teleline.site/m/ae/ewh/?key=eyJ0aW1lc3RhbXAiOiIxNjc0ODgyNjk2IiwiaGFzaCI6IjBmNTVjNjRjNDgwZDA5M2I2YWU1ODkxOTc4M2JkM2YwYjQyYmEwYWQifQ==&ccc=US&ppp=PropellerAds%20ARNAS&tdom=www.mediacdnc.com&bemobdata=c=c613ece0-b55e-46f0-8519-246d92c56123..l=7962dcc5-a702-4dc0-be3b-981601aa9c8c..a=0..b=0..r=www.mediacdnc.com
79.98.29.29200 OK 4.2 kB URL HTTP/1.1 teleline.site/m/ae/ewh/?key=eyJ0aW1lc3RhbXAiOiIxNjc0ODgyNjk2IiwiaGFzaCI6IjBmNTVjNjRjNDgwZDA5M2I2YWU1ODkxOTc4M2JkM2YwYjQyYmEwYWQifQ==&ccc=US&ppp=PropellerAds%20ARNAS&tdom=www.mediacdnc.com&bemobdata=c=c613ece0-b55e-46f0-8519-246d92c56123..l=7962dcc5-a702-4dc0-be3b-981601aa9c8c..a=0..b=0..r=www.mediacdnc.com
IP 79.98.29.29:0
ASN #212531 UAB Interneto vizija
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text
Hash bc20ee1315aa1de584ed420b91724da1
d31ac2d7192fa238da53a18d9906d9ac243d6550
8dc8d221d4380002089098183b471f0e078aaf3cd04526afbb670a53e24e7bd8
GET /m/ae/ewh/?key=eyJ0aW1lc3RhbXAiOiIxNjc0ODgyNjk2IiwiaGFzaCI6IjBmNTVjNjRjNDgwZDA5M2I2YWU1ODkxOTc4M2JkM2YwYjQyYmEwYWQifQ==&ccc=US&ppp=PropellerAds%20ARNAS&tdom=www.mediacdnc.com&bemobdata=c=c613ece0-b55e-46f0-8519-246d92c56123..l=7962dcc5-a702-4dc0-be3b-981601aa9c8c..a=0..b=0..r=www.mediacdnc.com HTTP/1.1
Host: teleline.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 05:11:56 GMT
Server: Apache
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=2, max=100
Transfer-Encoding: chunked
Content-Type: text/html
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 9fbe85f42e8ae8ae41cc12df5f98b141
949fa36ff0f22f72565fd584bef094dd4de23037
184d3e4df4bce559b4d7c4836372f5fd2de9782a96b04d364230b7d695d737d8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "184D3E4DF4BCE559B4D7C4836372F5FD2DE9782A96B04D364230B7D695D737D8"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19479
Expires: Sat, 28 Jan 2023 10:36:35 GMT
Date: Sat, 28 Jan 2023 05:11:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 81dd5c5cc5b3278876cb44dcb520a60f
c0511a59e9eccdcdda98717b87c89c5d59974808
41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5368
Expires: Sat, 28 Jan 2023 06:41:24 GMT
Date: Sat, 28 Jan 2023 05:11:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 69f73ac59327cd9ad7d99816ccfcc03e
c54844f82dbee0d5ee4c8ce344eb0139373e6c6b
e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11543
Expires: Sat, 28 Jan 2023 08:24:19 GMT
Date: Sat, 28 Jan 2023 05:11:56 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 28 Jan 2023 04:35:28 GMT
content-type: application/json
age: 2188
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: bMBdo3EZKhGA45j6RqA+XR+KydrlGHScL3xo6/n43UbmthJUXTCu+IzErYpgCFymm6HAl/m0Nsg=
x-amz-request-id: N75W2WJ6W23S9KC3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 28 Jan 2023 04:49:42 GMT
age: 1334
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
teleline.site/m/ae/ewh/628b8615f2b06_v.js
79.98.29.29200 OK 1.5 kB URL HTTP/1.1 teleline.site/m/ae/ewh/628b8615f2b06_v.js
IP 79.98.29.29:0
ASN #212531 UAB Interneto vizija
Hash 66cb52e797775439ec582bf8578560be
26abfb75b916e5d23773e2018516cd7a02811226
7bdc455a4877e87e69da40470afbffa67f0e571dce5e9db71fc17adbb961eeb8
Analyzer Verdict Alert fortinet Phishing
GET /m/ae/ewh/628b8615f2b06_v.js HTTP/1.1
Host: teleline.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://teleline.site/m/ae/ewh/?key=eyJ0aW1lc3RhbXAiOiIxNjc0ODgyNjk2IiwiaGFzaCI6IjBmNTVjNjRjNDgwZDA5M2I2YWU1ODkxOTc4M2JkM2YwYjQyYmEwYWQifQ==&ccc=US&ppp=PropellerAds%20ARNAS&tdom=www.mediacdnc.com&bemobdata=c=c613ece0-b55e-46f0-8519-246d92c56123..l=7962dcc5-a702-4dc0-be3b-981601aa9c8c..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 05:11:56 GMT
Server: Apache
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 24 Jan 2023 15:24:18 GMT
ETag: "19db-5f3041c01c959-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sat, 04 Feb 2023 05:11:56 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1502
Keep-Alive: timeout=2, max=100
Content-Type: text/javascript
teleline.site/m/ae/ewh/628b8612e4470_v.css
79.98.29.29200 OK 4.2 kB URL HTTP/1.1 teleline.site/m/ae/ewh/628b8612e4470_v.css
IP 79.98.29.29:0
ASN #212531 UAB Interneto vizija
Hash 15940dc78d75cecefe5a235d0a0353cb
74e0202d07e82ae443d8f586072143c50760d668
61cb3794f9f7ca45317d8777582f1d4d879b0cb195bdfb8cc0bd0ba2e1e0dab2
GET /m/ae/ewh/628b8612e4470_v.css HTTP/1.1
Host: teleline.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://teleline.site/m/ae/ewh/?key=eyJ0aW1lc3RhbXAiOiIxNjc0ODgyNjk2IiwiaGFzaCI6IjBmNTVjNjRjNDgwZDA5M2I2YWU1ODkxOTc4M2JkM2YwYjQyYmEwYWQifQ==&ccc=US&ppp=PropellerAds%20ARNAS&tdom=www.mediacdnc.com&bemobdata=c=c613ece0-b55e-46f0-8519-246d92c56123..l=7962dcc5-a702-4dc0-be3b-981601aa9c8c..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 05:11:56 GMT
Server: Apache
Last-Modified: Tue, 24 Jan 2023 15:24:18 GMT
ETag: "4942-5f3041bfeac7a-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sat, 04 Feb 2023 05:11:56 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4194
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: text/css
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 05:11:56 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
teleline.site/m/ae/ewh/628b86146c3e9_v.css
79.98.29.29200 OK 1.8 kB URL HTTP/1.1 teleline.site/m/ae/ewh/628b86146c3e9_v.css
IP 79.98.29.29:0
ASN #212531 UAB Interneto vizija
File type CSV text\012- , ASCII text
Hash a016527825f9d98fc92248c589138216
b3e321598954756437dee26acca9bbb39cdbd0c6
44e1889f1bdc529d751bf7cc815a0731bac9c74d0f51aecc6482d3d645b90f75
GET /m/ae/ewh/628b86146c3e9_v.css HTTP/1.1
Host: teleline.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://teleline.site/m/ae/ewh/?key=eyJ0aW1lc3RhbXAiOiIxNjc0ODgyNjk2IiwiaGFzaCI6IjBmNTVjNjRjNDgwZDA5M2I2YWU1ODkxOTc4M2JkM2YwYjQyYmEwYWQifQ==&ccc=US&ppp=PropellerAds%20ARNAS&tdom=www.mediacdnc.com&bemobdata=c=c613ece0-b55e-46f0-8519-246d92c56123..l=7962dcc5-a702-4dc0-be3b-981601aa9c8c..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 05:11:56 GMT
Server: Apache
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 24 Jan 2023 15:24:18 GMT
ETag: "1980-5f3041c0065e1-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sat, 04 Feb 2023 05:11:56 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1765
Keep-Alive: timeout=2, max=100
Content-Type: text/css
teleline.site/m/ae/ewh/628b861217b04_v.js
79.98.29.29404 Not Found 196 B URL HTTP/1.1 teleline.site/m/ae/ewh/628b861217b04_v.js
IP 79.98.29.29:0
ASN #212531 UAB Interneto vizija
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
Analyzer Verdict Alert fortinet Phishing
GET /m/ae/ewh/628b861217b04_v.js HTTP/1.1
Host: teleline.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://teleline.site/m/ae/ewh/?key=eyJ0aW1lc3RhbXAiOiIxNjc0ODgyNjk2IiwiaGFzaCI6IjBmNTVjNjRjNDgwZDA5M2I2YWU1ODkxOTc4M2JkM2YwYjQyYmEwYWQifQ==&ccc=US&ppp=PropellerAds%20ARNAS&tdom=www.mediacdnc.com&bemobdata=c=c613ece0-b55e-46f0-8519-246d92c56123..l=7962dcc5-a702-4dc0-be3b-981601aa9c8c..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 05:11:56 GMT
Server: Apache
Content-Length: 196
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
teleline.site/m/ae/ewh/628b8613b21f6_v.js
79.98.29.29200 OK 30 kB URL HTTP/1.1 teleline.site/m/ae/ewh/628b8613b21f6_v.js
IP 79.98.29.29:0
ASN #212531 UAB Interneto vizija
File type ASCII text, with very long lines (32058)
Hash cbe49235da5aa7be65b097a8bf8e3480
d5679e3f1d6fd1db9af14722e61de67c817699b2
f964e397e45ea36c86c60077a29b6004d61bf0284678ae7f268153e5e19d8579
Analyzer Verdict Alert fortinet Phishing
GET /m/ae/ewh/628b8613b21f6_v.js HTTP/1.1
Host: teleline.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://teleline.site/m/ae/ewh/?key=eyJ0aW1lc3RhbXAiOiIxNjc0ODgyNjk2IiwiaGFzaCI6IjBmNTVjNjRjNDgwZDA5M2I2YWU1ODkxOTc4M2JkM2YwYjQyYmEwYWQifQ==&ccc=US&ppp=PropellerAds%20ARNAS&tdom=www.mediacdnc.com&bemobdata=c=c613ece0-b55e-46f0-8519-246d92c56123..l=7962dcc5-a702-4dc0-be3b-981601aa9c8c..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 05:11:56 GMT
Server: Apache
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 24 Jan 2023 15:24:18 GMT
ETag: "15282-5f3041bffe111-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Sat, 04 Feb 2023 05:11:56 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 30138
Keep-Alive: timeout=2, max=100
Content-Type: text/javascript
teleline.site/m/ae/ewh/pana1.webp
79.98.29.29200 OK 1.3 kB URL HTTP/1.1 teleline.site/m/ae/ewh/pana1.webp
IP 79.98.29.29:0
ASN #212531 UAB Interneto vizija
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 99ab7c56b3969c1feb970404f1347bed
18b7eb2ed18db86aa65b5da9e20f7f738fd0f5d9
4d26dd676541a4e8e0c9d32921801b09dce8bc7b62feb33dd703177c2dd747be
Analyzer Verdict Alert fortinet Phishing
GET /m/ae/ewh/pana1.webp HTTP/1.1
Host: teleline.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://teleline.site/m/ae/ewh/?key=eyJ0aW1lc3RhbXAiOiIxNjc0ODgyNjk2IiwiaGFzaCI6IjBmNTVjNjRjNDgwZDA5M2I2YWU1ODkxOTc4M2JkM2YwYjQyYmEwYWQifQ==&ccc=US&ppp=PropellerAds%20ARNAS&tdom=www.mediacdnc.com&bemobdata=c=c613ece0-b55e-46f0-8519-246d92c56123..l=7962dcc5-a702-4dc0-be3b-981601aa9c8c..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 05:11:56 GMT
Server: Apache
Last-Modified: Tue, 24 Jan 2023 15:24:19 GMT
ETag: "52c-5f3041c058278"
Accept-Ranges: bytes
Content-Length: 1324
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
teleline.site/m/ae/ewh/2_p.webp
79.98.29.29200 OK 1.6 kB URL HTTP/1.1 teleline.site/m/ae/ewh/2_p.webp
IP 79.98.29.29:0
ASN #212531 UAB Interneto vizija
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 200x45, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 11e6b84888a514afe3216cec31119bc7
ebdc215dbba12fbde61526a1ddaa727fd37579ba
28f46db21ba68176ec92a7a223a522cf55e311722407d6ebd0fd8b9c444b57a2
Analyzer Verdict Alert fortinet Phishing
GET /m/ae/ewh/2_p.webp HTTP/1.1
Host: teleline.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://teleline.site/m/ae/ewh/?key=eyJ0aW1lc3RhbXAiOiIxNjc0ODgyNjk2IiwiaGFzaCI6IjBmNTVjNjRjNDgwZDA5M2I2YWU1ODkxOTc4M2JkM2YwYjQyYmEwYWQifQ==&ccc=US&ppp=PropellerAds%20ARNAS&tdom=www.mediacdnc.com&bemobdata=c=c613ece0-b55e-46f0-8519-246d92c56123..l=7962dcc5-a702-4dc0-be3b-981601aa9c8c..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 05:11:56 GMT
Server: Apache
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 24 Jan 2023 15:24:18 GMT
ETag: "63c-5f3041bfe1bf2"
Accept-Ranges: bytes
Content-Length: 1596
Keep-Alive: timeout=2, max=100
teleline.site/m/ae/ewh/ratas_p.webp
79.98.29.29200 OK 23 kB URL HTTP/1.1 teleline.site/m/ae/ewh/ratas_p.webp
IP 79.98.29.29:0
ASN #212531 UAB Interneto vizija
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 567x567, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8d9ebd8b4cee5274c40df8169adab3e9
29fe4fb043fc74c5448fdd0fcdcaeaf6b2c8523e
0f0abcd97ab78df6a75763a658379f403dfac837faa92aedcbe50d4a30e22e82
Analyzer Verdict Alert fortinet Phishing
GET /m/ae/ewh/ratas_p.webp HTTP/1.1
Host: teleline.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://teleline.site/m/ae/ewh/?key=eyJ0aW1lc3RhbXAiOiIxNjc0ODgyNjk2IiwiaGFzaCI6IjBmNTVjNjRjNDgwZDA5M2I2YWU1ODkxOTc4M2JkM2YwYjQyYmEwYWQifQ==&ccc=US&ppp=PropellerAds%20ARNAS&tdom=www.mediacdnc.com&bemobdata=c=c613ece0-b55e-46f0-8519-246d92c56123..l=7962dcc5-a702-4dc0-be3b-981601aa9c8c..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 05:11:56 GMT
Server: Apache
Last-Modified: Tue, 24 Jan 2023 15:24:19 GMT
ETag: "5b86-5f3041c074797"
Accept-Ranges: bytes
Content-Length: 23430
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
teleline.site/m/ae/ewh/1_p.webp
79.98.29.29200 OK 16 kB URL HTTP/1.1 teleline.site/m/ae/ewh/1_p.webp
IP 79.98.29.29:0
ASN #212531 UAB Interneto vizija
File type RIFF (little-endian) data, Web/P image\012- data
Hash 50a4abcc3ef7fb24d09805558911a836
a45bbc84742cef32db456920d0bc1248a089ab56
7c68f8e4c66c08f6450fff4e9daddd4ec41c617fc415e4d797502a47c0929c47
Analyzer Verdict Alert fortinet Phishing
GET /m/ae/ewh/1_p.webp HTTP/1.1
Host: teleline.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://teleline.site/m/ae/ewh/?key=eyJ0aW1lc3RhbXAiOiIxNjc0ODgyNjk2IiwiaGFzaCI6IjBmNTVjNjRjNDgwZDA5M2I2YWU1ODkxOTc4M2JkM2YwYjQyYmEwYWQifQ==&ccc=US&ppp=PropellerAds%20ARNAS&tdom=www.mediacdnc.com&bemobdata=c=c613ece0-b55e-46f0-8519-246d92c56123..l=7962dcc5-a702-4dc0-be3b-981601aa9c8c..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 05:11:56 GMT
Server: Apache
Last-Modified: Tue, 24 Jan 2023 15:24:18 GMT
ETag: "3db4-5f3041bfd6c2a"
Accept-Ranges: bytes
Content-Length: 15796
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
teleline.site/m/ae/ewh/vyras1.webp
79.98.29.29200 OK 2.8 kB URL HTTP/1.1 teleline.site/m/ae/ewh/vyras1.webp
IP 79.98.29.29:0
ASN #212531 UAB Interneto vizija
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 100x98, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 407faadeaa6d91ae54076a42c566effe
467011313e92cbe36ad6389203bb1ef3a3164eaf
12f1f8e865a277753c51e4851cd5a1bccaae9fd33491301623bb7f3b968d6a61
Analyzer Verdict Alert fortinet Phishing
GET /m/ae/ewh/vyras1.webp HTTP/1.1
Host: teleline.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://teleline.site/m/ae/ewh/?key=eyJ0aW1lc3RhbXAiOiIxNjc0ODgyNjk2IiwiaGFzaCI6IjBmNTVjNjRjNDgwZDA5M2I2YWU1ODkxOTc4M2JkM2YwYjQyYmEwYWQifQ==&ccc=US&ppp=PropellerAds%20ARNAS&tdom=www.mediacdnc.com&bemobdata=c=c613ece0-b55e-46f0-8519-246d92c56123..l=7962dcc5-a702-4dc0-be3b-981601aa9c8c..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 05:11:56 GMT
Server: Apache
Last-Modified: Tue, 24 Jan 2023 15:24:19 GMT
ETag: "b16-5f3041c07a16f"
Accept-Ranges: bytes
Content-Length: 2838
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
teleline.site/m/ae/ewh/pana2.webp
79.98.29.29200 OK 2.7 kB URL HTTP/1.1 teleline.site/m/ae/ewh/pana2.webp
IP 79.98.29.29:0
ASN #212531 UAB Interneto vizija
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 100x101, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash db970b5534e5d49bbe8a0c00ea561edc
4e7df36293e15303902cb2441ea36f165898f251
6d019a620a8b3c68fd016b5a912a3fa782ae0db30b53b159ff31f020e94b9a1e
Analyzer Verdict Alert fortinet Phishing
GET /m/ae/ewh/pana2.webp HTTP/1.1
Host: teleline.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://teleline.site/m/ae/ewh/?key=eyJ0aW1lc3RhbXAiOiIxNjc0ODgyNjk2IiwiaGFzaCI6IjBmNTVjNjRjNDgwZDA5M2I2YWU1ODkxOTc4M2JkM2YwYjQyYmEwYWQifQ==&ccc=US&ppp=PropellerAds%20ARNAS&tdom=www.mediacdnc.com&bemobdata=c=c613ece0-b55e-46f0-8519-246d92c56123..l=7962dcc5-a702-4dc0-be3b-981601aa9c8c..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 05:11:56 GMT
Server: Apache
Last-Modified: Tue, 24 Jan 2023 15:24:19 GMT
ETag: "a72-5f3041c061ad0"
Accept-Ranges: bytes
Content-Length: 2674
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
teleline.site/m/ae/ewh/vyras2.webp
79.98.29.29200 OK 1.7 kB URL HTTP/1.1 teleline.site/m/ae/ewh/vyras2.webp
IP 79.98.29.29:0
ASN #212531 UAB Interneto vizija
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6aa9983cb26f4526dca1ba4df761dd44
1e0b03817701513a37dfb37cbd5fac37a312f516
d809b795e4119532952b08c8ba941e21ff0931589fd7fd6042dcddb2ea056fc0
Analyzer Verdict Alert fortinet Phishing
GET /m/ae/ewh/vyras2.webp HTTP/1.1
Host: teleline.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://teleline.site/m/ae/ewh/?key=eyJ0aW1lc3RhbXAiOiIxNjc0ODgyNjk2IiwiaGFzaCI6IjBmNTVjNjRjNDgwZDA5M2I2YWU1ODkxOTc4M2JkM2YwYjQyYmEwYWQifQ==&ccc=US&ppp=PropellerAds%20ARNAS&tdom=www.mediacdnc.com&bemobdata=c=c613ece0-b55e-46f0-8519-246d92c56123..l=7962dcc5-a702-4dc0-be3b-981601aa9c8c..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 05:11:56 GMT
Server: Apache
Last-Modified: Tue, 24 Jan 2023 15:24:19 GMT
ETag: "696-5f3041c084197"
Accept-Ranges: bytes
Content-Length: 1686
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
teleline.site/m/ae/ewh/11_p.webp
79.98.29.29200 OK 37 kB URL HTTP/1.1 teleline.site/m/ae/ewh/11_p.webp
IP 79.98.29.29:0
ASN #212531 UAB Interneto vizija
File type RIFF (little-endian) data, Web/P image\012- data
Hash 7907a55597c29c2ae6565925ad4d6ec9
f1b3da42b181cb0f6a4544f497345272eae75ed6
9162528fe8350cef93c35dabe2893a010d1c1e6926a3cf5a2f8a7fc48590f430
Analyzer Verdict Alert fortinet Phishing
GET /m/ae/ewh/11_p.webp HTTP/1.1
Host: teleline.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://teleline.site/m/ae/ewh/?key=eyJ0aW1lc3RhbXAiOiIxNjc0ODgyNjk2IiwiaGFzaCI6IjBmNTVjNjRjNDgwZDA5M2I2YWU1ODkxOTc4M2JkM2YwYjQyYmEwYWQifQ==&ccc=US&ppp=PropellerAds%20ARNAS&tdom=www.mediacdnc.com&bemobdata=c=c613ece0-b55e-46f0-8519-246d92c56123..l=7962dcc5-a702-4dc0-be3b-981601aa9c8c..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 05:11:56 GMT
Server: Apache
Last-Modified: Tue, 24 Jan 2023 15:24:18 GMT
ETag: "9106-5f3041bfcf6fa"
Accept-Ranges: bytes
Content-Length: 37126
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
teleline.site/m/ae/ewh/pana3.webp
79.98.29.29200 OK 1.7 kB URL HTTP/1.1 teleline.site/m/ae/ewh/pana3.webp
IP 79.98.29.29:0
ASN #212531 UAB Interneto vizija
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 24d55d662fbb9ce8333a2c7c30c3037e
c2bb098d190c5bb9970e1ad07fda929e18e1ccb7
fdbd55406c340c504f34bd898c09d1774b3ef24dc588feaf811dddd96a045a67
Analyzer Verdict Alert fortinet Phishing
GET /m/ae/ewh/pana3.webp HTTP/1.1
Host: teleline.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://teleline.site/m/ae/ewh/?key=eyJ0aW1lc3RhbXAiOiIxNjc0ODgyNjk2IiwiaGFzaCI6IjBmNTVjNjRjNDgwZDA5M2I2YWU1ODkxOTc4M2JkM2YwYjQyYmEwYWQifQ==&ccc=US&ppp=PropellerAds%20ARNAS&tdom=www.mediacdnc.com&bemobdata=c=c613ece0-b55e-46f0-8519-246d92c56123..l=7962dcc5-a702-4dc0-be3b-981601aa9c8c..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 05:11:56 GMT
Server: Apache
Last-Modified: Tue, 24 Jan 2023 15:24:19 GMT
ETag: "6c8-5f3041c06ce7f"
Accept-Ranges: bytes
Content-Length: 1736
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
teleline.site/m/ae/ewh/logo1_p.webp
79.98.29.29200 OK 16 kB URL HTTP/1.1 teleline.site/m/ae/ewh/logo1_p.webp
IP 79.98.29.29:0
ASN #212531 UAB Interneto vizija
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 580x428, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 06fe1c753ce42d1aa6612d6aa6f36abd
08174266a3ffdd2b543770210090185c486709a1
11694dc4024ea153c9cb3968989566ce2e79d294837635ceb77fd3aaec17b1b2
Analyzer Verdict Alert fortinet Phishing
GET /m/ae/ewh/logo1_p.webp HTTP/1.1
Host: teleline.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://teleline.site/m/ae/ewh/?key=eyJ0aW1lc3RhbXAiOiIxNjc0ODgyNjk2IiwiaGFzaCI6IjBmNTVjNjRjNDgwZDA5M2I2YWU1ODkxOTc4M2JkM2YwYjQyYmEwYWQifQ==&ccc=US&ppp=PropellerAds%20ARNAS&tdom=www.mediacdnc.com&bemobdata=c=c613ece0-b55e-46f0-8519-246d92c56123..l=7962dcc5-a702-4dc0-be3b-981601aa9c8c..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 05:11:56 GMT
Server: Apache
Last-Modified: Tue, 24 Jan 2023 15:24:19 GMT
ETag: "3f06-5f3041c04a3d0"
Accept-Ranges: bytes
Content-Length: 16134
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
teleline.site/m/ae/ewh/628b8616e0202_v_p.webp
79.98.29.29200 OK 3.5 kB URL HTTP/1.1 teleline.site/m/ae/ewh/628b8616e0202_v_p.webp
IP 79.98.29.29:0
ASN #212531 UAB Interneto vizija
File type RIFF (little-endian) data, Web/P image\012- data
Hash 212b6f57228d2b11c2dcd85e917666d2
33883d21e1dcd0487aa6150b1ea9e1826d1c4f92
d87ecfa19ecdc6442ab39b9331a190776ba4972b55c9af6038f7cd314bb91f15
Analyzer Verdict Alert fortinet Phishing
GET /m/ae/ewh/628b8616e0202_v_p.webp HTTP/1.1
Host: teleline.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://teleline.site/m/ae/ewh/628b8612e4470_v.css
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 05:11:56 GMT
Server: Apache
Last-Modified: Tue, 24 Jan 2023 15:24:18 GMT
ETag: "dc0-5f3041c02dac8"
Accept-Ranges: bytes
Content-Length: 3520
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
teleline.site/m/ae/ewh/628b861217b04_v.js
79.98.29.29404 Not Found 196 B URL HTTP/1.1 teleline.site/m/ae/ewh/628b861217b04_v.js
IP 79.98.29.29:0
ASN #212531 UAB Interneto vizija
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
Analyzer Verdict Alert fortinet Phishing
GET /m/ae/ewh/628b861217b04_v.js HTTP/1.1
Host: teleline.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://teleline.site/m/ae/ewh/?key=eyJ0aW1lc3RhbXAiOiIxNjc0ODgyNjk2IiwiaGFzaCI6IjBmNTVjNjRjNDgwZDA5M2I2YWU1ODkxOTc4M2JkM2YwYjQyYmEwYWQifQ==&ccc=US&ppp=PropellerAds%20ARNAS&tdom=www.mediacdnc.com&bemobdata=c=c613ece0-b55e-46f0-8519-246d92c56123..l=7962dcc5-a702-4dc0-be3b-981601aa9c8c..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 05:11:56 GMT
Server: Apache
Content-Length: 196
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
teleline.site/m/ae/ewh/money_p.webp
79.98.29.29200 OK 37 kB URL HTTP/1.1 teleline.site/m/ae/ewh/money_p.webp
IP 79.98.29.29:0
ASN #212531 UAB Interneto vizija
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 580x243, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2bc58af0572317d771b63fe0393f81ba
cc88158940b138d3b50282ca0c298af2f79addcf
081d60523c22c09826ebee0b1ff11b3c2abc432cd33816ef5fdcabcd2ac5e6b8
Analyzer Verdict Alert fortinet Phishing
GET /m/ae/ewh/money_p.webp HTTP/1.1
Host: teleline.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://teleline.site/m/ae/ewh/?key=eyJ0aW1lc3RhbXAiOiIxNjc0ODgyNjk2IiwiaGFzaCI6IjBmNTVjNjRjNDgwZDA5M2I2YWU1ODkxOTc4M2JkM2YwYjQyYmEwYWQifQ==&ccc=US&ppp=PropellerAds%20ARNAS&tdom=www.mediacdnc.com&bemobdata=c=c613ece0-b55e-46f0-8519-246d92c56123..l=7962dcc5-a702-4dc0-be3b-981601aa9c8c..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 05:11:56 GMT
Server: Apache
Last-Modified: Tue, 24 Jan 2023 15:24:19 GMT
ETag: "8fe0-5f3041c0520d0"
Accept-Ranges: bytes
Content-Length: 36832
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
teleline.site/favicon.ico
79.98.29.29404 Not Found 196 B URL HTTP/1.1 teleline.site/favicon.ico
IP 79.98.29.29:0
ASN #212531 UAB Interneto vizija
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
GET /favicon.ico HTTP/1.1
Host: teleline.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://teleline.site/m/ae/ewh/?key=eyJ0aW1lc3RhbXAiOiIxNjc0ODgyNjk2IiwiaGFzaCI6IjBmNTVjNjRjNDgwZDA5M2I2YWU1ODkxOTc4M2JkM2YwYjQyYmEwYWQifQ==&ccc=US&ppp=PropellerAds%20ARNAS&tdom=www.mediacdnc.com&bemobdata=c=c613ece0-b55e-46f0-8519-246d92c56123..l=7962dcc5-a702-4dc0-be3b-981601aa9c8c..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 05:11:56 GMT
Server: Apache
Content-Length: 196
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
getontrack.site/matomo/matomo.js
193.46.84.144200 OK 21 kB URL HTTP/1.1 getontrack.site/matomo/matomo.js
IP 193.46.84.144:0
File type ASCII text, with very long lines (1601)
Hash 240e5bd76d0b238afcd637e9adce055d
8286fe4a6fb4c8e2b86245e4f4eb7fc7f47cfb03
60753bebac30e25430088785ad818c7c8739080fe2aa38bf4f2547d99d88acbe
GET /matomo/matomo.js HTTP/1.1
Host: getontrack.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://teleline.site/
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 05:11:57 GMT
Server: Apache/2
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 16 Jan 2023 13:12:47 GMT
ETag: "10132-5f26156e2b1c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 21441
Keep-Alive: timeout=2, max=100
Content-Type: application/javascript
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 28 Jan 2023 04:41:40 GMT
age: 1817
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
getontrack.site/matomo/matomo.php?action_name=(1)Reward%20Available!&idsite=2&rec=1&r=490219&h=5&m=11&s=58&url=http%3A%2F%2Fteleline.site%2Fm%2Fae%2Fewh%2F%3Fkey%3DeyJ0aW1lc3RhbXAiOiIxNjc0ODgyNjk2IiwiaGFzaCI6IjBmNTVjNjRjNDgwZDA5M2I2YWU1ODkxOTc4M2JkM2YwYjQyYmEwYWQifQ%3D%3D%26ccc%3DUS%26ppp%3DPropellerAds%20ARNAS%26tdom%3Dwww.mediacdnc.com%26bemobdata%3Dc%3Dc613ece0-b55e-46f0-8519-246d92c56123..l%3D7962dcc5-a702-4dc0-be3b-981601aa9c8c..a%3D0..b%3D0..r%3Dwww.mediacdnc.com%23&_id=82e4720226c5fcfd&_idn=1&send_image=0&_refts=0&cookie=1&res=1280x1024&pv_id=xFNIDj&pf_net=96&pf_srv=38&pf_tfr=1&pf_dm1=295&uadata=%7B%7D
193.46.84.144204 No Response 0 B URL HTTP/1.1 getontrack.site/matomo/matomo.php?action_name=(1)Reward%20Available!&idsite=2&rec=1&r=490219&h=5&m=11&s=58&url=http%3A%2F%2Fteleline.site%2Fm%2Fae%2Fewh%2F%3Fkey%3DeyJ0aW1lc3RhbXAiOiIxNjc0ODgyNjk2IiwiaGFzaCI6IjBmNTVjNjRjNDgwZDA5M2I2YWU1ODkxOTc4M2JkM2YwYjQyYmEwYWQifQ%3D%3D%26ccc%3DUS%26ppp%3DPropellerAds%20ARNAS%26tdom%3Dwww.mediacdnc.com%26bemobdata%3Dc%3Dc613ece0-b55e-46f0-8519-246d92c56123..l%3D7962dcc5-a702-4dc0-be3b-981601aa9c8c..a%3D0..b%3D0..r%3Dwww.mediacdnc.com%23&_id=82e4720226c5fcfd&_idn=1&send_image=0&_refts=0&cookie=1&res=1280x1024&pv_id=xFNIDj&pf_net=96&pf_srv=38&pf_tfr=1&pf_dm1=295&uadata=%7B%7D
IP 193.46.84.144:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /matomo/matomo.php?action_name=(1)Reward%20Available!&idsite=2&rec=1&r=490219&h=5&m=11&s=58&url=http%3A%2F%2Fteleline.site%2Fm%2Fae%2Fewh%2F%3Fkey%3DeyJ0aW1lc3RhbXAiOiIxNjc0ODgyNjk2IiwiaGFzaCI6IjBmNTVjNjRjNDgwZDA5M2I2YWU1ODkxOTc4M2JkM2YwYjQyYmEwYWQifQ%3D%3D%26ccc%3DUS%26ppp%3DPropellerAds%20ARNAS%26tdom%3Dwww.mediacdnc.com%26bemobdata%3Dc%3Dc613ece0-b55e-46f0-8519-246d92c56123..l%3D7962dcc5-a702-4dc0-be3b-981601aa9c8c..a%3D0..b%3D0..r%3Dwww.mediacdnc.com%23&_id=82e4720226c5fcfd&_idn=1&send_image=0&_refts=0&cookie=1&res=1280x1024&pv_id=xFNIDj&pf_net=96&pf_srv=38&pf_tfr=1&pf_dm1=295&uadata=%7B%7D HTTP/1.1
Host: getontrack.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=utf-8
Content-Length: 0
Origin: http://teleline.site
Connection: keep-alive
Referer: http://teleline.site/
HTTP/1.1 204 No Response
Date: Sat, 28 Jan 2023 05:11:57 GMT
Server: Apache/2
X-Powered-By: PHP/8.0.25
Vary: Origin,User-Agent
Access-Control-Allow-Origin: http://teleline.site
Access-Control-Allow-Credentials: true
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4040
Expires: Sat, 28 Jan 2023 06:19:17 GMT
Date: Sat, 28 Jan 2023 05:11:57 GMT
Connection: keep-alive
push.services.mozilla.com/
54.186.169.128101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.186.169.128:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: s9zUM3phURfoU/53aXSf6Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: pPlTwIlw0ssUiBU5MfTNFsBzni4=
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8759
Expires: Sat, 28 Jan 2023 07:37:57 GMT
Date: Sat, 28 Jan 2023 05:11:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8759
Expires: Sat, 28 Jan 2023 07:37:57 GMT
Date: Sat, 28 Jan 2023 05:11:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8759
Expires: Sat, 28 Jan 2023 07:37:57 GMT
Date: Sat, 28 Jan 2023 05:11:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8759
Expires: Sat, 28 Jan 2023 07:37:57 GMT
Date: Sat, 28 Jan 2023 05:11:58 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7f9ffe5-495a-4f90-a1f3-01e6bafe9287.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7f9ffe5-495a-4f90-a1f3-01e6bafe9287.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8744995437fb5a3fa77a14c2e72ac6f
f8ad682561dd204e1193bd6ea1fb7e8eccd51610
76445eced51bce8532ffd0ef6131b5c6d8f38a15267bcad99767795f9191efd9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7f9ffe5-495a-4f90-a1f3-01e6bafe9287.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10213
x-amzn-requestid: f95cebd1-4305-4dda-b750-4801a441a6a5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_vkFR5oAMFQQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44663-59ba391e439557731d323660;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:47:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1NYK_m9n3VxzpG0TVuBCrI8hKMNfAfWYC2Jbjr5JpHd4XlzYaQi0Pw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:49:10 GMT
age: 26568
etag: "f8ad682561dd204e1193bd6ea1fb7e8eccd51610"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:46 GMT
age: 26112
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 131eb343c5abd61939457d69bd371348
ffb2035cf64fc83f01db5c6f26ffa264b6aac95b
8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7538
x-amzn-requestid: 113924cc-a196-4dbd-91d9-68c213265afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fobF-ZoAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61302-6b24941a642b22cf21e47dc0;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2P09wOtKPDHjxxAuzcLFMQJwmGN1zNJcH9LA6IJpeaGiaPVRF4y-TA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:14:23 GMT
age: 25055
etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b9e50f-b1f6-4665-acd6-9532ce741c2f.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b9e50f-b1f6-4665-acd6-9532ce741c2f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d04b173ecc22c619998bda87a8f9ce70
9e3c3ac1b5a8a5fcee6d1b0db1a61b71948d5fe5
c30fbd2807e36b637bd1382a955c34abb4fe88b99173692530d288fff0986896
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b9e50f-b1f6-4665-acd6-9532ce741c2f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8739
x-amzn-requestid: 591edd56-d422-459f-8934-532106be7e90
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_quGvkoAMFWQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44644-5bda946b19b8abc54d324bab;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:46:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: yAWADPixWRJsEV9OqvunQGhVHlobpluc-VwHlhq1psEwNh_ignw-dQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:03:05 GMT
etag: "9e3c3ac1b5a8a5fcee6d1b0db1a61b71948d5fe5"
content-type: image/jpeg
age: 25733
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b70d7a9-8bf2-490f-9646-c64694e42e42.jpeg
34.120.237.76200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b70d7a9-8bf2-490f-9646-c64694e42e42.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 97118e74a8f60620950e42a11c11d71b
d144bbb82392a6103810ac9baa5346ddbefb5c16
2ce0c9696cf9842243186e86bae28c22896a9f51837f4961b6c7e3cfdfb24bd0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b70d7a9-8bf2-490f-9646-c64694e42e42.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3774
x-amzn-requestid: deae2f1e-baec-408c-92a7-4859d4afed47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-EgFAgoAMFXRQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443b6-32a2ff1a369e7b5f41ecbabd;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UYb0x8jVdY5lPTL7paxqk8J2gDYs4Hn27fAtzxJ3CapnyWOHulqy4g==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:49:09 GMT
age: 26569
etag: "d144bbb82392a6103810ac9baa5346ddbefb5c16"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8b9b454-0728-4fe3-a661-33c8205e00c2.webp
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8b9b454-0728-4fe3-a661-33c8205e00c2.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3516e6446944e35557bee1c66fcb46ba
a2930481e12b2faf871267a0ee1166ee05b1a168
c19bf7db6637169a0def1e7ba1f1cc675cec38f190a1d41a4b970f2f31a75549
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8b9b454-0728-4fe3-a661-33c8205e00c2.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9758
x-amzn-requestid: e80bf4a2-5fb6-4b21-8570-9d8bf72bc65f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_T5EgAoAMFSsw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445b2-106eca49521af490104019bb;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:44:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: wmGlLHXvIs6iskEqfrqN09vwMpRlMKF-mukahEyeYRWC8WbnOmk4Hw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:37 GMT
etag: "a2930481e12b2faf871267a0ee1166ee05b1a168"
content-type: image/jpeg
age: 26121
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bigrourg.net/pfe/current/micro.tag.min.js?z=5225840&sw=/sw-check-permissions-1dd64.js
139.45.197.251200 OK 14 kB URL HTTP/1.1 bigrourg.net/pfe/current/micro.tag.min.js?z=5225840&sw=/sw-check-permissions-1dd64.js
IP 139.45.197.251:0
File type C source, ASCII text, with very long lines (41091), with no line terminators
Hash 002d32199f9116c7429c84ef9d7849bb
328e4f6b8bdfb247e311b58cddab5eaa21d5b4e3
8b9b2a4d4da7ff539e51c4bb298f0587b0c14ed4158294bfa003cb8b6893d1dc
GET /pfe/current/micro.tag.min.js?z=5225840&sw=/sw-check-permissions-1dd64.js HTTP/1.1
Host: bigrourg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://teleline.site/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 28 Jan 2023 05:11:59 GMT
Content-Type: application/javascript
Last-Modified: Fri, 27 Jan 2023 11:03:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63d3af98-a083"
Access-Control-Allow-Credentials: true
Cache-Control: no-cache
Pragma: no-cache
Content-Encoding: gzip
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2cf5e4ecdecd00886905251ce430d9ad
0d4f2d89d6ad21074b03b123135ad2c7b8547532
e93cedbb4850413eeee4cad0e918d934ca14f55130cb46255213ac560c3d1a00
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E93CEDBB4850413EEEE4CAD0E918D934CA14F55130CB46255213AC560C3D1A00"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 28 Jan 2023 11:11:59 GMT
Date: Sat, 28 Jan 2023 05:11:59 GMT
Connection: keep-alive
bigrourg.net/zone?&pub=0&zone_id=5225840&is_mobile=false&domain=teleline.site&var=&ymid=&var_3=&dsig=&action=prerequest
139.45.197.251200 OK 0 B URL HTTP/2 bigrourg.net/zone?&pub=0&zone_id=5225840&is_mobile=false&domain=teleline.site&var=&ymid=&var_3=&dsig=&action=prerequest
IP 139.45.197.251:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /zone?&pub=0&zone_id=5225840&is_mobile=false&domain=teleline.site&var=&ymid=&var_3=&dsig=&action=prerequest HTTP/1.1
Host: bigrourg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://teleline.site
Connection: keep-alive
Referer: http://teleline.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 05:11:59 GMT
content-length: 0
x-trace-id: 48244308ef20d491988bacf4effeaac5
access-control-allow-origin: http://teleline.site
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2