r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash aea93551fa9deb76ae49a3b4019d64fe
e3b8862057ebe839959228e42246d7b1807fc90c
7e210f03b140418085e94ec20c1d27d6ecf7a404cbd323e16476ae5ae95d6dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2294
Expires: Thu, 08 Dec 2022 13:21:41 GMT
Date: Thu, 08 Dec 2022 12:43:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 7181eff9c60e83eb0004ece591e47dca
0fd8cd0c9d10b0547938982e57d2c43e2d98679f
89c5c0e2d6890798644174a8e31976aec03a1b3deb03812afbb520e5ed68f522
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89C5C0E2D6890798644174A8E31976AEC03A1B3DEB03812AFBB520E5ED68F522"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3916
Expires: Thu, 08 Dec 2022 13:48:43 GMT
Date: Thu, 08 Dec 2022 12:43:27 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 08 Dec 2022 12:08:12 GMT
content-type: application/json
age: 2115
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 00e7703bd74975689fc9050356aaca6b
9788fe6a36d6f278e8da329ebc5dd87bcd212317
593bc437ff8a8233516c62613d50220fcb25b9f967ed5fb384c253f0db135103
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "593BC437FF8A8233516C62613D50220FCB25B9F967ED5FB384C253F0DB135103"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12420
Expires: Thu, 08 Dec 2022 16:10:27 GMT
Date: Thu, 08 Dec 2022 12:43:27 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 1m3ijbklKKLGDm3idszEHsLADBa6ge8ERtVWijvW7+p9HVsuqJqHvA7R0mhiUfkbnFlzTb99Uec=
x-amz-request-id: AYHNCQXXQEBN71M0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 08 Dec 2022 11:47:54 GMT
age: 3333
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 12:43:28 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 08 Dec 2022 12:07:55 GMT
age: 2133
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
fundme.tech/--/3201/Login.html
192.254.236.151200 OK 52 kB URL HTTP/1.1 fundme.tech/--/3201/Login.html
IP 192.254.236.151:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (58962), with CRLF line terminators
Hash b5547260e71f550cd3e7920ad58fe034
6040b6b8cddc931ba52867c7b34fe13d30eefc7d
b1ff585c828f2ddc32af5178057b1a5211efacc5b365d4ada69469f0f39d9977
Analyzer Verdict Alert openphish Volksbank
fortinet Phishing
GET /--/3201/Login.html HTTP/1.1
Host: fundme.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 12:43:28 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sun, 04 Dec 2022 16:31:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/html
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd55f4aaaab6ec40bc7dc10252cd819a
a72523f60be265a391fa9edc43e0a93418ad1fd0
bae354b3db14f4fd115311a0c412c9b5e436dd9e0a151afd8b9c18831dd8c2dd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1867
Cache-Control: max-age=161671
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 12:43:28 GMT
Etag: "6391a92c-1d7"
Expires: Sat, 10 Dec 2022 09:37:59 GMT
Last-Modified: Thu, 08 Dec 2022 09:06:52 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
fundme.tech/--/3201/style/vr021___-webfont.woff2
192.254.236.151200 OK 25 kB URL HTTP/1.1 fundme.tech/--/3201/style/vr021___-webfont.woff2
IP 192.254.236.151:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 24608, version 1.0\012- data
Hash 13c4cd9c1ac7c94191f6e0726c4fdce1
d78c8a3dfda1619116ea6f56f02bf48365da3d51
af04aec736c43b3a1e44614897ae314d3f624fcdc15f6d9749600963b20e4eff
Analyzer Verdict Alert fortinet Phishing
GET /--/3201/style/vr021___-webfont.woff2 HTTP/1.1
Host: fundme.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fundme.tech/--/3201/Login.html
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 12:43:28 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sun, 04 Dec 2022 16:31:54 GMT
Accept-Ranges: bytes
Content-Length: 24608
Keep-Alive: timeout=5, max=75
Content-Type: font/woff2
fundme.tech/--/3201/style/style.css
192.254.236.151200 OK 184 B URL HTTP/1.1 fundme.tech/--/3201/style/style.css
IP 192.254.236.151:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash ebbb962d8bf6db23c559eaa53fda4ebe
819d6f198f90a0c6828601412a98380ec18df739
2fe1a20a33dbff6d23918b5d7913b305acf5cfaef9c7e0d25ec9936a85853cfd
GET /--/3201/style/style.css HTTP/1.1
Host: fundme.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fundme.tech/--/3201/Login.html
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 12:43:28 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sun, 04 Dec 2022 16:31:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 184
Keep-Alive: timeout=5, max=75
Content-Type: text/css
fundme.tech/--/3201/style/vr051___-webfont.woff2
192.254.236.151200 OK 25 kB URL HTTP/1.1 fundme.tech/--/3201/style/vr051___-webfont.woff2
IP 192.254.236.151:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 24580, version 1.0\012- data
Hash 7c11d6ccd4c1da684ba68dde48987b50
2f2a6aec9ed0e7ffe2b81285a7961552403e16c9
c825e9b517a70daf14196922b7c35578f62e5facea44a808acf4dadda1456b85
Analyzer Verdict Alert fortinet Phishing
GET /--/3201/style/vr051___-webfont.woff2 HTTP/1.1
Host: fundme.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fundme.tech/--/3201/Login.html
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 12:43:28 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sun, 04 Dec 2022 16:31:54 GMT
Accept-Ranges: bytes
Content-Length: 24580
Keep-Alive: timeout=5, max=75
Content-Type: font/woff2
push.services.mozilla.com/
54.189.35.180101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.189.35.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 1Yodhqm0W76C/cWlN8evzw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 8jAH1/XCm+xme0iiTRIerRJ5w4w=
fundme.tech/--/3201/style/vr.css
192.254.236.151200 OK 167 kB URL HTTP/1.1 fundme.tech/--/3201/style/vr.css
IP 192.254.236.151:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Size 167 kB (167270 bytes)
Hash 70b2d997abb2d5ad1620113084d2f6b1
db0ed4aa7c89370b4448f66abd8715520a109fba
c56dd1c4324f7db0be0c76a58980c5d93e47abc0465a87aa3a6823d63f6e7dba
GET /--/3201/style/vr.css HTTP/1.1
Host: fundme.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fundme.tech/--/3201/Login.html
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 12:43:28 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sun, 04 Dec 2022 16:31:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/css
fundme.tech/--/3201/style/unwetterkatastrophe-bvr-stoerer.png
192.254.236.151200 OK 30 kB URL HTTP/1.1 fundme.tech/--/3201/style/unwetterkatastrophe-bvr-stoerer.png
IP 192.254.236.151:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 604 x 554, 8-bit/color RGBA, non-interlaced\012- data
Hash 90eaafef3b4bd9cbf51e24f07ebe8903
93fb9c25dec847f3af95810884c80bcdf6c960a4
336563a08e742fa552e455b6a981b8a5a4893f55ccbe156a8cd32400a1e85590
GET /--/3201/style/unwetterkatastrophe-bvr-stoerer.png HTTP/1.1
Host: fundme.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fundme.tech/--/3201/Login.html
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 12:43:29 GMT
Server: Apache
Last-Modified: Sun, 04 Dec 2022 16:31:54 GMT
Accept-Ranges: bytes
Content-Length: 29671
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/png
fundme.tech/--/3201/style/logo-vr.svg
192.254.236.151200 OK 12 kB URL HTTP/1.1 fundme.tech/--/3201/style/logo-vr.svg
IP 192.254.236.151:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (11461), with no line terminators
Hash 5a392dfcd12ce0a80e657825946c13d3
9da94fc03b13241ccc8bf242b8a17219afeec0d6
a98221c9155dc607127fe88bbcbc7d88296b084a56661ff27f627e7913dc5c8f
Analyzer Verdict Alert fortinet Phishing
GET /--/3201/style/logo-vr.svg HTTP/1.1
Host: fundme.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fundme.tech/--/3201/Login.html
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 12:43:29 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sun, 04 Dec 2022 16:31:54 GMT
Accept-Ranges: bytes
Content-Length: 11461
Keep-Alive: timeout=5, max=75
Content-Type: image/svg+xml
fundme.tech/--/3201/style/footer-brands-dz-hyp.png
192.254.236.151200 OK 891 B URL HTTP/1.1 fundme.tech/--/3201/style/footer-brands-dz-hyp.png
IP 192.254.236.151:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 150 x 54, 8-bit colormap, non-interlaced\012- data
Hash 7715e1b1cad216006dee2e1c96d715d8
efb900210484d19ebaf9e4125f4bd1cc3070b7af
ee2c214d2fab6deccda9e13828ef031e3a07d011bf9496a618e37fbaea2404d7
GET /--/3201/style/footer-brands-dz-hyp.png HTTP/1.1
Host: fundme.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fundme.tech/--/3201/Login.html
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 12:43:29 GMT
Server: Apache
Last-Modified: Sun, 04 Dec 2022 16:31:54 GMT
Accept-Ranges: bytes
Content-Length: 891
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/png
fundme.tech/--/3201/style/unwetterkatastrophe-bvr-1600x550.jpg
192.254.236.151200 OK 9.6 kB URL HTTP/1.1 fundme.tech/--/3201/style/unwetterkatastrophe-bvr-1600x550.jpg
IP 192.254.236.151:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=3, orientation=upper-left, software=Adobe Photoshop CC 2019 (Macintosh)\012- GLS_BINARY_LSB_FIRST], progressive, precision 8, 1600x550, components 3\012- data
Hash 782e22a41a554c28533a6fafc573319a
9e605eec4f220aa7f7ca8cb3395c39044b1f89a7
5735845630edf16424bffe3a1bfb8909d86da623c5fb56c3111e01bff1d8738e
GET /--/3201/style/unwetterkatastrophe-bvr-1600x550.jpg HTTP/1.1
Host: fundme.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fundme.tech/--/3201/Login.html
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 12:43:29 GMT
Server: Apache
Last-Modified: Sun, 04 Dec 2022 16:31:54 GMT
Accept-Ranges: bytes
Content-Length: 9625
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/jpeg
fundme.tech/--/3201/style/muenchener-hyp.png
192.254.236.151200 OK 1.7 kB URL HTTP/1.1 fundme.tech/--/3201/style/muenchener-hyp.png
IP 192.254.236.151:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 96 x 54, 8-bit colormap, non-interlaced\012- data
Hash efd374669bdcda58cd007387ea0b3b2f
9b83bbb4e28e92c8a584cb46de632adef924a69d
12f8ff0cdb3c7d09b2fd5a0bbad514318283c15fcbbb224bb7fd6d5225b95c50
GET /--/3201/style/muenchener-hyp.png HTTP/1.1
Host: fundme.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fundme.tech/--/3201/Login.html
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 12:43:29 GMT
Server: Apache
Last-Modified: Sun, 04 Dec 2022 16:31:54 GMT
Accept-Ranges: bytes
Content-Length: 1655
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/png
fundme.tech/--/3201/style/kampagne-zuversicht-bvr-stoerer.png
192.254.236.151200 OK 84 kB URL HTTP/1.1 fundme.tech/--/3201/style/kampagne-zuversicht-bvr-stoerer.png
IP 192.254.236.151:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 600 x 378, 8-bit/color RGBA, non-interlaced\012- data
Hash 761ca62b80c5c127a0eaca7311b55dd7
1e8e499815af96914b0c5ab35f9771ffb5a51d1d
07602c282af342c14e9e273a2e2a076691dfb31d6f545655d93407d57a5197b1
GET /--/3201/style/kampagne-zuversicht-bvr-stoerer.png HTTP/1.1
Host: fundme.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fundme.tech/--/3201/Login.html
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 12:43:29 GMT
Server: Apache
Last-Modified: Sun, 04 Dec 2022 16:31:54 GMT
Accept-Ranges: bytes
Content-Length: 84319
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/png
fundme.tech/--/3201/img/icons.png
192.254.236.151302 Found 220 B URL HTTP/1.1 fundme.tech/--/3201/img/icons.png
IP 192.254.236.151:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1687c5be5940c0095fe436a527f3db27
3894aff1670aad6b798f115d16002da12174fd9f
45e63c8ae902241c35151b2fc15d682c20a56ae8b46a79fa27f57890668960e3
GET /--/3201/img/icons.png HTTP/1.1
Host: fundme.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fundme.tech/--/3201/style/vr.css
HTTP/1.1 302 Found
Date: Thu, 08 Dec 2022 12:43:29 GMT
Server: Apache
Location: https://vivirbientehuacan.com.mx/--/
Content-Length: 220
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
fundme.tech/--/3201/style/arrows.png
192.254.236.151200 OK 15 kB URL HTTP/1.1 fundme.tech/--/3201/style/arrows.png
IP 192.254.236.151:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1105 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash cd549e9d41f51cadd6d7805fe8cf2935
23abbf06592303004ebe88aa44974da4381cefdb
636557ad02ffe3c8b52a94c207492ae042a376287cf0c789761640658649602d
GET /--/3201/style/arrows.png HTTP/1.1
Host: fundme.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fundme.tech/--/3201/style/vr.css
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 12:43:29 GMT
Server: Apache
Last-Modified: Sun, 04 Dec 2022 16:31:54 GMT
Accept-Ranges: bytes
Content-Length: 15440
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/png
fundme.tech/--/3201/style/link-icons.png
192.254.236.151200 OK 9.4 kB URL HTTP/1.1 fundme.tech/--/3201/style/link-icons.png
IP 192.254.236.151:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 30 x 2138, 8-bit/color RGBA, non-interlaced\012- data
Hash 2a3324927a5bae41126c266925aa633d
b6680de3c2cd2f233963795db614a828e406f260
31bc137522aca0f89b37fd1d2098ccab1e70d508d2061107dd957246811e32ef
GET /--/3201/style/link-icons.png HTTP/1.1
Host: fundme.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fundme.tech/--/3201/style/vr.css
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 12:43:29 GMT
Server: Apache
Last-Modified: Sun, 04 Dec 2022 16:31:54 GMT
Accept-Ranges: bytes
Content-Length: 9434
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/png
fundme.tech/--/3201/style/kampagne-zuversicht-bvr-1600x550.jpg
192.254.236.151200 OK 315 kB URL HTTP/1.1 fundme.tech/--/3201/style/kampagne-zuversicht-bvr-1600x550.jpg
IP 192.254.236.151:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=3, orientation=upper-left, software=Adobe Photoshop CC 2019 (Macintosh)\012- GLS_BINARY_LSB_FIRST], progressive, precision 8, 1600x550, components 3\012- data
Size 315 kB (315276 bytes)
Hash e2269a275d1b021e9fe02e7f3681a626
576c19cc4cf3378a77e4cd6ab2809effffb5ceda
230ea8e5e1b20b2395c97d8362ac744e86ce086160034e014727a87d1af62f87
GET /--/3201/style/kampagne-zuversicht-bvr-1600x550.jpg HTTP/1.1
Host: fundme.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fundme.tech/--/3201/Login.html
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 12:43:29 GMT
Server: Apache
Last-Modified: Sun, 04 Dec 2022 16:31:54 GMT
Accept-Ranges: bytes
Content-Length: 315276
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/jpeg
fundme.tech/--/3201/style/r-v.png
192.254.236.151200 OK 6.8 kB URL HTTP/1.1 fundme.tech/--/3201/style/r-v.png
IP 192.254.236.151:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 86 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash 134c081031359d7c76c4ab1c8ce5c9c3
68d17db8370ddec220ec5e7c67a382bfc65a27a8
21da0d5e35a3dbe9f020686f4e0389c01fe3a8d7d2f892ea100f7969b58a0e6f
GET /--/3201/style/r-v.png HTTP/1.1
Host: fundme.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fundme.tech/--/3201/Login.html
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 12:43:29 GMT
Server: Apache
Last-Modified: Sun, 04 Dec 2022 16:31:54 GMT
Accept-Ranges: bytes
Content-Length: 6783
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/png
fundme.tech/--/3201/style/schwaebisch-hall.png
192.254.236.151200 OK 1.0 kB URL HTTP/1.1 fundme.tech/--/3201/style/schwaebisch-hall.png
IP 192.254.236.151:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 107 x 54, 8-bit colormap, non-interlaced\012- data
Hash d3fdf68762eb242b8a83a231c9e1a1a4
758e91bcbc21262ca217636a4b40683a6dfaf88d
63c6df19c6ecf63f60d07b9851a8fb9fea860bbe15faa1adc7e39020639293ce
GET /--/3201/style/schwaebisch-hall.png HTTP/1.1
Host: fundme.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fundme.tech/--/3201/Login.html
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 12:43:29 GMT
Server: Apache
Last-Modified: Sun, 04 Dec 2022 16:31:54 GMT
Accept-Ranges: bytes
Content-Length: 1009
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/png
fundme.tech/--/3201/style/easy-credit.png
192.254.236.151200 OK 1.8 kB URL HTTP/1.1 fundme.tech/--/3201/style/easy-credit.png
IP 192.254.236.151:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 144 x 54, 8-bit colormap, non-interlaced\012- data
Hash 62719767f1f11800af499a4685442d7e
83d1154cd08b8dcfd7c3eb6f3f33077bfd75cc55
9e8c63b62a891105bd80727fb009b5f57174cd5d93e352b72918a63d02bc0c4a
GET /--/3201/style/easy-credit.png HTTP/1.1
Host: fundme.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fundme.tech/--/3201/Login.html
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 12:43:29 GMT
Server: Apache
Last-Modified: Sun, 04 Dec 2022 16:31:54 GMT
Accept-Ranges: bytes
Content-Length: 1824
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/png
fundme.tech/--/3201/style/union-investment.png
192.254.236.151200 OK 12 kB URL HTTP/1.1 fundme.tech/--/3201/style/union-investment.png
IP 192.254.236.151:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 155 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash 4fddd2c67f8bc302ba2751001a0120aa
5931a1073deacd094ef294efa370eb824f137a43
dc4af140924081d5079f67a7d106c06cddedb3c9b725df91d184c7c2462c424c
GET /--/3201/style/union-investment.png HTTP/1.1
Host: fundme.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fundme.tech/--/3201/Login.html
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 12:43:29 GMT
Server: Apache
Last-Modified: Sun, 04 Dec 2022 16:31:54 GMT
Accept-Ranges: bytes
Content-Length: 11848
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/png
fundme.tech/--/3201/style/apple-pay-mastercard-1600x550-2.jpg
192.254.236.151200 OK 189 kB URL HTTP/1.1 fundme.tech/--/3201/style/apple-pay-mastercard-1600x550-2.jpg
IP 192.254.236.151:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=3, orientation=upper-left, software=Adobe Photoshop CC 2019 (Macintosh)\012- GLS_BINARY_LSB_FIRST], progressive, precision 8, 1600x550, components 3\012- data
Size 189 kB (188922 bytes)
Hash 1707736547b5394e99f0bb802cf11d8e
39d3c890f7299175207880c944e388fda33e29b4
de25df831c2204b16c2ece47f91e92806a2ac8f1cd8902e7a7a60d576d7b66eb
GET /--/3201/style/apple-pay-mastercard-1600x550-2.jpg HTTP/1.1
Host: fundme.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fundme.tech/--/3201/Login.html
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 12:43:29 GMT
Server: Apache
Last-Modified: Sun, 04 Dec 2022 16:31:54 GMT
Accept-Ranges: bytes
Content-Length: 188922
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/jpeg
fundme.tech/--/3201/style/dz-privatbank.png
192.254.236.151200 OK 2.1 kB URL HTTP/1.1 fundme.tech/--/3201/style/dz-privatbank.png
IP 192.254.236.151:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 179 x 54, 8-bit colormap, non-interlaced\012- data
Hash 165999f096c421322ed4c310dca2599b
d85c0ff71df801eb1592947f98611e5d8a3a93f4
9d624a34abafa8aecfc4a275a095251b8614c3381cd869e23b75304a72634162
GET /--/3201/style/dz-privatbank.png HTTP/1.1
Host: fundme.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fundme.tech/--/3201/Login.html
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 12:43:29 GMT
Server: Apache
Last-Modified: Sun, 04 Dec 2022 16:31:54 GMT
Accept-Ranges: bytes
Content-Length: 2105
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/png
fundme.tech/--/3201/style/vr-smart-finanz.png
192.254.236.151200 OK 1.7 kB URL HTTP/1.1 fundme.tech/--/3201/style/vr-smart-finanz.png
IP 192.254.236.151:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 206 x 54, 8-bit colormap, non-interlaced\012- data
Hash 4611780759bc0ede7822e3f6884d1c4e
a9461c920cee99d4a5d65598710f0edaa3e48a49
3b0b1a81e628f8f1e65cf42231b3206acb63c91d3e1023565684d5b67daf3795
GET /--/3201/style/vr-smart-finanz.png HTTP/1.1
Host: fundme.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fundme.tech/--/3201/Login.html
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 12:43:29 GMT
Server: Apache
Last-Modified: Sun, 04 Dec 2022 16:31:54 GMT
Accept-Ranges: bytes
Content-Length: 1747
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/png
fundme.tech/--/3201/style/dz-bank.png
192.254.236.151200 OK 969 B URL HTTP/1.1 fundme.tech/--/3201/style/dz-bank.png
IP 192.254.236.151:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 140 x 54, 8-bit colormap, non-interlaced\012- data
Hash 2d53da9345c87a88aa779e0da912c79a
1b2f8d99d1bca63dfa16010d37b93f638be2b6f2
359cd9f710ebfa3c48a36b951207cf31e31ec57ac51a5a30b5cfc050a86136cb
GET /--/3201/style/dz-bank.png HTTP/1.1
Host: fundme.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fundme.tech/--/3201/Login.html
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 12:43:29 GMT
Server: Apache
Last-Modified: Sun, 04 Dec 2022 16:31:54 GMT
Accept-Ranges: bytes
Content-Length: 969
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/png
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4117
Expires: Thu, 08 Dec 2022 13:52:07 GMT
Date: Thu, 08 Dec 2022 12:43:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4117
Expires: Thu, 08 Dec 2022 13:52:07 GMT
Date: Thu, 08 Dec 2022 12:43:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4117
Expires: Thu, 08 Dec 2022 13:52:07 GMT
Date: Thu, 08 Dec 2022 12:43:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4117
Expires: Thu, 08 Dec 2022 13:52:07 GMT
Date: Thu, 08 Dec 2022 12:43:30 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b87d6543345f73653ed4a49b37d7c959
c4f26846b8b72293368ff16915d49297cf12bbb9
aee6aa42e4b5b83b81f74801ff8f0039fc6d38036f42ee81875813c856cf5eef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8659
x-amzn-requestid: 6f420d07-65d5-4bb2-9f1f-e56025de497b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFSYFArIAMF46w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c0f-0a295e5c48228d5806b4f107;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TSh1BNzzIPhWCfYEiqvQJckSPAyhHobe-HK6msEVeEJ1ruX-_rMSSA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:33:19 GMT
age: 47411
etag: "c4f26846b8b72293368ff16915d49297cf12bbb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 57be99ac898a37d73f2ba4a24f56248f
04e32eb45581201a6a1863200e4d139df48285e6
a20081b64fc019372843360b15aa3461ec9dd3deb50ab398bca0a5e74d5468c2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12534
x-amzn-requestid: 2a01f2ba-cf3a-4f59-8339-214c66bcc0d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czDbyGTcoAMF_TQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911918-5d3eba8d01e4175a71acc6cd;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 22:52:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NoZlZ8WFfOuIbkWaC2pJPJQrWtjzz2gCHJWr-u-nMNYmu8MkTf6_PA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:03:58 GMT
age: 49172
etag: "04e32eb45581201a6a1863200e4d139df48285e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c408efaa98ac2ce63bb1618368d10c15
a51bbb49ebd862d04eaee465d0a35b22dcd21391
077eb8c8739f527828c71c25a1c3aaae46afead3aac093ec11a6d5488ef2f0ec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9596
x-amzn-requestid: e5e6ceb2-5bad-4146-a9de-92a859716029
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy3_qH63oAMFfLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639106ca-678bed1b7729b8aa2645688d;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:34:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FsbiyZG0110CEANduIIWuLcxFOxfrV0YPvOSy-ScXFIX1qM6qaOdCg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:21:22 GMT
age: 51728
etag: "a51bbb49ebd862d04eaee465d0a35b22dcd21391"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24d89b69ba37bf23c5d576aff4063caf
3d46a21b4da571d7e4962e335c18a28ca5f81ecf
09b52cdab278805c6e7282f469a02768ee62fc9ef09a6623a337e3d3aaa446fd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7268
x-amzn-requestid: ae5c231c-b1be-498a-a242-e8d641f3fe8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFDgEzUoAMFgyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911baf-10f06dc37cac69631c823fd9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:03:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QSv756DvAzOQnKae5wVg75wrQS6oDGPkfIZka86FNQ2vizBnZ7sIDQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:12:45 GMT
age: 48645
etag: "3d46a21b4da571d7e4962e335c18a28ca5f81ecf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc231183-b100-4921-9a48-0bac91da0d2b.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc231183-b100-4921-9a48-0bac91da0d2b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 280c788841ca669f2c8556f03ee85b68
c15a4519a69eb6b5cc624344a7c3d99335a095d9
451a816aa2129c3a7712a01b96daee492ae2ab25c4940405063098f3b7ad10ae
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc231183-b100-4921-9a48-0bac91da0d2b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6032
x-amzn-requestid: 22b80af7-87cf-4719-8bc8-927077cc3aa1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy4hoFraoAMFpVA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639107a3-42927c064ee65d3b23121b36;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:37:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6M8oH6MMBavZDrPB-1sohGs3gJK1LjDbeDYZ0OAIlTLqJ6LdGbkCTg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 21:59:08 GMT
age: 53062
etag: "c15a4519a69eb6b5cc624344a7c3d99335a095d9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19ffa93b-2002-4f40-ab8b-aa163e9b5939.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19ffa93b-2002-4f40-ab8b-aa163e9b5939.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 535710165275856757bd7d1689f79de3
d51162b7fcba50022482b7130a556f3a7dfe822f
c93e2df13b78cd4b718eb4fe3fe70a9d6d12fd0a0d7f505219ec0d5e6a70653c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19ffa93b-2002-4f40-ab8b-aa163e9b5939.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6186
x-amzn-requestid: 53d1d373-ff6c-4c59-bdeb-fff592bca586
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUsyGOEIAMFwfA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e67eb-0156077b52dc07fb124c087b;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:51:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KkP8o_5GoqAukEAUkPrvsHE0v_36vO0wI7_97kvnUkqYc4ziC7UPpw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 16:47:32 GMT
age: 71758
etag: "d51162b7fcba50022482b7130a556f3a7dfe822f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fundme.tech/--/3201/style/apple-touch-icon-144x144.png
192.254.236.151200 OK 3.8 kB URL HTTP/1.1 fundme.tech/--/3201/style/apple-touch-icon-144x144.png
IP 192.254.236.151:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 144 x 144, 8-bit/color RGB, non-interlaced\012- data
Hash 9bf93029b98d97045c499f47ee6977ce
3698cd6e5d11e9ba6efeeeb6bbe1081d5b00f8d8
e841437afc9d3c364227817584e24b1d5dff56064d07da436d60f3ddc4f48ac0
GET /--/3201/style/apple-touch-icon-144x144.png HTTP/1.1
Host: fundme.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://fundme.tech/--/3201/Login.html
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 12:43:30 GMT
Server: Apache
Last-Modified: Sun, 04 Dec 2022 16:31:54 GMT
Accept-Ranges: bytes
Content-Length: 3767
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/png