Report - tr.hedgewiz.biz/k/63a2dce1a2e42a0008a0325f?lid=&url=calendly.com/hedgewiz-payments/hedgewiz-demo-anthony

Report Overview

Submitted URL
tr.hedgewiz.biz/k/63a2dce1a2e42a0008a0325f?lid=&url=calendly.com/hedgewiz-payments/hedgewiz-demo-anthony
IP
104.21.12.117
ASN
#13335 CLOUDFLARENET
Submitted
2022-12-21 12:38:17
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-09T11:52:10Z	1.7 kB	3.1 kB	93.184.220.29
cdnjs.cloudflare.com	235	2015-04-17T22:46:33Z	2023-03-09T05:09:51Z	934 B	85 kB	104.17.25.14
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-09T10:04:36Z	3.2 kB	61 kB	34.120.237.76
tr.hedgewiz.biz	unknown	2020-12-24T16:14:17Z	2023-02-18T08:32:57Z	984 B	1.9 kB	104.21.12.117
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-09T05:09:05Z	2.0 kB	5.3 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-09T05:09:18Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-09T05:09:49Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-09T05:09:48Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-09T05:09:13Z	606 B	127 B	44.236.232.139

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2022-12-21 12:38:30	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2022-12-21 12:38:30	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (2)

	URL	Size	First Seen	Last Seen
	tr.hedgewiz.biz/new_assets/jstz.min.js	12 kB	2023-03-07	2024-04-18
Pretty URL tr.hedgewiz.biz/new_assets/jstz.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:54 Last Seen2024-04-18 14:29:19 Times Seen325 Hash 48f703a2b72224c19334f03ba294d924 4291cd3b259d2060460c2a6ab99f428d3c0c9537 ebcb35563ab0d4a54fd83891e6e3629594237feb45e88ad023d3e329363cf273 Loading...

	tr.hedgewiz.biz/new_assets/jquery/jquery/dist/jquery.js	248 kB	2023-03-07	2024-04-17
Pretty URL tr.hedgewiz.biz/new_assets/jquery/jquery/dist/jquery.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:21:57 Last Seen2024-04-17 14:22:35 Times Seen672 Hash 107fbe9555bfc88ec5cab524c790fe34 0fed45ad7a48ace869bc725ca474ad86a1ef1562 b2215cce5830e2350b9d420271d9bd82340f664c3f60f0ea850f7e9c0392704e Loading...

HTTP Transactions (26)

	URL	IP	Response	Size
	tr.hedgewiz.biz/k/63a2dce1a2e42a0008a0325f?lid=&url=https://calendly.com/hedgewiz-payments/hedgewiz-demo-anthony	104.21.12.117	301 Moved Permanently	0 B
URL HTTP/1.1 tr.hedgewiz.biz/k/63a2dce1a2e42a0008a0325f?lid=&url=https://calendly.com/hedgewiz-payments/hedgewiz-demo-anthony IP 104.21.12.117:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /k/63a2dce1a2e42a0008a0325f?lid=&url=https://calendly.com/hedgewiz-payments/hedgewiz-demo-anthony HTTP/1.1 Host: tr.hedgewiz.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` HTTP/1.1 301 Moved Permanently Date: Wed, 21 Dec 2022 12:38:06 GMT Transfer-Encoding: chunked Connection: keep-alive Cache-Control: max-age=3600 Expires: Wed, 21 Dec 2022 13:38:06 GMT Location: https://tr.hedgewiz.biz/k/63a2dce1a2e42a0008a0325f?lid=&url=https://calendly.com/hedgewiz-payments/hedgewiz-demo-anthony Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ssIl%2Bd2a0%2FhDxBS6RnnyZsG6vh0rSs8MhLZYgMEXBSzRAGuFv5URAXgWZXjJJEn9u6C3FeLJXRQikE4Vg04awKfkQ0gCzxiyNRd8o3tgrVj9nr8GjCNBD7jP2d6XEE8ISMM%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 77d0ac40de5ab4f9-OSL alt-svc: h2=":443"; ma=60

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash bbea1550fedd5eb9c265712fab75b137 2c2f981747898a380265f766345f2bb9c8c983fd c728286e38c31a4d3f7a39702e0a5f69c14bf69e01a88bc4479714953fbda278 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C728286E38C31A4D3F7A39702E0A5F69C14BF69E01A88BC4479714953FBDA278" Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6317 Expires: Wed, 21 Dec 2022 14:23:23 GMT Date: Wed, 21 Dec 2022 12:38:06 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 04c14564c7083355371e41c5a09acada ea488e34661be5420c798c7e26f193b4dee7bb37 d7e5c37d8e6cbed236670d050f84f288539642f7a41a54b0abd39357f7c42232 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "D7E5C37D8E6CBED236670D050F84F288539642F7A41A54B0ABD39357F7C42232" Last-Modified: Tue, 20 Dec 2022 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2778 Expires: Wed, 21 Dec 2022 13:24:24 GMT Date: Wed, 21 Dec 2022 12:38:06 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash ff250d3ef3fa45322bf05039a0122a9f b3e7a2c383bce1bab807dbe1a03c375258b51f1d d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Wed, 21 Dec 2022 11:45:55 GMT content-type: application/json age: 3131 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash f4b32de26d9af2cba6afcdcf716d3fb8 644ead4436a8f2fc1f0dd25e4484b64f6ed63347 525123034cb53d750d5ebd487015911452d2cd3c34301e6628f2f52f3f0bfc88 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "525123034CB53D750D5EBD487015911452D2CD3C34301E6628F2F52F3F0BFC88" Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3104 Expires: Wed, 21 Dec 2022 13:29:50 GMT Date: Wed, 21 Dec 2022 12:38:06 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 53341dea33f4f3d9b4966f80589f429a 20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d 651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: /zsQzIHdsy6PKQvQSI0TvoqYH0NjvAmxPAIz2KlKg30IDiIy+7E3ccXBY+HTgFgnacAOVRhIG78= x-amz-request-id: TV5A8ARX3DPW2TXG content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Wed, 21 Dec 2022 12:29:51 GMT age: 495 last-modified: Wed, 30 Nov 2022 10:06:34 GMT etag: "53341dea33f4f3d9b4966f80589f429a" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Wed, 21 Dec 2022 12:38:06 GMT content-type: application/json content-length: 12 access-control-allow-credentials: true access-control-expose-headers: content-type vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	ocsp.digicert.com/	93.184.220.29	200 OK	278 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 278 B (278 bytes) Hash 5cbc021f895cf0b279d274940927235a caae008250d4a2cd1853b60d88e2f94d5ee840a7 36b51b7849dc93ce741d2f1d2c1ba14b88049655f341abb041b77f3427eb3276 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Cache-Control: max-age=170191 Content-Type: application/ocsp-response Date: Wed, 21 Dec 2022 12:38:06 GMT Etag: "63a2f3fd-116" Expires: Fri, 23 Dec 2022 11:54:37 GMT Last-Modified: Wed, 21 Dec 2022 11:54:37 GMT Server: nginx Content-Length: 278`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, ETag, Pragma, Last-Modified, Expires, Alert, Content-Type, Retry-After, Cache-Control, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Wed, 21 Dec 2022 12:33:24 GMT age: 282 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 859d899d982bb69df5fb16b8393fa119 580215f1d4f81cda04012c0889cfd9b18ba11863 38159dd549e94d45798b614efa5f968de7b74830c845220d1b6c1435f3940a94 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 2714 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Wed, 21 Dec 2022 12:38:07 GMT Last-Modified: Wed, 21 Dec 2022 11:52:53 GMT Server: ECS (ska/F717) X-Cache: HIT Content-Length: 471`

	push.services.mozilla.com/	44.236.232.139	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 44.236.232.139:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: jr0aiBzFvwVascPJwbq1Ow== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: tzj5g7zZuCHCXtrysDizImMOR9g=`

	ocsp.digicert.com/	93.184.220.29	200 OK	278 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 278 B (278 bytes) Hash 5cbc021f895cf0b279d274940927235a caae008250d4a2cd1853b60d88e2f94d5ee840a7 36b51b7849dc93ce741d2f1d2c1ba14b88049655f341abb041b77f3427eb3276 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 1 Cache-Control: max-age=170191 Content-Type: application/ocsp-response Date: Wed, 21 Dec 2022 12:38:07 GMT Etag: "63a2f3fd-116" Expires: Fri, 23 Dec 2022 11:54:38 GMT Last-Modified: Wed, 21 Dec 2022 11:54:37 GMT Server: ECS (ska/F717) X-Cache: HIT Content-Length: 278`

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash 7011324f8501f3c2c1e545068299bec1 f9ca3911f1c3f66cf89c1b7f2e251c3669636fcb 6afe60a2ce277e620ad2ab621a77fc140d3d28c70b3774afd07ee85e58465623 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6216 Cache-Control: max-age=120630 Content-Type: application/ocsp-response Date: Wed, 21 Dec 2022 12:38:08 GMT Etag: "63a21a1e-118" Expires: Thu, 22 Dec 2022 22:08:38 GMT Last-Modified: Tue, 20 Dec 2022 20:25:02 GMT Server: ECS (ska/F717) X-Cache: HIT Content-Length: 280`

	cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css	104.17.25.14	200 OK	5.6 kB
URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css IP 104.17.25.14:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (30837) Size 5.6 kB (5631 bytes) Hash 109d1ed85cd01f9cdab73a4cac5bf80d d6c6498ad46de2d8e2008a8ff68e364ae7f16b32 8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc HTTP Headers `GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://tr.hedgewiz.biz/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Wed, 21 Dec 2022 12:38:08 GMT content-type: text/css; charset=utf-8 content-length: 5631 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03e5f-7918" last-modified: Mon, 04 May 2020 16:10:07 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 28835 expires: Mon, 11 Dec 2023 12:38:08 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DGav0A%2Bo0jRCJKiEyCFQ6sGdTqm9CCGGxH%2FELgDddW0xaP%2B%2FNi6yyWvdMJgzY19nqwcmAFplGk%2FtcQUVk3QXAPkbapejm1t2lmow3l%2FanCSkrRXvXeNc7E%2Bu%2Fc7ZkOpnVtBp6nBA"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 77d0ac4c4f0d1c0a-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash 7011324f8501f3c2c1e545068299bec1 f9ca3911f1c3f66cf89c1b7f2e251c3669636fcb 6afe60a2ce277e620ad2ab621a77fc140d3d28c70b3774afd07ee85e58465623 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6216 Cache-Control: max-age=120630 Content-Type: application/ocsp-response Date: Wed, 21 Dec 2022 12:38:08 GMT Etag: "63a21a1e-118" Expires: Thu, 22 Dec 2022 22:08:38 GMT Last-Modified: Tue, 20 Dec 2022 20:25:02 GMT Server: ECS (ska/F717) X-Cache: HIT Content-Length: 280`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash db151f8790fc80bb535b13560972296a 768a8261c1529ccdd5f7ecd2f3b4e65d8e6fa0d1 36b57f1a1229e6700cef5491018a90ec4fe375a4c7bb8e3c7ac8a4cf2ad73d5a HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "36B57F1A1229E6700CEF5491018A90EC4FE375A4C7BB8E3C7AC8A4CF2AD73D5A" Last-Modified: Tue, 20 Dec 2022 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8299 Expires: Wed, 21 Dec 2022 14:56:27 GMT Date: Wed, 21 Dec 2022 12:38:08 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash db151f8790fc80bb535b13560972296a 768a8261c1529ccdd5f7ecd2f3b4e65d8e6fa0d1 36b57f1a1229e6700cef5491018a90ec4fe375a4c7bb8e3c7ac8a4cf2ad73d5a HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "36B57F1A1229E6700CEF5491018A90EC4FE375A4C7BB8E3C7AC8A4CF2AD73D5A" Last-Modified: Tue, 20 Dec 2022 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8299 Expires: Wed, 21 Dec 2022 14:56:27 GMT Date: Wed, 21 Dec 2022 12:38:08 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash db151f8790fc80bb535b13560972296a 768a8261c1529ccdd5f7ecd2f3b4e65d8e6fa0d1 36b57f1a1229e6700cef5491018a90ec4fe375a4c7bb8e3c7ac8a4cf2ad73d5a HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "36B57F1A1229E6700CEF5491018A90EC4FE375A4C7BB8E3C7AC8A4CF2AD73D5A" Last-Modified: Tue, 20 Dec 2022 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8299 Expires: Wed, 21 Dec 2022 14:56:27 GMT Date: Wed, 21 Dec 2022 12:38:08 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0e09193-cc07-43ac-889e-3940948814ce.jpeg	34.120.237.76	200 OK	4.7 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0e09193-cc07-43ac-889e-3940948814ce.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 4.7 kB (4729 bytes) Hash edba09e5cf977de85bbc878f27d6b124 b18cca6c0dfec057305ac3ef231f74887183ebbc 286f14f7d39d91168860d610fc08efe93967781e759eedfac86f29fcf85e9d12 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0e09193-cc07-43ac-889e-3940948814ce.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 4729 x-amzn-requestid: 02b65dca-78b1-4e7a-b6cc-2d9b7f3b9759 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ddt_BHgSoAMFZjw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63a229f9-024fa06264a6b85424f74ae4;Sampled=0 x-amzn-remapped-date: Tue, 20 Dec 2022 21:32:41 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: r4j0S_ZGeww3h1mKQ5QcwGF2llgP5xBrn1kxw1RyPz3GySghhXzZWA== via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 3bb2b699cd244bf37141ea08a6a61732.cloudfront.net (CloudFront), 1.1 google date: Tue, 20 Dec 2022 21:37:23 GMT age: 54045 etag: "b18cca6c0dfec057305ac3ef231f74887183ebbc" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8c50f43-5bd1-47f3-9801-3d69c2401091.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8c50f43-5bd1-47f3-9801-3d69c2401091.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (11535 bytes) Hash d4aa7e9e3fe28e9c401786f7415171f7 8482a47175ff105957d640269bc14ee1fbc97448 2215ff2537f927e2baf4f713fc947afefc83b416719113ce516aa00f2a4e0708 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8c50f43-5bd1-47f3-9801-3d69c2401091.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11535 x-amzn-requestid: 4fb9a698-c429-49e1-a2c5-b9388f03b044 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: daGQIEuSoAMFnBg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63a0b733-53b8088f0d8863f813b9967e;Sampled=0 x-amzn-remapped-date: Mon, 19 Dec 2022 19:10:43 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: MiX_AJgXGldkYjkeHO1OUPzraljox6v7B1M54cJPBdmfUZ7QETowOw== via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 548adcda884eed02304ba5d6a1d7f514.cloudfront.net (CloudFront), 1.1 google date: Tue, 20 Dec 2022 21:55:36 GMT age: 52952 etag: "8482a47175ff105957d640269bc14ee1fbc97448" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd309904d-b04d-4ea5-a08f-18c679152ad0.jpeg	34.120.237.76	200 OK	9.9 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd309904d-b04d-4ea5-a08f-18c679152ad0.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.9 kB (9893 bytes) Hash 93c59f175466e2f77cec141a40cf3587 2f3c4bad2a69184f567f74c814b59b53aa777029 974563dd61f2afb6e26bb5516244d16ed1e76124cc6b500a2039e1d255d8945d HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd309904d-b04d-4ea5-a08f-18c679152ad0.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9893 x-amzn-requestid: b6a76f15-7dc0-43e6-968c-3c228b9aece7 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: dabr3FHXIAMF2tg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63a0d97e-7dab8e9d620fa4323a19ebfc;Sampled=0 x-amzn-remapped-date: Mon, 19 Dec 2022 21:37:02 GMT x-amz-cf-pop: SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: Aw59TwBhJR-YTBGSg5KqhI-oRTPlj1Y2-a6oQf4NTzAw2NL9_H3Qfw== via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 a06140ffee86972bad90c57fc682df36.cloudfront.net (CloudFront), 1.1 google date: Wed, 21 Dec 2022 08:36:40 GMT age: 14488 etag: "2f3c4bad2a69184f567f74c814b59b53aa777029" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdefad689-8a78-41c9-8774-f0b8a1135d15.jpeg	34.120.237.76	200 OK	9.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdefad689-8a78-41c9-8774-f0b8a1135d15.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.0 kB (9044 bytes) Hash 8f5b2e482a0944dfc0de3a69659fa002 64dd897d9163a6eceadc0c5460cdd135d323abb3 feb1a63a27859b88257d50c3c8723131978fd1f363a6f9e1297b91549b4aed9d HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdefad689-8a78-41c9-8774-f0b8a1135d15.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9044 x-amzn-requestid: 981a0010-ec53-4659-818b-4cfa39fa8cd5 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: dbuhqGUbIAMF_QQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63a15e0a-65b084547c4d2b4414236f84;Sampled=0 x-amzn-remapped-date: Tue, 20 Dec 2022 07:02:34 GMT x-amz-cf-pop: SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: -AR7jIQqHV2XWDLH1W7rybyRGcDQ4oSGQsneAScw7MHK3nwjYYkjWg== via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 82893cc36087a50f9a150a621d10e740.cloudfront.net (CloudFront), 1.1 google date: Wed, 21 Dec 2022 07:05:45 GMT age: 19943 etag: "64dd897d9163a6eceadc0c5460cdd135d323abb3" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9917118c-5972-401b-b285-5393790dd2a9.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9917118c-5972-401b-b285-5393790dd2a9.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10082 bytes) Hash b263902026f824265dafc8635785fc65 684efdc99b2b6243fd8a0e94a5ba9cc2147d7591 4c4198f2c893eddf2340ec6bc103f2b06dd4b5a588b81afb2fc0790a2ba148dc HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9917118c-5972-401b-b285-5393790dd2a9.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10082 x-amzn-requestid: af563ab2-2bec-4393-89ed-c39d35dbb8ee x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ddt_CGMWoAMFw1A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63a229f9-3f4fba7229f46d9f0356d9fd;Sampled=0 x-amzn-remapped-date: Tue, 20 Dec 2022 21:32:41 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: VcyyaKnSAMh1uTLQWTg5mDlYLj-8zL-8rLx_tw84vDRvhBfEmTrcbA== via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 21618d080c6bfbcd465fc55a167a8c1a.cloudfront.net (CloudFront), 1.1 google date: Tue, 20 Dec 2022 21:37:22 GMT age: 54046 etag: "684efdc99b2b6243fd8a0e94a5ba9cc2147d7591" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefe0191e-7441-4083-843d-18a9446de816.jpeg	34.120.237.76	200 OK	9.1 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefe0191e-7441-4083-843d-18a9446de816.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.1 kB (9069 bytes) Hash 3bd6359db3b908389343275ee839466b 9094f8e9275252a8e9d5e65fd3e87851b2f80bd7 7380590a93f8a21907c39ddce2f51c599161f219522df4099e9c1a82bcd1e40e HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefe0191e-7441-4083-843d-18a9446de816.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9069 x-amzn-requestid: 103b5caf-fa82-4d66-97e6-99c77027f759 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ddt_DG_hoAMFoKA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63a229f9-1a4accb80dbf5e9f2f696c85;Sampled=0 x-amzn-remapped-date: Tue, 20 Dec 2022 21:32:41 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: D8V_RlBCxL1RHxtCyWkX7_IsCCrOdv2o1Wdic0N_aUz0qguhANp88A== via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 29a825d8a219984d47bec4350779b558.cloudfront.net (CloudFront), 1.1 google date: Tue, 20 Dec 2022 21:37:22 GMT age: 54046 etag: "9094f8e9275252a8e9d5e65fd3e87851b2f80bd7" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0	104.17.25.14	200 OK	77 kB
URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 IP 104.17.25.14:0 ASN #13335 CLOUDFLARENET File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data Size 77 kB (77160 bytes) Hash af7ae505a9eed503f8b8e6982036873e d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe HTTP Headers `GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://tr.hedgewiz.biz Connection: keep-alive Referer: https://cdnjs.cloudflare.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Wed, 21 Dec 2022 12:38:09 GMT content-type: application/octet-stream; charset=utf-8 content-length: 77160 access-control-allow-origin: * cache-control: public, max-age=30672000 etag: "5eb03e5f-12d68" last-modified: Mon, 04 May 2020 16:10:07 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 36673 expires: Mon, 11 Dec 2023 12:38:09 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0H4e3BMNbD7a2kiaiaDSIuIyR4JOIFIG1drenQNGK1%2BKfKxnsobhID8LODfAHwsfc1PK4k6x3a3O4y9fN%2FZaxBUiCAGx9k9HvLLjOEkcSLWOWjVn2ZjCEQ%2F0frHCr5aJoI7TUDxm"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 77d0ac548e2eb50b-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	tr.hedgewiz.biz/k/63a2dce1a2e42a0008a0325f?lid=&url=https://calendly.com/hedgewiz-payments/hedgewiz-demo-anthony	104.21.12.117	200 OK	0 B
URL HTTP/2 tr.hedgewiz.biz/k/63a2dce1a2e42a0008a0325f?lid=&url=https://calendly.com/hedgewiz-payments/hedgewiz-demo-anthony IP 104.21.12.117:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /k/63a2dce1a2e42a0008a0325f?lid=&url=https://calendly.com/hedgewiz-payments/hedgewiz-demo-anthony HTTP/1.1 Host: tr.hedgewiz.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 HTTP/2 200 OK date: Wed, 21 Dec 2022 12:38:07 GMT content-type: text/html; charset=utf-8 x-dns-prefetch-control: off strict-transport-security: max-age=15552000; includeSubDomains x-download-options: noopen x-content-type-options: nosniff x-xss-protection: 1; mode=block content-security-policy: frame-ancestors 'self' https://mail.google.com https://.pipedrive.com https://.salesforce.com https://.myfreshworks.com https://.klenty.com https://.lightning.force.com https://.linkedin.com https://.zoho.eu https://.zoho.in https://*.zoho.com https://app.hubspot.com/ vary: Accept-Encoding via: 1.1 vegur cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=usdCjcsMRC%2BeSOwdunRAGSeFEUU6tlTOOac8sHR0rwdA2Rkt1dpDNzHT%2BWE3jWF2EejHq%2BK9ty%2B%2F8rB4zp1ZyHiA0hKDdPtF2UgigKRl6bdpsLw8A97PJNN8iTbKn2jTbQQ%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 77d0ac444f1f1c0e-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (2)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (26)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size