Overview

URL rffindingsystems.com/
IP66.113.226.190
ASNHOSTWAY
Location United States
Report completed2022-09-03 09:26:23 UTC
StatusLoading report..
urlquery Alerts Phishing - Netflix


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (8)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-02 04:36:08 UTC 52.35.251.160
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-03 04:00:43 UTC 34.120.237.76
mnemonic passive DNS r3.o.lencr.org (3) 344 2020-12-02 08:52:13 UTC 2022-09-03 04:54:41 UTC 23.36.76.226
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-03 06:08:54 UTC 143.204.55.36
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-03 04:18:35 UTC 143.204.55.25
mnemonic passive DNS rffindingsystems.com (33) 0 2019-02-13 04:48:02 UTC 2022-09-03 09:26:06 UTC 66.113.226.190 Unknown ranking
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-03 04:48:39 UTC 34.117.237.239
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-03 06:04:02 UTC 93.184.220.29


Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 66.113.226.190

Date UQ / IDS / BL URL IP
2022-09-03 09:26:23 +0000
2 - 0 - 0 rffindingsystems.com/ 66.113.226.190

Last 5 reports on ASN: HOSTWAY

Date UQ / IDS / BL URL IP
2022-11-12 17:48:51 +0000
0 - 0 - 1 itsabouttimebpp.com/ 66.113.209.29
2022-11-12 17:48:50 +0000
0 - 0 - 1 itsabouttimebpp.com/ 66.113.209.29
2022-11-11 18:35:38 +0000
0 - 0 - 3 swivelsrus.com/neginnl 66.113.235.95
2022-10-10 13:42:03 +0000
0 - 0 - 0 mechreps.com 66.113.163.165
2022-09-22 06:26:51 +0000
0 - 0 - 1 misfitmods.com/mmwiz/repo/zips/plugin.video.x (...) 104.128.234.156

Last 1 reports on domain: rffindingsystems.com

Date UQ / IDS / BL URL IP
2022-09-03 09:26:23 +0000
2 - 0 - 0 rffindingsystems.com/ 66.113.226.190

No other reports with similar screenshot



JavaScript

Executed Scripts (7)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (48)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "9B43EC48B16F96449208A0094C4D660806A2A2D344B5862DBFF4C393BF3F9F9F"
Last-Modified: Thu, 01 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10382
Expires: Sat, 03 Sep 2022 12:19:14 GMT
Date: Sat, 03 Sep 2022 09:26:12 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 03 Sep 2022 08:42:54 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: EsPUz36n-B6vFnF1Qd1sbh1UL3dPvGCMj7azQpRxpZC4BW25M0G65g==
Age: 2598


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    b593eb39329cfe060d55be5e4a5405e2
Sha1:   78e46c1028e9f94f8569303ad2d90d7df13a059a
Sha256: 08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.25
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 03 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Q6j2RRIOuqL5o16q0Cq9byRSf8m9GlIAMEig5DeUN_6hMCp2MTBDPw==
age: 29455
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET / HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Sat, 03 Sep 2022 09:26:12 GMT
Server: Apache/2.2
Last-Modified: Wed, 13 Jan 2016 18:14:18 GMT
ETag: "621d8fb-3816-5293b23717280"
Accept-Ranges: bytes
Content-Length: 14358
Connection: close


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (698), with CRLF line terminators
Size:   14358
Md5:    b7f22c8a6c72b5a81f20fdcaa04ff7e5
Sha1:   70c9bc60b959b12b72e8f5443603ec3002eec02b
Sha256: 858059e9da199c0f0a9d0a503fc506879107e2bb2c9339a4086589184bf5bc2d
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sat, 03 Sep 2022 09:26:12 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /Scripts/swfobject_modified.js HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/

                                         
                                         66.113.226.190
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 03 Sep 2022 09:26:12 GMT
Server: Apache/2.2
Last-Modified: Fri, 08 Jan 2016 17:04:28 GMT
ETag: "4a8561c-bc-528d5947e3f00"
Accept-Ranges: bytes
Content-Length: 188
Connection: close


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with no line terminators
Size:   188
Md5:    04ccc227f2d9bd432ba0295a5642312a
Sha1:   0238890930152e14714ca130ac365c47131b7aad
Sha256: 4f6e4c8ed1333966bc3ea4f86c1fe8caf031927919f6bb04d219121f088c54fb
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sat, 03 Sep 2022 08:38:16 GMT
Cache-Control: max-age=3600
Expires: Sat, 03 Sep 2022 08:42:04 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: YC3oAYXZy7IUQEOgOaBjDebXlBjRDTyt_DoVU-NUasfgD9FyyuWbnw==
Age: 2876


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /Scripts/swfobject_modified.js HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/

                                         
                                         66.113.226.190
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Sat, 03 Sep 2022 09:26:12 GMT
Server: Apache/2.2
Last-Modified: Fri, 08 Jan 2016 17:04:28 GMT
ETag: "4a8561c-bc-528d5947e3f00"
Accept-Ranges: bytes
Content-Length: 188
Connection: close


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with no line terminators
Size:   188
Md5:    04ccc227f2d9bd432ba0295a5642312a
Sha1:   0238890930152e14714ca130ac365c47131b7aad
Sha256: 4f6e4c8ed1333966bc3ea4f86c1fe8caf031927919f6bb04d219121f088c54fb
                                        
                                            GET /css/karma-sky-blue.css HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 03 Sep 2022 09:26:12 GMT
Server: Apache/2.2
Last-Modified: Fri, 08 Jan 2016 21:07:34 GMT
ETag: "63545ba-1db5-528d8f9e2f180"
Accept-Ranges: bytes
Content-Length: 7605
Connection: close


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   7605
Md5:    0adcb751932bb81117f6696d60ab0552
Sha1:   8536688bcea60c1da73c9f7bbeee3349918bccac
Sha256: bd431f7eafd2c7af5451d0b283a79603ca102a4efcea82a49d4dc4dc09f4e0e0
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6431
Cache-Control: 'max-age=158059'
Date: Sat, 03 Sep 2022 09:26:13 GMT
Last-Modified: Sat, 03 Sep 2022 07:39:02 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /js/jquery.cycle.all.min.js HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Sat, 03 Sep 2022 09:26:13 GMT
Server: Apache/2.2
Last-Modified: Wed, 13 Jan 2016 18:23:21 GMT
ETag: "a3f866-7b33-5293b43cef840"
Accept-Ranges: bytes
Content-Length: 31539
Connection: close


--- Additional Info ---
Magic:  ASCII text, with very long lines (19692)
Size:   31539
Md5:    551b68f7140f87ef8ce6d095935f9a4e
Sha1:   699562695c0d6603107933189c2bda50062db920
Sha256: bec8f7e220d2ffdd6ae4868dbf3ff3a8ae6548588d88ee10542274d366544cb2
                                        
                                            GET /js/jquery-2-slider.js HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Sat, 03 Sep 2022 09:26:13 GMT
Server: Apache/2.2
Last-Modified: Wed, 13 Jan 2016 18:23:16 GMT
ETag: "a3f85e-1b9-5293b4382ad00"
Accept-Ranges: bytes
Content-Length: 441
Connection: close
X-Pad: avoid browser bug


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   441
Md5:    0db302b240b2e698503e223fb9c04b56
Sha1:   fc22ed3145525a325763aa8b9c66e7e0390a2ea4
Sha256: 22e2a149c8688f2fda4e336acba8f6599221b2fd93bda293524fadbcdd9ddcb5
                                        
                                            GET /js/karma.js HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Sat, 03 Sep 2022 09:26:12 GMT
Server: Apache/2.2
Last-Modified: Wed, 13 Jan 2016 18:23:23 GMT
ETag: "a3f867-d956-5293b43ed7cc0"
Accept-Ranges: bytes
Content-Length: 55638
Connection: close


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (13020)
Size:   55638
Md5:    70e0fe5d8558555a77b3dbec7ceec871
Sha1:   9d1686105cf143573d5a26ffe815e9001b5d7895
Sha256: 6726dad9938c04fbfac5719df315a1a6b50c082b3494d1c57cdba374f9a0ccb8
                                        
                                            GET /css/_mobile.css HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 03 Sep 2022 09:26:12 GMT
Server: Apache/2.2
Last-Modified: Fri, 08 Jan 2016 21:07:14 GMT
ETag: "63545a7-97ac-528d8f8b1c480"
Accept-Ranges: bytes
Content-Length: 38828
Connection: close


--- Additional Info ---
Magic:  ASCII text
Size:   38828
Md5:    417742e5a3ec6c48395c597ccdc6a3a2
Sha1:   d8f41f40f529544566dcd372fe241f596b56865e
Sha256: 6386b7b77e4fd76d76b6763b8582a5dc7d6436522b49388e0e5b1d724870aa97
                                        
                                            GET /js/testimonial-slider.js HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Sat, 03 Sep 2022 09:26:13 GMT
Server: Apache/2.2
Last-Modified: Wed, 13 Jan 2016 18:23:24 GMT
ETag: "a3f869-2d7-5293b43fcbf00"
Accept-Ranges: bytes
Content-Length: 727
Connection: close
X-Pad: avoid browser bug


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   727
Md5:    85610cc28a02115c3a011c0c22e29c8c
Sha1:   91858880035e386d9625b4e009bd75bf08b2608c
Sha256: 5fb07ba75619eae3f110385ff9838a485d3e87c0cf2c5fecaf082ebefec8984b
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2D27ekEfsDHD6Yn6dip6VQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.35.251.160
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: qxNHQiTdIYaQGZcSCbuesSvhFJs=

                                        
                                            GET /css/secondary-sky-blue.css HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/css/karma-sky-blue.css

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 03 Sep 2022 09:26:13 GMT
Server: Apache/2.2
Last-Modified: Fri, 08 Jan 2016 21:07:50 GMT
ETag: "63545cf-ee4-528d8fad71580"
Accept-Ranges: bytes
Content-Length: 3812
Connection: close


--- Additional Info ---
Magic:  ASCII text
Size:   3812
Md5:    8560c647894f0efedda6fca7aae3d39f
Sha1:   d7d52cfa8342a9dbbee67136fbdb7fb64ce4d1d0
Sha256: bd2923ce18dd2259216d62fd0ce891221e82da889524b0645c9d869e781b4eb2
                                        
                                            GET /js/jquery-1.8.3.js HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Sat, 03 Sep 2022 09:26:12 GMT
Server: Apache/2.2
Last-Modified: Wed, 13 Jan 2016 18:23:12 GMT
ETag: "a3f85b-16dd9-5293b4345a400"
Accept-Ranges: bytes
Content-Length: 93657
Connection: close


--- Additional Info ---
Magic:  ASCII text, with very long lines (65483)
Size:   93657
Md5:    3373d7014a90312ef58b4344f96ac4ed
Sha1:   95ad14daa710a734540cadd3a80b236a04f149c3
Sha256: 163afcf9152c411190e29bb5595f6873816972adbe66e178f9fb6f43e07ad91e

Alerts:
  urlquery:
    - Phishing - Netflix
                                        
                                            GET /style.css HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 03 Sep 2022 09:26:12 GMT
Server: Apache/2.2
Last-Modified: Wed, 13 Jan 2016 18:14:23 GMT
ETag: "621d919-1c940-5293b23bdbdc0"
Accept-Ranges: bytes
Content-Length: 117056
Connection: close


--- Additional Info ---
Magic:  ASCII text, with very long lines (453), with CRLF line terminators
Size:   117056
Md5:    d5ae1c64f20c75132b72f515be4317ec
Sha1:   f71a0a46a1846541b7bdcb3dafc74b7de7f6576d
Sha256: 2e6139c8fa6e8f3147a49c4a7ef5a2a83625bab2b849eec2427750ad06b9503c
                                        
                                            GET /images/Topdisplay.JPG HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 03 Sep 2022 09:26:13 GMT
Server: Apache/2.2
Last-Modified: Fri, 08 Jan 2016 21:23:34 GMT
ETag: "641393e-7d23-528d9331b6180"
Accept-Ranges: bytes
Content-Length: 32035
Connection: close


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=11, manufacturer=Canon, model=Canon EOS 5D, orientation=upper-left, xresolution=184, yresolution=192, resolutionunit=2, software=Digital Photo Professional, datetime=2012:08:27 14:57:23], baseline, precision 8, 190x111, components 3\012- data
Size:   32035
Md5:    6e4d374ff56b68f43a495394ba25d879
Sha1:   5739d90e85b1e747818039e21a0d1777188e4474
Sha256: ea675d286d61d76ff4658c3907f82db5e511afb864bd084587af6238e1c7f7d9
                                        
                                            GET /images/directional_indicator.gif HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sat, 03 Sep 2022 09:26:13 GMT
Server: Apache/2.2
Last-Modified: Fri, 08 Jan 2016 21:22:24 GMT
ETag: "641391c-5a6a-528d92eef4400"
Accept-Ranges: bytes
Content-Length: 23146
Connection: close


--- Additional Info ---
Magic:  GIF image data, version 89a, 190 x 111\012- data
Size:   23146
Md5:    fc82364405fbc076829c716278902530
Sha1:   8ffb46c4bffffb1832d4ae14222295a8cd50057c
Sha256: 557aff1989be887c0dbefdfa9b2211a5c888e73ea5a84887d5c5de9a5d94b329
                                        
                                            GET /images/_global/separator-toolbar.png HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/style.css

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 03 Sep 2022 09:26:13 GMT
Server: Apache/2.2
Last-Modified: Fri, 08 Jan 2016 21:11:12 GMT
ETag: "67dfc1c-49-528d906e15c00"
Accept-Ranges: bytes
Content-Length: 73
Connection: close


--- Additional Info ---
Magic:  PNG image data, 1 x 11, 8-bit/color RGBA, non-interlaced\012- data
Size:   73
Md5:    8cfe2b0b527660c497d6204d3e7e1af8
Sha1:   964b5b2be943ec7921a952bba7237091047e2bf1
Sha256: 9cd238a2d0c53bb2eed6644d7052ddde90f63f277df1b67974f4d890ca36ea41
                                        
                                            GET /images/karma-sky-blue/bg-big-header-holder.png HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/css/karma-sky-blue.css

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 03 Sep 2022 09:26:13 GMT
Server: Apache/2.2
Last-Modified: Fri, 08 Jan 2016 21:15:31 GMT
ETag: "529d128-184-528d9165162c0"
Accept-Ranges: bytes
Content-Length: 388
Connection: close


--- Additional Info ---
Magic:  PNG image data, 3 x 438, 8-bit/color RGBA, non-interlaced\012- data
Size:   388
Md5:    c754889c2d939005021fed9b3191c09e
Sha1:   160d65c666b4d40d5d69d2f3544e6a819fe5fefb
Sha256: 14b5911a124c1bf85a90b454760be30250869fee87b11a6c3ea34a8f6dcfe3b3
                                        
                                            GET /images/_global/rays-big.png HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/style.css

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 03 Sep 2022 09:26:14 GMT
Server: Apache/2.2
Last-Modified: Fri, 08 Jan 2016 21:11:10 GMT
ETag: "67dfc1a-692b-528d906c2d780"
Accept-Ranges: bytes
Content-Length: 26923
Connection: close


--- Additional Info ---
Magic:  PNG image data, 1425 x 389, 8-bit colormap, non-interlaced\012- data
Size:   26923
Md5:    980a0c5e06e4768cb72c53452db3c959
Sha1:   bb230610049e7048b42cc9900466e73059b6cf61
Sha256: 30b2ef9dfd57736171471687da6059a491b1f675baa9ab68c3ef8d4a2ea02352
                                        
                                            GET /images/_global/seperator-main-nav-dark.png HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/css/karma-sky-blue.css

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 03 Sep 2022 09:26:14 GMT
Server: Apache/2.2
Last-Modified: Fri, 08 Jan 2016 21:11:13 GMT
ETag: "67dfc1e-49-528d906f09e40"
Accept-Ranges: bytes
Content-Length: 73
Connection: close


--- Additional Info ---
Magic:  PNG image data, 1 x 40, 8-bit/color RGBA, non-interlaced\012- data
Size:   73
Md5:    9135ac9b5a4d1a67352bc41cc220785d
Sha1:   aa41d36f0c588dc3b92e28583dba16081ef199c1
Sha256: 286fcd09c4f7ab44180a802eeb324efff8bab99b6c268bb93b3a8d5993c19bbc
                                        
                                            GET /images/Signal_strength_indicator.png HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 03 Sep 2022 09:26:13 GMT
Server: Apache/2.2
Last-Modified: Fri, 08 Jan 2016 21:23:28 GMT
ETag: "6413939-1e691-528d932bfd400"
Accept-Ranges: bytes
Content-Length: 124561
Connection: close


--- Additional Info ---
Magic:  PNG image data, 190 x 111, 8-bit/color RGBA, non-interlaced\012- data
Size:   124561
Md5:    9ab85830fe4bbb3197a7179141d1c9a3
Sha1:   0d2b2f6ee17d2852627da4213ca2fb7429de6248
Sha256: c4d2f2b484eee2f7cef98c68a5e65d6947e9f22b53b49fa65d124199bb1c2c5e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9963
Expires: Sat, 03 Sep 2022 12:12:17 GMT
Date: Sat, 03 Sep 2022 09:26:14 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9963
Expires: Sat, 03 Sep 2022 12:12:17 GMT
Date: Sat, 03 Sep 2022 09:26:14 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7d7b349-4711-4e66-bc42-888934e385a2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7501
x-amzn-requestid: bf297fc4-9164-45ee-bfab-06761a52e3ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X2eMJEP1IAMFdpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312771a-6b3e6416133d67a83d8a1469;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: datd5eYK6nOAUdEpy_y4gcqsVmCqjP4qhzTnlJ9pSrquoYk2PPugTA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 21:49:54 GMT
age: 41780
etag: "f3a3d835a37f9b23e7458f9b7bc721bc415b61cc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7501
Md5:    23b580e2b673257d24b9c2e80c4c48ce
Sha1:   f3a3d835a37f9b23e7458f9b7bc721bc415b61cc
Sha256: c0e3559fde3dd08cdbd360f39dddcc98dd7c1b3aebd0861cc07105872a116d11
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e53e5b7-d429-4f33-bd77-ce946421df55.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4994
x-amzn-requestid: de39357f-d378-4bb8-b4d9-7dd4f82fbb58
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xgj-kEHvoAMFyBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6309b390-119fa01e254e89cb39a1b794;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 06:02:56 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: V6_bFwCNNOb2sZgOQJ8NekZD0pbYwclTg17YlQjCIdKFKGuzfDR0nQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 03:42:03 GMT
age: 20651
etag: "31305131f340191799484f212e15513bd1204e88"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4994
Md5:    60769237af4f32c663d494d91a672d08
Sha1:   31305131f340191799484f212e15513bd1204e88
Sha256: 6df36e459f3a2d0271732b645009b116e6671363f6c3050d22bbfe2d911a77bd
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc55d0c73-4085-42ac-acb4-1ae9b2ffb393.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6976
x-amzn-requestid: da379546-9525-4e13-b9f0-a6446839df66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X2eNeG7kIAMF4-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63127722-37399f67565b06e7111095cd;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 21:35:30 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: alcmiW5Cb3Z96RJNXfz4F54HNERbyV71Q8hqVuNEOTUc48kItzlfHQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 21:49:53 GMT
age: 41781
etag: "af3989072b658e2de119d006ae4ca1703468913d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6976
Md5:    c199f7fc2a2857dec134bfdb2673e28c
Sha1:   af3989072b658e2de119d006ae4ca1703468913d
Sha256: e57411ba0221f6ffa7baf7c374ec790959a66d6a683fad40883ef01cf67e35c3
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe91a99bc-e0f0-4e9a-a1bf-8fdb59ff4c05.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3484
x-amzn-requestid: 519e8ded-66f9-4545-87b8-c9d54ebb9d7a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xzll3HyeoAMF4mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63114fbe-6ba1b6be006041a860b2cb11;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 00:35:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: D_tpY-l84BYfX35nzQMRU1Lr8xmKLeoebGklARmiAuuNTQgAbZ2Z-w==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 09:53:01 GMT
age: 84793
etag: "e9065d619bfc3b8010221b91c4efdf012cc6760a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3484
Md5:    a7224ed75214e01c7c1538ab32a3068a
Sha1:   e9065d619bfc3b8010221b91c4efdf012cc6760a
Sha256: 380b97a517a4d3aba9992d98402622696631407d1224eee7aefd990a6d65fe93
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe9669117-bdb7-4eca-9f0c-900e888a9a98.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13241
x-amzn-requestid: 80083a05-9884-48f8-983b-d4132d7c8a0c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X2eMHFgPIAMF9qg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312771a-16fd2f06541cb4bc027f153f;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: sMzgVvKpAdIumqHzRtYOOYP1Yjy8oQzsn6PIo50kE_3NOlrdsCaohA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 21:49:44 GMT
age: 41790
etag: "087b7d14d84ebb179126c9dcd8964d22f24f30ab"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13241
Md5:    d9ae49d397bc8300ce0eceda8175a3ad
Sha1:   087b7d14d84ebb179126c9dcd8964d22f24f30ab
Sha256: b9daa2fc390a97a4bd622dbdec7fe0fff7e6527ffb844a46b9b87b2bd6e0f006
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6f5d90-39e2-4288-8685-adf2348d38e8.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 14061
x-amzn-requestid: db7b338c-4fb1-46c0-827a-87e43ceacb90
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XjB_aFGyoAMFbeg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630ab062-060509a31e21bd514f736d49;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 00:01:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p_pP4bQ_t2iBcAl5CetPTBaNmV8E_Br_0Mn5qIlGeC8JCmILxA_l6A==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 11:25:41 GMT
age: 79233
etag: "8bdbc6e135be6e582d0e23754399422e3792777b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   14061
Md5:    d78cbff83c152b84864606781a29563d
Sha1:   8bdbc6e135be6e582d0e23754399422e3792777b
Sha256: 3c385de9ade05e1652ccc386e73aaccc4c223a07b81af4c5fdf3f73a166909f7
                                        
                                            GET /images/boats.JPG HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 03 Sep 2022 09:26:13 GMT
Server: Apache/2.2
Last-Modified: Fri, 08 Jan 2016 21:22:23 GMT
ETag: "641391b-1cc58-528d92ee001c0"
Accept-Ranges: bytes
Content-Length: 117848
Connection: close


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=11, manufacturer=Canon, model=Canon EOS 20D, orientation=upper-left, xresolution=184, yresolution=192, resolutionunit=2, software=Digital Photo Professional, datetime=2005:09:03 15:25:10], baseline, precision 8, 438x272, components 3\012- data
Size:   117848
Md5:    d99d5d2b5cb99c771ed1831672a71faa
Sha1:   0f327e67ae8e32f7aa22986503326ec6f4d98274
Sha256: c930442dc2593e481ff98f1f672e3304b588a3e4563365fb59e91064212b4a24
                                        
                                            GET /images/_global/bg-home-banner.png HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/style.css

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 03 Sep 2022 09:26:14 GMT
Server: Apache/2.2
Last-Modified: Fri, 08 Jan 2016 21:10:23 GMT
ETag: "67dfbd5-230e-528d903f5adc0"
Accept-Ranges: bytes
Content-Length: 8974
Connection: close


--- Additional Info ---
Magic:  PNG image data, 941 x 419, 8-bit colormap, non-interlaced\012- data
Size:   8974
Md5:    67463c2ac7b696f07bb2ac143009a6e1
Sha1:   eb93625e0a52df13fd76d8c753590c4fc948b699
Sha256: 071e22b9a9544ae35aeda192064c0da0a3733ebc1c4fb9b2361a53a8f5d7e17e
                                        
                                            GET /images/_global/home-preloader.gif HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/style.css

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sat, 03 Sep 2022 09:26:14 GMT
Server: Apache/2.2
Last-Modified: Fri, 08 Jan 2016 21:10:45 GMT
ETag: "67dfbf6-2a97-528d905455f40"
Accept-Ranges: bytes
Content-Length: 10903
Connection: close


--- Additional Info ---
Magic:  GIF image data, version 89a, 42 x 42\012- data
Size:   10903
Md5:    0781a1e3465931e1bfe8d6a0b51c8706
Sha1:   c2c389181e5efa5cff1f272fc0314faf88d7a8d2
Sha256: 3eea06df4ab5c72ca876b092129f052d48d51b59d390a01567052aa147c24ecc
                                        
                                            GET /images/directional_indicator_arrow.png HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 03 Sep 2022 09:26:13 GMT
Server: Apache/2.2
Last-Modified: Fri, 08 Jan 2016 21:22:29 GMT
ETag: "641391f-1e03d-528d92f3b8f40"
Accept-Ranges: bytes
Content-Length: 122941
Connection: close


--- Additional Info ---
Magic:  PNG image data, 190 x 111, 8-bit/color RGBA, non-interlaced\012- data
Size:   122941
Md5:    6a57885c2c1a91e216fcafb52cd7221f
Sha1:   04fff683882190fa06ed7c28393f5dce9e83957b
Sha256: 3e5016a09be0240cd1f2cfb7e66d8b109db2d66663eb8a7575680caec888cd12
                                        
                                            GET /images/_global/separator3.gif HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/style.css

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sat, 03 Sep 2022 09:26:14 GMT
Server: Apache/2.2
Last-Modified: Fri, 08 Jan 2016 21:11:13 GMT
ETag: "67dfc1d-23-528d906f09e40"
Accept-Ranges: bytes
Content-Length: 35
Connection: close


--- Additional Info ---
Magic:  GIF image data, version 87a, 1 x 2\012- data
Size:   35
Md5:    e72a399423ce7c2eb17ef66b430020a8
Sha1:   2f38d28bbdfa3997f6842521feceef4a4e478adf
Sha256: fed9dee92bf4602c447421776cc01c59bfe85e038094f200cb2dba005951598e
                                        
                                            GET /images/_global/preload-small.gif HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/style.css

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sat, 03 Sep 2022 09:26:14 GMT
Server: Apache/2.2
Last-Modified: Fri, 08 Jan 2016 21:11:07 GMT
ETag: "67dfc17-14c7-528d9069510c0"
Accept-Ranges: bytes
Content-Length: 5319
Connection: close


--- Additional Info ---
Magic:  GIF image data, version 89a, 24 x 24\012- data
Size:   5319
Md5:    e794a67ab0e74da0a512fa44f6198dd1
Sha1:   cd4e35e9bea5e4740486804339628b925b11146b
Sha256: 7a8159df1563be781531c5f7ceb6138fedc68540ce63e65289dd9d10d5c4b321
                                        
                                            GET /images/karma-sky-blue/bg-footer.jpg HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/css/karma-sky-blue.css

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 03 Sep 2022 09:26:14 GMT
Server: Apache/2.2
Last-Modified: Fri, 08 Jan 2016 21:15:33 GMT
ETag: "529d12e-2a3-528d9166fe740"
Accept-Ranges: bytes
Content-Length: 675
Connection: close


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 3x324, components 3\012- data
Size:   675
Md5:    59970a44fa21ffd0ab0dd97b1d5a636b
Sha1:   80cd1d3bfddf72bb7629a1f8688702b59d5daaa6
Sha256: d839d31d789cd119c2678aeab0f50d1f7aad3ed45c4d5798542f6b7f24dd6ec3
                                        
                                            GET /images/karma-sky-blue/bg-footer-bottom.jpg HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/css/karma-sky-blue.css

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Sat, 03 Sep 2022 09:26:14 GMT
Server: Apache/2.2
Last-Modified: Fri, 08 Jan 2016 21:15:33 GMT
ETag: "529d12d-37ea-528d9166fe740"
Accept-Ranges: bytes
Content-Length: 14314
Connection: close


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1300x89, components 3\012- data
Size:   14314
Md5:    a556703b04f0f072fcc6dcb8cde5c9b2
Sha1:   60b2a5feadc0936422b46ac43738e6f6c4559065
Sha256: eef2cf2a7317a6a468e292ea0acc2744e1981b0a6d29184ee1e29461f1c4f2c5
                                        
                                            GET /images/hammerhead%20splash.png HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 03 Sep 2022 09:26:13 GMT
Server: Apache/2.2
Last-Modified: Fri, 08 Jan 2016 21:23:16 GMT
ETag: "6413932-477ef-528d93208b900"
Accept-Ranges: bytes
Content-Length: 292847
Connection: close


--- Additional Info ---
Magic:  PNG image data, 438 x 272, 8-bit/color RGBA, non-interlaced\012- data
Size:   292847
Md5:    99f422c8a4fde66704d61b4e794bb200
Sha1:   cc53e0af7e7df2d1015c0e031077680d0807eb87
Sha256: 57ec401263c0de104b29d610a8eeaf21a15c25ba387c90f42594684dedecf96c
                                        
                                            GET /images/_global/arrow-up-footer.png HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/style.css

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 03 Sep 2022 09:26:14 GMT
Server: Apache/2.2
Last-Modified: Fri, 08 Jan 2016 21:10:04 GMT
ETag: "67dfbb6-d3-528d902d3c300"
Accept-Ranges: bytes
Content-Length: 211
Connection: close


--- Additional Info ---
Magic:  PNG image data, 11 x 9, 8-bit/color RGBA, non-interlaced\012- data
Size:   211
Md5:    f62ff2e9b33430d6714e55e01875d541
Sha1:   1cc05a413f8099b774f8685ff6c7441f3985a42c
Sha256: 9b1e0a44eb489629fb8c18c629468d79bdd2802d02d6088b1aa63f5cefbab429
                                        
                                            GET /images/_global/image-frame-sprite-2.png HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/style.css

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 03 Sep 2022 09:26:14 GMT
Server: Apache/2.2
Last-Modified: Fri, 08 Jan 2016 21:10:51 GMT
ETag: "67dfbfd-af3d-528d905a0ecc0"
Accept-Ranges: bytes
Content-Length: 44861
Connection: close


--- Additional Info ---
Magic:  PNG image data, 1025 x 2082, 8-bit colormap, non-interlaced\012- data
Size:   44861
Md5:    e85442e297fd16d2d623b32459697b0e
Sha1:   5828712f17a22fab2aff00465229c0e40e15f438
Sha256: d60b160ec2719a3fc66ba2600d0787e6d9d6dd6d52e92edd3f49511b39577dc7
                                        
                                            GET /images/_global/global-sprite.png HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/css/karma-sky-blue.css

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 03 Sep 2022 09:26:15 GMT
Server: Apache/2.2
Last-Modified: Fri, 08 Jan 2016 21:10:45 GMT
ETag: "67dfbf5-1050e-528d905455f40"
Accept-Ranges: bytes
Content-Length: 66830
Connection: close


--- Additional Info ---
Magic:  PNG image data, 1200 x 1803, 8-bit/color RGBA, non-interlaced\012- data
Size:   66830
Md5:    d25a7348e20c7f37a11d7d2f94234a9a
Sha1:   d50c704de9ae7474c1219fbc26ad4e399b3616be
Sha256: f08b5b0cbf40592207333658fa80e8cbd537d3312a2223747d742d9cb14c41df
                                        
                                            GET /images/RF-finding-systems-logo.png HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 03 Sep 2022 09:26:15 GMT
Server: Apache/2.2
Last-Modified: Fri, 08 Jan 2016 21:23:24 GMT
ETag: "6413937-1ae77-528d93282cb00"
Accept-Ranges: bytes
Content-Length: 110199
Connection: close


--- Additional Info ---
Magic:  PNG image data, 250 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size:   110199
Md5:    6a8a161fcc3c31160394fbcffc311509
Sha1:   a327b1e7707fbfaad28070b17e7a9e9f91f8c8c8
Sha256: d4a73575b03ecdc745d642ae556c28f0a45c0bfceb6d6c08221818b508ca2095
                                        
                                            GET /images/_global/shadowBG.png HTTP/1.1 
Host: rffindingsystems.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rffindingsystems.com/style.css

                                         
                                         66.113.226.190
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 03 Sep 2022 09:26:16 GMT
Server: Apache/2.2
Last-Modified: Fri, 08 Jan 2016 21:11:20 GMT
ETag: "67dfc23-c69-528d9075b6e00"
Accept-Ranges: bytes
Content-Length: 3177
Connection: close


--- Additional Info ---
Magic:  PNG image data, 456 x 309, 8-bit colormap, non-interlaced\012- data
Size:   3177
Md5:    6934065ffa6974b056bc120c9cbfd1ca
Sha1:   eccd5f105767fa4e777c4c38c26b0ecbdbc5cfcf
Sha256: adfcb3eafeec75daa73fd730ebd84b92d00ef02deeaa5206c102092510fe7ac0