| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash2d2e7649ce9e9ba6fc8b68aa89352e3c 0153d1d3d830a457043e16bb40d48a0b9ddef4b8 8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3728
Expires: Thu, 01 Dec 2022 07:26:34 GMT
Date: Thu, 01 Dec 2022 06:24:26 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashf3cf023c797da81728c0ac84c8759331 fa07c5e39e4b0741ea484101cccb2202acea9d9c 5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1351
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 06:24:26 GMT
Last-Modified: Thu, 01 Dec 2022 06:01:55 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
|
|
| docs.essand.com/ | 74.208.242.159 | 301 Moved Permanently | 162 B |
IP74.208.242.159:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET / HTTP/1.1
Host: docs.essand.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 01 Dec 2022 06:24:08 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://docs.essand.com/
|
|
| firefox.settings.services.mozilla.com/v1/ | 34.102.187.140 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash30db107dcf4380cef05efea409c2e6a3 96e6a306fbc07299aba64e5c14e2bfca35872fa9 b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 06:19:45 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 281
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash9fce5679881bf302a8978a0b462f01a9 b699fe030ea13ac73813e655c42ed9b531925e2b a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2849
Expires: Thu, 01 Dec 2022 07:11:55 GMT
Date: Thu, 01 Dec 2022 06:24:26 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash9ebddc2b260d081ebbefee47c037cb28 492bad62a7ca6a74738921ef5ae6f0be5edebf39 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: FEqKifC6ZqtXq+ox0y4LiKWCcqdGKC8zewYIvAwkhYU5+TEVXYB7SN07ficmfy1EOnVhIvBZIBU=
x-amz-request-id: JDDYXB8X2X66RRTS
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 05:46:09 GMT
age: 2297
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 06:24:26 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash7cb3a5f352c147d5051c32202f19e907 6bef95328c4f02d6c3e75b6e182bec487ef05da0 6334e6a5f08a2ad6f57afb7f7779477e6aabf345a4d456ed9be9fa64b0c807de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6334E6A5F08A2AD6F57AFB7F7779477E6AABF345A4D456ED9BE9FA64B0C807DE"
Last-Modified: Mon, 28 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21556
Expires: Thu, 01 Dec 2022 12:23:43 GMT
Date: Thu, 01 Dec 2022 06:24:27 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 34.102.187.140 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 06:11:15 GMT
cache-control: public,max-age=3600
age: 792
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashcfdd00e67ee6ca21712b867eb5288ab6 b61d5d6ec3b7ad71619e13e32c87f2d01871b88a f740cac6dfedc1bf0f82efb10dac4f6ffb22f9bb5d4a9b68a4cd971dd2f65793
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1334
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 06:24:27 GMT
Last-Modified: Thu, 01 Dec 2022 06:02:13 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
|
|
| push.services.mozilla.com/ | 54.149.83.187 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP54.149.83.187:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: kt2WP/yFr8Dqm1CnW9iEug==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: GiM9fm2EC/kOvp7DXewKXyyfKzs=
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashcc016da6c100a3e333c24f82b2c59327 d2cbaf051c100454d1298ac8e68fd7b65cafe746 de839f7700e3fec1761d468f8d3e945dcd78d61dc5016ad564dcb05cef8877ef
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5938
Cache-Control: max-age=94868
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 06:24:28 GMT
Etag: "638700fe-1d7"
Expires: Fri, 02 Dec 2022 08:45:36 GMT
Last-Modified: Wed, 30 Nov 2022 07:06:38 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
|
|
| docs.essand.com/logo.png | 74.208.242.159 | 200 OK | 5.4 kB |
IP74.208.242.159:0
File typePNG image data, 91 x 86, 8-bit/color RGBA, non-interlaced\012- data Hash0d437cbe48eb4b99bbc1795fdb8b48cc 0a142eb863db3e2cc868a6d066debeb8a56cee45 9c253c933cbed2f2d31be0d032866c1cb5ee0afab9a54972750e20d380dde1d7
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /logo.png HTTP/1.1
Host: docs.essand.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docs.essand.com/login
Cookie: XSRF-TOKEN=eyJpdiI6ImNjQWtPVUZnR3czVCsxWEwwcW9sd1E9PSIsInZhbHVlIjoiRVE0czN5MFE0dTgzbTZnN25POUV6ODBjSUl5TjlcL1cyQkdIUFh0ZUl1UiszSStwdFp1QnVzXC8zWFNlRmRKZTZNVUNKN2VoRjFtRlwvTENKY0xpN0dmbkFZcjlsQ3JBVytRRkVhSDh6RVpLaE5XT2RabVRRT3hCb21yd1JMWnc1UmgiLCJtYWMiOiJhMzM1Y2I3Yjg1MTVlMWI3MGU0NmM3NzUxNGYwNmVmOTk0ZDRjMGNmMGE3YTMwMGEyODI5NWM0ZjlhZGU4YWI4In0%3D; bookstack_session=eyJpdiI6IlY0SitlN0VhRERuY0IwWUlsbWw5ckE9PSIsInZhbHVlIjoiVHQ2UWlIYkUwMGpzYTRFNXFTc3lEekxnY3l6MGdOQUxPOEFFd0orSjBVaEhPQWgzQzRHK0UzZ2lWMFRpXC9QVGV5SHpZXC9CRTd4cit0ZEFPUkdvWWZMbTN6Y2lMSWsza3JwYVQ4TVkxak90UDdaSHZxcGxQMFJnRTFsTjhKaTZJRiIsIm1hYyI6IjVhNTEyZjZlZTM5MmVlNzNkZmQ0MTcwNzA0MWQwNzQwODA4YjliMmY3NDI2YjU4N2NjNzg3YzBlNDQyNzkwNTIifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 06:24:09 GMT
content-type: image/png
content-length: 5415
last-modified: Thu, 24 Jun 2021 18:23:55 GMT
etag: "60d4cdbb-1527"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| docs.essand.com/favicon.ico | 74.208.242.159 | 200 OK | 11 kB |
URL HTTP/2docs.essand.com/favicon.ico IP74.208.242.159:0
File typePNG image data, 48 x 48, 16-bit/color RGBA, non-interlaced\012- data Hash6bac7072bf030919907a5ef054363469 a2cbf1dbacfff2d19dafb362778cb3a4255fea5d 1835ddf805add6e5b71af3d1f738de56d53228838f99c9ed9d03f35ecf8fda4f
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /favicon.ico HTTP/1.1
Host: docs.essand.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docs.essand.com/login
Cookie: XSRF-TOKEN=eyJpdiI6ImNjQWtPVUZnR3czVCsxWEwwcW9sd1E9PSIsInZhbHVlIjoiRVE0czN5MFE0dTgzbTZnN25POUV6ODBjSUl5TjlcL1cyQkdIUFh0ZUl1UiszSStwdFp1QnVzXC8zWFNlRmRKZTZNVUNKN2VoRjFtRlwvTENKY0xpN0dmbkFZcjlsQ3JBVytRRkVhSDh6RVpLaE5XT2RabVRRT3hCb21yd1JMWnc1UmgiLCJtYWMiOiJhMzM1Y2I3Yjg1MTVlMWI3MGU0NmM3NzUxNGYwNmVmOTk0ZDRjMGNmMGE3YTMwMGEyODI5NWM0ZjlhZGU4YWI4In0%3D; bookstack_session=eyJpdiI6IlY0SitlN0VhRERuY0IwWUlsbWw5ckE9PSIsInZhbHVlIjoiVHQ2UWlIYkUwMGpzYTRFNXFTc3lEekxnY3l6MGdOQUxPOEFFd0orSjBVaEhPQWgzQzRHK0UzZ2lWMFRpXC9QVGV5SHpZXC9CRTd4cit0ZEFPUkdvWWZMbTN6Y2lMSWsza3JwYVQ4TVkxak90UDdaSHZxcGxQMFJnRTFsTjhKaTZJRiIsIm1hYyI6IjVhNTEyZjZlZTM5MmVlNzNkZmQ0MTcwNzA0MWQwNzQwODA4YjliMmY3NDI2YjU4N2NjNzg3YzBlNDQyNzkwNTIifQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 06:24:10 GMT
content-type: image/vnd.microsoft.icon
content-length: 10933
last-modified: Thu, 24 Jun 2021 18:23:55 GMT
etag: "60d4cdbb-2ab5"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hasha97c452e75cf1d4833e777d7ba7f2c47 58f15763fd33f742ce870f49f1c2dbed5b41205f 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3059
Expires: Thu, 01 Dec 2022 07:15:27 GMT
Date: Thu, 01 Dec 2022 06:24:28 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hasha97c452e75cf1d4833e777d7ba7f2c47 58f15763fd33f742ce870f49f1c2dbed5b41205f 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3059
Expires: Thu, 01 Dec 2022 07:15:27 GMT
Date: Thu, 01 Dec 2022 06:24:28 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hasha97c452e75cf1d4833e777d7ba7f2c47 58f15763fd33f742ce870f49f1c2dbed5b41205f 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3059
Expires: Thu, 01 Dec 2022 07:15:27 GMT
Date: Thu, 01 Dec 2022 06:24:28 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hasha97c452e75cf1d4833e777d7ba7f2c47 58f15763fd33f742ce870f49f1c2dbed5b41205f 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3059
Expires: Thu, 01 Dec 2022 07:15:27 GMT
Date: Thu, 01 Dec 2022 06:24:28 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hasha97c452e75cf1d4833e777d7ba7f2c47 58f15763fd33f742ce870f49f1c2dbed5b41205f 39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3059
Expires: Thu, 01 Dec 2022 07:15:27 GMT
Date: Thu, 01 Dec 2022 06:24:28 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02cf22ee-ded9-4b9d-b5d8-ee6690ac9f45.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02cf22ee-ded9-4b9d-b5d8-ee6690ac9f45.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashf07f254d44ff2fb86ee22cee39ef3eb0 0660a548a491d4a58ca2246f094f0553437c3f61 859b2416d638b1dc91ff563800517124b38d45b4c5db99e21539c1700829dbe4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02cf22ee-ded9-4b9d-b5d8-ee6690ac9f45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10985
x-amzn-requestid: ef9e5eb9-b7b3-41e9-9837-a5979ab35d94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cV91OFzsoAMFcew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63857687-53b152c0027d26e52383e27e;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 03:03:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JGFRksMQ_LxceeV_368Xt-gjhd67bMn7D_s0X1V1fAiR6npuqCHayw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 03:10:11 GMT
age: 11657
etag: "0660a548a491d4a58ca2246f094f0553437c3f61"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38aeadfb-098c-4e6a-8abc-40288efe2526.jpeg | 34.120.237.76 | 200 OK | 3.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38aeadfb-098c-4e6a-8abc-40288efe2526.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash609419f1a2c58ae67febde5e2cb91c9f bfb37735a2500848338a8fa12f28516a1ad9b5ba 32a4a65c8bd4da715b5331537bd606bab2767ad8c07af3b8aebbe5cad5591812
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38aeadfb-098c-4e6a-8abc-40288efe2526.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3751
x-amzn-requestid: 80396218-5515-4f77-9d57-95b323e1f1c0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbzNHHGGoAMF8mA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cbed-09f83d1a5b7f65175fb137ab;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:32:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _mQdH9J5CaTiYNIQf5xVn-HGUP5tKhW_1foVDdpsVIoG_NKb9wZOJg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:48:09 GMT
age: 30979
etag: "bfb37735a2500848338a8fa12f28516a1ad9b5ba"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f924fdd-ce65-4f00-8153-3caef7c54e22.jpeg | 34.120.237.76 | 200 OK | 5.3 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f924fdd-ce65-4f00-8153-3caef7c54e22.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hasheb4b8985f697c1ff7753d3961fb4f67d b412d62d44993500b947a38e8e242d0c6d6b7588 571c1543cd99b08e62438146f383bf48a9172ae377b4c17dbc6c8c58bdbb5803
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f924fdd-ce65-4f00-8153-3caef7c54e22.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5295
x-amzn-requestid: e9c096df-2dba-408c-b45a-d114755fa883
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbzM0HmuoAMF4Ww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cbeb-5808a0756f4180a0613cdbcd;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:32:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lUjE1-vViTaS5s23OSlhLlxC597y0etgzMYGUdlqdpHBTK_ww5DEYA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:49:20 GMT
age: 30909
etag: "b412d62d44993500b947a38e8e242d0c6d6b7588"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg | 34.120.237.76 | 200 OK | 4.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashd2dd5a4bcfd47db8f38544bf39ce3031 fa2217bae05b7beca2e12597eaad835298276b82 3266004f5e73af5359b71622eea31f1e28abb4bbc443b5f9e481b5a8b2e9249e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4762
x-amzn-requestid: 52b09ca3-705b-4c86-9f56-172637553f87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7TVG58oAMFQTw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830c15-4577a47243ad190672f8ac89;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:04:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Y0-NAp2LMMG5TjQQ9ENHwDyKXLObKTYqzPPOWvZhs7Y9WJIC6LoblQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 13:29:35 GMT
age: 60894
etag: "fa2217bae05b7beca2e12597eaad835298276b82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F454095ab-a1f1-4a4f-bb9e-68ca835c0b19.jpeg | 34.120.237.76 | 200 OK | 7.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F454095ab-a1f1-4a4f-bb9e-68ca835c0b19.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashf8fd0816eb402409135c039ae8366346 8a2adf9f19759d833bc4bc16d52de6c59fba355b a398e0653664609674795d6310ec79310edbe30c216dc3c54f28f9d6442dfccc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F454095ab-a1f1-4a4f-bb9e-68ca835c0b19.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7446
x-amzn-requestid: 4e1e09be-e182-47b9-ada5-6b4774f291c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cc5drFUroAMFjsg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63883c57-046a05ce234dd47e20b1e7b9;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 05:32:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8jEMlOF2_Ic-HWF_JGNnodcddUcIBTlD0_7-EbX4NUMxYt6YBAcv-w==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 05:33:59 GMT
age: 3030
etag: "8a2adf9f19759d833bc4bc16d52de6c59fba355b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c95c82f-93f9-4783-a6c2-2c737a51d52c.jpeg | 34.120.237.76 | 200 OK | 13 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c95c82f-93f9-4783-a6c2-2c737a51d52c.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash1039182464db1365a476dd88029b97d8 06b395b4fbad5ad9c9fb6a4fb24c1eee607aa8ac 2e081da1464a18d755a841558f63303634a9e22df888c9c43246565abfc3d48d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c95c82f-93f9-4783-a6c2-2c737a51d52c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12655
x-amzn-requestid: beeeccd0-a494-4d0c-91e9-0d1e2ab37b6f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb0YoFmMIAMFT4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cdd0-60f5e2286cf3965a42ab31b9;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:40:32 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CiGOvF7Lmz8cICQcjUcE6QGokbAIAd3WClI4PK_aDSxo-yHVcPPA7w==
via: 1.1 49cdeca097624936e070b73619df7da8.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:45:29 GMT
age: 31140
etag: "06b395b4fbad5ad9c9fb6a4fb24c1eee607aa8ac"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| docs.essand.com/ | 74.208.242.159 | 302 Found | 0 B |
IP74.208.242.159:0
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET / HTTP/1.1
Host: docs.essand.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: nginx
date: Thu, 01 Dec 2022 06:24:09 GMT
content-type: text/html; charset=UTF-8
cache-control: private, must-revalidate
content-security-policy: frame-ancestors 'self'
pragma: no-cache
expires: -1
set-cookie: XSRF-TOKEN=eyJpdiI6IkdsRVp1cmtqU1liY1l4NHYrZnlKanc9PSIsInZhbHVlIjoiU3NHOWxIbDNVbjNXMVluVmpybzZxWHJqSGF1eWZxZkZoR2ZSbk5OWEg5UFhSaGxsT0VMRnJnbzBFYnFPYVA2N0dWYjNkdzdQZ3hWWDJJTjJ0ekJBK2grXC9ybXhjS1pUOVFnV0pZdVlycklyQmV0K0U0Zmg1NFhWOGgrVExVXC9vRCIsIm1hYyI6IjJmMDgyNDhiZDIwZmQ1NTI5YmQ5M2U2NjA1ZmU1NmEwNzg2MzZlMmFjYzkyYTM0NDU4ZmQxNmM4ZjNiOGNiNDIifQ%3D%3D; expires=Thu, 01-Dec-2022 08:24:09 GMT; Max-Age=7200; path=/; secure; samesite=lax
bookstack_session=eyJpdiI6IndZcXNWOTQ4XC8xbytpSmtKWDRySk5nPT0iLCJ2YWx1ZSI6IjA3YVpGaWhORWx0ZkNPSWl1ZEUxSEJMcUJQS2hscktnS094VitCajFKWTROVDRwSEpLUXRjQzdlRHlQb1wvVE4rNkxSaDBnSjdOM2pycllXSGlvRWp4UWZHTmw2M2k1Um5cL0JWV0VrYXRYZ2x3YnVKNzN3WTdaWHlORFJyQXBcLzBzIiwibWFjIjoiMGIzNjllNjJlNDQzYTk1MmI0OTcyYmQ5MzA3YTFlYmVkZmEwOTkyYzgyZjk1NzI5YmY1YmY2Nzc4NjY1Y2VmYyJ9; expires=Thu, 01-Dec-2022 08:24:09 GMT; Max-Age=7200; path=/; secure; httponly; samesite=lax
location: https://docs.essand.com/login
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PHP/7.3.33, PleskLin
X-Firefox-Spdy: h2
|
|
| docs.essand.com/login | 74.208.242.159 | 200 OK | 0 B |
IP74.208.242.159:0
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /login HTTP/1.1
Host: docs.essand.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IkdsRVp1cmtqU1liY1l4NHYrZnlKanc9PSIsInZhbHVlIjoiU3NHOWxIbDNVbjNXMVluVmpybzZxWHJqSGF1eWZxZkZoR2ZSbk5OWEg5UFhSaGxsT0VMRnJnbzBFYnFPYVA2N0dWYjNkdzdQZ3hWWDJJTjJ0ekJBK2grXC9ybXhjS1pUOVFnV0pZdVlycklyQmV0K0U0Zmg1NFhWOGgrVExVXC9vRCIsIm1hYyI6IjJmMDgyNDhiZDIwZmQ1NTI5YmQ5M2U2NjA1ZmU1NmEwNzg2MzZlMmFjYzkyYTM0NDU4ZmQxNmM4ZjNiOGNiNDIifQ%3D%3D; bookstack_session=eyJpdiI6IndZcXNWOTQ4XC8xbytpSmtKWDRySk5nPT0iLCJ2YWx1ZSI6IjA3YVpGaWhORWx0ZkNPSWl1ZEUxSEJMcUJQS2hscktnS094VitCajFKWTROVDRwSEpLUXRjQzdlRHlQb1wvVE4rNkxSaDBnSjdOM2pycllXSGlvRWp4UWZHTmw2M2k1Um5cL0JWV0VrYXRYZ2x3YnVKNzN3WTdaWHlORFJyQXBcLzBzIiwibWFjIjoiMGIzNjllNjJlNDQzYTk1MmI0OTcyYmQ5MzA3YTFlYmVkZmEwOTkyYzgyZjk1NzI5YmY1YmY2Nzc4NjY1Y2VmYyJ9
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 06:24:09 GMT
content-type: text/html; charset=UTF-8
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
content-security-policy: frame-ancestors 'self'
set-cookie: XSRF-TOKEN=eyJpdiI6ImNjQWtPVUZnR3czVCsxWEwwcW9sd1E9PSIsInZhbHVlIjoiRVE0czN5MFE0dTgzbTZnN25POUV6ODBjSUl5TjlcL1cyQkdIUFh0ZUl1UiszSStwdFp1QnVzXC8zWFNlRmRKZTZNVUNKN2VoRjFtRlwvTENKY0xpN0dmbkFZcjlsQ3JBVytRRkVhSDh6RVpLaE5XT2RabVRRT3hCb21yd1JMWnc1UmgiLCJtYWMiOiJhMzM1Y2I3Yjg1MTVlMWI3MGU0NmM3NzUxNGYwNmVmOTk0ZDRjMGNmMGE3YTMwMGEyODI5NWM0ZjlhZGU4YWI4In0%3D; expires=Thu, 01-Dec-2022 08:24:09 GMT; Max-Age=7200; path=/; secure; samesite=lax
bookstack_session=eyJpdiI6IlY0SitlN0VhRERuY0IwWUlsbWw5ckE9PSIsInZhbHVlIjoiVHQ2UWlIYkUwMGpzYTRFNXFTc3lEekxnY3l6MGdOQUxPOEFFd0orSjBVaEhPQWgzQzRHK0UzZ2lWMFRpXC9QVGV5SHpZXC9CRTd4cit0ZEFPUkdvWWZMbTN6Y2lMSWsza3JwYVQ4TVkxak90UDdaSHZxcGxQMFJnRTFsTjhKaTZJRiIsIm1hYyI6IjVhNTEyZjZlZTM5MmVlNzNkZmQ0MTcwNzA0MWQwNzQwODA4YjliMmY3NDI2YjU4N2NjNzg3YzBlNDQyNzkwNTIifQ%3D%3D; expires=Thu, 01-Dec-2022 08:24:09 GMT; Max-Age=7200; path=/; secure; httponly; samesite=lax
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PHP/7.3.33, PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| docs.essand.com/dist/styles.css?version=v21.05.2 | 74.208.242.159 | 200 OK | 0 B |
URL HTTP/2docs.essand.com/dist/styles.css?version=v21.05.2 IP74.208.242.159:0
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /dist/styles.css?version=v21.05.2 HTTP/1.1
Host: docs.essand.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docs.essand.com/login
Cookie: XSRF-TOKEN=eyJpdiI6ImNjQWtPVUZnR3czVCsxWEwwcW9sd1E9PSIsInZhbHVlIjoiRVE0czN5MFE0dTgzbTZnN25POUV6ODBjSUl5TjlcL1cyQkdIUFh0ZUl1UiszSStwdFp1QnVzXC8zWFNlRmRKZTZNVUNKN2VoRjFtRlwvTENKY0xpN0dmbkFZcjlsQ3JBVytRRkVhSDh6RVpLaE5XT2RabVRRT3hCb21yd1JMWnc1UmgiLCJtYWMiOiJhMzM1Y2I3Yjg1MTVlMWI3MGU0NmM3NzUxNGYwNmVmOTk0ZDRjMGNmMGE3YTMwMGEyODI5NWM0ZjlhZGU4YWI4In0%3D; bookstack_session=eyJpdiI6IlY0SitlN0VhRERuY0IwWUlsbWw5ckE9PSIsInZhbHVlIjoiVHQ2UWlIYkUwMGpzYTRFNXFTc3lEekxnY3l6MGdOQUxPOEFFd0orSjBVaEhPQWgzQzRHK0UzZ2lWMFRpXC9QVGV5SHpZXC9CRTd4cit0ZEFPUkdvWWZMbTN6Y2lMSWsza3JwYVQ4TVkxak90UDdaSHZxcGxQMFJnRTFsTjhKaTZJRiIsIm1hYyI6IjVhNTEyZjZlZTM5MmVlNzNkZmQ0MTcwNzA0MWQwNzQwODA4YjliMmY3NDI2YjU4N2NjNzg3YzBlNDQyNzkwNTIifQ%3D%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 06:24:09 GMT
content-type: text/css
last-modified: Thu, 24 Jun 2021 18:23:55 GMT
etag: W/"60d4cdbb-18a49"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| docs.essand.com/dist/app.js?version=v21.05.2 | 74.208.242.159 | 200 OK | 0 B |
URL HTTP/2docs.essand.com/dist/app.js?version=v21.05.2 IP74.208.242.159:0
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /dist/app.js?version=v21.05.2 HTTP/1.1
Host: docs.essand.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docs.essand.com/login
Cookie: XSRF-TOKEN=eyJpdiI6ImNjQWtPVUZnR3czVCsxWEwwcW9sd1E9PSIsInZhbHVlIjoiRVE0czN5MFE0dTgzbTZnN25POUV6ODBjSUl5TjlcL1cyQkdIUFh0ZUl1UiszSStwdFp1QnVzXC8zWFNlRmRKZTZNVUNKN2VoRjFtRlwvTENKY0xpN0dmbkFZcjlsQ3JBVytRRkVhSDh6RVpLaE5XT2RabVRRT3hCb21yd1JMWnc1UmgiLCJtYWMiOiJhMzM1Y2I3Yjg1MTVlMWI3MGU0NmM3NzUxNGYwNmVmOTk0ZDRjMGNmMGE3YTMwMGEyODI5NWM0ZjlhZGU4YWI4In0%3D; bookstack_session=eyJpdiI6IlY0SitlN0VhRERuY0IwWUlsbWw5ckE9PSIsInZhbHVlIjoiVHQ2UWlIYkUwMGpzYTRFNXFTc3lEekxnY3l6MGdOQUxPOEFFd0orSjBVaEhPQWgzQzRHK0UzZ2lWMFRpXC9QVGV5SHpZXC9CRTd4cit0ZEFPUkdvWWZMbTN6Y2lMSWsza3JwYVQ4TVkxak90UDdaSHZxcGxQMFJnRTFsTjhKaTZJRiIsIm1hYyI6IjVhNTEyZjZlZTM5MmVlNzNkZmQ0MTcwNzA0MWQwNzQwODA4YjliMmY3NDI2YjU4N2NjNzg3YzBlNDQyNzkwNTIifQ%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 06:24:09 GMT
content-type: application/javascript
last-modified: Thu, 24 Jun 2021 18:23:55 GMT
etag: W/"60d4cdbb-c0793"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| essand.atlassian.net/s/d41d8cd98f00b204e9800998ecf8427e-T/sb53l8/b/2/bc54840da492f9ca037209037ef0522a/_/download/batch/com.atlassian.jira.collector.plugin.jira-issue-collector-plugin:issuecollector/com.atlassian.jira.collector.plugin.jira-issue-collector-plugin:issuecollector.js?locale=en-US&collectorId=9019907d | 185.166.143.36 | 200 OK | 0 B |
URL HTTP/2essand.atlassian.net/s/d41d8cd98f00b204e9800998ecf8427e-T/sb53l8/b/2/bc54840da492f9ca037209037ef0522a/_/download/batch/com.atlassian.jira.collector.plugin.jira-issue-collector-plugin:issuecollector/com.atlassian.jira.collector.plugin.jira-issue-collector-plugin:issuecollector.js?locale=en-US&collectorId=9019907d IP185.166.143.36:0
GET /s/d41d8cd98f00b204e9800998ecf8427e-T/sb53l8/b/2/bc54840da492f9ca037209037ef0522a/_/download/batch/com.atlassian.jira.collector.plugin.jira-issue-collector-plugin:issuecollector/com.atlassian.jira.collector.plugin.jira-issue-collector-plugin:issuecollector.js?locale=en-US&collectorId=9019907d HTTP/1.1
Host: essand.atlassian.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docs.essand.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Dec 2022 06:24:28 GMT
content-type: application/javascript;charset=UTF-8
server: AtlassianEdge
timing-allow-origin: *
x-arequestid: 78ea1c7d0a992734d0d8e25dcb799461
cache-control: max-age=600,public
etag: W/"1929998677"
expires: Thu, 01 Jan 1970 00:00:00 GMT
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
vary: Accept-Encoding
content-encoding: br
expect-ct: report-uri="https://web-security-reports.services.atlassian.com/expect-ct-report/atlassian-proxy", max-age=86400
strict-transport-security: max-age=63072000; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
atl-traceid: a65ff86ed663aa4b
report-to: {"endpoints": [{"url": "https://dz8aopenkvv6s.cloudfront.net"}], "group": "endpoint-1", "include_subdomains": true, "max_age": 600}
nel: {"failure_fraction": 0.001, "include_subdomains": true, "max_age": 600, "report_to": "endpoint-1"}
X-Firefox-Spdy: h2
|
|
| docs.essand.com/dist/print-styles.css?version=v21.05.2 | 74.208.242.159 | 200 OK | 0 B |
URL HTTP/2docs.essand.com/dist/print-styles.css?version=v21.05.2 IP74.208.242.159:0
Analyzer | Verdict | Alert | fortinet | Malware | | quad9 | Sinkholed | |
GET /dist/print-styles.css?version=v21.05.2 HTTP/1.1
Host: docs.essand.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://docs.essand.com/login
Cookie: XSRF-TOKEN=eyJpdiI6ImNjQWtPVUZnR3czVCsxWEwwcW9sd1E9PSIsInZhbHVlIjoiRVE0czN5MFE0dTgzbTZnN25POUV6ODBjSUl5TjlcL1cyQkdIUFh0ZUl1UiszSStwdFp1QnVzXC8zWFNlRmRKZTZNVUNKN2VoRjFtRlwvTENKY0xpN0dmbkFZcjlsQ3JBVytRRkVhSDh6RVpLaE5XT2RabVRRT3hCb21yd1JMWnc1UmgiLCJtYWMiOiJhMzM1Y2I3Yjg1MTVlMWI3MGU0NmM3NzUxNGYwNmVmOTk0ZDRjMGNmMGE3YTMwMGEyODI5NWM0ZjlhZGU4YWI4In0%3D; bookstack_session=eyJpdiI6IlY0SitlN0VhRERuY0IwWUlsbWw5ckE9PSIsInZhbHVlIjoiVHQ2UWlIYkUwMGpzYTRFNXFTc3lEekxnY3l6MGdOQUxPOEFFd0orSjBVaEhPQWgzQzRHK0UzZ2lWMFRpXC9QVGV5SHpZXC9CRTd4cit0ZEFPUkdvWWZMbTN6Y2lMSWsza3JwYVQ4TVkxak90UDdaSHZxcGxQMFJnRTFsTjhKaTZJRiIsIm1hYyI6IjVhNTEyZjZlZTM5MmVlNzNkZmQ0MTcwNzA0MWQwNzQwODA4YjliMmY3NDI2YjU4N2NjNzg3YzBlNDQyNzkwNTIifQ%3D%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 06:24:09 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Thu, 24 Jun 2021 18:23:55 GMT
etag: W/"24f-5c5872040b0b8"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|