Overview

URL pink.university/
IP162.210.102.202
ASNSTEADFAST
Location United States
Report completed2022-09-16 12:07:34 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
mnemonic secure dns  No alerts detected
Quad9 DNS
Scan Date Severity Indicator Comment
2022-09-16 2 pink.university Sinkholed
2022-09-16 2 pink.university Sinkholed
2022-09-16 2 pink.university Sinkholed
2022-09-16 2 pink.university Sinkholed
2022-09-16 2 pink.university Sinkholed
2022-09-16 2 pink.university Sinkholed
2022-09-16 2 pink.university Sinkholed
2022-09-16 2 pink.university Sinkholed
2022-09-16 2 pink.university Sinkholed
2022-09-16 2 pink.university Sinkholed
2022-09-16 2 pink.university Sinkholed
2022-09-16 2 pink.university Sinkholed
2022-09-16 2 pink.university Sinkholed
2022-09-16 2 pink.university Sinkholed
2022-09-16 2 pink.university Sinkholed
2022-09-16 2 pink.university Sinkholed
2022-09-16 2 pink.university Sinkholed
2022-09-16 2 pink.university Sinkholed
2022-09-16 2 pink.university Sinkholed


Files

No files detected



Passive DNS (8)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-16 05:11:10 UTC 54.187.160.31
mnemonic passive DNS img-getpocket.cdn.mozilla.net (3) 1631 2017-09-01 03:40:57 UTC 2022-09-16 10:44:45 UTC 34.120.237.76
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-09-16 09:00:17 UTC 143.204.55.36
mnemonic passive DNS r3.o.lencr.org (4) 344 2020-12-02 08:52:13 UTC 2022-09-16 04:41:23 UTC 23.36.77.32
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-16 04:25:30 UTC 143.204.55.49
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-16 04:23:36 UTC 34.117.237.239
mnemonic passive DNS pink.university (19) 0 2020-10-20 17:06:01 UTC 2021-11-08 09:06:41 UTC 162.210.102.202 Unknown ranking
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-16 11:03:39 UTC 93.184.220.29


Recent reports on same IP/ASN/Domain/Screenshot

Last 3 reports on IP: 162.210.102.202

Date UQ / IDS / BL URL IP
2022-09-30 02:26:52 +0000
0 - 0 - 1 abacos.ar/office.rar 162.210.102.202
2022-09-29 20:00:21 +0000
0 - 0 - 1 abacos.ar/office.rar 162.210.102.202
2022-09-16 12:07:34 +0000
0 - 0 - 19 pink.university/ 162.210.102.202

Last 5 reports on ASN: STEADFAST

Date UQ / IDS / BL URL IP
2022-12-09 03:51:02 +0000
0 - 0 - 2 readersretreat.com/antibiogiganten/5905ca3171 (...) 208.117.6.130
2022-12-09 03:39:47 +0000
0 - 0 - 2 readersretreat.com/antibiogiganten/b3077c4158 (...) 208.117.6.130
2022-12-09 03:33:19 +0000
0 - 0 - 2 readersretreat.com/changegiganten/7530b67eb12 (...) 208.117.6.130
2022-12-09 03:29:59 +0000
0 - 0 - 2 readersretreat.com/appledata/440d466eea4bd523 (...) 208.117.6.130
2022-12-09 03:25:14 +0000
0 - 0 - 2 readersretreat.com/changegiganten/ee6a246a734 (...) 208.117.6.130

Last 1 reports on domain: pink.university

Date UQ / IDS / BL URL IP
2022-09-16 12:07:34 +0000
0 - 0 - 19 pink.university/ 162.210.102.202

No other reports with similar screenshot



JavaScript

Executed Scripts (14)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (32)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 16 Sep 2022 11:10:47 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FuGeX9AJIfz9jmmFdejx1WXdi-6ZHHplkbMWVXneVPFsO7mhnZyrPQ==
Age: 3397


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    b593eb39329cfe060d55be5e4a5405e2
Sha1:   78e46c1028e9f94f8569303ad2d90d7df13a059a
Sha256: 08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "FEF9CE9F75EC19E7AE2CCBFFB6654DB2473A2B4ACC94C1B4303E5EC24149465F"
Last-Modified: Thu, 15 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11544
Expires: Fri, 16 Sep 2022 15:19:48 GMT
Date: Fri, 16 Sep 2022 12:07:24 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.49
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 16 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PceI8lVYj_s_cBOJbGMNMpZjuKurTZhSt5_YgkRixtHnafI1rDz6Xw==
age: 27129
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Fri, 16 Sep 2022 12:07:24 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 16 Sep 2022 12:03:22 GMT
Cache-Control: max-age=3600
Expires: Fri, 16 Sep 2022 12:48:26 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8yh1kl6mJekxVnnGbUn_CrjSOsz5dQkbtJ6gPFouG4E75Cou9L4Ghw==
Age: 242


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET / HTTP/1.1 
Host: pink.university
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         162.210.102.202
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Fri, 16 Sep 2022 12:07:24 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Content-Language: en
Content-Script-Type: text/javascript
Content-Style-Type: text/css
X-UA-Compatible: IE=edge
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0, no-transform
Pragma: no-cache
Expires: Mon, 20 Aug 1969 09:23:00 GMT
X-Frame-Options: sameorigin
Set-Cookie: MoodleSession=b6841a1e9777006240c8fa34e2f6ec74; path=/
Last-Modified: Fri, 16 Sep 2022 12:07:24 GMT
Accept-Ranges: none, none
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (11752)
Size:   6553
Md5:    67c4d74736ae3f906b287793f48651fc
Sha1:   064525fdfc98fe12f226783c6623e988a537ce95
Sha256: 58dc833ae63173cff742bffa9cc5ba56f50837b8591cd95efc427f3579c59ad2

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6016
Cache-Control: 'max-age=158059'
Date: Fri, 16 Sep 2022 12:07:24 GMT
Last-Modified: Fri, 16 Sep 2022 10:27:08 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /theme/yui_combo.php?rollup/3.17.2/yui-moodlesimple-min.css HTTP/1.1 
Host: pink.university
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pink.university/
Cookie: MoodleSession=b6841a1e9777006240c8fa34e2f6ec74

                                         
                                         162.210.102.202
HTTP/1.1 200 OK
Content-Type: text/css;charset=UTF-8
                                        
Date: Fri, 16 Sep 2022 12:07:24 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Content-Disposition: inline; filename="combo"
Expires: Mon, 11 Sep 2023 12:07:24 GMT
Pragma:
Cache-Control: public, max-age=31104000, immutable
Content-Encoding: gzip
Vary: Accept-Encoding,User-Agent
Last-Modified: Sat, 07 May 2022 17:04:54 GMT
Accept-Ranges: none, none
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (1965)
Size:   1031
Md5:    954717f56656e687295097c986703269
Sha1:   eacac549df0a6f873918b09c167f67683363484f
Sha256: 3736a081935aebfecde262efb24be923f7019e02c8719e12e8867bb581a84ebe

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /lib/javascript.php/1652686147/lib/requirejs/require.min.js HTTP/1.1 
Host: pink.university
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pink.university/
Cookie: MoodleSession=b6841a1e9777006240c8fa34e2f6ec74

                                         
                                         162.210.102.202
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Fri, 16 Sep 2022 12:07:24 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Content-Disposition: inline; filename="javascript.php"
Expires: Thu, 15 Dec 2022 12:07:25 GMT
Pragma:
Cache-Control: public, max-age=7776000, immutable
Content-Encoding: gzip
Vary: Accept-Encoding,User-Agent
Last-Modified: Mon, 16 May 2022 07:30:42 GMT
Accept-Ranges: none, none
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (17535)
Size:   6662
Md5:    d52d474e00d80d4373cf714f60707c21
Sha1:   74b5d832a55bf81a1b2fd875f83f022c5ffc7c3b
Sha256: 4f1792c3aac9ca2058376a43582f0d1fad13e602a5aeec4a1a6fb1803719ba99

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /lib/javascript.php/1652686147/lib/javascript-static.js HTTP/1.1 
Host: pink.university
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pink.university/
Cookie: MoodleSession=b6841a1e9777006240c8fa34e2f6ec74

                                         
                                         162.210.102.202
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Fri, 16 Sep 2022 12:07:24 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Content-Disposition: inline; filename="javascript.php"
Expires: Thu, 15 Dec 2022 12:07:25 GMT
Pragma:
Cache-Control: public, max-age=7776000, immutable
Content-Encoding: gzip
Vary: Accept-Encoding,User-Agent
Last-Modified: Mon, 16 May 2022 07:30:42 GMT
Accept-Ranges: none, none
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (1875)
Size:   6812
Md5:    71c0986b7353ce9fa8abf6d0e4d3a1ab
Sha1:   a902f85fd0bc00eb63f19c201636ec2c52cc5e45
Sha256: f13654681d02d6597b044b73eb021d54129833b20c2ca93138346fbfc13a5169

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /theme/styles.php/boost/1652686147_1/all HTTP/1.1 
Host: pink.university
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pink.university/
Cookie: MoodleSession=b6841a1e9777006240c8fa34e2f6ec74

                                         
                                         162.210.102.202
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Date: Fri, 16 Sep 2022 12:07:24 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Content-Disposition: inline; filename="styles.php"
Expires: Thu, 15 Dec 2022 12:07:24 GMT
Pragma:
Cache-Control: public, max-age=7776000, immutable
Content-Encoding: gzip
Vary: Accept-Encoding,User-Agent
Last-Modified: Mon, 16 May 2022 07:30:48 GMT
Accept-Ranges: none, none
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Size:   119922
Md5:    4faec97eae99a296ba4609841d678864
Sha1:   6e5bbaba7fe19290756d3c6b46fff148ff199041
Sha256: 50d371e582f2616aa0dba7dd7159b18331df3db044bb4d912dbc53fed7fc4337

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /lib/javascript.php/1652686147/lib/polyfills/polyfill.js HTTP/1.1 
Host: pink.university
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pink.university/
Cookie: MoodleSession=b6841a1e9777006240c8fa34e2f6ec74

                                         
                                         162.210.102.202
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Fri, 16 Sep 2022 12:07:24 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Content-Disposition: inline; filename="javascript.php"
Expires: Thu, 15 Dec 2022 12:07:25 GMT
Pragma:
Cache-Control: public, max-age=7776000, immutable
Content-Encoding: gzip
Vary: Accept-Encoding,User-Agent
Last-Modified: Mon, 16 May 2022 07:30:42 GMT
Accept-Ranges: none, none
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (36874)
Size:   60482
Md5:    ce9415d2c1929e4a1b7d898589fe26af
Sha1:   075322fe75631ff4465484d633c504b90502e761
Sha256: 1178b68f63a7c959c95d189d57c8688ea44ec623cddfc86b2abe8cf08e3b837c

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /theme/yui_combo.php?rollup/3.17.2/yui-moodlesimple-min.js HTTP/1.1 
Host: pink.university
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pink.university/
Cookie: MoodleSession=b6841a1e9777006240c8fa34e2f6ec74

                                         
                                         162.210.102.202
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 12:07:24 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Content-Disposition: inline; filename="combo"
Expires: Mon, 11 Sep 2023 12:07:25 GMT
Pragma:
Cache-Control: public, max-age=31104000, immutable
Content-Encoding: gzip
Vary: Accept-Encoding,User-Agent
Last-Modified: Sat, 07 May 2022 17:04:54 GMT
Accept-Ranges: none, none
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (6010)
Size:   84392
Md5:    8bcb376a1000018ace15774394400419
Sha1:   2f8e8e67c1c31bac12aca22f482c3ef33a28a7a7
Sha256: ba65826c64be1db28f1d0549c4dcce3598464e4da1154b26b28e6d6c58db25af

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /theme/yui_combo.php?m/1652686147/core/event/event-min.js&m/1652686147/filter_mathjaxloader/loader/loader-min.js HTTP/1.1 
Host: pink.university
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pink.university/
Cookie: MoodleSession=b6841a1e9777006240c8fa34e2f6ec74

                                         
                                         162.210.102.202
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 12:07:25 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Content-Disposition: inline; filename="combo"
Expires: Mon, 11 Sep 2023 12:07:25 GMT
Pragma:
Cache-Control: public, max-age=31104000, immutable
Content-Encoding: gzip
Vary: Accept-Encoding,User-Agent
Last-Modified: Sat, 07 May 2022 17:04:54 GMT
Accept-Ranges: none, none
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (2627), with no line terminators
Size:   1047
Md5:    ed721a80e424f86e1ab0d36ddbb1b2d0
Sha1:   6401cd77a250b875c3af769f56d0afa81acf5af7
Sha256: a1d7d3b73b7c5f5d7447c54b0c4c1b8058ad5ac9352f451cffc55db050df9112

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NB7L4l4FF4tb4+Sd6domjw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         54.187.160.31
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 05e4SdctESdiDGb6QSxRf9/FgoM=

                                        
                                            GET /theme/font.php/boost/core/1652686147/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1 
Host: pink.university
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://pink.university/theme/styles.php/boost/1652686147_1/all
Cookie: MoodleSession=b6841a1e9777006240c8fa34e2f6ec74

                                         
                                         162.210.102.202
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Date: Fri, 16 Sep 2022 12:07:25 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Content-Disposition: inline; filename="fontawesome-webfont.woff2"
Expires: Thu, 15 Dec 2022 12:07:25 GMT
Pragma:
Cache-Control: public, max-age=7776000, immutable
Accept-Ranges: none
Etag: "14acb32f0d9a64169c96c3b37ead9332bb0569b0"
Last-Modified: Mon, 16 May 2022 07:30:50 GMT
Content-Length: 77160
Vary: User-Agent
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size:   77160
Md5:    af7ae505a9eed503f8b8e6982036873e
Sha1:   d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
Sha256: 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /lib/requirejs.php/1652686147/core_form/events.js HTTP/1.1 
Host: pink.university
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pink.university/
Cookie: MoodleSession=b6841a1e9777006240c8fa34e2f6ec74

                                         
                                         162.210.102.202
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Fri, 16 Sep 2022 12:07:25 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Content-Disposition: inline; filename="requirejs.php"
Expires: Thu, 15 Dec 2022 12:07:26 GMT
Pragma:
Cache-Control: public, max-age=7776000, immutable
Content-Encoding: gzip
Vary: Accept-Encoding,User-Agent
Last-Modified: Mon, 16 May 2022 07:30:51 GMT
Accept-Ranges: none, none
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (41361)
Size:   459638
Md5:    a2b566d6d9ef97d4a152c91a47a9ca96
Sha1:   19b96045edf97c008800b7fcbe45f5744c1a6d50
Sha256: 6f87864e983380d4b2d325c792e12539df3f0f5df627b7fd1366294444a39cad

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /theme/image.php/boost/theme/1652686147/favicon HTTP/1.1 
Host: pink.university
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pink.university/
Cookie: MoodleSession=b6841a1e9777006240c8fa34e2f6ec74

                                         
                                         162.210.102.202
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Date: Fri, 16 Sep 2022 12:07:26 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Content-Disposition: inline; filename="favicon.ico"
Expires: Thu, 15 Dec 2022 12:07:26 GMT
Pragma:
Cache-Control: public, max-age=7776000, no-transform, immutable
Accept-Ranges: none
Etag: "d84058b2311610b7af8a616508807683be7b7105"
Last-Modified: Mon, 16 May 2022 07:30:49 GMT
Content-Length: 1150
Vary: User-Agent
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size:   1150
Md5:    135aed33c0a7b8f44f0227a71b9ce345
Sha1:   120e10c8a17aebb31c74b6988f8bce9b05dd6606
Sha256: 7afbabec7cddb87ab3b2c3f56509ca9c8f76925db0570372f1a6a366606be1b4

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10201
Expires: Fri, 16 Sep 2022 14:57:27 GMT
Date: Fri, 16 Sep 2022 12:07:26 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10201
Expires: Fri, 16 Sep 2022 14:57:27 GMT
Date: Fri, 16 Sep 2022 12:07:26 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10201
Expires: Fri, 16 Sep 2022 14:57:27 GMT
Date: Fri, 16 Sep 2022 12:07:26 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee084149-a07d-4141-a484-d9f352209914.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9904
x-amzn-requestid: a23cb4b3-db6e-48ae-90b1-3ecf6478bf52
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhVDpH_CIAMFl4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239bb0-15869210609a18587467d1e2;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:40:00 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: JyXQcHKFIksMgLMROqOfV1ZqdFKSp3QSIlGmXuDR6h88o9J6s-mgkw==
via: 1.1 1002c05e647d0804e83147cdd205d14a.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 22:14:32 GMT
age: 49974
etag: "8e1090346d90bc69e7a95384e6a7a01154e31567"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9904
Md5:    e6d17788c7d2a1a91e68eff48df14bd1
Sha1:   8e1090346d90bc69e7a95384e6a7a01154e31567
Sha256: 1e1eefa02e4c55e73be87a309ad5c2335856125cb678cff6ebc42c5ff73a0e2b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7e55a42-9f36-46db-9415-ab10753c0fb8.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10163
x-amzn-requestid: 7c849e5d-468e-4f6a-ad44-c7995bfa81bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYvuGFU5oAMF_Og=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202cc0-5376d2432c79a3146b6c29f4;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:09:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: J5lOTqdLhgg3Hzfw3b86ScfLkODllGEA_y9xUSxBxBCS4sI5nAWKZQ==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 23:35:10 GMT
age: 45136
etag: "10262867cfb19d3ba8f618e235d1a98531048f34"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10163
Md5:    3a4ed510756efe784c4ca84c61c4b5ba
Sha1:   10262867cfb19d3ba8f618e235d1a98531048f34
Sha256: b5ba0de5ce381579e49e3e3c23244048fc8aac693ce0c977560f28b9a51f6a0b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8435
x-amzn-requestid: f6efd924-4f54-41a6-8771-087803b5b8ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhU0-EJaoAMFvtQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239b52-37c21ee857fe27d104b70337;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:38:26 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hhh1q_MrZVAaRWwmc1IuJbL3KhhwwHQgceaL15okbg4NvKJlWfUjyA==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 22:02:34 GMT
age: 50692
etag: "b6e634ef27eba9da38c6472565e0fdca6898e4f0"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8435
Md5:    b7d4ee58e0f26ec6817dbab72aa7db6d
Sha1:   b6e634ef27eba9da38c6472565e0fdca6898e4f0
Sha256: 07db05a6ee70a699164ad55da47bfca58e6639956e256d902cbe0388cd7995c6
                                        
                                            GET /lib/requirejs.php/1652686147/core/first.js HTTP/1.1 
Host: pink.university
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pink.university/
Cookie: MoodleSession=b6841a1e9777006240c8fa34e2f6ec74

                                         
                                         162.210.102.202
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Fri, 16 Sep 2022 12:07:25 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Content-Disposition: inline; filename="requirejs.php"
Expires: Thu, 15 Dec 2022 12:07:25 GMT
Pragma:
Cache-Control: public, max-age=7776000, immutable
Content-Encoding: gzip
Vary: Accept-Encoding,User-Agent
Last-Modified: Mon, 16 May 2022 07:30:51 GMT
Accept-Ranges: none, none
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (41361)
Size:   459638
Md5:    a2b566d6d9ef97d4a152c91a47a9ca96
Sha1:   19b96045edf97c008800b7fcbe45f5744c1a6d50
Sha256: 6f87864e983380d4b2d325c792e12539df3f0f5df627b7fd1366294444a39cad

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /lib/javascript.php/1652686147/lib/jquery/jquery-3.6.0.min.js HTTP/1.1 
Host: pink.university
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pink.university/
Cookie: MoodleSession=b6841a1e9777006240c8fa34e2f6ec74

                                         
                                         162.210.102.202
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Fri, 16 Sep 2022 12:07:26 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Content-Disposition: inline; filename="javascript.php"
Expires: Thu, 15 Dec 2022 12:07:26 GMT
Pragma:
Cache-Control: public, max-age=7776000, immutable
Content-Encoding: gzip
Vary: Accept-Encoding,User-Agent
Last-Modified: Mon, 16 May 2022 07:30:52 GMT
Accept-Ranges: none, none
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   30906
Md5:    b356459fdf4586cb17866ee79db1a740
Sha1:   c810ffed64e9eafe9f80b0609858ec77b1cf2ea7
Sha256: b5cadc039eec1ec56b1e533d5910e0f9b6c12388339c93854025cc29644d6e74

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /theme/yui_combo.php?3.17.2/event-mousewheel/event-mousewheel-min.js&3.17.2/event-resize/event-resize-min.js&3.17.2/event-hover/event-hover-min.js&3.17.2/event-touch/event-touch-min.js&3.17.2/event-move/event-move-min.js&3.17.2/event-flick/event-flick-min.js&3.17.2/event-valuechange/event-valuechange-min.js&3.17.2/event-tap/event-tap-min.js HTTP/1.1 
Host: pink.university
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pink.university/
Cookie: MoodleSession=b6841a1e9777006240c8fa34e2f6ec74

                                         
                                         162.210.102.202
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 16 Sep 2022 12:07:27 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Content-Disposition: inline; filename="combo"
Expires: Mon, 11 Sep 2023 12:07:27 GMT
Pragma:
Cache-Control: public, max-age=31104000, immutable
Content-Encoding: gzip
Vary: Accept-Encoding,User-Agent
Last-Modified: Sat, 07 May 2022 17:04:54 GMT
Accept-Ranges: none, none
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (3857)
Size:   4808
Md5:    713bb7fd594c64c3598edc178658783a
Sha1:   5cf119be436a34e733ca1fee6c41b3c8350cedaf
Sha256: f5cfc9a7087a218ad9951e7e5d22bade76acb58ccac10f3ca1ec891299b6735e

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /lib/ajax/service-nologin.php?info=core_get_string&cachekey=1652686147&args=%5B%7B%22index%22%3A0%2C%22methodname%22%3A%22core_get_string%22%2C%22args%22%3A%7B%22stringid%22%3A%22changesmadereallygoaway%22%2C%22stringparams%22%3A%5B%5D%2C%22component%22%3A%22moodle%22%2C%22lang%22%3A%22en%22%7D%7D%5D HTTP/1.1 
Host: pink.university
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://pink.university/
Cookie: MoodleSession=b6841a1e9777006240c8fa34e2f6ec74

                                         
                                         162.210.102.202
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
                                        
Date: Fri, 16 Sep 2022 12:07:27 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Expires: Thu, 15 Dec 2022 12:07:27 GMT
Pragma:
Cache-Control: public, max-age=7776000, immutable
Accept-Ranges: none
Vary: User-Agent
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   111
Md5:    aa4910d44753abc18bf53998693d909d
Sha1:   96a26d0478af621a4df6bde7cbc05a8176806903
Sha256: 28824dbe3abcada0b65643717944a5f84416d44cbb5b5e478cb25bbc56d4e7a0

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST /lib/ajax/service.php?sesskey=wDrDsDkQlG&info=media_videojs_get_language HTTP/1.1 
Host: pink.university
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Content-Length: 76
Origin: http://pink.university
Connection: keep-alive
Referer: http://pink.university/
Cookie: MoodleSession=b6841a1e9777006240c8fa34e2f6ec74

                                         
                                         162.210.102.202
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
                                        
Date: Fri, 16 Sep 2022 12:07:27 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: User-Agent
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (4531), with no line terminators
Size:   4531
Md5:    1d55bc8fb15ace98616b30027310a057
Sha1:   1109dee50f7660eb75b2ec7dfc5889434d91351c
Sha256: aaf9075c9b35ee27d05a21e89ec43d1b2013a8151360e59050c8977edd33d5b8

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /lib/ajax/service-nologin.php?info=core_output_load_fontawesome_icon_system_map&cachekey=1652686147&args=%5B%7B%22index%22%3A0%2C%22methodname%22%3A%22core_output_load_fontawesome_icon_system_map%22%2C%22args%22%3A%7B%22themename%22%3A%22boost%22%7D%7D%5D HTTP/1.1 
Host: pink.university
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://pink.university/
Cookie: MoodleSession=b6841a1e9777006240c8fa34e2f6ec74

                                         
                                         162.210.102.202
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
                                        
Date: Fri, 16 Sep 2022 12:07:27 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Expires: Thu, 15 Dec 2022 12:07:27 GMT
Pragma:
Cache-Control: public, max-age=7776000, immutable
Accept-Ranges: none
Vary: User-Agent
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (31471), with no line terminators
Size:   31471
Md5:    c3f3a161ac516f2586d8db05bacc8bfb
Sha1:   5d8259e65e4abe2b8b2ed4f76516f6f96c4d0349
Sha256: 35d5c5f5ec16b14b99861a50c21ec12c51df39a3901afabd1bbca48c0ce48986

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /lib/ajax/service-nologin.php?info=6-method-calls&cachekey=1652686147&args=%5B%7B%22index%22%3A0%2C%22methodname%22%3A%22core_get_string%22%2C%22args%22%3A%7B%22stringid%22%3A%22cancel%22%2C%22stringparams%22%3A%5B%5D%2C%22component%22%3A%22core%22%2C%22lang%22%3A%22en%22%7D%7D%2C%7B%22index%22%3A1%2C%22methodname%22%3A%22core_get_string%22%2C%22args%22%3A%7B%22stringid%22%3A%22closebuttontitle%22%2C%22stringparams%22%3A%5B%5D%2C%22component%22%3A%22core%22%2C%22lang%22%3A%22en%22%7D%7D%2C%7B%22index%22%3A2%2C%22methodname%22%3A%22core_get_string%22%2C%22args%22%3A%7B%22stringid%22%3A%22loading%22%2C%22stringparams%22%3A%5B%5D%2C%22component%22%3A%22core%22%2C%22lang%22%3A%22en%22%7D%7D%2C%7B%22index%22%3A3%2C%22methodname%22%3A%22core_get_string%22%2C%22args%22%3A%7B%22stringid%22%3A%22savechanges%22%2C%22stringparams%22%3A%5B%5D%2C%22component%22%3A%22core%22%2C%22lang%22%3A%22en%22%7D%7D%2C%7B%22index%22%3A4%2C%22methodname%22%3A%22core_get_string%22%2C%22args%22%3A%7B%22stringid%22%3A%22showless%22%2C%22stringparams%22%3A%5B%5D%2C%22component%22%3A%22core_form%22%2C%22lang%22%3A%22en%22%7D%7D%2C%7B%22index%22%3A5%2C%22methodname%22%3A%22core_get_string%22%2C%22args%22%3A%7B%22stringid%22%3A%22showmore%22%2C%22stringparams%22%3A%5B%5D%2C%22component%22%3A%22core_form%22%2C%22lang%22%3A%22en%22%7D%7D%5D HTTP/1.1 
Host: pink.university
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://pink.university/
Cookie: MoodleSession=b6841a1e9777006240c8fa34e2f6ec74

                                         
                                         162.210.102.202
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
                                        
Date: Fri, 16 Sep 2022 12:07:27 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Expires: Thu, 15 Dec 2022 12:07:27 GMT
Pragma:
Cache-Control: public, max-age=7776000, immutable
Accept-Ranges: none
Vary: User-Agent
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   211
Md5:    c135ebb8306e47146c197265b9c9022b
Sha1:   425c439b399cc4a29df884f4ac5aa75505944c2c
Sha256: afefe583c5a695189962783424716b19758b2a08e71480cb91a73c88c98a20be

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /lib/ajax/service-nologin.php?info=core_output_load_template_with_dependencies,core_output_load_template_with_dependencies,core_output_load_template_with_dependencies,core_output_load_template_with_dependencies&cachekey=1652686147&args=%5B%7B%22index%22%3A0%2C%22methodname%22%3A%22core_output_load_template_with_dependencies%22%2C%22args%22%3A%7B%22component%22%3A%22core%22%2C%22template%22%3A%22loading%22%2C%22themename%22%3A%22boost%22%2C%22lang%22%3A%22en%22%7D%7D%2C%7B%22index%22%3A1%2C%22methodname%22%3A%22core_output_load_template_with_dependencies%22%2C%22args%22%3A%7B%22component%22%3A%22core%22%2C%22template%22%3A%22modal%22%2C%22themename%22%3A%22boost%22%2C%22lang%22%3A%22en%22%7D%7D%2C%7B%22index%22%3A2%2C%22methodname%22%3A%22core_output_load_template_with_dependencies%22%2C%22args%22%3A%7B%22component%22%3A%22core%22%2C%22template%22%3A%22modal_backdrop%22%2C%22themename%22%3A%22boost%22%2C%22lang%22%3A%22en%22%7D%7D%2C%7B%22index%22%3A3%2C%22methodname%22%3A%22core_output_load_template_with_dependencies%22%2C%22args%22%3A%7B%22component%22%3A%22core%22%2C%22template%22%3A%22pix_icon_fontawesome%22%2C%22themename%22%3A%22boost%22%2C%22lang%22%3A%22en%22%7D%7D%5D HTTP/1.1 
Host: pink.university
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://pink.university/
Cookie: MoodleSession=b6841a1e9777006240c8fa34e2f6ec74

                                         
                                         162.210.102.202
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
                                        
Date: Fri, 16 Sep 2022 12:07:27 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Expires: Thu, 15 Dec 2022 12:07:28 GMT
Pragma:
Cache-Control: public, max-age=7776000, immutable
Accept-Ranges: none
Vary: User-Agent
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (2366), with no line terminators
Size:   2366
Md5:    277cbffc8b01633c828dc3c8745240ae
Sha1:   67c5c5c693b256710fe2c8d51a9ac72541dc3a57
Sha256: 09604128b770c0e743538b387c387056ab0eb8108d7b700e98affe9d18d55a52

Alerts:
  Blocklists:
    - quad9: Sinkholed