Report - www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4

Report Overview

Visited public
2023-12-04 14:02:19
Tags
paypal phishing financial
URL
www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html
Finishing URL
www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html
IP / ASN
54.230.111.3
#16509 AMAZON-02
Title
Send Money, Pay Online or Set Up a Merchant Account - PayPal
Phishing - PayPal

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.paypalobjects.com	1467	2005-05-12	2012-05-30 08:40:21	2023-12-03 22:54:44	10 kB	1.3 MB	192.229.221.25
t.paypal.com	3487	1999-07-15	2012-06-27 15:49:38	2023-12-04 09:28:21	4.0 kB	14 kB	151.101.65.35
www.haroldhazard1-wixsite-com.filesusr.com	unknown	2017-08-28	2022-06-03 15:54:40	2023-10-22 02:15:55	996 B	95 kB	54.230.111.105

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-12-04 14:02:05	medium	54.230.111.105	Client IP	ET PHISHING Possible Paypal Phishing Landing - Title over non SSL

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-12-04	medium	www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html	PayPal Inc.

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (17)

	URL	From	Size	First Seen	Last Seen
	www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html	ScriptElement	246 B	2023-03-07	2025-05-10
Pretty URL www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html IP 54.230.111.105 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 13:15 Last Seen2025-05-10 22:52 Times Seen17 Hash ef3fe88f9fbaa86b7aa9a8ca6f0aa2b0 c7e268f7c0085deb25b4e287da7a91c2fe3201a8 5c7cbabab2343ce1d0921ae384ca85ba10e00b86e8f15e82999d8e8fbf148997 Loading...

	www.paypalobjects.com/digitalassets/c/website/js/react-16_6_3-bundle.js	ScriptElement	112 kB	2023-03-07	2025-05-10
Pretty URL www.paypalobjects.com/digitalassets/c/website/js/react-16_6_3-bundle.js IP 192.229.221.25 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:15 Last Seen2025-05-10 22:52 Times Seen14 Hash fe8147c9ab221bed16ca393f501a7a8b 9c4258034f7f0bb817d3cd0adad8c8597118d412 a6cb296cc17962a45f2e1ec8caa628f675def3f2296af7c66a40ab9bfe17bd3a Loading...

	www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html	ScriptElement	30 kB	2023-04-17	2025-05-10
Pretty URL www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html IP 54.230.111.105 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-17 19:39 Last Seen2025-05-10 17:14 Times Seen10 Hash e881936276dcbe22f83db2de2328a57e 4eb45365ca70752714b1efdbf7f2385354d2f412 0fce881ba43bb8acc30781e04669fe4df4b8633fecf83ede6930562735c47f1f Loading...

	www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html	ScriptElement	5.3 kB	2023-03-07	2025-05-10
Pretty URL www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html IP 54.230.111.105 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 13:15 Last Seen2025-05-10 17:14 Times Seen10 Hash 1c1fc7814744b2cc0de01e695054b9c3 9613ad82153df8c4c342d5d51426d2d8584c8278 645afbcd37d4800b58022c743057bbef7ec985aee28dfc306243011878c9de5b Loading...

	www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html	ScriptElement	990 B	2023-03-07	2025-05-10
Pretty URL www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html IP 54.230.111.105 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 13:15 Last Seen2025-05-10 17:14 Times Seen10 Hash 8b3fecf6d75bc88095abbf3dd847b12a b377def30fdd8baee8b5d47c3341a48f2420d5c2 af8e3ec6f9da12177c8e5dab8df767317982a19807b1b5582a235bb038bde053 Loading...

	www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html	ScriptElement	154 B	2023-03-07	2025-05-10
Pretty URL www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html IP 54.230.111.105 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 13:15 Last Seen2025-05-10 17:14 Times Seen10 Hash 2997c6dfb0ac45d2ab43574aeb09a1f8 84939859c5fe8f35a444e006175bdaaf34609416 e33f87fb68cec8cab65a06db24e98c8129a47bc21fce11e5bf1ff6b4735c969b Loading...

	www.paypalobjects.com/helpcenter/smartchat/sales/v1/open-chat.js	ScriptElement	1.5 kB	2023-03-07	2025-05-10
Pretty URL www.paypalobjects.com/helpcenter/smartchat/sales/v1/open-chat.js IP 192.229.221.25 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:29 Last Seen2025-05-10 22:52 Times Seen410 Hash e08674d31c1b328ae44b0889fcebed71 102373e654b79a57f036650ce156f68fdb702034 15213b958a0af95e33fb82a50fc1a68ef2f171b3762662957e91ef1d834291f8 Loading...

	www.paypalobjects.com/digitalassets/c/website/marketing/global/kui/js/opinionLab-2.1.0.js	ScriptElement	42 kB	2023-03-07	2025-05-10
Pretty URL www.paypalobjects.com/digitalassets/c/website/marketing/global/kui/js/opinionLab-2.1.0.js IP 192.229.221.25 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:15 Last Seen2025-05-10 22:52 Times Seen14 Hash a5194f96c9bb06ebbb5f58c39fffcd1b d8d0145a70cf4ebfb6237dea846dabaa9fa4a94b da3177d9f38349f23abc99dcc0a87a8e1178a1576f0b27192821b20ebecc45e3 Loading...

	www.paypalobjects.com/marketing-resources/js/be/3df262f97bed64f5e52a9d811d3821d0e32e69.js	ScriptElement	1.3 MB	2023-04-17	2025-05-10
Pretty URL www.paypalobjects.com/marketing-resources/js/be/3df262f97bed64f5e52a9d811d3821d0e32e69.js IP 192.229.221.25 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-17 19:39 Last Seen2025-05-10 17:14 Times Seen10 Hash 6bc909626fd0ae2f15edd000f6746ba8 be3df262f97bed64f5e52a9d811d3821d0e32e69 fb8c8032631bd4b46f0182b706be3917e0811c4595b0ea962cb939a10502b449 Loading...

	www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html	ScriptElement	984 B	2023-03-07	2025-05-10
Pretty URL www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html IP 54.230.111.105 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 13:15 Last Seen2025-05-10 17:14 Times Seen10 Hash a6e147703e0bb2d1daf06b40c7d7a5ea 51fedca99d03aa2f8d2372d295b668f126a33481 6c74cce48512016535e43166fa3393c8b17e4dc78ad676154da512a69efdfc22 Loading...

	www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html	ScriptElement	707 B	2023-03-07	2025-05-10
Pretty URL www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html IP 54.230.111.105 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 13:15 Last Seen2025-05-10 17:14 Times Seen10 Hash eb694af5f94f6f051d88ad401a663170 6237bbbc3dad563f878a301085881e13ba0817d0 b2c51f461d5fa96bd57e276061a8755e0793cc73b75a55d962ee93b1bf4b7f9c Loading...

	www.paypalobjects.com/activation/js/marketingIntentsV2.js	ScriptElement	554 B	2023-03-07	2025-05-10
Pretty URL www.paypalobjects.com/activation/js/marketingIntentsV2.js IP 192.229.221.25 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:29 Last Seen2025-05-10 22:52 Times Seen392 Hash c9a42008e37bc4f7287fa34295428946 bf3ffb685f469faef9b4573f8824ddf26fa6afac 4be8b546dbb09a4b486f6efab312ee3e5c94cb12e05dbe389c20d5cf391e3da2 Loading...

	www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html	ScriptElement	317 B	2023-03-07	2025-05-10
Pretty URL www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html IP 54.230.111.105 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 13:15 Last Seen2025-05-10 22:52 Times Seen14 Hash 47bfbb7b4ca1593abf8e92692cbc60bd 89e3cb3a4c259e287613a97bfa6bf555c1bd69bb 451d32c31e18271c959fd5b70ec2a4d39fcffc9f582428a0c3d17abb2fe5988e Loading...

	www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html	ScriptElement	604 B	2023-03-07	2025-05-10
Pretty URL www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html IP 54.230.111.105 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:29 Last Seen2025-05-10 22:52 Times Seen380 Hash d82c941c792ffb2f2c16af62ba08dae0 6c8a1dd0af434e973e53f29f2817d3595d9699aa a5df9b0e04cb2514f83b2c1b0e978e29d7387b92b1252bdd3a371bf3ffa2250d Loading...

	www.paypalobjects.com/tagmgmt/bs-chunk.js	ScriptElement	19 B	2023-03-07	2025-05-10
Pretty URL www.paypalobjects.com/tagmgmt/bs-chunk.js IP 192.229.221.25 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:24 Last Seen2025-05-10 22:52 Times Seen67 Hash dd780b1933198c2c23d61812a42da34d d411fd22e08e2cc1da029bb9759642ef6e84c10d be5c4f71eea822cbdcaefcf92963ab573e903f75a60b8bc0793e4eec935a1187 Loading...

	www.paypalobjects.com/pa/js/min/pa.js	ScriptElement	70 kB	2023-12-02	2023-12-06
Pretty URL www.paypalobjects.com/pa/js/min/pa.js IP 192.229.221.25 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-02 19:17 Last Seen2023-12-06 18:55 Times Seen14 Hash 720122d64b3deed73270adf191024d4e 260984c5b8fea7486796f541180b9b3086371236 13e76ebbf17b1233f788b81592829c6055eed4b9d8f6b399c86367b9cdd58a81 Loading...

	www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html	ScriptElement	231 B	2023-03-07	2025-05-10
Pretty URL www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html IP 54.230.111.105 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:29 Last Seen2025-05-10 22:52 Times Seen377 Hash 718d8fda180ddfe6bdd9feb9e4e346c6 d80261d787cd74a03b314ea64c90194af7a8d30d 94c7ef1ae5529ac395e5ae8432272726d807e31b7ae061b3a079284c3a21646e Loading...

HTTP Transactions (24)

URL IP Response Size

www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html

54.230.111.105

200 OK

94 kB

URL User Request GET HTTP/1.1
www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html
IP
54.230.111.105:80
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (65512)
Size
94 kB (93501 bytes)
Hash
39f5e951394368f9e49c63fbf3166add
849fd0c422fd193793f5c627a671fad3df240999
0f05bf4d86860a0801a14efbcfcdeaca97969830b31377a4818852df470b8c0f

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - PayPal
OpenPhish	phishing	PayPal Inc.

NIDS	Severity	Alert
suricata	medium	ET PHISHING Possible Paypal Phishing Landing - Title over non SSL

HTTP Headers

GET /html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html HTTP/1.1
Host: www.haroldhazard1-wixsite-com.filesusr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Content-Length: 93501
Connection: keep-alive
Server: openresty/1.21.4.1
Date: Sat, 02 Dec 2023 11:22:33 GMT
Expires: Sat, 02 Dec 2023 12:22:33 GMT
Cache-Control: public, max-age=15552000, immutable
Last-Modified: Mon, 14 Sep 2020 20:14:33 GMT
ETag: "39f5e951394368f9e49c63fbf3166add"
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Seen-By: gcp.us-central-1.media-router-f89dc7b48-jtccs
Via: 1.1 google, 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-P1
Alt-Svc: h3=":443"; ma=86400
X-Amz-Cf-Id: hS3ZD88xMHjgRhifw0vthE7-LfBlLVxH4k35y6vTce_Z1UPMy23uxA==
Age: 182367

www.paypalobjects.com/digitalassets/c/paypal-ui/fonts/PayPalSansSmall-Regular.woff2

192.229.221.25

200 OK

18 kB

URL GET HTTP/2
www.paypalobjects.com/digitalassets/c/paypal-ui/fonts/PayPalSansSmall-Regular.woff2
IP
192.229.221.25:443
ASN
#15133 EDGECAST

Requested by
http://www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html
Certificate
IssuerDigiCert Inc
Subjectwww.paypal.com
Fingerprint4B:C0:E1:F0:16:B3:A4:B3:63:08:41:DF:F2:EF:8D:65:54:1D:30:B1
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 31 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), CFF, length 18320, version 1.6553\012- data
Size
18 kB (18320 bytes)
Hash
8a41b4550d23b462af63fc46fabb46a4
50359b7126ed92c33efcbf673c286f105d9ae5e7
af93d1d952b2dc42c029871cbbb92988835b31c86d4f0cb6a9674b1d1714a20f

HTTP Headers

GET /digitalassets/c/paypal-ui/fonts/PayPalSansSmall-Regular.woff2 HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.haroldhazard1-wixsite-com.filesusr.com/
Origin: http://www.haroldhazard1-wixsite-com.filesusr.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=31536000
content-type: application/font-woff2
date: Mon, 04 Dec 2023 14:02:00 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "5a66ae4b-4790"
expires: Mon, 04 Dec 2023 15:02:00 GMT
last-modified: Tue, 23 Jan 2018 03:38:51 GMT
paypal-debug-id: c8458c92a0ba1
server: ECAcc (ska/F737)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000c8458c92a0ba1-f80c71a9164c5b79-01
x-cache: HIT
x-content-type-options: nosniff
content-length: 18320
X-Firefox-Spdy: h2

www.paypalobjects.com/activation/js/marketingIntentsV2.js

192.229.221.25

200 OK

365 B

URL GET HTTP/2
www.paypalobjects.com/activation/js/marketingIntentsV2.js
IP
192.229.221.25:443
ASN
#15133 EDGECAST

Requested by
http://www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html
Certificate
IssuerDigiCert Inc
Subjectwww.paypal.com
Fingerprint4B:C0:E1:F0:16:B3:A4:B3:63:08:41:DF:F2:EF:8D:65:54:1D:30:B1
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 31 Oct 2024 23:59:59 GMT

File type
ASCII text, with very long lines (469)
Size
365 B (365 bytes)
Hash
c9a42008e37bc4f7287fa34295428946
bf3ffb685f469faef9b4573f8824ddf26fa6afac
4be8b546dbb09a4b486f6efab312ee3e5c94cb12e05dbe389c20d5cf391e3da2

HTTP Headers

GET /activation/js/marketingIntentsV2.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.haroldhazard1-wixsite-com.filesusr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Mon, 04 Dec 2023 14:02:00 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "60271561-22a"
expires: Tue, 05 Dec 2023 14:02:00 GMT
last-modified: Fri, 12 Feb 2021 23:55:13 GMT
paypal-debug-id: 91081e2fbcfb2
server: ECAcc (ska/F6F1)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-000000000000000000091081e2fbcfb2-1d1d48bc2c5a823b-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 365
X-Firefox-Spdy: h2

www.paypalobjects.com/marketing/web/us/en/home/covid-icon.png

192.229.221.25

200 OK

2.8 kB

URL GET HTTP/2
www.paypalobjects.com/marketing/web/us/en/home/covid-icon.png
IP
192.229.221.25:443
ASN
#15133 EDGECAST

Requested by
http://www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html
Certificate
IssuerDigiCert Inc
Subjectwww.paypal.com
Fingerprint4B:C0:E1:F0:16:B3:A4:B3:63:08:41:DF:F2:EF:8D:65:54:1D:30:B1
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 31 Oct 2024 23:59:59 GMT

File type
PNG image data, 80 x 84, 8-bit/color RGBA, non-interlaced\012- data
Size
2.8 kB (2783 bytes)
Hash
3e4445303f8dd6fb22deed904c2e8fe2
652d3ad27dcec45263afd141c087fa020a2616aa
0ba65b070bd90dbf9075867afbd9c3f8b591619c2a678f2ea7562a469db82181

HTTP Headers

GET /marketing/web/us/en/home/covid-icon.png HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.haroldhazard1-wixsite-com.filesusr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ch: DPR, Viewport-Width, Width, ECT, Downlink
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/png
date: Mon, 04 Dec 2023 14:02:00 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "60271c73-adf"
expires: Mon, 04 Dec 2023 15:02:00 GMT
last-modified: Sat, 13 Feb 2021 00:25:23 GMT
paypal-debug-id: bdb0f16fd10aa
server: ECAcc (ska/F761)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000bdb0f16fd10aa-2719c3013875cde9-01
x-cache: HIT
x-content-type-options: nosniff
content-length: 2783
X-Firefox-Spdy: h2

www.paypalobjects.com/tagmgmt/bs-chunk.js

192.229.221.25

200 OK

19 B

URL GET HTTP/2
www.paypalobjects.com/tagmgmt/bs-chunk.js
IP
192.229.221.25:443
ASN
#15133 EDGECAST

Requested by
http://www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html
Certificate
IssuerDigiCert Inc
Subjectwww.paypal.com
Fingerprint4B:C0:E1:F0:16:B3:A4:B3:63:08:41:DF:F2:EF:8D:65:54:1D:30:B1
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 31 Oct 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
19 B (19 bytes)
Hash
dd780b1933198c2c23d61812a42da34d
d411fd22e08e2cc1da029bb9759642ef6e84c10d
be5c4f71eea822cbdcaefcf92963ab573e903f75a60b8bc0793e4eec935a1187

HTTP Headers

GET /tagmgmt/bs-chunk.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.haroldhazard1-wixsite-com.filesusr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-headers: x-csrf-token
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Mon, 04 Dec 2023 14:02:00 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "60271d4a-13"
expires: Mon, 04 Dec 2023 15:02:00 GMT
last-modified: Sat, 13 Feb 2021 00:28:58 GMT
paypal-debug-id: 7ff7d852f4e4d
server: ECAcc (ska/F775)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-00000000000000000007ff7d852f4e4d-feb663664d8c53c8-01
x-cache: HIT
x-content-type-options: nosniff
content-length: 19
X-Firefox-Spdy: h2

www.paypalobjects.com/pa/js/min/pa.js

192.229.221.25

200 OK

26 kB

URL GET HTTP/2
www.paypalobjects.com/pa/js/min/pa.js
IP
192.229.221.25:443
ASN
#15133 EDGECAST

Requested by
http://www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html
Certificate
IssuerDigiCert Inc
Subjectwww.paypal.com
Fingerprint4B:C0:E1:F0:16:B3:A4:B3:63:08:41:DF:F2:EF:8D:65:54:1D:30:B1
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 31 Oct 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65507)
Size
26 kB (25570 bytes)
Hash
720122d64b3deed73270adf191024d4e
260984c5b8fea7486796f541180b9b3086371236
13e76ebbf17b1233f788b81592829c6055eed4b9d8f6b399c86367b9cdd58a81

HTTP Headers

GET /pa/js/min/pa.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.haroldhazard1-wixsite-com.filesusr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: x-csrf-token
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Mon, 04 Dec 2023 14:02:00 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"656a79fe-1110e"
expires: Mon, 04 Dec 2023 15:02:00 GMT
last-modified: Sat, 02 Dec 2023 00:27:42 GMT
paypal-debug-id: 3a9ed68351171
server: ECAcc (ska/F77F)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-00000000000000000003a9ed68351171-20a16b303795bb7d-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 25570
X-Firefox-Spdy: h2

www.paypalobjects.com/digitalassets/c/paypal-ui/fonts/PayPalSansBig-Light.woff2

192.229.221.25

200 OK

18 kB

URL GET HTTP/2
www.paypalobjects.com/digitalassets/c/paypal-ui/fonts/PayPalSansBig-Light.woff2
IP
192.229.221.25:443
ASN
#15133 EDGECAST

Requested by
http://www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html
Certificate
IssuerDigiCert Inc
Subjectwww.paypal.com
Fingerprint4B:C0:E1:F0:16:B3:A4:B3:63:08:41:DF:F2:EF:8D:65:54:1D:30:B1
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 31 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), CFF, length 18360, version 1.6553\012- data
Size
18 kB (18360 bytes)
Hash
687b74c9a69af269c66b34ba18d6abd0
2bc090adc07a731f3c13da7969ca0a4409cee081
0d4d4b0ee4bdbbbfdf2fa8cc4c0ba0332a3798c2629cb806d249712f6a7063e3

HTTP Headers

GET /digitalassets/c/paypal-ui/fonts/PayPalSansBig-Light.woff2 HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.haroldhazard1-wixsite-com.filesusr.com/
Origin: http://www.haroldhazard1-wixsite-com.filesusr.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=31536000
content-type: application/font-woff2
date: Mon, 04 Dec 2023 14:02:00 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "5a66a30d-47b8"
expires: Mon, 04 Dec 2023 15:02:00 GMT
last-modified: Tue, 23 Jan 2018 02:50:53 GMT
paypal-debug-id: 4ed82d5fc416d
server: ECAcc (ska/F74D)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-00000000000000000004ed82d5fc416d-b70b1d1e6caa57ab-01
x-cache: HIT
x-content-type-options: nosniff
content-length: 18360
X-Firefox-Spdy: h2

www.paypalobjects.com/digitalassets/c/website/js/react-16_6_3-bundle.js

192.229.221.25

200 OK

37 kB

URL GET HTTP/2
www.paypalobjects.com/digitalassets/c/website/js/react-16_6_3-bundle.js
IP
192.229.221.25:443
ASN
#15133 EDGECAST

Requested by
http://www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html
Certificate
IssuerDigiCert Inc
Subjectwww.paypal.com
Fingerprint4B:C0:E1:F0:16:B3:A4:B3:63:08:41:DF:F2:EF:8D:65:54:1D:30:B1
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 31 Oct 2024 23:59:59 GMT

File type
ASCII text, with very long lines (556)
Size
37 kB (36652 bytes)
Hash
fe8147c9ab221bed16ca393f501a7a8b
9c4258034f7f0bb817d3cd0adad8c8597118d412
a6cb296cc17962a45f2e1ec8caa628f675def3f2296af7c66a40ab9bfe17bd3a

HTTP Headers

GET /digitalassets/c/website/js/react-16_6_3-bundle.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.haroldhazard1-wixsite-com.filesusr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Mon, 04 Dec 2023 14:02:00 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "5c199a88-1b4c8"
expires: Mon, 04 Dec 2023 15:02:00 GMT
last-modified: Wed, 19 Dec 2018 01:10:32 GMT
paypal-debug-id: 2141c35957a73
server: ECAcc (ska/F79E)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-00000000000000000002141c35957a73-7940d7246d7a222d-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 36652
X-Firefox-Spdy: h2

www.paypalobjects.com/helpcenter/smartchat/sales/v1/open-chat.js

192.229.221.25

200 OK

779 B

URL GET HTTP/2
www.paypalobjects.com/helpcenter/smartchat/sales/v1/open-chat.js
IP
192.229.221.25:443
ASN
#15133 EDGECAST

Requested by
http://www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html
Certificate
IssuerDigiCert Inc
Subjectwww.paypal.com
Fingerprint4B:C0:E1:F0:16:B3:A4:B3:63:08:41:DF:F2:EF:8D:65:54:1D:30:B1
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 31 Oct 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1387)
Size
779 B (779 bytes)
Hash
e08674d31c1b328ae44b0889fcebed71
102373e654b79a57f036650ce156f68fdb702034
15213b958a0af95e33fb82a50fc1a68ef2f171b3762662957e91ef1d834291f8

HTTP Headers

GET /helpcenter/smartchat/sales/v1/open-chat.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.haroldhazard1-wixsite-com.filesusr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Mon, 04 Dec 2023 14:02:00 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"60271b1c-5bf"
expires: Mon, 04 Dec 2023 15:02:00 GMT
last-modified: Sat, 13 Feb 2021 00:19:40 GMT
paypal-debug-id: dc2f6735f88da
server: ECAcc (ska/F777)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000dc2f6735f88da-6e9353f0844a256a-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 779
X-Firefox-Spdy: h2

www.paypalobjects.com/marketing-resources/css/10/eb419198434f125e3e772612b3ebd1d9c0892c.css

192.229.221.25

200 OK

48 kB

URL GET HTTP/2
www.paypalobjects.com/marketing-resources/css/10/eb419198434f125e3e772612b3ebd1d9c0892c.css
IP
192.229.221.25:443
ASN
#15133 EDGECAST

Requested by
http://www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html
Certificate
IssuerDigiCert Inc
Subjectwww.paypal.com
Fingerprint4B:C0:E1:F0:16:B3:A4:B3:63:08:41:DF:F2:EF:8D:65:54:1D:30:B1
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 31 Oct 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65363)
Size
48 kB (47534 bytes)
Hash
ed30d106b5f8d9dc643e587c68283d53
10eb419198434f125e3e772612b3ebd1d9c0892c
ddc2d28c6818ca1661476cad9604af4159e7baf3fc7d02d0c07c65ae3b6ed040

HTTP Headers

GET /marketing-resources/css/10/eb419198434f125e3e772612b3ebd1d9c0892c.css HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.haroldhazard1-wixsite-com.filesusr.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
cache-control: s-maxage=31536000, public,max-age=31536000
content-type: text/css
date: Mon, 04 Dec 2023 14:02:01 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"60271b54-4a97a"
expires: Mon, 04 Dec 2023 15:02:01 GMT
last-modified: Sat, 13 Feb 2021 00:20:36 GMT
paypal-debug-id: 63985ab9c7c71
server: ECAcc (daa/7D73)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-000000000000000000063985ab9c7c71-237f139b87b1cc6f-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 47534
X-Firefox-Spdy: h2

www.paypalobjects.com/digitalassets/c/paypal-ui/fonts/PayPalSansBig-Light.woff2

192.229.221.25

200 OK

18 kB

URL GET HTTP/2
www.paypalobjects.com/digitalassets/c/paypal-ui/fonts/PayPalSansBig-Light.woff2
IP
192.229.221.25:443
ASN
#15133 EDGECAST

Requested by
http://www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html
Certificate
IssuerDigiCert Inc
Subjectwww.paypal.com
Fingerprint4B:C0:E1:F0:16:B3:A4:B3:63:08:41:DF:F2:EF:8D:65:54:1D:30:B1
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 31 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), CFF, length 18360, version 1.6553\012- data
Size
18 kB (18360 bytes)
Hash
687b74c9a69af269c66b34ba18d6abd0
2bc090adc07a731f3c13da7969ca0a4409cee081
0d4d4b0ee4bdbbbfdf2fa8cc4c0ba0332a3798c2629cb806d249712f6a7063e3

HTTP Headers

GET /digitalassets/c/paypal-ui/fonts/PayPalSansBig-Light.woff2 HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.haroldhazard1-wixsite-com.filesusr.com
DNT: 1
Connection: keep-alive
Referer: https://www.paypalobjects.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=31536000
content-type: application/font-woff2
date: Mon, 04 Dec 2023 14:02:01 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "5a66a30d-47b8"
expires: Mon, 04 Dec 2023 15:02:01 GMT
last-modified: Tue, 23 Jan 2018 02:50:53 GMT
paypal-debug-id: 4ed82d5fc416d
server: ECAcc (ska/F74D)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-00000000000000000004ed82d5fc416d-b70b1d1e6caa57ab-01
x-cache: HIT
x-content-type-options: nosniff
content-length: 18360
X-Firefox-Spdy: h2

www.paypalobjects.com/webstatic/i/logo/rebrand/ppcom-white.svg

192.229.221.25

200 OK

2.0 kB

URL GET HTTP/2
www.paypalobjects.com/webstatic/i/logo/rebrand/ppcom-white.svg
IP
192.229.221.25:443
ASN
#15133 EDGECAST

Requested by
http://www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html
Certificate
IssuerDigiCert Inc
Subjectwww.paypal.com
Fingerprint4B:C0:E1:F0:16:B3:A4:B3:63:08:41:DF:F2:EF:8D:65:54:1D:30:B1
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 31 Oct 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
2.0 kB (1988 bytes)
Hash
24f3c805019afa1d7926fe206a7dcab6
06a0dd0b83159ef82f6a9fbfad467a1c306d5b43
e35c57fad02017983d4261c8d65697ec8b312a2a19127cb93f92d1eca6408015

HTTP Headers

GET /webstatic/i/logo/rebrand/ppcom-white.svg HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.paypalobjects.com/marketing-resources/css/10/eb419198434f125e3e772612b3ebd1d9c0892c.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/svg+xml
date: Mon, 04 Dec 2023 14:02:01 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"550cc291-1445"
expires: Mon, 04 Dec 2023 15:02:01 GMT
last-modified: Sat, 21 Mar 2015 01:00:01 GMT
paypal-debug-id: a51df04334ec3
server: ECAcc (ska/F6A1)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000a51df04334ec3-af2a2480479da7ee-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 1988
X-Firefox-Spdy: h2

www.paypalobjects.com/digitalassets/c/paypal-ui/fonts/PayPalSansSmall-Regular.woff2

192.229.221.25

200 OK

18 kB

URL GET HTTP/2
www.paypalobjects.com/digitalassets/c/paypal-ui/fonts/PayPalSansSmall-Regular.woff2
IP
192.229.221.25:443
ASN
#15133 EDGECAST

Requested by
http://www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html
Certificate
IssuerDigiCert Inc
Subjectwww.paypal.com
Fingerprint4B:C0:E1:F0:16:B3:A4:B3:63:08:41:DF:F2:EF:8D:65:54:1D:30:B1
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 31 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), CFF, length 18320, version 1.6553\012- data
Size
18 kB (18320 bytes)
Hash
8a41b4550d23b462af63fc46fabb46a4
50359b7126ed92c33efcbf673c286f105d9ae5e7
af93d1d952b2dc42c029871cbbb92988835b31c86d4f0cb6a9674b1d1714a20f

HTTP Headers

GET /digitalassets/c/paypal-ui/fonts/PayPalSansSmall-Regular.woff2 HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.haroldhazard1-wixsite-com.filesusr.com
DNT: 1
Connection: keep-alive
Referer: https://www.paypalobjects.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=31536000
content-type: application/font-woff2
date: Mon, 04 Dec 2023 14:02:01 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "5a66ae4b-4790"
expires: Mon, 04 Dec 2023 15:02:01 GMT
last-modified: Tue, 23 Jan 2018 03:38:51 GMT
paypal-debug-id: c8458c92a0ba1
server: ECAcc (ska/F737)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000c8458c92a0ba1-f80c71a9164c5b79-01
x-cache: HIT
x-content-type-options: nosniff
content-length: 18320
X-Firefox-Spdy: h2

www.paypalobjects.com/digitalassets/c/paypal-ui/fonts/PayPalSansSmall-Regular.woff2

192.229.221.25

200 OK

18 kB

URL GET HTTP/2
www.paypalobjects.com/digitalassets/c/paypal-ui/fonts/PayPalSansSmall-Regular.woff2
IP
192.229.221.25:443
ASN
#15133 EDGECAST

Requested by
http://www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html
Certificate
IssuerDigiCert Inc
Subjectwww.paypal.com
Fingerprint4B:C0:E1:F0:16:B3:A4:B3:63:08:41:DF:F2:EF:8D:65:54:1D:30:B1
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 31 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), CFF, length 18320, version 1.6553\012- data
Size
18 kB (18320 bytes)
Hash
8a41b4550d23b462af63fc46fabb46a4
50359b7126ed92c33efcbf673c286f105d9ae5e7
af93d1d952b2dc42c029871cbbb92988835b31c86d4f0cb6a9674b1d1714a20f

HTTP Headers

GET /digitalassets/c/paypal-ui/fonts/PayPalSansSmall-Regular.woff2 HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.haroldhazard1-wixsite-com.filesusr.com
DNT: 1
Connection: keep-alive
Referer: http://www.haroldhazard1-wixsite-com.filesusr.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=31536000
content-type: application/font-woff2
date: Mon, 04 Dec 2023 14:02:01 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "5a66ae4b-4790"
expires: Mon, 04 Dec 2023 15:02:01 GMT
last-modified: Tue, 23 Jan 2018 03:38:51 GMT
paypal-debug-id: c8458c92a0ba1
server: ECAcc (ska/F737)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000c8458c92a0ba1-f80c71a9164c5b79-01
x-cache: HIT
x-content-type-options: nosniff
content-length: 18320
X-Firefox-Spdy: h2

www.paypalobjects.com/digitalassets/c/website/marketing/global/kui/js/opinionLab-2.1.0.js

192.229.221.25

200 OK

12 kB

URL GET HTTP/2
www.paypalobjects.com/digitalassets/c/website/marketing/global/kui/js/opinionLab-2.1.0.js
IP
192.229.221.25:443
ASN
#15133 EDGECAST

Requested by
http://www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html
Certificate
IssuerDigiCert Inc
Subjectwww.paypal.com
Fingerprint4B:C0:E1:F0:16:B3:A4:B3:63:08:41:DF:F2:EF:8D:65:54:1D:30:B1
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 31 Oct 2024 23:59:59 GMT

File type
ASCII text, with very long lines (39683), with CRLF line terminators
Size
12 kB (12254 bytes)
Hash
a5194f96c9bb06ebbb5f58c39fffcd1b
d8d0145a70cf4ebfb6237dea846dabaa9fa4a94b
da3177d9f38349f23abc99dcc0a87a8e1178a1576f0b27192821b20ebecc45e3

HTTP Headers

GET /digitalassets/c/website/marketing/global/kui/js/opinionLab-2.1.0.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.haroldhazard1-wixsite-com.filesusr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Mon, 04 Dec 2023 14:02:01 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "5ee647b6-a5a5"
expires: Mon, 04 Dec 2023 15:02:01 GMT
last-modified: Sun, 14 Jun 2020 15:52:22 GMT
paypal-debug-id: c69fbebad2c37
server: ECAcc (ska/F6A1)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000c69fbebad2c37-f5c3331f8871a7a2-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 12254
X-Firefox-Spdy: h2

www.haroldhazard1-wixsite-com.filesusr.com/smartchat/open/eligibility?intent=SALESCHAT&page=/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html

54.230.111.105

403 Forbidden

9 B

URL GET HTTP/1.1
www.haroldhazard1-wixsite-com.filesusr.com/smartchat/open/eligibility?intent=SALESCHAT&page=/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html
IP
54.230.111.105:80
ASN
#16509 AMAZON-02

Requested by
http://www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html

File type
ASCII text, with no line terminators
Size
9 B (9 bytes)
Hash
722969577a96ca3953e84e3d949dee81
3dab5f6012e3e149b5a939b9cebba4a0b84dc8f5
78342a0905a72ce44da083dcb5d23b8ea0c16992ba2a82eece97e033d76ba3d3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - PayPal

HTTP Headers

GET /smartchat/open/eligibility?intent=SALESCHAT&page=/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html HTTP/1.1
Host: www.haroldhazard1-wixsite-com.filesusr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 403 Forbidden
Content-Type: text/plain
Content-Length: 9
Connection: keep-alive
Server: openresty/1.21.4.1
Date: Mon, 04 Dec 2023 14:02:02 GMT
Access-Control-Allow-Origin: *
Cache-Control: no-cache, private, must-revalidate, proxy-revalidate, no-store
Timing-Allow-Origin: *
X-Seen-By: gcp.us-central-1.media-router-f89dc7b48-4gpl5
Via: 1.1 google, 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Cache: Error from cloudfront
X-Amz-Cf-Pop: OSL50-P1
Alt-Svc: h3=":443"; ma=86400
X-Amz-Cf-Id: aBYuD7FROWrelDKdm2IxYXlj2L7Go2U7QravasReHFwv4stEu2OmiA==

t.paypal.com/ts?v=1.8.10&t=1701698527565&g=0&pgrp=main%3Amktg%3Apersonal%3A%3Ahome&page=main%3Amktg%3Apersonal%3A%3Ahome%3A%3A%3A&pgst=Unknown&calc=82bba33a054af&nsid=SN-FTGZbNRen6ZLqHLuUIL0WidQzvOOl&rsta=en_US&pgtf=Nodejs&env=live&s=ci&ccpg=us&csci=c753fadd08984fcd9bc68d4ba76a25d3&comp=mppnodeweb&tsrce=mppnodeweb&cu=0&ef_policy=ccpa&xe=102245%2C102201&xt=108244%2C108087&pgld=Unknown&bzsr=main&bchn=mktg&tmpl=home.jsx&pgsf=personal&lgin=out&shir=main_mktg_personal_&pros=3&lgcook=0&fcp=1553&fcp_attr=%7B%22timeToFirstByte%22%3A81%2C%22firstByteToFCP%22%3A1472%2C%22fcpEntry%22%3A%7B%22name%22%3A%22first-contentful-paint%22%2C%22entryType%22%3A%22paint%22%2C%22startTime%22%3A1553%2C%22duration%22%3A0%7D%2C%22rating%22%3A%22good%22%7D&ttfb=81&ttfb_attr=%7B%22connectionTime%22%3A1%2C%22dnsTime%22%3A1%2C%22requestTime%22%3A23%2C%22waitingTime%22%3A56%2C%22rating%22%3A%22good%22%7D&e=cwv&3p_vid=7027561b4f69e365&3p_fpti=1402ddf446fe5c29

151.101.65.35

200 OK

6.3 kB

URL GET HTTP/2
t.paypal.com/ts?v=1.8.10&t=1701698527565&g=0&pgrp=main%3Amktg%3Apersonal%3A%3Ahome&page=main%3Amktg%3Apersonal%3A%3Ahome%3A%3A%3A&pgst=Unknown&calc=82bba33a054af&nsid=SN-FTGZbNRen6ZLqHLuUIL0WidQzvOOl&rsta=en_US&pgtf=Nodejs&env=live&s=ci&ccpg=us&csci=c753fadd08984fcd9bc68d4ba76a25d3&comp=mppnodeweb&tsrce=mppnodeweb&cu=0&ef_policy=ccpa&xe=102245%2C102201&xt=108244%2C108087&pgld=Unknown&bzsr=main&bchn=mktg&tmpl=home.jsx&pgsf=personal&lgin=out&shir=main_mktg_personal_&pros=3&lgcook=0&fcp=1553&fcp_attr=%7B%22timeToFirstByte%22%3A81%2C%22firstByteToFCP%22%3A1472%2C%22fcpEntry%22%3A%7B%22name%22%3A%22first-contentful-paint%22%2C%22entryType%22%3A%22paint%22%2C%22startTime%22%3A1553%2C%22duration%22%3A0%7D%2C%22rating%22%3A%22good%22%7D&ttfb=81&ttfb_attr=%7B%22connectionTime%22%3A1%2C%22dnsTime%22%3A1%2C%22requestTime%22%3A23%2C%22waitingTime%22%3A56%2C%22rating%22%3A%22good%22%7D&e=cwv&3p_vid=7027561b4f69e365&3p_fpti=1402ddf446fe5c29
IP
151.101.65.35:443
ASN
#54113 FASTLY

Requested by
http://www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html
Certificate
IssuerDigiCert Inc
Subjectt.paypal.com
Fingerprint2C:19:5A:DA:E0:E2:30:EA:33:0F:20:D7:46:DC:98:1B:3C:DD:E8:F5
ValidityThu, 21 Sep 2023 00:00:00 GMT - Mon, 21 Oct 2024 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
6.3 kB (6337 bytes)
Hash
d6506b57ad463f7676c47fd380b41c4a
8900be26313df6b8a720b360aebefb9393511d90
8f222f48940fd25a78d0b2a18bb1a268f013ba2c9cdd1a3112b02fb2602052b0

HTTP Headers

GET /ts?v=1.8.10&t=1701698527565&g=0&pgrp=main%3Amktg%3Apersonal%3A%3Ahome&page=main%3Amktg%3Apersonal%3A%3Ahome%3A%3A%3A&pgst=Unknown&calc=82bba33a054af&nsid=SN-FTGZbNRen6ZLqHLuUIL0WidQzvOOl&rsta=en_US&pgtf=Nodejs&env=live&s=ci&ccpg=us&csci=c753fadd08984fcd9bc68d4ba76a25d3&comp=mppnodeweb&tsrce=mppnodeweb&cu=0&ef_policy=ccpa&xe=102245%2C102201&xt=108244%2C108087&pgld=Unknown&bzsr=main&bchn=mktg&tmpl=home.jsx&pgsf=personal&lgin=out&shir=main_mktg_personal_&pros=3&lgcook=0&fcp=1553&fcp_attr=%7B%22timeToFirstByte%22%3A81%2C%22firstByteToFCP%22%3A1472%2C%22fcpEntry%22%3A%7B%22name%22%3A%22first-contentful-paint%22%2C%22entryType%22%3A%22paint%22%2C%22startTime%22%3A1553%2C%22duration%22%3A0%7D%2C%22rating%22%3A%22good%22%7D&ttfb=81&ttfb_attr=%7B%22connectionTime%22%3A1%2C%22dnsTime%22%3A1%2C%22requestTime%22%3A23%2C%22waitingTime%22%3A56%2C%22rating%22%3A%22good%22%7D&e=cwv&3p_vid=7027561b4f69e365&3p_fpti=1402ddf446fe5c29 HTTP/1.1
Host: t.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.haroldhazard1-wixsite-com.filesusr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
correlation-id: 22b79823f3d16
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-type: image/gif
expires: Mon, 04 Dec 2023 14:02:02 GMT
p3p: CP="CAO IND OUR SAM UNI STA COR COM"
paypal-debug-id: 22b79823f3d16
pragma: no-cache
set-cookie: ts=vreXpYrS%3D1796306522%26vteXpYrS%3D1701700322%26vr%3D1402ddf446fe5c29%26vt%3D7027561b4f69e365;Expires=Thu, 03 Dec 2026 14:02:02 GMT;domain=.paypal.com;path=/;secure;HttpOnly;
ts_c=vr%3D1402ddf446fe5c29%26vt%3D7027561b4f69e365;Expires=Thu, 03 Dec 2026 14:02:02 GMT;domain=.paypal.com;path=/;secure;
traceparent: 00-000000000000000000022b79823f3d16-caaeeef1f54fb248-01
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Mon, 04 Dec 2023 14:02:02 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-fra-etou8220070-FRA, cache-bma1667-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1701698522.036762,VS0,VE199
vary: Accept-Encoding
server-timing: content-encoding;desc="",x-cdn;desc="fastly"
timing-allow-origin: *
X-Firefox-Spdy: h2

t.paypal.com/ts?v=1.8.10&t=1701698527892&g=0&pgrp=main%3Amktg%3Apersonal%3A%3Ahome&page=main%3Amktg%3Apersonal%3A%3Ahome%3A%3A%3A&pgst=Unknown&calc=82bba33a054af&nsid=SN-FTGZbNRen6ZLqHLuUIL0WidQzvOOl&rsta=en_US&pgtf=Nodejs&env=live&s=ci&ccpg=us&csci=c753fadd08984fcd9bc68d4ba76a25d3&comp=mppnodeweb&tsrce=mppnodeweb&cu=0&ef_policy=ccpa&xe=102245%2C102201&xt=108244%2C108087&pgld=Unknown&bzsr=main&bchn=mktg&tmpl=home.jsx&pgsf=personal&lgin=out&shir=main_mktg_personal_&pros=3&lgcook=0&e=im&imsrc=setup&view=%7B%22t10%22%3A58%2C%22t11%22%3A1817%2C%22tcp%22%3A1553%2C%22nt%22%3A%22navigate%22%2C%22bt%22%3A210%7D&pt=Send%20Money%2C%20Pay%20Online%20or%20Set%20Up%20a%20Merchant%20Account%20-%20PayPal&cd=24&sw=1280&sh=1024&dw=1280&dh=1024&bw=1280&bh=1024&ce=1&t1=58&t1c=57&t1d=1&t1s=0&t2=23&t3=4&t4d=0&t4=0&t4e=3&tt=1607&rdc=0&protocol=http%2F1.1&res=%7B%7D&rtt=280&3p_vid=7027561b4f69e365&3p_fpti=1402ddf446fe5c29

151.101.65.35

200 OK

4.0 kB

URL GET HTTP/2
t.paypal.com/ts?v=1.8.10&t=1701698527892&g=0&pgrp=main%3Amktg%3Apersonal%3A%3Ahome&page=main%3Amktg%3Apersonal%3A%3Ahome%3A%3A%3A&pgst=Unknown&calc=82bba33a054af&nsid=SN-FTGZbNRen6ZLqHLuUIL0WidQzvOOl&rsta=en_US&pgtf=Nodejs&env=live&s=ci&ccpg=us&csci=c753fadd08984fcd9bc68d4ba76a25d3&comp=mppnodeweb&tsrce=mppnodeweb&cu=0&ef_policy=ccpa&xe=102245%2C102201&xt=108244%2C108087&pgld=Unknown&bzsr=main&bchn=mktg&tmpl=home.jsx&pgsf=personal&lgin=out&shir=main_mktg_personal_&pros=3&lgcook=0&e=im&imsrc=setup&view=%7B%22t10%22%3A58%2C%22t11%22%3A1817%2C%22tcp%22%3A1553%2C%22nt%22%3A%22navigate%22%2C%22bt%22%3A210%7D&pt=Send%20Money%2C%20Pay%20Online%20or%20Set%20Up%20a%20Merchant%20Account%20-%20PayPal&cd=24&sw=1280&sh=1024&dw=1280&dh=1024&bw=1280&bh=1024&ce=1&t1=58&t1c=57&t1d=1&t1s=0&t2=23&t3=4&t4d=0&t4=0&t4e=3&tt=1607&rdc=0&protocol=http%2F1.1&res=%7B%7D&rtt=280&3p_vid=7027561b4f69e365&3p_fpti=1402ddf446fe5c29
IP
151.101.65.35:443
ASN
#54113 FASTLY

Requested by
http://www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html
Certificate
IssuerDigiCert Inc
Subjectt.paypal.com
Fingerprint2C:19:5A:DA:E0:E2:30:EA:33:0F:20:D7:46:DC:98:1B:3C:DD:E8:F5
ValidityThu, 21 Sep 2023 00:00:00 GMT - Mon, 21 Oct 2024 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
4.0 kB (4014 bytes)
Hash
93d5b4f1410297902d583fbdd539bd7b
ef9881854e1a1f855f6f7ba893170f1d41c125b2
d9c3927210778610b277c277139ec63829fee36191612654aced76bb9c5e834a

HTTP Headers

GET /ts?v=1.8.10&t=1701698527892&g=0&pgrp=main%3Amktg%3Apersonal%3A%3Ahome&page=main%3Amktg%3Apersonal%3A%3Ahome%3A%3A%3A&pgst=Unknown&calc=82bba33a054af&nsid=SN-FTGZbNRen6ZLqHLuUIL0WidQzvOOl&rsta=en_US&pgtf=Nodejs&env=live&s=ci&ccpg=us&csci=c753fadd08984fcd9bc68d4ba76a25d3&comp=mppnodeweb&tsrce=mppnodeweb&cu=0&ef_policy=ccpa&xe=102245%2C102201&xt=108244%2C108087&pgld=Unknown&bzsr=main&bchn=mktg&tmpl=home.jsx&pgsf=personal&lgin=out&shir=main_mktg_personal_&pros=3&lgcook=0&e=im&imsrc=setup&view=%7B%22t10%22%3A58%2C%22t11%22%3A1817%2C%22tcp%22%3A1553%2C%22nt%22%3A%22navigate%22%2C%22bt%22%3A210%7D&pt=Send%20Money%2C%20Pay%20Online%20or%20Set%20Up%20a%20Merchant%20Account%20-%20PayPal&cd=24&sw=1280&sh=1024&dw=1280&dh=1024&bw=1280&bh=1024&ce=1&t1=58&t1c=57&t1d=1&t1s=0&t2=23&t3=4&t4d=0&t4=0&t4e=3&tt=1607&rdc=0&protocol=http%2F1.1&res=%7B%7D&rtt=280&3p_vid=7027561b4f69e365&3p_fpti=1402ddf446fe5c29 HTTP/1.1
Host: t.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.haroldhazard1-wixsite-com.filesusr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
correlation-id: f2f6a5f50f559
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-type: image/gif
expires: Mon, 04 Dec 2023 14:02:02 GMT
p3p: CP="CAO IND OUR SAM UNI STA COR COM"
paypal-debug-id: f2f6a5f50f559
pragma: no-cache
set-cookie: ts=vreXpYrS%3D1796306522%26vteXpYrS%3D1701700322%26vr%3D1402ddf446fe5c29%26vt%3D7027561b4f69e365;Expires=Thu, 03 Dec 2026 14:02:02 GMT;domain=.paypal.com;path=/;secure;HttpOnly;
ts_c=vr%3D1402ddf446fe5c29%26vt%3D7027561b4f69e365;Expires=Thu, 03 Dec 2026 14:02:02 GMT;domain=.paypal.com;path=/;secure;
traceparent: 00-0000000000000000000f2f6a5f50f559-4315652048f3d3ad-01
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Mon, 04 Dec 2023 14:02:02 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-fra-eddf8230130-FRA, cache-bma1667-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1701698522.295613,VS0,VE174
vary: Accept-Encoding
server-timing: content-encoding;desc="",x-cdn;desc="fastly"
timing-allow-origin: *
X-Firefox-Spdy: h2

www.paypalobjects.com/marketing-resources/js/be/3df262f97bed64f5e52a9d811d3821d0e32e69.js

192.229.221.25

200 OK

286 kB

URL GET HTTP/2
www.paypalobjects.com/marketing-resources/js/be/3df262f97bed64f5e52a9d811d3821d0e32e69.js
IP
192.229.221.25:443
ASN
#15133 EDGECAST

Requested by
http://www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html
Certificate
IssuerDigiCert Inc
Subjectwww.paypal.com
Fingerprint4B:C0:E1:F0:16:B3:A4:B3:63:08:41:DF:F2:EF:8D:65:54:1D:30:B1
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 31 Oct 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (54295)
Size
286 kB (285817 bytes)
Hash
6bc909626fd0ae2f15edd000f6746ba8
be3df262f97bed64f5e52a9d811d3821d0e32e69
fb8c8032631bd4b46f0182b706be3917e0811c4595b0ea962cb939a10502b449

HTTP Headers

GET /marketing-resources/js/be/3df262f97bed64f5e52a9d811d3821d0e32e69.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.haroldhazard1-wixsite-com.filesusr.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=31536000
content-type: application/javascript
date: Mon, 04 Dec 2023 14:02:02 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"60271bbf-1329e6"
expires: Mon, 04 Dec 2023 15:02:02 GMT
last-modified: Sat, 13 Feb 2021 00:22:23 GMT
paypal-debug-id: dfb316bfc68e8
server: ECAcc (daa/7C97)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000dfb316bfc68e8-2ce5868338647133-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 285817
X-Firefox-Spdy: h2

www.paypalobjects.com/marketing/web/us/en/home/Everyday-Essentials/video_542x308px.jpg

192.229.221.25

200 OK

98 kB

URL GET HTTP/2
www.paypalobjects.com/marketing/web/us/en/home/Everyday-Essentials/video_542x308px.jpg
IP
192.229.221.25:443
ASN
#15133 EDGECAST

Requested by
http://www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html
Certificate
IssuerDigiCert Inc
Subjectwww.paypal.com
Fingerprint4B:C0:E1:F0:16:B3:A4:B3:63:08:41:DF:F2:EF:8D:65:54:1D:30:B1
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 31 Oct 2024 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 542x308, components 3\012- data
Size
98 kB (97687 bytes)
Hash
592f746476379e4f079f56ef19feb404
4c2f7b70d51eec520fc2db9ad0b208fb2a89496a
0e2d3c6f134fd9c8f9efcbaf57fe6bdccca5871b27b352835d8cee0de64ded27

HTTP Headers

GET /marketing/web/us/en/home/Everyday-Essentials/video_542x308px.jpg HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.haroldhazard1-wixsite-com.filesusr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ch: DPR, Viewport-Width, Width, ECT, Downlink
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/jpeg
date: Mon, 04 Dec 2023 14:02:03 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "60271c73-17d97"
expires: Mon, 04 Dec 2023 15:02:03 GMT
last-modified: Sat, 13 Feb 2021 00:25:23 GMT
paypal-debug-id: 1a1a3be811fb6
server: ECAcc (daa/7CF7)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-00000000000000000001a1a3be811fb6-6f15cf31bf361926-01
x-cache: HIT
x-content-type-options: nosniff
content-length: 97687
X-Firefox-Spdy: h2

www.paypalobjects.com/webstatic/icon/pp196.png

192.229.221.25

200 OK

6.3 kB

URL GET HTTP/2
www.paypalobjects.com/webstatic/icon/pp196.png
IP
192.229.221.25:443
ASN
#15133 EDGECAST

Requested by
http://www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html
Certificate
IssuerDigiCert Inc
Subjectwww.paypal.com
Fingerprint4B:C0:E1:F0:16:B3:A4:B3:63:08:41:DF:F2:EF:8D:65:54:1D:30:B1
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 31 Oct 2024 23:59:59 GMT

File type
PNG image data, 196 x 196, 8-bit/color RGB, non-interlaced\012- data
Size
6.3 kB (6295 bytes)
Hash
6aee6ff206053b62bf55f6673ae5914f
d21110a6efd1b626d01655db56cae4da1d4c18fd
46314d287f28e8179437f32d1f83abeab9aaf621448642997151055e8b2898d4

HTTP Headers

GET /webstatic/icon/pp196.png HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.haroldhazard1-wixsite-com.filesusr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ch: DPR, Viewport-Width, Width, ECT, Downlink
accept-ranges: bytes
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/png
date: Mon, 04 Dec 2023 14:02:02 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "53611ccb-1897"
expires: Mon, 04 Dec 2023 15:02:02 GMT
last-modified: Wed, 30 Apr 2014 15:54:51 GMT
paypal-debug-id: 9d5d965485162
server: ECAcc (ska/F6E5)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-00000000000000000009d5d965485162-d67ce604cd2187da-01
x-cache: HIT
x-content-type-options: nosniff
content-length: 6295
X-Firefox-Spdy: h2

www.paypalobjects.com/marketing/web/US/en/home/PP_EE_LP_Header_Output_US_1600x800_post_live.mp4

192.229.221.25

206 Partial Content

639 kB

URL GET HTTP/2
www.paypalobjects.com/marketing/web/US/en/home/PP_EE_LP_Header_Output_US_1600x800_post_live.mp4
IP
192.229.221.25:443
ASN
#15133 EDGECAST

Requested by
http://www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html
Certificate
IssuerDigiCert Inc
Subjectwww.paypal.com
Fingerprint4B:C0:E1:F0:16:B3:A4:B3:63:08:41:DF:F2:EF:8D:65:54:1D:30:B1
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 31 Oct 2024 23:59:59 GMT

File type
ISO Media, MP4 v2 [ISO 14496-14]\012- data
Size
639 kB (638969 bytes)
Hash
066cbb64c3251c3dc36f7706b476dbb3
58620db59f83aa2057c6f4c1fa3bc6512100c2ee
ec933214ce5c90b8de8821f76401c18b786f667762caca8cc4467d9a46bf6f95

HTTP Headers

GET /marketing/web/US/en/home/PP_EE_LP_Header_Output_US_1600x800_post_live.mp4 HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: http://www.haroldhazard1-wixsite-com.filesusr.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 206 Partial Content
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-range: bytes 0-2100107/2100108
content-type: video/mp4
date: Mon, 04 Dec 2023 14:02:01 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "60271c0d-200b8c"
expires: Mon, 04 Dec 2023 15:02:01 GMT
last-modified: Sat, 13 Feb 2021 00:23:41 GMT
paypal-debug-id: 967e5a4fc4149
server: ECAcc (daa/7CCE)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000967e5a4fc4149-43f49f9a33d570d8-01
x-cache: HIT
x-content-type-options: nosniff
content-length: 2100108
X-Firefox-Spdy: h2

t.paypal.com/ts?v=1.8.10&t=1701698527542&g=0&pgrp=main%3Aprivacy%3Apolicy&page=main%3Aprivacy%3Apolicy%3Accpa&pgst=Unknown&calc=82bba33a054af&nsid=SN-FTGZbNRen6ZLqHLuUIL0WidQzvOOl&rsta=en_US&pgtf=Nodejs&env=live&s=ci&ccpg=en_US&csci=c753fadd08984fcd9bc68d4ba76a25d3&comp=mppnodeweb&tsrce=mppnodeweb&cu=0&ef_policy=ccpa&xe=102245%2C102201&xt=108244%2C108087&pgld=Unknown&bzsr=main&bchn=mktg&tmpl=home.jsx&pgsf=personal&lgin=out&shir=main_mktg_personal_&pros=3&lgcook=0&e=im&displayPage=main%3Amktg%3Apersonal%3A%3Ahome&ppage=privacy_banner&bannerType=cookiebanner&flag=ccpa&bannerVersion=v3a&pt=Send%20Money%2C%20Pay%20Online%20or%20Set%20Up%20a%20Merchant%20Account%20-%20PayPal&cd=24&sw=1280&sh=1024&dw=1280&dh=1024&bw=1280&bh=1024&ce=1&3p_vid=7027561b4f69e365&3p_fpti=1402ddf446fe5c29

151.101.65.35

200 OK

42 B

URL GET HTTP/2
t.paypal.com/ts?v=1.8.10&t=1701698527542&g=0&pgrp=main%3Aprivacy%3Apolicy&page=main%3Aprivacy%3Apolicy%3Accpa&pgst=Unknown&calc=82bba33a054af&nsid=SN-FTGZbNRen6ZLqHLuUIL0WidQzvOOl&rsta=en_US&pgtf=Nodejs&env=live&s=ci&ccpg=en_US&csci=c753fadd08984fcd9bc68d4ba76a25d3&comp=mppnodeweb&tsrce=mppnodeweb&cu=0&ef_policy=ccpa&xe=102245%2C102201&xt=108244%2C108087&pgld=Unknown&bzsr=main&bchn=mktg&tmpl=home.jsx&pgsf=personal&lgin=out&shir=main_mktg_personal_&pros=3&lgcook=0&e=im&displayPage=main%3Amktg%3Apersonal%3A%3Ahome&ppage=privacy_banner&bannerType=cookiebanner&flag=ccpa&bannerVersion=v3a&pt=Send%20Money%2C%20Pay%20Online%20or%20Set%20Up%20a%20Merchant%20Account%20-%20PayPal&cd=24&sw=1280&sh=1024&dw=1280&dh=1024&bw=1280&bh=1024&ce=1&3p_vid=7027561b4f69e365&3p_fpti=1402ddf446fe5c29
IP
151.101.65.35:443
ASN
#54113 FASTLY

Requested by
http://www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html
Certificate
IssuerDigiCert Inc
Subjectt.paypal.com
Fingerprint2C:19:5A:DA:E0:E2:30:EA:33:0F:20:D7:46:DC:98:1B:3C:DD:E8:F5
ValidityThu, 21 Sep 2023 00:00:00 GMT - Mon, 21 Oct 2024 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
b4682377ddfbe4e7dabfddb2e543e842
328e472721a93345801ed5533240eac2d1f8498c
6d8ba81d1b60a18707722a1f2b62dad48a6acced95a1933f49a68b5016620b93

HTTP Headers

GET /ts?v=1.8.10&t=1701698527542&g=0&pgrp=main%3Aprivacy%3Apolicy&page=main%3Aprivacy%3Apolicy%3Accpa&pgst=Unknown&calc=82bba33a054af&nsid=SN-FTGZbNRen6ZLqHLuUIL0WidQzvOOl&rsta=en_US&pgtf=Nodejs&env=live&s=ci&ccpg=en_US&csci=c753fadd08984fcd9bc68d4ba76a25d3&comp=mppnodeweb&tsrce=mppnodeweb&cu=0&ef_policy=ccpa&xe=102245%2C102201&xt=108244%2C108087&pgld=Unknown&bzsr=main&bchn=mktg&tmpl=home.jsx&pgsf=personal&lgin=out&shir=main_mktg_personal_&pros=3&lgcook=0&e=im&displayPage=main%3Amktg%3Apersonal%3A%3Ahome&ppage=privacy_banner&bannerType=cookiebanner&flag=ccpa&bannerVersion=v3a&pt=Send%20Money%2C%20Pay%20Online%20or%20Set%20Up%20a%20Merchant%20Account%20-%20PayPal&cd=24&sw=1280&sh=1024&dw=1280&dh=1024&bw=1280&bh=1024&ce=1&3p_vid=7027561b4f69e365&3p_fpti=1402ddf446fe5c29 HTTP/1.1
Host: t.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.haroldhazard1-wixsite-com.filesusr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
correlation-id: 4355604dc97ff
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-type: image/gif
expires: Mon, 04 Dec 2023 14:02:02 GMT
p3p: CP="CAO IND OUR SAM UNI STA COR COM"
paypal-debug-id: 4355604dc97ff
pragma: no-cache
set-cookie: ts=vreXpYrS%3D1796306522%26vteXpYrS%3D1701700322%26vr%3D1402ddf446fe5c29%26vt%3D7027561b4f69e365;Expires=Thu, 03 Dec 2026 14:02:02 GMT;domain=.paypal.com;path=/;secure;HttpOnly;
ts_c=vr%3D1402ddf446fe5c29%26vt%3D7027561b4f69e365;Expires=Thu, 03 Dec 2026 14:02:02 GMT;domain=.paypal.com;path=/;secure;
traceparent: 00-00000000000000000004355604dc97ff-f7ce47b4d938172a-01
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Mon, 04 Dec 2023 14:02:02 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-fra-eddf8230114-FRA, cache-bma1667-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1701698522.032484,VS0,VE192
vary: Accept-Encoding
server-timing: content-encoding;desc="",x-cdn;desc="fastly"
timing-allow-origin: *
X-Firefox-Spdy: h2

www.paypalobjects.com/webstatic/icon/pp32.png

192.229.221.25

200 OK

4.0 kB

URL GET HTTP/2
www.paypalobjects.com/webstatic/icon/pp32.png
IP
192.229.221.25:443
ASN
#15133 EDGECAST

Requested by
http://www.haroldhazard1-wixsite-com.filesusr.com/html/3ff7c4_39f5e951394368f9e49c63fbf3166add.html
Certificate
IssuerDigiCert Inc
Subjectwww.paypal.com
Fingerprint4B:C0:E1:F0:16:B3:A4:B3:63:08:41:DF:F2:EF:8D:65:54:1D:30:B1
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 31 Oct 2024 23:59:59 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
4.0 kB (3972 bytes)
Hash
8f4dd9ccb66a6485107e80b6e86063f9
fc5220270099d7079a068e5fd3ac5ad248f2e15d
9e208d404c81e5fc7170c13b8564b1368100d668b2071b16ee14600d08519ac4

HTTP Headers

GET /webstatic/icon/pp32.png HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.haroldhazard1-wixsite-com.filesusr.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ch: DPR, Viewport-Width, Width, ECT, Downlink
accept-ranges: bytes
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/png
date: Mon, 04 Dec 2023 14:02:02 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "53611ccb-f84"
expires: Mon, 04 Dec 2023 15:02:02 GMT
last-modified: Wed, 30 Apr 2014 15:54:51 GMT
paypal-debug-id: 1511fde0bb2a0
server: ECAcc (ska/F76D)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
x-cache: HIT
x-content-type-options: nosniff
content-length: 3972
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (17)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by