Report - www.icmsf.org/publications/books/

Report Overview

Submitted URL
www.icmsf.org/publications/books/
IP
41.185.64.179
ASN
#36943 ZA-1-Grid
Submitted
2022-12-09 20:00:11
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
12

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	797 B	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.43.61.95
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	52 kB	34.120.237.76
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	427 B	46 kB	142.250.74.35
region1.google-analytics.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	756 B	559 B	216.239.34.36
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	380 B	77 kB	142.250.74.168
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	95.101.11.115
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	328 B	1.2 kB	142.250.74.74
www.icmsf.org	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.7 kB	1.1 MB	41.185.64.179
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	343 B	699 B	142.250.74.131

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-09	medium	www.icmsf.org/publications/books/	Phishing
2022-12-09	medium	www.icmsf.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	Phishing
2022-12-09	medium	www.icmsf.org/wp-content/uploads/avia_posts_css/post-1235.css?ver=ver-1670506573	Phishing
2022-12-09	medium	www.icmsf.org/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	Phishing
2022-12-09	medium	www.icmsf.org/wp-content/uploads/dynamic_avia/avia-footer-scripts-a4fd9252135b197eba288badc03c023e---6391e33bc5670.js	Phishing
2022-12-09	medium	www.icmsf.org/wp-content/themes/enfold/config-templatebuilder/avia-template-builder/assets/fonts/entypo-fontello.woff2	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (15)

	URL	Size	First Seen	Last Seen
	www.icmsf.org/publications/books/	1.1 kB	2023-03-07	2024-04-08
Pretty URL www.icmsf.org/publications/books/ IP 41.185.64.179 ASN #36943 ZA-1-Grid Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:10:49 Last Seen2024-04-08 00:13:34 Times Seen78 Hash 368c919f26ed19d0060a546708b2ab4c 193fc756af2e0fad0fce8260c5605ed1a0541492 fd162cffc15cdbeb7e2c416adcfefd99caf708a2416f5629b73c42d6861e5865 Loading...

	www.icmsf.org/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	93 kB	2023-03-09	2023-03-09
Pretty URL www.icmsf.org/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP 41.185.64.179 ASN #36943 ZA-1-Grid Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:23:44 Last Seen2023-03-09 00:23:44 Times Seen1 Hash 0cda7590f85adcb32836b442fef9d5ba bab1d5860c9a1f76116c0ed81745be018ce2ac0b 0d0d4abee933ad3729abd549b404351060743ff0df8260924569f9ae4f664d53 Loading...

	www.icmsf.org/publications/books/	1.2 kB	2023-03-08	2024-02-25
Pretty URL www.icmsf.org/publications/books/ IP 41.185.64.179 ASN #36943 ZA-1-Grid Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:14:25 Last Seen2024-02-25 07:54:42 Times Seen13 Hash 8061bd57316546e30a19e6ac7fcc977d 8585f901d388cf2aa32f8ded41c9d095b16a7af6 cd83c9bac4e353e6259c3308496d3f2a74cb33e437060b567c81d2256599af59 Loading...

	www.icmsf.org/publications/books/	369 B	2023-03-09	2023-03-09
Pretty URL www.icmsf.org/publications/books/ IP 41.185.64.179 ASN #36943 ZA-1-Grid Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:23:44 Last Seen2023-03-09 00:23:44 Times Seen1 Hash 583bf7aeb26d1dd5f73aef9c4a192749 6431f063fcd8eb1dc27c4a158f49271fb4a49aa7 dfb652a0a5cd713a55eab3b5424f6087fcd83e78e1edbc16815a54efd7c63b93 Loading...

	www.icmsf.org/publications/books/	4.6 kB	2023-03-09	2023-03-09
Pretty URL www.icmsf.org/publications/books/ IP 41.185.64.179 ASN #36943 ZA-1-Grid Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:23:44 Last Seen2023-03-09 00:23:44 Times Seen1 Hash 2c22112a32d8f19f710565db72f0b289 725c6e1abd2a3173507e4eab0be4525a88df327c 050e9a5e29c08c64f06365709886249568aafaffc143ae36eb860d56d269fb59 Loading...

	www.icmsf.org/publications/books/	9 B	2023-03-07	2024-04-19
Pretty URL www.icmsf.org/publications/books/ IP 41.185.64.179 ASN #36943 ZA-1-Grid Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-19 06:36:41 Times Seen16029 Hash 5e543256c480ac577d30f76f9120eb74 d5d4cd07616a542891b7ec2d0257b3a24b69856e eb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c Loading...

	www.icmsf.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	15 kB	2023-03-09	2023-03-09
Pretty URL www.icmsf.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 41.185.64.179 ASN #36943 ZA-1-Grid Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:23:44 Last Seen2023-03-09 00:23:44 Times Seen1 Hash c1544c9e34578958d38c477ed9054952 74e6505c62375f9f66116d9f6ebd6dcc151f6395 856144734122680deb17d195ac782a79e1a00c2b6b6218888e247674119082b0 Loading...

	www.icmsf.org/publications/books/	3.1 kB	2023-03-09	2024-01-02
Pretty URL www.icmsf.org/publications/books/ IP 41.185.64.179 ASN #36943 ZA-1-Grid Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:23:44 Last Seen2024-01-02 05:13:42 Times Seen5 Hash b0369057a1c7487ff20a762e6b2b8b95 f7753722336f141110681405d221eea9ecb5bd97 cfb85b8bce25d84edaef9e8a89e919878370aae610a21941ed8937bf3cb52b20 Loading...

	www.icmsf.org/publications/books/	1.6 kB	2023-03-09	2023-03-09
Pretty URL www.icmsf.org/publications/books/ IP 41.185.64.179 ASN #36943 ZA-1-Grid Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:23:44 Last Seen2023-03-09 00:23:44 Times Seen1 Hash 546ed5144ef5d055c8ccf638dfb722b7 c2ef5a4a89cffb0d22b49e2e3a00eb8a1c19ba85 754f0fce1116c08928f31e7c400a5967e8cfb18ce8ee48f1abc0c5a66f8fa175 Loading...

	www.icmsf.org/publications/books/	2.4 kB	2023-03-08	2024-04-08
Pretty URL www.icmsf.org/publications/books/ IP 41.185.64.179 ASN #36943 ZA-1-Grid Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:37:50 Last Seen2024-04-08 00:13:36 Times Seen19 Hash 6b8f9e4c90729aa89d871b890a3a04b4 f87c5fbb971ed09c212f6ccfacae9f5970f1416c bce4061db39510074266c28ca6cab1cd642c26fbdb997d3d41bd1be95e6f76f3 Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 08:03:04 Times Seen36954834 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.icmsf.org/publications/books/	1.4 kB	2023-03-07	2024-02-15
Pretty URL www.icmsf.org/publications/books/ IP 41.185.64.179 ASN #36943 ZA-1-Grid Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:12:35 Last Seen2024-02-15 14:08:44 Times Seen54 Hash 71e2116a90ed19343a0dfa9451c222f6 252e6ad474ee27cf688b4488916b6272b0946367 58cf1565ce68131dcb18125d8c2d985f719becb3e8a2bcef466abfcd284da7ad Loading...

	www.icmsf.org/wp-content/uploads/dynamic_avia/avia-footer-scripts-a4fd9252135b197eba288badc03c023e---6391e33bc5670.js	143 kB	2023-03-09	2023-03-09
Pretty URL www.icmsf.org/wp-content/uploads/dynamic_avia/avia-footer-scripts-a4fd9252135b197eba288badc03c023e---6391e33bc5670.js IP 41.185.64.179 ASN #36943 ZA-1-Grid Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:23:44 Last Seen2023-03-09 00:23:44 Times Seen1 Hash 6d83d507a02f422dbda538e17a169c6f 25a8b179fe78065c9d99f120438628e9b6c05b93 e52bc390dc93cb3d142d67bf7bf98f7b5720f032dad6eca9f5dc3b36f137344e Loading...

	www.icmsf.org/publications/books/	1.9 kB	2023-03-09	2023-03-09
Pretty URL www.icmsf.org/publications/books/ IP 41.185.64.179 ASN #36943 ZA-1-Grid Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:23:44 Last Seen2023-03-09 00:23:44 Times Seen1 Hash aa33e2c957b482d485de94f0f8264d98 a0253dc8a098bcf91d65dadbd3d758125023b6a9 6bcba870630490c6de9d0dcda1562670cd38df153981bad39f164fd0926151b7 Loading...

	www.icmsf.org/publications/books/	153 B	2023-03-09	2023-03-09
Pretty URL www.icmsf.org/publications/books/ IP 41.185.64.179 ASN #36943 ZA-1-Grid Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:23:44 Last Seen2023-03-09 00:23:44 Times Seen1 Hash 22d629396ad8320bfd1c84baa8644b66 f9c98d256d20aaf8372de148c95022d32de04364 7fe5162e4865fb898e48ca4c1a0526c48dc3546fc16026e54a7fa790f1cb02ad Loading...

HTTP Transactions (37)

URL IP Response Size

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7181eff9c60e83eb0004ece591e47dca
0fd8cd0c9d10b0547938982e57d2c43e2d98679f
89c5c0e2d6890798644174a8e31976aec03a1b3deb03812afbb520e5ed68f522

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89C5C0E2D6890798644174A8E31976AEC03A1B3DEB03812AFBB520E5ED68F522"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5492
Expires: Fri, 09 Dec 2022 21:31:31 GMT
Date: Fri, 09 Dec 2022 19:59:59 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aea93551fa9deb76ae49a3b4019d64fe
e3b8862057ebe839959228e42246d7b1807fc90c
7e210f03b140418085e94ec20c1d27d6ecf7a404cbd323e16476ae5ae95d6dac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9452
Expires: Fri, 09 Dec 2022 22:37:31 GMT
Date: Fri, 09 Dec 2022 19:59:59 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5321
Expires: Fri, 09 Dec 2022 21:28:40 GMT
Date: Fri, 09 Dec 2022 19:59:59 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
b44c4b5daa307a355e7bab1c83c1ca82
dbd14cd873f1dd4502f277b3f51cb7bc8da0c080
fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Alert, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 19:08:20 GMT
content-type: application/json
age: 3099
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 00gq2tiqKlGuNvJqac+bdlzE0or1fjIDPar0GeiIa8mHxoCEP8bmK3HGanNgMIdasD2XAJm+jAg=
x-amz-request-id: NCDA4J2HG3ZKQ79X
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 19:50:23 GMT
age: 576
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 19:59:59 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Cache-Control, Backoff, Content-Length, Content-Type, Last-Modified, ETag, Expires, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 19:33:13 GMT
age: 1607
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
e6be4d2155028ffff5d01ab6e7edf6da
07172071b5cf43c4cd7d7930b4ad8518ec1e32e9
4d8a5fa2362fd0910babd6d128d850d4460829468eb23d34ee5ee6eaa42d5a38

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2261
Cache-Control: max-age=135876
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:00:00 GMT
Etag: "6392faaf-1d7"
Expires: Sun, 11 Dec 2022 09:44:36 GMT
Last-Modified: Fri, 09 Dec 2022 09:06:55 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

fonts.googleapis.com/css?family=Open+Sans:400,600&display=auto

142.250.74.74

200 OK

639 B

URL HTTP/1.1
fonts.googleapis.com/css?family=Open+Sans:400,600&display=auto
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
639 B (639 bytes)
Hash
8ff9bf0da080c656b619be4929a8437f
296c9051db5e3ae848ea6d805738f31a7ace5059
9a63cb1251a9d76eb31d20b0e02bbd97ef14c9c8006c251e008d64933f68c160

HTTP Headers

GET /css?family=Open+Sans:400,600&display=auto HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.icmsf.org/

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 09 Dec 2022 20:00:00 GMT
Date: Fri, 09 Dec 2022 20:00:00 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

push.services.mozilla.com/

52.43.61.95

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.43.61.95:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: qIv3rkUwrnsH5W8iMbx4pg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: w6vbimG0Y8qKS/vpj+7//y7DV9s=

www.icmsf.org/publications/books/

41.185.64.179

200 OK

88 kB

URL HTTP/1.1
www.icmsf.org/publications/books/
IP
41.185.64.179:0
ASN
#36943 ZA-1-Grid

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (12963), with CRLF, LF line terminators
Size
88 kB (87503 bytes)
Hash
cf6e0d5b8e42a1469420d529e8d9db1a
80f37c628d248116e6c6a3e9c6926589c1ddc4bd
021af14e2071bc132105f1673ec1fee1d5efde5b758f6b68d3c58a7d25ef23ce

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /publications/books/ HTTP/1.1
Host: www.icmsf.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 20:00:00 GMT
Server: Apache
Link: <https://www.icmsf.org/wp-json/>; rel="https://api.w.org/", <https://www.icmsf.org/wp-json/wp/v2/pages/1235>; rel="alternate"; type="application/json", <https://www.icmsf.org/?p=1235>; rel=shortlink
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

www.icmsf.org/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1

41.185.64.179

200 OK

95 kB

URL HTTP/1.1
www.icmsf.org/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP
41.185.64.179:0
ASN
#36943 ZA-1-Grid

File type
ASCII text, with very long lines (47826)
Size
95 kB (94889 bytes)
Hash
71d925864153f0edf91037f3d31048e8
cc16a0524ac63b5ce29f703a66412224f0dd771a
c324ef26b20264369e4568dc9ef1c5cb1f325f6bc4e8b7c01f7fe93fa353276a

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: www.icmsf.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.icmsf.org/publications/books/

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 20:00:00 GMT
Server: Apache
Last-Modified: Sat, 26 Nov 2022 11:51:34 GMT
Accept-Ranges: bytes
Content-Length: 94889
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.icmsf.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

41.185.64.179

200 OK

15 kB

URL HTTP/1.1
www.icmsf.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
41.185.64.179:0
ASN
#36943 ZA-1-Grid

File type
ASCII text, with very long lines (11126)
Size
15 kB (14954 bytes)
Hash
c1544c9e34578958d38c477ed9054952
74e6505c62375f9f66116d9f6ebd6dcc151f6395
856144734122680deb17d195ac782a79e1a00c2b6b6218888e247674119082b0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.icmsf.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.icmsf.org/publications/books/

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 20:00:00 GMT
Server: Apache
Last-Modified: Sat, 05 Nov 2022 06:34:46 GMT
Accept-Ranges: bytes
Content-Length: 14954
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

www.icmsf.org/wp-content/uploads/avia_posts_css/post-1235.css?ver=ver-1670506573

41.185.64.179

200 OK

2.5 kB

URL HTTP/1.1
www.icmsf.org/wp-content/uploads/avia_posts_css/post-1235.css?ver=ver-1670506573
IP
41.185.64.179:0
ASN
#36943 ZA-1-Grid

File type
ASCII text
Size
2.5 kB (2535 bytes)
Hash
76a20fd820689eb16de1051012a59bc6
661886d594a66defad588481fb6bf16f00af788b
1a5bdbc161e73d82fbb4083b79b9c7934eff54d1ed55367b6ea95e237aa03fd8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/avia_posts_css/post-1235.css?ver=ver-1670506573 HTTP/1.1
Host: www.icmsf.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.icmsf.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 20:00:01 GMT
Server: Apache
Last-Modified: Thu, 08 Dec 2022 13:36:13 GMT
Accept-Ranges: bytes
Content-Length: 2535
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.icmsf.org/wp-includes/js/jquery/jquery.min.js?ver=3.6.1

41.185.64.179

200 OK

93 kB

URL HTTP/1.1
www.icmsf.org/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
41.185.64.179:0
ASN
#36943 ZA-1-Grid

File type
ASCII text, with very long lines (65447)
Size
93 kB (93414 bytes)
Hash
0cda7590f85adcb32836b442fef9d5ba
bab1d5860c9a1f76116c0ed81745be018ce2ac0b
0d0d4abee933ad3729abd549b404351060743ff0df8260924569f9ae4f664d53

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.icmsf.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.icmsf.org/publications/books/

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 20:00:00 GMT
Server: Apache
Last-Modified: Sat, 05 Nov 2022 06:34:46 GMT
Accept-Ranges: bytes
Content-Length: 93414
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

www.icmsf.org/wp-content/uploads/dynamic_avia/avia-footer-scripts-a4fd9252135b197eba288badc03c023e---6391e33bc5670.js

41.185.64.179

200 OK

143 kB

URL HTTP/1.1
www.icmsf.org/wp-content/uploads/dynamic_avia/avia-footer-scripts-a4fd9252135b197eba288badc03c023e---6391e33bc5670.js
IP
41.185.64.179:0
ASN
#36943 ZA-1-Grid

File type
HTML document, ASCII text, with very long lines (65536), with no line terminators
Size
143 kB (143302 bytes)
Hash
6d83d507a02f422dbda538e17a169c6f
25a8b179fe78065c9d99f120438628e9b6c05b93
e52bc390dc93cb3d142d67bf7bf98f7b5720f032dad6eca9f5dc3b36f137344e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/dynamic_avia/avia-footer-scripts-a4fd9252135b197eba288badc03c023e---6391e33bc5670.js HTTP/1.1
Host: www.icmsf.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.icmsf.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 20:00:01 GMT
Server: Apache
Last-Modified: Thu, 08 Dec 2022 13:14:35 GMT
Accept-Ranges: bytes
Content-Length: 143302
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17405
Expires: Sat, 10 Dec 2022 00:50:06 GMT
Date: Fri, 09 Dec 2022 20:00:01 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17405
Expires: Sat, 10 Dec 2022 00:50:06 GMT
Date: Fri, 09 Dec 2022 20:00:01 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17405
Expires: Sat, 10 Dec 2022 00:50:06 GMT
Date: Fri, 09 Dec 2022 20:00:01 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg

34.120.237.76

200 OK

7.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.9 kB (7897 bytes)
Hash
8c3214044657f3b876d1f1848bca5684
7558222788f06623ddae6e883413e38e1146281e
e1f9c9c445bba7765f371dbb655cab43c1e12de7cbd015f8034c494118f7f708

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7897
x-amzn-requestid: 032fd8ae-b7e9-4e12-8546-838191a73688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F51IAMFunw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-345ae6cd107d207f5dbe29a8;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oV7bB5Tek01MFi9x2tr_Wix13-UGlQPIt042XM0ALNUvVFYnu5DRcg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:38:26 GMT
age: 58895
etag: "7558222788f06623ddae6e883413e38e1146281e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5169 bytes)
Hash
06514ce96ae21cb01f526a5febdcbeb4
ebb97e5b97f394e8c67098f55581d5329ce819a2
4099a2fb6ddc4feaa30f357a180d64aeb7c9fc73f115fc762d5fe5c221d2e89e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5169
x-amzn-requestid: 277a1b04-4e19-4313-8aac-5f9ab9076305
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctEdkFGrIAMFvHg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb456-5b21edd57297665012d536cc;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:17:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: swNGUcNy2i0w9UGe-EJhwslE01TzTC3rrDhLhVVxHyhWMGSC1uq0mA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 04:46:15 GMT
age: 54826
etag: "ebb97e5b97f394e8c67098f55581d5329ce819a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12748 bytes)
Hash
730ba1a8edb79ba6f83b46d1ba5aed7b
55a236fedf6f5f7ca2bb88ae13e20846a50fd36d
f8043e76265c59073d111987fd4c08d05a3ac80989af9269cca9ebcc21af4013

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12748
x-amzn-requestid: edd028e3-c23e-4985-b12d-d3ebe760df47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjuciEptIAMFj9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638af783-1c151eb66f590c9c0e0c4c82;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 07:15:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -y4-_OwHl5_OFykJYYZSqwIopjKoYy1MhaGTpVXd4Grq2EsUP2c3IA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 12:33:36 GMT
age: 26785
etag: "55a236fedf6f5f7ca2bb88ae13e20846a50fd36d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6578 bytes)
Hash
8546542f00ea29ef4df6ab8d3c7c2164
5c8ffe91490006a9890188b53f875568c2b6bd8f
7fb11750ac339ac283da62fd370862c6b95a103a585ca5dd8c90038718d818a1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6578
x-amzn-requestid: 6392feb9-e33e-42fa-bc10-b5e31e654c9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw4beGG7oAMF8hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903aaf-2c890b7b0a16617346a0f7e7;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: nXaZ1pazAGWMI9GFYZjGlvVVIb8wX6feD0O8VpzjsL8F8l3mFmydAw==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 07:13:59 GMT
age: 45962
etag: "5c8ffe91490006a9890188b53f875568c2b6bd8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7557 bytes)
Hash
5de5d319f43d9c9c641419d96655541f
cde4c7fa0145d3645af17e34c83c63c08f76a076
fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7557
x-amzn-requestid: 09204b5e-8af5-4d4b-8186-628443866e0f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctlz5EISoAMFdWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee9b2-357cd4f921c592e1319098dd;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:05:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3KZwQ5HqXa_-tUyDHA5m-65OprogFpFgbbKpEJ65k-Yy3lwoCg8M5w==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 07:13:15 GMT
age: 46006
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5188 bytes)
Hash
fba9a3854df65740512f96efe7442e58
8fbff7725c842d70e047c635a725723a9dc9c55a
6e639298ebc82343cee9267d2910d15735af55f910e2c3de9218266b7c6fffc9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5188
x-amzn-requestid: afb8cbd2-3674-4dac-9cd9-9ff83618ac0a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ck2-5G9joAMFlPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638b6b92-2979ff216b9028aa70baef8b;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 15:30:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dGxzuQ6zj6wXQbkBuKBnOKxwKJDHUyGoi7PgcugcpdX4QYruNiFxsQ==
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 21:51:24 GMT
age: 79718
etag: "8fbff7725c842d70e047c635a725723a9dc9c55a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.icmsf.org/wp-content/uploads/dynamic_avia/avia-merged-styles-9bbe9010b50d3deccbe48baa7118ab83---6391e33ba6617.css

41.185.64.179

200 OK

348 kB

URL HTTP/1.1
www.icmsf.org/wp-content/uploads/dynamic_avia/avia-merged-styles-9bbe9010b50d3deccbe48baa7118ab83---6391e33ba6617.css
IP
41.185.64.179:0
ASN
#36943 ZA-1-Grid

File type
ASCII text, with very long lines (65536), with no line terminators
Size
348 kB (347514 bytes)
Hash
14ceafe514965dd1134478f07e9c2e71
af05741f7c7365845c82a9a955ff718d80d14e2e
59e2d5ea19fac549fe7cb207b0a5fdf8f1b08a3f7cfed43caa7cf9b52993d31c

HTTP Headers

GET /wp-content/uploads/dynamic_avia/avia-merged-styles-9bbe9010b50d3deccbe48baa7118ab83---6391e33ba6617.css HTTP/1.1
Host: www.icmsf.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.icmsf.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 20:00:01 GMT
Server: Apache
Last-Modified: Thu, 08 Dec 2022 13:14:35 GMT
Accept-Ranges: bytes
Content-Length: 347514
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.74.35

200 OK

45 kB

URL HTTP/1.1
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.icmsf.org
Connection: keep-alive
Referer: http://fonts.googleapis.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 05 Dec 2022 19:26:03 GMT
Expires: Tue, 05 Dec 2023 19:26:03 GMT
Cache-Control: public, max-age=31536000
Age: 347639
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT
Content-Type: font/woff2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
795e67bdfadc3c890a663080413b56b7
fdefde3befb6aceac3c337c34c8d738f5091908c
8375b55cfc13989b0cf96293b7bead2ce5811a993b3445da1776ca7015c36985

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 20:00:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=G-ZT09GJM73R

142.250.74.168

200 OK

76 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-ZT09GJM73R
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (20080)
Size
76 kB (76334 bytes)
Hash
fe45b05dbd503495f857d14cf277d83b
a9536c71473facc5573d35e6fa48fe49fbc2b9dc
900b903039bf507d0ceb09be671f4f71a6dfd6578343c92b410413b9c375968b

HTTP Headers

GET /gtag/js?id=G-ZT09GJM73R HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.icmsf.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 09 Dec 2022 20:00:02 GMT
expires: Fri, 09 Dec 2022 20:00:02 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76334
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.icmsf.org/wp-content/themes/enfold/config-templatebuilder/avia-template-builder/assets/fonts/entypo-fontello.woff2

41.185.64.179

200 OK

39 kB

URL HTTP/1.1
www.icmsf.org/wp-content/themes/enfold/config-templatebuilder/avia-template-builder/assets/fonts/entypo-fontello.woff2
IP
41.185.64.179:0
ASN
#36943 ZA-1-Grid

File type
Web Open Font Format (Version 2), TrueType, length 39220, version 1.0\012- data
Size
39 kB (39220 bytes)
Hash
88bd94b6a31a73b5ee2b4a9799c7285e
59b220f616928d7baef57b681093c55c3f787abd
7f260ff280b2e54e84e6f9c2790da49cc9abadc457b77d1df4dea121a8c8ab6e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/enfold/config-templatebuilder/avia-template-builder/assets/fonts/entypo-fontello.woff2 HTTP/1.1
Host: www.icmsf.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.icmsf.org/publications/books/

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 20:00:02 GMT
Server: Apache
Last-Modified: Thu, 08 Dec 2022 12:48:51 GMT
Accept-Ranges: bytes
Content-Length: 39220
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: font/woff2

www.icmsf.org/wp-content/uploads/2021/07/Book-Microorganisms-in-Foods-7.jpg

41.185.64.179

200 OK

28 kB

URL HTTP/1.1
www.icmsf.org/wp-content/uploads/2021/07/Book-Microorganisms-in-Foods-7.jpg
IP
41.185.64.179:0
ASN
#36943 ZA-1-Grid

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=217, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=153], progressive, precision 8, 153x217, components 3\012- data
Size
28 kB (27825 bytes)
Hash
52d59e6e66d4fe85a3d3615394706566
fd81bfdaf289d5bd93e0e3b678b44f750d20038c
0b81dbbe20059b4fcab4483fe8d3b3581ea0da80a652ea870cb40137328d5a6a

HTTP Headers

GET /wp-content/uploads/2021/07/Book-Microorganisms-in-Foods-7.jpg HTTP/1.1
Host: www.icmsf.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.icmsf.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 20:00:02 GMT
Server: Apache
Last-Modified: Fri, 02 Jul 2021 15:06:41 GMT
Accept-Ranges: bytes
Content-Length: 27825
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg

www.icmsf.org/wp-content/uploads/2021/05/logo_long.png

41.185.64.179

200 OK

48 kB

URL HTTP/1.1
www.icmsf.org/wp-content/uploads/2021/05/logo_long.png
IP
41.185.64.179:0
ASN
#36943 ZA-1-Grid

File type
PNG image data, 950 x 140, 8-bit/color RGBA, non-interlaced\012- data
Size
48 kB (48473 bytes)
Hash
3d2f5327b2ffde01729e00cf8a4fec2f
9fee46e13b767184a09d2355b35fd032ec894efa
0ff591a493229f39d25c3bc0dd0ae4b8eb86918fed704d63d7d209ca520f9a98

HTTP Headers

GET /wp-content/uploads/2021/05/logo_long.png HTTP/1.1
Host: www.icmsf.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.icmsf.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 20:00:02 GMT
Server: Apache
Last-Modified: Fri, 16 Jul 2021 07:48:37 GMT
Accept-Ranges: bytes
Content-Length: 48473
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

www.icmsf.org/wp-content/uploads/2021/07/Book-Microorganisms-in-Foods-8.jpg

41.185.64.179

200 OK

54 kB

URL HTTP/1.1
www.icmsf.org/wp-content/uploads/2021/07/Book-Microorganisms-in-Foods-8.jpg
IP
41.185.64.179:0
ASN
#36943 ZA-1-Grid

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=423, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=306], progressive, precision 8, 180x249, components 3\012- data
Size
54 kB (54218 bytes)
Hash
83a9ce54f1c0734dab47cafb988b8fa9
64eb67434c283de6a2bbc3765c785ec198d8c872
b1aea6249fa575750372e94b73cad692598e8616dc9179cf506a35af4180ceb0

HTTP Headers

GET /wp-content/uploads/2021/07/Book-Microorganisms-in-Foods-8.jpg HTTP/1.1
Host: www.icmsf.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.icmsf.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 20:00:02 GMT
Server: Apache
Last-Modified: Fri, 02 Jul 2021 15:06:43 GMT
Accept-Ranges: bytes
Content-Length: 54218
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg

www.icmsf.org/wp-content/uploads/2021/07/Book-Microorganisms-in-Foods-5.jpg

41.185.64.179

200 OK

68 kB

URL HTTP/1.1
www.icmsf.org/wp-content/uploads/2021/07/Book-Microorganisms-in-Foods-5.jpg
IP
41.185.64.179:0
ASN
#36943 ZA-1-Grid

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2021:07:02 16:52:50], progressive, precision 8, 180x249, components 3\012- data
Size
68 kB (68493 bytes)
Hash
064425f90a29e7763458c734dd4401cf
8324acebfa29aa63ae7cdf0ab3281009309b5a5b
81659f074258168f8db8b814672dec624cf82bbfb422fc6e040b0b9d94887bac

HTTP Headers

GET /wp-content/uploads/2021/07/Book-Microorganisms-in-Foods-5.jpg HTTP/1.1
Host: www.icmsf.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.icmsf.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 20:00:02 GMT
Server: Apache
Last-Modified: Fri, 02 Jul 2021 15:06:40 GMT
Accept-Ranges: bytes
Content-Length: 68493
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg

www.icmsf.org/wp-content/uploads/2021/07/Book-Microorganisms-in-Foods-6.jpg

41.185.64.179

200 OK

80 kB

URL HTTP/1.1
www.icmsf.org/wp-content/uploads/2021/07/Book-Microorganisms-in-Foods-6.jpg
IP
41.185.64.179:0
ASN
#36943 ZA-1-Grid

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=400, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=269], progressive, precision 8, 180x249, components 3\012- data
Size
80 kB (80385 bytes)
Hash
8c90b383b7a42cbc6e4b99dc444b3b9c
3c6ca1b4352cf4f0fe7d275fda8e8a1c8110b735
b6ba890f41053980e1a9338ddcc8d0228b350b5957b9e3736425fa7cfe79ac98

HTTP Headers

GET /wp-content/uploads/2021/07/Book-Microorganisms-in-Foods-6.jpg HTTP/1.1
Host: www.icmsf.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.icmsf.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 20:00:02 GMT
Server: Apache
Last-Modified: Fri, 02 Jul 2021 15:06:40 GMT
Accept-Ranges: bytes
Content-Length: 80385
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg

www.icmsf.org/wp-content/uploads/2021/05/favicon.png

41.185.64.179

200 OK

8.3 kB

URL HTTP/1.1
www.icmsf.org/wp-content/uploads/2021/05/favicon.png
IP
41.185.64.179:0
ASN
#36943 ZA-1-Grid

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
8.3 kB (8324 bytes)
Hash
9a5c4dde4b6b4df6ddba3340caa58250
aa4cc509cdb8b4ff7c1357c0d0f8bb2570764cae
e98394eda8f5f50f2a4a8adedf3374597979c51fa84b481728fe39e4b1b7cae5

HTTP Headers

GET /wp-content/uploads/2021/05/favicon.png HTTP/1.1
Host: www.icmsf.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.icmsf.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 20:00:03 GMT
Server: Apache
Last-Modified: Fri, 07 May 2021 09:58:30 GMT
Accept-Ranges: bytes
Content-Length: 8324
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

region1.google-analytics.com/g/collect?v=2&tid=G-ZT09GJM73R&gtm=2oebu0&_p=903507831&cid=2076346082.1670616002&ul=en-us&sr=1280x1024&_s=1&sid=1670616002&sct=1&seg=0&dl=http%3A%2F%2Fwww.icmsf.org%2Fpublications%2Fbooks%2F&dt=Books%20%E2%80%93%20ICMSF%20%7C%20International%20Commission%20on%20Microbiological%20Specifications%20for%20Foods&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1

216.239.34.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-ZT09GJM73R&gtm=2oebu0&_p=903507831&cid=2076346082.1670616002&ul=en-us&sr=1280x1024&_s=1&sid=1670616002&sct=1&seg=0&dl=http%3A%2F%2Fwww.icmsf.org%2Fpublications%2Fbooks%2F&dt=Books%20%E2%80%93%20ICMSF%20%7C%20International%20Commission%20on%20Microbiological%20Specifications%20for%20Foods&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP
216.239.34.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-ZT09GJM73R&gtm=2oebu0&_p=903507831&cid=2076346082.1670616002&ul=en-us&sr=1280x1024&_s=1&sid=1670616002&sct=1&seg=0&dl=http%3A%2F%2Fwww.icmsf.org%2Fpublications%2Fbooks%2F&dt=Books%20%E2%80%93%20ICMSF%20%7C%20International%20Commission%20on%20Microbiological%20Specifications%20for%20Foods&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.icmsf.org
Connection: keep-alive
Referer: http://www.icmsf.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: http://www.icmsf.org
date: Fri, 09 Dec 2022 20:00:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (15)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations