Report - cafinty.duia.eu/home/

Report Overview

Submitted URL
cafinty.duia.eu/home/
IP
142.93.102.240
ASN
#14061 DIGITALOCEAN-ASN
Submitted
2022-10-29 09:00:21
Access
Website Title
Final URL
Tags
None
urlquery detections
Phishing - J.P.Morgan

Detections

urlquery
2
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	682 B	1.6 kB	93.184.220.29
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	413 B	5.8 kB	34.160.144.191
cafinty.duia.eu	unknown			7.5 kB	723 kB	142.93.102.240
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-10T14:37:36Z	1.0 kB	95 kB	216.58.207.195
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	2.4 kB	6.2 kB	23.36.77.32
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-10T05:11:10Z	1.0 kB	2.1 kB	142.250.74.35
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	606 B	127 B	35.83.241.90
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.2 kB	52 kB	34.120.237.76
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-10T12:25:49Z	430 B	746 B	142.250.74.10
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	333 B	229 B	34.117.237.239

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2022-10-28	medium	cafinty.duia.eu/home/	Credit Agricole S.A.

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (9)

	URL	Size	First Seen	Last Seen
	cafinty.duia.eu/home/style/js/jquery.CardValidator.js	6.4 kB	2023-03-07	2024-04-15
Pretty URL cafinty.duia.eu/home/style/js/jquery.CardValidator.js IP 142.93.102.240 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-15 09:41:25 Times Seen437 Hash fb905575d35b1762182c0bdb0156a8e7 5d7364bb8423174608a55975e985138b09ef16f0 2e31f31633d04598c60731878851d821eaa4403af63b930d58bb10bc9c0428a2 Loading...

	cafinty.duia.eu/home/style/js/bootstrap.min.js	59 kB	2023-03-07	2024-05-03
Pretty URL cafinty.duia.eu/home/style/js/bootstrap.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33:40 Last Seen2024-05-03 06:34:50 Times Seen1859 Hash 0f9ea8d6bb66dbed6e0966f9da35b7fd 8095a33f75ca53aa5409b8bf00ea30372755092d 306ab8dd287ef041231a510b7e4c027a11e28b20c3408a9185d895c091dc72a4 Loading...

	cafinty.duia.eu/home/style/js/main.js	4.2 kB	2023-03-07	2024-04-06
Pretty URL cafinty.duia.eu/home/style/js/main.js IP 142.93.102.240 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:18:59 Last Seen2024-04-06 08:08:56 Times Seen492 Hash a96bf5940e256da7dffc0b2e2a1c8f0e db3204906004db53388937310e635d7c6b412f98 8965eaf1598037b1a608ede6ff9633e6944b70039d631f80f635e25c79030da8 Loading...

	unknown	0 B	2023-03-07	2024-05-05
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-05 07:56:08 Times Seen37355456 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	cafinty.duia.eu/home/style/js/jquery.validate.min.js	23 kB	2023-03-07	2024-04-04
Pretty URL cafinty.duia.eu/home/style/js/jquery.validate.min.js IP 142.93.102.240 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:18:59 Last Seen2024-04-04 19:10:32 Times Seen88 Hash ab0a010d6c19ed9c1459ba158e015b5e 95b47b9252cc7a585417c6546df4e81d2c158647 cd8873d8c03fd90eacd976f57b300327972964a89c7ac37d27e369d0324b9999 Loading...

	cafinty.duia.eu/home/style/js/jquery.mask.js	18 kB	2023-03-07	2024-05-05
Pretty URL cafinty.duia.eu/home/style/js/jquery.mask.js IP 142.93.102.240 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:19 Last Seen2024-05-05 05:55:49 Times Seen3620 Hash 219d169a80568884a3d6baab3e5e7def 61d00104de8c972c820cd9b527d8e2edb30e5c4a cf1f0d954cbbbcb32d170b1ff68c5b082a1086f34f2bbee825ca88b7c9fb213a Loading...

	cafinty.duia.eu/home/style/js/popper.min.js	20 kB	2023-03-07	2024-05-04
Pretty URL cafinty.duia.eu/home/style/js/popper.min.js IP 142.93.102.240 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:57 Last Seen2024-05-04 22:24:47 Times Seen1816 Hash a22f3f7e61af6a069aa6b422537c3f49 682fdc625ae80a890d10af2cb16e62540e2186a8 d2b9f29ea1f42a60a8beb1c04f76868287f2a48d6ec50fb39d6b888584a03c49 Loading...

	cafinty.duia.eu/home/style/js/jquery.min.js	88 kB	2023-03-07	2024-05-05
Pretty URL cafinty.duia.eu/home/style/js/jquery.min.js IP 142.93.102.240 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:24:01 Last Seen2024-05-05 04:49:12 Times Seen7813 Hash f832e36068ab203a3f89b1795480d0d7 2115753ca5fb7032aec498db7bb5dca624dbe6be 4c24dfd28784ad2befb3dafaac6bf1ed4e7cd58cce713d9a0b228d426e812baf Loading...

	cafinty.duia.eu/home/style/js/style.js	2.1 kB	2023-03-07	2024-04-06
Pretty URL cafinty.duia.eu/home/style/js/style.js IP 142.93.102.240 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:18:59 Last Seen2024-04-06 08:08:56 Times Seen260 Hash 36fd82a1ac14727f740a7d3e35b1c552 1f989be5cf460ef4b015f89ef22a61a2365148fe 86c051eb57fe97e4dc99fd4cba7334c3faef8e6d3655da6f2b04176f523d96f5 Loading...

HTTP Transactions (41)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
82788b8b26eeba7f492106ea47729bbb
823b2d3c336d11064a6b809057bed46bb65a7969
7671d088ba1420ffa01dbd63c5f7ab28d52d3591bc04c4cc182d1f9e64a7f2f8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7671D088BA1420FFA01DBD63C5F7AB28D52D3591BC04C4CC182D1F9E64A7F2F8"
Last-Modified: Sat, 29 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14972
Expires: Sat, 29 Oct 2022 13:09:42 GMT
Date: Sat, 29 Oct 2022 09:00:10 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
922281894182eba1fc67c2d8678e3238
e169209341b09bf4f14ebb3fc7c07b03f2121bf1
37516083f7655af68d7e426efca6f9f3709a80318ac7bb8cc492c183916141b1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2849
Cache-Control: max-age=91106
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 09:00:10 GMT
Etag: "635ba15b-1d7"
Expires: Sun, 30 Oct 2022 10:18:36 GMT
Last-Modified: Fri, 28 Oct 2022 09:31:07 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
22eebb819dc140cc288474d9891526b4
45c18772664e9e3efb6a44d7da93699c81f71827
ce6a96e470dbfb48ff42fdaf5eaa464a87dc60b495e3e2767086ec0b6564fdd7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CE6A96E470DBFB48FF42FDAF5EAA464A87DC60B495E3E2767086EC0B6564FDD7"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2179
Expires: Sat, 29 Oct 2022 09:36:29 GMT
Date: Sat, 29 Oct 2022 09:00:10 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: JIi1tnU/BHT8UeVqSNqN/vgL2jehgY5evk1tvA/mHJ/zfrTzSwYIu2Xx9SiRjomKZ9WIm9EfcEE=
x-amz-request-id: 6ENC8DE76PQ9CFF7
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 29 Oct 2022 08:43:59 GMT
age: 971
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
76cfc33e224058f1eca94032522075ea
d3b2b6b610d38d54714657270f9e7939da2bcdf3
92c4dd1cbf1e1de7500f673d3394a885d0da246eff25ecdc5890be26cd6bece2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "92C4DD1CBF1E1DE7500F673D3394A885D0DA246EFF25ECDC5890BE26CD6BECE2"
Last-Modified: Fri, 28 Oct 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 29 Oct 2022 15:00:10 GMT
Date: Sat, 29 Oct 2022 09:00:10 GMT
Connection: keep-alive

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 09:00:10 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

cafinty.duia.eu/home/

142.93.102.240

200 OK

3.6 kB

URL HTTP/1.1
cafinty.duia.eu/home/
IP
142.93.102.240:0
ASN
#14061 DIGITALOCEAN-ASN

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (15746)
Size
3.6 kB (3583 bytes)
Hash
7bfb1f6af89d729cf159f5c33bc476c4
33b90ecaaa39f309ced2e54b70f178631240b43a
b9d829d4fe8517eb4e7e2ebd8ab99a94f35a63bbf8e35375388e6d68c948072f

Detections

Analyzer	Verdict	Alert
openphish	Credit Agricole S.A.

HTTP Headers

GET /home/ HTTP/1.1
Host: cafinty.duia.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Oct 2022 09:00:10 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 3583
Connection: keep-alive
Set-Cookie: PHPSESSID=1fpt8lv06m77a65h40qmffl43i; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip

cafinty.duia.eu/home/style/js/angular.min.js

142.93.102.240

200 OK

58 kB

URL HTTP/1.1
cafinty.duia.eu/home/style/js/angular.min.js
IP
142.93.102.240:0
ASN
#14061 DIGITALOCEAN-ASN

File type
ASCII text, with very long lines (566)
Size
58 kB (58485 bytes)
Hash
7fea74563a0d2d9bb508a51c6e322b22
0a62a90f9a99d185e1bce49dabea132e0edb468a
8e65040e11a39214c1bb095831fc24b0e6799a732627f7d682c48442eeff2bfd

HTTP Headers

GET /home/style/js/angular.min.js HTTP/1.1
Host: cafinty.duia.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cafinty.duia.eu/home/
Cookie: PHPSESSID=1fpt8lv06m77a65h40qmffl43i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Oct 2022 09:00:10 GMT
Content-Type: application/javascript
Last-Modified: Tue, 25 Oct 2022 11:08:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6357c3c8-28cdb"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip

cafinty.duia.eu/home/style/js/jquery.CardValidator.js

142.93.102.240

200 OK

2.1 kB

URL HTTP/1.1
cafinty.duia.eu/home/style/js/jquery.CardValidator.js
IP
142.93.102.240:0
ASN
#14061 DIGITALOCEAN-ASN

File type
ASCII text
Size
2.1 kB (2083 bytes)
Hash
5e3812c918f22e125f3ea8c08bceaf76
d5e6624b80474ea77e1adb60db6b0ded24205627
31d0740c9a71776c253640a6915be5b120d3e90b6765d1d46f94c72a908b185e

Detections

Analyzer	Verdict	Alert
urlquery		Phishing - J.P.Morgan

HTTP Headers

GET /home/style/js/jquery.CardValidator.js HTTP/1.1
Host: cafinty.duia.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cafinty.duia.eu/home/
Cookie: PHPSESSID=1fpt8lv06m77a65h40qmffl43i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Oct 2022 09:00:10 GMT
Content-Type: application/javascript
Last-Modified: Tue, 25 Oct 2022 11:09:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6357c3cd-18df"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip

cafinty.duia.eu/home/style/js/jquery.validate.min.js

142.93.102.240

200 OK

7.4 kB

URL HTTP/1.1
cafinty.duia.eu/home/style/js/jquery.validate.min.js
IP
142.93.102.240:0
ASN
#14061 DIGITALOCEAN-ASN

File type
Unicode text, UTF-8 text, with very long lines (22900)
Size
7.4 kB (7433 bytes)
Hash
5a81b0a98410f032075aba256389756b
3c64a5ddb2d771d9309e7b0f09fe5e7ba5fe802a
732955ec0498bf6798e97ec294933d46d3ada956d462e750eff496b21993e7c2

HTTP Headers

GET /home/style/js/jquery.validate.min.js HTTP/1.1
Host: cafinty.duia.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cafinty.duia.eu/home/
Cookie: PHPSESSID=1fpt8lv06m77a65h40qmffl43i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Oct 2022 09:00:10 GMT
Content-Type: application/javascript
Last-Modified: Tue, 25 Oct 2022 11:09:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6357c3d1-59fe"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip

cafinty.duia.eu/home/style/js/jquery.mask.js

142.93.102.240

200 OK

4.9 kB

URL HTTP/1.1
cafinty.duia.eu/home/style/js/jquery.mask.js
IP
142.93.102.240:0
ASN
#14061 DIGITALOCEAN-ASN

File type
ASCII text
Size
4.9 kB (4948 bytes)
Hash
72561daefcabe07fcd6e4a000ce2b1f9
29f4b8a00c67c6d29e8beb9cbe1fcc040bfc4bf5
3a19e4fd29ca6cd5ba35dd0f38915107a432a326280051d32ca2b16af7d668b7

HTTP Headers

GET /home/style/js/jquery.mask.js HTTP/1.1
Host: cafinty.duia.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cafinty.duia.eu/home/
Cookie: PHPSESSID=1fpt8lv06m77a65h40qmffl43i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Oct 2022 09:00:10 GMT
Content-Type: application/javascript
Last-Modified: Tue, 25 Oct 2022 11:09:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6357c3ce-47fe"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip

cafinty.duia.eu/home/style/js/style.js

142.93.102.240

200 OK

819 B

URL HTTP/1.1
cafinty.duia.eu/home/style/js/style.js
IP
142.93.102.240:0
ASN
#14061 DIGITALOCEAN-ASN

File type
ASCII text
Size
819 B (819 bytes)
Hash
e60b04983b6d40b4343c6f5ff3c080e4
ddf865e21f7bad03990bf10072f43a760196f457
beb476c7e3a305beb253e5ac14eebd5975fc6c2e1003faf5ddc08a782d33dc20

HTTP Headers

GET /home/style/js/style.js HTTP/1.1
Host: cafinty.duia.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cafinty.duia.eu/home/
Cookie: PHPSESSID=1fpt8lv06m77a65h40qmffl43i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Oct 2022 09:00:10 GMT
Content-Type: application/javascript
Last-Modified: Tue, 25 Oct 2022 11:09:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6357c3d1-859"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip

cafinty.duia.eu/home/style/js/jquery.min.js

142.93.102.240

200 OK

31 kB

URL HTTP/1.1
cafinty.duia.eu/home/style/js/jquery.min.js
IP
142.93.102.240:0
ASN
#14061 DIGITALOCEAN-ASN

File type
ASCII text, with very long lines (65451)
Size
31 kB (30715 bytes)
Hash
f8a10c76294be4282d55a848bb39b30f
1d7abbd795999774bc36977cd11d56488587d4c4
0266e9b70e37bd2a3d4a5d0a9460eb7b766e9c2efa1299555217b591ac623dff

HTTP Headers

GET /home/style/js/jquery.min.js HTTP/1.1
Host: cafinty.duia.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cafinty.duia.eu/home/
Cookie: PHPSESSID=1fpt8lv06m77a65h40qmffl43i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Oct 2022 09:00:10 GMT
Content-Type: application/javascript
Last-Modified: Tue, 25 Oct 2022 11:09:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6357c3d0-15850"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip

cafinty.duia.eu/home/style/css/bootstrap.min.css

142.93.102.240

200 OK

21 kB

URL HTTP/1.1
cafinty.duia.eu/home/style/css/bootstrap.min.css
IP
142.93.102.240:0
ASN
#14061 DIGITALOCEAN-ASN

File type
ASCII text, with very long lines (65324)
Size
21 kB (21050 bytes)
Hash
6416cbec949fa843a85c7ac285bb9245
94173c891940336570801e9c8ce3f85427d41c70
631d8a942c958f1b03cab6822d5f25b7221a24bbb2d60ec49bdf40295e1483ef

HTTP Headers

GET /home/style/css/bootstrap.min.css HTTP/1.1
Host: cafinty.duia.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cafinty.duia.eu/home/
Cookie: PHPSESSID=1fpt8lv06m77a65h40qmffl43i
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Oct 2022 09:00:10 GMT
Content-Type: text/css
Last-Modified: Tue, 25 Oct 2022 11:08:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6357c3aa-22688"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip

cafinty.duia.eu/home/style/css/helpers.css

142.93.102.240

200 OK

4.6 kB

URL HTTP/1.1
cafinty.duia.eu/home/style/css/helpers.css
IP
142.93.102.240:0
ASN
#14061 DIGITALOCEAN-ASN

File type
ASCII text, with very long lines (40872)
Size
4.6 kB (4561 bytes)
Hash
e0e7bfc10e1f71b4892befbf24374745
e537e7e1ad3424f6723af70fee6fbcaebc7f3317
d9c5930198e4e446e1a601003d95397f963da9aa8d9b399b6b83aba2b8ab5a29

HTTP Headers

GET /home/style/css/helpers.css HTTP/1.1
Host: cafinty.duia.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cafinty.duia.eu/home/
Cookie: PHPSESSID=1fpt8lv06m77a65h40qmffl43i
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Oct 2022 09:00:10 GMT
Content-Type: text/css
Last-Modified: Tue, 25 Oct 2022 11:08:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6357c3aa-9fa9"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip

cafinty.duia.eu/home/style/css/fonts.css

142.93.102.240

200 OK

272 B

URL HTTP/1.1
cafinty.duia.eu/home/style/css/fonts.css
IP
142.93.102.240:0
ASN
#14061 DIGITALOCEAN-ASN

File type
ASCII text
Size
272 B (272 bytes)
Hash
ce5be47f5ca6850b9d1c715ab706459d
9655056deecba7315ca72742da1de44bf4ffc7f0
4069a227b95cc542164e30fef92d995a8e8d55d62799aa88531e24b9145152be

HTTP Headers

GET /home/style/css/fonts.css HTTP/1.1
Host: cafinty.duia.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cafinty.duia.eu/home/
Cookie: PHPSESSID=1fpt8lv06m77a65h40qmffl43i
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Oct 2022 09:00:10 GMT
Content-Type: text/css
Last-Modified: Tue, 25 Oct 2022 11:08:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6357c3a9-556"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip

cafinty.duia.eu/home/style/css/main.css

142.93.102.240

200 OK

2.3 kB

URL HTTP/1.1
cafinty.duia.eu/home/style/css/main.css
IP
142.93.102.240:0
ASN
#14061 DIGITALOCEAN-ASN

File type
ASCII text, with very long lines (10363)
Size
2.3 kB (2344 bytes)
Hash
e2f1767ba8c133485ed0de06599769c0
0f07dabddaf9270f2f94c1c554c29fc617fb29b6
dbdbcfa77b252eac505784012d171d8b1918d6729d70f152b045820399fa0655

HTTP Headers

GET /home/style/css/main.css HTTP/1.1
Host: cafinty.duia.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cafinty.duia.eu/home/
Cookie: PHPSESSID=1fpt8lv06m77a65h40qmffl43i
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Oct 2022 09:00:10 GMT
Content-Type: text/css
Last-Modified: Tue, 25 Oct 2022 11:08:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6357c3ab-287c"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip

cafinty.duia.eu/home/style/js/popper.min.js

142.93.102.240

200 OK

7.2 kB

URL HTTP/1.1
cafinty.duia.eu/home/style/js/popper.min.js
IP
142.93.102.240:0
ASN
#14061 DIGITALOCEAN-ASN

File type
ASCII text, with very long lines (20164)
Size
7.2 kB (7238 bytes)
Hash
099db3361d831812de10e38c51dbd0d1
908dc3f88b1adc83d9145435a9a1641ce29a3eda
3c313ab75fd2a62dd8e0f5d8873b512716a02bbf845626803c54252ee3e457cf

HTTP Headers

GET /home/style/js/popper.min.js HTTP/1.1
Host: cafinty.duia.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cafinty.duia.eu/home/
Cookie: PHPSESSID=1fpt8lv06m77a65h40qmffl43i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Oct 2022 09:00:10 GMT
Content-Type: application/javascript
Last-Modified: Tue, 25 Oct 2022 11:09:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6357c3d2-4f70"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip

cafinty.duia.eu/home/style/js/fontawesome.js

142.93.102.240

200 OK

387 kB

URL HTTP/1.1
cafinty.duia.eu/home/style/js/fontawesome.js
IP
142.93.102.240:0
ASN
#14061 DIGITALOCEAN-ASN

File type
ASCII text, with very long lines (65351)
Size
387 kB (387142 bytes)
Hash
301e1321cd6a35b018619d7be6692ae5
2de256c79dd84078250476b7b13815925d3adfd1
fb0afe09ff52edab4f9d3444f0b879ccefd62622b48e9a757fbaef981b5eab26

HTTP Headers

GET /home/style/js/fontawesome.js HTTP/1.1
Host: cafinty.duia.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cafinty.duia.eu/home/
Cookie: PHPSESSID=1fpt8lv06m77a65h40qmffl43i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Oct 2022 09:00:10 GMT
Content-Type: application/javascript
Last-Modified: Tue, 25 Oct 2022 11:09:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6357c3ce-10314a"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip

cafinty.duia.eu/home/style/js/main.js

142.93.102.240

200 OK

954 B

URL HTTP/1.1
cafinty.duia.eu/home/style/js/main.js
IP
142.93.102.240:0
ASN
#14061 DIGITALOCEAN-ASN

File type
Algol 68 source text\012- Pascal source, ASCII text
Size
954 B (954 bytes)
Hash
a52c0eaf80d25c193d1dabe225c29769
ccb860fa0d426bcdaff1db1a47f40080d27b4252
4b534aa4619cab7341addd7f269604234267887f6e2e5b15325499703153e1de

HTTP Headers

GET /home/style/js/main.js HTTP/1.1
Host: cafinty.duia.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cafinty.duia.eu/home/
Cookie: PHPSESSID=1fpt8lv06m77a65h40qmffl43i
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Oct 2022 09:00:10 GMT
Content-Type: application/javascript
Last-Modified: Tue, 25 Oct 2022 11:09:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6357c3d0-1092"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip

cafinty.duia.eu/home/style/CADIF_logo_horizontal_rvb_v4.png

142.93.102.240

200 OK

19 kB

URL HTTP/1.1
cafinty.duia.eu/home/style/CADIF_logo_horizontal_rvb_v4.png
IP
142.93.102.240:0
ASN
#14061 DIGITALOCEAN-ASN

File type
PNG image data, 350 x 105, 8-bit/color RGBA, non-interlaced\012- data
Size
19 kB (18782 bytes)
Hash
71cb5c78702e00ffb116f88d9280896a
d32b9b4f245643b1e4477f923b12a4d17d50cc3d
f8e9befa13e3ff93d974729ae3c727461555d582bb63bb388a4bd497619ef20b

HTTP Headers

GET /home/style/CADIF_logo_horizontal_rvb_v4.png HTTP/1.1
Host: cafinty.duia.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cafinty.duia.eu/home/
Cookie: PHPSESSID=1fpt8lv06m77a65h40qmffl43i
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Oct 2022 09:00:10 GMT
Content-Type: image/png
Content-Length: 18782
Last-Modified: Tue, 25 Oct 2022 11:08:11 GMT
Connection: keep-alive
ETag: "6357c39b-495e"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
6b7c0ce49b8ebb90707ec439581bc979
1affe02f362f59f8acaaa2cc16185fc2942a82cf
99057099a66b378f0825443f175ad6f84a9f69c0abb8f8db546eb348de4facb4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5839
Cache-Control: max-age=89037
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 09:00:10 GMT
Etag: "635b8d98-1d7"
Expires: Sun, 30 Oct 2022 09:44:07 GMT
Last-Modified: Fri, 28 Oct 2022 08:06:48 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a34a3d6697eb937f0b134e68e9fb2b99
dc432dc7c8692383d17e593a93e60857d9398082
e11fbf49eb07b649e29e7965e888397956e4476873c9e55812ef10f722bbc994

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 09:00:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cafinty.duia.eu/home//style/fermeture-agence-travaux-DAB_septembre2020.jpg

142.93.102.240

200 OK

165 kB

URL HTTP/1.1
cafinty.duia.eu/home//style/fermeture-agence-travaux-DAB_septembre2020.jpg
IP
142.93.102.240:0
ASN
#14061 DIGITALOCEAN-ASN

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=19, height=3264, bps=0, compression=none, PhotometricIntepretation=RGB, description=11 d\303\251cembre 2015, manufacturer=Canon, model=Canon EOS-1D Mark IV, orientation=upper-left, width=4896], baseline, precision 8, 960x640, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 26228-27759, spot sensor temperature 0.000000, unit celsius, color scheme 0, calibration: offset 75594131500502762294377185280.000000, slope 18524499018441621041854808064.000000\012- data
Size
165 kB (165217 bytes)
Hash
9185fa780a0576f2043bb631d7b4269c
4a4da7e75f2fc8df41652d9c3ffa277c301bbf04
e07a9ccc231bfc6a4f4ef7d64b1c2df670d9ac347d0d3e4cb4ad04c2133e07f5

HTTP Headers

GET /home//style/fermeture-agence-travaux-DAB_septembre2020.jpg HTTP/1.1
Host: cafinty.duia.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cafinty.duia.eu/home/style/css/main.css
Cookie: PHPSESSID=1fpt8lv06m77a65h40qmffl43i
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Oct 2022 09:00:10 GMT
Content-Type: image/jpeg
Content-Length: 165217
Last-Modified: Tue, 25 Oct 2022 11:08:14 GMT
Connection: keep-alive
ETag: "6357c39e-28561"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
89643d2109e09c2c32f8e67de2d35df0
7d57d55fe52e166f75f93efab1a784e840c25757
672d341ec656ed18d6484ab814ab4f888b37624bfb49e9c2d95860168246b46b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 09:00:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.195

200 OK

45 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cafinty.duia.eu
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 27 Oct 2022 05:42:51 GMT
expires: Fri, 27 Oct 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 184639
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2

216.58.207.195

200 OK

48 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Size
48 kB (47952 bytes)
Hash
17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd

HTTP Headers

GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cafinty.duia.eu
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 24 Oct 2022 18:59:14 GMT
expires: Tue, 24 Oct 2023 18:59:14 GMT
cache-control: public, max-age=31536000
age: 396056
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
89643d2109e09c2c32f8e67de2d35df0
7d57d55fe52e166f75f93efab1a784e840c25757
672d341ec656ed18d6484ab814ab4f888b37624bfb49e9c2d95860168246b46b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 09:00:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cafinty.duia.eu/home/style/favicon.png

142.93.102.240

200 OK

1.8 kB

URL HTTP/1.1
cafinty.duia.eu/home/style/favicon.png
IP
142.93.102.240:0
ASN
#14061 DIGITALOCEAN-ASN

File type
PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Size
1.8 kB (1793 bytes)
Hash
ed9c56116b458dfeef180879add56940
f661f922f0bfdf0d2d470aea158eb77d49b5bb26
0c6849d4541c1b5d297b7e48dc2c13d43c357610effd13e1a90929b6638205e0

HTTP Headers

GET /home/style/favicon.png HTTP/1.1
Host: cafinty.duia.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cafinty.duia.eu/home/
Cookie: PHPSESSID=1fpt8lv06m77a65h40qmffl43i
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 29 Oct 2022 09:00:10 GMT
Content-Type: image/png
Content-Length: 1793
Last-Modified: Tue, 25 Oct 2022 11:08:12 GMT
Connection: keep-alive
ETag: "6357c39c-701"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes

push.services.mozilla.com/

35.83.241.90

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.83.241.90:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: N9nselLrJUnD17GJ7gCNcA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3FiQ7qFInkHGh0WCGkZh0SCWwRU=

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d74fd61a9f3caa5eada0b6b9f7154475
eb94382c5deaf0de61635a7d4ecc89928ef84e65
b8fe819d80e3dbca42f89e4654dfb96aa886892d265b475c7e23c780120aa5cd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8FE819D80E3DBCA42F89E4654DFB96AA886892D265B475C7E23C780120AA5CD"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6070
Expires: Sat, 29 Oct 2022 10:41:22 GMT
Date: Sat, 29 Oct 2022 09:00:12 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d74fd61a9f3caa5eada0b6b9f7154475
eb94382c5deaf0de61635a7d4ecc89928ef84e65
b8fe819d80e3dbca42f89e4654dfb96aa886892d265b475c7e23c780120aa5cd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8FE819D80E3DBCA42F89E4654DFB96AA886892D265B475C7E23C780120AA5CD"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6070
Expires: Sat, 29 Oct 2022 10:41:22 GMT
Date: Sat, 29 Oct 2022 09:00:12 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d74fd61a9f3caa5eada0b6b9f7154475
eb94382c5deaf0de61635a7d4ecc89928ef84e65
b8fe819d80e3dbca42f89e4654dfb96aa886892d265b475c7e23c780120aa5cd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8FE819D80E3DBCA42F89E4654DFB96AA886892D265B475C7E23C780120AA5CD"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6070
Expires: Sat, 29 Oct 2022 10:41:22 GMT
Date: Sat, 29 Oct 2022 09:00:12 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d74fd61a9f3caa5eada0b6b9f7154475
eb94382c5deaf0de61635a7d4ecc89928ef84e65
b8fe819d80e3dbca42f89e4654dfb96aa886892d265b475c7e23c780120aa5cd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8FE819D80E3DBCA42F89E4654DFB96AA886892D265B475C7E23C780120AA5CD"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6070
Expires: Sat, 29 Oct 2022 10:41:22 GMT
Date: Sat, 29 Oct 2022 09:00:12 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdeda76f5-b5fb-4f5b-ab0d-9b70604a9001.jpeg

34.120.237.76

200 OK

4.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdeda76f5-b5fb-4f5b-ab0d-9b70604a9001.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.1 kB (4059 bytes)
Hash
961d75546dcb911d8c4eabdf92e2346c
0b14fc9db8520e7d65dc5517cfb1f5f2b63773b1
28f3c64fa9a4ea9af8a3e0455842c7174b6ca0b7ba017c05cf4b40b8bc95fd15

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdeda76f5-b5fb-4f5b-ab0d-9b70604a9001.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4059
x-amzn-requestid: 7efeb95f-2f14-4a8b-8a5b-facb6de9044e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z3yJDGNToAMFpjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634630a0-0a42c04e037908c2198b6f5b;Sampled=0
x-amzn-remapped-date: Wed, 12 Oct 2022 03:12:32 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: d-Cmw4a8ppeJUO5fFH-xqsNTIEAp21Z-MhrmmtflGdz0JY2emCIwMg==
via: 1.1 7f06047c304d80ea094816a27c933914.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 28 Oct 2022 22:16:05 GMT
age: 38647
etag: "0b14fc9db8520e7d65dc5517cfb1f5f2b63773b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff9145127-23fb-40ec-af25-e7ec5b697df8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.1 kB (8084 bytes)
Hash
32c2813ce699bc420eb13f02b9f1e86a
934a57f7596fc4a844485539d9ce2165f212e6e4
5e3c8ed8a00dff724fc7f3c5ef99252ef1b1aa45f87578177aa43d5fcd593233

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff9145127-23fb-40ec-af25-e7ec5b697df8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8084
x-amzn-requestid: 9ed3b0b2-8755-44b5-87ae-abd65bfa6d84
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: apNExEF7oAMFcIw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359f551-7919426b5945afad4e3f9473;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 03:04:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: oPTErTmth_yOMrSkzbGcn1NjdUkjlnOVJ6eeEqshtswaDwDkjTap6A==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 29 Oct 2022 04:14:07 GMT
age: 17165
etag: "934a57f7596fc4a844485539d9ce2165f212e6e4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49fb8fa0-61f2-4078-986f-12a6dab52ed2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.4 kB (8381 bytes)
Hash
8326b70116b95839cb92a20987ff62bf
e39efc9edc67abdbc8b67e56ea3aa3f169600055
9bb70165db081deb009c8da7f4fcafff66bf4f3ce68c88dd11b21ab1665f8a30

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49fb8fa0-61f2-4078-986f-12a6dab52ed2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8381
x-amzn-requestid: affd1381-e8d6-406e-bdfd-43095e110aa9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: avCJEHAUoAMFQPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635c4a39-738547cc62556b0f6cc604cf;Sampled=0
x-amzn-remapped-date: Fri, 28 Oct 2022 21:31:37 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FpVYEpuzxdqeInQrm5_-ZU4tLonMfDWY3D3DxRd0JD3uh4emzrgklA==
via: 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 28 Oct 2022 21:44:56 GMT
age: 40516
etag: "e39efc9edc67abdbc8b67e56ea3aa3f169600055"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faccc24d4-d55c-40a3-8868-3bfb2ba647c3.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.9 kB (3872 bytes)
Hash
41206a3d16a76c4402008d3dcfe67b8b
deff5b09c8cbcf765e768230f504b81f0a5565d8
861849a86950c34830840b5e398685421b37945751ab8381b9a2420686eceb60

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faccc24d4-d55c-40a3-8868-3bfb2ba647c3.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3872
x-amzn-requestid: 1dd87813-a983-48ce-a706-03877cffe143
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: amWn3HzAoAMF0GA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6358d165-0e11b6b819d30ba776bbaf97;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 06:19:17 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: nJtAK18Sm82nVmuWx9WyRrbXX14aPXL4I2KJ0jKvOAUw8IiRyyovvQ==
via: 1.1 536063cb28bfc05fcb7a78183dd89b72.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Fri, 28 Oct 2022 22:15:28 GMT
age: 38684
etag: "deff5b09c8cbcf765e768230f504b81f0a5565d8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79049f5d-175e-4d0f-94ea-6d5a1fcadca0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.5 kB (9460 bytes)
Hash
fb1110221ffc54766308cbf62f94cd9f
926f36919d5875592200b78d286edcb4c3ba884c
8344d57bc8358da2a5911c62a344a3dcf819ce44dac0da0624c73ab40ac1ef44

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79049f5d-175e-4d0f-94ea-6d5a1fcadca0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9460
x-amzn-requestid: c1eef336-bec0-47f0-bd30-17de593de8f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: asgW3E8uIAMFpgg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635b475e-60346ff475ec335e0499d17f;Sampled=0
x-amzn-remapped-date: Fri, 28 Oct 2022 03:07:10 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: P3-UxGtr6HKLtsZUHXV_4CgAd3LQBceo_1NUwrfWhWoGoTEKS7KGAw==
via: 1.1 946b9edb2009c5508a0fbbd636f95014.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 28 Oct 2022 21:44:56 GMT
age: 40516
etag: "926f36919d5875592200b78d286edcb4c3ba884c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F007f3bba-2985-446d-85be-45a95428ae23.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11862 bytes)
Hash
cd57e4f1e64d2282aad00780e649ac34
be92efe8b83090c8c95e159440afe9373982704a
0b0479242cb87c137b9e86af1ce16c5a06be025737f6804df93cecf5b01a3101

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F007f3bba-2985-446d-85be-45a95428ae23.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11862
x-amzn-requestid: d3687685-2491-42df-9127-4167cb1f295f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: avCIcHghoAMFkbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635c4a35-2c1243410c85c8464edd1f5f;Sampled=0
x-amzn-remapped-date: Fri, 28 Oct 2022 21:31:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: b-6J2xO76K-ffxly4vYVwPnzZ7LbLpk1Gs49KJG6ePfsfwmCvpqHGQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 28 Oct 2022 21:51:41 GMT
age: 40111
etag: "be92efe8b83090c8c95e159440afe9373982704a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cafinty.duia.eu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 29 Oct 2022 09:00:10 GMT
date: Sat, 29 Oct 2022 09:00:10 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (9)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP