darco.pk/scan_copy.exe
199.167.148.122200 OK 7.2 kB IP 199.167.148.122:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash a4ae2b748d61c5a271528889286c15cc
6520d892023097e5427bf597b195d124d2010d16
e4a297a86af21b1be5c61915c3b02cfadd0fcaa01d8cc1af2536220d7199d89a
Analyzer Verdict Alert quad9 Sinkholed
GET /scan_copy.exe HTTP/1.1
Host: darco.pk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 09:55:35 GMT
Server: Apache
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2857be6f18459c7a4a7f00f6cd6076f1
570609086d72a9be57cde7bfefd25663c1035fba
bd8abb8f420d1e31462fca1d6a7caadf1e2bba6fc7db05684b5811e00e84107f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD8ABB8F420D1E31462FCA1D6A7CAADF1E2BBA6FC7DB05684B5811E00E84107F"
Last-Modified: Fri, 17 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7641
Expires: Sun, 19 Mar 2023 12:02:56 GMT
Date: Sun, 19 Mar 2023 09:55:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 443a700f85619f4fd8a548421c5c23e2
a58764a07feafb2bb4b340c020b5104c55b35195
0bc80613f3d493ea081bf5672ab76f6f33a1dcc0710fe1431de83c46d7e8d31d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0BC80613F3D493EA081BF5672AB76F6F33A1DCC0710FE1431DE83C46D7E8D31D"
Last-Modified: Fri, 17 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3450
Expires: Sun, 19 Mar 2023 10:53:05 GMT
Date: Sun, 19 Mar 2023 09:55:35 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 19 Mar 2023 09:14:45 GMT
content-type: application/json
age: 2450
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 12cdbcb1b0785dc0423386448ac68c9c
08cff6b76fd708f0cef3c5bdb8fc72570c4536bd
bb7622a85d32cbff40abd2995055e03dbac05dd841b9a84d9023a5510d89e534
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BB7622A85D32CBFF40ABD2995055E03DBAC05DD841B9A84D9023A5510D89E534"
Last-Modified: Fri, 17 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16773
Expires: Sun, 19 Mar 2023 14:35:08 GMT
Date: Sun, 19 Mar 2023 09:55:35 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 9wbEzs45OdD+TBYcFUBNFgGxqeZQMiZUQoorKAqShMB3g2osyZqdV2KByarFX4at2YkBpPU5xqA=
x-amz-request-id: H3XZRG2PYDCHMP4F
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 19 Mar 2023 08:58:13 GMT
age: 3443
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 19 Mar 2023 09:55:35 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:400,100,900
142.250.74.106200 OK 667 B URL HTTP/1.1 fonts.googleapis.com/css?family=Roboto:400,100,900
IP 142.250.74.106:0
Hash 60c07e586b37b49db19fe54bc8f8a516
3d79e8d2561617cd70963d73342c9456ee5ae41a
1454deda734cf6ea652a517c42bfe19487ac4af13511d595f1426469e26c70eb
GET /css?family=Roboto:400,100,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://darco.pk/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 19 Mar 2023 09:55:36 GMT
Date: Sun, 19 Mar 2023 09:55:36 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
darco.pk/css/normalize.css
199.167.148.122200 OK 7.8 kB URL HTTP/1.1 darco.pk/css/normalize.css
IP 199.167.148.122:0
Hash c9bf05c838588f5589811d1511e24594
afcc839160d15e3f236677e1f6dd354de9726d31
0d590aed606018e4d8bb0127c3b0656f9f902b9c0a247f724956568352f0f3ee
Analyzer Verdict Alert quad9 Sinkholed
GET /css/normalize.css HTTP/1.1
Host: darco.pk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://darco.pk/scan_copy.exe
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 09:55:35 GMT
Server: Apache
Last-Modified: Sat, 11 Apr 2020 05:17:20 GMT
Accept-Ranges: bytes
Content-Length: 7782
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
darco.pk/css/loader.css
199.167.148.122200 OK 1.1 kB IP 199.167.148.122:0
Hash ac3715575c8b5aec20e1c3b496a83445
21bc297832926cde33954ba5d1abad80370ecd68
a922c8538b53dac7030e286044ce5522787ceb997821e797d3f081c1f713930d
Analyzer Verdict Alert quad9 Sinkholed
GET /css/loader.css HTTP/1.1
Host: darco.pk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://darco.pk/scan_copy.exe
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 09:55:35 GMT
Server: Apache
Last-Modified: Sat, 11 Apr 2020 05:17:20 GMT
Accept-Ranges: bytes
Content-Length: 1108
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
darco.pk/js/jquery.countdown.min.js
199.167.148.122200 OK 3.4 kB URL HTTP/1.1 darco.pk/js/jquery.countdown.min.js
IP 199.167.148.122:0
File type ASCII text, with very long lines (3363), with no line terminators
Hash 489d6714d27ac3a736826b5dfdf91441
5ee114adcbb901a48cb98ecb2705e4886aa2e72a
d24323acfeba5534857b64e51edeba50a2204da2b0da31b7ea5f02563e5fa5c8
Analyzer Verdict Alert quad9 Sinkholed
GET /js/jquery.countdown.min.js HTTP/1.1
Host: darco.pk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://darco.pk/scan_copy.exe
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 09:55:35 GMT
Server: Apache
Last-Modified: Sat, 11 Apr 2020 05:17:20 GMT
Accept-Ranges: bytes
Content-Length: 3363
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
darco.pk/js/main.js
199.167.148.122200 OK 1.7 kB IP 199.167.148.122:0
Hash abfb09fc12f71df55994389d11ee380c
f04c0c34bc3f502b840a5716cd468ac1fc4077dc
4ae01529c9c1b17223449f8fe59268acfddd5efa92472ba677f640b58c718d58
Analyzer Verdict Alert quad9 Sinkholed
GET /js/main.js HTTP/1.1
Host: darco.pk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://darco.pk/scan_copy.exe
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 09:55:35 GMT
Server: Apache
Last-Modified: Fri, 01 Oct 2021 12:43:20 GMT
Accept-Ranges: bytes
Content-Length: 1737
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
darco.pk/css/font-awesome.min.css
199.167.148.122200 OK 24 kB URL HTTP/1.1 darco.pk/css/font-awesome.min.css
IP 199.167.148.122:0
File type ASCII text, with very long lines (23577)
Hash 04425bbdc6243fc6e54bf8984fe50330
8c15c6bd82c71e9ef1bb11cf24e502fe07518ac5
541ac58217a8ade1a5e292a65a0661dc9db7a49ae13654943817a4fbc6761afd
Analyzer Verdict Alert quad9 Sinkholed
GET /css/font-awesome.min.css HTTP/1.1
Host: darco.pk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://darco.pk/scan_copy.exe
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 09:55:35 GMT
Server: Apache
Last-Modified: Sat, 11 Apr 2020 05:17:20 GMT
Accept-Ranges: bytes
Content-Length: 23739
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
darco.pk/css/style.css
199.167.148.122200 OK 17 kB IP 199.167.148.122:0
Hash a04aadcb19b7b41bd554334178742acb
b1a9de731dcbac846f44ef7cce766fb6d6d09fb3
f8a5b640d0676280a9d597d8a3f87d37894cd6147f5ec8f4a65c5182c65844a9
Analyzer Verdict Alert quad9 Sinkholed
GET /css/style.css HTTP/1.1
Host: darco.pk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://darco.pk/scan_copy.exe
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 09:55:35 GMT
Server: Apache
Last-Modified: Sat, 11 Apr 2020 05:17:20 GMT
Accept-Ranges: bytes
Content-Length: 17441
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Last-Modified, Content-Length, Pragma, Expires, ETag, Backoff, Alert, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 19 Mar 2023 09:14:32 GMT
age: 2464
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
darco.pk/js/plugins.js
199.167.148.122200 OK 18 kB IP 199.167.148.122:0
Hash 79961fc78eb697076361ed4ad50673cd
03d1f2d0bb2f60cafe1081866236bc3435b18463
3629131867eed4dff95135d08091523bce5c968bfccdcfb5bddab7b36aa03710
Analyzer Verdict Alert quad9 Sinkholed
GET /js/plugins.js HTTP/1.1
Host: darco.pk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://darco.pk/scan_copy.exe
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 09:55:36 GMT
Server: Apache
Last-Modified: Sat, 11 Apr 2020 05:17:20 GMT
Accept-Ranges: bytes
Content-Length: 17534
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0a4b141e90b0fb22cf6d10a6a4fd360d
37b081be1a69edb97a7c562b71474f4d7405d94e
5db17bb0a40658845e03d8237a69458a0576d955006ee224930b0310179af9af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5DB17BB0A40658845E03D8237A69458A0576D955006EE224930B0310179AF9AF"
Last-Modified: Fri, 17 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8556
Expires: Sun, 19 Mar 2023 12:18:12 GMT
Date: Sun, 19 Mar 2023 09:55:36 GMT
Connection: keep-alive
darco.pk/js/jquery.js
199.167.148.122200 OK 295 kB IP 199.167.148.122:0
Size 295 kB (295289 bytes)
Hash 90949fe3c2c71060590bbc8f1df1c390
3f9ef5f2a600a72e6a7ab7becbf8bdcf723a28af
8ef4cdedb9f8346b56439e92e6208b65c08b9e16f0e346d754dc25ddd2f48753
Analyzer Verdict Alert quad9 Sinkholed
GET /js/jquery.js HTTP/1.1
Host: darco.pk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://darco.pk/scan_copy.exe
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 09:55:35 GMT
Server: Apache
Last-Modified: Sat, 11 Apr 2020 05:17:20 GMT
Accept-Ranges: bytes
Content-Length: 295289
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Hash b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://darco.pk
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15752
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 15 Mar 2023 14:45:56 GMT
Expires: Thu, 14 Mar 2024 14:45:56 GMT
Cache-Control: public, max-age=31536000
Age: 328180
Last-Modified: Wed, 11 May 2022 19:24:56 GMT
Content-Type: font/woff2
darco.pk/images/flakes/depth3/flakes2.png
199.167.148.122200 OK 16 kB URL HTTP/1.1 darco.pk/images/flakes/depth3/flakes2.png
IP 199.167.148.122:0
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 46f253b8c46c1465a42a0ca2672e730d
562d9dd246510712017f9427bb8f40c45f40a089
a16ab567d2e47835d62e6d2546aa4c4b74191d0bacb3485e6b600c88170b13fa
Analyzer Verdict Alert quad9 Sinkholed
GET /images/flakes/depth3/flakes2.png HTTP/1.1
Host: darco.pk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://darco.pk/scan_copy.exe
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 09:55:36 GMT
Server: Apache
Last-Modified: Sat, 11 Apr 2020 05:17:20 GMT
Accept-Ranges: bytes
Content-Length: 15548
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
darco.pk/images/flakes/depth1/flakes2.png
199.167.148.122200 OK 16 kB URL HTTP/1.1 darco.pk/images/flakes/depth1/flakes2.png
IP 199.167.148.122:0
File type PNG image data, 47 x 47, 8-bit/color RGBA, non-interlaced\012- data
Hash 33d2311003f4750ca879482e14b9549a
6f2c27c24fcf6fa19281c424e02c79f19dca1d86
f59215e0791fc00415d1799c44489cb4a0fb0f14e3f711b46a7e1325830d83b9
Analyzer Verdict Alert quad9 Sinkholed
GET /images/flakes/depth1/flakes2.png HTTP/1.1
Host: darco.pk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://darco.pk/scan_copy.exe
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 09:55:36 GMT
Server: Apache
Last-Modified: Sat, 11 Apr 2020 05:17:20 GMT
Accept-Ranges: bytes
Content-Length: 15506
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
darco.pk/images/flakes/depth1/flakes1.png
199.167.148.122200 OK 16 kB URL HTTP/1.1 darco.pk/images/flakes/depth1/flakes1.png
IP 199.167.148.122:0
File type PNG image data, 55 x 55, 8-bit/color RGBA, non-interlaced\012- data
Hash 67dd126dc6f4375f980505cf2acd81d5
3ad4c7b6dd25fdd625d03aa286aca9762ed59e68
b40e31f6c51718167a893fcf83ee86a9d074080c16d9b129855b86715621957f
Analyzer Verdict Alert quad9 Sinkholed
GET /images/flakes/depth1/flakes1.png HTTP/1.1
Host: darco.pk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://darco.pk/scan_copy.exe
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 09:55:36 GMT
Server: Apache
Last-Modified: Sat, 11 Apr 2020 05:17:20 GMT
Accept-Ranges: bytes
Content-Length: 15662
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
darco.pk/images/flakes/depth3/flakes3.png
199.167.148.122200 OK 16 kB URL HTTP/1.1 darco.pk/images/flakes/depth3/flakes3.png
IP 199.167.148.122:0
File type PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash a26d706e8a91fb2ad0ff7b816ff91390
8eb0a1abf42a4d6bff0d43a7d62d46751b93c9ef
3b296d23476d4af9a3302e28a829601fabdfa671ae168778fb2b0b2e3a24ed72
Analyzer Verdict Alert quad9 Sinkholed
GET /images/flakes/depth3/flakes3.png HTTP/1.1
Host: darco.pk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://darco.pk/scan_copy.exe
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 09:55:36 GMT
Server: Apache
Last-Modified: Sat, 11 Apr 2020 05:17:20 GMT
Accept-Ranges: bytes
Content-Length: 15661
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://darco.pk
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15744
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 16 Mar 2023 21:21:08 GMT
Expires: Fri, 15 Mar 2024 21:21:08 GMT
Cache-Control: public, max-age=31536000
Age: 218068
Last-Modified: Wed, 11 May 2022 19:24:48 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1MmgVxIIzI.woff2
216.58.207.227200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1MmgVxIIzI.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15764, version 1.0\012- data
Hash 603b8950590bf833546eee7cbc79944a
ebbde06eb829868c5f689afe2d48377608be1e7b
0f303f31706d39866cced9dcc17b61fb8423674278d7f6051d66b3a79ffbca18
GET /s/roboto/v30/KFOkCnqEu92Fr1MmgVxIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://darco.pk
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15764
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 17 Mar 2023 03:13:13 GMT
Expires: Sat, 16 Mar 2024 03:13:13 GMT
Cache-Control: public, max-age=31536000
Age: 196943
Last-Modified: Wed, 11 May 2022 19:24:35 GMT
Content-Type: font/woff2
darco.pk/images/flakes/depth1/flakes3.png
199.167.148.122200 OK 16 kB URL HTTP/1.1 darco.pk/images/flakes/depth1/flakes3.png
IP 199.167.148.122:0
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash ae3ab2eaf0e67a5c776533e0867f4993
5d7d5d7e5a547ae4279f893d0c3c1ea095cdf352
13d4965ec5200d4bc3e3419b8e8127a6790af5036795311f759242fa68c5f86f
Analyzer Verdict Alert quad9 Sinkholed
GET /images/flakes/depth1/flakes3.png HTTP/1.1
Host: darco.pk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://darco.pk/scan_copy.exe
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 09:55:36 GMT
Server: Apache
Last-Modified: Sat, 11 Apr 2020 05:17:20 GMT
Accept-Ranges: bytes
Content-Length: 15552
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
darco.pk/images/flakes/depth2/flakes1.png
199.167.148.122200 OK 135 kB URL HTTP/1.1 darco.pk/images/flakes/depth2/flakes1.png
IP 199.167.148.122:0
File type PNG image data, 1600 x 850, 8-bit/color RGBA, non-interlaced\012- data
Size 135 kB (134593 bytes)
Hash a8937c27624d126b46abd07da8d55a80
1a13d87f746d5a5ded09c8805b8d50029c409e3f
36cfa2197b771cd81b30d888d8901c607d0e4f9078c654086eb09e8a6ac68d1d
Analyzer Verdict Alert quad9 Sinkholed
GET /images/flakes/depth2/flakes1.png HTTP/1.1
Host: darco.pk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://darco.pk/scan_copy.exe
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 09:55:36 GMT
Server: Apache
Last-Modified: Sat, 11 Apr 2020 05:17:20 GMT
Accept-Ranges: bytes
Content-Length: 134593
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
push.services.mozilla.com/
34.218.164.174101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.218.164.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ZDaTa08b/AJefnQEAD8JBQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: WSnEC5czAiL8R5W5pzkoXjidwCU=
darco.pk/images/flakes/depth3/flakes1.png
199.167.148.122200 OK 16 kB URL HTTP/1.1 darco.pk/images/flakes/depth3/flakes1.png
IP 199.167.148.122:0
File type PNG image data, 45 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash 9b324b99eda0c9a93178b97396d94240
fbe0342152c73897187cbc756222a1af677a5319
a94f79d329769744d95ba6c401aa412d0c79addb1497a02056715bc725c39234
Analyzer Verdict Alert quad9 Sinkholed
GET /images/flakes/depth3/flakes1.png HTTP/1.1
Host: darco.pk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://darco.pk/scan_copy.exe
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 09:55:36 GMT
Server: Apache
Last-Modified: Sat, 11 Apr 2020 05:17:20 GMT
Accept-Ranges: bytes
Content-Length: 15475
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
darco.pk/fonts/fontawesome-webfont.woff2?v=4.3.0
199.167.148.122200 OK 57 kB URL HTTP/1.1 darco.pk/fonts/fontawesome-webfont.woff2?v=4.3.0
IP 199.167.148.122:0
File type Web Open Font Format (Version 2), TrueType, length 56780, version 4.197\012- data
Hash 97493d3f11c0a3bd5cbd959f5d19b699
1075231650f579955905bb2f6527148a8e2b4b16
aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c
Analyzer Verdict Alert quad9 Sinkholed
GET /fonts/fontawesome-webfont.woff2?v=4.3.0 HTTP/1.1
Host: darco.pk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://darco.pk/css/font-awesome.min.css
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 09:55:36 GMT
Server: Apache
Last-Modified: Sat, 11 Apr 2020 05:17:20 GMT
Accept-Ranges: bytes
Content-Length: 56780
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: font/woff2
darco.pk/images/sphere.png
199.167.148.122200 OK 35 kB URL HTTP/1.1 darco.pk/images/sphere.png
IP 199.167.148.122:0
File type PNG image data, 344 x 332, 8-bit/color RGBA, non-interlaced\012- data
Hash 247d3fb2ec3ff768f388b5a1431bbb22
8e86333f4373b48f88fb2771188e250e00cf5551
97e5101011445512e8ae383f3d9927e3bc9624dd86118729eeacfd47b8471313
Analyzer Verdict Alert quad9 Sinkholed
GET /images/sphere.png HTTP/1.1
Host: darco.pk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://darco.pk/scan_copy.exe
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 09:55:36 GMT
Server: Apache
Last-Modified: Sat, 11 Apr 2020 05:17:20 GMT
Accept-Ranges: bytes
Content-Length: 34786
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
darco.pk/images/flakes/depth3/flakes4.png
199.167.148.122200 OK 16 kB URL HTTP/1.1 darco.pk/images/flakes/depth3/flakes4.png
IP 199.167.148.122:0
File type PNG image data, 45 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash e117c120e504c1e38ffd5f48bb2a6479
53f19c081b0e1e923917dc0efabfdece6e2eb73a
94b4fb902a179a7b0f57913c5d51f2fbb370386c4f88508e844f4864f4f46217
Analyzer Verdict Alert quad9 Sinkholed
GET /images/flakes/depth3/flakes4.png HTTP/1.1
Host: darco.pk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://darco.pk/scan_copy.exe
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 09:55:36 GMT
Server: Apache
Last-Modified: Sat, 11 Apr 2020 05:17:20 GMT
Accept-Ranges: bytes
Content-Length: 15482
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
darco.pk/images/flakes/depth4/flakes.png
199.167.148.122200 OK 118 kB URL HTTP/1.1 darco.pk/images/flakes/depth4/flakes.png
IP 199.167.148.122:0
File type PNG image data, 1600 x 850, 8-bit/color RGBA, non-interlaced\012- data
Size 118 kB (117547 bytes)
Hash 7c63a071b7e089baa8cb044340908721
235a843133fcfa5fab9c9b9740c34a122e4ee834
db209d3fa213e2c9a3ce43d3b5156b03e86271cdbbf4d52c66f3b8a4ea526ffe
Analyzer Verdict Alert quad9 Sinkholed
GET /images/flakes/depth4/flakes.png HTTP/1.1
Host: darco.pk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://darco.pk/scan_copy.exe
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 09:55:36 GMT
Server: Apache
Last-Modified: Sat, 11 Apr 2020 05:17:20 GMT
Accept-Ranges: bytes
Content-Length: 117547
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
darco.pk/images/flakes/depth1/flakes4.png
199.167.148.122200 OK 16 kB URL HTTP/1.1 darco.pk/images/flakes/depth1/flakes4.png
IP 199.167.148.122:0
File type PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 41f5dd77c14321e241a32e8021a3d7f6
0b08f071d581b196c71d0d82ccca69462806f592
45c77c2fd373f104027d00657545540b967729ab8b0b8ecb9d2452e2ea957c87
Analyzer Verdict Alert quad9 Sinkholed
GET /images/flakes/depth1/flakes4.png HTTP/1.1
Host: darco.pk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://darco.pk/scan_copy.exe
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 09:55:36 GMT
Server: Apache
Last-Modified: Sat, 11 Apr 2020 05:17:20 GMT
Accept-Ranges: bytes
Content-Length: 16320
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
darco.pk/images/flakes/depth2/flakes2.png
199.167.148.122200 OK 15 kB URL HTTP/1.1 darco.pk/images/flakes/depth2/flakes2.png
IP 199.167.148.122:0
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 053c731bb96b3577a47b42a30ba12225
30f4a09cba0ca885612c01a0fc2c6d58903939a7
b8aca4865c8fe373da6604e265e8b12cb94d7b15b2ce157bcb4a68aa668317b3
Analyzer Verdict Alert quad9 Sinkholed
GET /images/flakes/depth2/flakes2.png HTTP/1.1
Host: darco.pk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://darco.pk/scan_copy.exe
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 09:55:36 GMT
Server: Apache
Last-Modified: Sat, 11 Apr 2020 05:17:20 GMT
Accept-Ranges: bytes
Content-Length: 15424
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
darco.pk/images/flakes/depth5/flakes.png
199.167.148.122200 OK 135 kB URL HTTP/1.1 darco.pk/images/flakes/depth5/flakes.png
IP 199.167.148.122:0
File type PNG image data, 1600 x 850, 8-bit/color RGBA, non-interlaced\012- data
Size 135 kB (134593 bytes)
Hash a8937c27624d126b46abd07da8d55a80
1a13d87f746d5a5ded09c8805b8d50029c409e3f
36cfa2197b771cd81b30d888d8901c607d0e4f9078c654086eb09e8a6ac68d1d
Analyzer Verdict Alert quad9 Sinkholed
GET /images/flakes/depth5/flakes.png HTTP/1.1
Host: darco.pk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://darco.pk/scan_copy.exe
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 09:55:36 GMT
Server: Apache
Last-Modified: Sat, 11 Apr 2020 05:17:20 GMT
Accept-Ranges: bytes
Content-Length: 134593
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
darco.pk/favicon.png
199.167.148.122200 OK 7.2 kB IP 199.167.148.122:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash a4ae2b748d61c5a271528889286c15cc
6520d892023097e5427bf597b195d124d2010d16
e4a297a86af21b1be5c61915c3b02cfadd0fcaa01d8cc1af2536220d7199d89a
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.png HTTP/1.1
Host: darco.pk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://darco.pk/scan_copy.exe
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 09:55:37 GMT
Server: Apache
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
darco.pk/images/background.jpg
199.167.148.122200 OK 1.2 MB URL HTTP/1.1 darco.pk/images/background.jpg
IP 199.167.148.122:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1674, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2507], progressive, precision 8, 2507x1674, components 3\012- data
Size 1.2 MB (1235497 bytes)
Hash c0d1aece1a6d6060d9edbc5e9f2fcf6e
ddba44d2d894a0913a7a89c6ea6fa91ab1b8a137
49c1dc3a9ea0830ca0387317a526ff28b2933a219e9ed24c3736a652f25414d8
Analyzer Verdict Alert quad9 Sinkholed
GET /images/background.jpg HTTP/1.1
Host: darco.pk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://darco.pk/css/style.css
HTTP/1.1 200 OK
Date: Sun, 19 Mar 2023 09:55:36 GMT
Server: Apache
Last-Modified: Sat, 11 Apr 2020 05:17:20 GMT
Accept-Ranges: bytes
Content-Length: 1235497
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15768
Expires: Sun, 19 Mar 2023 14:18:26 GMT
Date: Sun, 19 Mar 2023 09:55:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15768
Expires: Sun, 19 Mar 2023 14:18:26 GMT
Date: Sun, 19 Mar 2023 09:55:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15768
Expires: Sun, 19 Mar 2023 14:18:26 GMT
Date: Sun, 19 Mar 2023 09:55:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15768
Expires: Sun, 19 Mar 2023 14:18:26 GMT
Date: Sun, 19 Mar 2023 09:55:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15768
Expires: Sun, 19 Mar 2023 14:18:26 GMT
Date: Sun, 19 Mar 2023 09:55:38 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87cb0650-2c5d-4809-8bb9-0a6c7a2b7562.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87cb0650-2c5d-4809-8bb9-0a6c7a2b7562.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 925c6d8d9b0bd170303c785824f842f6
74127f320b41464959c3d1881aa7056a2bb7c3db
7c87a48bbff78f9f302c77508a3899709dc146ff6a095c548398e710aa6119c7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87cb0650-2c5d-4809-8bb9-0a6c7a2b7562.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10913
x-amzn-requestid: 71cd1b59-f51f-47af-aab3-523716b6b34f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Bp_4XGugIAMFtkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640d79ce-2494be625549a22d410f4aa7;Sampled=0
x-amzn-remapped-date: Sun, 12 Mar 2023 07:05:50 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: r9hbB7S9Fi4bfJuPdSnSbInXAGuk2frr-b5qftWJQgFJFDUlCibvew==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 2750b94b402c92287d764b5fa115a042.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 09:04:23 GMT
age: 3075
etag: "74127f320b41464959c3d1881aa7056a2bb7c3db"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae7f77f1-adab-464f-87e7-4a15dcd322ba.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae7f77f1-adab-464f-87e7-4a15dcd322ba.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c70e6317e3ccd8783db05f712ab8b319
ae05abedca84094ff077fdfb6b5ea0e6148a086b
9d3edfaeab32dfa522cd0eac659b93eb561b33a91149428e7a5d7ec84431bb72
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae7f77f1-adab-464f-87e7-4a15dcd322ba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6265
x-amzn-requestid: a40c18f5-e26f-48d0-982a-ebfc9fa92b9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B_wYuEa7IAMFneQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64162dd1-42b70f637dc3b2d222d98f9b;Sampled=0
x-amzn-remapped-date: Sat, 18 Mar 2023 21:32:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: UI-PcxN2YSytmygeVp4WBCSbtLH9egiAhP5vyJI7xN7iN1QAe1mqEA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 5c7981a979abd51ba7e5ca7d464fd048.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Mar 2023 21:44:34 GMT
age: 43864
etag: "ae05abedca84094ff077fdfb6b5ea0e6148a086b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F948af7b9-8b3e-4159-bdaa-f68fedcc3497.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F948af7b9-8b3e-4159-bdaa-f68fedcc3497.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 790ee76f4db86cd0cc555f6d7beada2c
fea1a6b2a38be6a09e086def71f521cc88509a0f
f7641b9e414006ee96daa82fd9d6aa1463d47c0388a9f3b289c563af76a3d2ef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F948af7b9-8b3e-4159-bdaa-f68fedcc3497.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7930
x-amzn-requestid: 276e0768-3943-40ba-9d6c-4f13ab08da51
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B_wqXFwvoAMF1zA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64162e42-6f9e6903248d187d5d4a8544;Sampled=0
x-amzn-remapped-date: Sat, 18 Mar 2023 21:33:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: ZMNiK-tkkiBb_emHsrzLhJleK98OCtNZNGO-9DMMAbHyqfPB-2kAMg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 f958a3846d80a3925f664b320dfad9c8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Mar 2023 21:48:16 GMT
age: 43642
etag: "fea1a6b2a38be6a09e086def71f521cc88509a0f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe323f22e-6800-4578-a34f-a8fa940499e0.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe323f22e-6800-4578-a34f-a8fa940499e0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6645ef8b7e2b10326cc1cb7c76f82769
cc7b05fa466c6ecd6c8a0e0d6ccc96ecbd59aced
1076fa495f0b7cc23922f64cc6a6f596de9a6f08ea7549eef785d804db0be7fc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe323f22e-6800-4578-a34f-a8fa940499e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8189
x-amzn-requestid: 3815c61d-6d05-4794-bd9a-d417d1270527
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B_wqgGsdIAMFi6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64162e42-6af86b2a21b89d38559ca754;Sampled=0
x-amzn-remapped-date: Sat, 18 Mar 2023 21:33:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: n-Dbnb07Rsh0y_T4UW0VQSyRcV96MehdMiFlhdUtcrCiqZVL5ZVJxg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 5c7981a979abd51ba7e5ca7d464fd048.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Mar 2023 22:14:54 GMT
age: 42044
etag: "cc7b05fa466c6ecd6c8a0e0d6ccc96ecbd59aced"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffb155f3-4b60-4d8c-879f-3b7bd1c5c129.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffb155f3-4b60-4d8c-879f-3b7bd1c5c129.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 07289211ce045b31693c7bb59c06f338
210abec1182bb94b9d0e48827ecb8023611c4489
808b7bfa4b75cfb91e003d6375802da7d2719de29d4f64776dea57992b7632c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffb155f3-4b60-4d8c-879f-3b7bd1c5c129.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5311
x-amzn-requestid: 3e000f36-3e2a-4008-950b-2e9f83306e51
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B_w3eFmtIAMF7EA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64162e95-1b9e4cc8033920ea365de22f;Sampled=0
x-amzn-remapped-date: Sat, 18 Mar 2023 21:35:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: mB-sWMCTChGtVbvW4TkpKqqpSACyRLw9x32bDY3kvV3f0IrEsti9cg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 9adef5b1c5fc9ca80d6f4f8d19e103a2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Mar 2023 21:48:16 GMT
etag: "210abec1182bb94b9d0e48827ecb8023611c4489"
content-type: image/jpeg
age: 43642
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 78453ba98b72eff3879ef163b59c86ed
80519bb3726ee1f9f211344cd433cefaed3a7f2e
61adfeff11af9583355ac7d1500e8a8d97357b2846f151f2421001994fb06655
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10338
x-amzn-requestid: 9f880b5b-056c-44bb-a811-36ea27c232aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BvSgFGENoAMFuVw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640f9799-2318d444248f7610300c658f;Sampled=0
x-amzn-remapped-date: Mon, 13 Mar 2023 21:37:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: K19FG80YIBs-7NnPFJQEodETe4DpifB_BA2FpyYtB0W-sXXjNlLKxw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 21618d080c6bfbcd465fc55a167a8c1a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 07:04:47 GMT
age: 10251
etag: "80519bb3726ee1f9f211344cd433cefaed3a7f2e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63fcece5-ac9a-47e4-9587-013a570aedae.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63fcece5-ac9a-47e4-9587-013a570aedae.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 201a7e2a9ec467338a523d1713e333f3
50c909b444039baa961411e64b49e304bfd7a675
f9cb9b0df4e24e104236239b8c9544d225a9ef792d2fce3a713c4eb1611ac14e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63fcece5-ac9a-47e4-9587-013a570aedae.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7566
x-amzn-requestid: d25b5304-01ba-465e-aefd-3b859505ea7e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B_wYJHRWoAMFUQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64162dcd-1d173b860c6aac10195bf1a2;Sampled=0
x-amzn-remapped-date: Sat, 18 Mar 2023 21:31:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: _76oFAicTr57x7LLpFcII9oOuhPsJ6yZwHgMBZZTo0tV68LovXa9Nw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 ac463f3377446e4c603deca30feb744a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Mar 2023 21:44:30 GMT
age: 43875
etag: "50c909b444039baa961411e64b49e304bfd7a675"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2