Report - twavcc.info/

Report Overview

Submitted URL
twavcc.info/
IP
172.67.215.192
ASN
#13335 CLOUDFLARENET
Submitted
2022-11-29 15:28:05
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
24

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.8 kB	93.184.220.29
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	368 B	21 kB	216.58.207.206
twavcc.info	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	7.2 kB	13 kB	104.21.61.221
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.8 kB	142.250.74.131
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	167 kB	142.250.74.168
www.zyzimg.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.9 kB	242 kB	54.230.111.89
region1.google-analytics.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	1.1 kB	216.239.32.36
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	23.36.77.32
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.187.31.159
ocsp.r2m01.amazontrust.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	350 B	1.0 kB	54.230.80.227
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	65 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-29	medium	twavcc.info/	Phishing
2022-11-29	medium	twavcc.info/	Phishing
2022-11-29	medium	twavcc.info/template/book/js/p__Channel.15daecc4.async.js	Phishing
2022-11-29	medium	twavcc.info/template/book/js/p__VideoList.8a2972e7.async.js	Phishing
2022-11-29	medium	twavcc.info/static/js/home.js	Phishing
2022-11-29	medium	twavcc.info/template/book/js/jquery-1.11.1.min.js	Phishing
2022-11-29	medium	twavcc.info/template/book/js/layouts__BasicLayout.5d8181ed.async.js	Phishing
2022-11-29	medium	twavcc.info/template/book/js/jquery.lazyload.js	Phishing
2022-11-29	medium	twavcc.info/template/book/js/jquery.autocomplete.js	Phishing
2022-11-29	medium	twavcc.info/template/book/js/sw.js	Phishing
2022-11-29	medium	twavcc.info/static/js/jquery.js	Phishing
2022-11-29	medium	twavcc.info/template/book/js/umi.6208a828.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (27)

	URL	Size	First Seen	Last Seen
	twavcc.info/	118 B	2023-03-07	2024-04-15
Pretty URL twavcc.info/ IP 104.21.61.221 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-15 00:35:26 Times Seen135 Hash 0814e46e097689346563939ea38e2e25 cca2330318881407da146010c7bad4fc4674b3d4 fb73c0bb5af1e9abef59a361a8816ecee7786ef4d0addb8eecf1886dcc4b54c4 Loading...

	twavcc.info/	118 B	2023-03-07	2024-04-15
Pretty URL twavcc.info/ IP 104.21.61.221 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-15 00:35:26 Times Seen136 Hash 6fdf677b2e3bc777d8ddeee50f3f4ac8 6d5b86a7c4f00dbda126ec8c3948cc913e7a9d26 839d085fd8cd8a4debcd2ee479116ad62341d9f3964aa6dbbc6ffdfbe25b95f0 Loading...

	unknown	0 B	2023-03-07	2024-04-23
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-23 15:07:33 Times Seen37021035 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	twavcc.info/	153 B	2023-03-07	2023-10-23
Pretty URL twavcc.info/ IP 104.21.61.221 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:24:30 Last Seen2023-10-23 20:50:08 Times Seen7 Hash 01d4a2473dcec65df4213c8b41c61023 926550bf23a47ad94e40df1cbbf16313d6cba280 fe7c5a31472e7eef34aa01dbf0216b426cd84b09c13ff4f5c978ee20ddec1500 Loading...

	twavcc.info/	153 B	2023-03-11	2023-03-26
Pretty URL twavcc.info/ IP 104.21.61.221 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:27:50 Last Seen2023-03-26 01:15:28 Times Seen2 Hash abc901cbb3d8711e519408e2e45dcc22 230244d4b45ea415ddc07d26e80f82e42424dd33 d8f56fd8692c1206b44cd60dcdbbe3e6f339d8a0e4be25bf8ff3a84cabe02219 Loading...

	twavcc.info/template/book/js/sw.js	223 B	2023-03-11	2023-05-31
Pretty URL twavcc.info/template/book/js/sw.js IP 104.21.61.221 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:27:50 Last Seen2023-05-31 08:50:37 Times Seen2 Hash 1a058f8be9ea56b1e55d304d26acd4eb a53507b806a4824f1353f6de57cc1650bfd92288 80da9ddc7672e15d6990a45740a46a30dcb69a08a6255f46dce93a32de5298cd Loading...

	twavcc.info/	155 B	2023-03-11	2023-03-26
Pretty URL twavcc.info/ IP 104.21.61.221 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:27:50 Last Seen2023-03-26 01:15:29 Times Seen2 Hash 6b6289ee895866567dd645050b01fcd4 bf38dab4427d06b8232db432e37a650589ff5a38 1aa6b1f1e4ebb44d7935ce312a9a4eb8dbf435f48305a872682aba6cd6516ffe Loading...

	twavcc.info/	144 B	2023-03-07	2024-04-15
Pretty URL twavcc.info/ IP 104.21.61.221 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-15 00:35:26 Times Seen134 Hash efe1f5c6814718a5a0a9fb7c896fc8c1 50d738b62d011e54491af66c3173fb64e8937c5a bc2913866c4a17edc2ecc9567eac108688751864ca5c0bbdd3c2ada8c96368e0 Loading...

	twavcc.info/	144 B	2023-03-07	2024-04-15
Pretty URL twavcc.info/ IP 104.21.61.221 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-15 00:35:26 Times Seen135 Hash 8ef1a939fff43aa2ec1fc169578cfd0a 7058d2f3d355bfb8b8df4990fc5cae80f6ccef20 c3c94c89e20483d31341e672feed000f086be2bd8491005c9658bc93522c9959 Loading...

	twavcc.info/template/book/js/jquery-1.11.1.min.js	96 kB	2023-03-07	2024-04-23
Pretty URL twavcc.info/template/book/js/jquery-1.11.1.min.js IP 104.21.61.221 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-23 14:10:28 Times Seen46248 Hash 8101d596b2b8fa35fe3a634ea342d7c3 d6c1f41972de07b09bfa63d2e50f9ab41ec372bd 540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441 Loading...

	twavcc.info/	102 B	2023-03-11	2023-03-11
Pretty URL twavcc.info/ IP 104.21.61.221 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:27:50 Last Seen2023-03-11 22:27:50 Times Seen1 Hash 2550e9f275ea22418bf88beb28d7e10a fe93e9c8b31aee1ba7b38268e3de897b10241214 9ef37a0b69b4c62793aead29a4abb92b5b57abf4d266861444c13d881f42622a Loading...

	www.googletagmanager.com/gtag/js?id=UA-223135724-5&l=dataLayer&cx=c	112 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtag/js?id=UA-223135724-5&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:27:50 Last Seen2023-03-11 22:27:50 Times Seen1 Hash 6b5dca14ee4b0dce9ebf05672eb1d0db 371ec6d7049e5cce9709dbbcae65f9677beffe6d 178133b732fb673b8d21102c7e8b11c3a07323796088b3cd8dcccaedd86c03bd Loading...

	twavcc.info/template/book/js/p__Channel.15daecc4.async.js	43 kB	2023-03-11	2023-05-31
Pretty URL twavcc.info/template/book/js/p__Channel.15daecc4.async.js IP 104.21.61.221 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:27:50 Last Seen2023-05-31 08:50:37 Times Seen3 Hash 11a2b0fe908b31e920e6edf3e8eb795d a03281010f2507d68ce56b880bc2fcb1b8404613 a6e9a9e70a984700e17dc6aa3e14df3469f88b7e337b5eeb9769a7d69fbf052c Loading...

	twavcc.info/static/js/jquery.js	93 kB	2023-03-07	2024-04-23
Pretty URL twavcc.info/static/js/jquery.js IP 104.21.61.221 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-23 08:22:36 Times Seen23287 Hash 397754ba49e9e0cf4e7c190da78dda05 ae49e56999d82802727455f0ba83b63acd90a22b c12f6098e641aaca96c60215800f18f5671039aecf812217fab3c0d152f6adb4 Loading...

	twavcc.info/template/book/js/jquery.lazyload.js	2.2 kB	2023-03-08	2024-01-20
Pretty URL twavcc.info/template/book/js/jquery.lazyload.js IP 104.21.61.221 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:34:55 Last Seen2024-01-20 21:36:28 Times Seen28 Hash ad5888b989e1e62ebb23fecbae6c8053 7695266013b2091502554616c6a3ac4c2f5a79fb 38bc7cc88c754d4f93d7c73abeebb0687986bd8bfe416ee364ac0dfa26a5a6e6 Loading...

	twavcc.info/	155 B	2023-03-11	2023-03-11
Pretty URL twavcc.info/ IP 104.21.61.221 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:27:50 Last Seen2023-03-11 22:27:50 Times Seen1 Hash 4759fa76cb8a158e76a1ef6bd8dc3149 5042ae4863023af3d0dc74b73ff34e30375c5c22 73d88edccaffd6637e6a2fb6964f960480cac067e5927bed335eeae74c578a5a Loading...

	twavcc.info/	153 B	2023-03-11	2023-03-11
Pretty URL twavcc.info/ IP 104.21.61.221 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:27:50 Last Seen2023-03-11 22:27:50 Times Seen1 Hash 04b5ee26daa3e0e9dfc1e9f9338616d6 61c2b569b7f4a6686a0f76fc16f1dc93917f138c 35b03ae46d02dff11698d45ed58f082519729eb1245053dd614c1f836cf9ac0f Loading...

	www.googletagmanager.com/gtag/js?id=UA-216467149-5	112 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtag/js?id=UA-216467149-5 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:27:50 Last Seen2023-03-11 22:27:50 Times Seen1 Hash 448510d4aea5c859e2bc477ae365701e 5097882dbeb9671930dcab6d4cb7698636fe66a6 bcb4e891810906ed4e1d5f9fbcdd874c62f12c2cb06f68a10076239481b9ce71 Loading...

	twavcc.info/template/book/js/jquery.autocomplete.js	14 kB	2023-03-07	2023-12-03
Pretty URL twavcc.info/template/book/js/jquery.autocomplete.js IP 104.21.61.221 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:14:42 Last Seen2023-12-03 15:58:38 Times Seen33 Hash 851b190eeee1dc1fbe4687ef6c295dc7 98a609a0be90147a0aa2fe1dff96a5bfa621e079 e34f4764ecc81a9f7bbe6d65d7fccb31042415ab813cfb3867a31625be6e4c7e Loading...

	twavcc.info/template/book/js/p__VideoList.8a2972e7.async.js	129 kB	2023-03-11	2023-05-31
Pretty URL twavcc.info/template/book/js/p__VideoList.8a2972e7.async.js IP 104.21.61.221 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:27:50 Last Seen2023-05-31 08:50:37 Times Seen3 Hash c9d53e0d3835ca6de3b731afea00bd22 3b138115d6ea625b509cc2e97cc8e770a76bb6f0 632a23238c17b584e345843e9331f6dce63f6e0a31a98f9f81361f2cc6270468 Loading...

	twavcc.info/	155 B	2023-03-07	2023-10-23
Pretty URL twavcc.info/ IP 104.21.61.221 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:24:30 Last Seen2023-10-23 20:50:08 Times Seen7 Hash 13616105abc79e8ca61aee9e50f1b3e1 bd983321caf4065f40234f9ae1ef6d964bf18972 14a8c34eb68d3deec79e27952dc536558aabcb16fbc6101823d30f900e7ccd84 Loading...

	twavcc.info/	144 B	2023-03-07	2024-04-15
Pretty URL twavcc.info/ IP 104.21.61.221 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-15 00:35:26 Times Seen135 Hash 22bcd11f24086fc12352bf2bfd19a007 3cf9c47c9e5dc4cbdf5f0ae3fdf4dc77f23b5499 2872739311eb5b5804ec5e878933bb52d1096912da5039b17f8836dfab2cf7f2 Loading...

	twavcc.info/	144 B	2023-03-07	2024-04-15
Pretty URL twavcc.info/ IP 104.21.61.221 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-15 00:35:26 Times Seen134 Hash 6a00195fe08d02f1d70b8a9949047685 e61ce40e9b570a3534153bf7c4d21423e3a40dde cba9005acc96c2cefe7d141c1c709b02f3b15f0cc7d1597a49c5e0e9549e76b2 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-20
Pretty URL www.google-analytics.com/analytics.js IP 216.58.207.206 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-20 17:36:09 Times Seen1522 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	twavcc.info/static/js/home.js	38 kB	2023-03-07	2024-04-15
Pretty URL twavcc.info/static/js/home.js IP 104.21.61.221 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:10:40 Last Seen2024-04-15 00:35:26 Times Seen85 Hash 2ee4a07d1d8a29b1139b1f3366413953 6aadf5f8c72f7fdc9928b72089128d72b8e3b1fe 909db584f9c933c475b26510266cdd41be56178a43ec23447b5c6341713ac9a7 Loading...

	www.googletagmanager.com/gtag/js?id=UA-216467149-3	112 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtag/js?id=UA-216467149-3 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:27:50 Last Seen2023-03-11 22:27:50 Times Seen1 Hash e876a9ed4e3726facf16e3a871322039 fa85e0930f0b54867f86cccc505070b74f4c8986 26a3cea3f02699260946fa45bf802c213a0044bffc11eb9b215c7ef7a6252e4e Loading...

	www.googletagmanager.com/gtag/js?id=G-GESD0XL0JN&l=dataLayer&cx=c	217 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtag/js?id=G-GESD0XL0JN&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:27:50 Last Seen2023-03-11 22:27:50 Times Seen1 Hash ae12010a533822b38c34ec73c6ae73d4 353f48b9708a9c972b6a49bfe96383f3c99e95a2 9ea80348dae1da792395782e11573868a889bb50c3add503fd86b83e2df87619 Loading...

HTTP Transactions (64)

URL IP Response Size

twavcc.info/

104.21.61.221

301 Moved Permanently

0 B

URL HTTP/1.1
twavcc.info/
IP
104.21.61.221:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: twavcc.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Tue, 29 Nov 2022 15:27:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 29 Nov 2022 16:27:54 GMT
Location: https://twavcc.info/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z0c9%2F%2FJHnH%2F33o6Jhl%2F6nENGPpBP8grL1wM4WclFoOqNaLQAT0r7sjVpUzkchpEMfPm%2BoFuD5E7cfsB6%2BtdjgPaL7uLEO0fN338Drk8odKGSawFkMyi6p2mJ48tv0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 771c5ebbacbab4f3-OSL
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12315
Expires: Tue, 29 Nov 2022 18:53:09 GMT
Date: Tue, 29 Nov 2022 15:27:54 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
4ed065cb23b5fca1a179dd73b3c5b7b2
4422eb24688f5e056fc1b18b127c7f63b1dbf5e0
b723d770d0dec7441d8505dc5a4e7d34f55c9f564ec52f20d9b70c7c3a0d9d35

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5024
Cache-Control: max-age=160021
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 15:27:54 GMT
Etag: "6385df6f-1d7"
Expires: Thu, 01 Dec 2022 11:54:55 GMT
Last-Modified: Tue, 29 Nov 2022 10:31:11 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9fce5679881bf302a8978a0b462f01a9
b699fe030ea13ac73813e655c42ed9b531925e2b
a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6766
Expires: Tue, 29 Nov 2022 17:20:40 GMT
Date: Tue, 29 Nov 2022 15:27:54 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 15:19:38 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 496
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: MKwVvO+HzYvd4wxY7+AcI08tKfhCWs0tlTNP9nwzrlMf2Ea89M5m7YQzeHoiFxiTt9S61r85tUs=
x-amz-request-id: AP85G76FST1BFM9W
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 14:45:30 GMT
age: 2544
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 15:27:54 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
c120c4eb397aa1b83235fba4d266dc4b
d42c78a14037c1e62859160967333b88b7a523d7
dfa9be80eb97807e9257fa700e4cb5f5ff9c2ed77cb6a85783e053f4b3848dc3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=127983
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 15:27:54 GMT
Etag: "638575e9-116"
Expires: Thu, 01 Dec 2022 03:00:57 GMT
Last-Modified: Tue, 29 Nov 2022 03:00:57 GMT
Server: nginx
Content-Length: 278

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 15:10:05 GMT
cache-control: public,max-age=3600
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
age: 1069
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
c120c4eb397aa1b83235fba4d266dc4b
d42c78a14037c1e62859160967333b88b7a523d7
dfa9be80eb97807e9257fa700e4cb5f5ff9c2ed77cb6a85783e053f4b3848dc3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=127983
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 15:27:55 GMT
Etag: "638575e9-116"
Expires: Thu, 01 Dec 2022 03:00:58 GMT
Last-Modified: Tue, 29 Nov 2022 03:00:57 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 278

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
3c8c689bd654417640d85f3da51af313
85123b6d46230a23d03768bf304b386e5d301305
516138ca79703b45e904d32d7dde1c1e9fd35995b9f1bb1331c547542745676d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5119
Cache-Control: max-age=155052
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 15:27:55 GMT
Etag: "6385cba8-1d7"
Expires: Thu, 01 Dec 2022 10:32:07 GMT
Last-Modified: Tue, 29 Nov 2022 09:06:48 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f50fd635895870df33a17fe377a6a038
dd65dfbbc810b095432cfd59f971af04a9e31ab7
ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 15:27:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f50fd635895870df33a17fe377a6a038
dd65dfbbc810b095432cfd59f971af04a9e31ab7
ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 15:27:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f50fd635895870df33a17fe377a6a038
dd65dfbbc810b095432cfd59f971af04a9e31ab7
ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 15:27:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f50fd635895870df33a17fe377a6a038
dd65dfbbc810b095432cfd59f971af04a9e31ab7
ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 15:27:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-216467149-3

142.250.74.168

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-216467149-3
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
44 kB (43613 bytes)
Hash
850219f19146af6b23b9aa19f8dae943
8ff09b831b22f3c87e7ca3d497a6f30d49bfd150
a9c5841675cc38aa39a8444da18c14f7f96fd2796562445d60909e8b50e9ed82

HTTP Headers

GET /gtag/js?id=UA-216467149-3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://twavcc.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 29 Nov 2022 15:27:55 GMT
expires: Tue, 29 Nov 2022 15:27:55 GMT
cache-control: private, max-age=900
last-modified: Tue, 29 Nov 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43613
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-216467149-5

142.250.74.168

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-216467149-5
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
44 kB (43614 bytes)
Hash
afcbcc5366b8e61ab402b4a323dfd3eb
2d92d1eac9a3c7b4f14987b89f79fa6d30870b32
b3b2722a22902b5f78231a5a3f3faa60773f0afce28e2805e35b614fc0114f5a

HTTP Headers

GET /gtag/js?id=UA-216467149-5 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://twavcc.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 29 Nov 2022 15:27:55 GMT
expires: Tue, 29 Nov 2022 15:27:55 GMT
cache-control: private, max-age=900
last-modified: Tue, 29 Nov 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43614
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-G6VYGG5207

142.250.74.168

200 OK

77 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-G6VYGG5207
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (19102)
Size
77 kB (76980 bytes)
Hash
6e4e13bf0d971a04c878d877361e1264
725c16115bde64a20c67d92341a021eab1ce1c21
98e40cf3ff049691534220c8b94f36128f076e84587222641d9e0e064806402c

HTTP Headers

GET /gtag/js?id=G-G6VYGG5207 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://twavcc.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 29 Nov 2022 15:27:55 GMT
expires: Tue, 29 Nov 2022 15:27:55 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76980
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

push.services.mozilla.com/

54.187.31.159

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.187.31.159:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VHHgmAgr3jtOzwPRPQ2L9A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: UsjCHHAHhvEfh4X5E4FpMxfMWUo=

www.zyzimg.com/pic/uploadimg/2022/05/220831ry435.mp4.jpg

54.230.111.89

200 OK

21 kB

URL HTTP/1.1
www.zyzimg.com/pic/uploadimg/2022/05/220831ry435.mp4.jpg
IP
54.230.111.89:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=3, manufacturer=26180ths 248rns, software=Video Thumbnails Maker v6.3.0.0a, copyright=SUU Design], baseline, precision 8, 252x342, components 3\012- data
Size
21 kB (20799 bytes)
Hash
e02887430294a15bbe61771013552702
ad41e9b92ca598f71d370763097fdb96f34e621c
d7c42df8fb410bd40348ba78d693ecec4b5cab6cc1fe25c3fda73874a5e78820

HTTP Headers

GET /pic/uploadimg/2022/05/220831ry435.mp4.jpg HTTP/1.1
Host: www.zyzimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://twavcc.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 20799
Connection: keep-alive
Server: X
Date: Tue, 29 Nov 2022 07:16:38 GMT
Last-Modified: Sat, 03 Sep 2022 04:09:53 GMT
ETag: "6312d391-513f"
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: mcBe1dsk2IKSaazme3pR3y3DMRYJpAM3YZO0Oz-Pks2f6uXp0NrKNQ==
Age: 29477
Vary: Accept-Encoding, Origin

www.zyzimg.com/pic/uploadimg/2022/05/220831ry434.mp4.jpg

54.230.111.89

200 OK

16 kB

URL HTTP/1.1
www.zyzimg.com/pic/uploadimg/2022/05/220831ry434.mp4.jpg
IP
54.230.111.89:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=3, manufacturer=26179ths 248rns, software=Video Thumbnails Maker v6.3.0.0a, copyright=SUU Design], baseline, precision 8, 252x342, components 3\012- data
Size
16 kB (15589 bytes)
Hash
d4629724371b3a2805b668aa47ab8573
4ecd1f4e73f2c4136df3eb8509761e132cc63948
e7c6bf19b8e65e652f96966047fd46b281dd3da3bfc571a0b1e9308149ab21c2

HTTP Headers

GET /pic/uploadimg/2022/05/220831ry434.mp4.jpg HTTP/1.1
Host: www.zyzimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://twavcc.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 15589
Connection: keep-alive
Server: X
Date: Tue, 29 Nov 2022 07:16:38 GMT
Last-Modified: Sat, 03 Sep 2022 04:09:53 GMT
ETag: "6312d391-3ce5"
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: VGhsGL-XzqBRWbZ_Gn_hPcJf9qQE7_hJp4eXYJ05tmhs8m4KjiUQXg==
Age: 29477
Vary: Accept-Encoding, Origin

www.zyzimg.com/pic/uploadimg/2022/05/220831ry433.mp4.jpg

54.230.111.89

200 OK

19 kB

URL HTTP/1.1
www.zyzimg.com/pic/uploadimg/2022/05/220831ry433.mp4.jpg
IP
54.230.111.89:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=3, manufacturer=26178ths 248rns, software=Video Thumbnails Maker v6.3.0.0a, copyright=SUU Design], baseline, precision 8, 252x342, components 3\012- data
Size
19 kB (19325 bytes)
Hash
063e2416fbf226070784589ba7ea464f
c4865fec4316a926000f44b8560d0cb7b66f5015
6ef548f159011656da01cf65f5c49e9859af564c18d273846342b63b1d0badfa

HTTP Headers

GET /pic/uploadimg/2022/05/220831ry433.mp4.jpg HTTP/1.1
Host: www.zyzimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://twavcc.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 19325
Connection: keep-alive
Server: X
Date: Tue, 29 Nov 2022 07:06:19 GMT
Last-Modified: Sat, 03 Sep 2022 04:09:53 GMT
ETag: "6312d391-4b7d"
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: liLUvgkxl76Y4t1qHtaaOOf7n-kMrOabZHolICbHwqoZ04U-eEZkUQ==
Age: 30096
Vary: Accept-Encoding, Origin

www.zyzimg.com/pic/uploadimg/2022/05/220831ry432.mp4.jpg

54.230.111.89

200 OK

17 kB

URL HTTP/1.1
www.zyzimg.com/pic/uploadimg/2022/05/220831ry432.mp4.jpg
IP
54.230.111.89:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=3, manufacturer=26177ths 248rns, software=Video Thumbnails Maker v6.3.0.0a, copyright=SUU Design], baseline, precision 8, 252x342, components 3\012- data
Size
17 kB (17262 bytes)
Hash
fe2f5ca5016ea3822485c37e1ec5c2d1
ca89a6f156be586ed055300063b2aea2b5fe3129
31d49257f704878dba4871b12d2629099d561b40f7ec6b4af3c85977dd71e31b

HTTP Headers

GET /pic/uploadimg/2022/05/220831ry432.mp4.jpg HTTP/1.1
Host: www.zyzimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://twavcc.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 17262
Connection: keep-alive
Server: X
Date: Tue, 29 Nov 2022 07:06:19 GMT
Last-Modified: Sat, 03 Sep 2022 04:09:53 GMT
ETag: "6312d391-436e"
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: z4PXJ7ge1PE87fH02GR-YjpJVRLRqLRs22MED0xLbyA7PdWE-drQGQ==
Age: 30096
Vary: Accept-Encoding, Origin

www.zyzimg.com/pic/uploadimg/2022/05/220831ry430.mp4.jpg

54.230.111.89

200 OK

16 kB

URL HTTP/1.1
www.zyzimg.com/pic/uploadimg/2022/05/220831ry430.mp4.jpg
IP
54.230.111.89:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=3, manufacturer=26175ths 248rns, software=Video Thumbnails Maker v6.3.0.0a, copyright=SUU Design], baseline, precision 8, 252x342, components 3\012- data
Size
16 kB (15764 bytes)
Hash
c84bea6cf5b598b1804e15590c7e6957
acbee1b939c8e9ab3e9a9bfb34c51c31ead3a1ad
6920f0af21de8a8edf18b4e50540721072ce790f0a399257e44232e2a32fe960

HTTP Headers

GET /pic/uploadimg/2022/05/220831ry430.mp4.jpg HTTP/1.1
Host: www.zyzimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://twavcc.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 15764
Connection: keep-alive
Server: X
Date: Tue, 29 Nov 2022 07:16:39 GMT
Last-Modified: Sat, 03 Sep 2022 04:09:52 GMT
ETag: "6312d390-3d94"
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: bkJWFs7TQXGEbUn9VJrSdm8KrC3Kg8BFVZrlh-kd-vabOU-_a5e2sw==
Age: 29476
Vary: Accept-Encoding, Origin

www.zyzimg.com/pic/uploadimg/2022/05/220831nvt432.mp4.jpg

54.230.111.89

200 OK

21 kB

URL HTTP/1.1
www.zyzimg.com/pic/uploadimg/2022/05/220831nvt432.mp4.jpg
IP
54.230.111.89:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=3, manufacturer=24857ths 247rns, software=Video Thumbnails Maker v6.3.0.0a, copyright=SUU Design], baseline, precision 8, 252x342, components 3\012- data
Size
21 kB (20553 bytes)
Hash
f197f0c7a543c60d30f40ef6bc8b727b
3c3363ee17dcf88279935d26c7448589749cef31
eddc615096f398c17e062b12e12370d40c17bd639dd0fa150334127f18e47cdd

HTTP Headers

GET /pic/uploadimg/2022/05/220831nvt432.mp4.jpg HTTP/1.1
Host: www.zyzimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://twavcc.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 20553
Connection: keep-alive
Server: X
Date: Tue, 29 Nov 2022 07:29:32 GMT
Last-Modified: Sat, 03 Sep 2022 04:07:16 GMT
ETag: "6312d2f4-5049"
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: QA-yWMgvWPAsf2f9_j_PTepNCZOrptRUO_5A-TJvGqOqU1HHv8_hkw==
Age: 28703
Vary: Accept-Encoding, Origin

www.zyzimg.com/pic/uploadimg/2022/05/220831ry431.mp4.jpg

54.230.111.89

200 OK

18 kB

URL HTTP/1.1
www.zyzimg.com/pic/uploadimg/2022/05/220831ry431.mp4.jpg
IP
54.230.111.89:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=3, manufacturer=26176ths 248rns, software=Video Thumbnails Maker v6.3.0.0a, copyright=SUU Design], baseline, precision 8, 252x342, components 3\012- data
Size
18 kB (18084 bytes)
Hash
32a08bebaad787491c5225d66e5635af
01b628b87021fe8123d9d79122a044d0f6f6df12
27f29f7d8d92a4bbbff2b833b4b14bb4aabe8e2ef44a4e54568952e462578e42

HTTP Headers

GET /pic/uploadimg/2022/05/220831ry431.mp4.jpg HTTP/1.1
Host: www.zyzimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://twavcc.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 18084
Connection: keep-alive
Server: X
Date: Tue, 29 Nov 2022 07:06:19 GMT
Last-Modified: Sat, 03 Sep 2022 04:09:52 GMT
ETag: "6312d390-46a4"
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: G8H6r-i9PUipV185EdBUFzyk8yBNQ52ktnSRYvOb6YiOLvEBHqms6g==
Age: 30096
Vary: Accept-Encoding, Origin

www.zyzimg.com/pic/uploadimg/2022/05/220831nvt431.mp4.jpg

54.230.111.89

200 OK

22 kB

URL HTTP/1.1
www.zyzimg.com/pic/uploadimg/2022/05/220831nvt431.mp4.jpg
IP
54.230.111.89:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=3, manufacturer=24856ths 247rns, software=Video Thumbnails Maker v6.3.0.0a, copyright=SUU Design], baseline, precision 8, 252x342, components 3\012- data
Size
22 kB (21854 bytes)
Hash
3e6b468caf1eac421f97d3ffc3d81785
f03cef16f2ffdf8bea0329a8cec6eb135ec68db9
3c80d4eb807d71a28cd65224d6bd6cf1823e9395fec5637c189f6e49e40687c7

HTTP Headers

GET /pic/uploadimg/2022/05/220831nvt431.mp4.jpg HTTP/1.1
Host: www.zyzimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://twavcc.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 21854
Connection: keep-alive
Server: X
Date: Tue, 29 Nov 2022 07:09:39 GMT
Last-Modified: Sat, 03 Sep 2022 04:07:15 GMT
ETag: "6312d2f3-555e"
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: YqSuLZpZfI2fosUfB4d_fQEoJwmtjnyjvz_4deMlTT4nNCDn6ZFH6A==
Age: 29896
Vary: Accept-Encoding, Origin

www.zyzimg.com/pic/uploadimg/2022/05/220831nvt430.mp4.jpg

54.230.111.89

200 OK

28 kB

URL HTTP/1.1
www.zyzimg.com/pic/uploadimg/2022/05/220831nvt430.mp4.jpg
IP
54.230.111.89:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=3, manufacturer=24855ths 247rns, software=Video Thumbnails Maker v6.3.0.0a, copyright=SUU Design], baseline, precision 8, 252x342, components 3\012- data
Size
28 kB (27554 bytes)
Hash
7416c8b269631eb9a96d643382981720
0ae233d90e0c77d8f69e27c09c0fcc30d71be901
dbde21e5166a6b522a540813e602047036c8b3f52feb5b98e699a5ac974d35ce

HTTP Headers

GET /pic/uploadimg/2022/05/220831nvt430.mp4.jpg HTTP/1.1
Host: www.zyzimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://twavcc.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 27554
Connection: keep-alive
Server: X
Date: Tue, 29 Nov 2022 07:09:38 GMT
Last-Modified: Sat, 03 Sep 2022 04:07:15 GMT
ETag: "6312d2f3-6ba2"
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: cP1df9lzQIPCrcpp671n-YChdYB2jAAHhZgedkyB6LMtIXz8Y4T2_w==
Age: 29896
Vary: Accept-Encoding, Origin

www.zyzimg.com/pic/uploadimg/2022/05/220831nvt429.mp4.jpg

54.230.111.89

200 OK

17 kB

URL HTTP/1.1
www.zyzimg.com/pic/uploadimg/2022/05/220831nvt429.mp4.jpg
IP
54.230.111.89:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=3, manufacturer=24854ths 247rns, software=Video Thumbnails Maker v6.3.0.0a, copyright=SUU Design], baseline, precision 8, 252x342, components 3\012- data
Size
17 kB (16878 bytes)
Hash
98212a9f8abbe84ea6e7db88036e0522
b48907a2f84c3bdd4115339678da7124488a2382
c4379592c82b649dc7d2ac06a4fdc432cd0dc450ba2c76889526d1540be58d91

HTTP Headers

GET /pic/uploadimg/2022/05/220831nvt429.mp4.jpg HTTP/1.1
Host: www.zyzimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://twavcc.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 16878
Connection: keep-alive
Server: X
Date: Tue, 29 Nov 2022 07:09:38 GMT
Last-Modified: Sat, 03 Sep 2022 04:07:15 GMT
ETag: "6312d2f3-41ee"
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: KgaiTbeR5GSjNiXsLmvvuOqA04a8sCakOuV13pWs4hlzHt6D1lWBMw==
Age: 29896
Vary: Accept-Encoding, Origin

www.zyzimg.com/pic/uploadimg/2022/05/220831nvt428.mp4.jpg

54.230.111.89

200 OK

24 kB

URL HTTP/1.1
www.zyzimg.com/pic/uploadimg/2022/05/220831nvt428.mp4.jpg
IP
54.230.111.89:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=3, manufacturer=24853ths 247rns, software=Video Thumbnails Maker v6.3.0.0a, copyright=SUU Design], baseline, precision 8, 252x342, components 3\012- data
Size
24 kB (24455 bytes)
Hash
9f13bcf1fdeb053cdf7ee2c6eec361d4
14374c6696aee22791a171b983de7bad3d4e99b0
b79437e3a2c97c6551c8cb14880ec3140ecef00eef10af0f4936ddb00338b244

HTTP Headers

GET /pic/uploadimg/2022/05/220831nvt428.mp4.jpg HTTP/1.1
Host: www.zyzimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://twavcc.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 24455
Connection: keep-alive
Server: X
Date: Tue, 29 Nov 2022 07:03:37 GMT
Last-Modified: Sat, 03 Sep 2022 04:07:15 GMT
ETag: "6312d2f3-5f87"
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: V5GF__-ubF3zYxwTHRqoAF-XPYsSF1TWtvKigqoCpDTIe5xugt6kqA==
Age: 30258
Vary: Accept-Encoding, Origin

ocsp.r2m01.amazontrust.com/

54.230.80.227

200 OK

471 B

URL HTTP/1.1
ocsp.r2m01.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
282185c1d0f5f0d66a51218718d7431e
f408da9b5f444056ef828ca0a8a46428eeb7c6df
76d9aabbf68c59195f20806dcdc302b5c222fe50ecfba5c9aaa61445fb639617

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=156449
Date: Tue, 29 Nov 2022 15:27:55 GMT
Etag: "6385d6e4-1d7"
Expires: Thu, 01 Dec 2022 10:55:24 GMT
Last-Modified: Tue, 29 Nov 2022 09:54:44 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: UJiGlXZ6MwrAZOYrNz4sJF6FL1dYvodEHzEt13XwQlOFLyXUHbz8Bw==
Age: 3640

www.zyzimg.com/pic/uploadimg/2022/05/220831ry436.mp4.jpg

54.230.111.89

200 OK

18 kB

URL HTTP/1.1
www.zyzimg.com/pic/uploadimg/2022/05/220831ry436.mp4.jpg
IP
54.230.111.89:0
ASN
#16509 AMAZON-02

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=3, manufacturer=26181ths 248rns, software=Video Thumbnails Maker v6.3.0.0a, copyright=SUU Design], baseline, precision 8, 252x342, components 3\012- data
Size
18 kB (18090 bytes)
Hash
56bf2f191d22c2949becca60f0e6cbc2
62d80d42e54872545cfca618e01e94037bb6004e
44bd2143cd138af6b9d245c4e8b665b23cd54920197891c37aab00c7b225ea2c

HTTP Headers

GET /pic/uploadimg/2022/05/220831ry436.mp4.jpg HTTP/1.1
Host: www.zyzimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://twavcc.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 18090
Connection: keep-alive
Server: X
Date: Tue, 29 Nov 2022 07:16:38 GMT
Last-Modified: Sat, 03 Sep 2022 04:09:53 GMT
ETag: "6312d391-46aa"
Accept-Ranges: bytes
X-Cache: Hit from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: mWAi2-0LCWIJxaTtkt-J40vyLEHbqGxTFc5IFoiS0Ya-fxxXK5DrKQ==
Age: 29477
Vary: Accept-Encoding, Origin

www.google-analytics.com/analytics.js

216.58.207.206

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
216.58.207.206:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://twavcc.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 29 Nov 2022 14:41:08 GMT
expires: Tue, 29 Nov 2022 16:41:08 GMT
cache-control: public, max-age=7200
age: 2808
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3105
Expires: Tue, 29 Nov 2022 16:19:42 GMT
Date: Tue, 29 Nov 2022 15:27:57 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3105
Expires: Tue, 29 Nov 2022 16:19:42 GMT
Date: Tue, 29 Nov 2022 15:27:57 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3105
Expires: Tue, 29 Nov 2022 16:19:42 GMT
Date: Tue, 29 Nov 2022 15:27:57 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3105
Expires: Tue, 29 Nov 2022 16:19:42 GMT
Date: Tue, 29 Nov 2022 15:27:57 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3105
Expires: Tue, 29 Nov 2022 16:19:42 GMT
Date: Tue, 29 Nov 2022 15:27:57 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg

34.120.237.76

200 OK

9.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.4 kB (9376 bytes)
Hash
cce27a1fe8c0222811a5ce0e7f89e1cb
28c165bac8cf68cd1b0763c311aece00672cb3a5
4530e34a47ef78c2c2b0d34a0511253a61f1927b192ab42f82361002ff10819e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9376
x-amzn-requestid: c52b3092-90d2-4289-b6e0-ab99c9d4710a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPmz3EVUoAMFWUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382eb4b-39f46c89238eff696e9f2dba;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 04:44:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ofQEhaEiX1vE25a_1xHeab9Px9zgGpk8omlX_aHmLE1oN1aZTPzWxQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 10:09:32 GMT
age: 19105
etag: "28c165bac8cf68cd1b0763c311aece00672cb3a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.9 kB (4916 bytes)
Hash
83c1fedec73299637cc7dc47c48af758
2e3f7326aeea6be8a34bf2c39b34862c07bfdc41
1fea143e23bb0156062f4c06569824900a67ed83cb99fd635d4c4ab968dc65e9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4916
x-amzn-requestid: b8c80a6c-e3f1-4f20-beb8-27b0af760692
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYcrELFoAMFaeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d450-155cfb365525173c0ede8adb;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Twtw6dO3pjTB9OLi0HliKKCDgCuHRqgtx4PFTczrZQ9f8JztgXZoSg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 03:18:11 GMT
age: 43786
etag: "2e3f7326aeea6be8a34bf2c39b34862c07bfdc41"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.4 kB (9430 bytes)
Hash
1f434933b5bd6377d299ada22d1ae7ef
075531f525e625b117b2497f31139c9824d0e9c5
b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NMMuQ1NNks65LJK_HDAK69MfCJ3pS0Y6VzBs8_5Oku64v4FSWADCdw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 22:01:55 GMT
age: 62762
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10176 bytes)
Hash
03014221d7f49b50ffc2d1b0a0e75457
772d86ad983042a728ee3490630a9cf1134ad0dd
81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10176
x-amzn-requestid: c2231955-5c78-4073-8399-b8b90f1add78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMo3oHpSoAMF5Qw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bb63-55a1cb004ac73c8b02f2fb8d;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:08:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uGocx-Lv8ieJVvICjnTGQZyzaQzjVdICX2RZaNyBTQvUKeIcNxaCJQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 04:49:50 GMT
age: 38287
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.4 kB (4417 bytes)
Hash
a2a5c8d4113d282600462749315f2c4f
e2b4d2e15bb7c086333c0da438873e4c139ba931
9b5d0e5dd11d4cbf1c78a71730cd63544170c91ab635bf3cf917827ac84874e6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4417
x-amzn-requestid: 01de83c2-51d2-4329-98f6-09a0edf46942
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnGEcRIAMFaXA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852960-34583b6c588a0e937fcfaa46;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wqEe45jzMOryT-E-vThc39-cLiZudKF4gn6cS3LBmeaJ2amJF5GPIA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:46:54 GMT
age: 63663
etag: "e2b4d2e15bb7c086333c0da438873e4c139ba931"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

20 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
data
Size
20 kB (20232 bytes)
Hash
ec0cd072c5edbe9a92c6b2f1722300e3
6763eade2a7f27e4f25672a86175bb3bcceb331e
221bb54b3e7b7ff48c4b4c17fdd68ee0742e3411721fe24e2a7efd4794266700

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9fRfgj9_S00P8fI_T-tVt7khJ1kYZux_55K_yLYUsiyVEoiWRM9QAw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 22:07:26 GMT
age: 62431
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

region1.google-analytics.com/g/collect?v=2&tid=G-497QF9WRBV&gtm=2oeb90&_p=594544045&cid=1666902299.1669735676&ul=en-us&sr=1280x1024&_s=1&sid=1669735675&sct=1&seg=0&dl=https%3A%2F%2Ftwavcc.info%2F&dt=%E7%A6%81%E4%B9%A6AV-twavtv.info&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-497QF9WRBV&gtm=2oeb90&_p=594544045&cid=1666902299.1669735676&ul=en-us&sr=1280x1024&_s=1&sid=1669735675&sct=1&seg=0&dl=https%3A%2F%2Ftwavcc.info%2F&dt=%E7%A6%81%E4%B9%A6AV-twavtv.info&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-497QF9WRBV&gtm=2oeb90&_p=594544045&cid=1666902299.1669735676&ul=en-us&sr=1280x1024&_s=1&sid=1669735675&sct=1&seg=0&dl=https%3A%2F%2Ftwavcc.info%2F&dt=%E7%A6%81%E4%B9%A6AV-twavtv.info&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://twavcc.info
Connection: keep-alive
Referer: https://twavcc.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://twavcc.info
date: Tue, 29 Nov 2022 15:27:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

region1.google-analytics.com/g/collect?v=2&tid=G-G6VYGG5207&gtm=2oeb90&_p=594544045&cid=1666902299.1669735676&ul=en-us&sr=1280x1024&_s=1&sid=1669735675&sct=1&seg=0&dl=https%3A%2F%2Ftwavcc.info%2F&dt=%E7%A6%81%E4%B9%A6AV-twavtv.info&en=page_view&_fv=1&_ss=1&_ee=1

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-G6VYGG5207&gtm=2oeb90&_p=594544045&cid=1666902299.1669735676&ul=en-us&sr=1280x1024&_s=1&sid=1669735675&sct=1&seg=0&dl=https%3A%2F%2Ftwavcc.info%2F&dt=%E7%A6%81%E4%B9%A6AV-twavtv.info&en=page_view&_fv=1&_ss=1&_ee=1
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-G6VYGG5207&gtm=2oeb90&_p=594544045&cid=1666902299.1669735676&ul=en-us&sr=1280x1024&_s=1&sid=1669735675&sct=1&seg=0&dl=https%3A%2F%2Ftwavcc.info%2F&dt=%E7%A6%81%E4%B9%A6AV-twavtv.info&en=page_view&_fv=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://twavcc.info
Connection: keep-alive
Referer: https://twavcc.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://twavcc.info
date: Tue, 29 Nov 2022 15:27:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

twavcc.info/

104.21.61.221

200 OK

0 B

URL HTTP/2
twavcc.info/
IP
104.21.61.221:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: twavcc.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Tue, 29 Nov 2022 15:27:54 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U6FWdWtpFgMXIRVAUuD4CfIuPjhcQVOHYg%2BaEKJKlvXS2UYmWb4EtcjOPnYZNFzBvC39V%2FSbVK1y3FoQshoygBC6T1xhk0i0zZ8Z4uJboZRzdXlskzPIz5UADrs4zw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 771c5ebf294bfac8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

twavcc.info/template/book/js/p__Channel.15daecc4.async.js

104.21.61.221

200 OK

0 B

URL HTTP/2
twavcc.info/template/book/js/p__Channel.15daecc4.async.js
IP
104.21.61.221:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /template/book/js/p__Channel.15daecc4.async.js HTTP/1.1
Host: twavcc.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://twavcc.info/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 29 Nov 2022 15:27:55 GMT
content-type: application/javascript
last-modified: Thu, 08 Sep 2022 17:55:27 GMT
vary: Accept-Encoding
etag: W/"631a2c8f-a6bf"
expires: Wed, 30 Nov 2022 03:27:55 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wDD3HHzmU1fHRo7tSwJ5L9w1yXXzoP1I2WE7Pgw97O8V90RAUcVH6wGt4URD7Q2BJvxI68L202vIzCg7SWGKPqw%2BQoJPAeg%2FiuN0tilpiak5SxZV5YsSpSpnc7Cqrw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 771c5ec15aaffac8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

twavcc.info/template/book/js/p__VideoList.8a2972e7.async.js

104.21.61.221

200 OK

0 B

URL HTTP/2
twavcc.info/template/book/js/p__VideoList.8a2972e7.async.js
IP
104.21.61.221:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /template/book/js/p__VideoList.8a2972e7.async.js HTTP/1.1
Host: twavcc.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://twavcc.info/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 29 Nov 2022 15:27:55 GMT
content-type: application/javascript
last-modified: Thu, 08 Sep 2022 17:55:28 GMT
vary: Accept-Encoding
etag: W/"631a2c90-1f906"
expires: Wed, 30 Nov 2022 03:27:55 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4oqh7YJqBAIpkR%2F%2FP6LWJGBHtKX2YlwpxW2ze%2FZ3IX26Tsn0zeEyECcM%2BbizPIFIFprKcn0Jg%2BrGCocRlMN8nvZHdQ3bNeJrW89o0A9TEOaQKmYViv4Ua%2BeWM6CDFg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 771c5ec15aaefac8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

twavcc.info/static/js/home.js

104.21.61.221

200 OK

0 B

URL HTTP/2
twavcc.info/static/js/home.js
IP
104.21.61.221:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /static/js/home.js HTTP/1.1
Host: twavcc.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://twavcc.info/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 29 Nov 2022 15:27:55 GMT
content-type: application/javascript
last-modified: Sun, 14 Feb 2021 03:15:03 GMT
vary: Accept-Encoding
etag: W/"602895b7-926b"
expires: Wed, 30 Nov 2022 03:27:55 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GDokZUOrCFAkEbY%2FePMGz94cITZk704taBfiR%2BSglhLK7Gj%2Bfjv3pUEK3TWdABrbzKQkEaIsJCNJQfE5qJtV4PxrYhh9FpkiD8GYeGRr5R0tLAHUSUD%2FKhKPPMvchA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 771c5ec14aa1fac8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

twavcc.info/template/book/css/p__Live.76093077.chunk.css

104.21.61.221

200 OK

0 B

URL HTTP/2
twavcc.info/template/book/css/p__Live.76093077.chunk.css
IP
104.21.61.221:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /template/book/css/p__Live.76093077.chunk.css HTTP/1.1
Host: twavcc.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://twavcc.info/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 29 Nov 2022 15:27:55 GMT
content-type: text/css
last-modified: Thu, 08 Sep 2022 17:54:41 GMT
etag: W/"631a2c61-258"
expires: Wed, 30 Nov 2022 03:27:55 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EbmeXdqQ3Xme1kS00Lb5RWAILnPQXE2FztEasfef5TEOHSsVt6OCHgeZn627rbDYqTOono9uIddabg09Dfau%2BJCbgKD0W9lcM34OEpnttWzJuloAk1NwZb5l8%2FYcdA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771c5ec15ab8fac8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

twavcc.info/template/book/css/p__RankList.73ed4bdc.chunk.css

104.21.61.221

200 OK

0 B

URL HTTP/2
twavcc.info/template/book/css/p__RankList.73ed4bdc.chunk.css
IP
104.21.61.221:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /template/book/css/p__RankList.73ed4bdc.chunk.css HTTP/1.1
Host: twavcc.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://twavcc.info/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 29 Nov 2022 15:27:55 GMT
content-type: text/css
last-modified: Thu, 08 Sep 2022 17:54:42 GMT
vary: Accept-Encoding
etag: W/"631a2c62-d20b"
expires: Wed, 30 Nov 2022 03:27:55 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pFYwHeRANZxbtxwJzQOacPIJUwsVV0%2FZ72LWHQHm19K7lWG8rquL9%2Fo2Z10NleLgWYKDOgIlYytiww%2B4z9HpT6yd2gyRzoevR7cbpCte6Otrpt3T3g9gDXjJ9Yefgg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 771c5ec15ab3fac8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

twavcc.info/template/book/css/Askvideo.css

104.21.61.221

200 OK

0 B

URL HTTP/2
twavcc.info/template/book/css/Askvideo.css
IP
104.21.61.221:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /template/book/css/Askvideo.css HTTP/1.1
Host: twavcc.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://twavcc.info/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 29 Nov 2022 15:27:55 GMT
content-type: text/css
last-modified: Thu, 08 Sep 2022 17:54:38 GMT
vary: Accept-Encoding
etag: W/"631a2c5e-11108"
expires: Wed, 30 Nov 2022 03:27:55 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VBZtavVvtMiKrvKqlmZFxgou%2BL9xaul3sYx2Z6LO1H7%2BLxvYuaWixINDbcJABqQpF0p5tn83u5RjNWcGxwLwHeoSIIH63kGf0mXyFzKuUH29DCvFQQqpSOWRKGE%2BBQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 771c5ec15ab9fac8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

twavcc.info/template/book/js/jquery-1.11.1.min.js

104.21.61.221

200 OK

0 B

URL HTTP/2
twavcc.info/template/book/js/jquery-1.11.1.min.js
IP
104.21.61.221:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /template/book/js/jquery-1.11.1.min.js HTTP/1.1
Host: twavcc.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://twavcc.info/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 29 Nov 2022 15:27:55 GMT
content-type: application/javascript
last-modified: Thu, 08 Sep 2022 17:55:23 GMT
vary: Accept-Encoding
etag: W/"631a2c8b-1762a"
expires: Wed, 30 Nov 2022 03:27:55 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R7tjCGXPQliW1Q0f0Dg%2BtrG0e67zK7%2Ft37Es1%2FzpV5eVdUTpz3AHayOk%2BVJC0wFIvmCxjw6mULJcZ%2Bu0oEdKD6s%2FJjYNN8eDh2%2FtLV5%2FcMFuZt%2F7trjkeJdvs4S7yg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 771c5ec14aa6fac8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

twavcc.info/template/book/js/layouts__BasicLayout.5d8181ed.async.js

104.21.61.221

200 OK

0 B

URL HTTP/2
twavcc.info/template/book/js/layouts__BasicLayout.5d8181ed.async.js
IP
104.21.61.221:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /template/book/js/layouts__BasicLayout.5d8181ed.async.js HTTP/1.1
Host: twavcc.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://twavcc.info/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 29 Nov 2022 15:27:55 GMT
content-type: application/javascript
last-modified: Thu, 08 Sep 2022 17:55:26 GMT
vary: Accept-Encoding
etag: W/"631a2c8e-6b6fa"
expires: Wed, 30 Nov 2022 03:27:55 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RZaWddyqXdzy5hent%2Fus4WMZX8j5D97h9Q5pyaQjUKj5RhKPL7ISBRpzIA5CzB%2FC3QkqlWijCe8oElE%2BEYHwjp8KGl%2Bl1qksxc0toFhaXybYQmZpgQKvCff9L9875g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 771c5ec14aa9fac8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-497QF9WRBV

142.250.74.168

200 OK

0 B

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-497QF9WRBV
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /gtag/js?id=G-497QF9WRBV HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://twavcc.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 29 Nov 2022 15:27:55 GMT
expires: Tue, 29 Nov 2022 15:27:55 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76977
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

twavcc.info/template/book/js/jquery.lazyload.js

104.21.61.221

200 OK

0 B

URL HTTP/2
twavcc.info/template/book/js/jquery.lazyload.js
IP
104.21.61.221:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /template/book/js/jquery.lazyload.js HTTP/1.1
Host: twavcc.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://twavcc.info/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 29 Nov 2022 15:27:55 GMT
content-type: application/javascript
last-modified: Thu, 08 Sep 2022 17:55:24 GMT
vary: Accept-Encoding
etag: W/"631a2c8c-8b6"
expires: Wed, 30 Nov 2022 03:27:55 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yy8s23%2FjG4paqaxTUNG2QJIBEr4x3%2FeON6f2p3SzRMu2nsBsStshtOhEDlv7MDazutQw1hIqlML81BHuMwCTAv9ZFv%2BQZrphOHLhh9WX6JFmlv%2BFFSh3zw2QLQ7bnw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 771c5ec14aa4fac8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

twavcc.info/template/book/js/jquery.autocomplete.js

104.21.61.221

200 OK

0 B

URL HTTP/2
twavcc.info/template/book/js/jquery.autocomplete.js
IP
104.21.61.221:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /template/book/js/jquery.autocomplete.js HTTP/1.1
Host: twavcc.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://twavcc.info/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 29 Nov 2022 15:27:55 GMT
content-type: application/javascript
last-modified: Thu, 08 Sep 2022 17:55:24 GMT
vary: Accept-Encoding
etag: W/"631a2c8c-360e"
expires: Wed, 30 Nov 2022 03:27:55 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yHhOioYp4A7lFz7upiefdV%2FwEU6KBsD6LZmH4Tpbm6loxme2%2FbtUvR49SlYMYf0WcDNJs7so3u%2Bcll1j5YJ1pYR6si8FYlozM1RIrM6mdXeyY9OUmtHac0YArPS3vA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 771c5ec14aa2fac8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

twavcc.info/template/book/css/p__VideoList.52786686.chunk.css

104.21.61.221

200 OK

0 B

URL HTTP/2
twavcc.info/template/book/css/p__VideoList.52786686.chunk.css
IP
104.21.61.221:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /template/book/css/p__VideoList.52786686.chunk.css HTTP/1.1
Host: twavcc.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://twavcc.info/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 29 Nov 2022 15:27:55 GMT
content-type: text/css
last-modified: Thu, 08 Sep 2022 17:54:43 GMT
vary: Accept-Encoding
etag: W/"631a2c63-a138"
expires: Wed, 30 Nov 2022 03:27:55 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aQj4G2yzxn3fkl2ysI6EI2E7l1RCX7fFkbrKSrRW08%2Bx7ZW13s5D6S%2FxrjIuK7jrjAj2sO8VD%2FuSbwCiaICbQ5GuMmSp69liseGXdavS5ih5aLC0%2BZYaQHpEyg9g7w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 771c5ec15ab7fac8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

twavcc.info/template/book/css/p__Channel.3c87122b.chunk.css

104.21.61.221

200 OK

0 B

URL HTTP/2
twavcc.info/template/book/css/p__Channel.3c87122b.chunk.css
IP
104.21.61.221:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /template/book/css/p__Channel.3c87122b.chunk.css HTTP/1.1
Host: twavcc.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://twavcc.info/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 29 Nov 2022 15:27:55 GMT
content-type: text/css
last-modified: Thu, 08 Sep 2022 17:54:41 GMT
vary: Accept-Encoding
etag: W/"631a2c61-3602"
expires: Wed, 30 Nov 2022 03:27:55 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jYGICXhcXB2i6rkMa2%2BkIbf306E%2BmZGg8tg0cTO2RK%2FeiJ%2B98mUxwXttZJckoPiVSSD954ZbqSv1pHWbpweIcPJ35F0PD4nY6gK3PAi5PJLpiLOoTdykZyxUSTSmLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 771c5ec15ab1fac8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

twavcc.info/template/book/js/sw.js

104.21.61.221

200 OK

0 B

URL HTTP/2
twavcc.info/template/book/js/sw.js
IP
104.21.61.221:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /template/book/js/sw.js HTTP/1.1
Host: twavcc.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://twavcc.info/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 29 Nov 2022 15:27:55 GMT
content-type: application/javascript
last-modified: Thu, 08 Sep 2022 17:55:29 GMT
etag: W/"631a2c91-df"
expires: Wed, 30 Nov 2022 03:27:55 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=74QnkBG%2Bo9LLNw3YGUt%2BjUslSkd5guW19R7kngdC4%2BAbhvkCz6keOmbw0AGMROJtYbg3SasdEqq0Z2Hhy%2FNkyCzjBWGB02ju%2BPt%2FD214DDWsPeQoPmQdKFjz2K7Cqw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771c5ec15ab0fac8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

twavcc.info/template/book/css/p__Tags.252548a0.chunk.css

104.21.61.221

200 OK

0 B

URL HTTP/2
twavcc.info/template/book/css/p__Tags.252548a0.chunk.css
IP
104.21.61.221:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /template/book/css/p__Tags.252548a0.chunk.css HTTP/1.1
Host: twavcc.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://twavcc.info/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 29 Nov 2022 15:27:55 GMT
content-type: text/css
last-modified: Thu, 08 Sep 2022 17:54:42 GMT
vary: Accept-Encoding
etag: W/"631a2c62-caec"
expires: Wed, 30 Nov 2022 03:27:55 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4qsVkTbqtfjATaLYd1%2FjNNuEERcpMrc30XoMh9WNPXfzJvIxIxKVOR%2BPTlOWLSWjDOpzGyQNGMvO%2FXB8Niiv8cNYIVeFV5sRqYt8XA8wI4dTCdGUUaaZU%2FqeIoNF3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 771c5ec15ab4fac8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

twavcc.info/static/js/jquery.js

104.21.61.221

200 OK

0 B

URL HTTP/2
twavcc.info/static/js/jquery.js
IP
104.21.61.221:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /static/js/jquery.js HTTP/1.1
Host: twavcc.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://twavcc.info/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 29 Nov 2022 15:27:55 GMT
content-type: application/javascript
last-modified: Sun, 14 Feb 2021 03:15:03 GMT
vary: Accept-Encoding
etag: W/"602895b7-169d5"
expires: Wed, 30 Nov 2022 03:27:55 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FxK4g7kdtIfp5hxoV%2FyI7MXa6uVbEvCUkMSJNKE8D2auar%2Bkl9B2e7eGSFZLdmeoR6G3F47rTgicDaQub4dbBnGb9AQYjhL0PwMZAi%2B1JQXpICWsWr6j5Z1EnhLUVg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 771c5ec14aa0fac8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

twavcc.info/template/book/js/umi.6208a828.js

104.21.61.221

200 OK

0 B

URL HTTP/2
twavcc.info/template/book/js/umi.6208a828.js
IP
104.21.61.221:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /template/book/js/umi.6208a828.js HTTP/1.1
Host: twavcc.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://twavcc.info/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 29 Nov 2022 15:27:55 GMT
content-type: application/javascript
last-modified: Thu, 08 Sep 2022 17:55:32 GMT
vary: Accept-Encoding
etag: W/"631a2c94-1a3c2c"
expires: Wed, 30 Nov 2022 03:27:55 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Mqr5OEEjx%2B0e%2BxrVOTtHcBcdmncKxAqFtNpkWMYa%2Bg7Q5zuVBCAeoE2%2Booq6sp13hEIGFCwfBcL%2Fpnqr1SM3U%2FOcFa%2FfSTdx51JhAMG0NOqdEsne1GlMHvBXsUqlzw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 771c5ec15aaafac8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (27)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP