Report - noveltyratio.top/

Report Overview

Submitted URL
noveltyratio.top/
IP
172.67.157.229
ASN
#13335 CLOUDFLARENET
Submitted
2022-12-09 10:47:47
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
noveltyratio.top	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	794 B	1.5 kB	104.21.82.122
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	7.1 kB	95.101.11.115
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.9 kB	34.160.144.191
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	737 B	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.83.91.138
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	58 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	714 B	1.4 kB	216.58.211.3
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
static.mercdn.net	197302	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	7.0 kB	1.5 MB	199.232.214.131

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-09	medium	noveltyratio.top/	Malware
2022-12-09	medium	noveltyratio.top/	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (2)

	URL	Size	First Seen	Last Seen
	noveltyratio.top/includes/templates/1124/jscript/headpull.js	141 kB	2023-03-07	2024-01-27
Pretty URL noveltyratio.top/includes/templates/1124/jscript/headpull.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:34 Last Seen2024-01-27 12:24:01 Times Seen114 Hash a803ef24546674856f20711e773db3db 77fb7fb34bbbc9a371390faa0353d059957ba361 318de758ec90e13d109fb03c1fbec84fe64de4b1526873c9ab98bb85c8a8b5b5 Loading...

	noveltyratio.top/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	1.2 kB	2023-03-07	2024-05-10
Pretty URL noveltyratio.top/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-10 15:26:03 Times Seen56519 Hash 9e8f56e8e1806253ba01a95cfc3d392c a8af90d7482e1e99d03de6bf88fed2315c5dd728 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8 Loading...

HTTP Transactions (41)

URL IP Response Size

noveltyratio.top/

104.21.82.122

301 Moved Permanently

0 B

URL HTTP/1.1
noveltyratio.top/
IP
104.21.82.122:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: noveltyratio.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Fri, 09 Dec 2022 10:47:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 09 Dec 2022 11:47:36 GMT
Location: https://noveltyratio.top/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dN9MzJZdqEnNc%2FjeSbQxWRYXeLSrQVgAkFjbzyV7eT%2FnHavE0PkuOultD%2Ffpfffgdl4Y%2FaT3FQnqN6yqiRsmxkm9FEul8yO8uFWUDWWSxBOAQM0H0M3KKTQAUhElFO3D9SfW"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 776d29e2fcdefabc-OSL
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f2acd891dc6eb1f09f57a2b086791781
1e2088306501a61edcca1ade62c4d54f23b3b083
51148fed95cc00d60dc3640350f135b1b2763ff0e3cfbffc40f0948317894be9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9173
Expires: Fri, 09 Dec 2022 13:20:29 GMT
Date: Fri, 09 Dec 2022 10:47:36 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aea93551fa9deb76ae49a3b4019d64fe
e3b8862057ebe839959228e42246d7b1807fc90c
7e210f03b140418085e94ec20c1d27d6ecf7a404cbd323e16476ae5ae95d6dac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17747
Expires: Fri, 09 Dec 2022 15:43:23 GMT
Date: Fri, 09 Dec 2022 10:47:36 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18986
Expires: Fri, 09 Dec 2022 16:04:02 GMT
Date: Fri, 09 Dec 2022 10:47:36 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 10:08:18 GMT
content-type: application/json
age: 2358
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: VESoXBl4/Mi2zuXFjogSKYjNyWuXlNT+Ydb2dGQ14shOiAEgkIa3V06LcWo6FkRJ1kT3ApbE3A77ST8l3YFdLA==
x-amz-request-id: PYQAN1TFVT3PS3RB
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 09:50:12 GMT
age: 3444
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1p5/QuWXlu0CWYk

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/QuWXlu0CWYk
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d019bca919c68216b050468a849604c3
98215d7d4b714a5f3065a4764ae38109ab5a08aa
040d2ed74430eb82cfec63b2dd2bdb2d552389e09f9db3ca01d36035432f3bdc

HTTP Headers

POST /s/gts1p5/QuWXlu0CWYk HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 10:47:36 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 10:47:36 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 10:07:55 GMT
age: 2381
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
e6be4d2155028ffff5d01ab6e7edf6da
07172071b5cf43c4cd7d7930b4ad8518ec1e32e9
4d8a5fa2362fd0910babd6d128d850d4460829468eb23d34ee5ee6eaa42d5a38

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2118
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 10:47:36 GMT
Last-Modified: Fri, 09 Dec 2022 10:12:18 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

35.83.91.138

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.83.91.138:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: N7ODH9+BGc4+GDxybjanHw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: C2psGo2bHPIheXOhIXnQUAWe1b0=

ocsp.pki.goog/s/gts1p5/QuWXlu0CWYk

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/QuWXlu0CWYk
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d019bca919c68216b050468a849604c3
98215d7d4b714a5f3065a4764ae38109ab5a08aa
040d2ed74430eb82cfec63b2dd2bdb2d552389e09f9db3ca01d36035432f3bdc

HTTP Headers

POST /s/gts1p5/QuWXlu0CWYk HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 10:47:37 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

static.mercdn.net/item/detail/orig/photos/m51728455632_1.jpg?1662471030

199.232.214.131

200 OK

67 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m51728455632_1.jpg?1662471030
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 810x1080, components 3\012- data
Size
67 kB (66967 bytes)
Hash
b2d59a0f7555d1c0a2c9fa22b721b784
6dfd9a1b2f8ee5d80dc289e92fa9b4bbcc431dd6
f04d457310be089695f7ff748365316224e09d2015ba7f217abbeec397068f8e

HTTP Headers

GET /item/detail/orig/photos/m51728455632_1.jpg?1662471030 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://noveltyratio.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EODVfqb1Oj79d0sXYyIAAAAiNGM5YmE4YjY1MzhmZmZmZmNhZDI0ZDRmNjBlMmQ5OTki"
last-modified: Tue, 06 Sep 2022 13:30:31 GMT
x-amz-id-2: fqpCLl6STf3BzlZO/aAK8YUCVaL1asyJyLYln7pby9UH6T2oa5/t9Vy0zPGc2G7B+WrbTMTQekc=
x-amz-request-id: 7G06GZPZ8YDTHE52
x-amz-version-id: nRtMxq9hlZK9SRfFzbXwOHMa0RmpKM1s
via: http/1.1 rear.sv128 (ATS [cMsSfW]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 09 Dec 2022 10:47:38 GMT
age: 2448287
x-served-by: cache-tyo11981-TYO, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 31, 1
x-timer: S1670582858.198894,VS0,VE1
access-control-allow-origin: *
content-length: 66967
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m66721317664_1.jpg?1662685328

199.232.214.131

200 OK

91 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m66721317664_1.jpg?1662685328
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 720x720, components 3\012- data
Size
91 kB (90634 bytes)
Hash
845bfcab71f3dd2da083dd878c18a352
2f32399c25ad7bcad55ad02d29bc6a95175de132
7383c5abea295b43153b3378a4e08d3a176ddf6cac0ef5f7d35290dceffd1345

HTTP Headers

GET /item/detail/orig/photos/m66721317664_1.jpg?1662685328 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://noveltyratio.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EMdCZMiffRyXkZAaYyIAAAAiNmM1ZmJhZGVkMzM2OTRkYzFkNGEyN2EzNDY2MDc1YjYi"
last-modified: Fri, 09 Sep 2022 01:02:09 GMT
x-amz-id-2: vMpOCIvZV7fkTkZi8R6Rs0logIrONHyGL2RCWIP1y+xicgymWEt6ZapirRX9DW3DTrfZZUX4bRc=
x-amz-request-id: FGTYZGCTTQDBZWFN
x-amz-version-id: U.cKRBIH.t2VhyHtvTyMLgC_oQn.eOrm
via: http/1.1 rear.sv114 (ATS [cMsSfW]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 09 Dec 2022 10:47:38 GMT
age: 2612406
x-served-by: cache-tyo11953-TYO, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 30, 1
x-timer: S1670582858.200457,VS0,VE1
access-control-allow-origin: *
content-length: 90634
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m98739731946_1.jpg?1661043260

199.232.214.131

200 OK

27 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m98739731946_1.jpg?1661043260
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size
27 kB (26944 bytes)
Hash
07ff2c0a2e1a3d231d69fd86342a9a2a
7ba7db15f5576e5fbdb813e5abc537358cf46ddc
fa8e8307906286f30af7e3dffe4c57b75a371392d082108c4e196a33c61a20b6

HTTP Headers

GET /item/detail/orig/photos/m98739731946_1.jpg?1661043260 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://noveltyratio.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EBtxJMfZ32UMPYIBYyIAAAAiMDFiYjE4ZThiY2UwODc0ZTU5YTU0ODZjY2MwZGVjZWQi"
last-modified: Sun, 21 Aug 2022 00:54:21 GMT
x-amz-id-2: JyFDdAlKjcDt28/Q9N4XBr8zL0hn+daUAc9KRvSFfUhlFTlM5jBYgseOIlrI6+PZZwonU1yKLL8=
x-amz-request-id: MCBPXVAXQV08F62J
x-amz-version-id: wngCbxDsofV_jwWObCfLl8bqGunSopPe
via: http/1.1 rear.sv122 (ATS [cHs f ]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 09 Dec 2022 10:47:38 GMT
age: 3110100
x-served-by: cache-tyo11979-TYO, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1670582858.200090,VS0,VE5
access-control-allow-origin: *
content-length: 26944
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m73357926193_1.jpg?1664326188

199.232.214.131

200 OK

63 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m73357926193_1.jpg?1664326188
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 720x540, components 3\012- data
Size
63 kB (63295 bytes)
Hash
3781a5a7b6b763f954c262ce42fe96ed
a064d7df473bf00a3e6419b115df5654df1d4532
726d4ad7bcbbeea1ac604134ff30372558e0ecba72fb8189274d178e4d9d31cc

HTTP Headers

GET /item/detail/orig/photos/m73357926193_1.jpg?1664326188 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://noveltyratio.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"ECsh8x9-woDPLZozYyIAAAAiZmJlNWFiMWYzZDJlMDc1ZGIzMDE1NGVkOTY3ODdiYzci"
last-modified: Wed, 28 Sep 2022 00:49:49 GMT
x-amz-id-2: h7hCnA52SFhRywmpR5S96i3/fcdgQp+hccXoV25LgeQsZJ2WsvDXKkpxIa4dqLVAgTUeGTYlsU0=
x-amz-request-id: J8BV87DHKX35GMG6
x-amz-version-id: 7IWOTNEKA0V_cJ4ceGCBOJPQc_LoJ6tv
via: http/1.1 rear.sv124 (ATS [cMsSfW]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 09 Dec 2022 10:47:38 GMT
age: 2112653
x-served-by: cache-tyo11935-TYO, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 184, 1
x-timer: S1670582858.200777,VS0,VE1
access-control-allow-origin: *
content-length: 63295
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m35657769176_1.jpg?1635872194

199.232.214.131

200 OK

54 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m35657769176_1.jpg?1635872194
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x718, components 3\012- data
Size
54 kB (53679 bytes)
Hash
9a1aaea72636b79f6338ee490a28c36c
35cd4cb3b7c604f9de6a27179cb02b0c9d6babce
642c3748aaade8f7fb9cbd56a750d112922104e782ee1613c55a935b631d6722

HTTP Headers

GET /item/detail/orig/photos/m35657769176_1.jpg?1635872194 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://noveltyratio.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"ENdYmnC1W2hvw22BYSIAAAAiMTM0MmZkZWU3MzM3MzM0Y2ZhYjEzZGVjYWQ4NjNmM2Ii"
last-modified: Tue, 02 Nov 2021 16:56:35 GMT
x-amz-id-2: kh3xwdCKrWFyXVPsMiPRN7BI67IL5MaRqvZgyEIodVJ72ngVVyd904U24jGqHz5NnGj5c2rahjg=
x-amz-request-id: YJ8MT8VY05CQF20J
x-amz-version-id: Z1T3a7hQfYJz__oEEsAEExTayKauH9NK
via: http/1.1 rear.sv117 (ATS [cMsSfW]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 09 Dec 2022 10:47:38 GMT
age: 152
x-served-by: cache-tyo11948-TYO, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1670582858.200451,VS0,VE9
access-control-allow-origin: *
content-length: 53679
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m95703721429_1.jpg?1660798677

199.232.214.131

200 OK

98 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m95703721429_1.jpg?1660798677
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size
98 kB (97867 bytes)
Hash
bc7fd5f8459a486e5475bbe8ec7d62da
f0361b73c058a84c88318f48fcee7b0b976fecd9
567a9042743bbd471b7aaa7e9438b685c21577a190e7fea97e383ff8cc26e357

HTTP Headers

GET /item/detail/orig/photos/m95703721429_1.jpg?1660798677 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://noveltyratio.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EEbmNW5KBcEd1sb9YiIAAAAiYzU4YzIxYWQ4ODYwYjQ4YjYyMjkyYmU2MjBhZDdiYTIi"
last-modified: Thu, 18 Aug 2022 04:57:58 GMT
x-amz-id-2: jz3toa6sZHQq3yW7x1HLQB/uR5eRDzQZbK0LgoZ+SotqCTXL7Bm5ylB0FG6P3EUIXcX4Xpn67vI=
x-amz-request-id: 9P37HX3R8N2QAV1S
x-amz-version-id: .gYBQpwYRwqlBb2yG6QgmjwXGiLQjvpx
via: http/1.1 rear.sv111 (ATS [cHs f ]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 09 Dec 2022 10:47:38 GMT
age: 3133609
x-served-by: cache-tyo11969-TYO, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 57, 1
x-timer: S1670582858.201132,VS0,VE1
access-control-allow-origin: *
content-length: 97867
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m77583001279_1.jpg?1663043247

199.232.214.131

200 OK

98 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m77583001279_1.jpg?1663043247
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size
98 kB (97624 bytes)
Hash
3e60404b528bf516bd520877b46516a5
ec46509f71b90fdbd2cce26519a94f3167afd250
f3bdf8a012a4426f30765556b9d361984b411ee6d6f8bd7ece24e86d38be2a3f

HTTP Headers

GET /item/detail/orig/photos/m77583001279_1.jpg?1663043247 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://noveltyratio.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"ELusodXnhnFYsAYgYyIAAAAiMmI3MmI1YjczMTNkYTAyMmI3NWIzNTkzZTExZTA3ZmYi"
last-modified: Tue, 13 Sep 2022 04:27:28 GMT
x-amz-id-2: qRlXxG7RU4JJxoOFAtnixGUgX8cbnLR6PziQQ7HP/9s1HwnuT2TDdaVf9usEcjN/R9nKOgt90YY=
x-amz-request-id: DWEADZM3JM2N1823
x-amz-version-id: ey.KiyehGnYIEjjcJ0bspLrs8chmfhps
via: http/1.1 rear.sv122 (ATS [cHs f ]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 09 Dec 2022 10:47:38 GMT
age: 2558860
x-served-by: cache-tyo11969-TYO, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 159, 1
x-timer: S1670582858.200751,VS0,VE8
access-control-allow-origin: *
content-length: 97624
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m13084260755_1.jpg?1656073666

199.232.214.131

200 OK

69 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m13084260755_1.jpg?1656073666
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 540x720, components 3\012- data
Size
69 kB (68881 bytes)
Hash
2406c20bc156ba1be9f6daa7b0fe94ae
c2e1caf20ca5bb82824e8e97b8038b59a62dcd0a
0dec9302b2dd3be78d9909f9a1b9c1da7c78be94e7868821b9ee6b1e20a54931

HTTP Headers

GET /item/detail/orig/photos/m13084260755_1.jpg?1656073666 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://noveltyratio.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EIvfWuiXsK-ww621YiIAAAAiOTQ4MTQ2MzBmM2Y1MzQ2NDA4ODlkODQ0ZTcxODNhYzgi"
last-modified: Fri, 24 Jun 2022 12:27:47 GMT
x-amz-id-2: jZJCScUPhESI0kLT1H0gdpiLRN6obdb+oYzyJSwb2a/onRDjcoQ5vgIl4KdKLMQSdWCWpUNVzgo=
x-amz-request-id: T1HYD5TM7J46VJ3G
x-amz-version-id: Q0txvHSWURGI7QB72H_jjWzD6fCED46D
via: http/1.1 rear.sv108 (ATS [cHs f ]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 09 Dec 2022 10:47:38 GMT
age: 1505257
x-served-by: cache-tyo11962-TYO, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 9, 1
x-timer: S1670582858.211969,VS0,VE1
access-control-allow-origin: *
content-length: 68881
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m77721210928_1.jpg?1650061485

199.232.214.131

200 OK

81 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m77721210928_1.jpg?1650061485
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 810x1080, components 3\012- data
Size
81 kB (81085 bytes)
Hash
f976646a16acc8820dd43ab3d08dadbe
deac51765498fe130df1ffc598806ccf9c45a559
b4484a8d72320c09cd59b13de1c547f528b24c63484d02841e1f31f994a34e84

HTTP Headers

GET /item/detail/orig/photos/m77721210928_1.jpg?1650061485 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://noveltyratio.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EB4WkOep8kTprvBZYiIAAAAiNjA3NTNjZWI1MzBmMTU1YzJkNTU4MDk0NzQ4NTM4ZTci"
last-modified: Fri, 15 Apr 2022 22:24:46 GMT
x-amz-id-2: RWA8BJK4m/AqV13NwFHE4KC5slB7Pk7ji/99IIebEg5XaLGEHIG4b7Z/4ywyMvhjycWmOOsWMwM=
x-amz-request-id: WC0J241JNCKPMD6A
x-amz-version-id: 4vGNaRrGpiMhbRn8NuUwnd5WFO5tcPET
via: http/1.1 rear.sv123 (ATS [cHs f ]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 09 Dec 2022 10:47:38 GMT
age: 2833288
x-served-by: cache-tyo11923-TYO, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1670582858.211753,VS0,VE1
access-control-allow-origin: *
content-length: 81085
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m14176271975_1.jpg?1583833112

199.232.214.131

200 OK

84 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m14176271975_1.jpg?1583833112
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size
84 kB (84498 bytes)
Hash
c123c7317e63c3373ba07f65f521b8e0
6d21864e87ebe3e2d3456e2654b2d70f5866b8e4
1c3704bfca3f5801e36fd25eece8896bc2f382cc3d5767c87d0c53f73e2b1171

HTTP Headers

GET /item/detail/orig/photos/m14176271975_1.jpg?1583833112 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://noveltyratio.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EBq_vWUvH81cGWBnXiIAAAAiOWU0NGE0MTVlZTdkODJiYmU1NDQwZTg5N2RmOTg4NDEi"
last-modified: Tue, 10 Mar 2020 09:38:33 GMT
x-amz-id-2: JyF4SoIGgFRnAKNPg7C4OcBtCIL7NxUFNPGX4lx6SD9+bNF9/0zcW1Ah6cChosoICZcxMAY00gs=
x-amz-request-id: R0ZWDRY4XFYF3AMV
x-amz-version-id: CEiejKICLCIyFQJCuO1IRFfuKiIsE04x
via: http/1.1 rear.sv128 (ATS [cMsSfW]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 09 Dec 2022 10:47:38 GMT
age: 614405
x-served-by: cache-tyo11974-TYO, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 33, 1
x-timer: S1670582858.206789,VS0,VE1
access-control-allow-origin: *
content-length: 84498
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m44698535182_1.jpg?1583816917

199.232.214.131

200 OK

123 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m44698535182_1.jpg?1583816917
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size
123 kB (123223 bytes)
Hash
7d816df944c696079e618c61d3c4b9e9
df82149a7f0575031b2d4114de18245466337a29
5ae3f4f420a8924b335fcb8e5889bdac9d181bcb5964ad81d60acabf9725827f

HTTP Headers

GET /item/detail/orig/photos/m44698535182_1.jpg?1583816917 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://noveltyratio.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EM1bSNZhZofB1iBnXiIAAAAiZGVkZjJkY2U0ZTBmNGM1ZDA0MDMxZTU3Y2Q0OGQ1NDMi"
last-modified: Tue, 10 Mar 2020 05:08:38 GMT
x-amz-id-2: Lb+954b/VnMysOeW3OdFnufgqT3hQOHVRdPoGLvbl6XfeGm3W0eRdPssGa2BVtjbBV94Czjw03k=
x-amz-request-id: YWHM02JJZM4BA3ZP
x-amz-version-id: c9Ne7rqaIyvfEmqECB6lUpyGplS3WNRs
via: http/1.1 rear.sv121 (ATS [cMsSfW]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 09 Dec 2022 10:47:38 GMT
age: 2710669
x-served-by: cache-tyo11941-TYO, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 125, 1
x-timer: S1670582858.206807,VS0,VE1
access-control-allow-origin: *
content-length: 123223
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m28978683592_1.jpg?1663545690

199.232.214.131

200 OK

71 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m28978683592_1.jpg?1663545690
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 844x1080, components 3\012- data
Size
71 kB (71237 bytes)
Hash
ad9ef5dc384d744dd5134364af0c8722
f9d5883d514e92a626e89abf5f1c58bdae19c279
7cd267caea197345f03e29f448440afbd776e142adbd5225ec634239edf1b090

HTTP Headers

GET /item/detail/orig/photos/m28978683592_1.jpg?1663545690 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://noveltyratio.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EOKfFLLpemX3W7EnYyIAAAAiNmQ2NTIyNmVmOGNkNThiZjI1YmY1NGYzYzkwZjg0YWYi"
last-modified: Mon, 19 Sep 2022 00:01:31 GMT
x-amz-id-2: 2CJ27y+1O5tyCUje6lda3Ad+rk4pb48LK5KxevhyhJOtYCbcnaxBO2LE+akjTmr/QIesiXjs7/0=
x-amz-request-id: J8BSNWPH8NE5HGRV
x-amz-version-id: 1WaqnKCtAVjks1r4AiLpizJs1lPNniUd
via: http/1.1 rear.sv125 (ATS [cMsSfW]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 09 Dec 2022 10:47:38 GMT
age: 2112653
x-served-by: cache-tyo11955-TYO, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 38, 1
x-timer: S1670582858.206794,VS0,VE4
access-control-allow-origin: *
content-length: 71237
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m98219370482_1.jpg?1652431507

199.232.214.131

200 OK

132 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m98219370482_1.jpg?1652431507
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size
132 kB (131470 bytes)
Hash
a93ffa71d92f67f436aaf2d0ed744e7d
07903cbe49e8ebc07b58c61cbcb4e902a2caad8a
484a17431652a6257cb5ffa3177d27ba0e753c380a9328e21e8bd31c10c339bd

HTTP Headers

GET /item/detail/orig/photos/m98219370482_1.jpg?1652431507 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://noveltyratio.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EFCmfjEQkrailBp-YiIAAAAiZjczMTliZTk0ODJkZTkwMTMwZDNkYTVjNGNmNGUxOWMi"
last-modified: Fri, 13 May 2022 08:45:08 GMT
x-amz-id-2: LqF3n5uqOayUOn9gjTlfqgxAAJvEAoWPA/+hRKYkvxpsXE01bYpRCGLxzESIE5NEOAighPscTV4=
x-amz-request-id: 3ZHP337WC718KEM6
x-amz-version-id: N_E_Z3uB_2jKdrxWcQUf20hUR.zVZgab
via: http/1.1 rear.sv130 (ATS [cHs f ]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 09 Dec 2022 10:47:38 GMT
age: 3136269
x-served-by: cache-tyo11929-TYO, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 378, 1
x-timer: S1670582858.200809,VS0,VE1
access-control-allow-origin: *
content-length: 131470
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m20602950788_1.jpg?1663847448

199.232.214.131

200 OK

165 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m20602950788_1.jpg?1663847448
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1079x1080, components 3\012- data
Size
165 kB (165373 bytes)
Hash
d46672f4e62e6fb09f76f480adef780d
ef356043de06e0333cbeff1101c5a6d755ce8937
90c816e62f0e5e287979e7908ba168bf02aa00987d61d60aad538ab816e98a39

HTTP Headers

GET /item/detail/orig/photos/m20602950788_1.jpg?1663847448 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://noveltyratio.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"ELuro3BaguolGUwsYyIAAAAiOTQ1YzA5Y2JhMDkzZWI0OGJiYjhjOWZjNDdiNjM5YTci"
last-modified: Thu, 22 Sep 2022 11:50:49 GMT
x-amz-id-2: q7diy1ODEerh/vknJRZMm5iD/MfMkP83fePmz3MgQMpO55D0NaJXKRGIa0Jv0yXABM8m7xLifRE=
x-amz-request-id: 7G0A4H9GYYHZA34Y
x-amz-version-id: 53S8MA3XXEpW88rFkwAQcRFFsxcdIlCx
via: http/1.1 rear.sv127 (ATS [cHs f ]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 09 Dec 2022 10:47:38 GMT
age: 2448288
x-served-by: cache-tyo11963-TYO, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 27, 1
x-timer: S1670582858.201664,VS0,VE1
access-control-allow-origin: *
content-length: 165373
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m71606108773_1.jpg?1658925606

199.232.214.131

200 OK

87 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m71606108773_1.jpg?1658925606
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x810, components 3\012- data
Size
87 kB (86642 bytes)
Hash
b87abebe805bca6955a23f454458a991
5ba419693b51403e3bd882ad617b1d2deeff41b4
d296b827c2388ab6a2e2346f837fb55cc59410ed307894af355865c0ee3ed5f8

HTTP Headers

GET /item/detail/orig/photos/m71606108773_1.jpg?1658925606 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://noveltyratio.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EFfXvHK4BAcjJzLhYiIAAAAiOWRmYzVkMjY3MmJiODBlMmEyODg2OGY3MjAzNDQwNjAi"
last-modified: Wed, 27 Jul 2022 12:40:07 GMT
x-amz-id-2: O/ugDYkqUz6A0t4RAmNCcXEEIKMyI9orgY7YgyBjlyl+/jCaW+Nwjy5ZmNz1fPmTY8s0lgpUXJw=
x-amz-request-id: CGPZFA2Q6H7PV7WJ
x-amz-version-id: cILC1Fe8AjXAeIzphtmXLcDpv9lmZRzk
via: http/1.1 rear.sv107 (ATS [cHs f ]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 09 Dec 2022 10:47:38 GMT
age: 1165275
x-served-by: cache-tyo11954-TYO, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 7, 1
x-timer: S1670582858.211605,VS0,VE1
access-control-allow-origin: *
content-length: 86642
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m41577962928_1.jpg?1641520844

199.232.214.131

200 OK

131 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m41577962928_1.jpg?1641520844
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size
131 kB (130832 bytes)
Hash
daa63c97ab4415d83719bc7bfc2726e2
382862aa57542857a5c2a7153e1357f5a73ab470
acefd47b954aa6da597eabf8021818f5cc22f1b03c36d8ea2336d69cfca481af

HTTP Headers

GET /item/detail/orig/photos/m41577962928_1.jpg?1641520844 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://noveltyratio.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"ELy7s8PVh0huzZ7XYSIAAAAiMThmNWY1MmU4NjI4Y2JjZDI5N2I4ZTY2ZGQyZDY1NzAi"
last-modified: Fri, 07 Jan 2022 02:00:45 GMT
x-amz-id-2: XV/f78WD9jgywZkB5S75dyrugHWQfxYlq3Ub8WGhl38ztMDPEUtkrcuBkWQpJsCbNdnC+D+EJg8=
x-amz-request-id: V9MSH4T7ZZAY23V1
x-amz-version-id: Tm_s4XEDbkYhNK83VqOBqq8VF3J_X4hr
via: http/1.1 rear.sv126 (ATS [cHs f ]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 09 Dec 2022 10:47:38 GMT
age: 3101292
x-served-by: cache-tyo11941-TYO, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 38, 1
x-timer: S1670582858.210670,VS0,VE1
access-control-allow-origin: *
content-length: 130832
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3480
Expires: Fri, 09 Dec 2022 11:45:38 GMT
Date: Fri, 09 Dec 2022 10:47:38 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3480
Expires: Fri, 09 Dec 2022 11:45:38 GMT
Date: Fri, 09 Dec 2022 10:47:38 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3480
Expires: Fri, 09 Dec 2022 11:45:38 GMT
Date: Fri, 09 Dec 2022 10:47:38 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3480
Expires: Fri, 09 Dec 2022 11:45:38 GMT
Date: Fri, 09 Dec 2022 10:47:38 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3480
Expires: Fri, 09 Dec 2022 11:45:38 GMT
Date: Fri, 09 Dec 2022 10:47:38 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feaa98459-9507-4e55-9fad-ef4a6111e4fc.jpeg

34.120.237.76

200 OK

8.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feaa98459-9507-4e55-9fad-ef4a6111e4fc.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.3 kB (8295 bytes)
Hash
911f9077bb888e775390cd5f34825f93
d64877f85440c5b7ab98bd29589f273b2b003608
9ae0779879235abd98a87fd4a25b0e2c1961d7e37ae2481867393e47ac871947

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feaa98459-9507-4e55-9fad-ef4a6111e4fc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8295
x-amzn-requestid: e13ec956-9996-44d1-b216-1138c273d557
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy42XHI_oAMFfCw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63910828-532765c65249a4b339abfad4;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:39:52 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kcb5fl-miXnXqm7WbECVJvVsd4qmhOxOpbTAaE9MRlDPAIZnUuFi4w==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 22:07:10 GMT
age: 45628
etag: "d64877f85440c5b7ab98bd29589f273b2b003608"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6578 bytes)
Hash
8546542f00ea29ef4df6ab8d3c7c2164
5c8ffe91490006a9890188b53f875568c2b6bd8f
7fb11750ac339ac283da62fd370862c6b95a103a585ca5dd8c90038718d818a1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6578
x-amzn-requestid: 6392feb9-e33e-42fa-bc10-b5e31e654c9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw4beGG7oAMF8hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903aaf-2c890b7b0a16617346a0f7e7;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: nXaZ1pazAGWMI9GFYZjGlvVVIb8wX6feD0O8VpzjsL8F8l3mFmydAw==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 07:13:59 GMT
age: 12819
etag: "5c8ffe91490006a9890188b53f875568c2b6bd8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.9 kB (7897 bytes)
Hash
8c3214044657f3b876d1f1848bca5684
7558222788f06623ddae6e883413e38e1146281e
e1f9c9c445bba7765f371dbb655cab43c1e12de7cbd015f8034c494118f7f708

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7897
x-amzn-requestid: 032fd8ae-b7e9-4e12-8546-838191a73688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F51IAMFunw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-345ae6cd107d207f5dbe29a8;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oV7bB5Tek01MFi9x2tr_Wix13-UGlQPIt042XM0ALNUvVFYnu5DRcg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:38:26 GMT
age: 25752
etag: "7558222788f06623ddae6e883413e38e1146281e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe7732c6-dc98-445c-86c6-d413942250ea.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10205 bytes)
Hash
45e0c1638ad919bde19731f7987ab064
1e492807c665e6e6b24ec6ce19035fdfc6f23b92
f0d3738ec8406958470c8fd152a02a123d7654c30f974c1df5c4977a380c2d62

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe7732c6-dc98-445c-86c6-d413942250ea.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10205
x-amzn-requestid: c5704c7a-60c4-402b-8018-5885a8dae971
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F9BIAMF3ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-3e9573d900714e3250f43e17;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mLTL7L808-OguYGrl3FUvwmFmPQjBPRj7PVfgEheFHWg4g4skoBvOg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 18:05:28 GMT
age: 60130
etag: "1e492807c665e6e6b24ec6ce19035fdfc6f23b92"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5188 bytes)
Hash
fba9a3854df65740512f96efe7442e58
8fbff7725c842d70e047c635a725723a9dc9c55a
6e639298ebc82343cee9267d2910d15735af55f910e2c3de9218266b7c6fffc9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5188
x-amzn-requestid: afb8cbd2-3674-4dac-9cd9-9ff83618ac0a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ck2-5G9joAMFlPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638b6b92-2979ff216b9028aa70baef8b;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 15:30:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dGxzuQ6zj6wXQbkBuKBnOKxwKJDHUyGoi7PgcugcpdX4QYruNiFxsQ==
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 21:51:24 GMT
age: 46574
etag: "8fbff7725c842d70e047c635a725723a9dc9c55a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf3829a8-4b4d-433d-9452-46c3ffc7ea6e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.2 kB (7217 bytes)
Hash
955c6ac69b89f6cbd497df53fcb2ae1b
2506152cdd1056533116feb9350124356e570e54
fca1b303a554aa9cdd13c4769a1088e1905ef888ed703de17864fe76ff880abe

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf3829a8-4b4d-433d-9452-46c3ffc7ea6e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7217
x-amzn-requestid: be9196fc-3d43-49db-8522-8781cbf5a247
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUEDEWpIAMFqUQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e66e6-04b24220213872ba378d3538;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4QlJZW4ZiPNVhOJbcRldanR8veym3l0sIBGa1Ym-4FOTT_utMQeZQg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 09:33:53 GMT
age: 4425
etag: "2506152cdd1056533116feb9350124356e570e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5169 bytes)
Hash
06514ce96ae21cb01f526a5febdcbeb4
ebb97e5b97f394e8c67098f55581d5329ce819a2
4099a2fb6ddc4feaa30f357a180d64aeb7c9fc73f115fc762d5fe5c221d2e89e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 5169
x-amzn-requestid: 277a1b04-4e19-4313-8aac-5f9ab9076305
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctEdkFGrIAMFvHg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb456-5b21edd57297665012d536cc;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:17:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: swNGUcNy2i0w9UGe-EJhwslE01TzTC3rrDhLhVVxHyhWMGSC1uq0mA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 04:46:15 GMT
age: 21690
etag: "ebb97e5b97f394e8c67098f55581d5329ce819a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

noveltyratio.top/

104.21.82.122

200 OK

0 B

URL HTTP/2
noveltyratio.top/
IP
104.21.82.122:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: noveltyratio.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Fri, 09 Dec 2022 10:47:37 GMT
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
vary: Accept-Encoding
set-cookie: zenid=o0m7ikcbvhfnrmps5amca8taf7; path=/; domain=.noveltyratio.top; secure; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NYitma91mtYmPOW0XXGLwihQzf41uQA4jVdhGm1aSuoJHzAC6G98nHP3%2Bn2ZIS3GyNh7b7vAkA5jOTFOAIxQfVOWnR6EiR1IjMhUb1gDHqaZ89V3%2BYAEa%2FCt%2FdPsIzUXvjIN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 776d29e478570b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (2)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (41)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type