Overview

URLsemegadate.digital/redpropel/index.html?cep=BbnwhQNtpTx5GpDpKfcxmTSDFt-m0iUZpoEHqBdhHZlAP_maXml8X8ZGIA41-DdtEe6CLtEsc9TfrUPbhtcOLmPTeN9enkRm3fSU3ZNlQXOYekqJjcZ7yEsR5XZ5bKH-Z6zi071O1tvDISeQJHQVyLSDTiyttK6elrPgzCPqoHqFMdaGlJsMqip4I-RTLNbtgJ6cUpjl-Otwbk8GlM31cxnEAaE4oa5vTN80HETvTyf2h2K3Z0xtxIPwz_Pav4fpLBHY24IKFy_OKXohkyiBhKwRUbqJimSlAFCJPpWNxaVbOH-nS6UVxAn_scTgtqX66I2zwsmojjsqV_5SlNDimTL_PgUrDqIZX3GR-G13UewvAtSxher5Skt8ILnDTqVn&lptoken=161b646513be82305131
IP 217.69.13.14 (France)
ASN#20473 AS-CHOOPA
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-09-27 06:41:18 UTC
StatusLoading report..
IDS alerts0
Blocklist alert2
urlquery alerts No alerts detected
Tags None

Domain Summary (10)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-27 04:13:22 UTC 34.160.144.191
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-26 04:28:07 UTC 34.117.237.239
semegadate.digital (7) 0 2022-05-06 17:27:39 UTC 2022-09-26 22:19:56 UTC 217.69.13.14 Unknown ranking
r3.o.lencr.org (4) 344 2020-12-02 08:52:13 UTC 2022-09-27 04:12:16 UTC 23.36.77.32
money.topmelon.digital (2) 0 2022-04-11 12:20:45 UTC 2022-09-26 22:56:17 UTC 67.212.184.146 Unknown ranking
ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-27 04:15:00 UTC 93.184.220.29
push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-27 05:14:54 UTC 54.148.190.4
img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-27 04:53:17 UTC 34.120.237.76
firefox.settings.services.mozilla.com (2) 867 2020-05-28 17:26:30 UTC 2022-09-27 05:44:40 UTC 143.204.55.27
cdn-aimi.akamaized.net (1) 0 2018-02-06 10:47:39 UTC 2022-09-25 22:59:41 UTC 23.36.76.186 Domain (akamaized.net) ranked at: 280

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-27 2 semegadate.digital/redpropel/js/1284dbb30021b442237c18701edddf0f.js Phishing
2022-09-27 2 semegadate.digital/sw.js?v=1664260866444 Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 217.69.13.14
Date UQ / IDS / BL URL IP
2023-01-30 10:47:24 +0000 0 - 0 - 12 ke-lucky-days.club/alwheelprop/index.html?bro (...) 217.69.13.14
2023-01-30 04:17:08 +0000 1 - 0 - 10 mzelon.digital/alwheelpropmz/index.html?brows (...) 217.69.13.14
2023-01-29 21:58:08 +0000 1 - 0 - 2 brandiprize.digital/alwheelpropsendbr/index.html 217.69.13.14
2023-01-29 14:13:20 +0000 1 - 0 - 2 cmoprize.digital/alwheelpropcm/index.html 217.69.13.14
2023-01-29 14:12:33 +0000 0 - 0 - 2 peprizes4u.digital/pepropbbpro/index.html 217.69.13.14


Last 5 reports on ASN: AS-CHOOPA
Date UQ / IDS / BL URL IP
2023-01-30 11:21:54 +0000 0 - 3 - 0 epics.top/uploads/launcher/Epic_Swat4_Launche (...) 104.238.159.80
2023-01-30 11:21:50 +0000 0 - 5 - 0 epics.top/uploads/launcher/Epic_Swat4_Launche (...) 104.238.159.80
2023-01-30 11:21:41 +0000 0 - 5 - 0 epics.top/uploads/launcher/Epic_Swat4_Launcher.exe 104.238.159.80
2023-01-30 11:21:38 +0000 0 - 5 - 0 epics.top/uploads/launcher/Epic_Swat4_Launche (...) 104.238.159.80
2023-01-30 11:21:34 +0000 0 - 5 - 0 epics.top/uploads/launcher/Epic_Swat4_Launche (...) 104.238.159.80


Last 5 reports on domain: semegadate.digital
Date UQ / IDS / BL URL IP
2023-01-28 11:13:29 +0000 1 - 0 - 10 semegadate.digital/alwheelpropsendse/index.ht (...) 217.69.13.14
2023-01-20 20:12:58 +0000 0 - 0 - 1 semegadate.digital/redpropel/index.html?cep=B (...) 217.69.13.14
2023-01-19 00:10:17 +0000 1 - 0 - 10 semegadate.digital/alwheeelpropse/index.html? (...) 217.69.13.14
2023-01-17 09:59:59 +0000 0 - 0 - 2 semegadate.digital/redpropel/index.html?cep=5 (...) 217.69.13.14
2023-01-17 08:04:02 +0000 0 - 0 - 2 semegadate.digital/redpropel/index.html?cep=0 (...) 217.69.13.14


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2023-01-20 20:12:58 +0000 0 - 0 - 1 semegadate.digital/redpropel/index.html?cep=B (...) 217.69.13.14
2023-01-18 12:02:32 +0000 0 - 0 - 3 track.supercosmo.xyz/dbe3f53b-1aff-4a8d-978d- (...) 18.192.108.151
2023-01-17 09:59:59 +0000 0 - 0 - 2 semegadate.digital/redpropel/index.html?cep=5 (...) 217.69.13.14
2023-01-17 08:04:02 +0000 0 - 0 - 2 semegadate.digital/redpropel/index.html?cep=0 (...) 217.69.13.14
2023-01-12 04:03:48 +0000 0 - 0 - 2 semegadate.digital/redpropel/index.html?cep=Y (...) 217.69.13.14

JavaScript

Executed Scripts (8)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (26)


Request Response
                                        
                                            GET /redpropel/index.html?cep=BbnwhQNtpTx5GpDpKfcxmTSDFt-m0iUZpoEHqBdhHZlAP_maXml8X8ZGIA41-DdtEe6CLtEsc9TfrUPbhtcOLmPTeN9enkRm3fSU3ZNlQXOYekqJjcZ7yEsR5XZ5bKH-Z6zi071O1tvDISeQJHQVyLSDTiyttK6elrPgzCPqoHqFMdaGlJsMqip4I-RTLNbtgJ6cUpjl-Otwbk8GlM31cxnEAaE4oa5vTN80HETvTyf2h2K3Z0xtxIPwz_Pav4fpLBHY24IKFy_OKXohkyiBhKwRUbqJimSlAFCJPpWNxaVbOH-nS6UVxAn_scTgtqX66I2zwsmojjsqV_5SlNDimTL_PgUrDqIZX3GR-G13UewvAtSxher5Skt8ILnDTqVn&lptoken=161b646513be82305131 HTTP/1.1 
Host: semegadate.digital
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         217.69.13.14
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Server: nginx
Date: Tue, 27 Sep 2022 06:41:07 GMT
Content-Length: 852
Connection: keep-alive
Location: https://semegadate.digital/redpropel/index.html?cep=BbnwhQNtpTx5GpDpKfcxmTSDFt-m0iUZpoEHqBdhHZlAP_maXml8X8ZGIA41-DdtEe6CLtEsc9TfrUPbhtcOLmPTeN9enkRm3fSU3ZNlQXOYekqJjcZ7yEsR5XZ5bKH-Z6zi071O1tvDISeQJHQVyLSDTiyttK6elrPgzCPqoHqFMdaGlJsMqip4I-RTLNbtgJ6cUpjl-Otwbk8GlM31cxnEAaE4oa5vTN80HETvTyf2h2K3Z0xtxIPwz_Pav4fpLBHY24IKFy_OKXohkyiBhKwRUbqJimSlAFCJPpWNxaVbOH-nS6UVxAn_scTgtqX66I2zwsmojjsqV_5SlNDimTL_PgUrDqIZX3GR-G13UewvAtSxher5Skt8ILnDTqVn&lptoken=161b646513be82305131


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (519)
Size:   852
Md5:    c863b7e8f8194359ade506d6096da6ba
Sha1:   bf06c9bd8d466d8c74bc84cf05982e994e2ddc27
Sha256: 6871590425f497905ff7d785cc9be2d3537fcf500fc49891cf26e3cac4e45d15
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10309
Expires: Tue, 27 Sep 2022 09:32:56 GMT
Date: Tue, 27 Sep 2022 06:41:07 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 27 Sep 2022 06:15:30 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6ZSKreSWdTcM1P0PGTacLttXFIsiGcOHQrSYqySrvoDcP5Z3QybRkQ==
Age: 1537


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F35BB3A8C877DD8D3C5920F3C917722F12B157AFF398E2EC30FAB51FA6CAA2EF"
Last-Modified: Mon, 26 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2686
Expires: Tue, 27 Sep 2022 07:25:53 GMT
Date: Tue, 27 Sep 2022 06:41:07 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: HCiclDdOw+S2gAt0N+iLmMNQMb2kN13NM1f4U8FS9DtV/Jmg1tiaftpIHJcCDpuVQhnz/ezc6Zw/3CjJ860APg==
x-amz-request-id: 3XVQMWEQ9623QCJY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 27 Sep 2022 05:46:42 GMT
age: 3265
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 27 Sep 2022 06:41:07 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /redpropel/images/01.jpg HTTP/1.1 
Host: semegadate.digital
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://semegadate.digital/redpropel/index.html?cep=BbnwhQNtpTx5GpDpKfcxmTSDFt-m0iUZpoEHqBdhHZlAP_maXml8X8ZGIA41-DdtEe6CLtEsc9TfrUPbhtcOLmPTeN9enkRm3fSU3ZNlQXOYekqJjcZ7yEsR5XZ5bKH-Z6zi071O1tvDISeQJHQVyLSDTiyttK6elrPgzCPqoHqFMdaGlJsMqip4I-RTLNbtgJ6cUpjl-Otwbk8GlM31cxnEAaE4oa5vTN80HETvTyf2h2K3Z0xtxIPwz_Pav4fpLBHY24IKFy_OKXohkyiBhKwRUbqJimSlAFCJPpWNxaVbOH-nS6UVxAn_scTgtqX66I2zwsmojjsqV_5SlNDimTL_PgUrDqIZX3GR-G13UewvAtSxher5Skt8ILnDTqVn&lptoken=161b646513be82305131
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         217.69.13.14
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Tue, 27 Sep 2022 06:41:07 GMT
content-length: 42923
last-modified: Thu, 26 Sep 2019 09:21:30 GMT
etag: "a7ab-593714b737a80"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, progressive, precision 8, 600x600, components 3\012- data
Size:   42923
Md5:    42e9caa9455d3dbc8b2d35386e74c586
Sha1:   a2a1ca93ceb61e2fd9cbc9b34ee1db213d5d344a
Sha256: f43a78510788200fe8e48edd55e061e23ef90ffb6fdcee88588c0165bfd7978c
                                        
                                            GET /redpropel/images/loading.gif HTTP/1.1 
Host: semegadate.digital
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://semegadate.digital/redpropel/index.html?cep=BbnwhQNtpTx5GpDpKfcxmTSDFt-m0iUZpoEHqBdhHZlAP_maXml8X8ZGIA41-DdtEe6CLtEsc9TfrUPbhtcOLmPTeN9enkRm3fSU3ZNlQXOYekqJjcZ7yEsR5XZ5bKH-Z6zi071O1tvDISeQJHQVyLSDTiyttK6elrPgzCPqoHqFMdaGlJsMqip4I-RTLNbtgJ6cUpjl-Otwbk8GlM31cxnEAaE4oa5vTN80HETvTyf2h2K3Z0xtxIPwz_Pav4fpLBHY24IKFy_OKXohkyiBhKwRUbqJimSlAFCJPpWNxaVbOH-nS6UVxAn_scTgtqX66I2zwsmojjsqV_5SlNDimTL_PgUrDqIZX3GR-G13UewvAtSxher5Skt8ILnDTqVn&lptoken=161b646513be82305131
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         217.69.13.14
HTTP/2 200 OK
content-type: image/gif
                                        
server: nginx
date: Tue, 27 Sep 2022 06:41:07 GMT
content-length: 145893
last-modified: Thu, 26 Sep 2019 09:21:30 GMT
etag: "239e5-593714b737a80"
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 150 x 149\012- data
Size:   145893
Md5:    8826e9cedd2d2cfd9a9c0e21e767673a
Sha1:   c8567698ddffaec9292d1cca4372887b0132c2e0
Sha256: e5c0dc4e0f80f2f9587e0b79fa32ac37d060d2e661d271d0ffe6ba68f02927ec
                                        
                                            GET /images/favicon.ico HTTP/1.1 
Host: cdn-aimi.akamaized.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://semegadate.digital/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         23.36.76.186
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
x-amz-id-2: ELHd7aZsJFAQMDYsMs1P91PHmbSY+facJ84fMvAGYH5xuNKSefLNX9B5RfT8NNV5FYAzSSavW0s=
x-amz-request-id: CE07D79576746D1C
Last-Modified: Wed, 07 Nov 2018 08:41:38 GMT
ETag: "4cdf3256cd7b8ec3917adb79d6bf457e"
Accept-Ranges: bytes
Content-Length: 4103
Server: AmazonS3
Unused62: 8096267
Date: Tue, 27 Sep 2022 06:41:08 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"


--- Additional Info ---
Magic:  PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size:   4103
Md5:    4cdf3256cd7b8ec3917adb79d6bf457e
Sha1:   bc615337e9223183a126c8fb649774866fb53e69
Sha256: fbfff44a653dc193b93620f1035d221d3aaddf3238742270b3385482986ef7f0
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 27 Sep 2022 06:10:46 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 27 Sep 2022 06:52:02 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: kZ6o68IznjJHZEiFzfUr51q-kq_RFzKT1hrf0JRFANYH92vSP0leig==
Age: 1822


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /js/pub.min.js HTTP/1.1 
Host: money.topmelon.digital
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://semegadate.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         67.212.184.146
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Tue, 27 Sep 2022 06:41:08 GMT
content-length: 1482
last-modified: Fri, 09 Sep 2022 11:46:08 GMT
vary: Accept-Encoding
etag: "631b2780-5ca"
content-encoding: gzip
expires: Wed, 28 Sep 2022 06:41:08 GMT
cache-control: max-age=86400
strict-transport-security: max-age=31536000; includeSubdomains;
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2752)
Size:   1482
Md5:    31c303586c1b78e33984bd252b8e2644
Sha1:   8083e2aad4cbf8242a4e6fb53657d49552b85f82
Sha256: d2c713c2734353dc0ef2896d057021e9b04f35bb7c851d920d390941769c66be
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6065
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 06:41:08 GMT
Last-Modified: Tue, 27 Sep 2022 05:00:03 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /sw.js HTTP/1.1 
Host: money.topmelon.digital
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://semegadate.digital/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

search
                                         67.212.184.146
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Tue, 27 Sep 2022 06:41:08 GMT
content-length: 775
last-modified: Fri, 23 Sep 2022 11:12:42 GMT
vary: Accept-Encoding
etag: "632d94aa-307"
content-encoding: gzip
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline';
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   775
Md5:    de06f24ba6d6b0c514015a9847dace54
Sha1:   c9662e4339d4f72af3526b21d4d6d68df21b0ba9
Sha256: 70d55f6e4bab19ae4b3cc61642e88a78a599b060c72d10c15c5f937e34305ee9
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: KzijEk94Xjil+ZamxDbYhQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         54.148.190.4
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: sTtNgJO5xoi8RXfVv+/JVIIGPS0=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5494
Expires: Tue, 27 Sep 2022 08:12:44 GMT
Date: Tue, 27 Sep 2022 06:41:10 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5494
Expires: Tue, 27 Sep 2022 08:12:44 GMT
Date: Tue, 27 Sep 2022 06:41:10 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bfe3adc-1955-4f21-9e44-c0bc53a4edc5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9163
x-amzn-requestid: 8ccd9b1f-bef9-4591-be32-e6dd98f4ee78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlKpEZrIAMFS1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bdd-4a40b9c8281b64c725fec0f1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:38:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Lf6qqokEw32egp3ofmJGtUTAt3RD2f9rVq5gskbhrk_VFGweeo0oCQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:49:18 GMT
age: 31912
etag: "84f5a4c8b38acde814bc790e5b514347718d5bb9"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9163
Md5:    deb8d1e3b6d7fbc8c8ba478269621676
Sha1:   84f5a4c8b38acde814bc790e5b514347718d5bb9
Sha256: ed14fa766f0708b4166e83b61f160db5671af430917b7c67184bf18d9208742b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F35b718e0-3d37-4447-a38f-12fa37aeae57.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6487
x-amzn-requestid: cd11b94b-24be-4e6d-bce3-a480b2c1cc23
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZDWDQEYAIAMFetw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633136e1-5fcb76b5408fdfa20ec55dd8;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 05:21:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: GcEH02ZlJM-8wUvNf7K7rK7f1cs6_m4i9UYUNxXUGzcDTEz74JH3cA==
via: 1.1 79880188a81becf1687ba18c0e064230.cloudfront.net (CloudFront), 1.1 ddaf46a95abcfc80e8eae76235e2127c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:59:28 GMT
age: 31302
etag: "edff303440c5972381295b4b2602bd3f77f6702a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6487
Md5:    e88b78ede0e4583585d6bb805fb39470
Sha1:   edff303440c5972381295b4b2602bd3f77f6702a
Sha256: ce55a1ff5c71ec43884b74a08cd32ef75cb0632a91f3fe8b150f5ead499375a4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F334b6513-7266-4f03-aae2-328c1b58a30e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10864
x-amzn-requestid: a6be937a-3e8f-4dad-bbca-f28554f5ff21
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YioQqFHsoAMFxXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632420d0-78fecb9e2f76416044839a35;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 07:08:00 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: l-svEjPVAfeYvCQAHsARjTk9PNdkVGUJA_2415312kWF2x6MDI7o7A==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 13:17:07 GMT
age: 62643
etag: "2a2fabd9f9792daf9c058fc754d5616267b703f1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10864
Md5:    56c3768b851e6a5206cbfbe3f5a97cae
Sha1:   2a2fabd9f9792daf9c058fc754d5616267b703f1
Sha256: 668dba22a0c81c4580637806c293521b176512b18ebcc2fe951be2f27f43134d
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6390
x-amzn-requestid: b2681ff8-ab83-41e6-adef-3e6772c93c3f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGFJ6Gc_oAMF44g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63324f0c-3dbf9f4e2047567b5abdbe74;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 01:17:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8JXEBo_L_xKuKdeoOXEJ6FO7ZVsZVQzUmQFe7fYcxaHRQNEq1HWp6w==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:25:52 GMT
age: 18918
etag: "61676358cdbb2373bc644e66f8a84fbc8cc5daf6"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6390
Md5:    14218a43c5e5bbce546735a780c8ccce
Sha1:   61676358cdbb2373bc644e66f8a84fbc8cc5daf6
Sha256: 905b1c30a2273aef69904f2eb1451c756fc1fdba02e86ea5c957629dd056aeda
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe94c315c-bcc5-4538-9c7b-7c0a9f2dccbc.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7146
x-amzn-requestid: 100deff4-ea7e-47d4-a46d-6d9d0d1d6aad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZASE1HiPIAMFZqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ffd51-0b5dec0d7bb5fdf754e9c816;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 07:03:45 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: IZeWsnZ6p1erJ-H07l2EzQ97Duu0qYrb5USVnoyj348rIEMJA9MnBg==
via: 1.1 7256fedee68a59a508800e0dda035348.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 07:11:44 GMT
age: 84566
etag: "49546314082f2e4f4c4c2686cc0ca281ae6bae47"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7146
Md5:    2267eb0a20554688393db616344441ee
Sha1:   49546314082f2e4f4c4c2686cc0ca281ae6bae47
Sha256: 4e37955fb99beb25ceb9deb7c4398914af4192c2e3614e5d68cdafa8c85b256e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13213
x-amzn-requestid: 09f8fee2-6830-4bec-af40-f2fb6547bc63
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFkreH5poAMFdxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b16-0afbf5e01a013e6f0db53da1;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:35:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: CwkfEPDseHez7mArqwz8tmC3WHFwXAZF1OSColucaQ5vG2hvBIDWOg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:42:47 GMT
age: 32303
etag: "3d4fa8701f17e8818c25584ef5f04bfbee8440cd"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13213
Md5:    62e68c3cd08dd94d910507512a67e85f
Sha1:   3d4fa8701f17e8818c25584ef5f04bfbee8440cd
Sha256: 058d798963f83f5fb88ab728185f755c5353fa981d93e1b6ff869089f501586b
                                        
                                            GET /redpropel/index.html?cep=BbnwhQNtpTx5GpDpKfcxmTSDFt-m0iUZpoEHqBdhHZlAP_maXml8X8ZGIA41-DdtEe6CLtEsc9TfrUPbhtcOLmPTeN9enkRm3fSU3ZNlQXOYekqJjcZ7yEsR5XZ5bKH-Z6zi071O1tvDISeQJHQVyLSDTiyttK6elrPgzCPqoHqFMdaGlJsMqip4I-RTLNbtgJ6cUpjl-Otwbk8GlM31cxnEAaE4oa5vTN80HETvTyf2h2K3Z0xtxIPwz_Pav4fpLBHY24IKFy_OKXohkyiBhKwRUbqJimSlAFCJPpWNxaVbOH-nS6UVxAn_scTgtqX66I2zwsmojjsqV_5SlNDimTL_PgUrDqIZX3GR-G13UewvAtSxher5Skt8ILnDTqVn&lptoken=161b646513be82305131 HTTP/1.1 
Host: semegadate.digital
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         217.69.13.14
HTTP/2 200 OK
content-type: text/html
                                        
server: nginx
date: Tue, 27 Sep 2022 06:41:07 GMT
vary: Accept-Encoding
last-modified: Fri, 06 May 2022 17:27:12 GMT
etag: W/"4236-5de5b2b377c00"
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /redpropel/css/830eab81fc765072ab3eb5cedd51e211.css HTTP/1.1 
Host: semegadate.digital
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://semegadate.digital/redpropel/index.html?cep=BbnwhQNtpTx5GpDpKfcxmTSDFt-m0iUZpoEHqBdhHZlAP_maXml8X8ZGIA41-DdtEe6CLtEsc9TfrUPbhtcOLmPTeN9enkRm3fSU3ZNlQXOYekqJjcZ7yEsR5XZ5bKH-Z6zi071O1tvDISeQJHQVyLSDTiyttK6elrPgzCPqoHqFMdaGlJsMqip4I-RTLNbtgJ6cUpjl-Otwbk8GlM31cxnEAaE4oa5vTN80HETvTyf2h2K3Z0xtxIPwz_Pav4fpLBHY24IKFy_OKXohkyiBhKwRUbqJimSlAFCJPpWNxaVbOH-nS6UVxAn_scTgtqX66I2zwsmojjsqV_5SlNDimTL_PgUrDqIZX3GR-G13UewvAtSxher5Skt8ILnDTqVn&lptoken=161b646513be82305131
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         217.69.13.14
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Tue, 27 Sep 2022 06:41:07 GMT
vary: Accept-Encoding
last-modified: Thu, 10 Oct 2019 01:28:40 GMT
etag: W/"9ac-59484523ee200"
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /redpropel/js/1284dbb30021b442237c18701edddf0f.js HTTP/1.1 
Host: semegadate.digital
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://semegadate.digital/redpropel/index.html?cep=BbnwhQNtpTx5GpDpKfcxmTSDFt-m0iUZpoEHqBdhHZlAP_maXml8X8ZGIA41-DdtEe6CLtEsc9TfrUPbhtcOLmPTeN9enkRm3fSU3ZNlQXOYekqJjcZ7yEsR5XZ5bKH-Z6zi071O1tvDISeQJHQVyLSDTiyttK6elrPgzCPqoHqFMdaGlJsMqip4I-RTLNbtgJ6cUpjl-Otwbk8GlM31cxnEAaE4oa5vTN80HETvTyf2h2K3Z0xtxIPwz_Pav4fpLBHY24IKFy_OKXohkyiBhKwRUbqJimSlAFCJPpWNxaVbOH-nS6UVxAn_scTgtqX66I2zwsmojjsqV_5SlNDimTL_PgUrDqIZX3GR-G13UewvAtSxher5Skt8ILnDTqVn&lptoken=161b646513be82305131
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         217.69.13.14
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Tue, 27 Sep 2022 06:41:07 GMT
vary: Accept-Encoding
last-modified: Thu, 26 Sep 2019 09:21:30 GMT
etag: W/"17929-593714b737a80"
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sw.js?v=1664260866444 HTTP/1.1 
Host: semegadate.digital
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

search
                                         217.69.13.14
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Tue, 27 Sep 2022 06:41:08 GMT
vary: Accept-Encoding
last-modified: Mon, 11 Apr 2022 15:51:39 GMT
etag: W/"36-5dc62eb7878c0"
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing