Report - digitalmarketingcurated.com/big-data/how-nbcus-ad-tech-platform-is-changing-advertiser-targeting-across-linear-tv/?utm

Report Overview

Submitted URL
digitalmarketingcurated.com/big-data/how-nbcus-ad-tech-platform-is-changing-advertiser-targeting-across-linear-tv/?utm_source=contentstudio.io
IP
104.21.19.128
ASN
#13335 CLOUDFLARENET
Submitted
2022-10-24 17:58:40
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
22

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	1.6 kB	4.4 kB	23.36.76.226
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-10T13:35:34Z	372 B	21 kB	142.250.74.174
ml314.com	1517	2013-04-29T18:20:44Z	2023-03-09T06:11:55Z	361 B	12 kB	34.111.234.236
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-10T12:37:30Z	612 B	722 B	173.194.222.156
www.google.com	7	2015-05-10T13:11:19Z	2023-03-10T10:45:20Z	652 B	24 kB	142.250.74.164
in.ml314.com	8180	2015-04-27T14:48:08Z	2023-03-09T09:22:21Z	388 B	499 B	3.233.176.199
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-10T12:25:49Z	424 B	746 B	142.250.74.10
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	401 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	321 B	229 B	34.117.237.239
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.2 kB	61 kB	34.120.237.76
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-10T07:09:08Z	512 B	694 B	142.250.74.35
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-10T13:37:03Z	1.5 kB	34 kB	216.58.207.195
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-10T05:10:00Z	758 B	2.8 kB	143.204.55.27
digitalmarketingcurated.com	unknown			1.0 kB	2.0 kB	172.67.186.46
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	594 B	127 B	54.186.209.73
itcurated.com	815858	2015-05-22T02:51:01Z	2023-03-05T04:28:43Z	8.2 kB	379 kB	104.26.14.65
www.gstatic.com	unknown	2016-07-26T11:37:06Z	2023-03-10T12:47:01Z	453 B	159 kB	142.250.74.163
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	338 B	1.0 kB	54.230.245.110
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	3.3 kB	6.0 kB	93.184.220.29
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-10T05:11:10Z	5.3 kB	11 kB	142.250.74.35
maxcdn.bootstrapcdn.com	724	2014-06-18T02:37:31Z	2023-03-10T13:32:40Z	426 B	946 B	104.18.10.207

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-10-24	medium	digitalmarketingcurated.com/big-data/how-nbcus-ad-tech-platform-is-changing-advertiser-targeting-across-linear-tv/?utm_source=contentstudio.io	Phishing
2022-10-24	medium	itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/AdobeStock_489506303-750x356.jpeg	Phishing
2022-10-24	medium	itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/AdobeStock_455445012-450x211.jpeg	Phishing
2022-10-24	medium	itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/AdobeStock_318001800-450x211.jpeg	Phishing
2022-10-24	medium	itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/AdobeStock_399339954-450x211.jpeg	Phishing
2022-10-24	medium	itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/AdobeStock_237101912-450x211.jpeg	Phishing
2022-10-24	medium	itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/AdobeStock_489329912-450x211.jpeg	Phishing
2022-10-24	medium	itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/hummingbird-assets/472b80fbe43062cac26640e460425a84.js	Phishing
2022-10-24	medium	digitalmarketingcurated.com/big-data/how-nbcus-ad-tech-platform-is-changing-advertiser-targeting-across-linear-tv/?utm_source=contentstudio.io	Phishing
2022-10-24	medium	itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/hummingbird-assets/4aa45e356f28092214b2a3e52e0b7767.js	Phishing
2022-10-24	medium	itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/hummingbird-assets/13e4416b05cca613f0f5ffc85ac6481a.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (24)

	URL	Size	First Seen	Last Seen
	digitalmarketingcurated.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0	90 kB	2023-03-07	2024-04-26
Pretty URL digitalmarketingcurated.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-26 15:38:53 Times Seen31856 Hash 02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea Loading...

	itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/hummingbird-assets/13e4416b05cca613f0f5ffc85ac6481a.js	73 B	2023-03-07	2023-03-10
Pretty URL itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/hummingbird-assets/13e4416b05cca613f0f5ffc85ac6481a.js IP 104.26.14.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:47 Last Seen2023-03-10 14:27:44 Times Seen1 Hash d7787ac2ef1f45c5bc6eb8183d98061e 86320475ac116befd87af91ab8f9f8a4cf7c9567 eca6cdc0f81d25798173ac38fe726873182bd6021a61a9780c50f015dd539570 Loading...

	digitalmarketingcurated.com/big-data/how-nbcus-ad-tech-platform-is-changing-advertiser-targeting-across-linear-tv/?utm_source=contentstudio.io	1.0 kB	2023-03-10	2023-03-10
Pretty URL digitalmarketingcurated.com/big-data/how-nbcus-ad-tech-platform-is-changing-advertiser-targeting-across-linear-tv/?utm_source=contentstudio.io IP 172.67.186.46 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 14:27:44 Last Seen2023-03-10 14:27:44 Times Seen1 Hash f264305bb6e88b11bf4222b42069bb5c 87b1303900fbad061188133bb0ef95002f907f1c 8cc5fce990c26cfd003169fc2b04775884bc64e8c2f1ee9d811726da4f22471e Loading...

	itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/hummingbird-assets/4aa45e356f28092214b2a3e52e0b7767.js	1.0 kB	2023-03-10	2023-11-02
Pretty URL itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/hummingbird-assets/4aa45e356f28092214b2a3e52e0b7767.js IP 104.26.14.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 14:27:44 Last Seen2023-11-02 08:37:47 Times Seen10 Hash 51aad1126e332af4148eb6e25ad3e6b6 eff14515f4462ee0a1dc79a050bbceb1a510328a b2773a3d5bafdf4c784cbc677f960953d2577d8fb98f56b036cf78b217da483b Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 17:07:20 Times Seen37096957 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LdulhciAAAAAPhYuxLomS66HGIk0akYok-qDbe9&co=aHR0cHM6Ly9kaWdpdGFsbWFya2V0aW5nY3VyYXRlZC5jb206NDQz&hl=en&v=ovmhLiigaw4D9ujHYlHcKKhP&size=invisible&cb=1xb8uudh6tu1	69 B	2023-03-07	2024-04-26
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LdulhciAAAAAPhYuxLomS66HGIk0akYok-qDbe9&co=aHR0cHM6Ly9kaWdpdGFsbWFya2V0aW5nY3VyYXRlZC5jb206NDQz&hl=en&v=ovmhLiigaw4D9ujHYlHcKKhP&size=invisible&cb=1xb8uudh6tu1 IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-26 16:19:50 Times Seen99595 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	digitalmarketingcurated.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	6.5 kB	2023-03-07	2024-04-25
Pretty URL digitalmarketingcurated.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 21:53:57 Times Seen15501 Hash 61449413a42d2daaa79dbe7298b40e21 d86c474164c603084397bdc50fb0e469d28b5772 f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a Loading...

	digitalmarketingcurated.com/big-data/how-nbcus-ad-tech-platform-is-changing-advertiser-targeting-across-linear-tv/?utm_source=contentstudio.io	334 B	2023-03-10	2023-03-10
Pretty URL digitalmarketingcurated.com/big-data/how-nbcus-ad-tech-platform-is-changing-advertiser-targeting-across-linear-tv/?utm_source=contentstudio.io IP 172.67.186.46 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 14:27:44 Last Seen2023-03-10 14:27:44 Times Seen1 Hash 867abeb874f2596f05ec12a6eaeff480 ca8056f22177bac7d4e6cf395ae329d228f5d59b af9c6ef6a06599837711e7b2168ff21e77f56294dd4465d1b5f123fa407adc4c Loading...

	digitalmarketingcurated.com/big-data/how-nbcus-ad-tech-platform-is-changing-advertiser-targeting-across-linear-tv/?utm_source=contentstudio.io	1.9 kB	2023-03-10	2023-03-10
Pretty URL digitalmarketingcurated.com/big-data/how-nbcus-ad-tech-platform-is-changing-advertiser-targeting-across-linear-tv/?utm_source=contentstudio.io IP 172.67.186.46 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 14:27:44 Last Seen2023-03-10 14:27:44 Times Seen1 Hash 2527f4933e97f64c8f62ea15992c2c09 e42673e83c244b51735940247bca46dd5f0b91bb af27b75366271cae2fce104e0a2f496de361e31a245a7480b224bf0fe6660c08 Loading...

	ml314.com/tag.aspx?2492022	32 kB	2023-03-07	2023-04-09
Pretty URL ml314.com/tag.aspx?2492022 IP 34.111.234.236 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:48 Last Seen2023-04-09 07:09:24 Times Seen65 Hash fe36d3317b1b052708eb2260e253aa63 16a85329e1bbcf93af0e79eb76d6ee07a4f74c4a 27d7b573de36acef9ddbf975de05251f5219d2e4b8424288aae62aa57d5a6396 Loading...

	www.gstatic.com/recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js	398 kB	2023-03-07	2023-03-10
Pretty URL www.gstatic.com/recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js IP 142.250.74.163 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:46:10 Last Seen2023-03-10 14:27:44 Times Seen1 Hash dff1edaf9fa8e0138b7342527bb2fdaf 9c1d9e6f3a8785ffdd088f57e3e8803dd2c459b0 23d94b3877e873dff9124312f3627f15071fe84a751d32c6e76b4c693ce8a9b9 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LdulhciAAAAAPhYuxLomS66HGIk0akYok-qDbe9&co=aHR0cHM6Ly9kaWdpdGFsbWFya2V0aW5nY3VyYXRlZC5jb206NDQz&hl=en&v=ovmhLiigaw4D9ujHYlHcKKhP&size=invisible&cb=1xb8uudh6tu1	35 kB	2023-03-10	2023-03-10
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LdulhciAAAAAPhYuxLomS66HGIk0akYok-qDbe9&co=aHR0cHM6Ly9kaWdpdGFsbWFya2V0aW5nY3VyYXRlZC5jb206NDQz&hl=en&v=ovmhLiigaw4D9ujHYlHcKKhP&size=invisible&cb=1xb8uudh6tu1 IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 14:27:44 Last Seen2023-03-10 14:27:44 Times Seen1 Hash 4a756bd322309788363c32f18b265763 ee4b791400c374ecab289b505b6654d1749ca072 f7e492b9b448d153d9f843468acca2e2f729165aeb143d668a0889f9d0718e7a Loading...

	digitalmarketingcurated.com/big-data/how-nbcus-ad-tech-platform-is-changing-advertiser-targeting-across-linear-tv/?utm_source=contentstudio.io	167 B	2023-03-10	2023-03-10
Pretty URL digitalmarketingcurated.com/big-data/how-nbcus-ad-tech-platform-is-changing-advertiser-targeting-across-linear-tv/?utm_source=contentstudio.io IP 172.67.186.46 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 14:27:44 Last Seen2023-03-10 14:27:44 Times Seen1 Hash 6e6effc24d9fe3de17fb395b4bdc7337 02abc4ea66ae3f6ca8770855e86a08d562a8366f 828bc1ec04b84e616c47af0d47d5617478e656ddedf7179b4475171fae55bd1e Loading...

	ml314.com/utsync.ashx?pub=&adv=&et=0&eid=60699&ct=js&pi=&fp=&clid=&if=0&ps=&cl=&mlt=&data=&&cp=https%3A%2F%2Fdigitalmarketingcurated.com%2Fbig-data%2Fhow-nbcus-ad-tech-platform-is-changing-advertiser-targeting-across-linear-tv%2F%3Futm_source%3Dcontentstudio.io&pv=1666634310509_kixvc9zf0&bl=en-us&cb=5467477&return=&ht=&d=&dc=&si=1666634310509_kixvc9zf0&cid=&s=1280x1024&rp=&v=2.5.2.2	62 B	2023-03-07	2023-05-05
Pretty URL ml314.com/utsync.ashx?pub=&adv=&et=0&eid=60699&ct=js&pi=&fp=&clid=&if=0&ps=&cl=&mlt=&data=&&cp=https%3A%2F%2Fdigitalmarketingcurated.com%2Fbig-data%2Fhow-nbcus-ad-tech-platform-is-changing-advertiser-targeting-across-linear-tv%2F%3Futm_source%3Dcontentstudio.io&pv=1666634310509_kixvc9zf0&bl=en-us&cb=5467477&return=&ht=&d=&dc=&si=1666634310509_kixvc9zf0&cid=&s=1280x1024&rp=&v=2.5.2.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:47 Last Seen2023-05-05 15:37:24 Times Seen132 Hash 3ad086df595c07595182b36a7f3c7320 f3aa368bdfc6a4d7d2682e22d03bbca2b1d4bf7d 5a1ba6ff6db12f791bbbfc4da3cb389e06f0cd53eede09ef3eb3ceb074089ef1 Loading...

	digitalmarketingcurated.com/big-data/how-nbcus-ad-tech-platform-is-changing-advertiser-targeting-across-linear-tv/?utm_source=contentstudio.io	2.7 kB	2023-03-07	2023-05-27
Pretty URL digitalmarketingcurated.com/big-data/how-nbcus-ad-tech-platform-is-changing-advertiser-targeting-across-linear-tv/?utm_source=contentstudio.io IP 172.67.186.46 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:47 Last Seen2023-05-27 02:59:22 Times Seen3 Hash a2b668595d82d9da95baa3904e4c5a6d fda3e2e2a580e45854ca5bdfbec86143f0c396d3 b84621a91f6826085bcc26cea99f64f43fa24d32d6bf62047bee2f9587ac36da Loading...

	digitalmarketingcurated.com/big-data/how-nbcus-ad-tech-platform-is-changing-advertiser-targeting-across-linear-tv/?utm_source=contentstudio.io	154 B	2023-03-10	2023-03-10
Pretty URL digitalmarketingcurated.com/big-data/how-nbcus-ad-tech-platform-is-changing-advertiser-targeting-across-linear-tv/?utm_source=contentstudio.io IP 172.67.186.46 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 14:27:44 Last Seen2023-03-10 14:27:44 Times Seen1 Hash c7ab9223f957bceba90ce37b07cb20a8 0fb6be39f0c0c36e718ffd00c02a0e1a9b0a4b94 0928e3245422d48d3ebd3ed4de636d5270826d2cb0d119b3727e5c3dc0fac52d Loading...

	itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/hummingbird-assets/472b80fbe43062cac26640e460425a84.js	191 kB	2023-03-10	2023-03-10
Pretty URL itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/hummingbird-assets/472b80fbe43062cac26640e460425a84.js IP 104.26.14.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 14:27:44 Last Seen2023-03-10 14:27:44 Times Seen1 Hash 8c0594213e56ede64759c8d04fc8841f 205da853ef026abf81f8007d415f9e414161190b 156acd219c2ad297208ef4b1814e29352cc4b715a38a7b86a8c8ea10abef664e Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-26
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-26 05:50:27 Times Seen1534 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	in.ml314.com/ud.ashx?topiclimit=&cb=2492022&v=2.5.2.2	41 B	2023-03-07	2023-05-04
Pretty URL in.ml314.com/ud.ashx?topiclimit=&cb=2492022&v=2.5.2.2 IP 3.233.176.199 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:47 Last Seen2023-05-04 22:27:18 Times Seen73 Hash ec515474340303691b14adb03c527275 324d24d3fac7a216b11408c1cf198a5b86121ec5 a0d6866342981a261162a690fa606d5fccbba5e72f3ea4dd890dbfa6a7cc8207 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 083c5ed62c0d321b770d4520f459416b	16 kB	2023-03-10	2023-03-10
Pretty Observations First Seen2023-03-10 13:42:25 Last Seen2023-03-10 16:29:41 Times Seen1 Hash 083c5ed62c0d321b770d4520f459416b b4738bf5ad6c3fefdea2b6e4497a98f723969f1e 8f9d4e51b49133452b8ddec8aeaf76e6fa77b987af3efd9e541837bec7b98072 Loading...

	#2 Eval - 8e933c7d5f660fbc13c7874a85a352ec	22 B	2023-03-10	2023-03-10
Pretty Observations First Seen2023-03-10 13:42:25 Last Seen2023-03-10 16:29:41 Times Seen1 Hash 8e933c7d5f660fbc13c7874a85a352ec 0e5084210e6d34ce1563eb7982bf670e9615da42 c459999a8c6eaa295d36f08cbbb5dfb41d339079fcb4e6f389eaf3503ccf1a36 Loading...

	#3 Eval - b171afa1ee9f4b84f7f4ce4e914e8eed	22 kB	2023-03-10	2023-03-10
Pretty Observations First Seen2023-03-10 14:27:44 Last Seen2023-03-10 14:27:44 Times Seen1 Hash b171afa1ee9f4b84f7f4ce4e914e8eed d46bc47a66ef6792c95f76a24a6f9d34a3d66c7b e7ad089cd3a27d87fcd4113e402a2f40e179af65c9ab063132ef9f4381f0e061 Loading...

	#4 Eval - c0a6541646959b8a8ee761cc4e032668	64 B	2023-03-10	2023-03-10
Pretty Observations First Seen2023-03-10 13:42:25 Last Seen2023-03-10 16:29:41 Times Seen1 Hash c0a6541646959b8a8ee761cc4e032668 8fc9f32e1c8ef4b86d354a33a845cd1b6dfde0a3 64a043eba0830fe6d3587a9386166a7c18b48fcd8784cfca4c76f7dd8dd47234 Loading...

	#5 Eval - 5856b323fbb4df4ab87e2d158bea041c	22 B	2023-03-10	2023-03-10
Pretty Observations First Seen2023-03-10 13:42:25 Last Seen2023-03-10 16:29:41 Times Seen1 Hash 5856b323fbb4df4ab87e2d158bea041c b4d1517667afaf2f603d4c57432d0bd6de8a78ec 8031ae6ddfd62cff6e890cb03fb6ce28da82887c5b94b3c0fe4a77d3a6112bf3 Loading...

HTTP Transactions (74)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.27

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
cd8d0809aa5948f2a6ee41d2158861af
098cd24ac587cdc70137af412678526de4d43969
88e6741d6bf076bf7132c7cf98456702cc775476095aafd839888edff52fb03e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Backoff, Alert, Retry-After, Content-Length, Content-Type
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 24 Oct 2022 17:53:00 GMT
Expires: Mon, 24 Oct 2022 17:56:18 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8TOHcQOY5CZFD_ACcU7kQC9b2SE8Gl4hOqZwhVf0YzFTFA74YZHsTQ==
Age: 328

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
73c4166ca864f777db2cc1cd8658a7c2
c56b66b0b7c8516d4d5bfafe0c166711c78f3d25
310c633350812c064e159275b6dbbdba6d6a5991a54ccfcc23459320c6513572

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "310C633350812C064E159275B6DBBDBA6D6A5991A54CCFCC23459320C6513572"
Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15834
Expires: Mon, 24 Oct 2022 22:22:22 GMT
Date: Mon, 24 Oct 2022 17:58:28 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ae56efd62a0d9249d98573172eb8b28b
5ff4e9959be677ad76c26ca73f9ef4feb9fa2f28
82d9ee4948fce839f7edb1f8490c4213cded3912464a4169b0bf6a61278694bd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82D9EE4948FCE839F7EDB1F8490C4213CDED3912464A4169B0BF6A61278694BD"
Last-Modified: Sat, 22 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12198
Expires: Mon, 24 Oct 2022 21:21:46 GMT
Date: Mon, 24 Oct 2022 17:58:28 GMT
Connection: keep-alive

digitalmarketingcurated.com/big-data/how-nbcus-ad-tech-platform-is-changing-advertiser-targeting-across-linear-tv/?utm_source=contentstudio.io

172.67.186.46

301 Moved Permanently

0 B

URL HTTP/1.1
digitalmarketingcurated.com/big-data/how-nbcus-ad-tech-platform-is-changing-advertiser-targeting-across-linear-tv/?utm_source=contentstudio.io
IP
172.67.186.46:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /big-data/how-nbcus-ad-tech-platform-is-changing-advertiser-targeting-across-linear-tv/?utm_source=contentstudio.io HTTP/1.1
Host: digitalmarketingcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Mon, 24 Oct 2022 17:58:28 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Redirect-By: WordPress
Location: https://digitalmarketingcurated.com/big-data/how-nbcus-ad-tech-platform-is-changing-advertiser-targeting-across-linear-tv/?utm_source=contentstudio.io
Vary: User-Agent
Access-Control-Allow-Origin: *
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w08hPA91JKr8VbiQfPDZe%2FOAgeECgvkItpkODkDZx5jJtYFOWZTWj%2FFjI7kP55GRjo1r4cxeUnbbGNqDL6wqM25t6%2BFdMn%2BC3bVzrWPo4dhXAySr9ZtnuS4Ebk2SyW7howt15xg023ErsCBBu44%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75f499cc8e8cb500-OSL
alt-svc: h2=":443"; ma=60

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 5bXzD8dbWWJQSTiK1JcyDXOyxiHawbjplCVmumSARcFkCn50H9RPmAYzptgQedPUcYaN9BSP4MM=
x-amz-request-id: R7GD4H4BET13H9N3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 24 Oct 2022 17:38:28 GMT
age: 1200
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 24 Oct 2022 17:58:28 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
661605d11ed898ac9b9770a1f1808ba1
40b73c60bfe54a1f6516c0e9785c97a82ce77305
238052741f1da8ca9d7e282d192ed4ffbf94d3939a11e9f00d6c6d761a54547c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=87242
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 17:58:29 GMT
Etag: "6355840f-117"
Expires: Tue, 25 Oct 2022 18:12:31 GMT
Last-Modified: Sun, 23 Oct 2022 18:12:31 GMT
Server: nginx
Content-Length: 279

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.27

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Mon, 24 Oct 2022 17:33:32 GMT
Expires: Mon, 24 Oct 2022 17:55:55 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: dak4ODh8RUe8hJzAc0cVirHylT1-wbGd8xi5WBR2Vbh8X1JmP0FCXA==
Age: 1497

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
661605d11ed898ac9b9770a1f1808ba1
40b73c60bfe54a1f6516c0e9785c97a82ce77305
238052741f1da8ca9d7e282d192ed4ffbf94d3939a11e9f00d6c6d761a54547c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=87242
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 17:58:29 GMT
Etag: "6355840f-117"
Expires: Tue, 25 Oct 2022 18:12:31 GMT
Last-Modified: Sun, 23 Oct 2022 18:12:31 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
7c6fdc8e76ef5875b5c965ade2df503e
45d548aa2a9d7ede163743274790700878eaea62
d2ff6eacd48af4892a2642e5d7bb925ca683062139f5a5cb4047f6f706830618

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3437
Cache-Control: max-age=140733
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 17:58:29 GMT
Etag: "63564795-1d7"
Expires: Wed, 26 Oct 2022 09:04:02 GMT
Last-Modified: Mon, 24 Oct 2022 08:06:45 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
ea7e9f200e0a5f3c6ea517913e41325b
2d61c25f746c4adedc228be8c357c5ae0db6f7de
1c22fde5407ed0215698400684de5fa55d5e72ebad225d02e96d8d06aca9239b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5625
Cache-Control: max-age=135402
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 17:58:29 GMT
Etag: "63562a36-118"
Expires: Wed, 26 Oct 2022 07:35:11 GMT
Last-Modified: Mon, 24 Oct 2022 06:01:26 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 280

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4c236f4ca13cd8fafc580bceb0995642
b6a7de7a8d994ed2cfb5ac74b6d7703de515ecdb
671228953eba5b2678df03acebb493e411752c6f5f72ff7f1e485032241d4aeb

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 17:58:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
5ca9bbcfa3cf4ad59e39908c321b7326
c8f3ab778879c67ae3a99f8d6d0d2d0943bf78fa
6871095a5dc1a135201a42874cfcefb2bada5914d0cafdbb49236da4541e4dc5

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=150998
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 17:58:29 GMT
Etag: "63567d1b-117"
Expires: Wed, 26 Oct 2022 11:55:07 GMT
Last-Modified: Mon, 24 Oct 2022 11:55:07 GMT
Server: nginx
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
5ca9bbcfa3cf4ad59e39908c321b7326
c8f3ab778879c67ae3a99f8d6d0d2d0943bf78fa
6871095a5dc1a135201a42874cfcefb2bada5914d0cafdbb49236da4541e4dc5

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=150998
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 17:58:29 GMT
Etag: "63567d1b-117"
Expires: Wed, 26 Oct 2022 11:55:07 GMT
Last-Modified: Mon, 24 Oct 2022 11:55:07 GMT
Server: nginx
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
5ca9bbcfa3cf4ad59e39908c321b7326
c8f3ab778879c67ae3a99f8d6d0d2d0943bf78fa
6871095a5dc1a135201a42874cfcefb2bada5914d0cafdbb49236da4541e4dc5

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=150998
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 17:58:29 GMT
Etag: "63567d1b-117"
Expires: Wed, 26 Oct 2022 11:55:07 GMT
Last-Modified: Mon, 24 Oct 2022 11:55:07 GMT
Server: nginx
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
5ca9bbcfa3cf4ad59e39908c321b7326
c8f3ab778879c67ae3a99f8d6d0d2d0943bf78fa
6871095a5dc1a135201a42874cfcefb2bada5914d0cafdbb49236da4541e4dc5

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=150998
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 17:58:29 GMT
Etag: "63567d1b-117"
Expires: Wed, 26 Oct 2022 11:55:07 GMT
Last-Modified: Mon, 24 Oct 2022 11:55:07 GMT
Server: nginx
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
ea7e9f200e0a5f3c6ea517913e41325b
2d61c25f746c4adedc228be8c357c5ae0db6f7de
1c22fde5407ed0215698400684de5fa55d5e72ebad225d02e96d8d06aca9239b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5625
Cache-Control: max-age=135402
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 17:58:29 GMT
Etag: "63562a36-118"
Expires: Wed, 26 Oct 2022 07:35:11 GMT
Last-Modified: Mon, 24 Oct 2022 06:01:26 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 280

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d114ab00b1cfe7f9b4f56c7b3655b55d
641e580d6148329b0c9eb2d49f5f8a30c08f30e9
e5420e919b2c05c148179c7d85a210941be6862b1f65ccfafcfc38d960bf38d7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 17:58:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
5ca9bbcfa3cf4ad59e39908c321b7326
c8f3ab778879c67ae3a99f8d6d0d2d0943bf78fa
6871095a5dc1a135201a42874cfcefb2bada5914d0cafdbb49236da4541e4dc5

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=150998
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 17:58:29 GMT
Etag: "63567d1b-117"
Expires: Wed, 26 Oct 2022 11:55:07 GMT
Last-Modified: Mon, 24 Oct 2022 11:55:07 GMT
Server: nginx
Content-Length: 279

push.services.mozilla.com/

54.186.209.73

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.186.209.73:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: moptihqF42nZv+MoIkcUvg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0Rmcm3fFtnDX1+Ta+kSnZc0eYKQ=

itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/2019/04/digital-marketing-curated.png

104.26.14.65

200 OK

3.8 kB

URL HTTP/2
itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/2019/04/digital-marketing-curated.png
IP
104.26.14.65:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 306 x 71, 8-bit colormap, non-interlaced\012- data
Size
3.8 kB (3764 bytes)
Hash
be20dc6748dfd0d812fa061c23b12414
cbdb51f0347c6cf61dd60606de5859b17688b9ee
15086383b370d9a15bcef13d7f8769079494a289725f576760320e4cfeaace27

HTTP Headers

GET /digitalmarketingcurated/wp-content/uploads/sites/11/2019/04/digital-marketing-curated.png HTTP/1.1
Host: itcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://digitalmarketingcurated.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 24 Oct 2022 17:58:30 GMT
content-type: image/png
content-length: 3764
cf-ray: 75f499d40b320afa-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=14400
etag: "eb4-58641402954c0"
last-modified: Thu, 11 Apr 2019 13:34:51 GMT
vary: User-Agent, Accept-Encoding
cf-cache-status: MISS
content-security-policy: frame-ancestors 'self';
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x%2Fd%2BCPkD7IqfVG%2B6JlYupjKXSsF%2BAwOKfZzWRgUaLAe9GBEWCCu%2B0vaQbnsYYu4ogXh2po5Ro4RwpQX4wLTqwz59Hkq%2FSpFjGHAjFJFByaC6LbqMCAJ3QDDz%2Bl7aWyM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2

itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/AdobeStock_489506303-750x356.jpeg

104.26.14.65

200 OK

26 kB

URL HTTP/2
itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/AdobeStock_489506303-750x356.jpeg
IP
104.26.14.65:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 750x356, components 3\012- data
Size
26 kB (26168 bytes)
Hash
a4ce5612af05ee8d3f3eb0cc4fd27120
13eb95c6ab96a8fef275948a8a7a2cc1fa610c5e
7fe7da01a7d5c882c295fe406816ebb3dd4a19d2da5e1830d903ba49c82c4423

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/AdobeStock_489506303-750x356.jpeg HTTP/1.1
Host: itcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://digitalmarketingcurated.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 24 Oct 2022 17:58:30 GMT
content-type: image/jpeg
content-length: 26168
cf-ray: 75f499d3fb310afa-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=14400
etag: "6638-5eb793bac79f8"
last-modified: Thu, 20 Oct 2022 15:46:48 GMT
vary: User-Agent, Accept-Encoding
cf-cache-status: MISS
content-security-policy: frame-ancestors 'self';
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xn8uqS%2FiAAy53errb7NQtGORwdTo05ncHc7wNUj73H%2BOaTWwEBxgtRuSMBm8EhFx9jf9l9Wt%2B0o5t4bQOr6LqMR6gvYDiZ1THAWgCAGHDO7A7FMs3quADz62vCV13e8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
1ea30e37b7f86b7d0a7cb7341087fdc1
2e88a09e17356724c7e0f488d70be82ebc64f55c
bb85d7fbaf1d4c0dc0a7cd27aebc8f21f942bf703896186a765131c80c87f059

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 17:58:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ffbfbd6d5d1e91af3c02313339eed0d0
df6457b655ac278fe32f3015bba4cff22dae5b2d
1991ca3e854e53f89b92ce93e01e6094f815b1d2c7c31e664481760211ac200a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 17:58:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ffbfbd6d5d1e91af3c02313339eed0d0
df6457b655ac278fe32f3015bba4cff22dae5b2d
1991ca3e854e53f89b92ce93e01e6094f815b1d2c7c31e664481760211ac200a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 17:58:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/hummingbird-assets/40d4f36bb1e0d3d2b50c4f01898089c5.css

104.26.14.65

200 OK

48 kB

URL HTTP/2
itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/hummingbird-assets/40d4f36bb1e0d3d2b50c4f01898089c5.css
IP
104.26.14.65:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (4638), with CRLF line terminators
Size
48 kB (47721 bytes)
Hash
b59d70f53c1120a3467817c9b50375fd
d3d086cb0271dd1fcd2aa2b63855b1b72f7f63b8
9af52295966bfc9e3f947f0ca41b8c765d3c3a0847ea104fc3e587422be268e0

HTTP Headers

GET /digitalmarketingcurated/wp-content/uploads/sites/11/hummingbird-assets/40d4f36bb1e0d3d2b50c4f01898089c5.css HTTP/1.1
Host: itcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://digitalmarketingcurated.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 24 Oct 2022 17:58:30 GMT
content-type: text/css
cf-ray: 75f499d3fb2e0afa-OSL
access-control-allow-origin: *
cache-control: max-age=14400
etag: W/"1241-5e92ab92e7faf-gzip"
last-modified: Wed, 21 Sep 2022 07:16:28 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: MISS
content-security-policy: frame-ancestors 'self';
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5SbVV8TByu0BIyQ1CR9nu3EOYBGSxW9QFhaNDTJHEILukfTpQfotNgpRTJsOZ%2F%2B6YacvzopnLsUusA7%2BQtd331h%2BkSFh9OeiJJ%2FFldRM7oBQwYg%2Fd%2F%2FuErEtmBjqaHg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ffbfbd6d5d1e91af3c02313339eed0d0
df6457b655ac278fe32f3015bba4cff22dae5b2d
1991ca3e854e53f89b92ce93e01e6094f815b1d2c7c31e664481760211ac200a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 17:58:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ffbfbd6d5d1e91af3c02313339eed0d0
df6457b655ac278fe32f3015bba4cff22dae5b2d
1991ca3e854e53f89b92ce93e01e6094f815b1d2c7c31e664481760211ac200a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 17:58:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
1ea30e37b7f86b7d0a7cb7341087fdc1
2e88a09e17356724c7e0f488d70be82ebc64f55c
bb85d7fbaf1d4c0dc0a7cd27aebc8f21f942bf703896186a765131c80c87f059

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 17:58:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/AdobeStock_455445012-450x211.jpeg

104.26.14.65

200 OK

11 kB

URL HTTP/2
itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/AdobeStock_455445012-450x211.jpeg
IP
104.26.14.65:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 450x211, components 3\012- data
Size
11 kB (11207 bytes)
Hash
dc567f7f8da064acc1a566a3752c230c
8b187a61bdafef83a728e8166956a2f20c5caee5
44cbd1f2a3ac0565b0aec41575af85f6fc76cd18e08dc051d027a1bb7338fbec

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/AdobeStock_455445012-450x211.jpeg HTTP/1.1
Host: itcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://digitalmarketingcurated.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 24 Oct 2022 17:58:30 GMT
content-type: image/jpeg
content-length: 11207
cf-ray: 75f499d75f420afa-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=14400
etag: "2bc7-5eac0f3c6dcd7"
last-modified: Tue, 11 Oct 2022 11:55:28 GMT
vary: User-Agent, Accept-Encoding
cf-cache-status: MISS
content-security-policy: frame-ancestors 'self';
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wZ2%2B1BB1FLnblLSkB1o1LGu0C3sfB5FFf3Aty2Jv%2FQCHHW8kQ2%2FnnRPxolrOFYU1Xjzb2wHxH7AAg1bEEteh5jybIxDdLhbF4h0oCWzLB5yvOFKSE8j98el8QBcbxCQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2

itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/hummingbird-assets/7329b2e706f8f0c723348ba8ba08ff5a.css

104.26.14.65

200 OK

27 kB

URL HTTP/2
itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/hummingbird-assets/7329b2e706f8f0c723348ba8ba08ff5a.css
IP
104.26.14.65:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (9759), with CRLF line terminators
Size
27 kB (26949 bytes)
Hash
10f27c3ade8490230169f2e14e79bff8
1f2f460b240ced53f5dfbc0fa75c78f952af5ef5
a078e0113e6a11d28377f5df0991b0702624c0dcb41ff5c63397856062ec6e4f

HTTP Headers

GET /digitalmarketingcurated/wp-content/uploads/sites/11/hummingbird-assets/7329b2e706f8f0c723348ba8ba08ff5a.css HTTP/1.1
Host: itcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://digitalmarketingcurated.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 24 Oct 2022 17:58:30 GMT
content-type: text/css
cf-ray: 75f499d43b840afa-OSL
access-control-allow-origin: *
cache-control: max-age=14400
etag: W/"2647-5e92abb4d68ed-gzip"
last-modified: Wed, 21 Sep 2022 07:17:03 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: MISS
content-security-policy: frame-ancestors 'self';
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vU0brC6rEki%2BadyQe%2BcVrl4p7JmoqCgV%2FQ2QcWv9h9e%2BpN6wxOMPx58V8Mg4pKP1abfTsfESVl%2FwVMH%2BTMUdV5UqNrqpKUtbecz6RFWzi6C44pkjIgLfmvnzT%2BvLEn4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/imgonline-com-ua-Compressed-S37wk5QVIZw0ZCe-450x211.jpg

104.26.14.65

200 OK

23 kB

URL HTTP/2
itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/imgonline-com-ua-Compressed-S37wk5QVIZw0ZCe-450x211.jpg
IP
104.26.14.65:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 450x211, components 3\012- data
Size
23 kB (22718 bytes)
Hash
d6ecfcb9236e07c59e881390dc13c4cb
8b7d46adc5d3e2450f08dea4e4e0a7fd6948b5c6
f529d8a6bbc5ddee68db2be036fd3eb4b4a8445870899c37400e230b28a0b98d

HTTP Headers

GET /digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/imgonline-com-ua-Compressed-S37wk5QVIZw0ZCe-450x211.jpg HTTP/1.1
Host: itcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://digitalmarketingcurated.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 24 Oct 2022 17:58:30 GMT
content-type: image/jpeg
content-length: 22718
cf-ray: 75f499d75f2a0afa-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=14400
etag: "58be-5ebc5c6a9a5a2"
last-modified: Mon, 24 Oct 2022 11:05:57 GMT
vary: User-Agent, Accept-Encoding
cf-cache-status: MISS
content-security-policy: frame-ancestors 'self';
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3Bq1BU%2FlWxJblCH8J0NFCA42dITfGddID42ZMlIUmX4tSOzirozCcIKk2HJjjzVVWL7QXO6lCWwsvxUcrn374dtziYm9TyVk4GpEMPN3jORVJ%2Fx4V%2BLzecSylu3e%2Fdo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2

itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/AdobeStock_318001800-450x211.jpeg

104.26.14.65

200 OK

13 kB

URL HTTP/2
itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/AdobeStock_318001800-450x211.jpeg
IP
104.26.14.65:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 450x211, components 3\012- data
Size
13 kB (12888 bytes)
Hash
cfb6a620f06288f4b38a2a08ca438943
43c87c6ba1c3df84e414fc3fe612168867be963d
bfd4f931a77e810b1ae3bfd0efe15ffd866c2d6d85481d61bed80892bbdf717e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/AdobeStock_318001800-450x211.jpeg HTTP/1.1
Host: itcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://digitalmarketingcurated.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 24 Oct 2022 17:58:30 GMT
content-type: image/jpeg
content-length: 12888
cf-ray: 75f499d75f320afa-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=14400
etag: "3258-5eb4c7c205421"
last-modified: Tue, 18 Oct 2022 10:23:36 GMT
vary: User-Agent, Accept-Encoding
cf-cache-status: MISS
content-security-policy: frame-ancestors 'self';
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XzWqXfFJGBw47Y%2BVPHTO1MG02Am0znx0Dr3Ji5z%2FcrdsTfWaFeVnwG7FEKSeySGAAt4i5vHvg5pu2Flr25qsHj7mdZ5eGSBwxhsElO%2B%2F5X%2FIIGi%2BQhqOHLsB8y3D5GY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12840
Expires: Mon, 24 Oct 2022 21:32:30 GMT
Date: Mon, 24 Oct 2022 17:58:30 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12840
Expires: Mon, 24 Oct 2022 21:32:30 GMT
Date: Mon, 24 Oct 2022 17:58:30 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
398e3c90084d7d71fc1e9fd833116f5f
3e202da5559a8f219144adee3639d063a98559c0
724547db3ed9f1779308e9dd6604664e6ffa3580ca076fbdc1dfb1b75591bba4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "724547DB3ED9F1779308E9DD6604664E6FFA3580CA076FBDC1DFB1B75591BBA4"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12840
Expires: Mon, 24 Oct 2022 21:32:30 GMT
Date: Mon, 24 Oct 2022 17:58:30 GMT
Connection: keep-alive

itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/hummingbird-assets/964a2aa954334e8e79153045e6d3644c.css

104.26.14.65

200 OK

50 kB

URL HTTP/2
itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/hummingbird-assets/964a2aa954334e8e79153045e6d3644c.css
IP
104.26.14.65:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (63057), with CRLF, LF line terminators
Size
50 kB (49659 bytes)
Hash
dfbf7c19ccb0630bb6b2413e9ef85a72
0701dfaa5f81ff701482c1a55f5e2af041dd81e2
d472d1c5de92909260f459ea3154a949eeb41f6577108b9b8ce280f1d6927e62

HTTP Headers

GET /digitalmarketingcurated/wp-content/uploads/sites/11/hummingbird-assets/964a2aa954334e8e79153045e6d3644c.css HTTP/1.1
Host: itcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://digitalmarketingcurated.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 24 Oct 2022 17:58:30 GMT
content-type: text/css
cf-ray: 75f499d41b5a0afa-OSL
access-control-allow-origin: *
cache-control: max-age=14400
etag: W/"2d175-5e92ab9369dd2-gzip"
last-modified: Wed, 21 Sep 2022 07:16:28 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: MISS
content-security-policy: frame-ancestors 'self';
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b1OSvSNl8vY7c6n%2BfTzQc3f%2B7ImT1n%2FPmAlxzpGsRF6uUiKLrOikB1mhIeQWtAhPhz8GF%2Bg1WNws0Pgf8CZLA02nFM44ydxqauTQXaAyIxl9q7IbikAp80TDww%2FOSBc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe87578f5-db38-4350-a6ac-22b0577d75a1.jpeg

34.120.237.76

200 OK

7.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe87578f5-db38-4350-a6ac-22b0577d75a1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.4 kB (7435 bytes)
Hash
548cc254725b085a0794f02585db37f6
69ebcb96188f5e3f6355aabecbe925e26ff00668
09906078ef781e283e939b86e3ee34665ed5df4524a9af4be26f7106a8cab836

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe87578f5-db38-4350-a6ac-22b0577d75a1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7435
x-amzn-requestid: fd538694-534d-4938-bebc-1131c0bb7c62
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelB1HWdIAMFuSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b53e-2f9210cb5a6a28a71b130497;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:22 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GFV2nCltq7Zg9MXGD96a5ajF-Kih-yNwv2rQC8Omlyla0UQ01TYkmw==
via: 1.1 58f9a50682bb94842197f3e957919c60.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 22:03:39 GMT
age: 71691
etag: "69ebcb96188f5e3f6355aabecbe925e26ff00668"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F869ea046-6a24-4b66-a52f-bc9a678d7ebb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.4 kB (8400 bytes)
Hash
3f174281da48e4a62aab93bcdc57d14a
8ee29d073b84530a30bb370838598115f1a65da8
0096edb7703f0bcea7e5c0d5b529482eceea9123f5f3b278f3f9012f87875f1e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F869ea046-6a24-4b66-a52f-bc9a678d7ebb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8400
x-amzn-requestid: b1436934-5b97-4aa8-937a-78bce0b9181c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelN4GACoAMFYmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b58b-29da495d75578b3c20eb37ba;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:43:39 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: EmusO-_70hMOdHGlmVAeiZI8nFPDJuJEsxtzTB4-j_8NDsIqwPVk_Q==
via: 1.1 42ef990e439ae115ff739f04e3945234.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 21:54:06 GMT
age: 72264
etag: "8ee29d073b84530a30bb370838598115f1a65da8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/imgonline-com-ua-Compressed-KaAZ8RdQXBfQldtt-450x211.jpg

104.26.14.65

200 OK

26 kB

URL HTTP/2
itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/imgonline-com-ua-Compressed-KaAZ8RdQXBfQldtt-450x211.jpg
IP
104.26.14.65:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 450x211, components 3\012- data
Size
26 kB (26322 bytes)
Hash
e10e6af924832512c74dda299920b975
d068410fa44c7cf9b6f9a17b7ac8a1d562eb5709
009f8c054f11a3eb9f83d9651b953a13c8d9406cc4885acf8f184f7d1e7be5e3

HTTP Headers

GET /digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/imgonline-com-ua-Compressed-KaAZ8RdQXBfQldtt-450x211.jpg HTTP/1.1
Host: itcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://digitalmarketingcurated.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 24 Oct 2022 17:58:30 GMT
content-type: image/jpeg
content-length: 26322
cf-ray: 75f499d75f370afa-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=14400
etag: "66d2-5eae8ffd85ee7"
last-modified: Thu, 13 Oct 2022 11:42:09 GMT
vary: User-Agent, Accept-Encoding
cf-cache-status: MISS
content-security-policy: frame-ancestors 'self';
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f79oKydN5WxY6GPmkSct22CjQiuVixOJOouTgxU4ia6NK%2FGHzVBAL1vIB1KBJmcUnht1NXt1NBHParMP6YhCObCOWVA%2BrjYyPIgOpYGeNyuB8DoqNrVXG2SlrdB2dKE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21cfb8fe-4b68-43f0-a196-17c9a1dd3acb.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10072 bytes)
Hash
af3d4b4d16ad8b30805be96afa6472e3
bceb257123711c43994e5a03e9caf22eeee16423
30d7fea8d87522ce3ba2abf2c47e0025af1b7c05d6b4ea9f26aaa1f06aff4a67

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21cfb8fe-4b68-43f0-a196-17c9a1dd3acb.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10072
x-amzn-requestid: 2f26fcdb-0540-49ea-be46-83c00182fcc3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelB0FKvoAMFVFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b53e-1be524647e3db4a211e4c4ff;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:22 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 28s2Fwd7CYJpmy57dsIok6owygvyqng_WwlfbKApRjznSlULtnSJqw==
via: 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 21:56:12 GMT
age: 72138
etag: "bceb257123711c43994e5a03e9caf22eeee16423"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e8ac15f-1a51-4bfe-ab4a-570fc480a976.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.4 kB (4434 bytes)
Hash
f12f21779aa94b557db8037ceefd15b2
1698d8d0ff47fc4e6dd20d99ceae84cfcdd69e86
0d33ee5a721c2f940ff1e7d5fae9abba3781f6d37e458a36285718466ecdcd10

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e8ac15f-1a51-4bfe-ab4a-570fc480a976.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4434
x-amzn-requestid: 41e95a27-2955-4224-8d2c-f12d1254cda7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelB0EQboAMFmMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b53e-5cb99b700c84c99c2d9e52d7;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:22 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OTe4NY6F7vvMR1vwdg53oUfynNgHOuyn9VPBf7ub1SqnXTgJRj8dXw==
via: 1.1 27f6faf9790b5a2877fb528fa31f7922.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 22:05:54 GMT
age: 71556
etag: "1698d8d0ff47fc4e6dd20d99ceae84cfcdd69e86"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee5168c9-3f97-43d9-a9b4-3b0f415b3bc0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9894 bytes)
Hash
9983bdfe8dbe8386970aae586bb57575
4c5ff521fec700a1cda73325eebbeb88f97baa39
775d510a8d82ed993085e3d828c33b75eee99db2911b90d6151faf5c2e25b5d0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee5168c9-3f97-43d9-a9b4-3b0f415b3bc0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9894
x-amzn-requestid: 8d639b03-49d2-411b-b0ca-39c5dafe21f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelOtF6YIAMF-4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b591-230070a06848d4d90ea4f6ef;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:43:45 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: mYzFAcyUErnaOlGBX0ygFYZ4608EanLq5V4xzX7qCHQRGzkKwwWvHw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 22:14:18 GMT
age: 71052
etag: "4c5ff521fec700a1cda73325eebbeb88f97baa39"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3257320-582a-498d-9e0c-531ea65fbbe0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 772-513, spot sensor temperature 0.000000, unit celsius, color scheme 1, calibration: offset 0.000000, slope 241254190455726276608.000000\012- data
Size
14 kB (13962 bytes)
Hash
88436497b6fe5e22155afc45e9e8fe3e
5004575548d76d878a7f27bb3fc4a9a10e8f6909
304c2388dd96c82582d490cd473174b11eac53bf408a29ed78e23d77139ef243

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3257320-582a-498d-9e0c-531ea65fbbe0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13962
x-amzn-requestid: 84f8b505-da9d-421c-b00a-3d6407aac332
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelDQETqoAMFwxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b547-566c7abb12b09a565be85833;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: N-R8_VOQSIhikiT-qqPi0ABMoZnr234hdcdinyzBath9A8M6aUZ37A==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 21:54:05 GMT
age: 72265
etag: "5004575548d76d878a7f27bb3fc4a9a10e8f6909"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/2022/09/image-from-rawpixel-id-1008886-jpeg-450x211.jpg

104.26.14.65

200 OK

22 kB

URL HTTP/2
itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/2022/09/image-from-rawpixel-id-1008886-jpeg-450x211.jpg
IP
104.26.14.65:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 450x211, components 3\012- data
Size
22 kB (21932 bytes)
Hash
36afe22bb8859765d92ca297777673d9
8bbd62e13bdc03f5750ce488fc0c68e791e77db5
1940cf1efd9ba67cbcaac93cd1a8a11d75d7f35f49afc6d67723b8362bd567b0

HTTP Headers

GET /digitalmarketingcurated/wp-content/uploads/sites/11/2022/09/image-from-rawpixel-id-1008886-jpeg-450x211.jpg HTTP/1.1
Host: itcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://digitalmarketingcurated.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 24 Oct 2022 17:58:31 GMT
content-type: image/jpeg
content-length: 21932
cf-ray: 75f499d75f260afa-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=14400
etag: "55ac-5e9cfd929ae6a"
last-modified: Thu, 29 Sep 2022 12:16:34 GMT
vary: User-Agent, Accept-Encoding
cf-cache-status: MISS
content-security-policy: frame-ancestors 'self';
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=737vLz7OnLZqIgdO8RJC7LU5IkJDFSR2pyUs8wB7H8sTKibfpJqQfsmQQL%2Btst2eYXsOFMLCm%2FBJMs%2BYY40ZQeyD3FIw0JJxXtlAP%2BgQT4Kivo3RHGI%2Bh4dPms8is9M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2

itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/AdobeStock_399339954-450x211.jpeg

104.26.14.65

200 OK

20 kB

URL HTTP/2
itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/AdobeStock_399339954-450x211.jpeg
IP
104.26.14.65:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 450x211, components 3\012- data
Size
20 kB (20530 bytes)
Hash
ad6517706b4ca28bd5d365a96c426d18
64c8802b5d18972017ab3558aaf96e145e142fa8
6d9dc43eada9ec17ab7127dd3f9c91aa05ee54df8fc2812842cd0d3918864024

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/AdobeStock_399339954-450x211.jpeg HTTP/1.1
Host: itcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://digitalmarketingcurated.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 24 Oct 2022 17:58:31 GMT
content-type: image/jpeg
content-length: 20530
cf-ray: 75f499d75f310afa-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=14400
etag: "5032-5eb76ac8ffcb9"
last-modified: Thu, 20 Oct 2022 12:43:37 GMT
vary: User-Agent, Accept-Encoding
cf-cache-status: MISS
content-security-policy: frame-ancestors 'self';
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4SJJnWB3pc5XbRl3OhdnAn%2FwRnykFdjdUcRubYryA7zH%2F89h1oIYeHp3cCieJGMp0cjfZNl0hDO8z3pV9U1XlRoeMMDDoePfVfmMu%2F0W21tAW%2FJHlNvMA47nDSH0l6w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2

itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/AdobeStock_237101912-450x211.jpeg

104.26.14.65

200 OK

13 kB

URL HTTP/2
itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/AdobeStock_237101912-450x211.jpeg
IP
104.26.14.65:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 450x211, components 3\012- data
Size
13 kB (12894 bytes)
Hash
9713ef4d0ee854228b4f92406e8a9a09
c8eef43baa44742a529e82803e63640f96044075
5860174c5e31d5d79f08fec165b6f8db961916e4e66419cb6b05152f0e58992b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/AdobeStock_237101912-450x211.jpeg HTTP/1.1
Host: itcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://digitalmarketingcurated.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 24 Oct 2022 17:58:31 GMT
content-type: image/jpeg
content-length: 12894
cf-ray: 75f499d75f450afa-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=14400
etag: "325e-5ea5b75b5ad89"
last-modified: Thu, 06 Oct 2022 10:50:21 GMT
vary: User-Agent, Accept-Encoding
cf-cache-status: MISS
content-security-policy: frame-ancestors 'self';
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aF41xV%2BumuAIGlG%2BwQsHIyiyXglISueyh90bQzSVXyN2e2b9Wj3mcLCYLJQYmnryp%2BpFcGoDnT%2BFb8pYIzRM%2BDQJT55QwBZYcWIW2fbcnKk1Eqy9dHZWUT9afuH%2BV3Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2

itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/AdobeStock_489329912-450x211.jpeg

104.26.14.65

200 OK

20 kB

URL HTTP/2
itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/AdobeStock_489329912-450x211.jpeg
IP
104.26.14.65:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 450x211, components 3\012- data
Size
20 kB (20162 bytes)
Hash
04ce730912c64aac3b92ac4ee21cb073
e2aeb18cd8831714a2d9011231d8b1fbf352661c
ceeb98d9d52f85a21e26b83602d5dbaa99ec0b66351d6a81962238b8963ada96

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/AdobeStock_489329912-450x211.jpeg HTTP/1.1
Host: itcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://digitalmarketingcurated.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 24 Oct 2022 17:58:31 GMT
content-type: image/jpeg
content-length: 20162
cf-ray: 75f499d75f2e0afa-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=14400
etag: "4ec2-5ebc70a310652"
last-modified: Mon, 24 Oct 2022 12:36:25 GMT
vary: User-Agent, Accept-Encoding
cf-cache-status: MISS
content-security-policy: frame-ancestors 'self';
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S6vgkpkcjmwbvJDS7D2KqRhKCPfVcrWYb1DW5BzKn%2BZmXhRB0LKOeANGgWLO9jIB%2Bgg4LuObniqaxaNlyEDFn1eIr9q28QjWoknswumSNGirLarjvDjaaH4hHRFij%2FQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1d4/9JtA5HkJLBQ

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1d4/9JtA5HkJLBQ
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8feed7e9b561fcaaf1ffedf8afd1f4a7
2ee69afc355ec80ea984d23dae00f7757b375343
8e94109dc7878096e9905a7ffcb46310882982ef668efa7b7422cf827491f8f0

HTTP Headers

POST /s/gts1d4/9JtA5HkJLBQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 17:58:31 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://digitalmarketingcurated.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Mon, 24 Oct 2022 16:41:09 GMT
expires: Mon, 24 Oct 2022 18:41:09 GMT
cache-control: public, max-age=7200
age: 4642
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ml314.com/tag.aspx?2492022

34.111.234.236

200 OK

11 kB

URL HTTP/2
ml314.com/tag.aspx?2492022
IP
34.111.234.236:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (31861)
Size
11 kB (11383 bytes)
Hash
fba1a53ecc5dd3c0d87793c389e24c1b
3ddfef5d318960a49a17769e35cd5f365d947f4e
e310ac3ae8804235e4ceb47561168df54b5c9245550f9574a6daba20f69665bc

HTTP Headers

GET /tag.aspx?2492022 HTTP/1.1
Host: ml314.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://digitalmarketingcurated.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-guploader-uploadid: ADPycdtXfrZA0GuBwjVv8XZm-sQJgfgJDZMkTRhj3RoURLVjLdA0peZkn6-SKvH2_SiHP2COvmt1e34x9V72p_xvJDfcVg
x-goog-generation: 1660081747697868
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 32025
x-goog-hash: crc32c=BjH7bw==, md5=/jbTMXsbBScI6yJg4lOqYw==
x-goog-storage-class: STANDARD
accept-ranges: none
server: UploadServer
vary: Accept-Encoding
content-encoding: br
date: Mon, 24 Oct 2022 17:53:29 GMT
last-modified: Tue, 09 Aug 2022 21:49:07 GMT
etag: W/"fe36d3317b1b052708eb2260e253aa63"
content-type: application/javascript
content-length: 11383
age: 302
cache-control: public,max-age=3600
x-cache-hit: hit
cache-id: ARN-e8c60de5
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js

142.250.74.163

200 OK

158 kB

URL HTTP/2
www.gstatic.com/recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (826)
Size
158 kB (158248 bytes)
Hash
db1b5789e9915e9c82f5df92e5982980
2e193e502995501c85f45fd89d9f83707a7f9573
db9c82b18117d7cff0f674de758f5bbb39bc6dee969cee679c741090968b9206

HTTP Headers

GET /recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://digitalmarketingcurated.com
Connection: keep-alive
Referer: https://digitalmarketingcurated.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158248
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:37:44 GMT
expires: Thu, 19 Oct 2023 19:37:44 GMT
cache-control: public, max-age=31536000
age: 426047
last-modified: Mon, 19 Sep 2022 04:01:43 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1d4/9JtA5HkJLBQ

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1d4/9JtA5HkJLBQ
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8feed7e9b561fcaaf1ffedf8afd1f4a7
2ee69afc355ec80ea984d23dae00f7757b375343
8e94109dc7878096e9905a7ffcb46310882982ef668efa7b7422cf827491f8f0

HTTP Headers

POST /s/gts1d4/9JtA5HkJLBQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 17:58:31 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/728x90_KnowBe4-GDPR_DU50595_Hacking-multifactor-authentication-an-it-pros-lessons-learned-after-testing-150-mfa-products_212128.png

104.26.14.65

200 OK

63 kB

URL HTTP/2
itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/728x90_KnowBe4-GDPR_DU50595_Hacking-multifactor-authentication-an-it-pros-lessons-learned-after-testing-150-mfa-products_212128.png
IP
104.26.14.65:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 1456 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size
63 kB (63110 bytes)
Hash
c89c47b20d7d239aba40070c7e580885
1215fed039314ceccdc6f5c70c0a0de23021b12f
e10c6480ec16f48f3a5cb331ed2557e51f7f2f90f592d89312ca1d4e93250ab8

HTTP Headers

GET /digitalmarketingcurated/wp-content/uploads/sites/11/2022/10/728x90_KnowBe4-GDPR_DU50595_Hacking-multifactor-authentication-an-it-pros-lessons-learned-after-testing-150-mfa-products_212128.png HTTP/1.1
Host: itcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://digitalmarketingcurated.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 24 Oct 2022 17:58:31 GMT
content-type: image/png
content-length: 63110
cf-ray: 75f499d76f4c0afa-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=14400
etag: "f686-5eb4b8d47e4e7"
last-modified: Tue, 18 Oct 2022 09:16:48 GMT
vary: User-Agent, Accept-Encoding
cf-cache-status: MISS
content-security-policy: frame-ancestors 'self';
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ukxY5uPO%2BE33bu8Z8g%2FIyaJ%2BlczFP%2BaV4bEY7h94oOUiPX7WG9WphK0LNCzjZE0yqmMPnm2MmwDFQbzDLK4SS8WQ4KdaLsoEIJE9VHgJR%2FobkvGw%2BRoZ%2BceWNMBKpXI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
c560beed39cecb5417cb24d408e854bd
8128cbbdbb9357227cff89cf4a0825d62e1821cd
a116fd57470c119c471df4fa54525043cddf2cd4d1c91eaf450155a2293d26f8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 17:58:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9ed554f0d1187302352f943e39d6c91a
10e1bb8702d0d14c56b659b1662b7c857484b0e7
2e1eda67a00dcf60ade2e3332b7f8b0c18c88ea6794fbb49fa9503e7c02236e1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 17:58:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-71172635-8&cid=1074221031.1666634310&jid=595844489&gjid=84782973&_gid=1062274569.1666634310&_u=YGBAgAABAAAAAE~&z=629594977

173.194.222.156

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-71172635-8&cid=1074221031.1666634310&jid=595844489&gjid=84782973&_gid=1062274569.1666634310&_u=YGBAgAABAAAAAE~&z=629594977
IP
173.194.222.156:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-71172635-8&cid=1074221031.1666634310&jid=595844489&gjid=84782973&_gid=1062274569.1666634310&_u=YGBAgAABAAAAAE~&z=629594977 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://digitalmarketingcurated.com
Connection: keep-alive
Referer: https://digitalmarketingcurated.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://digitalmarketingcurated.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 24 Oct 2022 17:58:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/recaptcha/api2/anchor?ar=1&k=6LdulhciAAAAAPhYuxLomS66HGIk0akYok-qDbe9&co=aHR0cHM6Ly9kaWdpdGFsbWFya2V0aW5nY3VyYXRlZC5jb206NDQz&hl=en&v=ovmhLiigaw4D9ujHYlHcKKhP&size=invisible&cb=1xb8uudh6tu1

142.250.74.164

200 OK

23 kB

URL HTTP/2
www.google.com/recaptcha/api2/anchor?ar=1&k=6LdulhciAAAAAPhYuxLomS66HGIk0akYok-qDbe9&co=aHR0cHM6Ly9kaWdpdGFsbWFya2V0aW5nY3VyYXRlZC5jb206NDQz&hl=en&v=ovmhLiigaw4D9ujHYlHcKKhP&size=invisible&cb=1xb8uudh6tu1
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (35084)
Size
23 kB (22654 bytes)
Hash
b959a2ab8bd3daaa268355ee8640721a
897005eea76ed7190e220c0453483c92dde07c58
c2ea806a491a4f2206cd8b18ffb2b55ed72dce73c36f2f40f12f4af130a955c7

HTTP Headers

GET /recaptcha/api2/anchor?ar=1&k=6LdulhciAAAAAPhYuxLomS66HGIk0akYok-qDbe9&co=aHR0cHM6Ly9kaWdpdGFsbWFya2V0aW5nY3VyYXRlZC5jb206NDQz&hl=en&v=ovmhLiigaw4D9ujHYlHcKKhP&size=invisible&cb=1xb8uudh6tu1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://digitalmarketingcurated.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 24 Oct 2022 17:58:31 GMT
content-security-policy: script-src 'nonce-3UXjInEY_d6DGQc4ubSMxw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 22654
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
03d42e3245268a9d8f602cacf5a4404e
59b42c91ab2ec67086f549de3d47d45560b91fc7
6e88b2d135f33b12b5c8e244ea0ba75dc6acef16aeb0069a87141e49dd4b7ec9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 17:58:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
7dbe328751574db3465bc8c4f745a487
661ca1463bea33b14bec8f6669dacb2f1ffb78c1
95b3e76c084b00b1d5ca6e02551a48d645b0eae239313b46cfb3468d62b08193

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 17:58:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5ce788cdd348a769704a7f874b5a2474
4a4dfb44c394a90c5f56af273be8e0924535b8a5
a6ccf1a057148266591bc317c4f8225d00cd81880c559db08f824012f0c397d5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 17:58:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-71172635-8&cid=1074221031.1666634310&jid=595844489&_u=YGBAgAABAAAAAE~&z=1590930719

142.250.74.35

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-71172635-8&cid=1074221031.1666634310&jid=595844489&_u=YGBAgAABAAAAAE~&z=1590930719
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-71172635-8&cid=1074221031.1666634310&jid=595844489&_u=YGBAgAABAAAAAE~&z=1590930719 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://digitalmarketingcurated.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 24 Oct 2022 17:58:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4db1e2a30c82c0ccc424718f6d5656e1
a7b34cd14cb1b934ebcfdcd635e0c09b36824331
5cd5426ef1b527f81e060510b8684313acf5aba276fe41a592011d86b8d92e05

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 17:58:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.sca1b.amazontrust.com/

54.230.245.110

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.110:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
d6c61256feb934058485c3a32856e206
fcf9d7364a0a469f94cb7a805f1a2b8c94c118af
d3a5a73a0650b672c4c5c84a066a06e226a2e1fe33372afd6c9c60837e1609eb

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=109039
Date: Mon, 24 Oct 2022 17:58:32 GMT
Etag: "6355c62b-1d7"
Expires: Wed, 26 Oct 2022 00:15:51 GMT
Last-Modified: Sun, 23 Oct 2022 22:54:35 GMT
Server: ECS (bsa/EB11)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: WCARqx2xBqM-lSrPXQNQn4ydOP5s776zyI3GVkT27HFHr_QsCl2bCQ==
Age: 4876

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.195

200 OK

15 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 22 Oct 2022 12:31:58 GMT
expires: Sun, 22 Oct 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 192394
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 21 Oct 2022 00:48:31 GMT
expires: Sat, 21 Oct 2023 00:48:31 GMT
cache-control: public, max-age=31536000
age: 321001
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

in.ml314.com/ud.ashx?topiclimit=&cb=2492022&v=2.5.2.2

3.233.176.199

200 OK

157 B

URL HTTP/1.1
in.ml314.com/ud.ashx?topiclimit=&cb=2492022&v=2.5.2.2
IP
3.233.176.199:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with no line terminators
Size
157 B (157 bytes)
Hash
46e2a31e1fa9b113da850f1058690891
240592f58574f9d15cb4bfcb59e43c06e2b8260b
cf445de83e39d32d7864a5680cb68eae4997f091441cb1d2d461d3a5b81a4d67

HTTP Headers

GET /ud.ashx?topiclimit=&cb=2492022&v=2.5.2.2 HTTP/1.1
Host: in.ml314.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://digitalmarketingcurated.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: public
Content-Encoding: gzip
Content-Type: application/javascript; charset=utf-8
Date: Mon, 24 Oct 2022 17:58:31 GMT
Expires: Tue, 25 Oct 2022 17:58:32 GMT
Server: Microsoft-IIS/10.0
Vary: Accept-Encoding
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Content-Length: 157
Connection: keep-alive

maxcdn.bootstrapcdn.com/font-awesome/4.4.0/css/font-awesome.min.css?ver=1.4.5

104.18.10.207

200 OK

0 B

URL HTTP/2
maxcdn.bootstrapcdn.com/font-awesome/4.4.0/css/font-awesome.min.css?ver=1.4.5
IP
104.18.10.207:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /font-awesome/4.4.0/css/font-awesome.min.css?ver=1.4.5 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://digitalmarketingcurated.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 24 Oct 2022 17:58:29 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"0831cba6a670e405168b84aa20798347"
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 03/12/2022 17:34:39
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 863
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 0f14bccc85a3f9652cff33086ed46813
cdn-cache: HIT
cf-cache-status: HIT
age: 971548
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 75f499d32ae80b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/hummingbird-assets/472b80fbe43062cac26640e460425a84.js

104.26.14.65

200 OK

0 B

URL HTTP/2
itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/hummingbird-assets/472b80fbe43062cac26640e460425a84.js
IP
104.26.14.65:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /digitalmarketingcurated/wp-content/uploads/sites/11/hummingbird-assets/472b80fbe43062cac26640e460425a84.js HTTP/1.1
Host: itcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://digitalmarketingcurated.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 24 Oct 2022 17:58:30 GMT
content-type: application/javascript
cf-ray: 75f499d40b380afa-OSL
access-control-allow-origin: *
cache-control: max-age=14400
etag: W/"2eb9b-5e92c27135157-gzip"
last-modified: Wed, 21 Sep 2022 08:58:46 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: MISS
content-security-policy: frame-ancestors 'self';
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1S%2FcGtL65Pxeua3qHlAb%2B1FaPm4CGLBUQdvXYoERWpFNuym9pJ84pCjZTRlkuU5GELE3NKQ6SDntmTFmYAdpKkJjMigy8fhEqp9OyKIAdkcftdcIJZNn%2BH5X%2FsLNY8k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

digitalmarketingcurated.com/big-data/how-nbcus-ad-tech-platform-is-changing-advertiser-targeting-across-linear-tv/?utm_source=contentstudio.io

104.21.19.128

200 OK

0 B

URL HTTP/2
digitalmarketingcurated.com/big-data/how-nbcus-ad-tech-platform-is-changing-advertiser-targeting-across-linear-tv/?utm_source=contentstudio.io
IP
104.21.19.128:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /big-data/how-nbcus-ad-tech-platform-is-changing-advertiser-targeting-across-linear-tv/?utm_source=contentstudio.io HTTP/1.1
Host: digitalmarketingcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Mon, 24 Oct 2022 17:58:29 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-pingback: https://digitalmarketingcurated.com/xmlrpc.php
link: <https://digitalmarketingcurated.com/wp-json/>; rel="https://api.w.org/", <https://digitalmarketingcurated.com/wp-json/wp/v2/posts/104381>; rel="alternate"; type="application/json", <https://digitalmarketingcurated.com/?p=104381>; rel=shortlink
set-cookie: PHPSESSID=vto9sehqkdtponh3m95ht49pa5; path=/
vary: Accept-Encoding,User-Agent
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CQBC5hwhEQ2m5xEYKTicPFLSwZcHATjHIC0prteiLW2WPttPLTJUp4Uft4aCBkbsNkxUY0V95UBOD198OXbToQCC5G0Y5z8TillUUgEGGO%2B2rkR%2Fof8pKEH6OSnLb7AXzHwHnu7NuhO4XZF4pn8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75f499cfc919b4e8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open+Sans%3A400%2C700%2C800%2C300&ver=1.4.5

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Open+Sans%3A400%2C700%2C800%2C300&ver=1.4.5
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Open+Sans%3A400%2C700%2C800%2C300&ver=1.4.5 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://digitalmarketingcurated.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 24 Oct 2022 17:58:29 GMT
date: Mon, 24 Oct 2022 17:58:29 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/hummingbird-assets/4aa45e356f28092214b2a3e52e0b7767.js

104.26.14.65

200 OK

0 B

URL HTTP/2
itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/hummingbird-assets/4aa45e356f28092214b2a3e52e0b7767.js
IP
104.26.14.65:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /digitalmarketingcurated/wp-content/uploads/sites/11/hummingbird-assets/4aa45e356f28092214b2a3e52e0b7767.js HTTP/1.1
Host: itcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://digitalmarketingcurated.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 24 Oct 2022 17:58:29 GMT
content-type: application/javascript
cf-ray: 75f499d3fb300afa-OSL
access-control-allow-origin: *
cache-control: max-age=14400
etag: W/"3f6-5e92ab9598760-gzip"
last-modified: Wed, 21 Sep 2022 07:16:31 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: MISS
content-security-policy: frame-ancestors 'self';
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1MXC%2BqHWqyOygIjvS%2BgJtqQ9vh40MJxz9YMvj20DHgq%2Bxm0Xs4Q1r%2FiDcPIKqBVeIYTVO0tNQVwHXemFWROo60abVDIlwLeEzh5dHYbMkHV8ZU0dPLU6UCi%2FsaYleSU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/hummingbird-assets/13e4416b05cca613f0f5ffc85ac6481a.js

104.26.14.65

200 OK

0 B

URL HTTP/2
itcurated.com/digitalmarketingcurated/wp-content/uploads/sites/11/hummingbird-assets/13e4416b05cca613f0f5ffc85ac6481a.js
IP
104.26.14.65:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /digitalmarketingcurated/wp-content/uploads/sites/11/hummingbird-assets/13e4416b05cca613f0f5ffc85ac6481a.js HTTP/1.1
Host: itcurated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://digitalmarketingcurated.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 24 Oct 2022 17:58:30 GMT
content-type: application/javascript
cf-ray: 75f499d41b5d0afa-OSL
access-control-allow-origin: *
cache-control: max-age=14400
etag: W/"49-5e92abb50956f-gzip"
last-modified: Wed, 21 Sep 2022 07:17:04 GMT
vary: Accept-Encoding,User-Agent
cf-cache-status: MISS
content-security-policy: frame-ancestors 'self';
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vc4LqPvv6uUTJZtWjApr%2BQs52qHOcfBpO4Io0oO%2B%2FRLQfm5TuB9L1EPRSw8%2Be55mmISs2Gb3qDu8OfcF08SVWnOX9dyhy5OnFR9nbkotQVueU7n58JPG7llksyE6k7U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.195

200 OK

0 B

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://digitalmarketingcurated.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Oct 2022 05:42:51 GMT
expires: Fri, 20 Oct 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 389739
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (24)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP