.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.kirkney-village.co.za/
Connection: keep-alive
Cookie: akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=78~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=33841ea726693fe38b327d521c13d3d8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: AkamaiGHost
content-length: 0
location: https://web.navyfederal.org/images/spacer.gif
cache-control: max-age=86400
expires: Wed, 30 Nov 2022 21:35:34 GMT
date: Tue, 29 Nov 2022 21:35:34 GMT
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
web.navyfederal.org/images/spacer.gif
104.110.18.91200 OK 43 B URL HTTP/2 web.navyfederal.org/images/spacer.gif
IP 104.110.18.91:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /images/spacer.gif HTTP/1.1
Host: web.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.kirkney-village.co.za/
Connection: keep-alive
Cookie: akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=78~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=33841ea726693fe38b327d521c13d3d8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Sun, 02 Jun 2013 10:22:19 GMT
etag: "2b-4de29390cacc0"
accept-ranges: bytes
content-length: 43
cache-control: max-age=7776000
expires: Wed, 19 Oct 2022 10:22:27 GMT
content-type: image/gif
date: Tue, 29 Nov 2022 21:35:34 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7296
Expires: Tue, 29 Nov 2022 23:37:10 GMT
Date: Tue, 29 Nov 2022 21:35:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7296
Expires: Tue, 29 Nov 2022 23:37:10 GMT
Date: Tue, 29 Nov 2022 21:35:34 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7390
Expires: Tue, 29 Nov 2022 23:38:44 GMT
Date: Tue, 29 Nov 2022 21:35:34 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 83c1fedec73299637cc7dc47c48af758
2e3f7326aeea6be8a34bf2c39b34862c07bfdc41
1fea143e23bb0156062f4c06569824900a67ed83cb99fd635d4c4ab968dc65e9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4916
x-amzn-requestid: b8c80a6c-e3f1-4f20-beb8-27b0af760692
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYcrELFoAMFaeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d450-155cfb365525173c0ede8adb;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Twtw6dO3pjTB9OLi0HliKKCDgCuHRqgtx4PFTczrZQ9f8JztgXZoSg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 03:18:11 GMT
age: 65843
etag: "2e3f7326aeea6be8a34bf2c39b34862c07bfdc41"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a2a5c8d4113d282600462749315f2c4f
e2b4d2e15bb7c086333c0da438873e4c139ba931
9b5d0e5dd11d4cbf1c78a71730cd63544170c91ab635bf3cf917827ac84874e6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4417
x-amzn-requestid: 01de83c2-51d2-4329-98f6-09a0edf46942
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnGEcRIAMFaXA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852960-34583b6c588a0e937fcfaa46;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wqEe45jzMOryT-E-vThc39-cLiZudKF4gn6cS3LBmeaJ2amJF5GPIA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:46:54 GMT
age: 85720
etag: "e2b4d2e15bb7c086333c0da438873e4c139ba931"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a4058fd62595d15c58b3d3266de9865a
d0dff35eb78f129b5da407043037bcf9c27e55c0
ab996c23d58871a2ad53f0c34688c87f0d7c0eac5d0c1d8265b86951248449fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4871
x-amzn-requestid: e2dfa7b8-ded7-4104-a913-1b84746a3c6f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLDUUEy_oAMFgSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638118e8-0b229e0f60ff019d26800dd9;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 19:35:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qh3WqWdBmMG3fzchn3OvxbEpwm2wl_CXi105CL4uJda47N9ZX3CyLA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 09:01:36 GMT
age: 45238
etag: "d0dff35eb78f129b5da407043037bcf9c27e55c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d574c4db20a68295dbd06cb08f5990b
433061bbb226048765a711deca3026ee3e52372f
8cc1a4d18e242f8bfc8ab94637f635b73554b903462c29b06d0ec67872542afb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9203
x-amzn-requestid: 8cba52d6-3c1c-495c-bb9d-3ba6f0adc7e1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cHcHmGmQoAMF6dQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fa6fd-73abfa592ff223061401af9a;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 17:16:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UmhWm03jrsV8dFagrzIA0E-8eL8dykoO5kw3cYOBd172dCGqNdAX-Q==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 03:49:48 GMT
age: 63946
etag: "433061bbb226048765a711deca3026ee3e52372f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03014221d7f49b50ffc2d1b0a0e75457
772d86ad983042a728ee3490630a9cf1134ad0dd
81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10176
x-amzn-requestid: c2231955-5c78-4073-8399-b8b90f1add78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMo3oHpSoAMF5Qw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bb63-55a1cb004ac73c8b02f2fb8d;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:08:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uGocx-Lv8ieJVvICjnTGQZyzaQzjVdICX2RZaNyBTQvUKeIcNxaCJQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 04:49:50 GMT
age: 60344
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f434933b5bd6377d299ada22d1ae7ef
075531f525e625b117b2497f31139c9824d0e9c5
b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NMMuQ1NNks65LJK_HDAK69MfCJ3pS0Y6VzBs8_5Oku64v4FSWADCdw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 22:01:55 GMT
age: 84819
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash f700a34fbaa5509fc98fa3e192f57174
1c2a4dbc974d066d387f71087f112dabf702be66
2fa1bb4c30ef1a1b899997a8038f2a4a4320117ce3c42e81475d143d5f110250
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:34 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 26 Nov 2022 15:43:25 GMT
Expires: Sat, 03 Dec 2022 15:43:24 GMT
Etag: "1c2a4dbc974d066d387f71087f112dabf702be66"
Cache-Control: max-age=323869,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 771e7950dee2b4ee-OSL
lptag.liveperson.net/tag/tag.js?site=11478817
178.249.97.23200 OK 7.6 kB URL HTTP/2 lptag.liveperson.net/tag/tag.js?site=11478817
IP 178.249.97.23:0
File type ASCII text, with very long lines (21652), with no line terminators
Hash 6b675640425ec8551a433e26a377d954
7234f02cce1ccb2a4facf2b34b9185cfcf27299d
8c9716f14d2e964be7c93d3d8c28819cb35c529fce6206a79061cda509e05bfd
GET /tag/tag.js?site=11478817 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 21:35:34 GMT
content-type: application/javascript
content-length: 7567
last-modified: Thu, 03 Sep 2020 08:27:49 GMT
etag: "5f50a905-1d8f"
content-encoding: gzip
server: ws
strict-transport-security: max-age=300; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
cache-control: public, max-age=630
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash f700a34fbaa5509fc98fa3e192f57174
1c2a4dbc974d066d387f71087f112dabf702be66
2fa1bb4c30ef1a1b899997a8038f2a4a4320117ce3c42e81475d143d5f110250
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:34 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 26 Nov 2022 15:43:25 GMT
Expires: Sat, 03 Dec 2022 15:43:24 GMT
Etag: "1c2a4dbc974d066d387f71087f112dabf702be66"
Cache-Control: max-age=323869,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 771e7950f8cc0afe-OSL
my.navyfederal.org/NFOAA_Auth/resources/images/apple-touch-icon-72x72-precomposed-1d62888b4b662af9142e3c385f423f32.png
104.88.20.141404 Not Found 1.9 kB URL HTTP/1.1 my.navyfederal.org/NFOAA_Auth/resources/images/apple-touch-icon-72x72-precomposed-1d62888b4b662af9142e3c385f423f32.png
IP 104.88.20.141:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- C source text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 726ecf2df6a19b5a3c655e4941eb5135
1fdf86a26d04338d4f5394cc852a5c8387d95048
d3ba0f9d4c73e11ca995ac01df41b72c0ba60290454319cac7232e90c535a98e
GET /NFOAA_Auth/resources/images/apple-touch-icon-72x72-precomposed-1d62888b4b662af9142e3c385f423f32.png HTTP/1.1
Host: my.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/
Cookie: akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=78~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=33841ea726693fe38b327d521c13d3d8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
X-Powered-By: Servlet/3.0
X-Frame-Options: DENY
$WSEP:
Last-Modified: Wed, 07 Sep 2022 21:50:18 GMT
Content-Length: 1941
Content-Type: text/html
Content-Language: en-US
Cache-Control: max-age=900
Expires: Tue, 29 Nov 2022 21:50:34 GMT
Date: Tue, 29 Nov 2022 21:35:34 GMT
Connection: keep-alive
Set-Cookie: navyfed-opentoken=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-extracted=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-deviceprint=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-useractive=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-pingolb=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
navyfed-obo=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
SMSESSION=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
acctsvcs_dc=; domain=.navyfederal.org; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; secure
my_dc=w; path=/; domain=.navyfederal.org; secure
ak_bmsc=6F72FF95F0D97F9F61F5A9B451CCE4CE~000000000000000000000000000000~YAAQPDIQYDRHFHqEAQAAqw9RxRGGbMZ+sCagkzkOj+4FUy+gRBYWpeFSky6Tf0B3lSCDL2U5glKoOZ1ZA6VJqkK/bpmjlT7jQuuvm8yDqM47vKhkVhhPj3TEzY+1gIFk5BD4SRh2Pyw/OlNf7TiGv4Av/mjK4Ei6ei6yNI+hRbRyD8oGeS2CNR27jhTEGtkn4wGWJLHtY9SMjDSx4WeuPObkucf731T4loM7FC50tuB7udJGMWGJ7c6LeO4zc4SEq8j8m4ieIuJarCQ30IIZM+BR3wn6ZMRYwlBMccs/yFfKpe88zteBRUWvIXr4yt/brT56XCf8E1b0VuL8L+c+gC3JNR8iFVU+zpZ8PKT71ubWsPM1MHIAT2Brw7aUIlBH0QyOug==; Domain=.navyfederal.org; Path=/; Expires=Tue, 29 Nov 2022 23:35:34 GMT; Max-Age=7200; HttpOnly
Strict-Transport-Security: max-age=31536000
ocsp.digicert.com/
93.184.220.29200 OK 55 B IP 93.184.220.29:0
File type HTML document, ASCII text
Hash 9f073354411bbaf7a319b1519f10b4b7
571498f38548829bf186f49f5be9d5fa6e689a68
4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1052
Content-Type: text/html
Date: Tue, 29 Nov 2022 21:35:35 GMT
Etag: "63866b9f-37"
Last-Modified: Tue, 29 Nov 2022 20:29:19 GMT
Server: ECS (amb/6BAE)
X-Cache: HIT
Content-Length: 55
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash b64c8a7f1e9d4cb019ee4ea089710921
6e298681df130e8720f09168528040e4165434d6
0d8c8eeb26713f8f158b0602f67a06b7baa452936cf8af5b98ca0f02cd815eec
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 21:35:36 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 28 Nov 2022 23:37:43 GMT
Expires: Mon, 05 Dec 2022 23:37:42 GMT
Etag: "6e298681df130e8720f09168528040e4165434d6"
Cache-Control: max-age=525125,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 771e795d3d78b4ee-OSL
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F306bb762-e2a8-4771-9a39-086c46f94b11.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F306bb762-e2a8-4771-9a39-086c46f94b11.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 415b1b1d5a29fc17b4114bb3df1d1c22
600859401c885cc2cdd1f199cccc198eb41d6a04
abfbf4ecf2423736a29686859f6a8f2b77204b48f3f60d208f6d491e80611e7f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F306bb762-e2a8-4771-9a39-086c46f94b11.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7549
x-amzn-requestid: bb37235a-8c7d-47fe-abb6-6cc633560165
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP-7lHmsoAMF9lA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638311e3-1f2a4abc40119f3e026dc393;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:29:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ds96jURZ0epaXMg2oTUETRQCpHwlVJrl5hTqvpUAWEGVa5rbDve1FA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:46:42 GMT
age: 85739
etag: "600859401c885cc2cdd1f199cccc198eb41d6a04"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
accdn.lpsnmedia.net/api/account/11478817/configuration/setting/accountproperties/?cb=lpCb7826x88096
178.249.97.99200 OK 0 B URL HTTP/2 accdn.lpsnmedia.net/api/account/11478817/configuration/setting/accountproperties/?cb=lpCb7826x88096
IP 178.249.97.99:0
GET /api/account/11478817/configuration/setting/accountproperties/?cb=lpCb7826x88096 HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 21:35:34 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:33|g:304e909a-a241-4d69-b4d7-33f100ad2c19; Max-Age=30; Expires=Tue, 29-Nov-2022 21:36:04 GMT; Path=/
ADRUM_BTa=R:33|g:304e909a-a241-4d69-b4d7-33f100ad2c19|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Tue, 29-Nov-2022 21:36:04 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Tue, 29-Nov-2022 21:36:04 GMT; Path=/; Secure
ADRUM_BT1=R:33|i:2241648; Max-Age=30; Expires=Tue, 29-Nov-2022 21:36:04 GMT; Path=/
ADRUM_BT1=R:33|i:2241648|e:3; Max-Age=30; Expires=Tue, 29-Nov-2022 21:36:04 GMT; Path=/
vary: Accept
expires: Tue, 29 Nov 2022 21:36:34 GMT
x-envoy-upstream-service-time: 1
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
lptag.liveperson.net/lptag/api/account/11478817/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3
178.249.97.23200 OK 0 B URL HTTP/2 lptag.liveperson.net/lptag/api/account/11478817/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3
IP 178.249.97.23:0
GET /lptag/api/account/11478817/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 21:35:34 GMT
content-type: application/x-javascript
cache-control: public, max-age=630
server: ws
strict-transport-security: max-age=300; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: HIT
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
liveengage.navyfederal.org/le_secure_storage/3.11.0.2-release_5036/storage.secure.min.html?loc=http%3A%2F%2Fwww.kirkney-village.co.za&site=11478817&env=prod
178.249.97.98200 OK 0 B URL HTTP/2 liveengage.navyfederal.org/le_secure_storage/3.11.0.2-release_5036/storage.secure.min.html?loc=http%3A%2F%2Fwww.kirkney-village.co.za&site=11478817&env=prod
IP 178.249.97.98:0
GET /le_secure_storage/3.11.0.2-release_5036/storage.secure.min.html?loc=http%3A%2F%2Fwww.kirkney-village.co.za&site=11478817&env=prod HTTP/1.1
Host: liveengage.navyfederal.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/
Cookie: akaalb_my_navyfederal_ALB=~op=my_100_wch:my_prdw|~rv=78~m=my_prdw:0|~os=ddcfe9c18a053d3068d757a21af73146~id=33841ea726693fe38b327d521c13d3d8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 21:35:36 GMT
content-type: text/html
last-modified: Tue, 29 Sep 2020 18:27:10 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Wed, 29 Nov 2023 21:35:36 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: MISS
X-Firefox-Spdy: h2
va.v.liveperson.net/api/js/11478817?&cb=lpCb13410x42091&t=sp&ts=1669757735198&pid=4908552253&tid=5882588808&pt=Navy%20Federal%20Credit%20Union%20-%20Our%20Members%20are%20the%20Mission%EF%BF%BD&u=http%3A%2F%2Fwww.kirkney-village.co.za%2Fwp-include%2Fb17af3bca767db6e7bf66466eb5cb1af%2F%3Fentity%3D1994173&df=0&os=0&identities=%5B%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%7D%5D
208.89.12.87200 OK 0 B URL HTTP/2 va.v.liveperson.net/api/js/11478817?&cb=lpCb13410x42091&t=sp&ts=1669757735198&pid=4908552253&tid=5882588808&pt=Navy%20Federal%20Credit%20Union%20-%20Our%20Members%20are%20the%20Mission%EF%BF%BD&u=http%3A%2F%2Fwww.kirkney-village.co.za%2Fwp-include%2Fb17af3bca767db6e7bf66466eb5cb1af%2F%3Fentity%3D1994173&df=0&os=0&identities=%5B%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%7D%5D
IP 208.89.12.87:0
GET /api/js/11478817?&cb=lpCb13410x42091&t=sp&ts=1669757735198&pid=4908552253&tid=5882588808&pt=Navy%20Federal%20Credit%20Union%20-%20Our%20Members%20are%20the%20Mission%EF%BF%BD&u=http%3A%2F%2Fwww.kirkney-village.co.za%2Fwp-include%2Fb17af3bca767db6e7bf66466eb5cb1af%2F%3Fentity%3D1994173&df=0&os=0&identities=%5B%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%7D%5D HTTP/1.1
Host: va.v.liveperson.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 21:35:36 GMT
content-type: application/javascript
set-cookie: LPVisitorID=I3OWFlNTg5NDAyZTMzNjZi; Expires=Wed, 29-Nov-2023 21:35:36 GMT; Path=/; HttpOnly
LPSessionID=kD5AuBFvQmq3-CifH7rZPw; Path=/api/js/11478817; HttpOnly
cache-control: no-store
server: ws
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
accdn.lpsnmedia.net/api/account/11478817/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB
178.249.97.99200 OK 0 B URL HTTP/2 accdn.lpsnmedia.net/api/account/11478817/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB
IP 178.249.97.99:0
GET /api/account/11478817/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kirkney-village.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 29 Nov 2022 21:35:34 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:33|g:91ad707d-1064-471e-a875-c61408e85012; Max-Age=30; Expires=Tue, 29-Nov-2022 21:36:04 GMT; Path=/
ADRUM_BTa=R:33|g:91ad707d-1064-471e-a875-c61408e85012|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Tue, 29-Nov-2022 21:36:04 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Tue, 29-Nov-2022 21:36:04 GMT; Path=/; Secure
ADRUM_BT1=R:33|i:2241648; Max-Age=30; Expires=Tue, 29-Nov-2022 21:36:04 GMT; Path=/
ADRUM_BT1=R:33|i:2241648|e:3; Max-Age=30; Expires=Tue, 29-Nov-2022 21:36:04 GMT; Path=/
vary: Accept
expires: Tue, 29 Nov 2022 21:36:34 GMT
x-envoy-upstream-service-time: 1
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2