Report - hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip

Report Overview

Submitted URL
hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
IP
74.208.236.55
ASN
#8560 IONOS SE
Submitted
2023-02-07 08:51:00
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
28

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox-settings-attachments.cdn.mozilla.net	11509	2019-11-30T10:32:57Z	2023-03-13T08:38:30Z	412 B	808 kB	34.111.73.144
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	3.0 kB	8.0 kB	23.36.76.226
hpvideo.tv	unknown	2015-08-26T06:09:12Z	2023-03-13T09:54:15Z	19 kB	876 kB	74.208.236.55
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	1.4 kB	2.8 kB	142.250.74.131
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	998 B	94 kB	142.250.74.35
getpocket.cdn.mozilla.net	1369	2018-08-28T15:15:36Z	2023-03-13T08:02:38Z	435 B	40 kB	34.120.5.221
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	7.1 kB	225 kB	35.241.9.150
shavar.services.mozilla.com	3602	2015-09-28T08:30:01Z	2023-03-13T05:09:14Z	453 B	204 B	44.234.248.225
detectportal.firefox.com	1601	2018-08-30T11:52:03Z	2023-03-13T05:09:11Z	606 B	428 B	34.107.221.82
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	52.41.131.197
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	454 B	2.1 kB	142.250.74.106
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	48 kB	34.120.237.76
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	840 B	12 kB	34.160.144.191
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	341 B	737 B	93.184.220.29
ajax.googleapis.com	12905	2013-08-16T11:51:31Z	2023-03-13T08:37:09Z	380 B	6.4 kB	216.58.207.202

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-02-07	medium	hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip	Malware
2023-02-07	medium	hpvideo.tv/media/system/css/modal.css?7287fd31a16882786ceb7540bda85337	Malware
2023-02-07	medium	hpvideo.tv/media/jui/css/bootstrap.min.css?7287fd31a16882786ceb7540bda85337	Malware
2023-02-07	medium	hpvideo.tv/media/jui/js/jquery-migrate.min.js?7287fd31a16882786ceb7540bda85337	Malware
2023-02-07	medium	hpvideo.tv/components/com_virtuemart/assets/js/vmprices.js	Malware
2023-02-07	medium	hpvideo.tv/media/jui/js/jquery.min.js?7287fd31a16882786ceb7540bda85337	Malware
2023-02-07	medium	hpvideo.tv/media/system/js/mootools-core.js?7287fd31a16882786ceb7540bda85337	Malware
2023-02-07	medium	hpvideo.tv/media/system/js/core.js?7287fd31a16882786ceb7540bda85337	Malware
2023-02-07	medium	hpvideo.tv/media/jui/js/bootstrap.min.js?7287fd31a16882786ceb7540bda85337	Malware
2023-02-07	medium	hpvideo.tv/media/system/js/mootools-more.js?7287fd31a16882786ceb7540bda85337	Malware
2023-02-07	medium	hpvideo.tv/templates/inspire/js/selectnav.min.js	Malware
2023-02-07	medium	hpvideo.tv/templates/inspire/js/superfish.js	Malware
2023-02-07	medium	hpvideo.tv/templates/inspire/js/supersubs.js	Malware
2023-02-07	medium	hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (18)

	URL	Size	First Seen	Last Seen
	hpvideo.tv/media/jui/js/jquery-migrate.min.js?7287fd31a16882786ceb7540bda85337	10 kB	2023-03-07	2024-04-26
Pretty URL hpvideo.tv/media/jui/js/jquery-migrate.min.js?7287fd31a16882786ceb7540bda85337 IP 74.208.236.55 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-26 15:59:47 Times Seen37234 Hash 7121994eec5320fbe6586463bf9651c2 90532aff6d4121954254cdf04994d834f7ec169b 48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d Loading...

	hpvideo.tv/media/system/js/core.js?7287fd31a16882786ceb7540bda85337	8.8 kB	2023-03-07	2024-04-26
Pretty URL hpvideo.tv/media/system/js/core.js?7287fd31a16882786ceb7540bda85337 IP 74.208.236.55 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:44 Last Seen2024-04-26 01:15:02 Times Seen561 Hash 2389024c3d3ddc855b456962dce68cf0 3ea6f77dbaa51af3747a525d02d76ac064b2d2bd ee43222bc3a3d6c1cab5dc4115bd2a3c2b348f4b4e448283e0eaca84de6763d6 Loading...

	hpvideo.tv/media/jui/js/bootstrap.min.js?7287fd31a16882786ceb7540bda85337	29 kB	2023-03-07	2024-04-26
Pretty URL hpvideo.tv/media/jui/js/bootstrap.min.js?7287fd31a16882786ceb7540bda85337 IP 74.208.236.55 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:44 Last Seen2024-04-26 01:15:02 Times Seen1859 Hash a125594de09167bd2e9015d790029a64 b0567b7e3db8ddbdc5806f5c4e2fa7a8abc9b692 b240d68de7c3795c87771f510527c201d7d67f0e065d973b16bf86855932f9a2 Loading...

	hpvideo.tv/templates/inspire/js/selectnav.min.js	1.8 kB	2023-03-10	2024-02-28
Pretty URL hpvideo.tv/templates/inspire/js/selectnav.min.js IP 74.208.236.55 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 06:18:19 Last Seen2024-02-28 11:26:12 Times Seen15 Hash 6d1797425fb3079b391199d7f6cd1b39 6aa2b6b813697e3cecd51f6f0d13e9b15c005bc7 17dbbab649692413e017384cab76ed7e63fff50b061f471353f65423ba505e0d Loading...

	hpvideo.tv/components/com_virtuemart/assets/js/vmprices.js	5.4 kB	2023-03-12	2023-03-29
Pretty URL hpvideo.tv/components/com_virtuemart/assets/js/vmprices.js IP 74.208.236.55 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 14:45:31 Last Seen2023-03-29 23:42:01 Times Seen12 Hash d5e9d10fac2f5328fe5397beacfc4828 30345205ba0661dd8ca5ce4e1476fe952d306ee8 c5d44e59960fd3e8283fdbd347a1b79f54b7de06d2aec7115d4f6e8c96cf6e5e Loading...

	hpvideo.tv/media/jui/js/jquery-noconflict.js?7287fd31a16882786ceb7540bda85337	21 B	2023-03-07	2024-04-26
Pretty URL hpvideo.tv/media/jui/js/jquery-noconflict.js?7287fd31a16882786ceb7540bda85337 IP 74.208.236.55 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:40 Last Seen2024-04-26 01:15:02 Times Seen4689 Hash e2060c4e5e5955c824723b13a212d3ec 18420ce484978f8ba3d7371febf1638828bb7a67 5b6cf4e6eda02f7c90b60b3c32413c0851915f8f80a268a913b92929085132a6 Loading...

	hpvideo.tv/media/system/js/mootools-core.js?7287fd31a16882786ceb7540bda85337	84 kB	2023-03-07	2024-04-26
Pretty URL hpvideo.tv/media/system/js/mootools-core.js?7287fd31a16882786ceb7540bda85337 IP 74.208.236.55 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:44 Last Seen2024-04-26 01:15:02 Times Seen1669 Hash dae9bedb881e4fa30a39d88aae444a0d c7b66b70133c005c8283f3e1843db92769f71d38 b0fc8a4f81d13b1f3bc1843a6f2d43f46e5c9128837096b8d53f2360b8daec18 Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 16:11:51 Times Seen37095356 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip	411 B	2023-03-10	2024-02-28
Pretty URL hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip IP 74.208.236.55 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 06:18:19 Last Seen2024-02-28 11:26:11 Times Seen14 Hash a9cc525407ff3a5ba8f5230786555209 c0e79e49eb5601b19f1db996e1d7b88717316565 7efd7827844ba4a1ddf29d8697b43b36be6a94eb5a2aee143e1876c14d94ceeb Loading...

	ajax.googleapis.com/ajax/libs/webfont/1/webfont.js	13 kB	2023-03-07	2024-04-26
Pretty URL ajax.googleapis.com/ajax/libs/webfont/1/webfont.js IP 216.58.207.202 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:17 Last Seen2024-04-26 12:56:53 Times Seen22441 Hash 7c96a5f11d9741541d5e3c42ff6380d7 d3fa2564c021cf730e58ffddb138cf6b57ed126e 81016ac6be850b72df5d4faa0c3cec8e2c1b0ba0045712144a6766adfad40bee Loading...

	hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip	2.4 kB	2023-03-13	2023-03-13
Pretty URL hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip IP 74.208.236.55 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 18:55:40 Last Seen2023-03-13 18:55:40 Times Seen1 Hash 0956b40eeb0c8452e9d753e00d4d9fd7 23caa74dd31a3fc780170ceb7a1fe698088622cd 0135138371cc8ca68a716123e5c2184a533d2f52262e7550587705579b1dd7c8 Loading...

	hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip	489 B	2023-03-10	2023-03-29
Pretty URL hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip IP 74.208.236.55 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 06:18:19 Last Seen2023-03-29 23:42:01 Times Seen12 Hash 8e31133bc21642719a6a4a5f02703fcb 0ea04868c4c90f882cc4177ee2265922393b78c8 75f84c6d6c3cb22e408bfd712f7f6a5715197ab7e2e8388a11f3983bf3d3aba6 Loading...

	hpvideo.tv/templates/inspire/js/superfish.js	3.7 kB	2023-03-07	2024-04-26
Pretty URL hpvideo.tv/templates/inspire/js/superfish.js IP 74.208.236.55 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2024-04-26 14:29:14 Times Seen1098 Hash 8c8070ba6a911bae7047f29e383da334 b7b4fdd4a0aa451b888067ef4b69095cfb40dbf2 3e9fb74061133f9dc6c809fb777bdcdc8e02b6812ad5bf39aad5f6c69f1b96dd Loading...

	hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip	352 B	2023-03-10	2023-10-21
Pretty URL hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip IP 74.208.236.55 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 06:18:19 Last Seen2023-10-21 13:18:39 Times Seen13 Hash cdc21d66d479f4c59c72b51904fbaa8b 1e82907d3aad31b86a1760ccd9bc5c669c915009 685ffea48ad332619616aa27cc318e8a38706f27698c85c93a819c7395fc9237 Loading...

	hpvideo.tv/media/jui/js/jquery.min.js?7287fd31a16882786ceb7540bda85337	98 kB	2023-03-07	2024-04-26
Pretty URL hpvideo.tv/media/jui/js/jquery.min.js?7287fd31a16882786ceb7540bda85337 IP 74.208.236.55 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:40 Last Seen2024-04-26 06:13:56 Times Seen2726 Hash 48a197817927a6eda6f531064f1dba71 5ba19dcca2e2d7ac659af0fbc97dc99e505c498b 05d31c760df3e6f0c64e3da1cd299e5f73df51c974c6528a60d0685859bbc1ba Loading...

	hpvideo.tv/media/system/js/modal.js?7287fd31a16882786ceb7540bda85337	10 kB	2023-03-07	2024-04-26
Pretty URL hpvideo.tv/media/system/js/modal.js?7287fd31a16882786ceb7540bda85337 IP 74.208.236.55 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:40 Last Seen2024-04-26 01:15:02 Times Seen207 Hash e9b6a8290967133c0fb20baa4dc79484 5d8bdcc312e81e1ad3fe6bf1d9f8cade583f8c56 bb0d7bdcac2da7402e126ad96a388ce507fa972b741323a5a40ea65df2076b8d Loading...

	hpvideo.tv/templates/inspire/js/supersubs.js	3.3 kB	2023-03-07	2024-04-26
Pretty URL hpvideo.tv/templates/inspire/js/supersubs.js IP 74.208.236.55 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:09:17 Last Seen2024-04-26 14:29:14 Times Seen306 Hash 4841b3d4b5eca1c3130933be83fbde4c 117e94086595338ea571402803f81d232a688994 8223d671d9905e6845c6b7e308612663ab40b03430230623834f70c9cd9e2450 Loading...

	hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip	53 B	2023-03-10	2024-02-28
Pretty URL hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip IP 74.208.236.55 ASN #8560 IONOS SE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 06:18:19 Last Seen2024-02-28 11:26:12 Times Seen14 Hash 2c208fa2363d4e97dc6ca7cbd58d999f e6e32b0100a9fd076c5cc72364099224fed8502d 4175eb3174d369e6723fa9a0e32b24d990d58a32aeb99efd3afb457d064814fe Loading...

HTTP Transactions (85)

URL IP Response Size

detectportal.firefox.com/success.txt?ipv4

34.107.221.82

200 OK

8 B

URL HTTP/1.1
detectportal.firefox.com/success.txt?ipv4
IP
34.107.221.82:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
8 B (8 bytes)
Hash
ae780585f49b94ce1444eb7d28906123
7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5

HTTP Headers

GET /success.txt?ipv4 HTTP/1.1
Host: detectportal.firefox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Mon, 06 Feb 2023 15:57:35 GMT
Age: 60788
Content-Type: text/plain
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f16201934a8441ad3d1df0e956536117
fb93a6f0de884a9b52a97244a670ee841c99fced
1a0b2ebd17d6f2ca323a216ef2007cc527e33ec694bd0e8411c96a704220b8be

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1A0B2EBD17D6F2CA323A216EF2007CC527E33EC694BD0E8411C96A704220B8BE"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18466
Expires: Tue, 07 Feb 2023 13:58:30 GMT
Date: Tue, 07 Feb 2023 08:50:44 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dca68db7aea32f6683ce8d542c078f04
19c495238df74fca680e21f18627ff94de5dd2e5
35cab3987fc0e4a41b305cb208c1e33fa38ce8bdfd9f386c3dc0411dd4d5ac61

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16851
Expires: Tue, 07 Feb 2023 13:31:35 GMT
Date: Tue, 07 Feb 2023 08:50:44 GMT
Connection: keep-alive

getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US&region=NO&count=30

34.120.5.221

200 OK

40 kB

URL HTTP/2
getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US&region=NO&count=30
IP
34.120.5.221:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size
40 kB (39485 bytes)
Hash
c0e133ee6ca625cf099a449f3c41c923
c0384b4ddf23c30a431fcb00e6ae04df9ed5ee5f
edf850012c134d72b3303a6ba949b8507bb61192b22a7953ddbe64c15a738d81

HTTP Headers

GET /v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US&region=NO&count=30 HTTP/1.1
Host: getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
vary: Accept-Encoding
content-location: global-recs.php
tcn: choice
x-frame-options: SAMEORIGIN
status: 200 OK
x-source: Pocket
pragma: cache
p3p: policyref="/w3c/p3p.xml", CP="ALL CURa ADMa DEVa OUR IND UNI COM NAV INT STA PRE"
x-cache: Hit from cloudfront
x-amz-cf-pop: SEA73-P2
x-amz-cf-id: oFEofOQ3HAYZYqGyjALES4m0Ba5f2t2G2DK02jds87x08deBi0pQEg==
content-encoding: gzip
via: 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 google
content-length: 39485
date: Tue, 07 Feb 2023 08:44:03 GMT
age: 401
content-type: application/json
cache-control: s-maxage=900,public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip

74.208.236.55

301 Moved Permanently

255 B

URL HTTP/1.1
hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
255 B (255 bytes)
Hash
29f8935065982107f32da7a387ae50d1
191ad0682e02c93dce2e49e6fee30287517d4d7e
050a8dd97b7b224665779ab7082c42709cee8262e8aa77a64105a93d0e808aac

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /hmaewwugd/ZX/am/7I4yFdLw.zip HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
Content-Length: 255
Connection: keep-alive
Keep-Alive: timeout=15
Date: Tue, 07 Feb 2023 08:50:44 GMT
Server: Apache
Location: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12634
Expires: Tue, 07 Feb 2023 12:21:18 GMT
Date: Tue, 07 Feb 2023 08:50:44 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: fiigKop05e+Ef4XSjM63xS1oTKMlngrV16iAwYBWcPj23AsQONnk1vKceBuFJySbyWlc5tPzQE0=
x-amz-request-id: 8KHWES1FKDB3GF9E
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 07 Feb 2023 08:39:23 GMT
age: 681
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 07 Feb 2023 08:50:44 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4945
Expires: Tue, 07 Feb 2023 10:13:09 GMT
Date: Tue, 07 Feb 2023 08:50:44 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Content-Type, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 07 Feb 2023 08:36:31 GMT
content-type: application/json
age: 853
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
0b3d155fe53bb5e6c449ef90a3148bec
ba248b7cbcbf07d28955ac6d0eb1f8ee7af04fa8
c193ac3684096be7c1f069ccec763d524f9c5fe034d438bd321e8c3a5afcf325

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5972
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 08:50:44 GMT
Last-Modified: Tue, 07 Feb 2023 07:11:12 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

detectportal.firefox.com/success.txt?ipv4

34.107.221.82

200 OK

8 B

URL HTTP/1.1
detectportal.firefox.com/success.txt?ipv4
IP
34.107.221.82:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
8 B (8 bytes)
Hash
ae780585f49b94ce1444eb7d28906123
7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5

HTTP Headers

GET /success.txt?ipv4 HTTP/1.1
Host: detectportal.firefox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Mon, 06 Feb 2023 15:57:35 GMT
Age: 60789
Content-Type: text/plain
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Retry-After, Content-Length, Content-Type, ETag, Cache-Control, Alert, Pragma, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 07 Feb 2023 07:51:19 GMT
age: 3565
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

shavar.services.mozilla.com/downloads?client=Firefox&appver=96.0a&pver=2.2

44.234.248.225

200 OK

8 B

URL HTTP/1.1
shavar.services.mozilla.com/downloads?client=Firefox&appver=96.0a&pver=2.2
IP
44.234.248.225:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
8 B (8 bytes)
Hash
29fc57841962e407cb50c1be60284bf7
ce968a77e2996da5eee8925182318f171ccdce47
ae7e7075247dcfad763f1e131aeac3d2e756bb03d48b0d315a50c69636e5dc8b

HTTP Headers

POST /downloads?client=Firefox&appver=96.0a&pver=2.2 HTTP/1.1
Host: shavar.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 773
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/octet-stream
Date: Tue, 07 Feb 2023 08:50:45 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 8
Connection: Close

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15040
Expires: Tue, 07 Feb 2023 13:01:25 GMT
Date: Tue, 07 Feb 2023 08:50:45 GMT
Connection: keep-alive

push.services.mozilla.com/

52.41.131.197

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.41.131.197:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: BfFPihMNoH91npMftcb1lA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: VjB4DVl1/oBgRJtIJKa3fnO0E38=

hpvideo.tv/media/system/css/modal.css?7287fd31a16882786ceb7540bda85337

74.208.236.55

200 OK

3.0 kB

URL HTTP/2
hpvideo.tv/media/system/css/modal.css?7287fd31a16882786ceb7540bda85337
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
Unicode text, UTF-8 text
Size
3.0 kB (3013 bytes)
Hash
3dbde0d28f97927b2fdde70d1e117e46
c1f8db5d43203b36870e1a4efb6c04e2c0a3e360
5d399bcd50e595112a3c3342889765359e5dba919dc738aa559e826aec89b31c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /media/system/css/modal.css?7287fd31a16882786ceb7540bda85337 HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 3013
date: Tue, 07 Feb 2023 08:50:45 GMT
server: Apache
last-modified: Tue, 24 Nov 2020 22:54:28 GMT
etag: "bc5-5b4e231671100"
accept-ranges: bytes
X-Firefox-Spdy: h2

hpvideo.tv/media/jui/css/bootstrap-responsive.min.css?7287fd31a16882786ceb7540bda85337

74.208.236.55

200 OK

17 kB

URL HTTP/2
hpvideo.tv/media/jui/css/bootstrap-responsive.min.css?7287fd31a16882786ceb7540bda85337
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (16452)
Size
17 kB (16693 bytes)
Hash
9bdc6723fcb7d44cc3353a662fa33bde
cb836de0db480e4562d90e7f5453d969aed5a26c
eef7b3fb8ceb63aff0c881abf54be72d4a7de4b9f0764b0f8d642edad24c8bff

HTTP Headers

GET /media/jui/css/bootstrap-responsive.min.css?7287fd31a16882786ceb7540bda85337 HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 16693
date: Tue, 07 Feb 2023 08:50:45 GMT
server: Apache
last-modified: Tue, 24 Nov 2020 22:54:28 GMT
etag: "4135-5b4e231671100"
accept-ranges: bytes
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221675738634988%22

35.241.9.150

200 OK

22 kB

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221675738634988%22
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (21681), with no line terminators
Size
22 kB (21681 bytes)
Hash
b8dac9d77ccb2ef20cebc7d8ff89032e
8f66a3712ec40a45210a563f2855fe709aff2a79
9115d1de21632dc4696bc871e3805fa846d993716f2e26a66593a6d2050b2f6d

HTTP Headers

GET /v1/buckets/monitor/collections/changes/changeset?_expected=%221675738634988%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Content-Type, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 21681
via: 1.1 google
date: Tue, 07 Feb 2023 08:02:21 GMT
age: 2904
last-modified: Tue, 07 Feb 2023 02:57:14 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1675730238632&_since=%221666204638208%22

35.241.9.150

200 OK

28 kB

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1675730238632&_since=%221666204638208%22
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (27580), with no line terminators
Size
28 kB (27580 bytes)
Hash
fe51ec52554a125fe79ecae4abb5a240
eebe1818213ab563be283e7c600cc74482559846
01520ee048b5da3380147f2c6bd03bcc649d9542ac4e8720c9e2a67827acc6de

HTTP Headers

GET /v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1675730238632&_since=%221666204638208%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 27580
via: 1.1 google
date: Tue, 07 Feb 2023 07:54:40 GMT
age: 3365
last-modified: Tue, 07 Feb 2023 00:37:18 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-amz-id-2: +7HMYsv/eumb7GcbEhSPGsubVdJ3A/qTWRX/ck1JVKzD9gq2YBfSDnOSUSqQhFlW/GepIqW5anM=
x-amz-request-id: CJ3K8JPWFD37BKEV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 07 Feb 2023 08:45:30 GMT
age: 315
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Content-Type, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 07 Feb 2023 08:36:31 GMT
content-type: application/json
age: 854
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1070bda5398d0e4012c7ebe62828e6ee
e072659271bcce877688f7244e58cad847ce57f9
026369f2eac79a5506de6e2fa9879298ec7c63882cbff6a4cb49688783de9485

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "026369F2EAC79A5506DE6E2FA9879298EC7C63882CBFF6A4CB49688783DE9485"
Last-Modified: Sun, 05 Feb 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17594
Expires: Tue, 07 Feb 2023 13:43:59 GMT
Date: Tue, 07 Feb 2023 08:50:45 GMT
Connection: keep-alive

firefox-settings-attachments.cdn.mozilla.net/staging/addons-bloomfilters/8038652a-6557-460a-858c-84f19a5a0987.bin

34.111.73.144

200 OK

807 kB

URL HTTP/2
firefox-settings-attachments.cdn.mozilla.net/staging/addons-bloomfilters/8038652a-6557-460a-858c-84f19a5a0987.bin
IP
34.111.73.144:0
ASN
#15169 GOOGLE

File type
data
Size
807 kB (807180 bytes)
Hash
914be443bdfbe8a1c3ded61e1c114bd6
4fe7c5ff83f6a29e6699f4cebc17550891504661
41b036d0c889509d547296b238027a063c313261ad52d5f7bb81922011791857

HTTP Headers

GET /staging/addons-bloomfilters/8038652a-6557-460a-858c-84f19a5a0987.bin HTTP/1.1
Host: firefox-settings-attachments.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: dguZsNlgt0E45bClSnS3eklmiykznZzPHsVWHNdaaMzEAaRGO4cZgbeZnkXLWgpuuMWxb90zRhY=
x-amz-request-id: 7YF2ZWT19PGFW512
x-amz-version-id: K1ODzappZsD35qeu0OM5zvs_BP1eybj7
accept-ranges: bytes
server: AmazonS3
content-length: 807180
via: 1.1 google
date: Sat, 04 Feb 2023 15:34:39 GMT
age: 234966
last-modified: Tue, 10 Jan 2023 12:38:46 GMT
etag: "914be443bdfbe8a1c3ded61e1c114bd6"
content-type: application/octet-stream
cache-control: public,max-age=604800
alt-svc: clear
X-Firefox-Spdy: h2

hpvideo.tv/media/jui/css/bootstrap.min.css?7287fd31a16882786ceb7540bda85337

74.208.236.55

200 OK

106 kB

URL HTTP/2
hpvideo.tv/media/jui/css/bootstrap.min.css?7287fd31a16882786ceb7540bda85337
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (65307)
Size
106 kB (106242 bytes)
Hash
b55f601eaa282fd2fb5373aeec9b0753
dfd6d5562fd5f995e9565042cfcbc198677a3476
8c2034182d8adb53aa9f43e93efbca41003b7ec616549aa36222173253e61342

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /media/jui/css/bootstrap.min.css?7287fd31a16882786ceb7540bda85337 HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 106242
date: Tue, 07 Feb 2023 08:50:45 GMT
server: Apache
last-modified: Tue, 24 Nov 2020 22:54:28 GMT
etag: "19f02-5b4e231671100"
accept-ranges: bytes
X-Firefox-Spdy: h2

hpvideo.tv/media/jui/css/bootstrap-extended.css?7287fd31a16882786ceb7540bda85337

74.208.236.55

200 OK

9.1 kB

URL HTTP/2
hpvideo.tv/media/jui/css/bootstrap-extended.css?7287fd31a16882786ceb7540bda85337
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
ASCII text
Size
9.1 kB (9094 bytes)
Hash
1799173b53c3ad2c3c3999544fb61ad5
e70783c5c151b25c226981b68e02b546c8c15f3f
493f3c34e6c26833692f8199f6a25b773ce0a6abe9bbc24777bedc53d32422d2

HTTP Headers

GET /media/jui/css/bootstrap-extended.css?7287fd31a16882786ceb7540bda85337 HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 9094
date: Tue, 07 Feb 2023 08:50:45 GMT
server: Apache
last-modified: Tue, 24 Nov 2020 22:54:28 GMT
etag: "2386-5b4e231671100"
accept-ranges: bytes
X-Firefox-Spdy: h2

hpvideo.tv/media/jui/js/jquery-migrate.min.js?7287fd31a16882786ceb7540bda85337

74.208.236.55

200 OK

10 kB

URL HTTP/2
hpvideo.tv/media/jui/js/jquery-migrate.min.js?7287fd31a16882786ceb7540bda85337
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (9959)
Size
10 kB (10056 bytes)
Hash
7121994eec5320fbe6586463bf9651c2
90532aff6d4121954254cdf04994d834f7ec169b
48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /media/jui/js/jquery-migrate.min.js?7287fd31a16882786ceb7540bda85337 HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/javascript
content-length: 10056
date: Tue, 07 Feb 2023 08:50:45 GMT
server: Apache
last-modified: Tue, 24 Nov 2020 22:54:28 GMT
etag: "2748-5b4e231671100"
accept-ranges: bytes
X-Firefox-Spdy: h2

hpvideo.tv/components/com_virtuemart/assets/js/vmprices.js

74.208.236.55

200 OK

5.4 kB

URL HTTP/2
hpvideo.tv/components/com_virtuemart/assets/js/vmprices.js
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
ASCII text
Size
5.4 kB (5440 bytes)
Hash
d5e9d10fac2f5328fe5397beacfc4828
30345205ba0661dd8ca5ce4e1476fe952d306ee8
c5d44e59960fd3e8283fdbd347a1b79f54b7de06d2aec7115d4f6e8c96cf6e5e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /components/com_virtuemart/assets/js/vmprices.js HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/javascript
content-length: 5440
date: Tue, 07 Feb 2023 08:50:45 GMT
server: Apache
last-modified: Mon, 07 Jul 2014 17:57:28 GMT
etag: "1540-4fd9e3550f200"
accept-ranges: bytes
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/fxmonitor-breaches/changeset?_expected=1675734066429&_since=%221662044085942%22

35.241.9.150

200 OK

5.6 kB

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/fxmonitor-breaches/changeset?_expected=1675734066429&_since=%221662044085942%22
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (5628), with no line terminators
Size
5.6 kB (5628 bytes)
Hash
ba20fa4a4d0b101ba8c0184be4ab1114
f6babf918e8cd29dd4bae3b5cd1333d408671840
889093cfc512eaefd30a50503286ec7a6d0e46adbd05feeb71a0cb254ad5fefe

HTTP Headers

GET /v1/buckets/main/collections/fxmonitor-breaches/changeset?_expected=1675734066429&_since=%221662044085942%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 5628
via: 1.1 google
date: Tue, 07 Feb 2023 08:44:14 GMT
age: 391
last-modified: Tue, 07 Feb 2023 01:41:06 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

hpvideo.tv/media/jui/js/jquery.min.js?7287fd31a16882786ceb7540bda85337

74.208.236.55

200 OK

98 kB

URL HTTP/2
hpvideo.tv/media/jui/js/jquery.min.js?7287fd31a16882786ceb7540bda85337
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (65462)
Size
98 kB (97646 bytes)
Hash
48a197817927a6eda6f531064f1dba71
5ba19dcca2e2d7ac659af0fbc97dc99e505c498b
05d31c760df3e6f0c64e3da1cd299e5f73df51c974c6528a60d0685859bbc1ba

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /media/jui/js/jquery.min.js?7287fd31a16882786ceb7540bda85337 HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/javascript
content-length: 97646
date: Tue, 07 Feb 2023 08:50:45 GMT
server: Apache
last-modified: Tue, 24 Nov 2020 22:54:28 GMT
etag: "17d6e-5b4e231671100"
accept-ranges: bytes
X-Firefox-Spdy: h2

hpvideo.tv/media/jui/js/jquery-noconflict.js?7287fd31a16882786ceb7540bda85337

74.208.236.55

200 OK

21 B

URL HTTP/2
hpvideo.tv/media/jui/js/jquery-noconflict.js?7287fd31a16882786ceb7540bda85337
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
ASCII text
Size
21 B (21 bytes)
Hash
e2060c4e5e5955c824723b13a212d3ec
18420ce484978f8ba3d7371febf1638828bb7a67
5b6cf4e6eda02f7c90b60b3c32413c0851915f8f80a268a913b92929085132a6

HTTP Headers

GET /media/jui/js/jquery-noconflict.js?7287fd31a16882786ceb7540bda85337 HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/javascript
content-length: 21
date: Tue, 07 Feb 2023 08:50:45 GMT
server: Apache
last-modified: Tue, 24 Nov 2020 22:54:28 GMT
etag: "15-5b4e231671100"
accept-ranges: bytes
X-Firefox-Spdy: h2

hpvideo.tv/media/system/js/mootools-core.js?7287fd31a16882786ceb7540bda85337

74.208.236.55

200 OK

84 kB

URL HTTP/2
hpvideo.tv/media/system/js/mootools-core.js?7287fd31a16882786ceb7540bda85337
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (785)
Size
84 kB (83893 bytes)
Hash
dae9bedb881e4fa30a39d88aae444a0d
c7b66b70133c005c8283f3e1843db92769f71d38
b0fc8a4f81d13b1f3bc1843a6f2d43f46e5c9128837096b8d53f2360b8daec18

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /media/system/js/mootools-core.js?7287fd31a16882786ceb7540bda85337 HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/javascript
content-length: 83893
date: Tue, 07 Feb 2023 08:50:45 GMT
server: Apache
last-modified: Tue, 24 Nov 2020 22:54:28 GMT
etag: "147b5-5b4e231671100"
accept-ranges: bytes
X-Firefox-Spdy: h2

hpvideo.tv/media/system/js/core.js?7287fd31a16882786ceb7540bda85337

74.208.236.55

200 OK

8.8 kB

URL HTTP/2
hpvideo.tv/media/system/js/core.js?7287fd31a16882786ceb7540bda85337
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
Unicode text, UTF-8 text, with very long lines (8803), with no line terminators
Size
8.8 kB (8808 bytes)
Hash
2389024c3d3ddc855b456962dce68cf0
3ea6f77dbaa51af3747a525d02d76ac064b2d2bd
ee43222bc3a3d6c1cab5dc4115bd2a3c2b348f4b4e448283e0eaca84de6763d6

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /media/system/js/core.js?7287fd31a16882786ceb7540bda85337 HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/javascript
content-length: 8808
date: Tue, 07 Feb 2023 08:50:45 GMT
server: Apache
last-modified: Tue, 24 Nov 2020 22:54:28 GMT
etag: "2268-5b4e231671100"
accept-ranges: bytes
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1675717742791&_since=%221666279968541%22

35.241.9.150

200 OK

76 kB

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1675717742791&_since=%221666279968541%22
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (65536), with no line terminators
Size
76 kB (75731 bytes)
Hash
b995a123c16167e34db1e15c69830e13
79aae0f5b0128d5619a8a345bce66705e83f1f00
aa6308675490332b54369e8ce73019a9c5f7a405efca8ca71e9be235307be265

HTTP Headers

GET /v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1675717742791&_since=%221666279968541%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 75731
via: 1.1 google
date: Tue, 07 Feb 2023 08:37:36 GMT
age: 790
last-modified: Mon, 06 Feb 2023 21:09:02 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

hpvideo.tv/media/system/js/modal.js?7287fd31a16882786ceb7540bda85337

74.208.236.55

200 OK

10 kB

URL HTTP/2
hpvideo.tv/media/system/js/modal.js?7287fd31a16882786ceb7540bda85337
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
Unicode text, UTF-8 text, with very long lines (9974)
Size
10 kB (10127 bytes)
Hash
e9b6a8290967133c0fb20baa4dc79484
5d8bdcc312e81e1ad3fe6bf1d9f8cade583f8c56
bb0d7bdcac2da7402e126ad96a388ce507fa972b741323a5a40ea65df2076b8d

HTTP Headers

GET /media/system/js/modal.js?7287fd31a16882786ceb7540bda85337 HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/javascript
content-length: 10127
date: Tue, 07 Feb 2023 08:50:45 GMT
server: Apache
last-modified: Tue, 24 Nov 2020 22:54:28 GMT
etag: "278f-5b4e231671100"
accept-ranges: bytes
X-Firefox-Spdy: h2

hpvideo.tv/media/jui/js/bootstrap.min.js?7287fd31a16882786ceb7540bda85337

74.208.236.55

200 OK

29 kB

URL HTTP/2
hpvideo.tv/media/jui/js/bootstrap.min.js?7287fd31a16882786ceb7540bda85337
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (28972)
Size
29 kB (29126 bytes)
Hash
a125594de09167bd2e9015d790029a64
b0567b7e3db8ddbdc5806f5c4e2fa7a8abc9b692
b240d68de7c3795c87771f510527c201d7d67f0e065d973b16bf86855932f9a2

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /media/jui/js/bootstrap.min.js?7287fd31a16882786ceb7540bda85337 HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/javascript
content-length: 29126
date: Tue, 07 Feb 2023 08:50:45 GMT
server: Apache
last-modified: Tue, 24 Nov 2020 22:54:28 GMT
etag: "71c6-5b4e231671100"
accept-ranges: bytes
X-Firefox-Spdy: h2

hpvideo.tv/media/system/js/mootools-more.js?7287fd31a16882786ceb7540bda85337

74.208.236.55

200 OK

237 kB

URL HTTP/2
hpvideo.tv/media/system/js/mootools-more.js?7287fd31a16882786ceb7540bda85337
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
Unicode text, UTF-8 text, with very long lines (2903)
Size
237 kB (236825 bytes)
Hash
471d5cbdf6786206310da0448076a9ea
a5124b0be4decb1ebca72e44531c3da85f0170f6
9db43e4a687084df93038c3d02cc4c149dff1210727059b82a7aac112a486eda

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /media/system/js/mootools-more.js?7287fd31a16882786ceb7540bda85337 HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/javascript
content-length: 236825
date: Tue, 07 Feb 2023 08:50:45 GMT
server: Apache
last-modified: Tue, 24 Nov 2020 22:54:28 GMT
etag: "39d19-5b4e231671100"
accept-ranges: bytes
X-Firefox-Spdy: h2

hpvideo.tv/templates/inspire/css/ie9-10.css

74.208.236.55

200 OK

111 B

URL HTTP/2
hpvideo.tv/templates/inspire/css/ie9-10.css
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
ASCII text, with no line terminators
Size
111 B (111 bytes)
Hash
52a76ce4eb9a3cabdbf58166053ea481
6c0121905d55e7f540f36bca990159bce176b5bf
93cacbb674dce34a873a1b3d0666b00972e3bd7fb13a20132e0f8074247df0bd

HTTP Headers

GET /templates/inspire/css/ie9-10.css HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 111
date: Tue, 07 Feb 2023 08:50:45 GMT
server: Apache
last-modified: Mon, 16 Jun 2014 19:06:28 GMT
etag: "6f-4fbf8b9697500"
accept-ranges: bytes
X-Firefox-Spdy: h2

hpvideo.tv/templates/inspire/css/text.css

74.208.236.55

200 OK

5.5 kB

URL HTTP/2
hpvideo.tv/templates/inspire/css/text.css
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
ASCII text, with CRLF line terminators
Size
5.5 kB (5453 bytes)
Hash
a7b27014df11d0f2cfc176ead9b68943
4d8328e22f6ed21307f033ac55bc274e20753aad
44d460c1f7976fffb0ea9cc288ab7dea789e7cd83e7d65d1f6fb5ae96d84bca4

HTTP Headers

GET /templates/inspire/css/text.css HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 5453
date: Tue, 07 Feb 2023 08:50:46 GMT
server: Apache
last-modified: Mon, 16 Jun 2014 19:06:36 GMT
etag: "154d-4fbf8b9e38700"
accept-ranges: bytes
X-Firefox-Spdy: h2

hpvideo.tv/templates/inspire/css/layout.css

74.208.236.55

200 OK

16 kB

URL HTTP/2
hpvideo.tv/templates/inspire/css/layout.css
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (349), with CRLF line terminators
Size
16 kB (16222 bytes)
Hash
83bcee864e3bc1fc4d0f6f1cb357a3f8
bacd6e72a2db03098f451f939569eaf788eac418
64ad2d55d0a84a5b50586e2212a822aab4e7b8a4c16f53258075219f2715565f

HTTP Headers

GET /templates/inspire/css/layout.css HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 16222
date: Tue, 07 Feb 2023 08:50:46 GMT
server: Apache
last-modified: Mon, 16 Jun 2014 20:22:38 GMT
etag: "3f5e-4fbf9c9ce1f80"
accept-ranges: bytes
X-Firefox-Spdy: h2

hpvideo.tv/templates/inspire/css/nav.css

74.208.236.55

200 OK

19 kB

URL HTTP/2
hpvideo.tv/templates/inspire/css/nav.css
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
ASCII text, with CRLF line terminators
Size
19 kB (19023 bytes)
Hash
94f88a87dd7a3fb5976d24facf688ac5
2ec6160edffda9843e998d4d2f60f8ee8a415be3
113a4fd8edfd38c247d471bc613e82080adbb2d4f7c44744214c93791e55eabd

HTTP Headers

GET /templates/inspire/css/nav.css HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 19023
date: Tue, 07 Feb 2023 08:50:46 GMT
server: Apache
last-modified: Mon, 16 Jun 2014 22:58:42 GMT
etag: "4a4f-4fbfbf7f16c80"
accept-ranges: bytes
X-Firefox-Spdy: h2

hpvideo.tv/templates/inspire/css/typography.css

74.208.236.55

200 OK

6.1 kB

URL HTTP/2
hpvideo.tv/templates/inspire/css/typography.css
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (595), with CRLF line terminators
Size
6.1 kB (6136 bytes)
Hash
b4285bcdada23779ceeb58e3fbd87959
7dbcc5ce06bc718d4a1cefacae7806f5885f4fa8
0b4ecf32b698690f8251611ea5a941fa22d331028f9a20dbe7e36ae33fdc542f

HTTP Headers

GET /templates/inspire/css/typography.css HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 6136
date: Tue, 07 Feb 2023 08:50:46 GMT
server: Apache
last-modified: Mon, 16 Jun 2014 19:06:38 GMT
etag: "17f8-4fbf8ba020b80"
accept-ranges: bytes
X-Firefox-Spdy: h2

hpvideo.tv/templates/inspire/css/template.css

74.208.236.55

200 OK

29 kB

URL HTTP/2
hpvideo.tv/templates/inspire/css/template.css
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (305), with CRLF line terminators
Size
29 kB (29118 bytes)
Hash
0e6f72076469997c8103491bcbf22591
526a2da69d89d359d6089f2413fe5101efe60169
15125d8c9b1a9ee2cf53c7cb5fed2b067ac76760c5f73cc9c4bdf54123da1410

HTTP Headers

GET /templates/inspire/css/template.css HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 29118
date: Tue, 07 Feb 2023 08:50:46 GMT
server: Apache
last-modified: Tue, 08 Jul 2014 11:25:50 GMT
etag: "71be-4fdacda914b80"
accept-ranges: bytes
X-Firefox-Spdy: h2

hpvideo.tv/templates/inspire/css/responsive-template.css

74.208.236.55

200 OK

24 kB

URL HTTP/2
hpvideo.tv/templates/inspire/css/responsive-template.css
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
ASCII text, with CRLF line terminators
Size
24 kB (23921 bytes)
Hash
7397a9fe3f8673172cff9061b7ae659b
d9a701dd65f2e38f7a673761e0290ca7fbda5427
386ce7c9dcb01889945db1a06c47c135b25a6dacaeb6df9614b1f8a07d81a852

HTTP Headers

GET /templates/inspire/css/responsive-template.css HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 23921
date: Tue, 07 Feb 2023 08:50:46 GMT
server: Apache
last-modified: Mon, 16 Jun 2014 23:17:56 GMT
etag: "5d71-4fbfc3cba1100"
accept-ranges: bytes
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/message-groups/changeset?_expected=1670425599656&_since=%221665698079854%22

35.241.9.150

200 OK

932 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/message-groups/changeset?_expected=1670425599656&_since=%221665698079854%22
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (932), with no line terminators
Size
932 B (932 bytes)
Hash
22ad217b8542124e6c8821717559faf6
4330760a23c61ac654d088a592408e3b5c3b0bc5
a003887785e0e602be4c05929a584b7f3f1f79f27460e7eb35a4998663c5436b

HTTP Headers

GET /v1/buckets/main/collections/message-groups/changeset?_expected=1670425599656&_since=%221665698079854%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 932
via: 1.1 google
date: Tue, 07 Feb 2023 07:53:05 GMT
age: 3461
last-modified: Sun, 05 Feb 2023 16:36:44 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/cfr/changeset?_expected=1666894461944&_since=%221659547595259%22

35.241.9.150

200 OK

1.5 kB

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/cfr/changeset?_expected=1666894461944&_since=%221659547595259%22
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (1505), with no line terminators
Size
1.5 kB (1505 bytes)
Hash
5fbaf2b7815ccde4e006732f60cf45c3
358f788e1494eb1777de83a84aa1e831c6189ec9
d95422b3bbfa32ed668a90e5db3f3dd703e46d69e169e82a1e014b64b6b2d703

HTTP Headers

GET /v1/buckets/main/collections/cfr/changeset?_expected=1666894461944&_since=%221659547595259%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1505
via: 1.1 google
date: Tue, 07 Feb 2023 08:13:41 GMT
age: 2225
last-modified: Sat, 04 Feb 2023 16:36:45 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

hpvideo.tv/templates/inspire/css/vm-inspire.css

74.208.236.55

200 OK

40 kB

URL HTTP/2
hpvideo.tv/templates/inspire/css/vm-inspire.css
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (1964), with CRLF line terminators
Size
40 kB (40324 bytes)
Hash
50865759c4a3995bddf7c5485ef74345
e535efe88240d7fa96c60f1edcc8ea8d0909e4c1
3e51ced0f19026d248c412d28c90ee616dc39a98ab5b5b5832885ed4a536a907

HTTP Headers

GET /templates/inspire/css/vm-inspire.css HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 40324
date: Tue, 07 Feb 2023 08:50:46 GMT
server: Apache
last-modified: Fri, 01 Aug 2014 05:34:30 GMT
etag: "9d84-4ff8abe4b0580"
accept-ranges: bytes
X-Firefox-Spdy: h2

hpvideo.tv/templates/inspire/js/selectnav.min.js

74.208.236.55

200 OK

1.8 kB

URL HTTP/2
hpvideo.tv/templates/inspire/js/selectnav.min.js
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
HTML document, ASCII text, with very long lines (751)
Size
1.8 kB (1768 bytes)
Hash
6d1797425fb3079b391199d7f6cd1b39
6aa2b6b813697e3cecd51f6f0d13e9b15c005bc7
17dbbab649692413e017384cab76ed7e63fff50b061f471353f65423ba505e0d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /templates/inspire/js/selectnav.min.js HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/javascript
content-length: 1768
date: Tue, 07 Feb 2023 08:50:46 GMT
server: Apache
last-modified: Tue, 25 Mar 2014 06:08:52 GMT
etag: "6e8-4f5682fab4500"
accept-ranges: bytes
X-Firefox-Spdy: h2

hpvideo.tv/templates/inspire/js/superfish.js

74.208.236.55

200 OK

3.7 kB

URL HTTP/2
hpvideo.tv/templates/inspire/js/superfish.js
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
ASCII text
Size
3.7 kB (3714 bytes)
Hash
8c8070ba6a911bae7047f29e383da334
b7b4fdd4a0aa451b888067ef4b69095cfb40dbf2
3e9fb74061133f9dc6c809fb777bdcdc8e02b6812ad5bf39aad5f6c69f1b96dd

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /templates/inspire/js/superfish.js HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/javascript
content-length: 3714
date: Tue, 07 Feb 2023 08:50:46 GMT
server: Apache
last-modified: Tue, 25 Mar 2014 06:08:52 GMT
etag: "e82-4f5682fab4500"
accept-ranges: bytes
X-Firefox-Spdy: h2

hpvideo.tv/templates/inspire/css/presets/style1.css

74.208.236.55

200 OK

9.9 kB

URL HTTP/2
hpvideo.tv/templates/inspire/css/presets/style1.css
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
ASCII text, with very long lines (467)
Size
9.9 kB (9889 bytes)
Hash
dce8518d131888fee70f331b72f7bf56
6238826e9258c942e9f452f0a4e26fdee63618d7
9fc0121b81a02b302281902ca4d98df2b28fe4b51b7433736cd6dd79f57e719b

HTTP Headers

GET /templates/inspire/css/presets/style1.css HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 9889
date: Tue, 07 Feb 2023 08:50:46 GMT
server: Apache
last-modified: Tue, 28 Oct 2014 06:01:42 GMT
etag: "26a1-50675619a5d80"
accept-ranges: bytes
X-Firefox-Spdy: h2

hpvideo.tv/templates/inspire/js/supersubs.js

74.208.236.55

200 OK

3.3 kB

URL HTTP/2
hpvideo.tv/templates/inspire/js/supersubs.js
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
ASCII text
Size
3.3 kB (3298 bytes)
Hash
4841b3d4b5eca1c3130933be83fbde4c
117e94086595338ea571402803f81d232a688994
8223d671d9905e6845c6b7e308612663ab40b03430230623834f70c9cd9e2450

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /templates/inspire/js/supersubs.js HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/javascript
content-length: 3298
date: Tue, 07 Feb 2023 08:50:46 GMT
server: Apache
last-modified: Tue, 25 Mar 2014 06:08:52 GMT
etag: "ce2-4f5682fab4500"
accept-ranges: bytes
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1675468864323&_since=%221666483264567%22

35.241.9.150

200 OK

52 kB

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1675468864323&_since=%221666483264567%22
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (52267), with no line terminators
Size
52 kB (52267 bytes)
Hash
06e189dc52881e7f5616b0214ff59542
16bd38b5d24dbc7fb6d44561cad597d6f555cf52
3b59d876391dc2db99e43edcffa3ed5a184468b0c937ef6293fc392ed7426df8

HTTP Headers

GET /v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1675468864323&_since=%221666483264567%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 52267
via: 1.1 google
date: Tue, 07 Feb 2023 08:49:07 GMT
last-modified: Sat, 04 Feb 2023 00:01:04 GMT
content-type: application/json
age: 99
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

hpvideo.tv/images/logo.png

74.208.236.55

200 OK

1.9 kB

URL HTTP/2
hpvideo.tv/images/logo.png
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
PNG image data, 263 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
1.9 kB (1860 bytes)
Hash
539ac8eb07f11707a6e53c0d4ffbb3bc
974800f9e23501198055aa8c9c1c1622d29a8fc4
818dbb61cba537c96f112bb2426ce314f1667aede83116c2c96cbb5809bb9216

HTTP Headers

GET /images/logo.png HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 1860
date: Tue, 07 Feb 2023 08:50:46 GMT
server: Apache
last-modified: Tue, 28 Oct 2014 06:19:08 GMT
etag: "744-506759ff30f00"
accept-ranges: bytes
X-Firefox-Spdy: h2

hpvideo.tv/images/delivery.png

74.208.236.55

200 OK

34 kB

URL HTTP/2
hpvideo.tv/images/delivery.png
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
PNG image data, 278 x 168, 8-bit/color RGBA, non-interlaced\012- data
Size
34 kB (33968 bytes)
Hash
7b65f20414e5ebd974e2d065fd274a79
e0ffb9fd03deb61109e669f95667a49e5f5b8052
bdc146908a89031918c580154b33726f1099de95bf4c2d20b56b34b0f30723e9

HTTP Headers

GET /images/delivery.png HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 33968
date: Tue, 07 Feb 2023 08:50:46 GMT
server: Apache
last-modified: Mon, 16 Jun 2014 14:03:04 GMT
etag: "84b0-4fbf47c5e7600"
accept-ranges: bytes
X-Firefox-Spdy: h2

hpvideo.tv/images/stories/virtuemart/product/resized/tx1%20s_274x274.jpg

74.208.236.55

200 OK

14 kB

URL HTTP/2
hpvideo.tv/images/stories/virtuemart/product/resized/tx1%20s_274x274.jpg
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 89", baseline, precision 8, 205x274, components 3\012- data
Size
14 kB (13725 bytes)
Hash
41a83bc795d39836845bfe6401ce133a
8e3f1046469759281d9ea63cb3be4db3106bc8b2
6b6d9a71ce4eb196cebcb69c9aae70b766df44d0cf7ea256467f34d61251776d

HTTP Headers

GET /images/stories/virtuemart/product/resized/tx1%20s_274x274.jpg HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 13725
date: Tue, 07 Feb 2023 08:50:46 GMT
server: Apache
last-modified: Fri, 23 Jan 2015 07:28:52 GMT
etag: "359d-50d4cbd877500"
accept-ranges: bytes
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1674132577705&_since=%221657747510534%22

35.241.9.150

200 OK

2.1 kB

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1674132577705&_since=%221657747510534%22
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (2144), with no line terminators
Size
2.1 kB (2144 bytes)
Hash
5cfd74fcbede0ee061689b95c597b11b
75d870f627cdc06f4cb7fa47751ae56c740da850
c68708f43d2bf28e3d619542c6fd7ab408f034a7f87de731ed11356efc4453eb

HTTP Headers

GET /v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1674132577705&_since=%221657747510534%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 2144
via: 1.1 google
date: Tue, 07 Feb 2023 08:13:41 GMT
age: 2225
last-modified: Thu, 02 Feb 2023 16:36:44 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

hpvideo.tv/images/stories/virtuemart/product/resized/rx2%20s_274x274.jpg

74.208.236.55

200 OK

12 kB

URL HTTP/2
hpvideo.tv/images/stories/virtuemart/product/resized/rx2%20s_274x274.jpg
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 89", baseline, precision 8, 205x274, components 3\012- data
Size
12 kB (12227 bytes)
Hash
b28d0fd02ce86780ca1137b400ab2e24
ead1dc262c0aa35db4674d649190c185f6599689
1d72aba232839f563fa797ce651378abcf5cddc685f3b62013517c4e97d33735

HTTP Headers

GET /images/stories/virtuemart/product/resized/rx2%20s_274x274.jpg HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 12227
date: Tue, 07 Feb 2023 08:50:46 GMT
server: Apache
last-modified: Fri, 23 Jan 2015 07:21:06 GMT
etag: "2fc3-50d4ca1c0dc80"
accept-ranges: bytes
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/search-config/changeset?_expected=1675353179510&_since=%221661199949574%22

35.241.9.150

200 OK

22 kB

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/search-config/changeset?_expected=1675353179510&_since=%221661199949574%22
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (22471), with no line terminators
Size
22 kB (22471 bytes)
Hash
86e5267005f7001a7a7fb7f25d7e02b9
67ea12312364541e026dfd85800ce5f4280601c5
9c469d6cd61cb4f4e3f06e980f86f3ee16cb4ec776ed105998810bcabbe12969

HTTP Headers

GET /v1/buckets/main/collections/search-config/changeset?_expected=1675353179510&_since=%221661199949574%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 22471
via: 1.1 google
date: Tue, 07 Feb 2023 08:14:22 GMT
age: 2184
last-modified: Thu, 02 Feb 2023 15:52:59 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

hpvideo.tv/images/stories/virtuemart/product/resized/p1000916%20s_274x274.jpg

74.208.236.55

200 OK

11 kB

URL HTTP/2
hpvideo.tv/images/stories/virtuemart/product/resized/p1000916%20s_274x274.jpg
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 89", baseline, precision 8, 274x163, components 3\012- data
Size
11 kB (11348 bytes)
Hash
a705d92f211dc53b3e913553578ee0b1
4777fdf9943e9fea2a09badb2e274ad25601176f
e03bd81011d5afa67f73a00505fb8865d373d666b5ebc6b0482f44e4055b4071

HTTP Headers

GET /images/stories/virtuemart/product/resized/p1000916%20s_274x274.jpg HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 11348
date: Tue, 07 Feb 2023 08:50:46 GMT
server: Apache
last-modified: Fri, 23 Jan 2015 05:00:34 GMT
etag: "2c54-50d4aab2ac080"
accept-ranges: bytes
X-Firefox-Spdy: h2

hpvideo.tv/images/stories/virtuemart/product/resized/p1050450s_274x274.jpg

74.208.236.55

200 OK

14 kB

URL HTTP/2
hpvideo.tv/images/stories/virtuemart/product/resized/p1050450s_274x274.jpg
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 89", baseline, precision 8, 274x205, components 3\012- data
Size
14 kB (14202 bytes)
Hash
deae7198e84d831b05b216f53490c96a
fc10ec0f623fd3485318f18f3bdc05cb9832df0f
f381714ef6629e6074c7e02f6d9247b0fc00fcee3ba310b665531f02daa7c90f

HTTP Headers

GET /images/stories/virtuemart/product/resized/p1050450s_274x274.jpg HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
content-length: 14202
date: Tue, 07 Feb 2023 08:50:46 GMT
server: Apache
last-modified: Fri, 23 Jan 2015 06:59:54 GMT
etag: "377a-50d4c55efae80"
accept-ranges: bytes
X-Firefox-Spdy: h2

hpvideo.tv/templates/inspire/css/print.css

74.208.236.55

200 OK

184 B

URL HTTP/2
hpvideo.tv/templates/inspire/css/print.css
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
ASCII text, with CRLF line terminators
Size
184 B (184 bytes)
Hash
0cfaf71718a33f4cc49dedf3b850bd77
afc9d94f8b2ef06b621dca7d65a27bd988802e03
d6550d6f2de53415ce350324af4532285e5639c967c4dd5e0e12d15d214f23f7

HTTP Headers

GET /templates/inspire/css/print.css HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 184
date: Tue, 07 Feb 2023 08:50:46 GMT
server: Apache
last-modified: Mon, 16 Jun 2014 19:06:30 GMT
etag: "b8-4fbf8b987f980"
accept-ranges: bytes
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/password-recipes/changeset?_expected=1674595048726&_since=%221642005109349%22

35.241.9.150

200 OK

1.7 kB

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/password-recipes/changeset?_expected=1674595048726&_since=%221642005109349%22
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (1742), with no line terminators
Size
1.7 kB (1742 bytes)
Hash
22092e301760ed865af6ece6eb04b1be
557b52e40ec2d8f2fe080580a1858c8666791bf2
12afba8f5929ab372e9cffbbe57e8bb562c60fc0a98b751c69de1adc04fb4aea

HTTP Headers

GET /v1/buckets/main/collections/password-recipes/changeset?_expected=1674595048726&_since=%221642005109349%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1742
via: 1.1 google
date: Tue, 07 Feb 2023 08:25:19 GMT
age: 1527
last-modified: Wed, 01 Feb 2023 16:36:43 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

hpvideo.tv/templates/inspire/images/vmgeneral/arrow_down.png

74.208.236.55

200 OK

1.1 kB

URL HTTP/2
hpvideo.tv/templates/inspire/images/vmgeneral/arrow_down.png
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
PNG image data, 17 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
1.1 kB (1148 bytes)
Hash
6e078c8f8ee18cfda305635dbe15b8de
e2ef522d70b98426122620a07e8f6ac732d92448
dad90a7b8110c0fa7cc83a2314c79603404218d3ca82d96e4360f206717cc5c8

HTTP Headers

GET /templates/inspire/images/vmgeneral/arrow_down.png HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/templates/inspire/css/vm-inspire.css
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 1148
date: Tue, 07 Feb 2023 08:50:46 GMT
server: Apache
last-modified: Mon, 16 Jun 2014 19:09:42 GMT
etag: "47c-4fbf8c4f9a980"
accept-ranges: bytes
X-Firefox-Spdy: h2

hpvideo.tv/templates/inspire/images/sl-arrow-bottom-cover.png

74.208.236.55

200 OK

1.3 kB

URL HTTP/2
hpvideo.tv/templates/inspire/images/sl-arrow-bottom-cover.png
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
PNG image data, 117 x 117, 8-bit/color RGBA, non-interlaced\012- data
Size
1.3 kB (1325 bytes)
Hash
a4dc883b9a436586f34232bbd00083f6
d4fc714ddb51b34e2b2a0011a7f60b5e97703a3e
18dd0e33a328f53262c33c91bfdd4b559757084f770bf8ae63006b9599a895bd

HTTP Headers

GET /templates/inspire/images/sl-arrow-bottom-cover.png HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/templates/inspire/css/layout.css
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 1325
date: Tue, 07 Feb 2023 08:50:46 GMT
server: Apache
last-modified: Mon, 16 Jun 2014 19:08:38 GMT
etag: "52d-4fbf8c1291980"
accept-ranges: bytes
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/query-stripping/changeset?_expected=1667238122278&_since=%221656585893704%22

35.241.9.150

200 OK

1.7 kB

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/query-stripping/changeset?_expected=1667238122278&_since=%221656585893704%22
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (1719), with no line terminators
Size
1.7 kB (1719 bytes)
Hash
91fc66b0cc0a6a614095f1a64df0ae3b
36d83cd4aac353d81990df94ac1e5466483ab145
fee8713249b5cc35e5a4bb521c3a645c8b2a0c927c8384b99cf4f3a046e5d316

HTTP Headers

GET /v1/buckets/main/collections/query-stripping/changeset?_expected=1667238122278&_since=%221656585893704%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1719
via: 1.1 google
date: Tue, 07 Feb 2023 07:53:40 GMT
age: 3426
last-modified: Tue, 31 Jan 2023 16:36:45 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/language-dictionaries/changeset?_expected=1673270322227&_since=%221569410800356%22

35.241.9.150

200 OK

1.3 kB

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/language-dictionaries/changeset?_expected=1673270322227&_since=%221569410800356%22
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (1250), with no line terminators
Size
1.3 kB (1250 bytes)
Hash
4b4dc2f2fa90e5157009acf4c7b1d589
ec64bb109dac848eafb80765cb510015c5d3ffd5
83ad9f7b27e6c7f20f257f0a3ff004ca69cfd0d4768222a51a655ac9ae139f6e

HTTP Headers

GET /v1/buckets/main/collections/language-dictionaries/changeset?_expected=1673270322227&_since=%221569410800356%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1250
via: 1.1 google
date: Tue, 07 Feb 2023 07:52:33 GMT
age: 3493
last-modified: Tue, 31 Jan 2023 16:36:44 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ad2d72821808ee5f77c0598fed0f8bd1
adcd92881d1c5ac3cca4687dc6347369240f4726
c7ce86611bf0b0063c0bcb2c6a6a4b85fe6be2d89e382b8907e8bbb2e1e5962d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 08:50:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ajax.googleapis.com/ajax/libs/webfont/1/webfont.js

216.58.207.202

200 OK

5.4 kB

URL HTTP/2
ajax.googleapis.com/ajax/libs/webfont/1/webfont.js
IP
216.58.207.202:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2134)
Size
5.4 kB (5437 bytes)
Hash
30ca3165d143baf2835023bfcf463450
62c662c0873b79a314c040fef28dcd29abb14480
4f405d00e8ced09d5826e3e070b7e4d3f3556f856ca790b0b4a2c2eaaf58d33b

HTTP Headers

GET /ajax/libs/webfont/1/webfont.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 5437
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 21:26:32 GMT
expires: Wed, 31 Jan 2024 21:26:32 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 559454
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ad2d72821808ee5f77c0598fed0f8bd1
adcd92881d1c5ac3cca4687dc6347369240f4726
c7ce86611bf0b0063c0bcb2c6a6a4b85fe6be2d89e382b8907e8bbb2e1e5962d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 08:50:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hpvideo.tv/templates/inspire/favicon.ico

74.208.236.55

200 OK

1.2 kB

URL HTTP/2
hpvideo.tv/templates/inspire/favicon.ico
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
7a2bfae9facfc4f88823a57f0548303d
d520f4347c59107898b16a94fca98a4c2c68ab53
4183f441651cfac0606277bdcf943c1ff9a98d4a0ebaa739fa4a2ce52d7b98fa

HTTP Headers

GET /templates/inspire/favicon.ico HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
Cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/vnd.microsoft.icon
content-length: 1150
date: Tue, 07 Feb 2023 08:50:46 GMT
server: Apache
last-modified: Mon, 16 Jun 2014 19:06:16 GMT
etag: "47e-4fbf8b8b25a00"
accept-ranges: bytes
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8496
Expires: Tue, 07 Feb 2023 11:12:22 GMT
Date: Tue, 07 Feb 2023 08:50:46 GMT
Connection: keep-alive

fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,700italic,800italic,400,300,700,800&subset=latin

142.250.74.106

200 OK

1.5 kB

URL HTTP/2
fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,700italic,800italic,400,300,700,800&subset=latin
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
data
Size
1.5 kB (1473 bytes)
Hash
6837614a825db5aa3afe61c347702ed1
f70e498bbaf0c8cc8798184d95a797350bca83d4
43305c30c9a239b698f07da80fedaacfa53069d7799126ccb4a1b8a19cb3ff8d

HTTP Headers

GET /css?family=Open+Sans:300italic,400italic,700italic,800italic,400,300,700,800&subset=latin HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hpvideo.tv/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 Feb 2023 08:50:46 GMT
date: Tue, 07 Feb 2023 08:50:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8496
Expires: Tue, 07 Feb 2023 11:12:22 GMT
Date: Tue, 07 Feb 2023 08:50:46 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8496
Expires: Tue, 07 Feb 2023 11:12:22 GMT
Date: Tue, 07 Feb 2023 08:50:46 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F121b1de4-8f9a-42ce-aca5-9ff190235e9e.jpeg

34.120.237.76

200 OK

5.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F121b1de4-8f9a-42ce-aca5-9ff190235e9e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.6 kB (5584 bytes)
Hash
94a975a866d575be68f687fd81a36f5b
16f334adff0205badeb468d248f925504137782a
d550618f7c7e902ca0f4f57f8da3199b22063f242e0fa07f10fe6631b35e026b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F121b1de4-8f9a-42ce-aca5-9ff190235e9e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5584
x-amzn-requestid: 130aa2ee-b175-4658-9c82-8f49944207dd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpdejHeaIAMFYgQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63da0f90-4f9c757a30af548878052b0d;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 07:06:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9URXL7tafn0kenWtzS1LRu2q0bgjM8ZC4NCS6L6MMPkvBqIHDOMugA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 22:15:10 GMT
age: 38136
etag: "16f334adff0205badeb468d248f925504137782a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13160 bytes)
Hash
003fc35e140a75a12b7795c3986426ec
da002b22e2a01f48a545b369d4403eabb17a10d5
bb0754411aa7d0a5036b86b282d0e93d13227765ca9ccaf3a34e8e486cb413d1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13160
x-amzn-requestid: 34aa6dfe-7f14-48d0-89b2-90548621be79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzVxSHh7IAMFjAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de033b-49587fff75aebe96136137be;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 07:03:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 81DTnHIh40lNEi6l5hC87Vo9R8k4w79Fr71zibyvGP0iJm4kmhWITA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 07:45:27 GMT
age: 3919
etag: "da002b22e2a01f48a545b369d4403eabb17a10d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.2 kB (4227 bytes)
Hash
eedb4de12585c70ddb5b8f94fe6a59e2
83c9437e71a0a03b3e8ff652155a85eafa76cdda
d4493a30f62e9ad224b3595ba3af8a322e2d4a3d9238a1847973f962bdcc0c82

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4227
x-amzn-requestid: b45f2ab7-0102-4542-9514-54fb93a0e27f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f77sTH4jIAMFnsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e1731b-4a24bcb1102e58543cd81343;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 21:37:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ovhdLaEGaDSC8X0F9VamLw0KyBPWkxfYg5pssOT8NOZP4IBtNk6Gfw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 21:55:19 GMT
etag: "83c9437e71a0a03b3e8ff652155a85eafa76cdda"
content-type: image/jpeg
age: 39327
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7926951f-dd16-4029-a877-933fa5d3c0f5.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.6 kB (5634 bytes)
Hash
cf292b03a5db7eb8e0660a518f41233c
8fa486cdecffff8a663da2df88227ee784c298a2
cfc5efb92068bdeeda5c95f9851213b14afa76776486d0493cf4c05b30453cf0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7926951f-dd16-4029-a877-933fa5d3c0f5.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5634
x-amzn-requestid: 632886dc-5740-40ae-b91f-f0bc1578ac2e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpdrbGvaoAMF_4g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63da0fe2-4e20757b045beab314bdf92e;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 07:08:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: xCFj9HPjTNZgRqRW4qwDUe2duq7q24zyMZSuIa6Nw7QjeouM11_ziw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 15:41:08 GMT
age: 61778
etag: "8fa486cdecffff8a663da2df88227ee784c298a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32cb7a16-13bc-4d42-8e17-7be2a40cfc82.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.3 kB (6316 bytes)
Hash
c3cd20c6639e2b0d996fbbd7df2d4f47
2e54c22fb83981e2690161cd521e4fc3998e9c16
9b2b1f3e062fca74341d09540e44d2a02ec451b8349440ed5917073e8fab988d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32cb7a16-13bc-4d42-8e17-7be2a40cfc82.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6316
x-amzn-requestid: 879578cc-a58a-4516-a7cd-68850553762b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpc79ECLIAMFclw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63da0eb2-57141dcf1c5595110f5f572e;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 07:03:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ARr-i9j3ruIxZ123Ae2bEk_c2s_5Zs7fhrn4UXphw_jOYrtvq9OMVg==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 16:55:00 GMT
age: 57346
etag: "2e54c22fb83981e2690161cd521e4fc3998e9c16"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0a8ea253ef61b5c330b3285f9a94e6ae
0cf9a1c66c83f505c7195774996b107c145f5884
8b6bca0cd9c9adcb16bba03349e8fcbfcd645719c82c95f0111095b731842402

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 08:50:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bbda930-ccb5-4a8a-b679-2389a710fc6f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.8 kB (6787 bytes)
Hash
d057038cd3164c40413a88f9b5c2af92
afbcb6617c7277ea42068c2aa1c8dcba02549873
ae03b42f1a5c3774e3ea569a886707a8a31da05a45bd971b829cf579be0ea6c7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bbda930-ccb5-4a8a-b679-2389a710fc6f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6787
x-amzn-requestid: 15924d6a-68a3-414b-9e23-68d37291d4a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fvyxSEjXIAMFT3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc9808-22daff920f5fe1201328ccee;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 05:13:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AOnXbzTBcVZ3quJx3NoNQC08Gk5_phyp8UiWCm6Dk4GPxl8FCaIC4w==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 16:55:00 GMT
age: 57346
etag: "afbcb6617c7277ea42068c2aa1c8dcba02549873"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.74.35

200 OK

45 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hpvideo.tv
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 Feb 2023 18:52:41 GMT
expires: Tue, 06 Feb 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 50285
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2

142.250.74.35

200 OK

48 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Size
48 kB (47952 bytes)
Hash
17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd

HTTP Headers

GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hpvideo.tv
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 09:41:19 GMT
expires: Wed, 31 Jan 2024 09:41:19 GMT
cache-control: public, max-age=31536000
age: 601767
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0a8ea253ef61b5c330b3285f9a94e6ae
0cf9a1c66c83f505c7195774996b107c145f5884
8b6bca0cd9c9adcb16bba03349e8fcbfcd645719c82c95f0111095b731842402

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 08:50:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip

74.208.236.55

200 OK

0 B

URL HTTP/2
hpvideo.tv/hmaewwugd/ZX/am/7I4yFdLw.zip
IP
74.208.236.55:0
ASN
#8560 IONOS SE

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /hmaewwugd/ZX/am/7I4yFdLw.zip HTTP/1.1
Host: hpvideo.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
content-type: text/html; charset=utf-8
date: Tue, 07 Feb 2023 08:50:44 GMT
server: Apache
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
expires: Wed, 17 Aug 2005 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: 14d00922e864a0370209a5c2ce648d6a=375a369e44501c7a6b98af1325e01f32; path=/; HttpOnly
last-modified: Tue, 07 Feb 2023 08:50:45 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (18)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL