185.229.227.114/vancard2018/novosite/login.php
185.229.227.114200 OK 4.9 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/login.php
IP 185.229.227.114:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (785), with CRLF, LF line terminators
Hash 02d82a3e36f1711bac0f0cab7ba526c4
0f9801893e495ee531df50edd344f17e723672ad
118736bdeb3f2c49bd2e98affb70cc4631a63b7281cd1321bebcc643fe448974
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/login.php HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Connection: close
Content-Length: 4887
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash dfd491ebe7381221b3674c2c8bf9e566
d2ac5badf17f348c28a52e9db10e6eb80e5a231a
34a026664386054b0b73c36cd1ddfce023551ee41963df0e38248bac1e1eb56c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "34A026664386054B0B73C36CD1DDFCE023551EE41963DF0E38248BAC1E1EB56C"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20395
Expires: Sat, 25 Mar 2023 14:28:08 GMT
Date: Sat, 25 Mar 2023 08:48:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 5d9435c884bf4a0777fdf4b57079ae09
7f04b9db47ffeec90ac6397416b7553e5336a550
fe77420ec3a11f547cf5172b68d30faa4fe0c13165ae305f0013b02914e61084
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE77420EC3A11F547CF5172B68D30FAA4FE0C13165AE305F0013B02914E61084"
Last-Modified: Sat, 25 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7680
Expires: Sat, 25 Mar 2023 10:56:13 GMT
Date: Sat, 25 Mar 2023 08:48:13 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Alert, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 25 Mar 2023 08:15:22 GMT
content-type: application/json
age: 1971
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 9bb70197d53617b5e6889b890dd2ae26
f3e9b8a743de494529baf2d078a622539f965307
a094a13905b7f1cd89475f9c83f9245580d4c3c7228d51d5c16622aec3c6aa45
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A094A13905B7F1CD89475F9C83F9245580D4C3C7228D51D5C16622AEC3C6AA45"
Last-Modified: Sat, 25 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19107
Expires: Sat, 25 Mar 2023 14:06:40 GMT
Date: Sat, 25 Mar 2023 08:48:13 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 8NVwsuYABBgn4Z40HaQhJ2YhTeHYKGTxK2fKpRQECee5YR8N6+njUIFvhMi42wK4FUkGz0UwrMkLOMhotoPmaA==
x-amz-request-id: J1QX5G9JNT7W0RP7
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 25 Mar 2023 07:54:50 GMT
age: 3203
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
185.229.227.114/vancard2018/novosite/vendor/owl.carousel/assets/owl.carousel.min.css
185.229.227.114200 OK 1.3 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/owl.carousel/assets/owl.carousel.min.css
IP 185.229.227.114:0
File type ASCII text, with very long lines (3184)
Hash d156247e7a63b0ee8ce5cb1c50587d5b
1da5422ed2b36c7c4e60b3b808c9f3489b86e5c5
2d19ca5e4637d3e3feac97ec2654cd1438bca0859b831fa032356c843471b7fc
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/owl.carousel/assets/owl.carousel.min.css HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:10:33 GMT
Accept-Ranges: bytes
ETag: "d9712c688f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 1306
185.229.227.114/vancard2018/novosite/vendor/owl.carousel/assets/owl.theme.default.min.css
185.229.227.114200 OK 616 B URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/owl.carousel/assets/owl.theme.default.min.css
IP 185.229.227.114:0
File type ASCII text, with very long lines (846)
Hash c21852078dbbc1ef4bd2ce1cc6e56fe1
f502fab62cbea688280c663c554c12652c5c9a70
c2e0d6fba7d97fb9a39b5c0e6674787a05481512b68a1d4b7b2d77b6239bf23e
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/owl.carousel/assets/owl.theme.default.min.css HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:10:33 GMT
Accept-Ranges: bytes
ETag: "57564c688f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 616
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 25 Mar 2023 08:48:13 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
185.229.227.114/vancard2018/novosite/vendor/simple-line-icons/css/simple-line-icons.min.css
185.229.227.114200 OK 2.9 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/simple-line-icons/css/simple-line-icons.min.css
IP 185.229.227.114:0
File type ASCII text, with very long lines (10943), with no line terminators
Hash 4d514cad74f3154b28cfcb26a8ea38c9
fc8128391cb35d61dc24ed5998188e5cb995a6e6
3903132a3a88b489563c3c3c1ee02c7f36de1c266fee024359ce946a2cf336c1
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/simple-line-icons/css/simple-line-icons.min.css HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:10:44 GMT
Accept-Ranges: bytes
ETag: "d8d5406f8f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 2927
185.229.227.114/vancard2018/novosite/vendor/animate/animate.min.css
185.229.227.114200 OK 6.7 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/animate/animate.min.css
IP 185.229.227.114:0
File type ASCII text, with very long lines (57919)
Hash 2b1a27e31fa13b5d0f6dc924bc2157f9
f71e81e8cc7c2a74ac738a3216e23be448264227
28c19740bbb89a3db5b02abba5804f260c3d30a6d06f74d8939aeb04810d64c1
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/animate/animate.min.css HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:09:10 GMT
Accept-Ranges: bytes
ETag: "92add368f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 6704
185.229.227.114/vancard2018/novosite/vendor/magnific-popup/magnific-popup.min.css
185.229.227.114200 OK 1.9 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/magnific-popup/magnific-popup.min.css
IP 185.229.227.114:0
File type ASCII text, with very long lines (5235), with no line terminators
Hash 5a4942ec963f787133730e32cb7491e3
2159ef6bfc27cf732da9871723daa871869d585a
d8ecc0132a702568be859333694deffc5fa4421b1690c521acb9f894465749a8
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/magnific-popup/magnific-popup.min.css HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:09:27 GMT
Accept-Ranges: bytes
ETag: "fa01418f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 1917
185.229.227.114/vancard2018/novosite/vendor/fontawesome-free/css/all.min.css
185.229.227.114200 OK 15 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/fontawesome-free/css/all.min.css
IP 185.229.227.114:0
File type ASCII text, with very long lines (57147)
Hash ab270473211f095dcb490a8272da0f14
5f6598804a630c94261dc3e9544ebda12bbefa4a
8406b53650edd8079d1b4319afd93608cf6ca3be38d66a174286f42d6cb03c05
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/fontawesome-free/css/all.min.css HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:10:04 GMT
Accept-Ranges: bytes
ETag: "5dae8578f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 15163
185.229.227.114/vancard2018/novosite/css/theme-blog.css
185.229.227.114200 OK 1.8 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/css/theme-blog.css
IP 185.229.227.114:0
Hash d7435dbbeabcbdfc5390a27c70bed208
4bc147fdb7e09e617cc22c57b8195cfee3a4e087
6af90cd2a22946dbce6b72412ad4c3b267a231385fb7ef13925ba4c4e7842b14
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/css/theme-blog.css HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:07:34 GMT
Accept-Ranges: bytes
ETag: "ae11f9fd8e74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 1784
185.229.227.114/vancard2018/novosite/vendor/bootstrap/css/bootstrap.min.css
185.229.227.114200 OK 36 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/bootstrap/css/bootstrap.min.css
IP 185.229.227.114:0
File type ASCII text, with very long lines (65324)
Hash 09b9cc3ce797586ea2c514ff43b90f4c
e789789d727a67d47324fbdc7675bc98ad26a4ac
6609634fa5e50638d16b2c8253249fdb7efcb06aae6543b79ce52830e563d6af
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:09:44 GMT
Accept-Ranges: bytes
ETag: "51bcf84a8f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 36257
185.229.227.114/vancard2018/novosite/vendor/rs-plugin/css/settings.css
185.229.227.114200 OK 9.0 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/rs-plugin/css/settings.css
IP 185.229.227.114:0
File type ASCII text, with very long lines (29701)
Hash 99946c36a5b8f756373553e12a6782a3
8ddacba8f28585ea0421ae3b31af6cb2790aa013
31e32a146f7a8a73cebc3eec5cf4526db8390409ee28c09b8b20ccf727de4494
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/rs-plugin/css/settings.css HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:10:42 GMT
Accept-Ranges: bytes
ETag: "2889d16d8f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 9040
185.229.227.114/vancard2018/novosite/css/theme-shop.css
185.229.227.114200 OK 3.1 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/css/theme-shop.css
IP 185.229.227.114:0
Hash aa822e6d95e36bfd9dbaa6f6c9046fa8
b292b6f73abd167a097adb1288c43ab04adac862
3bdb57de3346969b71be8a8479ea7d8cf48b2666194072c033665ffff37600ab
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/css/theme-shop.css HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:07:35 GMT
Accept-Ranges: bytes
ETag: "2cc06afe8e74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 3118
185.229.227.114/vancard2018/novosite/css/demos/demo-seo-2.css
185.229.227.114200 OK 3.5 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/css/demos/demo-seo-2.css
IP 185.229.227.114:0
Hash ff7bd516d04c31cc83c32ab79606f5ac
2738bf8949eb82664cc163bff7c6336c86c06989
b9310a6323324b2eefa760e3191ea3c8363f2fe00964da9f167c43727a116191
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/css/demos/demo-seo-2.css HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:07:36 GMT
Accept-Ranges: bytes
ETag: "f9eb2dff8e74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 3516
185.229.227.114/vancard2018/novosite/css/theme.css
185.229.227.114200 OK 33 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/css/theme.css
IP 185.229.227.114:0
File type ASCII text, with very long lines (540)
Hash 46412257df56d5b057585dc5bbebed2a
2c40ea716027d1893b932dffb0cd9070134764e3
107c7d0778ccba9aa814a17745e8b694f03b9f1704ace67a9666d456d8b69cc4
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/css/theme.css HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:07:36 GMT
Accept-Ranges: bytes
ETag: "6cb9affe8e74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 32661
185.229.227.114/vancard2018/novosite/vendor/rs-plugin/css/navigation.css
185.229.227.114200 OK 14 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/rs-plugin/css/navigation.css
IP 185.229.227.114:0
Hash 9e3666a4a0f31b501c3b7564f4018ea1
208ae08f261a82be460c4ebee48ecd7ea88d69a5
6327b06381d3cff4ce901095b46027181aa4f9f253de851e0fcb2b9a9c6fd4df
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/rs-plugin/css/navigation.css HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:10:42 GMT
Accept-Ranges: bytes
ETag: "96c816d8f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 14116
185.229.227.114/vancard2018/novosite/css/custom.css
185.229.227.114200 OK 309 B URL HTTP/1.1 185.229.227.114/vancard2018/novosite/css/custom.css
IP 185.229.227.114:0
Hash 8f7b324e5557f638781846254dcd2355
5058d7f777cf16ad6e441901eb671eb15020809c
792ec057858986a71ae8cfd2cd2ee6830667d9e5598cfd9d7c06270b35953341
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/css/custom.css HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:07:34 GMT
Accept-Ranges: bytes
ETag: "fdfcdcfd8e74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 309
185.229.227.114/vancard2018/novosite/vendor/rs-plugin/css/layers.css
185.229.227.114200 OK 19 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/rs-plugin/css/layers.css
IP 185.229.227.114:0
Hash d13a624cedc25d579b80a376e15b9b98
cbb71dc6dea12cb798939b395b81323b70e30834
4fa8c21af27b52eb59a49227cd64e1c025c8ecdbdd9dbfa0ae714275f7afda5a
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/rs-plugin/css/layers.css HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:10:41 GMT
Accept-Ranges: bytes
ETag: "ac436f6d8f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 18985
185.229.227.114/vancard2018/novosite/vendor/modernizr/modernizr.min.js
185.229.227.114200 OK 4.8 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/modernizr/modernizr.min.js
IP 185.229.227.114:0
File type ASCII text, with very long lines (9163)
Hash 406f9b39af3779ba5f526b52ecc812f3
fafadc4b47b2a535fda18e076c2053a2f75232fe
5557ebfc13cdb69c3b87c41bf07355f1a8f51dc93f94f5fccc48337c994c303a
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/modernizr/modernizr.min.js HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:09:28 GMT
Accept-Ranges: bytes
ETag: "d8576f418f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 4756
185.229.227.114/vancard2018/novosite/css/skins/skin-seo-2.css
185.229.227.114200 OK 22 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/css/skins/skin-seo-2.css
IP 185.229.227.114:0
Hash e0c6743c68425a20cd596127b539e467
a9e1202c04f343f0a8eeff67a1cc92e40e9ae32f
f034ce2c7b0748beca74517cbd531f8c009e999757adb39661596ee558c38922
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/css/skins/skin-seo-2.css HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:07:40 GMT
Accept-Ranges: bytes
ETag: "3f4e2918f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 21741
185.229.227.114/vancard2018/novosite/css/theme-elements.css
185.229.227.114200 OK 62 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/css/theme-elements.css
IP 185.229.227.114:0
Hash a18e6ba5eaa5d6c63ea3ca8dc8ce2697
836308524d5054295f94b7db7d811a0cc6352616
4cf29cebd662b2a961f46b88034d04f951aad1a63298a77ea97fdf1d62371ca2
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/css/theme-elements.css HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:07:35 GMT
Accept-Ranges: bytes
ETag: "ad2046fe8e74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 62526
185.229.227.114/vancard2018/novosite/vendor/jquery/jquery.min.js
185.229.227.114200 OK 39 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/jquery/jquery.min.js
IP 185.229.227.114:0
File type ASCII text, with very long lines (65451)
Hash bdcff76d1883b83d6027d63276dd26e5
7e80a9d867797601e7c62375cf3457e7bea3cbc9
08b8a6e1bb890f3f8d87d8430f0c6e46e3b897803309e23bdc935906c08a8ad1
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/jquery/jquery.min.js HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:09:16 GMT
Accept-Ranges: bytes
ETag: "6b8803a8f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 39419
185.229.227.114/vancard2018/novosite/vendor/jquery.appear/jquery.appear.min.js
185.229.227.114200 OK 892 B URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/jquery.appear/jquery.appear.min.js
IP 185.229.227.114:0
File type ASCII text, with very long lines (1409), with no line terminators
Hash b8e9ac6e2d9319fc49ce96553a4f437c
eb090f1c40029ab648a7d8adf688f0f6e89d2324
68af6654be9c3dd89b9d0c2245b94b015387eabd48edc229857fcca07212d35b
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/jquery.appear/jquery.appear.min.js HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:09:18 GMT
Accept-Ranges: bytes
ETag: "aeb1fb3b8f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 892
185.229.227.114/vancard2018/novosite/vendor/jquery.easing/jquery.easing.min.js
185.229.227.114200 OK 1.1 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/jquery.easing/jquery.easing.min.js
IP 185.229.227.114:0
File type ASCII text, with very long lines (2532), with no line terminators
Hash f8df94c22fd96a2bfc63f0e05fdc26e1
524b9f9629b045f596d702d8ca98ce44f5e8f470
7004a6cbf0863c562cbf9ee1750bd429b0f738cff871b7845e3c615dcf435807
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/jquery.easing/jquery.easing.min.js HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:09:21 GMT
Accept-Ranges: bytes
ETag: "cbc6433d8f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 1070
185.229.227.114/vancard2018/novosite/vendor/jquery.cookie/jquery.cookie.min.js
185.229.227.114200 OK 887 B URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/jquery.cookie/jquery.cookie.min.js
IP 185.229.227.114:0
File type ASCII text, with very long lines (1228), with no line terminators
Hash 2e8dbaf4f65301cb4b50b7a477cb2c63
b44907784ffc896a14693d2cc89371fce56010ac
8259547b2402939d1385a00369e4457a72678f2d6ed9d77cd040362c17c8278b
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/jquery.cookie/jquery.cookie.min.js HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:09:19 GMT
Accept-Ranges: bytes
ETag: "d457683c8f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 887
185.229.227.114/vancard2018/novosite/vendor/popper/umd/popper.min.js
185.229.227.114200 OK 9.2 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/popper/umd/popper.min.js
IP 185.229.227.114:0
File type ASCII text, with very long lines (21060)
Hash af5414086c4d03987da2ae70531ab7cc
d28cde6e6a6bea6504a455d4f9e0cc9bff435528
b685893a5f53732348eae176f85be3c65cc998cd59d54fe55ece5128fb513af8
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/popper/umd/popper.min.js HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:10:37 GMT
Accept-Ranges: bytes
ETag: "b314b26a8f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 9186
185.229.227.114/vancard2018/novosite/vendor/jquery.easy-pie-chart/jquery.easypiechart.min.js
185.229.227.114200 OK 2.1 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/jquery.easy-pie-chart/jquery.easypiechart.min.js
IP 185.229.227.114:0
File type ASCII text, with very long lines (3765)
Hash 43398b10e7c1a7d69d8f6429a3b953cf
8e59c43660348821069fb6d22f19bbf4129c2d45
557ffdaab523ce889aedcb8b1efd7e103149e7d47816f29f031353875a20c56d
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/jquery.easy-pie-chart/jquery.easypiechart.min.js HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:09:21 GMT
Accept-Ranges: bytes
ETag: "7ea4a83d8f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 2058
185.229.227.114/vancard2018/novosite/vendor/jquery.gmap/jquery.gmap.min.js
185.229.227.114200 OK 1.6 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/jquery.gmap/jquery.gmap.min.js
IP 185.229.227.114:0
File type ASCII text, with very long lines (3571), with no line terminators
Hash 46204da28d072cdb34c177facf4d956d
3623531fb831fdc190d2faa68bdbd3d5bcdfc357
005e9a99241d0a98c8c643aea32a30e08a5999bd8e833029f8767497b8b54190
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/jquery.gmap/jquery.gmap.min.js HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:09:22 GMT
Accept-Ranges: bytes
ETag: "3ca5f3e8f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 1572
185.229.227.114/vancard2018/novosite/vendor/common/common.min.js
185.229.227.114200 OK 11 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/common/common.min.js
IP 185.229.227.114:0
File type ASCII text, with very long lines (25476), with no line terminators
Hash 0d54956bca99838bdb1a33f8a87f3287
43fe7193d3972d0abd95428e934899fdfc4f6a6c
d61885e36780047058961154d9f0610fbaf88c0d6570694cd876c7d5ee3fa9ad
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/common/common.min.js HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:09:13 GMT
Accept-Ranges: bytes
ETag: "a03c75388f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 11228
185.229.227.114/vancard2018/novosite/vendor/jquery.validation/jquery.validate.min.js
185.229.227.114200 OK 9.8 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/jquery.validation/jquery.validate.min.js
IP 185.229.227.114:0
File type Unicode text, UTF-8 text, with very long lines (24237)
Hash f1e6a9183305a388c361fc347a4924dd
20a2f8ffd1627748e3047d9a3c4d9ab73bf95efb
32cbe35570359ab6a3b5d7b2a54dc5a6624042943974c64a89fa8fb153c3cdc7
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/jquery.validation/jquery.validate.min.js HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:09:25 GMT
Accept-Ranges: bytes
ETag: "5a30bf3f8f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 9837
185.229.227.114/vancard2018/novosite/vendor/magnific-popup/jquery.magnific-popup.min.js
185.229.227.114200 OK 9.0 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/magnific-popup/jquery.magnific-popup.min.js
IP 185.229.227.114:0
File type ASCII text, with very long lines (20087)
Hash ab94381acc86232987778a44dc704716
f4a8e7bbc6677a457988ae447924e6546d5e4ae8
50866d05eae66ea0782413fdea1a4f0606ec8c8fd71c5964aaa78153821d1055
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/magnific-popup/jquery.magnific-popup.min.js HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:09:27 GMT
Accept-Ranges: bytes
ETag: "6ff7d7408f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 9021
185.229.227.114/vancard2018/novosite/vendor/bootstrap/js/bootstrap.min.js
185.229.227.114200 OK 22 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/bootstrap/js/bootstrap.min.js
IP 185.229.227.114:0
File type ASCII text, with very long lines (59729)
Hash fd218a5608ca21ce3f5f7882e578e58b
04db44e6879b935433b964d60a18aac3e182a2bb
117147ff332ad767d0a8bc5d7340f8cc9af319ef492eb96c69121200cbce2ca0
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/bootstrap/js/bootstrap.min.js HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:09:47 GMT
Accept-Ranges: bytes
ETag: "95b104d8f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 22120
185.229.227.114/vancard2018/novosite/vendor/jquery.lazyload/jquery.lazyload.min.js
185.229.227.114200 OK 1.5 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/jquery.lazyload/jquery.lazyload.min.js
IP 185.229.227.114:0
File type ASCII text, with very long lines (3267), with no line terminators
Hash 2d5ae4370800d02290c3885d244de9c5
1fa1ada0da4249395f351afd33a5bf8cea59dfcf
8bb23853a582881e96d090e3c0b3c2221c6bf42740da9869b10b35f2b1fb6463
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/jquery.lazyload/jquery.lazyload.min.js HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:09:23 GMT
Accept-Ranges: bytes
ETag: "6f8c793e8f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 1505
185.229.227.114/vancard2018/novosite/vendor/owl.carousel/owl.carousel.min.js
185.229.227.114200 OK 15 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/owl.carousel/owl.carousel.min.js
IP 185.229.227.114:0
File type ASCII text, with very long lines (31997)
Hash 585f6c14c9bdfa20660426f50372ae58
e34a5c4554ded82e53ac58c3cda7d2d49f6ee236
5d51da35170e12068ed0d11c9ca9f1d7f733c15588fccc264b302392932abdf6
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/owl.carousel/owl.carousel.min.js HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:09:30 GMT
Accept-Ranges: bytes
ETag: "1335bf428f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 15044
185.229.227.114/vancard2018/novosite/vendor/vide/jquery.vide.min.js
185.229.227.114200 OK 2.3 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/vide/jquery.vide.min.js
IP 185.229.227.114:0
File type ASCII text, with very long lines (4322)
Hash fe2057fe46a6e496bb2eaf60c2879761
b4d31cd066b35cf98a507bb6087b0e71257e6ff3
5782ea710f209588ecfb4d34a8d4021b4cd40878315e9cb8fbac3e898ba61fc6
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/vide/jquery.vide.min.js HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:09:35 GMT
Accept-Ranges: bytes
ETag: "8221cb458f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 2338
185.229.227.114/vancard2018/novosite/vendor/isotope/jquery.isotope.min.js
185.229.227.114200 OK 18 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/isotope/jquery.isotope.min.js
IP 185.229.227.114:0
File type ASCII text, with very long lines (32019)
Hash 785158d61624b7a5e6e64faa6b367e2e
31d68819caf2639b4b20e69000f44c68c3309247
23ad12aa407142a14900df91c24f0e2eb93257514937ba7e7202a7434cf43107
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/isotope/jquery.isotope.min.js HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:09:16 GMT
Accept-Ranges: bytes
ETag: "df4b3a3a8f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 17600
185.229.227.114/vancard2018/novosite/js/theme.js
185.229.227.114200 OK 33 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/js/theme.js
IP 185.229.227.114:0
File type ASCII text, with very long lines (572)
Hash 5cb044c81ede5561ba5bae3067c6b379
bca7e12b8abfcf8462a2ff644954a7c607ffa5a7
f4953b91aa278013efd5c66946757a8755a53ffe00e3463c29715bfd42916570
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/js/theme.js HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:07:58 GMT
Accept-Ranges: bytes
ETag: "34744c8f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 33146
185.229.227.114/vancard2018/novosite/vendor/vivus/vivus.min.js
185.229.227.114200 OK 4.6 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/vivus/vivus.min.js
IP 185.229.227.114:0
File type ASCII text, with very long lines (11790), with no line terminators
Hash 6f89dc184d08d88720600e9e212f2c21
b2f7916218eccce99bd8b2f036b4ea03579b51b6
b41409c28e2d0c1149b2ae1f7cb79153d18994ea38deaf73b79ddb2255d95e16
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/vivus/vivus.min.js HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:09:36 GMT
Accept-Ranges: bytes
ETag: "a8743468f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 4648
185.229.227.114/vancard2018/novosite/js/demos/demo-seo-2.js
185.229.227.114200 OK 510 B URL HTTP/1.1 185.229.227.114/vancard2018/novosite/js/demos/demo-seo-2.js
IP 185.229.227.114:0
Hash 3fe683855ff71c63f9e9f748310edaf6
8ca3124e6ceb505726d0d77540986af4d267f003
b158c8ec00077e40db6ff22b706eda24543c68aaa3d95c51c8e223c4cadf3c1a
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/js/demos/demo-seo-2.js HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:07:59 GMT
Accept-Ranges: bytes
ETag: "b557bdc8f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 510
185.229.227.114/vancard2018/novosite/js/custom.js
185.229.227.114200 OK 0 B URL HTTP/1.1 185.229.227.114/vancard2018/novosite/js/custom.js
IP 185.229.227.114:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/js/custom.js HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Mon, 17 Aug 2020 12:07:58 GMT
Accept-Ranges: bytes
ETag: "b52cd4b8f74d61:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 0
185.229.227.114/vancard2018/novosite/js/theme.init.js
185.229.227.114200 OK 1.7 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/js/theme.init.js
IP 185.229.227.114:0
Hash 2784ae94aba1c11a48c18f7098ecb7a7
f583d1051cd7dfe2e4053487c3dea6a0b48d1ea7
fe1584561a1ae32f3236f7ef5645976a2558da98987ad2e5695a2a0740362f8f
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/js/theme.init.js HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:07:58 GMT
Accept-Ranges: bytes
ETag: "e275fcb8f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 1675
185.229.227.114/vancard2018/novosite/vendor/rs-plugin/js/jquery.themepunch.tools.min.js
185.229.227.114200 OK 49 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/rs-plugin/js/jquery.themepunch.tools.min.js
IP 185.229.227.114:0
File type ASCII text, with very long lines (27287)
Hash 37ecd28e28a1df2aa5932f2ddeccc58e
af9e57205352281135f299f1bb45f6aea675f6a8
86ccaa7062a5d1f3c416c9ae784334d87b0040c937daa3eed637476894b5c784
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/rs-plugin/js/jquery.themepunch.tools.min.js HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:10:44 GMT
Accept-Ranges: bytes
ETag: "f851cd6e8f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 48691
185.229.227.114/vancard2018/novosite/vendor/rs-plugin/js/jquery.themepunch.revolution.min.js
185.229.227.114200 OK 86 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/rs-plugin/js/jquery.themepunch.revolution.min.js
IP 185.229.227.114:0
File type ASCII text, with very long lines (64660)
Hash af605e97f62bebc45975f9138a7f3ef4
54b22d0ac1d68a89e74620d2984f3e6dadb1cdb8
ab1bbc7a41d8bcee12f2642aae25165bf1757f16c8c6ed2b88427309f90c9dd8
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/rs-plugin/js/jquery.themepunch.revolution.min.js HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Transfer-Encoding: chunked
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 17 Aug 2020 12:10:43 GMT
Accept-Ranges: bytes
ETag: "948a56e8f74d61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
185.229.227.114/vancard2018/novosite/imagens/logo/novovale.png
185.229.227.114200 OK 42 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/imagens/logo/novovale.png
IP 185.229.227.114:0
File type PNG image data, 700 x 325, 8-bit/color RGBA, non-interlaced\012- data
Hash b176ec0b47b22aa8e49fd725b786e813
be441cb249a8798b880ebd84c1aa73f6dac82fb3
b76f212af999aca1e87b8ef64b7d77e7e0d29d4eb21a37478fc87cf23c887835
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/imagens/logo/novovale.png HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Mon, 17 Aug 2020 12:07:47 GMT
Accept-Ranges: bytes
ETag: "8043bb58f74d61:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 42480
185.229.227.114/vancard2018/novosite/imagens/logo/logo.png
185.229.227.114200 OK 57 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/imagens/logo/logo.png
IP 185.229.227.114:0
File type PNG image data, 604 x 108, 8-bit/color RGBA, non-interlaced\012- data
Hash be5f9cddc42afe4b2644f1ad7910acc7
181469a203f3f7326277f68212c20813bb4e2e5c
48059717f6934a7aa749b2cd64a68332f80eeac834edba3af7dbbb0969c27342
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/imagens/logo/logo.png HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Mon, 17 Aug 2020 12:07:47 GMT
Accept-Ranges: bytes
ETag: "d8ca8d58f74d61:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 56767
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3a85d9c2de0b1015b62c81a1ab7fe625
389c7fe2d0d53ff607a3fd8e27283c8f1cb3a238
717fa1c4098bd6e282c24452a39aafc0b436941b2f398ef0086960effcc3f2ca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 08:48:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
185.229.227.114/vancard2018/novosite/vendor/simple-line-icons/fonts/Simple-Line-Icons.woff2?v=2.4.0
185.229.227.114404 Not Found 1.2 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/simple-line-icons/fonts/Simple-Line-Icons.woff2?v=2.4.0
IP 185.229.227.114:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/simple-line-icons/fonts/Simple-Line-Icons.woff2?v=2.4.0 HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/vendor/simple-line-icons/css/simple-line-icons.min.css
HTTP/1.1 404 Not Found
Content-Type: text/html
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:13 GMT
Content-Length: 1245
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Last-Modified, Content-Length, Pragma, Expires, ETag, Backoff, Alert, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 25 Mar 2023 08:14:33 GMT
age: 2021
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ce6948c57f579a85042a4388c45514d6
4b3002c036034ef0cb8d9eb73b7bf7f561862b99
85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 08:48:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
185.229.227.114/vancard2018/novosite/vendor/fontawesome-free/webfonts/fa-solid-900.woff2
185.229.227.114404 Not Found 1.2 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/fontawesome-free/webfonts/fa-solid-900.woff2
IP 185.229.227.114:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/fontawesome-free/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/vendor/fontawesome-free/css/all.min.css
HTTP/1.1 404 Not Found
Content-Type: text/html
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:14 GMT
Content-Length: 1245
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ce6948c57f579a85042a4388c45514d6
4b3002c036034ef0cb8d9eb73b7bf7f561862b99
85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 08:48:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
142.250.74.35200 OK 7.8 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://185.229.227.114
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:51 GMT
expires: Sat, 23 Mar 2024 10:26:51 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
age: 80483
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ce6948c57f579a85042a4388c45514d6
4b3002c036034ef0cb8d9eb73b7bf7f561862b99
85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 08:48:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 7.9 kB IP 142.250.74.131:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 08:48:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
142.250.74.35200 OK 8.0 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://185.229.227.114
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:53 GMT
expires: Sat, 23 Mar 2024 10:26:53 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
age: 80481
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ce6948c57f579a85042a4388c45514d6
4b3002c036034ef0cb8d9eb73b7bf7f561862b99
85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 08:48:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
185.229.227.114/vancard2018/novosite/vendor/simple-line-icons/fonts/Simple-Line-Icons.ttf?v=2.4.0
185.229.227.114200 OK 54 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/simple-line-icons/fonts/Simple-Line-Icons.ttf?v=2.4.0
IP 185.229.227.114:0
File type TrueType Font data, 13 tables, 1st "FFTM", 12 names, Macintosh, type 1 string\012- data
Hash d2285965fe34b05465047401b8595dd0
9ffb81a5a11112e292f2cc323e98486bad597599
3f501ddb05c70829bbb51cfe9ca9fff57f39e060457c257b3ccf25df767f0870
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/simple-line-icons/fonts/Simple-Line-Icons.ttf?v=2.4.0 HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/vendor/simple-line-icons/css/simple-line-icons.min.css
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Last-Modified: Mon, 17 Aug 2020 12:10:46 GMT
Accept-Ranges: bytes
ETag: "2bffe86f8f74d61:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:14 GMT
Content-Length: 54056
185.229.227.114/vancard2018/novosite/vendor/fontawesome-free/webfonts/fa-solid-900.woff
185.229.227.114200 OK 99 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/vendor/fontawesome-free/webfonts/fa-solid-900.woff
IP 185.229.227.114:0
File type Web Open Font Format, TrueType, length 99004, version 330.-16188\012- data
Hash cdfec5cf5e9840889790bcf2c4042583
120dab7a8a93da819ab3025da6a9f3d3ccd65cce
be439f3ebd1fcd066a2014db28d74078641b3f71df18e71c1b842ba54ed88327
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/vendor/fontawesome-free/webfonts/fa-solid-900.woff HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/vendor/fontawesome-free/css/all.min.css
HTTP/1.1 200 OK
Content-Type: font/x-woff
Last-Modified: Mon, 17 Aug 2020 12:10:07 GMT
Accept-Ranges: bytes
ETag: "fd7a1c598f74d61:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:14 GMT
Content-Length: 99004
185.229.227.114/vancard2018/novosite/imagens/icon/apple-touch-icon.png
185.229.227.114200 OK 34 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/imagens/icon/apple-touch-icon.png
IP 185.229.227.114:0
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 452eb61125e4a8193519c931558865ab
7f450c4eebc8637ea1b43a8656e169fc67cd3e18
21a8d9e87cb5435bb2cba0240f2af5ce23d8992f09c7d95b0a154c7d660e54fc
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/imagens/icon/apple-touch-icon.png HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Mon, 17 Aug 2020 12:07:43 GMT
Accept-Ranges: bytes
ETag: "d8f84338f74d61:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:14 GMT
Content-Length: 34085
185.229.227.114/vancard2018/novosite/imagens/icon/faviconVancard.ico
185.229.227.114200 OK 15 kB URL HTTP/1.1 185.229.227.114/vancard2018/novosite/imagens/icon/faviconVancard.ico
IP 185.229.227.114:0
File type MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 5790160e832abf2933b072906481b498
bb47f0cabf5cd47b53e4967ffd9f62cc11cbec3a
ec2f800d1bb25fd449ed34e1a6d534eb955767584d5dc42f7c2e9ba4af47227a
Analyzer Verdict Alert quad9 Sinkholed
GET /vancard2018/novosite/imagens/icon/faviconVancard.ico HTTP/1.1
Host: 185.229.227.114
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://185.229.227.114/vancard2018/novosite/login.php
HTTP/1.1 200 OK
Content-Type: image/x-icon
Last-Modified: Mon, 17 Aug 2020 12:07:44 GMT
Accept-Ranges: bytes
ETag: "dfd6938f74d61:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sat, 25 Mar 2023 08:48:14 GMT
Content-Length: 15086
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 70300b32357c46f3448d567189b64cb3
6ba66a5cf63cdbfeaec59b936151cc812bac56df
5a2b4f9fc5ebaa8062058bf68eae75fc28e06c6ef6a0e79c3c761c1d92f81cb9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5A2B4F9FC5EBAA8062058BF68EAE75FC28E06C6EF6A0E79C3C761C1D92F81CB9"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18746
Expires: Sat, 25 Mar 2023 14:00:40 GMT
Date: Sat, 25 Mar 2023 08:48:14 GMT
Connection: keep-alive
push.services.mozilla.com/
35.164.186.39101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.164.186.39:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: MqOhBVI4iB1epNyvUexztQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: NMicgJWQGAXU1Zqg4qmkzOjnNSc=
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7047
Expires: Sat, 25 Mar 2023 10:45:43 GMT
Date: Sat, 25 Mar 2023 08:48:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7047
Expires: Sat, 25 Mar 2023 10:45:43 GMT
Date: Sat, 25 Mar 2023 08:48:16 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aecd210f66f83c73c3450d047ae7448a
d68861e96e12e8a3f293dbae8b687f05b6e15afb
22b69c41c56e5538d91f824d5dc2e63ab5563f99ae8e429c9166f4b397cacd0e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5296
x-amzn-requestid: 11fdf0c8-244c-4cd5-bfa7-4c77d777174f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTiuzEqkIAMFXOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17f8-5c241d63598dbf595b54ead5;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:36:56 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: b1KWFmKdRQ4DU0v5JmC7AJatpv2B5FAHKVWL7pFiyh13fqYDA5qydA==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:57:13 GMT
age: 39063
etag: "d68861e96e12e8a3f293dbae8b687f05b6e15afb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5773974a7341690f006b052ad02c94db
1b11316c952e2195da1646dd94671669e7e3bc2b
a06b72138745500cacc919fea29536ebd4188a1c483f6123e3402458e299f16a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7800
x-amzn-requestid: bad99b1e-3923-4de9-8bea-4dd04e96f7cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTigfFGcIAMFdBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e179c-0826b92d4c4af16553503600;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:24 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 9AGLmjvUSTKIsYIWECOR8QwdF4PP1tP1TweUm0VYvxQ0qskqj3YuLA==
via: 1.1 3698a5f586d9ecca74d570e41f4c8516.cloudfront.net (CloudFront), 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:43:53 GMT
age: 39863
etag: "1b11316c952e2195da1646dd94671669e7e3bc2b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c831201ad81f55c63c1b101ce854a810
0e9b952f6489f0a5f4862d3bea2fbe0ecdd379e5
c854489720d2ca4a95eef00addda0fcdaf481402d044df7725282654a97eb54a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5556
x-amzn-requestid: 6b050645-14aa-47f7-b4a5-2e27abbe5115
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM69eHE3IAMF0Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b71ef-6ab2948e2bf2578f29798372;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:23:59 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: ZQcPeutl5BzzzysPzWEzrEY8WU-0F-0twvGPT7RAX-UjNOCk3NtmMQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 05:35:57 GMT
age: 11539
etag: "0e9b952f6489f0a5f4862d3bea2fbe0ecdd379e5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dd191e3a122d6e31f81e6e9d434c58d6
aec88022970c93289434f8097e4a663da33e5271
1f00c901ef479637ec703d7924526a970cb13dd2635b2bbb68b285df9d98e011
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6185
x-amzn-requestid: 223de50b-9a7e-4ac7-9305-336658eec4ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTiwYHoLoAMFXtg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e1802-226bd8524ade75234053ff50;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:37:06 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Ye0ADORg1hFVLxcNVj-qS60tlfguOEtyTx_XFU4ooJOcDHqNsqV3kw==
via: 1.1 3698a5f586d9ecca74d570e41f4c8516.cloudfront.net (CloudFront), 1.1 1ec2938341958d70d56193d709c89dee.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:57:14 GMT
age: 39062
etag: "aec88022970c93289434f8097e4a663da33e5271"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee780ea6-5b5e-419f-916d-42d0f5e1912a.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee780ea6-5b5e-419f-916d-42d0f5e1912a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c7950abafdbc9bbc363ac4cd490f864f
d1356ae16dd758eb699eb62402122d4fb2f307c9
7e98a04cefe4e21aafdf261d0e819352c515695cb9250a64e316c0a5cafc143d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee780ea6-5b5e-419f-916d-42d0f5e1912a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9196
x-amzn-requestid: a63eade0-457b-48f3-bfdc-50d4f6a97363
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CK89kGECIAMFdpg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641aa856-5ce23570768e4a753ee47cf5;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 07:03:50 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Z76yj2_GJNtlI2FJQzYffZaBxC9LnaOg0quPYrSSA5LlLfUyDJoZ-g==
via: 1.1 5502255f9557c1e2c098b94110b6151c.cloudfront.net (CloudFront), 1.1 6a6653dfb47ccc5082f2a5b9d0d168ce.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 07:24:43 GMT
age: 5013
etag: "d1356ae16dd758eb699eb62402122d4fb2f307c9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcbf42d9-9670-45f8-b425-a162a5e30b3f.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcbf42d9-9670-45f8-b425-a162a5e30b3f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2af85a45729fe89653835173ffb1822c
00d118bd4343e36e69217d8c1baeecea253e7b48
45df61a4c5a5a555a09881035ccd36b950af783505cc14e4a28446f05c34348b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcbf42d9-9670-45f8-b425-a162a5e30b3f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8876
x-amzn-requestid: 4a8c3364-d9e9-49ff-afa0-1f49a90f9f6a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM-xpFZIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b780a-205addd335ac20c16c5a1a58;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:50:02 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: j5wNyBJQU_dvub550k1vWq6darXoOv-oJ5brvPh44JdSWFsbUviJKw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 b48dedcc55e63f14261aa92cf2d61522.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 17:28:43 GMT
age: 55173
etag: "00d118bd4343e36e69217d8c1baeecea253e7b48"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins:300,400,500,600,700
0 B URL fonts.googleapis.com/css?family=Poppins:300,400,500,600,700
IP :0
GET /css?family=Poppins:300,400,500,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://185.229.227.114/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site