Report - www.theurbanistsalmanac.com/

Report Overview

Submitted URL
www.theurbanistsalmanac.com/
IP
199.34.228.76
ASN
#27647 WEEBLY
Submitted
2022-10-06 00:23:53
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
24

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	54.230.111.118
cdn2.editmysite.com	11564	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	8.5 kB	520 kB	151.101.85.46
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	676 B	1.9 kB	54.230.245.118
www.theurbanistsalmanac.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.8 kB	628 kB	199.34.228.76
ajax.googleapis.com	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	391 B	35 kB	142.250.74.106
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.7 kB	64 kB	34.120.237.76
ec.editmysite.com	12806	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	761 B	35.82.13.103
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.77.32
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	2.8 kB	142.250.74.3
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	54.186.209.73
ssl.google-analytics.com	275	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	365 B	18 kB	142.250.74.40
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	54.230.111.14
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-10-06	medium	theurbanistsalmanac.com	Sinkholed
2022-10-06	medium	theurbanistsalmanac.com	Sinkholed
2022-10-06	medium	theurbanistsalmanac.com	Sinkholed
2022-10-06	medium	theurbanistsalmanac.com	Sinkholed
2022-10-06	medium	theurbanistsalmanac.com	Sinkholed
2022-10-06	medium	theurbanistsalmanac.com	Sinkholed
2022-10-06	medium	theurbanistsalmanac.com	Sinkholed
2022-10-06	medium	theurbanistsalmanac.com	Sinkholed
2022-10-06	medium	theurbanistsalmanac.com	Sinkholed
2022-10-06	medium	theurbanistsalmanac.com	Sinkholed
2022-10-06	medium	theurbanistsalmanac.com	Sinkholed
2022-10-06	medium	theurbanistsalmanac.com	Sinkholed

JavaScript (22)

	URL	Size	First Seen	Last Seen
	www.theurbanistsalmanac.com/files/theme/plugins.js?1556896837	85 kB	2023-03-07	2024-04-26
Pretty URL www.theurbanistsalmanac.com/files/theme/plugins.js?1556896837 IP 199.34.228.76 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:49 Last Seen2024-04-26 17:14:22 Times Seen296 Hash 4cf5477130f7311a5f0af1ecaf425ee4 14aa67219073d67c2c04db1d2e2acd706cfb6bda b83c1bdb86ae601a4a54799c364306dd922e98d5fddc177d404611bf1a2706f3 Loading...

	www.theurbanistsalmanac.com/	1.2 kB	2023-03-07	2024-05-04
Pretty URL www.theurbanistsalmanac.com/ IP 199.34.228.76 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-05-04 20:14:16 Times Seen2976 Hash 24449345e209b8641a813eaef44a5244 21617897e4d35717e2e41b766501fbd883a8f16d 3e72636c6cf854c8657ccbf9e03f7af05bd4836066c329417a4f8251bb5d18c1 Loading...

	ssl.google-analytics.com/ga.js	46 kB	2023-03-07	2024-04-16
Pretty URL ssl.google-analytics.com/ga.js IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2024-04-16 23:24:27 Times Seen3495 Hash e9372f0ebbcf71f851e3d321ef2a8e5a 2c7d19d1af7d97085c977d1b69dcb8b84483d87c 1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f Loading...

	cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1664550700&	182 kB	2023-03-08	2023-03-10
Pretty URL cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1664550700& IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:37:09 Last Seen2023-03-10 09:43:02 Times Seen1 Hash 49340fd740d21ffc21e80e05cf7bfbd6 a69d371d147637755ef02958694307e8df7e58fc dd50c889534f5c01eab8c7cbacd520e01b7fa08020e36df5ddd384d760a0c3c2 Loading...

	www.theurbanistsalmanac.com/	63 B	2023-03-08	2023-03-08
Pretty URL www.theurbanistsalmanac.com/ IP 199.34.228.76 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:44:37 Last Seen2023-03-08 06:44:37 Times Seen1 Hash 8e2c30fe5f53e5fbabce52efd2cd986a 7a2c004a6b3d869882a0d6dcd7e4d87167517876 da7f2b26ab6fbee3f24325f09b6b83163eae457153e4cf1f1c43cf7c91a5aafc Loading...

	www.theurbanistsalmanac.com/	22 B	2023-03-07	2024-05-04
Pretty URL www.theurbanistsalmanac.com/ IP 199.34.228.76 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2024-05-04 18:53:32 Times Seen2334 Hash 9a33cbad7c996ea8903a3eb3332a125c 8efed109b301f8aa0f3768dcd824d669d0129741 5d3b8f4578ca89904a46d014a8433346ca2773e8691f6cc9d09b2b30f0802dbc Loading...

	www.theurbanistsalmanac.com/	1.9 kB	2023-03-08	2023-03-08
Pretty URL www.theurbanistsalmanac.com/ IP 199.34.228.76 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:44:37 Last Seen2023-03-08 06:44:37 Times Seen1 Hash 5034a0fa4e42015d0eee9b76e6f8ad58 2a24e2085f8074b5cc4f97db1d0d92645908a600 340d3caae91bf145c869b4dfb002d6c40455328515e570264d73ec5cc68a3183 Loading...

	www.theurbanistsalmanac.com/	32 B	2023-03-07	2024-05-04
Pretty URL www.theurbanistsalmanac.com/ IP 199.34.228.76 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2024-05-04 20:14:15 Times Seen3024 Hash 1bca01edca83d94091a2bb38d7ef8183 d05117e4ab3b3461be3855e95813a5c607e3ca95 fcf1cbf5cfad6d605868f42d38a0a937f5e6eaa91b05dcfbbbc95e4c3e23e528 Loading...

	www.theurbanistsalmanac.com/	62 B	2023-03-07	2024-05-04
Pretty URL www.theurbanistsalmanac.com/ IP 199.34.228.76 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-05-04 20:14:15 Times Seen3010 Hash 461bd236ddeca3b8b6e3cca8599ccb43 73c74d3281452e483c11f944d798738afc7f5b89 aebd4ac1ead5b4987d8b975cafa889ca1a6831175bc206ca9552863e390bc0f1 Loading...

	www.theurbanistsalmanac.com/files/theme/custom.js?1556896837	3.6 kB	2023-03-07	2024-04-26
Pretty URL www.theurbanistsalmanac.com/files/theme/custom.js?1556896837 IP 199.34.228.76 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:49 Last Seen2024-04-26 17:14:22 Times Seen85 Hash d24263d4b8ce76abfd09aa4aa0043726 925c53bfd4776644611d596f2a09179d3548f131 c9d6966b939562e361181b6dac2c7f5a0c90b86a6e9a4b1286550b42c6413ccc Loading...

	www.theurbanistsalmanac.com/	62 B	2023-03-07	2024-05-04
Pretty URL www.theurbanistsalmanac.com/ IP 199.34.228.76 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-05-04 20:14:16 Times Seen2772 Hash 1afa8234115c6f382672d91917a6fb26 e96957cb655865327588927ebc34d1ae376e9e64 45988af53e17c3bc8103bbe22bd47dd6d2d03d4a90c4116dc0621ab24ff87258 Loading...

	www.theurbanistsalmanac.com/files/theme/mobile.js?1556896837	20 kB	2023-03-07	2024-04-26
Pretty URL www.theurbanistsalmanac.com/files/theme/mobile.js?1556896837 IP 199.34.228.76 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:49 Last Seen2024-04-26 17:14:22 Times Seen111 Hash 7bd55d32cb40c471784fe696916309b4 edc0ef57e35023aef61fc754b8736ea7e4a206c4 cbb43d8535adb209382c62e4392774920b5b5049f50e831f27d62f1de7ac2e38 Loading...

	www.theurbanistsalmanac.com/	117 B	2023-03-07	2024-05-04
Pretty URL www.theurbanistsalmanac.com/ IP 199.34.228.76 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-05-04 20:14:15 Times Seen3001 Hash ef142665f07ac27f698aa34d471c4439 b9e0d81f97054a9a0a68f57096d992ba58f33184 fbfd3b11452dce82b76e405100aece37dcfe12df4c71fb8f2bc2fe2166e9f07f Loading...

	www.theurbanistsalmanac.com/	1.8 kB	2023-03-07	2024-05-04
Pretty URL www.theurbanistsalmanac.com/ IP 199.34.228.76 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-05-04 20:14:15 Times Seen2998 Hash 563cec0ace2baea4e867b491f66cd6b0 fc4451f8fa76c5d1e3714e9008510633cffaa4f7 e4538493fc4f43f93806d0239acac9b38b0453c8440dc5ba4fcb47eae6ab2556 Loading...

	www.theurbanistsalmanac.com/	35 B	2023-03-07	2024-05-04
Pretty URL www.theurbanistsalmanac.com/ IP 199.34.228.76 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2024-05-04 20:14:15 Times Seen3015 Hash 13385ea3f3e6184de3bfa80f08fe938b 6f859a2fd4b7e15ed74990516d97a52e7b4eeb20 5e87d85ec57af5d97b6c0d4c6e766afd2b53d077102827d19625a37d8cd11c2d Loading...

	cdn2.editmysite.com/js/wsnbn/snowday262.js	75 kB	2023-03-07	2024-05-04
Pretty URL cdn2.editmysite.com/js/wsnbn/snowday262.js IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:13 Last Seen2024-05-04 20:16:05 Times Seen29656 Hash 99bbe560926e583b8e99036251deb783 8d81b73ae06f664f9d9e53dd5829a799bf434491 648e766bf519673f9a90cc336cbecede80dcbe3419b43d36ecbb25d88f5584a3 Loading...

	www.theurbanistsalmanac.com/files/templateArtifacts.js?1664778200	7.2 kB	2023-03-07	2024-05-04
Pretty URL www.theurbanistsalmanac.com/files/templateArtifacts.js?1664778200 IP 199.34.228.76 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:21 Last Seen2024-05-04 20:14:15 Times Seen3803 Hash ae81ab7069097a055829fb9919258138 7dc529f16fb595bbbfc5937adfe1d0a5cf563f8a 5a630b41e7c3d34392bcb150a5731b6261bc6314d71d5db8407a646af15bf8af Loading...

	www.theurbanistsalmanac.com/	266 B	2023-03-08	2023-03-08
Pretty URL www.theurbanistsalmanac.com/ IP 199.34.228.76 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:44:37 Last Seen2023-03-08 06:44:37 Times Seen1 Hash 01436b8cc7eb01f5d7173c6438f49dd1 fe4844e91835de074d3e4d9aae28b0c0b6113147 7608260b27f79e145c04e648d08a0a89d3dd16cab1dcd54b1a43fed0d827c330 Loading...

	www.theurbanistsalmanac.com/	664 B	2023-03-07	2024-05-04
Pretty URL www.theurbanistsalmanac.com/ IP 199.34.228.76 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-05-04 20:14:16 Times Seen2970 Hash fdd0b895b9cf69a9a4f4817533aa51f5 afc67ab62c3c91df626260407845fc41bf5d895e a50f8a487c23d76460681440220a85a28cdb09912ef451d59aa2b4f47c32aea0 Loading...

	www.theurbanistsalmanac.com/	2.3 kB	2023-03-08	2023-03-08
Pretty URL www.theurbanistsalmanac.com/ IP 199.34.228.76 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:44:37 Last Seen2023-03-08 06:44:37 Times Seen1 Hash 4a7a50b6e7ae1ff2831966206bb6556e 7834c2aaee87f4ef6922318aad0479e78073b564 f38a70acbceeaea942558adf28a03846b8b2be389f241ab38ce955e0230bb182 Loading...

	unknown	0 B	2023-03-07	2024-05-05
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-05 00:26:39 Times Seen37350305 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js	94 kB	2023-03-07	2024-05-04
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:53 Last Seen2024-05-04 23:21:48 Times Seen16565 Hash 3576a6e73c9dccdbbc4a2cf8ff544ad7 06e872300088b9ba8a08427d28ed0efcdf9c6ff5 61c6caebd23921741fb5ffe6603f16634fca9840c2bf56ac8201e9264d6daccf Loading...

HTTP Transactions (61)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

54.230.111.118

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
54.230.111.118:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: JPmTOt6WKlKmJVBEuFCpV09NwOM_YctShM5l2fQxCyP-Gav3K7FzJA==
Age: 30983

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
eabb7d9ffae717f7305d63c057755470
3b7f0baccfdbb8d9ffefa4a2215d4d6094be454a
ab48f17e54075e1ecf034278e82bcacd2e3689773186cc84fba9b79aac907294

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AB48F17E54075E1ECF034278E82BCACD2E3689773186CC84FBA9B79AAC907294"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6706
Expires: Thu, 06 Oct 2022 02:15:27 GMT
Date: Thu, 06 Oct 2022 00:23:41 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

54.230.111.14

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
54.230.111.14:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 05 Oct 2022 04:02:33 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QkItTpDHl1gAeccOgi9O1V3gvIJMdd5afA_qgOAQtXewroLXJL5UvQ==
age: 73269
X-Firefox-Spdy: h2

www.theurbanistsalmanac.com/

199.34.228.76

301 Moved Permanently

390 B

URL HTTP/1.1
www.theurbanistsalmanac.com/
IP
199.34.228.76:0
ASN
#27647 WEEBLY

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
390 B (390 bytes)
Hash
0b220243ada3ef82457fc9259e171df8
b49062edf5f83533f16ed18700b0ec5b04c02647
89391889dd2ee918e047ef9159e222ac8c5ee6cd5094d7d10cb3cb343a339220

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.theurbanistsalmanac.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Thu, 06 Oct 2022 00:23:41 GMT
Server: Apache
Set-Cookie: is_mobile=0; path=/; domain=www.theurbanistsalmanac.com
Vary: X-W-SSL,User-Agent
Location: https://www.theurbanistsalmanac.com/
X-Host: blu142.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 390
Keep-Alive: timeout=10, max=44
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 00:23:41 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

54.230.111.118

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
54.230.111.118:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Wed, 05 Oct 2022 23:29:33 GMT
Expires: Wed, 05 Oct 2022 23:55:14 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: cQ_N010TifFuBNBk_ZC7YTngfZa10ej0Ifv562jQjdJMOPjKWyOIXg==
Age: 3249

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
03668a99b947744d6de28b512349c42d
3c91440f907b2aad7c2b939cf3f7b1af80ebb52e
3db6257f0dfb376bb993178fcbe730be94b362a116ad06854f480bd2198714ff

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3DB6257F0DFB376BB993178FCBE730BE94B362A116AD06854F480BD2198714FF"
Last-Modified: Wed, 05 Oct 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21557
Expires: Thu, 06 Oct 2022 06:22:59 GMT
Date: Thu, 06 Oct 2022 00:23:42 GMT
Connection: keep-alive

www.theurbanistsalmanac.com/

199.34.228.76

200 OK

6.4 kB

URL HTTP/1.1
www.theurbanistsalmanac.com/
IP
199.34.228.76:0
ASN
#27647 WEEBLY

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1350), with CRLF, LF line terminators
Size
6.4 kB (6403 bytes)
Hash
d106686fb60ded521e741f027a6cad57
0b41337f616d30b0161206a75146494e52752243
765b15062d04bf74de2f1a2a8c66fae6ed510933e9912488741a1fac8a65b90e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.theurbanistsalmanac.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 00:23:42 GMT
Server: Apache
Vary: X-W-SSL,Accept-Encoding,User-Agent
Set-Cookie: is_mobile=0; path=/; domain=www.theurbanistsalmanac.com
language=en; expires=Thu, 20-Oct-2022 00:23:42 GMT; Max-Age=1209600; path=/
Cache-Control: private
ETag: W/"9557dcc033506a2c95440dbb17a0363f-gzip"
Content-Encoding: gzip
X-Host: blu135.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 6403
Keep-Alive: timeout=10, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
1561c6be7c89d1357a80d12de47b6e74
9a705277922ecca583c867af58b3efce099f83bd
e33dc034dbf4b3b627cd3c1af2d942e2ca5704ec9a4aad5c46ad39eb070e82ab

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2084
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 00:23:42 GMT
Last-Modified: Wed, 05 Oct 2022 23:48:59 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

cdn2.editmysite.com/css/social-icons.css?buildtime=1664550700

151.101.85.46

200 OK

1.6 kB

URL HTTP/2
cdn2.editmysite.com/css/social-icons.css?buildtime=1664550700
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (13080)
Size
1.6 kB (1640 bytes)
Hash
ee097cb0436521a4d20081537f7e8821
edf243e09f8bb91183f59f2b05d343cb545c6aea
db6f742cb2396c2c851058c3ed9e645f2a82e6718575143a71bb804bddd72c16

HTTP Headers

GET /css/social-icons.css?buildtime=1664550700 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theurbanistsalmanac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Fri, 30 Sep 2022 14:57:00 GMT
etag: W/"633703bc-3319"
expires: Fri, 14 Oct 2022 15:14:21 GMT
cache-control: max-age=1209600
x-host: grn117.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 06 Oct 2022 00:23:42 GMT
age: 464961
x-served-by: cache-sjc10083-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 2
x-timer: S1665015822.495662,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1640
X-Firefox-Spdy: h2

cdn2.editmysite.com/fonts/BlackJack/font.css?2

151.101.85.46

200 OK

133 B

URL HTTP/2
cdn2.editmysite.com/fonts/BlackJack/font.css?2
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text
Size
133 B (133 bytes)
Hash
82ad43627602da18a7743bf7e4e71b39
fcbc09d3aae24639c73b676d87d57269c58ac58a
3e2c780d3e67cd4354f9515484dee7c895b049054c1123eb7639fa8fe2293b2c

HTTP Headers

GET /fonts/BlackJack/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theurbanistsalmanac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Tue, 27 Sep 2022 12:21:32 GMT
etag: "6332eacc-a6"
expires: Tue, 11 Oct 2022 13:19:30 GMT
cache-control: max-age=1209600
x-host: grn14.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 06 Oct 2022 00:23:42 GMT
age: 731052
x-served-by: cache-sjc10072-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1925
x-timer: S1665015822.495963,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 133
X-Firefox-Spdy: h2

cdn2.editmysite.com/fonts/Open_Sans/font.css?2

151.101.85.46

200 OK

367 B

URL HTTP/2
cdn2.editmysite.com/fonts/Open_Sans/font.css?2
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text
Size
367 B (367 bytes)
Hash
52e94ffb1c814650bab35433c3034ac7
b42d636ac9b71805f751612208ddb34e93a6538d
fe0f821828a4b146e9b0aba7f9a4956a0caa14a2ac72541ced5ee1d2ed376462

HTTP Headers

GET /fonts/Open_Sans/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theurbanistsalmanac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Tue, 20 Sep 2022 22:41:03 GMT
etag: "632a417f-a2a"
expires: Mon, 10 Oct 2022 12:08:37 GMT
cache-control: max-age=1209600
x-host: blu14.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 06 Oct 2022 00:23:42 GMT
age: 821705
x-served-by: cache-sjc10025-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 585
x-timer: S1665015822.495947,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 367
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b0e8a79f3e381ab34a44278947ac7c7e
70d01e6fdc8565c661b6ae8c5a043ddf2da16530
885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 00:23:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn2.editmysite.com/fonts/Ubuntu/font.css?2

151.101.85.46

200 OK

367 B

URL HTTP/2
cdn2.editmysite.com/fonts/Ubuntu/font.css?2
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text
Size
367 B (367 bytes)
Hash
0691260b3915e0808cdf215c0af69964
c53afb7f66a5fd49ac34895a8d2879984fe1b170
c532011f0e2b1bbaf6f5ea1762ecbd5e8ccc6b5df824f73d0cbd18f8e3011856

HTTP Headers

GET /fonts/Ubuntu/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theurbanistsalmanac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Tue, 20 Sep 2022 22:41:04 GMT
etag: "632a4180-a18"
expires: Thu, 06 Oct 2022 18:07:35 GMT
cache-control: max-age=1209600
x-host: grn11.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 06 Oct 2022 00:23:42 GMT
age: 1145767
x-served-by: cache-sjc10073-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1665015822.495802,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 367
X-Firefox-Spdy: h2

cdn2.editmysite.com/fonts/Lato/font.css?2

151.101.85.46

200 OK

365 B

URL HTTP/2
cdn2.editmysite.com/fonts/Lato/font.css?2
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text
Size
365 B (365 bytes)
Hash
f6aec8855300407d88c732db5b97c3cf
a6a4c862f86744cbf3f5477e830c9f80ab986eaf
6f00c364d20ef3193c0b008183501117dec28fe7a538ccebdc4492f5c9b281d3

HTTP Headers

GET /fonts/Lato/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theurbanistsalmanac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Tue, 20 Sep 2022 22:41:03 GMT
etag: "632a417f-a0c"
expires: Thu, 06 Oct 2022 18:06:25 GMT
cache-control: max-age=1209600
x-host: grn129.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 06 Oct 2022 00:23:42 GMT
age: 1145837
x-served-by: cache-sjc10060-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1994, 534
x-timer: S1665015823.503590,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 365
X-Firefox-Spdy: h2

cdn2.editmysite.com/css/old/fancybox.css?1664550700

151.101.85.46

200 OK

1.2 kB

URL HTTP/2
cdn2.editmysite.com/css/old/fancybox.css?1664550700
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (3910)
Size
1.2 kB (1218 bytes)
Hash
b644e92258f4c7c0b4270047652d1e60
93734d52ee9e86a768159e514076051813c39cd9
29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907

HTTP Headers

GET /css/old/fancybox.css?1664550700 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theurbanistsalmanac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Fri, 30 Sep 2022 14:57:05 GMT
etag: "633703c1-f47"
expires: Fri, 14 Oct 2022 15:14:21 GMT
cache-control: max-age=1209600
x-host: grn116.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 06 Oct 2022 00:23:42 GMT
age: 464961
x-served-by: cache-sjc10025-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2
x-timer: S1665015823.503608,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1218
X-Firefox-Spdy: h2

cdn2.editmysite.com/fonts/Roboto/font.css?2

151.101.85.46

200 OK

366 B

URL HTTP/2
cdn2.editmysite.com/fonts/Roboto/font.css?2
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text
Size
366 B (366 bytes)
Hash
ba2db81c32601a480e96b58f590f1c0c
b78d1a152ee9c81d4aedadaf1bfbd8b05af5a1bd
0034dbc1fed209004e62d11bed894afa55df825bbc27c8357a3a1bbcd28f9e57

HTTP Headers

GET /fonts/Roboto/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theurbanistsalmanac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 03 Oct 2022 17:44:06 GMT
etag: "633b1f66-a18"
expires: Tue, 18 Oct 2022 09:26:31 GMT
cache-control: max-age=1209600
x-host: grn66.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 06 Oct 2022 00:23:42 GMT
age: 140230
x-served-by: cache-sjc10039-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 17, 1
x-timer: S1665015823.503578,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 366
X-Firefox-Spdy: h2

cdn2.editmysite.com/fonts/Cookie/font.css?2

151.101.85.46

200 OK

241 B

URL HTTP/2
cdn2.editmysite.com/fonts/Cookie/font.css?2
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text
Size
241 B (241 bytes)
Hash
1e96f83454a26c14abf9d311449fbc2c
8fb90d30bd0f8d349421da0aa774785335eab1e8
5724c6e2dc1270b97f15728db65c26096aa17a770755cf061f702fd56104059a

HTTP Headers

GET /fonts/Cookie/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theurbanistsalmanac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Tue, 20 Sep 2022 22:41:02 GMT
etag: "632a417e-1ad"
expires: Thu, 06 Oct 2022 18:08:59 GMT
cache-control: max-age=1209600
x-host: grn24.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 06 Oct 2022 00:23:42 GMT
age: 1145684
x-served-by: cache-sjc10067-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1665015823.503561,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 241
X-Firefox-Spdy: h2

cdn2.editmysite.com/js/site/main.js?buildTime=1664550700

151.101.85.46

200 OK

146 kB

URL HTTP/2
cdn2.editmysite.com/js/site/main.js?buildTime=1664550700
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (32147)
Size
146 kB (146400 bytes)
Hash
81b8673c5d3aa3ab8c0574f2a8f0e3b4
2e0661bc7907d9e2703b3347c3fec579f0aef5d6
0e981f4de6287406ce261fddea24aa05ded4b6a8c4c07283c363c1502071cf40

HTTP Headers

GET /js/site/main.js?buildTime=1664550700 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theurbanistsalmanac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Fri, 30 Sep 2022 14:57:22 GMT
etag: "633703d2-74804"
expires: Fri, 14 Oct 2022 15:14:19 GMT
cache-control: max-age=1209600
x-host: blu72.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 06 Oct 2022 00:23:42 GMT
age: 464962
x-served-by: cache-sjc10035-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2
x-timer: S1665015822.496201,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 146400
X-Firefox-Spdy: h2

cdn2.editmysite.com/css/sites.css?buildTime=1664550700

151.101.85.46

200 OK

30 kB

URL HTTP/2
cdn2.editmysite.com/css/sites.css?buildTime=1664550700
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65536), with no line terminators
Size
30 kB (29746 bytes)
Hash
d10158b22b553f723d99dc78eaee6390
80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6
939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e

HTTP Headers

GET /css/sites.css?buildTime=1664550700 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theurbanistsalmanac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Fri, 30 Sep 2022 14:57:00 GMT
etag: W/"633703bc-347ac"
expires: Fri, 14 Oct 2022 15:14:19 GMT
cache-control: max-age=1209600
x-host: grn41.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 06 Oct 2022 00:23:42 GMT
age: 464962
x-served-by: cache-sjc10060-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2
x-timer: S1665015822.499190,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 29746
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js

142.250.74.106

200 OK

34 kB

URL HTTP/2
ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (65483)
Size
34 kB (33593 bytes)
Hash
a54a444f20643b131117dc2112cca05f
074964746b12ff1d30f7656310d6154ae1cc98b5
aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830

HTTP Headers

GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theurbanistsalmanac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 06:15:30 GMT
expires: Sun, 01 Oct 2023 06:15:30 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 410892
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1664550700

151.101.85.46

200 OK

159 kB

URL HTTP/2
cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1664550700
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (32007)
Size
159 kB (158975 bytes)
Hash
c29a5e4fd4ee0d3b7cd0597f2b9b602b
bb134ed641467954f4a724167dc7ea56a03e7fa8
bf9850a7e6dd269898b78ecf07a34438bc300cad0bbb2d280e10ccadf81646b2

HTTP Headers

GET /js/site/main-customer-accounts-site.js?buildTime=1664550700 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theurbanistsalmanac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Fri, 30 Sep 2022 14:57:22 GMT
etag: "633703d2-8250f"
expires: Fri, 14 Oct 2022 15:14:19 GMT
cache-control: max-age=1209600
x-host: grn61.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 06 Oct 2022 00:23:42 GMT
age: 464964
x-served-by: cache-sjc10062-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 2
x-timer: S1665015822.496199,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 158975
X-Firefox-Spdy: h2

www.theurbanistsalmanac.com/files/main_style.css?1664778200

199.34.228.76

200 OK

6.2 kB

URL HTTP/1.1
www.theurbanistsalmanac.com/files/main_style.css?1664778200
IP
199.34.228.76:0
ASN
#27647 WEEBLY

File type
ASCII text, with very long lines (580)
Size
6.2 kB (6248 bytes)
Hash
c9a5911fd1ca1fb2693c37e6f0f0fd43
ba1a95af46ef37380ece163a7bc12a93c9c6cfc7
0cc323afe3de9c22e241aea5715c454c8ff1d5716fd7d3fa23be37d1fa997239

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /files/main_style.css?1664778200 HTTP/1.1
Host: www.theurbanistsalmanac.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theurbanistsalmanac.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 00:23:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: blu24.sf2p.intern.weebly.net
Content-Encoding: gzip

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b0e8a79f3e381ab34a44278947ac7c7e
70d01e6fdc8565c661b6ae8c5a043ddf2da16530
885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 00:23:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

push.services.mozilla.com/

54.186.209.73

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.186.209.73:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: sWiyX+v84MyynSn6EizR3A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 79PZ5GSGAmehUjjkE64NBz+VsWo=

cdn2.editmysite.com/fonts/Muli/font.css?2

151.101.85.46

404 Not Found

146 B

URL HTTP/2
cdn2.editmysite.com/fonts/Muli/font.css?2
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
146 B (146 bytes)
Hash
8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0

HTTP Headers

GET /fonts/Muli/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theurbanistsalmanac.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 404 Not Found
server: nginx
content-type: text/html
x-host: blu72.sf2p.intern.weebly.net
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Thu, 06 Oct 2022 00:23:42 GMT
x-served-by: cache-sjc10052-SJC, cache-bma1666-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1665015822.495813,VS0,VE167
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
content-length: 146
X-Firefox-Spdy: h2

www.theurbanistsalmanac.com/files/theme/custom.js?1556896837

199.34.228.76

200 OK

3.6 kB

URL HTTP/1.1
www.theurbanistsalmanac.com/files/theme/custom.js?1556896837
IP
199.34.228.76:0
ASN
#27647 WEEBLY

File type
ASCII text
Size
3.6 kB (3570 bytes)
Hash
d24263d4b8ce76abfd09aa4aa0043726
925c53bfd4776644611d596f2a09179d3548f131
c9d6966b939562e361181b6dac2c7f5a0c90b86a6e9a4b1286550b42c6413ccc

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /files/theme/custom.js?1556896837 HTTP/1.1
Host: www.theurbanistsalmanac.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theurbanistsalmanac.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 00:23:42 GMT
Content-Type: application/javascript
Content-Length: 3570
Connection: keep-alive
Last-Modified: Fri, 14 Jan 2022 03:08:41 GMT
x-rgw-object-type: Normal
ETag: "d24263d4b8ce76abfd09aa4aa0043726"
x-amz-request-id: tx0000000000000000444dd-006258b626-4d62951-las
X-Storage-Bucket: zc9d6
X-Storage-Object: c9d6966b939562e361181b6dac2c7f5a0c90b86a6e9a4b1286550b42c6413ccc
X-Host: grn23.sf2p.intern.weebly.net
Accept-Ranges: bytes

www.theurbanistsalmanac.com/files/templateArtifacts.js?1664778200

199.34.228.76

200 OK

1.6 kB

URL HTTP/1.1
www.theurbanistsalmanac.com/files/templateArtifacts.js?1664778200
IP
199.34.228.76:0
ASN
#27647 WEEBLY

File type
exported SGML document, ASCII text, with very long lines (1630)
Size
1.6 kB (1632 bytes)
Hash
e0836e8203c22b8e4086f27e91e86f5a
28235e77f5a895c8cd411aff4a6ef4e6f7d419c2
32dbc4a2eeca39a57d35670f00e2cf59e03c279521e47506c56c5c36d8b664b6

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /files/templateArtifacts.js?1664778200 HTTP/1.1
Host: www.theurbanistsalmanac.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theurbanistsalmanac.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 00:23:43 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: grn42.sf2p.intern.weebly.net
Content-Encoding: gzip

www.theurbanistsalmanac.com/files/theme/mobile.js?1556896837

199.34.228.76

200 OK

4.8 kB

URL HTTP/1.1
www.theurbanistsalmanac.com/files/theme/mobile.js?1556896837
IP
199.34.228.76:0
ASN
#27647 WEEBLY

File type
ASCII text
Size
4.8 kB (4781 bytes)
Hash
e76dbf2dc9069819fe669f6e7eb6793d
1705370ddfd8d14d3c6816301152f5395e764c95
f7d96b0b63053033bdb8f79acee80fa257f27cd5ac57b5c0d1c97a8dbec819c1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /files/theme/mobile.js?1556896837 HTTP/1.1
Host: www.theurbanistsalmanac.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theurbanistsalmanac.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 00:23:43 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 13 Jan 2022 21:45:37 GMT
x-rgw-object-type: Normal
ETag: W/"7bd55d32cb40c471784fe696916309b4"
x-amz-request-id: tx000000000000001b209c2-0062847ef6-b9fbc77-sfo1
X-Storage-Bucket: zcbb4
X-Storage-Object: cbb43d8535adb209382c62e4392774920b5b5049f50e831f27d62f1de7ac2e38
X-Host: blu99.sf2p.intern.weebly.net
Content-Encoding: gzip

cdn2.editmysite.com/fonts/Cookie/regular.woff2

151.101.85.46

200 OK

14 kB

URL HTTP/2
cdn2.editmysite.com/fonts/Cookie/regular.woff2
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 14456, version 1.0\012- data
Size
14 kB (14456 bytes)
Hash
7a93cfe157bf03fdac08d381c241b458
6c502bd8dd6045e41c80b6de80341760a83130a3
4e8b3c170321fd6a38ad24b7df1aebf59b19d9f07fada7beef10f7e5664b13f9

HTTP Headers

GET /fonts/Cookie/regular.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.theurbanistsalmanac.com
Connection: keep-alive
Referer: https://cdn2.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: font/woff2
last-modified: Tue, 20 Sep 2022 22:41:02 GMT
etag: "632a417e-3878"
expires: Thu, 06 Oct 2022 18:07:24 GMT
cache-control: max-age=1209600
x-host: grn136.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 06 Oct 2022 00:23:43 GMT
age: 1145778
x-served-by: cache-sjc10036-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 1
x-timer: S1665015823.192986,VS0,VE1
access-control-allow-origin: *
content-length: 14456
X-Firefox-Spdy: h2

cdn2.editmysite.com/fonts/Open_Sans/regular.woff2

151.101.85.46

200 OK

17 kB

URL HTTP/2
cdn2.editmysite.com/fonts/Open_Sans/regular.woff2
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Size
17 kB (16740 bytes)
Hash
e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681

HTTP Headers

GET /fonts/Open_Sans/regular.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.theurbanistsalmanac.com
Connection: keep-alive
Referer: https://cdn2.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: font/woff2
last-modified: Tue, 20 Sep 2022 22:41:03 GMT
etag: "632a417f-4164"
expires: Thu, 06 Oct 2022 18:06:47 GMT
cache-control: max-age=1209600
x-host: grn136.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 06 Oct 2022 00:23:43 GMT
age: 1145816
x-served-by: cache-sjc10057-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 94
x-timer: S1665015823.193663,VS0,VE0
access-control-allow-origin: *
content-length: 16740
X-Firefox-Spdy: h2

cdn2.editmysite.com/fonts/Lato/bold.woff2

151.101.85.46

200 OK

23 kB

URL HTTP/2
cdn2.editmysite.com/fonts/Lato/bold.woff2
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Size
23 kB (23040 bytes)
Hash
de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49

HTTP Headers

GET /fonts/Lato/bold.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.theurbanistsalmanac.com
Connection: keep-alive
Referer: https://cdn2.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: font/woff2
last-modified: Tue, 20 Sep 2022 22:41:03 GMT
etag: "632a417f-5a00"
expires: Thu, 06 Oct 2022 18:07:09 GMT
cache-control: max-age=1209600
x-host: grn30.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 06 Oct 2022 00:23:43 GMT
age: 1145793
x-served-by: cache-sjc10062-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 265
x-timer: S1665015823.196252,VS0,VE0
access-control-allow-origin: *
content-length: 23040
X-Firefox-Spdy: h2

cdn2.editmysite.com/fonts/Ubuntu/bold.woff2

151.101.85.46

200 OK

30 kB

URL HTTP/2
cdn2.editmysite.com/fonts/Ubuntu/bold.woff2
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 29752, version 1.0\012- data
Size
30 kB (29752 bytes)
Hash
ab1fc8621287e4ea9319a3136812cf80
fb4ed2e52e2a8d7ac50a7618a0c2ea5507a24ef3
7c00752ce82d6abaed0b9766d35b906b16675facdbe24115b410d1fab975effa

HTTP Headers

GET /fonts/Ubuntu/bold.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.theurbanistsalmanac.com
Connection: keep-alive
Referer: https://cdn2.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: font/woff2
last-modified: Tue, 20 Sep 2022 22:41:04 GMT
etag: "632a4180-7438"
expires: Thu, 06 Oct 2022 18:12:17 GMT
cache-control: max-age=1209600
x-host: grn83.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 06 Oct 2022 00:23:43 GMT
age: 1145485
x-served-by: cache-sjc10050-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1665015823.197363,VS0,VE1
access-control-allow-origin: *
content-length: 29752
X-Firefox-Spdy: h2

cdn2.editmysite.com/fonts/Ubuntu/regular.woff2

151.101.85.46

200 OK

35 kB

URL HTTP/2
cdn2.editmysite.com/fonts/Ubuntu/regular.woff2
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 34852, version 1.0\012- data
Size
35 kB (34852 bytes)
Hash
0e8eefb4549a2edf26c560cb9845952e
8d0b1718aacad934fd0043c87cbc54aa091396bf
7f653b3ce9d3277457fc6da4edb246ae2f6c913f088c42dcb8cd2e96267aa21a

HTTP Headers

GET /fonts/Ubuntu/regular.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.theurbanistsalmanac.com
Connection: keep-alive
Referer: https://cdn2.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: font/woff2
last-modified: Tue, 20 Sep 2022 22:41:04 GMT
etag: "632a4180-8824"
expires: Tue, 11 Oct 2022 09:26:07 GMT
cache-control: max-age=1209600
x-host: grn106.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 06 Oct 2022 00:23:43 GMT
age: 745056
x-served-by: cache-sjc10079-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1665015823.200620,VS0,VE1
access-control-allow-origin: *
content-length: 34852
X-Firefox-Spdy: h2

cdn2.editmysite.com/fonts/Lato/regular.woff2

151.101.85.46

200 OK

24 kB

URL HTTP/2
cdn2.editmysite.com/fonts/Lato/regular.woff2
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Size
24 kB (23580 bytes)
Hash
e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

GET /fonts/Lato/regular.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.theurbanistsalmanac.com
Connection: keep-alive
Referer: https://cdn2.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: font/woff2
last-modified: Tue, 20 Sep 2022 22:41:03 GMT
etag: "632a417f-5c1c"
expires: Thu, 06 Oct 2022 18:06:25 GMT
cache-control: max-age=1209600
x-host: blu72.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 06 Oct 2022 00:23:43 GMT
age: 1145838
x-served-by: cache-sjc10064-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 24
x-timer: S1665015823.202031,VS0,VE0
access-control-allow-origin: *
content-length: 23580
X-Firefox-Spdy: h2

www.theurbanistsalmanac.com/files/theme/plugins.js?1556896837

199.34.228.76

200 OK

19 kB

URL HTTP/1.1
www.theurbanistsalmanac.com/files/theme/plugins.js?1556896837
IP
199.34.228.76:0
ASN
#27647 WEEBLY

File type
ASCII text
Size
19 kB (18996 bytes)
Hash
80b977ddf918a1ff63f2350225772ca6
6fbc6b952295c565f67ea251eeb7a4c0cccd1c6a
ca0e7374161e8f72ba8d049e4392e8785c6038763b1cba40726d15a87557d38d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /files/theme/plugins.js?1556896837 HTTP/1.1
Host: www.theurbanistsalmanac.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theurbanistsalmanac.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 00:23:43 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 02 Apr 2022 08:42:51 GMT
x-rgw-object-type: Normal
ETag: W/"4cf5477130f7311a5f0af1ecaf425ee4"
x-amz-request-id: tx000000000000001ba6869-006284804f-b9fbc64-sfo1
X-Storage-Bucket: zb83c
X-Storage-Object: b83c1bdb86ae601a4a54799c364306dd922e98d5fddc177d404611bf1a2706f3
X-Host: blu86.sf2p.intern.weebly.net
Content-Encoding: gzip

www.theurbanistsalmanac.com/uploads/1/4/3/1/143147364/text-1663089698954.png

199.34.228.76

200 OK

16 kB

URL HTTP/1.1
www.theurbanistsalmanac.com/uploads/1/4/3/1/143147364/text-1663089698954.png
IP
199.34.228.76:0
ASN
#27647 WEEBLY

File type
PNG image data, 1116 x 98, 8-bit gray+alpha, non-interlaced\012- data
Size
16 kB (16051 bytes)
Hash
6bf5aa4d2496bbed1b170e9f6ffbb0c2
011bf65d4b718432d669fc8e5ed17ec5fcca8b86
87998e6a7262772f607b109f5c060244236c44b99cdab67ac4af575052df7eeb

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /uploads/1/4/3/1/143147364/text-1663089698954.png HTTP/1.1
Host: www.theurbanistsalmanac.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theurbanistsalmanac.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 00:23:43 GMT
Content-Type: image/png
Content-Length: 16051
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 18:26:20 GMT
x-rgw-object-type: Normal
ETag: "6bf5aa4d2496bbed1b170e9f6ffbb0c2"
x-amz-request-id: tx000000000000011124f01-00633d139b-c67eadd-sfo1
X-Storage-Bucket: z8799
X-Storage-Object: 87998e6a7262772f607b109f5c060244236c44b99cdab67ac4af575052df7eeb
X-Host: blu24.sf2p.intern.weebly.net
Accept-Ranges: bytes

www.theurbanistsalmanac.com/uploads/1/4/3/1/143147364/background-images/1637653434.png

199.34.228.76

200 OK

5.8 kB

URL HTTP/1.1
www.theurbanistsalmanac.com/uploads/1/4/3/1/143147364/background-images/1637653434.png
IP
199.34.228.76:0
ASN
#27647 WEEBLY

File type
PNG image data, 2000 x 600, 8-bit/color RGB, non-interlaced\012- data
Size
5.8 kB (5847 bytes)
Hash
07fc20a81841571cec73e7312428dd61
5833f7547f47d7ec230c791109cdfa6db1a3e1f1
5d7225611bd2eb9e03a24b05a2dd1908920b1d8a60a96e11adcb589f6cb22c57

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /uploads/1/4/3/1/143147364/background-images/1637653434.png HTTP/1.1
Host: www.theurbanistsalmanac.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theurbanistsalmanac.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 00:23:43 GMT
Content-Type: image/png; charset=binary
Content-Length: 5847
Connection: keep-alive
Last-Modified: Thu, 01 Apr 2021 01:28:00 GMT
x-rgw-object-type: Normal
ETag: "07fc20a81841571cec73e7312428dd61"
x-amz-request-id: tx00000000000000c26916c-0061b81f98-a9f1ce7-sfo1
X-Storage-Bucket: z5d72
X-Storage-Object: 5d7225611bd2eb9e03a24b05a2dd1908920b1d8a60a96e11adcb589f6cb22c57
X-Host: blu34.sf2p.intern.weebly.net
Accept-Ranges: bytes

cdn2.editmysite.com/js/wsnbn/snowday262.js

151.101.85.46

200 OK

26 kB

URL HTTP/2
cdn2.editmysite.com/js/wsnbn/snowday262.js
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (2512)
Size
26 kB (25752 bytes)
Hash
234327230add9a5a5d61a48829ea4565
7966cc0e4bd76f88ff193c8a99a067de804b7129
bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75

HTTP Headers

GET /js/wsnbn/snowday262.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theurbanistsalmanac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Wed, 28 Sep 2022 21:45:07 GMT
etag: "6334c063-124fe"
expires: Thu, 13 Oct 2022 08:38:41 GMT
cache-control: max-age=1209600
x-host: blu29.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 06 Oct 2022 00:23:43 GMT
age: 575101
x-served-by: cache-sjc10077-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 6444
x-timer: S1665015823.364262,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 25752
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f763a685d14b05b6ced9792151da30b8
b25be5359245be857ffa1bddcb197cb771a36a45
505ad6dc6417d58207f0d68862c4423f4611660ccc6afe165fd3ec2ccb1c893d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 00:23:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ssl.google-analytics.com/ga.js

142.250.74.40

200 OK

17 kB

URL HTTP/2
ssl.google-analytics.com/ga.js
IP
142.250.74.40:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1305)
Size
17 kB (17168 bytes)
Hash
01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d

HTTP Headers

GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theurbanistsalmanac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Wed, 05 Oct 2022 22:29:22 GMT
expires: Thu, 06 Oct 2022 00:29:22 GMT
cache-control: public, max-age=7200
age: 6861
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f763a685d14b05b6ced9792151da30b8
b25be5359245be857ffa1bddcb197cb771a36a45
505ad6dc6417d58207f0d68862c4423f4611660ccc6afe165fd3ec2ccb1c893d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 00:23:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.theurbanistsalmanac.com/favicon.ico

199.34.228.76

200 OK

4.3 kB

URL HTTP/1.1
www.theurbanistsalmanac.com/favicon.ico
IP
199.34.228.76:0
ASN
#27647 WEEBLY

File type
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Size
4.3 kB (4286 bytes)
Hash
4d27526198ac873ccec96935198e0fb9
b98d8b73ad6a0f7477c3397561b4aab37bf262aa
40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.theurbanistsalmanac.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theurbanistsalmanac.com/
Cookie: is_mobile=0; language=en; _snow_ses.9169=*; _snow_id.9169=5f3e3c92-939a-4a26-b15a-82005eb121ea.1665015823.1.1665015823.1665015823.b1a21766-9680-4d0c-8f74-68c588e66df5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 00:23:43 GMT
Content-Type: image/x-icon
Content-Length: 4286
Connection: keep-alive
Last-Modified: Fri, 24 Sep 2021 21:48:12 GMT
x-rgw-object-type: Normal
ETag: "4d27526198ac873ccec96935198e0fb9"
x-amz-request-id: tx000000000000001ad46ef-0062847663-b9fbc7f-sfo1
X-Storage-Bucket: z40a2
X-Storage-Object: 40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
X-Host: grn61.sf2p.intern.weebly.net
Accept-Ranges: bytes

www.theurbanistsalmanac.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]

199.34.228.76

200 OK

348 B

URL HTTP/1.1
www.theurbanistsalmanac.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
IP
199.34.228.76:0
ASN
#27647 WEEBLY

File type
JSON data\012- , ASCII text, with very long lines (348), with no line terminators
Size
348 B (348 bytes)
Hash
a944dd688c99d2901d6719be713271c0
4f5454d5d434829baf46671638610791758725d9
adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1
Host: www.theurbanistsalmanac.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: https://www.theurbanistsalmanac.com
Connection: keep-alive
Referer: https://www.theurbanistsalmanac.com/
Cookie: is_mobile=0; language=en; _snow_ses.9169=*; _snow_id.9169=5f3e3c92-939a-4a26-b15a-82005eb121ea.1665015823.1.1665015823.1665015823.b1a21766-9680-4d0c-8f74-68c588e66df5
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 00:23:43 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn99.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 348
Keep-Alive: timeout=10, max=68
Connection: Keep-Alive
Content-Type: application/json

ocsp.sca1b.amazontrust.com/

54.230.245.118

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.118:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
64f75285a1c968027510a5201a9c24ce
95292b421f917a3754796753e50765c37d729c1b
b6bf273545d1eb6e947b35f85f23831456026d6fde5275661a8caa992893a81e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 00:23:43 GMT
Last-Modified: Wed, 05 Oct 2022 22:56:03 GMT
Server: ECS (bsa/EB14)
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: B8m1pYvlzYZCusE51zgQ5vYlxPS5oX4ybsCCV_QwHkd5qklefpAJTA==
Age: 5260

ocsp.sca1b.amazontrust.com/

54.230.245.118

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.118:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
64f75285a1c968027510a5201a9c24ce
95292b421f917a3754796753e50765c37d729c1b
b6bf273545d1eb6e947b35f85f23831456026d6fde5275661a8caa992893a81e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 06 Oct 2022 00:23:43 GMT
Last-Modified: Wed, 05 Oct 2022 23:43:53 GMT
Server: ECS (dcb/7F82)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Xo85vQN7lHH9kJmKu66f2KUjxHvZUaUiBkNTFS3eT8lFU_URPkercQ==
Age: 2390

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12637
Expires: Thu, 06 Oct 2022 03:54:20 GMT
Date: Thu, 06 Oct 2022 00:23:43 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12637
Expires: Thu, 06 Oct 2022 03:54:20 GMT
Date: Thu, 06 Oct 2022 00:23:43 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12637
Expires: Thu, 06 Oct 2022 03:54:20 GMT
Date: Thu, 06 Oct 2022 00:23:43 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
55331c1dc7e7ebbf456220986278469d
d69a62ee47b03fde68db666512417dda2ae5ad13
a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12637
Expires: Thu, 06 Oct 2022 03:54:20 GMT
Date: Thu, 06 Oct 2022 00:23:43 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10158 bytes)
Hash
4fc2ddd86450d64d3fb659ab4e78be58
bbe71936b78a8c34d03ab87948dc840b35c6948f
84a760397a5912bd05f61bc8a953c13a88a677e2d17fbbf74bdf7d7ff4d3942f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10158
x-amzn-requestid: def1fc7e-8008-466f-9271-20fa1ab0fa5a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZaqZCH7doAMFcPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a8aa0-7fd2fb1249366f2277d719d6;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 07:09:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: aeOU8fGkf5uHuYZ79k17EzxiFnwm0_z7SeZJElgwECzRyhR2N_SYJA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 04:06:09 GMT
age: 73054
etag: "bbe71936b78a8c34d03ab87948dc840b35c6948f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4aaf2d0a-832d-4fe3-85f6-f6f55993a48e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.2 kB (8192 bytes)
Hash
83c37f49b9fb5eeb70a244a759a4ce0d
f2f4664206335b080db6a5608b463945e89de346
cbb8e24144c2118f3e2f2f9db09f2b4d582bca01da68fc2fb29b4d8a6df4dab5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4aaf2d0a-832d-4fe3-85f6-f6f55993a48e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8192
x-amzn-requestid: b61498b4-22cd-4860-98e0-c7aad18a4d96
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO6sGTXoAMFZpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df844-23d0f24731d3bfab253f2677;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: oRlpmDZZ8uLu-tcn-j2H5XMAxfUCtHkm_xq9jUlROKsPgth0Gu-ugg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 ece5d4a731ece5ff46c564ab2b946ede.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:37:06 GMT
age: 9997
etag: "f2f4664206335b080db6a5608b463945e89de346"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbffd8689-87c3-4efb-b880-4109e3dc9294.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.9 kB (7919 bytes)
Hash
72ad6f9b79e7a3d11e3ace6b0e969614
a9cd62230d4aabfcc2e8b2494e687d854254113e
1d59cd22b3316da6f1d44076089ba983faed5327d174ddb3cb3d58f487ccae51

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbffd8689-87c3-4efb-b880-4109e3dc9294.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7919
x-amzn-requestid: 01497827-07e5-4129-abf2-120b00eed8c0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjPs5F1LoAMF8Ww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df985-4b0c175142a6ace915d5e5d2;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:39:17 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: QElSCxuAj2dM9Psp2_fPTSi1goaNKkylf7D9ITOplorOFLIGIV332g==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 d8d9c12d1a621129f4bc739038e7c72e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:52:46 GMT
age: 9057
etag: "a9cd62230d4aabfcc2e8b2494e687d854254113e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d3175ca-da8b-4a6f-a315-9f1d92299891.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.7 kB (6693 bytes)
Hash
57f90a95d91632baf3b89d7b3b46361f
0f37ee870c8855919900c99204ffffe736548a3f
a3449e46854b90fdcda4a0ba83b4b0892a7888b17211d814c0db930116bb9a32

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d3175ca-da8b-4a6f-a315-9f1d92299891.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6693
x-amzn-requestid: 1531f482-cdf5-4506-ba1c-18a66173457b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjQNxF45oAMFxJQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfa57-28e8e572281d5f110c26dcf1;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:42:47 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: EimZGdrj091jlG994mCq23siOMuN9SVgRGfKRMGeZW_nifQS_yUXaA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d2575afea3774df33dcf5e5ff475025e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:58:48 GMT
etag: "0f37ee870c8855919900c99204ffffe736548a3f"
content-type: image/jpeg
age: 8695
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F585959dc-efc9-453b-bdef-59b834c43800.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6363 bytes)
Hash
fa6c2f48dc4f2d67c8918e35396e901f
4897d9af4414d827043507c90b992d5c8d8344f1
0b287a86cf539a00b0b0c839c07f0453796ed71b571664bb2ea64363198bd633

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F585959dc-efc9-453b-bdef-59b834c43800.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6363
x-amzn-requestid: d0de2bff-da5b-487b-9058-6f33b35b594d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO8FHWAIAMFbUA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df84d-736ce6cb2fc072a22e65a803;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:34:05 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: Rlg9tzQaVbL_qon437VaTKEpDWQdmrMPkXXSUu8xZRMeRBmnmx9n6w==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 c21a0d27ceec21e266c9f962d0349438.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 22:58:20 GMT
age: 5123
etag: "4897d9af4414d827043507c90b992d5c8d8344f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6646df0-31a7-4c5a-8148-5fe9e20f3baf.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.3 kB (9338 bytes)
Hash
b5958f828ccc16a41b22d9ae812bccfc
f350f295dd70152712162d4be5b3b5f0d12cde57
230d7d8e570e433d18ec53b6ca114e2a206e8c265c0c66d73388c49db5c91c64

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6646df0-31a7-4c5a-8148-5fe9e20f3baf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9338
x-amzn-requestid: 4ca2eb3c-eba4-43a4-b79a-89546da3d660
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjQBfG7soAMF9cw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfa09-1b5bd53052718f620b920a00;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:41:29 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 6pHftE0vUMqrH2NR_7DzrWlnD0yal7BkAfee7UeVG7DKZNEAYRa9HQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 d1d67b07408bba8c682597d8303642e2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 22:03:23 GMT
age: 8420
etag: "f350f295dd70152712162d4be5b3b5f0d12cde57"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ec.editmysite.com/com.snowplowanalytics.snowplow/tp2

35.82.13.103

200 OK

0 B

URL HTTP/2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP
35.82.13.103:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.theurbanistsalmanac.com/
Origin: https://www.theurbanistsalmanac.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 06 Oct 2022 00:23:44 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://www.theurbanistsalmanac.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 5
X-Firefox-Spdy: h2

www.theurbanistsalmanac.com/uploads/1/4/3/1/143147364/background-images/464515970.jpeg

199.34.228.76

200 OK

554 kB

URL HTTP/1.1
www.theurbanistsalmanac.com/uploads/1/4/3/1/143147364/background-images/464515970.jpeg
IP
199.34.228.76:0
ASN
#27647 WEEBLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2000x1493, components 3\012- data
Size
554 kB (553819 bytes)
Hash
9e8fc3171e3806c290ee6220f23f618c
e9449edac3e5d4ba93b550f0f1b5339ab0d4f522
e0951ed63466b99760d13477acb38621ec2c343b1f09fb62d06723dbf8009bda

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /uploads/1/4/3/1/143147364/background-images/464515970.jpeg HTTP/1.1
Host: www.theurbanistsalmanac.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theurbanistsalmanac.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 00:23:43 GMT
Content-Type: image/jpeg
Content-Length: 553819
Connection: keep-alive
Last-Modified: Mon, 19 Sep 2022 04:17:20 GMT
x-rgw-object-type: Normal
ETag: "9e8fc3171e3806c290ee6220f23f618c"
x-amz-request-id: tx000000000000012a1b00c-00633e200f-c669cc6-sfo1
X-Storage-Bucket: ze095
X-Storage-Object: e0951ed63466b99760d13477acb38621ec2c343b1f09fb62d06723dbf8009bda
X-Host: blu33.sf2p.intern.weebly.net
Accept-Ranges: bytes, bytes

ec.editmysite.com/com.snowplowanalytics.snowplow/tp2

35.82.13.103

200 OK

2 B

URL HTTP/2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP
35.82.13.103:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df

HTTP Headers

POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1798
Origin: https://www.theurbanistsalmanac.com
Connection: keep-alive
Referer: https://www.theurbanistsalmanac.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 00:23:44 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=83b2a796-9a6a-48c0-a0d0-55b96b70fd13; Expires=Fri, 06 Oct 2023 00:23:44 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://www.theurbanistsalmanac.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbf3cf74b-e020-403d-b52e-28fa9422685f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.4 kB (7380 bytes)
Hash
3222f99612aade6e826abd0777d174ab
87a07ee9edaede64877f4fb54343aacd5aa01fcf
18f2f9a9fa80180dda5cab4593580eff2345829c3a90304437987ce603b8f4c1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbf3cf74b-e020-403d-b52e-28fa9422685f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 7380
x-amzn-requestid: c07cda09-37f4-4ec9-b1e9-93c69a1bc591
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjPuoGvsIAMFpUg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df990-1a7a7cdf117520d30028adb4;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:39:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: QGIXuZufYmPU4vyoTeV6pOvqBuuFZPVcolaS4REnc_ZcqYGoDQQZ2A==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 22:08:05 GMT
age: 8145
etag: "87a07ee9edaede64877f4fb54343aacd5aa01fcf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1664550700&

151.101.85.46

200 OK

0 B

URL HTTP/2
cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1664550700&
IP
151.101.85.46:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/lang/en/stl.js?buildTime=1664550700& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.theurbanistsalmanac.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Fri, 30 Sep 2022 14:56:02 GMT
etag: "63370382-2c5f8"
expires: Fri, 14 Oct 2022 15:14:20 GMT
cache-control: max-age=1209600
x-host: grn99.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 06 Oct 2022 00:23:42 GMT
age: 464962
x-served-by: cache-sjc10071-SJC, cache-bma1666-BMA
x-cache: HIT, HIT
x-cache-hits: 1997, 13
x-timer: S1665015822.496215,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 32934
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (22)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations