Report - pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html

Report Overview

Visited public
2024-08-18 22:53:07
Tags
URL
pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html
Finishing URL
pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html
IP / ASN
104.18.2.35
#13335 CLOUDFLARENET
Title
MetaMask

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Sent	Received	IP
r11.o.lencr.org	unknown	1.3 kB	3.5 kB	23.36.77.32
pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev	unknown	508 B	66 kB	104.18.2.35
cdnjs.cloudflare.com	235	525 B	7.2 kB	104.17.25.14
o.pki.goog	unknown	1.6 kB	3.5 kB	142.250.74.131
bestfilltype.netlify.app	unknown	6.1 kB	4.7 kB	18.192.231.252
gtomitsuka.github.io	unknown	461 B	1.2 kB	185.199.109.153
r10.o.lencr.org	unknown	981 B	2.7 kB	23.36.76.226
ajax.googleapis.com	12905	458 B	31 kB	142.250.74.42
code.jquery.com	634	1.4 kB	142 kB	151.101.2.137
fonts.gstatic.com	unknown	1.7 kB	24 kB	216.58.207.227
fonts.googleapis.com	8877	504 B	6.1 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-08-18	medium	pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html	Crypto/Wallet

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-08-18	medium	pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev	Sinkholed

ThreatFox

No alerts detected

JavaScript (6)

	URL	From	Size	First Seen	Last Seen
	code.jquery.com/jquery-3.3.1.js	ScriptElement	272 kB	2023-03-07	2025-06-08
Pretty URL code.jquery.com/jquery-3.3.1.js IP 151.101.2.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-08 03:25 Times Seen38941 Hash 6a07da9fae934baf3f749e876bbfdd96 46a436eba01c79acdb225757ed80bf54bad6416b d8aa24ecc6cecb1a60515bc093f1c9da38a0392612d9ab8ae0f7f36e6eee1fad Loading...

	code.jquery.com/jquery-3.1.1.min.js	ScriptElement	87 kB	2023-03-07	2025-06-08
Pretty URL code.jquery.com/jquery-3.1.1.min.js IP 151.101.2.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-08 03:25 Times Seen113779 Hash e071abda8fe61194711cfc2ab99fe104 f647a6d37dc4ca055ced3cf64bbc1f490070acba 85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf Loading...

	cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js	ScriptElement	19 kB	2023-03-07	2025-06-08
Pretty URL cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-08 03:25 Times Seen75019 Hash 70d3fda195602fe8b75e0097eed74dde c3b977aa4b8dfb69d651e07015031d385ded964b a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66 Loading...

	gtomitsuka.github.io/gibberish-detector.js/gibberish.min.js	ScriptElement	928 B	2024-05-14	2025-06-07
Pretty URL gtomitsuka.github.io/gibberish-detector.js/gibberish.min.js IP 185.199.109.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-14 07:35 Last Seen2025-06-07 19:37 Times Seen7348 Hash 8d974aff636cab207793bf6d610f3b04 85fd44d22abd86e2f83b887f3bbeda06d29f78b9 053185739c0926bb0dbce6c3834392e05c605f28d57495fe076ea595bb45c53a Loading...

	pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html	ScriptElement	21 kB	2024-06-13	2025-06-07
Pretty URL pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html IP 104.18.2.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-06-13 22:58 Last Seen2025-06-07 18:42 Times Seen476 Hash 01a19a1d93a317d581fb940721a4c954 a47d4d22d919b5859cd7eada341aa3c96b24c8e4 23724dccaf22ab6d30284974b74634e2d6c4485ef25b3202e393113ccf51051c Loading...

	ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js	ScriptElement	86 kB	2023-03-07	2025-06-08
Pretty URL ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js IP 142.250.74.42 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-08 03:47 Times Seen178293 Hash 2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e Loading...

HTTP Transactions (36)

URL IP Response Size

r11.o.lencr.org/

23.36.77.32

504 B

URL
r11.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
219f59137337a0ee601729cab5ec83f6
85f2e3496820405559fd526b44b9a915e0009a4f
f9701bf0083b06f4a573774d1a4dd491236216bc08f1006a94ce79144df70a21

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "F9701BF0083B06F4A573774D1A4DD491236216BC08F1006A94CE79144DF70A21"
Last-Modified: Sat, 17 Aug 2024 00:55:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16409
Expires: Mon, 19 Aug 2024 03:26:10 GMT
Date: Sun, 18 Aug 2024 22:52:41 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
18cce98073c1bf25df62a3ca026dedbf
26ea37fc15ead14ac2047d074f6c4153d57775d0
c5fdde15e0dc09e045c2df21c77d2c87e6c7d4abe86048426f468fcd696054e0

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "C5FDDE15E0DC09E045C2DF21C77D2C87E6C7D4ABE86048426F468FCD696054E0"
Last-Modified: Sun, 18 Aug 2024 18:58:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7813
Expires: Mon, 19 Aug 2024 01:02:54 GMT
Date: Sun, 18 Aug 2024 22:52:41 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
69a9603269726ce602d708bf57058c4c
8689e9ea81ea9636e7b08c3ed42650553a0c4e3b
1a2339d740b715f3df1900d80114c8376ead57205961a6f896edf37b3ee3a897

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "1A2339D740B715F3DF1900D80114C8376EAD57205961A6F896EDF37B3EE3A897"
Last-Modified: Sat, 17 Aug 2024 09:59:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7736
Expires: Mon, 19 Aug 2024 01:01:37 GMT
Date: Sun, 18 Aug 2024 22:52:41 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
18f75729f3e25e2eb7f12b70dfce3849
479177b92dda7c4e8763c80a15cbc71c3386d06c
0b7da2da1fcba23c5118479e14828f87a605a32af15d0962f216115a9ff1d02a

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "0B7DA2DA1FCBA23C5118479E14828F87A605A32AF15D0962F216115A9FF1D02A"
Last-Modified: Sun, 18 Aug 2024 15:19:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13807
Expires: Mon, 19 Aug 2024 02:42:48 GMT
Date: Sun, 18 Aug 2024 22:52:41 GMT
Connection: keep-alive

pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html

104.18.2.35

200 OK

65 kB

URL User Request GET HTTP/1.1
pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html
IP
104.18.2.35:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint5C:19:05:54:CB:1D:39:D0:1E:C7:12:0E:9F:91:C4:38:3B:B6:02:A8
ValidityThu, 01 Aug 2024 14:00:11 GMT - Wed, 30 Oct 2024 14:00:10 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (2144), with CRLF line terminators
Size
65 kB (65290 bytes)
Hash
3dacf26301e848b34ab860fe92881e86
3cdbebe0bbb8f838573b13ccac26ecc818ac780e
9097edc9ac96681aef4b0d63d956b4f41fa10ea7c19fce54884e021d44d41a3a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /index.html HTTP/1.1
Host: pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 18 Aug 2024 22:52:42 GMT
Content-Type: text/html
Content-Length: 65290
Connection: keep-alive
Accept-Ranges: bytes
ETag: "3dacf26301e848b34ab860fe92881e86"
Last-Modified: Fri, 05 Jul 2024 20:26:29 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8b5579c91d7e568b-OSL

cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js

104.17.25.14

200 OK

6.2 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint00:EC:C6:E9:D9:C1:6D:05:88:6E:33:AF:3B:E7:7B:86:81:20:66:CA
ValidityWed, 31 Jul 2024 04:16:10 GMT - Tue, 29 Oct 2024 04:16:09 GMT

File type
JavaScript source, ASCII text, with very long lines (19015)
Size
6.2 kB (6157 bytes)
Hash
70d3fda195602fe8b75e0097eed74dde
c3b977aa4b8dfb69d651e07015031d385ded964b
a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66

HTTP Headers

GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev
DNT: 1
Connection: keep-alive
Referer: https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 18 Aug 2024 22:52:42 GMT
content-type: application/javascript; charset=utf-8
content-length: 6157
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4af4"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2775646
expires: Fri, 08 Aug 2025 22:52:42 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q1NZYNaPZCN7FFeTny8aVBMKud9pP5RNAH6lDhjO4oOdGjwGQB8sB9UFVztRucg5AEJ7hrFC54mGbvuorArU9YnCa0erpyTG%2BLVUGXhGpHhAEexkq8QCs85Lvc7F1%2BPAeUTX42Vr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8b5579cc2f94568a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

472 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8881993e0fdcffade7aff1ed0f37d839
f629f73adbaf0103717067fb0f503a783ca7400a
302feba70266dde32ab7678d4bdb38c1430d0bc8188b6d9576e2de2f408eb854

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Aug 2024 22:52:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js

142.250.74.42

200 OK

30 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
IP
142.250.74.42:443
ASN
#15169 GOOGLE

Requested by
https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
FingerprintC4:3F:12:39:D2:EC:4C:2C:1C:0A:A6:18:8E:2A:97:2C:D8:C2:7E:AF
ValidityTue, 30 Jul 2024 12:49:45 GMT - Tue, 22 Oct 2024 12:49:44 GMT

File type
JavaScript source, ASCII text, with very long lines (32065)
Size
30 kB (30028 bytes)
Hash
2f6b11a7e914718e0290410e85366fe9
69bb69e25ca7d5ef0935317584e6153f3fd9a88c
05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e

HTTP Headers

GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Aug 2024 10:51:13 GMT
expires: Thu, 14 Aug 2025 10:51:13 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 388889
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

code.jquery.com/jquery-3.1.1.min.js

151.101.2.137

200 OK

30 kB

URL GET HTTP/2
code.jquery.com/jquery-3.1.1.min.js
IP
151.101.2.137:443
ASN
#54113 FASTLY

Requested by
https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5
ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32030)
Size
30 kB (30070 bytes)
Hash
e071abda8fe61194711cfc2ab99fe104
f647a6d37dc4ca055ced3cf64bbc1f490070acba
85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf

HTTP Headers

GET /jquery-3.1.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-152b5"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 18 Aug 2024 22:52:42 GMT
age: 2811698
x-served-by: cache-lga21947-LGA, cache-hel1410031-HEL
x-cache: HIT, HIT
x-cache-hits: 118, 21223
x-timer: S1724021562.348627,VS0,VE0
vary: Accept-Encoding
content-length: 30070
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

472 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
cb4c598dd431b60defbc0ad4489bf6f0
955bf324b573e570d28bdb454a275b3111697f0e
6eb6d756442507cd487c963468c518763ee26d8371b0a661227f399c5054f7e3

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Aug 2024 22:52:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

bestfilltype.netlify.app/icon.png

18.192.231.252

404 Not Found

50 B

URL GET HTTP/2
bestfilltype.netlify.app/icon.png
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html
Certificate
IssuerDigiCert Inc
Subject*.netlify.app
FingerprintB0:8E:E9:A5:C3:D9:B5:C1:FF:B6:51:7A:DF:98:CF:2D:28:18:41:9B
ValidityMon, 15 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
50 B (50 bytes)
Hash
fc50ad7e2af5fb57c4830c81138f57db
1912aba91ca3211b07fa453e6d6b8b40ed5f88e2
6fc78c80b7428b7395c7062f9b6c042372e2477233c43e2490dd54a57b2dc2cd

HTTP Headers

GET /icon.png HTTP/1.1
Host: bestfilltype.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: private, max-age=0
content-type: text/plain; charset=utf-8
date: Sun, 18 Aug 2024 22:52:42 GMT
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01J5KV2Q1JF2MTWJPR88A1CBY7
content-length: 50
X-Firefox-Spdy: h2

bestfilltype.netlify.app/eye-close.png

18.192.231.252

404 Not Found

50 B

URL GET HTTP/2
bestfilltype.netlify.app/eye-close.png
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html
Certificate
IssuerDigiCert Inc
Subject*.netlify.app
FingerprintB0:8E:E9:A5:C3:D9:B5:C1:FF:B6:51:7A:DF:98:CF:2D:28:18:41:9B
ValidityMon, 15 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
50 B (50 bytes)
Hash
242f50d4b098ce3678a9a6b9ec0e9dcf
783ed4e23b1b60f27855393404ab28a1ac46bcca
a60543dbcf8da3987ea8e9577ec778dae80b07f017874f8894805762cd7624e4

HTTP Headers

GET /eye-close.png HTTP/1.1
Host: bestfilltype.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: private, max-age=0
content-type: text/plain; charset=utf-8
date: Sun, 18 Aug 2024 22:52:42 GMT
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01J5KV2Q1JNMM9RQZGKTQD4695
content-length: 50
X-Firefox-Spdy: h2

bestfilltype.netlify.app/tada.png

18.192.231.252

404 Not Found

50 B

URL GET HTTP/2
bestfilltype.netlify.app/tada.png
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html
Certificate
IssuerDigiCert Inc
Subject*.netlify.app
FingerprintB0:8E:E9:A5:C3:D9:B5:C1:FF:B6:51:7A:DF:98:CF:2D:28:18:41:9B
ValidityMon, 15 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
50 B (50 bytes)
Hash
1c17214479e2e6fe0b16c51b31840594
4454b29f671cf225d7cc64edf0b441999cfcad9e
7f24ca7dfd52039ba18cf5e41f1ccc7563e247a050956853bd8253cf6793ada1

HTTP Headers

GET /tada.png HTTP/1.1
Host: bestfilltype.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: private, max-age=0
content-type: text/plain; charset=utf-8
date: Sun, 18 Aug 2024 22:52:42 GMT
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01J5KV2Q1JAEGHAB3SE4BDPA5N
content-length: 50
X-Firefox-Spdy: h2

bestfilltype.netlify.app/full.png

18.192.231.252

404 Not Found

50 B

URL GET HTTP/2
bestfilltype.netlify.app/full.png
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html
Certificate
IssuerDigiCert Inc
Subject*.netlify.app
FingerprintB0:8E:E9:A5:C3:D9:B5:C1:FF:B6:51:7A:DF:98:CF:2D:28:18:41:9B
ValidityMon, 15 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
50 B (50 bytes)
Hash
b8253a40c5dec6fe9fb5ee844fa2502f
babddedd8b164d1c3a00454e9a6b6c9d01aa7c18
dd2eef1bd7a89305929d1681565b2df5f8ba4e8d1ab9ba65dcb294789703c240

HTTP Headers

GET /full.png HTTP/1.1
Host: bestfilltype.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: private, max-age=0
content-type: text/plain; charset=utf-8
date: Sun, 18 Aug 2024 22:52:42 GMT
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01J5KV2Q1JH582HKQTZWT51KKE
content-length: 50
X-Firefox-Spdy: h2

bestfilltype.netlify.app/logo.png

18.192.231.252

404 Not Found

50 B

URL GET HTTP/2
bestfilltype.netlify.app/logo.png
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html
Certificate
IssuerDigiCert Inc
Subject*.netlify.app
FingerprintB0:8E:E9:A5:C3:D9:B5:C1:FF:B6:51:7A:DF:98:CF:2D:28:18:41:9B
ValidityMon, 15 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
50 B (50 bytes)
Hash
d491111be09d0d4fe33f17c5a85ed1fd
f9beccea26909af4879d04c0e33254d07bfd3b35
a2110e93a2d9511ff04718081274142a348fcd27eb2525ffce734c0de5df508e

HTTP Headers

GET /logo.png HTTP/1.1
Host: bestfilltype.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: private, max-age=0
content-type: text/plain; charset=utf-8
date: Sun, 18 Aug 2024 22:52:42 GMT
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01J5KV2Q1KJKV2VY48PBFTGTKW
content-length: 50
X-Firefox-Spdy: h2

bestfilltype.netlify.app/confirm.png

18.192.231.252

404 Not Found

50 B

URL GET HTTP/2
bestfilltype.netlify.app/confirm.png
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html
Certificate
IssuerDigiCert Inc
Subject*.netlify.app
FingerprintB0:8E:E9:A5:C3:D9:B5:C1:FF:B6:51:7A:DF:98:CF:2D:28:18:41:9B
ValidityMon, 15 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
50 B (50 bytes)
Hash
c124d9e830a4bb02219b3c2bc9340628
9259d2e3c621839b033525dfa6d5d7d7bb7c7928
5922479900fc7f03ae27f5d69c9f01d306fd897050924866eaeff54ecca75be7

HTTP Headers

GET /confirm.png HTTP/1.1
Host: bestfilltype.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: private, max-age=0
content-type: text/plain; charset=utf-8
date: Sun, 18 Aug 2024 22:52:42 GMT
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01J5KV2Q1KHMYK0B71ADFEZGRQ
content-length: 50
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

472 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
cb4c598dd431b60defbc0ad4489bf6f0
955bf324b573e570d28bdb454a275b3111697f0e
6eb6d756442507cd487c963468c518763ee26d8371b0a661227f399c5054f7e3

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Aug 2024 22:52:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

code.jquery.com/jquery-3.3.1.js

151.101.2.137

200 OK

80 kB

URL GET HTTP/2
code.jquery.com/jquery-3.3.1.js
IP
151.101.2.137:443
ASN
#54113 FASTLY

Requested by
https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5
ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT

File type
JavaScript source, ASCII text
Size
80 kB (80268 bytes)
Hash
6a07da9fae934baf3f749e876bbfdd96
46a436eba01c79acdb225757ed80bf54bad6416b
d8aa24ecc6cecb1a60515bc093f1c9da38a0392612d9ab8ae0f7f36e6eee1fad

HTTP Headers

GET /jquery-3.3.1.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev
DNT: 1
Connection: keep-alive
Referer: https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-42587"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 18 Aug 2024 22:52:42 GMT
age: 2292492
x-served-by: cache-lga21980-LGA, cache-hel1410028-HEL
x-cache: HIT, HIT
x-cache-hits: 99, 9320
x-timer: S1724021562.445084,VS0,VE0
vary: Accept-Encoding
content-length: 80268
X-Firefox-Spdy: h2

gtomitsuka.github.io/gibberish-detector.js/gibberish.min.js

185.199.109.153

200 OK

520 B

URL GET HTTP/2
gtomitsuka.github.io/gibberish-detector.js/gibberish.min.js
IP
185.199.109.153:443
ASN
#54113 FASTLY

Requested by
https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html
Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (502)
Size
520 B (520 bytes)
Hash
8d974aff636cab207793bf6d610f3b04
85fd44d22abd86e2f83b887f3bbeda06d29f78b9
053185739c0926bb0dbce6c3834392e05c605f28d57495fe076ea595bb45c53a

HTTP Headers

GET /gibberish-detector.js/gibberish.min.js HTTP/1.1
Host: gtomitsuka.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
permissions-policy: interest-cohort=()
last-modified: Sun, 28 Jul 2019 00:43:06 GMT
access-control-allow-origin: *
etag: W/"5d3cef9a-3a0"
expires: Sun, 18 Aug 2024 07:00:52 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 4A16:2E3A93:12434E1:12CAA61:66C199CC
accept-ranges: bytes
age: 0
date: Sun, 18 Aug 2024 22:52:42 GMT
via: 1.1 varnish
x-served-by: cache-hel1410031-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1724021562.366264,VS0,VE129
vary: Accept-Encoding
x-fastly-request-id: 7c9f8a604169c7f2a6c20540dc0717921d1f7e88
content-length: 520
X-Firefox-Spdy: h2

code.jquery.com/jquery-3.1.1.min.js

151.101.2.137

200 OK

30 kB

URL GET HTTP/2
code.jquery.com/jquery-3.1.1.min.js
IP
151.101.2.137:443
ASN
#54113 FASTLY

Requested by
https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5
ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32030)
Size
30 kB (30070 bytes)
Hash
e071abda8fe61194711cfc2ab99fe104
f647a6d37dc4ca055ced3cf64bbc1f490070acba
85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf

HTTP Headers

GET /jquery-3.1.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-152b5"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 18 Aug 2024 22:52:42 GMT
age: 2811698
x-served-by: cache-lga21947-LGA, cache-hel1410031-HEL
x-cache: HIT, HIT
x-cache-hits: 118, 21224
x-timer: S1724021563.690141,VS0,VE0
vary: Accept-Encoding
content-length: 30070
X-Firefox-Spdy: h2

bestfilltype.netlify.app/icon.png

18.192.231.252

404 Not Found

50 B

URL GET HTTP/2
bestfilltype.netlify.app/icon.png
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html
Certificate
IssuerDigiCert Inc
Subject*.netlify.app
FingerprintB0:8E:E9:A5:C3:D9:B5:C1:FF:B6:51:7A:DF:98:CF:2D:28:18:41:9B
ValidityMon, 15 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
50 B (50 bytes)
Hash
864a9edd664febf21cda98cedebc18d0
2e2db152f6e9efc4a016f5a9902beb41465ddc6c
71a746e1e6552b5d1b95ce1a51a5adf562a2254174ee393f71571e96c5a1f016

HTTP Headers

GET /icon.png HTTP/1.1
Host: bestfilltype.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: private, max-age=0
content-type: text/plain; charset=utf-8
date: Sun, 18 Aug 2024 22:52:42 GMT
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01J5KV2QCYP78PAFV4WNKD5TXJ
content-length: 50
X-Firefox-Spdy: h2

bestfilltype.netlify.app/logo.png

18.192.231.252

404 Not Found

50 B

URL GET HTTP/2
bestfilltype.netlify.app/logo.png
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html
Certificate
IssuerDigiCert Inc
Subject*.netlify.app
FingerprintB0:8E:E9:A5:C3:D9:B5:C1:FF:B6:51:7A:DF:98:CF:2D:28:18:41:9B
ValidityMon, 15 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
50 B (50 bytes)
Hash
480515aa77aefc61e5ba45454382eee6
211230a41fc880789feebd7582188b3c758ab604
c687496b5acaaa8fa0589972409c83e6b651509f910b5f6093b24cdda538771f

HTTP Headers

GET /logo.png HTTP/1.1
Host: bestfilltype.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: private, max-age=0
content-type: text/plain; charset=utf-8
date: Sun, 18 Aug 2024 22:52:42 GMT
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01J5KV2QCZVFMARTFHTKH4FT83
content-length: 50
X-Firefox-Spdy: h2

bestfilltype.netlify.app/confirm.png

18.192.231.252

404 Not Found

50 B

URL GET HTTP/2
bestfilltype.netlify.app/confirm.png
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html
Certificate
IssuerDigiCert Inc
Subject*.netlify.app
FingerprintB0:8E:E9:A5:C3:D9:B5:C1:FF:B6:51:7A:DF:98:CF:2D:28:18:41:9B
ValidityMon, 15 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
50 B (50 bytes)
Hash
1dba42c33fff2347db90b482b80f5a29
c173edda027ca7ba3a7a62b65b0f3062c12245d5
a445a0f75b6b3cdbda19fe0a2e076c90c4fa811f6eee8164482cc64e1afa81ac

HTTP Headers

GET /confirm.png HTTP/1.1
Host: bestfilltype.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: private, max-age=0
content-type: text/plain; charset=utf-8
date: Sun, 18 Aug 2024 22:52:42 GMT
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01J5KV2QD00TTMTX3WW46ACJV0
content-length: 50
X-Firefox-Spdy: h2

bestfilltype.netlify.app/full.png

18.192.231.252

404 Not Found

50 B

URL GET HTTP/2
bestfilltype.netlify.app/full.png
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html
Certificate
IssuerDigiCert Inc
Subject*.netlify.app
FingerprintB0:8E:E9:A5:C3:D9:B5:C1:FF:B6:51:7A:DF:98:CF:2D:28:18:41:9B
ValidityMon, 15 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
50 B (50 bytes)
Hash
abdabf1d2974b892f0247802da6cf296
2aa4cf7d2de62aedc197d7b4ce1e494192806182
d2f5339f3d24abbfaad1e60a3052b7f3567350efdbc671b8b3f909267aeafcf2

HTTP Headers

GET /full.png HTTP/1.1
Host: bestfilltype.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: private, max-age=0
content-type: text/plain; charset=utf-8
date: Sun, 18 Aug 2024 22:52:42 GMT
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01J5KV2QD0EKZ0PWZR0P90VRFR
content-length: 50
X-Firefox-Spdy: h2

bestfilltype.netlify.app/eye-close.png

18.192.231.252

404 Not Found

50 B

URL GET HTTP/2
bestfilltype.netlify.app/eye-close.png
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html
Certificate
IssuerDigiCert Inc
Subject*.netlify.app
FingerprintB0:8E:E9:A5:C3:D9:B5:C1:FF:B6:51:7A:DF:98:CF:2D:28:18:41:9B
ValidityMon, 15 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
50 B (50 bytes)
Hash
5dc91c6eefd27db696c3eee2b9d1993a
3afc1759d80953bc1c6a08b250f820959190e60f
29c64f825363f0c90998a89bb34c44ae27f8ae90230b9559c74fd9d9c0d1b1e1

HTTP Headers

GET /eye-close.png HTTP/1.1
Host: bestfilltype.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: private, max-age=0
content-type: text/plain; charset=utf-8
date: Sun, 18 Aug 2024 22:52:42 GMT
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01J5KV2QD3VGM8G9R9VP0NH1JT
content-length: 50
X-Firefox-Spdy: h2

bestfilltype.netlify.app/tada.png

18.192.231.252

404 Not Found

50 B

URL GET HTTP/2
bestfilltype.netlify.app/tada.png
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html
Certificate
IssuerDigiCert Inc
Subject*.netlify.app
FingerprintB0:8E:E9:A5:C3:D9:B5:C1:FF:B6:51:7A:DF:98:CF:2D:28:18:41:9B
ValidityMon, 15 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
50 B (50 bytes)
Hash
cb69f0a7144c591ab6be9062e8278cd5
260febfc942c380e2808b3c89a53f96cdb950119
f542751ad2b795d63c6a93fd5b806b1f59c9c70ed823e02f9fd026412071d3c2

HTTP Headers

GET /tada.png HTTP/1.1
Host: bestfilltype.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: private, max-age=0
content-type: text/plain; charset=utf-8
date: Sun, 18 Aug 2024 22:52:42 GMT
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01J5KV2QDFZWZTZ6S62R4KQC4M
content-length: 50
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

472 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8a87817540e7e2ead175b651c1ea4780
1eaa2ee9290680c91afcad1b90da211de7454726
33cd881e9daa8467fd5bb76f1ba5c379e503a3a1fdea961cb118db3f90a7061c

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Aug 2024 22:52:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2

216.58.207.227

200 OK

7.9 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintF2:15:54:4E:F3:58:7F:5A:14:9D:F2:45:37:0E:B1:A6:48:C6:2B:14
ValidityTue, 30 Jul 2024 12:49:30 GMT - Tue, 22 Oct 2024 12:49:29 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Aug 2024 04:18:20 GMT
expires: Fri, 15 Aug 2025 04:18:20 GMT
cache-control: public, max-age=31536000
age: 326062
last-modified: Fri, 22 Mar 2024 00:00:38 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJnecmNE.woff2

216.58.207.227

200 OK

5.6 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJnecmNE.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintF2:15:54:4E:F3:58:7F:5A:14:9D:F2:45:37:0E:B1:A6:48:C6:2B:14
ValidityTue, 30 Jul 2024 12:49:30 GMT - Tue, 22 Oct 2024 12:49:29 GMT

File type
Web Open Font Format (Version 2), TrueType, length 5552, version 1.0
Size
5.6 kB (5552 bytes)
Hash
aa42a9a3d4fc9951ed37945ff1af85dc
6cd63d09cc1f526aba20b654ef5b55f8104586c6
a526dac26fcc645d428764b07fd6ae2ad3399129b75c22c8e149278157291189

HTTP Headers

GET /s/poppins/v21/pxiEyp8kv8JHgFVrJJnecmNE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Aug 2024 02:54:56 GMT
expires: Sun, 17 Aug 2025 02:54:56 GMT
cache-control: public, max-age=31536000
age: 158266
last-modified: Fri, 22 Mar 2024 00:00:51 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2

216.58.207.227

200 OK

7.8 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintF2:15:54:4E:F3:58:7F:5A:14:9D:F2:45:37:0E:B1:A6:48:C6:2B:14
ValidityTue, 30 Jul 2024 12:49:30 GMT - Tue, 22 Oct 2024 12:49:29 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7816, version 1.0
Size
7.8 kB (7816 bytes)
Hash
25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526

HTTP Headers

GET /s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Aug 2024 03:01:01 GMT
expires: Sun, 17 Aug 2025 03:01:01 GMT
cache-control: public, max-age=31536000
age: 157901
last-modified: Fri, 22 Mar 2024 00:00:32 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

o.pki.goog/wr2

142.250.74.131

472 B

URL
o.pki.goog/wr2
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8a87817540e7e2ead175b651c1ea4780
1eaa2ee9290680c91afcad1b90da211de7454726
33cd881e9daa8467fd5bb76f1ba5c379e503a3a1fdea961cb118db3f90a7061c

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 18 Aug 2024 22:52:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

bestfilltype.netlify.app/icon.png

18.192.231.252

404 Not Found

50 B

URL GET HTTP/2
bestfilltype.netlify.app/icon.png
IP
18.192.231.252:443
ASN
#16509 AMAZON-02

Requested by
https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html
Certificate
IssuerDigiCert Inc
Subject*.netlify.app
FingerprintB0:8E:E9:A5:C3:D9:B5:C1:FF:B6:51:7A:DF:98:CF:2D:28:18:41:9B
ValidityMon, 15 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
50 B (50 bytes)
Hash
41fd7cbb82caf0c1ccf032a8391bc0f8
67c9ae6bb6c8c82ddf4dd3e0730df494e43f0d2d
0e03285db369bb7a233c426c081d028cf57e5aad950020b033bf396d0b0ba08f

HTTP Headers

GET /icon.png HTTP/1.1
Host: bestfilltype.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: private, max-age=0
content-type: text/plain; charset=utf-8
date: Sun, 18 Aug 2024 22:52:42 GMT
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01J5KV2QJYBNFYQV3FPE6994HR
content-length: 50
X-Firefox-Spdy: h2

r11.o.lencr.org/

23.36.76.226

504 B

URL
r11.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
7944981bcac427aa8d0aa016ec63764d
48bf925b10dc02afa8f597af8d26f5bf5efc0b7e
26bde594c33cd3386f4e65e3eaf0fc048fca46ed4a185f5c2aa70e8deeaffb0a

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "26BDE594C33CD3386F4E65E3EAF0FC048FCA46ED4A185F5C2AA70E8DEEAFFB0A"
Last-Modified: Sat, 17 Aug 2024 21:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4194
Expires: Mon, 19 Aug 2024 00:02:38 GMT
Date: Sun, 18 Aug 2024 22:52:44 GMT
Connection: keep-alive

r11.o.lencr.org/

23.36.76.226

504 B

URL
r11.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
7944981bcac427aa8d0aa016ec63764d
48bf925b10dc02afa8f597af8d26f5bf5efc0b7e
26bde594c33cd3386f4e65e3eaf0fc048fca46ed4a185f5c2aa70e8deeaffb0a

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "26BDE594C33CD3386F4E65E3EAF0FC048FCA46ED4A185F5C2AA70E8DEEAFFB0A"
Last-Modified: Sat, 17 Aug 2024 21:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4194
Expires: Mon, 19 Aug 2024 00:02:38 GMT
Date: Sun, 18 Aug 2024 22:52:44 GMT
Connection: keep-alive

r11.o.lencr.org/

23.36.76.226

504 B

URL
r11.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
7944981bcac427aa8d0aa016ec63764d
48bf925b10dc02afa8f597af8d26f5bf5efc0b7e
26bde594c33cd3386f4e65e3eaf0fc048fca46ed4a185f5c2aa70e8deeaffb0a

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "26BDE594C33CD3386F4E65E3EAF0FC048FCA46ED4A185F5C2AA70E8DEEAFFB0A"
Last-Modified: Sat, 17 Aug 2024 21:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4194
Expires: Mon, 19 Aug 2024 00:02:38 GMT
Date: Sun, 18 Aug 2024 22:52:44 GMT
Connection: keep-alive

fonts.googleapis.com/css2?family=Poppins:wght@300;400;500;600;700;800;900&display=swap

142.250.74.106

200 OK

5.5 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Poppins:wght@300;400;500;600;700;800;900&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/index.html
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
FingerprintC4:3F:12:39:D2:EC:4C:2C:1C:0A:A6:18:8E:2A:97:2C:D8:C2:7E:AF
ValidityTue, 30 Jul 2024 12:49:45 GMT - Tue, 22 Oct 2024 12:49:44 GMT

File type
ASCII text, with very long lines (5641), with no line terminators
Size
5.5 kB (5515 bytes)
Hash
35b66465b230fcf9cde32761a6187553
23aeb1a7e72b51f65b0ffa6f16c2c43bc1b97e99
61a937f2c296ef8887d128d83dd76b7efb5e17f60e375fdeea4731a290b67d07

HTTP Headers

GET /css2?family=Poppins:wght@300;400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-8ba7461f5207425c91fbb56be2fffac1.r2.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 18 Aug 2024 22:52:42 GMT
date: Sun, 18 Aug 2024 22:52:42 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (6)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (36)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN