Report - yongg.duckdns.org/

Report Overview

Submitted URL
yongg.duckdns.org/
IP
20.212.4.248
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Submitted
2022-09-14 13:35:59
Access
Website Title
Final URL
Tags
None
urlquery detections
DynDNS domain detected

Detections

urlquery
34
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.115
yongg.duckdns.org	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	12 kB	1.1 MB	20.212.4.248
www.pubgmobile.com	21653	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.8 kB	1.1 MB	23.36.76.227
pbs.twimg.com	624	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.5 kB	340 kB	151.101.84.159
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	4.4 kB	23.36.76.226
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	658 B	1.3 kB	93.184.220.29
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	813 B	306 kB	142.250.74.10
syndication.twitter.com	833	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.6 kB	18 kB	104.244.42.8
i.ibb.co	13485	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	380 B	29 kB	217.182.228.53
stackpath.bootstrapcdn.com	2467	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	958 B	173 kB	104.18.10.207
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.49
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
cdnjs.cloudflare.com	235	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	443 B	7.0 kB	104.17.24.14
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	3.5 kB	142.250.74.3
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	54.149.101.24
i.postimg.cc	23840	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.0 kB	262 kB	141.94.200.42
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	934 B	28 kB	142.250.74.163
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.7 kB	75 kB	34.120.237.76
platform.twitter.com	597	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.8 kB	500 kB	151.101.84.157
abs-0.twimg.com	2460	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	14 kB	47 kB	104.244.43.131
abs.twimg.com	1724	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	411 B	2.3 kB	152.199.21.141

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (29)

	URL	Size	First Seen	Last Seen
	yongg.duckdns.org/js-zone/jquery.js	2.3 kB	2023-03-07	2024-04-19
Pretty URL yongg.duckdns.org/js-zone/jquery.js IP 20.212.4.248 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:42 Last Seen2024-04-19 06:50:26 Times Seen1692 Hash 27335de838e10bf2a4b4d5999c517d76 83b660b19244c170d715f4da30013cf57284682b e654612977b4226247e6dacd00df39e20942b906c9aed2fe405da0de47af6e91 Loading...

	yongg.duckdns.org/js-zone/main-zone.js	610 B	2023-03-07	2024-04-19
Pretty URL yongg.duckdns.org/js-zone/main-zone.js IP 20.212.4.248 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:42 Last Seen2024-04-19 06:50:27 Times Seen631 Hash 61c46dba509ed4003d18053b613edb39 f20c38330a2dd1ec8fae7f53220d8a3a5cff8177 6a66a6f467e40c2ef0c8f0c6c77ff558538b20a4f9f0ce7c9c31331df5bf4b9e Loading...

	yongg.duckdns.org/js-zone/script.js	187 kB	2023-03-07	2023-03-07
Pretty URL yongg.duckdns.org/js-zone/script.js IP 20.212.4.248 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:24:01 Last Seen2023-03-07 16:24:01 Times Seen1 Hash eec8318415ffc986bd23f1874576b0ea 1c6dd46b477e97aa39726de899bfdce5ccd34e6d cadee7a6bcac7c39cefed904847dafe541693525f2c1bc04976f51f9eb94852c Loading...

	yongg.duckdns.org/index_files/gift-zone.js	1.7 kB	2023-03-07	2024-04-08
Pretty URL yongg.duckdns.org/index_files/gift-zone.js IP 20.212.4.248 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:42 Last Seen2024-04-08 18:58:01 Times Seen1403 Hash ac813cbf4df0e7e8ab2319c43dd8a680 cbe244000f9036173f55c9a31b5dcafecc8747b3 af0366a50b0afc180e60714817feffac0a5da579117e48aaa04a01746829bd2d Loading...

	platform.twitter.com/js/horizon_timeline.4836f7a62ef55f5880337b3b6602854f.js	7.7 kB	2023-03-07	2023-03-17
Pretty URL platform.twitter.com/js/horizon_timeline.4836f7a62ef55f5880337b3b6602854f.js IP 151.101.84.157 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:38:25 Last Seen2023-03-17 12:48:08 Times Seen1 Hash 34e2e8018518a39f9995c88495115818 cffb8c5e77fb0fd58de2003046f1a2f24abe4dec 880f96a0b1f6eb62e94842f79f2248bbda2c453c885d319a03a1892f3014964f Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 21:56:20 Times Seen36967547 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	platform.twitter.com/widgets.js	99 kB	2023-03-07	2023-03-17
Pretty URL platform.twitter.com/widgets.js IP 151.101.84.157 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:34:45 Last Seen2023-03-17 12:51:43 Times Seen1 Hash f116c7e6b28e2aebeb60ade5bdc8e2b4 ce0bda8b168f6686ced01dd1b7337fd056ffec32 8f4fc0f336126492b535be2e0b29fbb538a3079547d19a81368aec9268a54f26 Loading...

	platform.twitter.com/_next/static/fJUFW1qGayM-Fl0txyHpE/_ssgManifest.js	76 B	2023-03-07	2024-04-19
Pretty URL platform.twitter.com/_next/static/fJUFW1qGayM-Fl0txyHpE/_ssgManifest.js IP 151.101.84.157 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2024-04-19 07:47:47 Times Seen3351 Hash abee47769bf307639ace4945f9cfd4ff c0a0dc51ee8a2852baf5ff30c33b1478ff302585 653f3e53e89b4f8548ff86c19e92bb3c6b84b6be7485a320b1e00893ed877479 Loading...

	platform.twitter.com/_next/static/chunks/2.691622e4391d1973cb65.js	23 kB	2023-03-07	2023-05-05
Pretty URL platform.twitter.com/_next/static/chunks/2.691622e4391d1973cb65.js IP 151.101.84.157 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2023-05-05 19:49:06 Times Seen668 Hash 942b5b928a24465d1906b4716131d896 1eadaf7d813991cc042e710ac8c74a7160830d72 2adcd0a627dee2ac4ab782a00745d7678e374dc4625ddf673a88121977d77c67 Loading...

	platform.twitter.com/_next/static/chunks/ondemand.Dropdown.5730e0a49ea6a6dde3b4.js	6.6 kB	2023-03-07	2023-03-17
Pretty URL platform.twitter.com/_next/static/chunks/ondemand.Dropdown.5730e0a49ea6a6dde3b4.js IP 151.101.84.157 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:17 Last Seen2023-03-17 12:48:08 Times Seen1 Hash deb1205c6e01f2720f75bbd978f5925b 95c9f48d13ffaa2fdcf30a8b66ebd079e2d9dccb df0d77bff49f6ce8fcedd36c2bac801d98c148546ba6faaaaa25302a7f862faf Loading...

	yongg.duckdns.org/index_files/jquery.min.js.download	87 kB	2023-03-07	2024-04-19
Pretty URL yongg.duckdns.org/index_files/jquery.min.js.download IP 20.212.4.248 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 21:13:26 Times Seen105353 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	platform.twitter.com/_next/static/chunks/runtime-c5040a30986fc1d092cc.js	3.8 kB	2023-03-07	2023-03-17
Pretty URL platform.twitter.com/_next/static/chunks/runtime-c5040a30986fc1d092cc.js IP 151.101.84.157 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:18 Last Seen2023-03-17 12:48:08 Times Seen1 Hash e3bac7bbcce0b4c5a7d1d12f33d62321 57df785d5cc27985ca6730c5460fb0735379273d 5de6e83c84280798e52931aae72c3e30c0afc4dfc385b5e9352a67846096abc5 Loading...

	platform.twitter.com/_next/static/chunks/pages/timeline-profile/screen-name/%5BscreenName%5D-568c81a96d7917ec4ebb.js	13 kB	2023-03-07	2023-03-17
Pretty URL platform.twitter.com/_next/static/chunks/pages/timeline-profile/screen-name/%5BscreenName%5D-568c81a96d7917ec4ebb.js IP 151.101.84.157 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:18 Last Seen2023-03-17 12:48:08 Times Seen1 Hash 91226f111c965b9d32e61425d0e4a158 ed49032b7823c36dc3725102f1a02d45248c0990 4b6bd6798b332659706f4e6160d766e6aeb6f994363807c825dacbe82c613604 Loading...

	yongg.duckdns.org/	20 B	2023-03-07	2024-03-26
Pretty URL yongg.duckdns.org/ IP 20.212.4.248 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:42 Last Seen2024-03-26 04:44:52 Times Seen78 Hash 1e302d3b8e4b50901df076b04617cc30 c598b2e079134d7faaabd2986014225a4fec5420 ea0da56ebd906b9b9770465bd9a6098d7eeffc3b4f12247aa615b6f6d0a7c526 Loading...

	yongg.duckdns.org/js-zone/slider.js	588 B	2023-03-07	2024-04-11
Pretty URL yongg.duckdns.org/js-zone/slider.js IP 20.212.4.248 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:42 Last Seen2024-04-11 17:51:57 Times Seen345 Hash 2164c6d5165fe540ed4889f6396ae32b e0a83804b1872a933d8398195c860861990d08fa 20087c03a5deb12faebad778ee76e59d846595b075de68810b366db32ffcee56 Loading...

	platform.twitter.com/_next/static/chunks/pages/_app-6b59be76f6e3292c4dd6.js	1.3 kB	2023-03-07	2023-03-17
Pretty URL platform.twitter.com/_next/static/chunks/pages/_app-6b59be76f6e3292c4dd6.js IP 151.101.84.157 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:46 Last Seen2023-03-17 12:48:08 Times Seen1 Hash be3e428d416daa9027cecf70b5f26bf9 3e8a5de715f690340896e9dbcd5138eae0a3e2d8 0b646f6a0117000d7a12cb08668222c21cd3ae0194b31cb4a12a60547171e380 Loading...

	platform.twitter.com/_next/static/chunks/1.d77d8092171c9a9ccc4c.js	1.2 MB	2023-03-07	2023-03-17
Pretty URL platform.twitter.com/_next/static/chunks/1.d77d8092171c9a9ccc4c.js IP 151.101.84.157 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:17 Last Seen2023-03-17 12:48:08 Times Seen1 Hash d951ba70c2a27d88a8b99a82c9a7361b afd30c6234b8084ea7645cbd88fb1e46cde70426 5631fc48e76457a804176c23175cd0bfbecec9f01e126e952a38fd72b764e5ed Loading...

	platform.twitter.com/_next/static/chunks/main-e9db78f5e7b3d83edd5e.js	90 B	2023-03-07	2023-03-17
Pretty URL platform.twitter.com/_next/static/chunks/main-e9db78f5e7b3d83edd5e.js IP 151.101.84.157 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2023-03-17 12:48:08 Times Seen1 Hash 8e33207e7b788da9abde5b6d33da0b00 23e48f1b412b3a0a406639f297fb6f4c4740efe8 80534a6e1ec41d37acec8be383f8d1112dbbeea31dd51ead47463095c13bff3a Loading...

	platform.twitter.com/_next/static/fJUFW1qGayM-Fl0txyHpE/_buildManifest.js	1.2 kB	2023-03-07	2023-03-17
Pretty URL platform.twitter.com/_next/static/fJUFW1qGayM-Fl0txyHpE/_buildManifest.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:17 Last Seen2023-03-17 12:48:08 Times Seen1 Hash 1f6a6abc61cbf7717855800fa8295867 1893f20a87e86390b6b9365609a10280bd8a1cbe c60ab75be523fbf7e9a4ca0f6012921d7c3f61a6e3b85ee284e597d471c461ed Loading...

	platform.twitter.com/_next/static/chunks/13.1400171dc985d5f47aaf.js	38 kB	2023-03-07	2023-03-17
Pretty URL platform.twitter.com/_next/static/chunks/13.1400171dc985d5f47aaf.js IP 151.101.84.157 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:57 Last Seen2023-03-17 12:39:17 Times Seen1 Hash 15b5ec14cb278c05621cea19cb44555b d6ad3c338c9b49e246885003e95b31eeb9b61825 1dfec866aa3a6679f2692fe6aa7ff41ae4d676e287239ced6409c05a4d715f68 Loading...

	platform.twitter.com/_next/static/chunks/vendors~ondemand.LottieWeb.84a69543ec64b75cae2a.js	152 kB	2023-03-07	2023-03-17
Pretty URL platform.twitter.com/_next/static/chunks/vendors~ondemand.LottieWeb.84a69543ec64b75cae2a.js IP 151.101.84.157 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:46 Last Seen2023-03-17 12:48:08 Times Seen1 Hash 72929dff5e574c1b877555fd36c7683a 79d4896c68a7a959a4c9e7cbcd1dc209cb6351f1 222fa391f26a0b6f4b5d8459ada308e078e6d2e69707766e247692a6f45676c8 Loading...

	yongg.duckdns.org/	22 B	2023-03-07	2024-04-19
Pretty URL yongg.duckdns.org/ IP 20.212.4.248 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:42 Last Seen2024-04-19 06:50:26 Times Seen1302 Hash 6757da209489d96df42a614bf285cf75 f8397e6774f88545c26e5d21b3cf694ac0aa7867 d28cdc76319fa01ac711c9605b84d7cac08c39a52d83ca192aa0acf388bfba51 Loading...

	yongg.duckdns.org/js-zone/zero-zone.js	861 B	2023-03-07	2024-04-19
Pretty URL yongg.duckdns.org/js-zone/zero-zone.js IP 20.212.4.248 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:42 Last Seen2024-04-19 06:50:27 Times Seen1763 Hash e2fa33d030064bc3c6e44da71cf39659 4907034831c9244c5bce315c3aabbbbdf06cd687 b6b1475306c19ac27e78c3483123346379ea4a356ad9bf0d01319cee2b8f30c6 Loading...

	yongg.duckdns.org/js-zone/showHide.js	1.1 kB	2023-03-07	2024-04-19
Pretty URL yongg.duckdns.org/js-zone/showHide.js IP 20.212.4.248 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:42 Last Seen2024-04-19 19:21:56 Times Seen1165 Hash d3e46c4a7d95270da519489746521b1a 5f5a383b6a1a635695e2c72aace79363708f82be 8023fc37af7de956061342860b38dd1646ce1f1fa7ecc2ce703e2b544b2bd283 Loading...

	yongg.duckdns.org/	616 B	2023-03-07	2024-03-28
Pretty URL yongg.duckdns.org/ IP 20.212.4.248 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:42 Last Seen2024-03-28 17:17:02 Times Seen205 Hash 75243aa64225c51fadea3970bfd848ca 3ae640bae9d071ed9b0fef24971d3a4c00566b23 1088ef60bb0d5301abc6a05990bca389ddc1a9c5bd4856b6acdbfa24d1524c0f Loading...

	platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fyongg.duckdns.org	327 kB	2023-03-07	2023-05-03
Pretty URL platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fyongg.duckdns.org IP 151.101.84.157 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:57 Last Seen2023-05-03 22:50:00 Times Seen3 Hash 26599e03fbd14de8182dfc6fb71ab446 00642f9520c1d630f6474a3f910a3444d8e8d589 2af340a08ce2caffa6df9a38412f1df460199ea76e4bc1fe3957cc3ce2962518 Loading...

	platform.twitter.com/_next/static/chunks/4.096fc3966cc81b0f4642.js	2.5 kB	2023-03-07	2023-03-17
Pretty URL platform.twitter.com/_next/static/chunks/4.096fc3966cc81b0f4642.js IP 151.101.84.157 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:17 Last Seen2023-03-17 12:48:08 Times Seen1 Hash 74fc8570e9c4ef27736b0fd8e9534b6f bd63346cf89df71cad80432d74f16ae2149d82fa cf0bea09a1804cee4bc3effc8b920594928f674754be42ad17692ea6fe45cbbe Loading...

		Size	First Seen	Last Seen
	#1 Write - d7d45230746aadb587b5421834758994	171 B	2023-03-07	2024-04-19
Pretty Observations First Seen2023-03-07 01:03:42 Last Seen2024-04-19 06:50:27 Times Seen1306 Hash d7d45230746aadb587b5421834758994 65480c14ebd56b32288f937a0a51867362c530ae 06d287bc821986c6d2cea4631dc0329b9cd9e15ca19737eb1479e118526bc3e9 Loading...

	#2 Write - bcac842be7f8998e3880a54fae737f5c	140 B	2023-03-07	2024-04-19
Pretty Observations First Seen2023-03-07 01:03:42 Last Seen2024-04-19 06:50:27 Times Seen1298 Hash bcac842be7f8998e3880a54fae737f5c c4a801e5013546c703ba5cba5c176e7d525aadc9 69db51683da9aaff997d8865c60e37445e2bc99d451ec64029183b375779df4d Loading...

HTTP Transactions (146)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.115

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 14 Sep 2022 13:09:32 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 0omIV5b5Mpj24mv1w0spfSvlVanoFyGz9WW_dWxIaRjIcLpCQLu1Fw==
Age: 1575

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
be88d3e043e3b95b52e41812e50fb634
0318ba1ce487817ea7cba61dd9413bed29213800
b5f178d23e633283f226cca7a9ae79b01e6cab2299ff7065c980d3a9953212fd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5F178D23E633283F226CCA7A9AE79B01E6CAB2299FF7065C980D3A9953212FD"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3945
Expires: Wed, 14 Sep 2022 14:41:32 GMT
Date: Wed, 14 Sep 2022 13:35:47 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.49

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.49:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 14 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _425wGsKUpZKN9YjwoM8LunXRFaJglEHybe5HZQh6fxNZ19xF-GnWg==
age: 32432
X-Firefox-Spdy: h2

yongg.duckdns.org/

20.212.4.248

301 Moved Permanently

234 B

URL HTTP/1.1
yongg.duckdns.org/
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
234 B (234 bytes)
Hash
5cdbf52d01f3edb61b62b2e893df649a
d4f2a5daa8954569909f3487dddcfa32d4ed190a
41f7fd15354536d2bc9a95558f2a97c541b81d4b330b4f188af76cb46ae66e98

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET / HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Wed, 14 Sep 2022 13:35:47 GMT
Server: Apache
Location: https://yongg.duckdns.org/
Content-Length: 234
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 13:35:47 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.115

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Wed, 14 Sep 2022 13:03:22 GMT
Expires: Wed, 14 Sep 2022 13:06:18 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: l_l8xf4wbkLBjkemgGZGnb-iggPWUF1fQrdbnFuKTPt5zvXTnQQQQw==
Age: 1945

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
d3ac56507d17ffff5e8b486406985d68
17d26336cd8ea65af3f23db166945f1b3fbbfbab
e7e321340eed681c1269f715b0214e1511d5762fffbe930e7c157b800afa9a39

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2422
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 13:35:48 GMT
Last-Modified: Wed, 14 Sep 2022 12:55:26 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css

104.17.24.14

200 OK

5.8 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65536), with no line terminators
Size
5.8 kB (5845 bytes)
Hash
a7e25a22602a2b2ed35f90fd5210cff1
148c4f275b60e6cf6253d6b4c7bdc486515b2202
312d94bafa68e11e3a4a8d7c06bc25ee161d1d965afb1fa99db79815a272d0bf

HTTP Headers

GET /ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 14 Sep 2022 13:35:48 GMT
content-type: text/css; charset=utf-8
content-length: 5845
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed9-1149f"
last-modified: Mon, 04 May 2020 16:12:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 5318191
expires: Mon, 04 Sep 2023 13:35:48 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SpGFgP11%2FUErMI%2FyqZDQsu9Ou9cph3ycjAE4WOF%2FryJDULPzkgrG79I8566DUachFBwR91SYUz1%2B1g4p1CS%2B0FQQ%2Bhf6xYlCOCrfrsVObk4hLXBxywVVKo99nu6ENk84eo6UPt5A"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74a98207597a0b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
abea4dc307fd4da34aac369f4316657c
ef7be7963fa8154c83b78d6ca8518b8448f079ff
1c50a6b2765a5108f31d7a31c98c62d293440c84e8bf63f9dac685be9e3d77d5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 13:35:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

yongg.duckdns.org/

20.212.4.248

200 OK

36 kB

URL HTTP/1.1
yongg.duckdns.org/
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- assembler source, Unicode text, UTF-8 text, with CRLF line terminators
Size
36 kB (36225 bytes)
Hash
840e9fcedcb45bc0925e8ac12cf7a613
3ed171a232ce102f1014d9f87226961242ec870f
492db21a647b462c73d6cda6b7d0168d26f0ae41ce1109ac837e976ae9e63e49

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET / HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:48 GMT
Server: Apache
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
abea4dc307fd4da34aac369f4316657c
ef7be7963fa8154c83b78d6ca8518b8448f079ff
1c50a6b2765a5108f31d7a31c98c62d293440c84e8bf63f9dac685be9e3d77d5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 13:35:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

push.services.mozilla.com/

54.149.101.24

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.149.101.24:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: m2zLCJrSdAvgGLilN9N/1A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: mWveEKlTRrORTDBBcSQZjVqkgmg=

i.postimg.cc/bdB94RGs/footer-socmed-3.png

141.94.200.42

200 OK

6.6 kB

URL HTTP/2
i.postimg.cc/bdB94RGs/footer-socmed-3.png
IP
141.94.200.42:0
ASN
#16276 OVH SAS

File type
PNG image data, 180 x 128, 8-bit/color RGBA, non-interlaced\012- data
Size
6.6 kB (6571 bytes)
Hash
bc99de2d262f8daf5c75d55ea0328990
8af7007005a8725a1c2e2a4710101be68a7ebfea
d1e50bf94ebb01626c1045d43541f5989f67f6b3d62d3d6eb38e34fe0be94595

HTTP Headers

GET /bdB94RGs/footer-socmed-3.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 13:35:48 GMT
content-type: image/png
content-length: 6571
last-modified: Tue, 22 Mar 2022 04:48:19 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.postimg.cc/Sxyy8Kzz/footer-socmed-6.png

141.94.200.42

200 OK

4.3 kB

URL HTTP/2
i.postimg.cc/Sxyy8Kzz/footer-socmed-6.png
IP
141.94.200.42:0
ASN
#16276 OVH SAS

File type
PNG image data, 184 x 140, 8-bit/color RGBA, non-interlaced\012- data
Size
4.3 kB (4316 bytes)
Hash
27eb10858d473bfd39cca3251fe35a26
f472c341ec3696a0c7bb85799495995ff72f941f
e0e93e88b46229223de82294608854d6578f0ade6f696b31f830cda37aae9b0e

HTTP Headers

GET /Sxyy8Kzz/footer-socmed-6.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 13:35:48 GMT
content-type: image/png
content-length: 4316
last-modified: Wed, 13 Apr 2022 13:57:35 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.postimg.cc/pV8Q4L9L/footer-img.png

141.94.200.42

200 OK

14 kB

URL HTTP/2
i.postimg.cc/pV8Q4L9L/footer-img.png
IP
141.94.200.42:0
ASN
#16276 OVH SAS

File type
PNG image data, 669 x 99, 8-bit/color RGBA, non-interlaced\012- data
Size
14 kB (14457 bytes)
Hash
d8e7ade119fece88de74909f9625a4f4
fcd55a597136e98a1ef13fb4ec78b5fdfe5ddffb
49c48ca56906e272d341083c726fc29a7304b7e66647ffd08b4ce7edd67430b4

HTTP Headers

GET /pV8Q4L9L/footer-img.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 13:35:48 GMT
content-type: image/png
content-length: 14457
last-modified: Sun, 26 Dec 2021 01:40:34 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.postimg.cc/dtyfWFF2/login-Method2.png

141.94.200.42

200 OK

4.3 kB

URL HTTP/2
i.postimg.cc/dtyfWFF2/login-Method2.png
IP
141.94.200.42:0
ASN
#16276 OVH SAS

File type
PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size
4.3 kB (4298 bytes)
Hash
fef946b8bba756359e2a1e87ccd915ea
acc364946077b0e32b2343474ce4066ad3ee524c
1be5d05ce6faad469f7f9c5a5879f2d9f8d267b60eb394e92c19217268bcea8f

HTTP Headers

GET /dtyfWFF2/login-Method2.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 13:35:48 GMT
content-type: image/png
content-length: 4298
last-modified: Sun, 26 Dec 2021 01:53:00 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.postimg.cc/Thwcks3z/footer-socmed-2.png

141.94.200.42

200 OK

11 kB

URL HTTP/2
i.postimg.cc/Thwcks3z/footer-socmed-2.png
IP
141.94.200.42:0
ASN
#16276 OVH SAS

File type
PNG image data, 180 x 148, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (10864 bytes)
Hash
80c10d25063bc5137b0fcf63b4d6165f
9655f83c214eaccb92d34d8b8ca83581a56fb2a7
16f1ccc0e0a89629ef11948c8de6ca77591a6f9b937b8de44ebc18358225bd80

HTTP Headers

GET /Thwcks3z/footer-socmed-2.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 13:35:48 GMT
content-type: image/png
content-length: 10864
last-modified: Tue, 22 Mar 2022 04:48:19 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.postimg.cc/jnLQLD1x/footer-socmed-1.png

141.94.200.42

200 OK

5.8 kB

URL HTTP/2
i.postimg.cc/jnLQLD1x/footer-socmed-1.png
IP
141.94.200.42:0
ASN
#16276 OVH SAS

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size
5.8 kB (5796 bytes)
Hash
bef4c998aafaa09e5d29d60f46525c62
6c7f350282f0f6dc01f577c3785e0aaea0fcc2e6
dfba7a0c7d120366be1d50ada6b75adcf62ac2038a1c08fd6e1c77071a38b5d1

HTTP Headers

GET /jnLQLD1x/footer-socmed-1.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 13:35:48 GMT
content-type: image/png
content-length: 5796
last-modified: Tue, 22 Mar 2022 04:48:19 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.postimg.cc/YvcfCqz7/footer-socmed-4.png

141.94.200.42

200 OK

14 kB

URL HTTP/2
i.postimg.cc/YvcfCqz7/footer-socmed-4.png
IP
141.94.200.42:0
ASN
#16276 OVH SAS

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size
14 kB (13796 bytes)
Hash
023bfaf2a56a2b76e7afc94885893502
225d5166c4b3f7346e3bfef148d6bfb87b5b4a96
8014774799900154e012ac41d6cdd404adc93c5955535ee4bd5372e054e90443

HTTP Headers

GET /YvcfCqz7/footer-socmed-4.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 13:35:48 GMT
content-type: image/png
content-length: 13796
last-modified: Tue, 22 Mar 2022 04:48:19 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.postimg.cc/w7RQzsJF/footer-socmed-5.png

141.94.200.42

200 OK

9.2 kB

URL HTTP/2
i.postimg.cc/w7RQzsJF/footer-socmed-5.png
IP
141.94.200.42:0
ASN
#16276 OVH SAS

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size
9.2 kB (9205 bytes)
Hash
2a03905025f0e6e39ce3934cb40b170f
72ccd4a954ae859709be05f27c5e425dc0c810eb
a72b0b2226327f8af54d11c68347fd2930f05d48004c0f05e1ef39c3505d8ba0

HTTP Headers

GET /w7RQzsJF/footer-socmed-5.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 13:35:48 GMT
content-type: image/png
content-length: 9205
last-modified: Tue, 22 Mar 2022 04:48:19 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.postimg.cc/SxQ04Qn4/navbar-logo.png

141.94.200.42

200 OK

177 kB

URL HTTP/2
i.postimg.cc/SxQ04Qn4/navbar-logo.png
IP
141.94.200.42:0
ASN
#16276 OVH SAS

File type
PNG image data, 1074 x 800, 8-bit/color RGBA, non-interlaced\012- data
Size
177 kB (177317 bytes)
Hash
d2d4c42a8bef48daa7c8151a838870c9
7ad25c9e369e069f97093188699bd58a2b298888
a817051e4bb4f6a94ffc632b32ba786440fb33f2028b99a83c836631299ff587

HTTP Headers

GET /SxQ04Qn4/navbar-logo.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 13:35:48 GMT
content-type: image/png
content-length: 177317
last-modified: Tue, 22 Mar 2022 04:46:34 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

yongg.duckdns.org/index_files/css

20.212.4.248

200 OK

62 kB

URL HTTP/1.1
yongg.duckdns.org/index_files/css
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with very long lines (1116)
Size
62 kB (62268 bytes)
Hash
755df17a408beddb747e36f27ae4dedc
53daa61ef477c0badec68fa8942cb5ffce0c38b0
a2db023c6c27693f044211498c952a94f002c75b80926bde95c24d5dbab187f4

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /index_files/css HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:48 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 23:04:26 GMT
Accept-Ranges: bytes
Content-Length: 62268
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive

yongg.duckdns.org/css-zone/facebook.css

20.212.4.248

200 OK

3.6 kB

URL HTTP/1.1
yongg.duckdns.org/css-zone/facebook.css
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text
Size
3.6 kB (3591 bytes)
Hash
f7cb8899564e89c7f43e28f6cd08381b
aa295a91fac80db801911f85e981ba1112234bcc
a9be972440ab34d9ad1b8d8e1a741edd4ec4d1a8b2962a092ba55d4002160ae5

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /css-zone/facebook.css HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:48 GMT
Server: Apache
Last-Modified: Fri, 22 Jul 2022 09:18:22 GMT
Accept-Ranges: bytes
Content-Length: 3591
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

yongg.duckdns.org/css-zone/twitter.css

20.212.4.248

200 OK

2.2 kB

URL HTTP/1.1
yongg.duckdns.org/css-zone/twitter.css
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text
Size
2.2 kB (2233 bytes)
Hash
47b8b47da47291c523d35e3d692744d3
9141acf6018ef384f3414d44e388e6b5b8594bf1
ef6fa69663c38fc545f1e70addf87be8477ab16aba7dafcadc4c9f03f004597c

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /css-zone/twitter.css HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:48 GMT
Server: Apache
Last-Modified: Fri, 22 Jul 2022 09:18:24 GMT
Accept-Ranges: bytes
Content-Length: 2233
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

yongg.duckdns.org/js-zone/jquery.js

20.212.4.248

200 OK

2.3 kB

URL HTTP/1.1
yongg.duckdns.org/js-zone/jquery.js
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
exported SGML document, ASCII text, with very long lines (1757)
Size
2.3 kB (2253 bytes)
Hash
27335de838e10bf2a4b4d5999c517d76
83b660b19244c170d715f4da30013cf57284682b
e654612977b4226247e6dacd00df39e20942b906c9aed2fe405da0de47af6e91

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /js-zone/jquery.js HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:48 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 23:03:42 GMT
Accept-Ranges: bytes
Content-Length: 2253
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

yongg.duckdns.org/js-zone/main-zone.js

20.212.4.248

200 OK

610 B

URL HTTP/1.1
yongg.duckdns.org/js-zone/main-zone.js
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with very long lines (316)
Size
610 B (610 bytes)
Hash
61c46dba509ed4003d18053b613edb39
f20c38330a2dd1ec8fae7f53220d8a3a5cff8177
6a66a6f467e40c2ef0c8f0c6c77ff558538b20a4f9f0ce7c9c31331df5bf4b9e

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /js-zone/main-zone.js HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:48 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 23:03:42 GMT
Accept-Ranges: bytes
Content-Length: 610
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

yongg.duckdns.org/js-zone/myScript.js

20.212.4.248

404 Not Found

315 B

URL HTTP/1.1
yongg.duckdns.org/js-zone/myScript.js
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /js-zone/myScript.js HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 404 Not Found
Date: Wed, 14 Sep 2022 13:35:48 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

yongg.duckdns.org/index_files/gift-zone.js

20.212.4.248

200 OK

1.7 kB

URL HTTP/1.1
yongg.duckdns.org/index_files/gift-zone.js
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text
Size
1.7 kB (1685 bytes)
Hash
ac813cbf4df0e7e8ab2319c43dd8a680
cbe244000f9036173f55c9a31b5dcafecc8747b3
af0366a50b0afc180e60714817feffac0a5da579117e48aaa04a01746829bd2d

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /index_files/gift-zone.js HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:48 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 23:04:22 GMT
Accept-Ranges: bytes
Content-Length: 1685
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

yongg.duckdns.org/js-zone/showHide.js

20.212.4.248

200 OK

1.1 kB

URL HTTP/1.1
yongg.duckdns.org/js-zone/showHide.js
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with CRLF line terminators
Size
1.1 kB (1075 bytes)
Hash
d3e46c4a7d95270da519489746521b1a
5f5a383b6a1a635695e2c72aace79363708f82be
8023fc37af7de956061342860b38dd1646ce1f1fa7ecc2ce703e2b544b2bd283

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /js-zone/showHide.js HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:48 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 23:03:44 GMT
Accept-Ranges: bytes
Content-Length: 1075
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

yongg.duckdns.org/js-zone/slider.js

20.212.4.248

200 OK

588 B

URL HTTP/1.1
yongg.duckdns.org/js-zone/slider.js
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with CRLF line terminators
Size
588 B (588 bytes)
Hash
2164c6d5165fe540ed4889f6396ae32b
e0a83804b1872a933d8398195c860861990d08fa
20087c03a5deb12faebad778ee76e59d846595b075de68810b366db32ffcee56

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /js-zone/slider.js HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:48 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 23:03:46 GMT
Accept-Ranges: bytes
Content-Length: 588
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

yongg.duckdns.org/css-zone/animate.css

20.212.4.248

200 OK

78 kB

URL HTTP/1.1
yongg.duckdns.org/css-zone/animate.css
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text
Size
78 kB (77906 bytes)
Hash
8eae1a9cfafdc593321d4d59ec4905ea
232f5f3f4c3a0a56823e0e933f9c7fec3aa9cbcc
e89c81987c5cbc157097eaa6657d6a594abf030cc89bb63f0d2154d8383e9fab

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /css-zone/animate.css HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:48 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 23:04:08 GMT
Accept-Ranges: bytes
Content-Length: 77906
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

yongg.duckdns.org/js-zone/script.js

20.212.4.248

200 OK

187 kB

URL HTTP/1.1
yongg.duckdns.org/js-zone/script.js
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with very long lines (65536), with no line terminators
Size
187 kB (187095 bytes)
Hash
eec8318415ffc986bd23f1874576b0ea
1c6dd46b477e97aa39726de899bfdce5ccd34e6d
cadee7a6bcac7c39cefed904847dafe541693525f2c1bc04976f51f9eb94852c

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /js-zone/script.js HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:49 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 23:34:48 GMT
Accept-Ranges: bytes
Content-Length: 187095
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

i.ibb.co/Wg8qQxh/facebook-text.png

217.182.228.53

200 OK

29 kB

URL HTTP/2
i.ibb.co/Wg8qQxh/facebook-text.png
IP
217.182.228.53:0
ASN
#16276 OVH SAS

File type
PNG image data, 604 x 158, 8-bit/color RGBA, non-interlaced\012- data
Size
29 kB (28789 bytes)
Hash
74190b93fc4f5d88f0c8e6411ba20bd8
89ce2ecb660a90b8e6ed1b335443d7767c59f28a
092a3cd5f86b3f039feefdeb86694cd16ae545af214cfda614bdbbe2d1bde401

HTTP Headers

GET /Wg8qQxh/facebook-text.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 13:35:49 GMT
content-type: image/png
content-length: 28789
last-modified: Mon, 18 Oct 2021 19:35:50 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

yongg.duckdns.org/index_files/jquery.min.js.download

20.212.4.248

200 OK

87 kB

URL HTTP/1.1
yongg.duckdns.org/index_files/jquery.min.js.download
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with very long lines (65451)
Size
87 kB (86927 bytes)
Hash
a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /index_files/jquery.min.js.download HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:48 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 23:04:24 GMT
Accept-Ranges: bytes
Content-Length: 86927
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

yongg.duckdns.org/js-zone/myScript.js

20.212.4.248

404 Not Found

315 B

URL HTTP/1.1
yongg.duckdns.org/js-zone/myScript.js
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
315 B (315 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /js-zone/myScript.js HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 404 Not Found
Date: Wed, 14 Sep 2022 13:35:49 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.pubgmobile.com/en/images/nav_download.svg

23.36.76.227

200 OK

485 B

URL HTTP/2
www.pubgmobile.com/en/images/nav_download.svg
IP
23.36.76.227:0
ASN
#20940 Akamai International B.V.

File type
SVG Scalable Vector Graphics image\012- HTML document, Unicode text, UTF-8 text, with very long lines (999), with no line terminators
Size
485 B (485 bytes)
Hash
105955f14143a23be57cadef8e91950e
98cc1e76113b4b2a2a77805bb1f1d6b364344d88
b85bdfd2887c4fe7681cae97896e604e74d27f150feb49598e1e7efebd3c6fc2

HTTP Headers

GET /en/images/nav_download.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:17 GMT
etag: "62387c81-3ef"
accept-ranges: bytes
unused62: 8096267
vary: Accept-Encoding
content-encoding: gzip
date: Wed, 14 Sep 2022 13:35:49 GMT
content-length: 485
X-Firefox-Spdy: h2

www.pubgmobile.com/en/images/nav_language.svg

23.36.76.227

200 OK

675 B

URL HTTP/2
www.pubgmobile.com/en/images/nav_language.svg
IP
23.36.76.227:0
ASN
#20940 Akamai International B.V.

File type
SVG Scalable Vector Graphics image\012- HTML document, Unicode text, UTF-8 text, with very long lines (1107), with no line terminators
Size
675 B (675 bytes)
Hash
77e7b8dcd13159c59219706782b1a897
a3c73409a8e9841a00b771d96ce6cb0ce76d222e
4f61e0a210a58bdf43f8a93bf658275291e6a16979f8090c0731f06b6fb3c5a4

HTTP Headers

GET /en/images/nav_language.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:18 GMT
etag: "62387c82-45b"
accept-ranges: bytes
unused62: 8096267
vary: Accept-Encoding
content-encoding: gzip
date: Wed, 14 Sep 2022 13:35:49 GMT
content-length: 675
X-Firefox-Spdy: h2

yongg.duckdns.org/img/reward/withBg/5.png

20.212.4.248

200 OK

9.7 kB

URL HTTP/1.1
yongg.duckdns.org/img/reward/withBg/5.png
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x480, components 3\012- data
Size
9.7 kB (9678 bytes)
Hash
fdd37485da8d316c2c037f2b51752b97
19209485e201395bd894cc72def0c7392278f324
62976d022342c5ddfa27c0f87238d4ff15e0602ce1faba6b8a33394b6c3a06a9

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /img/reward/withBg/5.png HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:49 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 03:22:50 GMT
Accept-Ranges: bytes
Content-Length: 9678
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css

104.18.10.207

200 OK

94 kB

URL HTTP/2
stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP
104.18.10.207:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (30837)
Size
94 kB (94220 bytes)
Hash
4f4a2ef78a3f9ae71112c925bb5358ee
734d28f9e34e0e8ab644aa36e9ea2a36949c0298
8a0d4a053d06247f44430cee0aabfe7bbb7e84b39e1cabdaaab48617041e866a

HTTP Headers

GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://yongg.duckdns.org
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 14 Sep 2022 13:35:48 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 08/20/2022 02:30:56
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 868de607b93881a6b924cab1bd43740e
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74a982075e79fac8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21279
Expires: Wed, 14 Sep 2022 19:30:28 GMT
Date: Wed, 14 Sep 2022 13:35:49 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21279
Expires: Wed, 14 Sep 2022 19:30:28 GMT
Date: Wed, 14 Sep 2022 13:35:49 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21279
Expires: Wed, 14 Sep 2022 19:30:28 GMT
Date: Wed, 14 Sep 2022 13:35:49 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21279
Expires: Wed, 14 Sep 2022 19:30:28 GMT
Date: Wed, 14 Sep 2022 13:35:49 GMT
Connection: keep-alive

yongg.duckdns.org/img/reward/withBg/4.png

20.212.4.248

200 OK

20 kB

URL HTTP/1.1
yongg.duckdns.org/img/reward/withBg/4.png
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x480, components 3\012- data
Size
20 kB (20401 bytes)
Hash
d3fec55231002f6ebef9c357431e5d45
4db040a8a2ad2fc59fc3b93d371328febce59287
49f5b5a8ce09176e4e7aee4999fed1c14ed67fad8dd191cf8a2e8594d354f7fa

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /img/reward/withBg/4.png HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:49 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 03:22:50 GMT
Accept-Ranges: bytes
Content-Length: 20401
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16b1b829-b672-479c-964a-2f636f65f91e.jpeg

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16b1b829-b672-479c-964a-2f636f65f91e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (14151 bytes)
Hash
fef8234ab83f6f8f8b29665f592cbc9f
a3e706d6309e4a9d7b293f2b9255f1550ba5e9b7
569c8c9736026fc310e148d4d74081e96a86245baaa1f784280d44a1cbd25ed0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16b1b829-b672-479c-964a-2f636f65f91e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 14151
x-amzn-requestid: d5bc9be4-af3a-40fd-bfc9-1ac4769d2d3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yauv4GhboAMF2dA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f7ff-375df72d2d67582635b9e4ae;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: CZRpgjU_AxNYoyeSTOwhJhONl2DS4pvCLJ62RgAFp0flw-kPz3GkpQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:48:11 GMT
age: 56858
etag: "a3e706d6309e4a9d7b293f2b9255f1550ba5e9b7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34a3d36b-806f-4fea-a370-b26c1e8473d0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.0 kB (5988 bytes)
Hash
f5befd5bb8e6d5dad2465be69d5a33e4
e5b46c3ca439a09950290cada1af5e27cede10f2
4dc0a3373fb4c1830c4e2420dddbcbe8dceecf10e969cbe8d02368e41207832c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34a3d36b-806f-4fea-a370-b26c1e8473d0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5988
x-amzn-requestid: a0d81c7a-14e3-443d-8fb7-19241f06d3c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yaux0H77IAMF2_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f80b-0fe6fbbe75e891b925f88dc2;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:15 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 1X79jBMZa4UQmWsLdg_QIg5MQeersp1O3iSgpKd6R2f8Kl7PAJh0hQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:49:32 GMT
etag: "e5b46c3ca439a09950290cada1af5e27cede10f2"
content-type: image/jpeg
age: 56777
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0dd9e47f-6214-4e20-b9ff-3e738ad551e3.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.3 kB (6269 bytes)
Hash
47ae5cf125ce99bad80c283de8a85cec
0c0c1f84d8693d0c150c97faed21204622d48132
95f5b8cddbfcdb2b6105ed5a0d5ff0dd86390839e5df7416d4f879d69fcf20c1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0dd9e47f-6214-4e20-b9ff-3e738ad551e3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6269
x-amzn-requestid: 8f3cabdd-78c3-47d2-841b-02b674a79123
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ1k_FSCoAMFywQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d02ec-4b44c935456026ba700a5759;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:34:36 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: TnWZhLnecuseTYzrivm2OgMn1lXVKVzeXivXm4XhGVzhv_jV9MQQdQ==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 22:23:42 GMT
age: 54727
etag: "0c0c1f84d8693d0c150c97faed21204622d48132"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8cb650f7-1b0f-4a3d-898f-97b846afe9db.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10138 bytes)
Hash
0789404fdbe3613d465d8fa89a63d7b8
0617d2e513097ca415a1d07cd39b1cb64d832ecf
80e55e383f354113c3694bbcc00fd1c544a97079bd3c462f1b90e952c0634bac

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8cb650f7-1b0f-4a3d-898f-97b846afe9db.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10138
x-amzn-requestid: bdf798d9-6729-4363-a900-f32c4041d0c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YU5qsGZ-oAMFQ1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ea311-7b146c0620a83d5c00446f87;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 03:10:09 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OM9K72ukk0cuyR1ZcV5xWXnEd8U9OgeQi7bkCe0Pzn3BfdLMvSdSXg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Sep 2022 03:02:44 GMT
age: 37985
etag: "0617d2e513097ca415a1d07cd39b1cb64d832ecf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

16 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2b71bb0-fd92-43d0-8cd0-b426d0b88ee8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
16 kB (15547 bytes)
Hash
56811a1a20a467464e1f3da171ef8b14
366b2090d409d694b72b4b4131df46dd65d69c5a
4c208fb88884166adf4ecc5882f75948b4a87d85c76ad6e7137e8edbd125c996

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2b71bb0-fd92-43d0-8cd0-b426d0b88ee8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 15547
x-amzn-requestid: a78f7d90-84c3-4198-88bf-1d722c37f09f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yauv4EUDoAMF13A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f7ff-49535e5525606250306488ba;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: yP22CSG5x3BVfq29UMdw30TZcvuaL-kUDgjBZDUEMpRVDWqlZrCgdQ==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:42:05 GMT
age: 57224
etag: "366b2090d409d694b72b4b4131df46dd65d69c5a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.1 kB (6078 bytes)
Hash
f2157f7cfbdeb607f28ae51eb090f2c3
33d0dcadaa42179b2eae914c8ad16c9c088afbc9
135cd89c2c82f0f5e53d2612d5eac868c175b28a567a07e63a2073942e36a066

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4d822c-5153-4c55-bcb3-aa6ee72e3b62.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6078
x-amzn-requestid: e09c099f-5a2d-49d7-b6ab-e16f09c28bd0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YavJEEM5IAMFreQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f8a0-0fbb7b3d0cd6fbfa04f5a5d2;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:39:44 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Ur-HTN2DS8b3ojSQldJOZi6YW2wtCwRfbGqxg49ZUJ_00hC_rFxYEw==
via: 1.1 9b21fd56256eda6d1379e32829c4c446.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:51:32 GMT
age: 56657
etag: "33d0dcadaa42179b2eae914c8ad16c9c088afbc9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

yongg.duckdns.org/img/reward/withBg/2.png

20.212.4.248

200 OK

92 kB

URL HTTP/1.1
yongg.duckdns.org/img/reward/withBg/2.png
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 960x960, components 3\012- data
Size
92 kB (92078 bytes)
Hash
19082a7cfe73f2a62700f8d074f73ba1
1b1beafe66f625c29f4d67c4c9e5fd540b8791ce
7ab8c58f4108e21edb46532dc36d9753fa6ba66d78ad282b63e77bc79e443954

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /img/reward/withBg/2.png HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:49 GMT
Server: Apache
Last-Modified: Mon, 12 Sep 2022 17:47:24 GMT
Accept-Ranges: bytes
Content-Length: 92078
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

yongg.duckdns.org/js-zone/zero-zone.js

20.212.4.248

200 OK

861 B

URL HTTP/1.1
yongg.duckdns.org/js-zone/zero-zone.js
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
exported SGML document, ASCII text, with very long lines (612)
Size
861 B (861 bytes)
Hash
e2fa33d030064bc3c6e44da71cf39659
4907034831c9244c5bce315c3aabbbbdf06cd687
b6b1475306c19ac27e78c3483123346379ea4a356ad9bf0d01319cee2b8f30c6

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /js-zone/zero-zone.js HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:49 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 23:03:48 GMT
Accept-Ranges: bytes
Content-Length: 861
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

yongg.duckdns.org/img/header.jpg

20.212.4.248

200 OK

100 kB

URL HTTP/1.1
yongg.duckdns.org/img/header.jpg
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Size
100 kB (99966 bytes)
Hash
b780c66f5fe81c5bd0a80ce817a7b076
d0ebeb32c7bdabe06e3cfbf991033fdca38c1cad
b6f34eb32e16602bc56e51c3fbd030e9900b0d97c52b2ea5a9d1c5b53539cdb9

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /img/header.jpg HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:49 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 03:23:46 GMT
Accept-Ranges: bytes
Content-Length: 99966
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg

yongg.duckdns.org/js-zone/alert-zone.js

20.212.4.248

200 OK

121 kB

URL HTTP/1.1
yongg.duckdns.org/js-zone/alert-zone.js
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with very long lines (64301)
Size
121 kB (120664 bytes)
Hash
2d8819d4b15ffe076a804a074e0229da
0e76d42421e78a58d71c99e233335f39b8b47645
b49a2dab55008d7ba1277b3adbb0b5f590f9b3ee25e3e89a9d78696efd262dde

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /js-zone/alert-zone.js HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:49 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 23:03:40 GMT
Accept-Ranges: bytes
Content-Length: 120664
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

yongg.duckdns.org/img/popup-close.png

20.212.4.248

200 OK

800 B

URL HTTP/1.1
yongg.duckdns.org/img/popup-close.png
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
RIFF (little-endian) data, Web/P image\012- data
Size
800 B (800 bytes)
Hash
9ad933a2811231bb0281a36a869afbf2
c7ce486358fb5a1f1809337b1b665f7ee9b29193
6a8126f7f95412ae2e2dd862ed80a94f043731bcb9772afc54e984ae894213c2

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /img/popup-close.png HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:49 GMT
Server: Apache
Last-Modified: Wed, 03 Aug 2022 16:21:16 GMT
Accept-Ranges: bytes
Content-Length: 800
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

yongg.duckdns.org/css-zone/style-zone.css

20.212.4.248

200 OK

24 kB

URL HTTP/1.1
yongg.duckdns.org/css-zone/style-zone.css
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with very long lines (411), with CRLF line terminators
Size
24 kB (23747 bytes)
Hash
7bf1e285ed3ef0f64b9f27a3eb255526
de13d101204f77e2b36e1da99af37b07a164e8f8
fd0b38713344af4ef33167176959f079479fbbfb61675155c730926057b782ed

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /css-zone/style-zone.css HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:50 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 23:04:12 GMT
Accept-Ranges: bytes
Content-Length: 23747
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css

yongg.duckdns.org/css-zone/zero-zone.css

20.212.4.248

200 OK

5.5 kB

URL HTTP/1.1
yongg.duckdns.org/css-zone/zero-zone.css
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with CRLF line terminators
Size
5.5 kB (5487 bytes)
Hash
f0189e228f5c721e4bb056b09e53f5be
0b5bad2346f8d1b8582909b7d614d2956a6ec5a7
3424d464cd8426570ab35cbba35811fa37a9c09ba71d26e48dff621ed5e3aa42

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /css-zone/zero-zone.css HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:50 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 23:04:14 GMT
Accept-Ranges: bytes
Content-Length: 5487
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css

i.postimg.cc/02KwtTc7/footer-bg.jpg

141.94.200.42

200 OK

12 kB

URL HTTP/2
i.postimg.cc/02KwtTc7/footer-bg.jpg
IP
141.94.200.42:0
ASN
#16276 OVH SAS

File type
JPEG image data, progressive, precision 8, 579x800, components 3\012- data
Size
12 kB (11651 bytes)
Hash
27b8ceba13cb26a4ac6951cecdd4a5d3
accbec4f1b6038f0bcd2032da80c2ee342033d2e
d1740f2a847c3b67a1071442fe2af27298bca56ab267e90ea8aec3d4e9b9552f

HTTP Headers

GET /02KwtTc7/footer-bg.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 14 Sep 2022 13:35:50 GMT
content-type: image/jpeg
content-length: 11651
last-modified: Wed, 23 Mar 2022 19:15:53 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

www.pubgmobile.com/en/images/nav_menu.svg

23.36.76.227

200 OK

426 B

URL HTTP/2
www.pubgmobile.com/en/images/nav_menu.svg
IP
23.36.76.227:0
ASN
#20940 Akamai International B.V.

File type
SVG Scalable Vector Graphics image\012- HTML document, Unicode text, UTF-8 text, with very long lines (876), with no line terminators
Size
426 B (426 bytes)
Hash
76f5753e4fe160785df31ef342ada1c1
a78cc3e318b79b7fe5e7eb8df11683706b518e8f
52c48564638e7f165f23fae7f76b72d07905f2179ff659b939bfab7ec8b82a26

HTTP Headers

GET /en/images/nav_menu.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:18 GMT
etag: "62387c82-374"
accept-ranges: bytes
unused62: 8096267
vary: Accept-Encoding
content-encoding: gzip
date: Wed, 14 Sep 2022 13:35:50 GMT
content-length: 426
X-Firefox-Spdy: h2

www.pubgmobile.com/id/event/royalepass10/images/icon_logo.jpg

23.36.76.227

200 OK

75 kB

URL HTTP/2
www.pubgmobile.com/id/event/royalepass10/images/icon_logo.jpg
IP
23.36.76.227:0
ASN
#20940 Akamai International B.V.

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 500x500, components 3\012- data
Size
75 kB (75149 bytes)
Hash
92c19dc5bd77186e5bb8ed35ce668979
646bf70d1c669c7d7388f95a0a33755e4721289c
0d9cf7eb8fb12be77685134e63f7dae9a95fbf9306ae0529bd0347582d18a8ef

HTTP Headers

GET /id/event/royalepass10/images/icon_logo.jpg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
content-length: 75149
last-modified: Wed, 15 Sep 2021 06:46:59 GMT
etag: "614196e3-1258d"
accept-ranges: bytes
unused62: 8096267
cache-control: max-age=276
expires: Wed, 14 Sep 2022 13:40:26 GMT
date: Wed, 14 Sep 2022 13:35:50 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b7e665b6b70fa840ee6a1417da402132
658fa05afcf7752e8cb02979c28874efb0f4ddd8
9905cee109c441b937300b368ceccd186877a0923164bf3e1eb0971a2a224400

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 13:35:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b7e665b6b70fa840ee6a1417da402132
658fa05afcf7752e8cb02979c28874efb0f4ddd8
9905cee109c441b937300b368ceccd186877a0923164bf3e1eb0971a2a224400

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 13:35:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/teko/v15/LYjCdG7kmE0gdVBesCRgqA.woff2

142.250.74.163

200 OK

13 kB

URL HTTP/2
fonts.gstatic.com/s/teko/v15/LYjCdG7kmE0gdVBesCRgqA.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 13196, version 1.0\012- data
Size
13 kB (13196 bytes)
Hash
5b9fce771bd530ab9767e2b5aebd28c1
28ee5935b59df8b2d6876707e1f0f0e6768d2d31
a3bf77e9dea5a047c348fa98ccbeb5d5e07de3541ce0a2dfb243690da964804c

HTTP Headers

GET /s/teko/v15/LYjCdG7kmE0gdVBesCRgqA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://yongg.duckdns.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13196
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Sep 2022 20:03:44 GMT
expires: Tue, 12 Sep 2023 20:03:44 GMT
cache-control: public, max-age=31536000
age: 149526
last-modified: Wed, 27 Apr 2022 16:17:49 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/teko/v15/LYjNdG7kmE0gfaN9pQ.woff2

142.250.74.163

200 OK

13 kB

URL HTTP/2
fonts.gstatic.com/s/teko/v15/LYjNdG7kmE0gfaN9pQ.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 13324, version 1.0\012- data
Size
13 kB (13324 bytes)
Hash
b4082c888eefa2dca3fe2c9d46a87180
05aeb6c58175f659fe59eaca5a9d3735dd0530e3
352ad1513eeaeec51060f01d5bed32345862ec4d9c0802b81e0a47885951e4b6

HTTP Headers

GET /s/teko/v15/LYjNdG7kmE0gfaN9pQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://yongg.duckdns.org
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13324
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 20:23:38 GMT
expires: Thu, 07 Sep 2023 20:23:38 GMT
cache-control: public, max-age=31536000
age: 580332
last-modified: Wed, 27 Apr 2022 17:05:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.pubgmobile.com/en/images/nav_shop.svg

23.36.76.227

200 OK

526 B

URL HTTP/2
www.pubgmobile.com/en/images/nav_shop.svg
IP
23.36.76.227:0
ASN
#20940 Akamai International B.V.

File type
SVG Scalable Vector Graphics image\012- HTML document, Unicode text, UTF-8 text, with very long lines (985), with no line terminators
Size
526 B (526 bytes)
Hash
ad0548f5478991acc360e6464247e82a
40e3e327eebfc39a8e45b1aa46b725d65390cdcc
6654577abe5f4be7b3f9089fa76e5f746c8d0f5c7eae1cc8202a94fae1193fe3

HTTP Headers

GET /en/images/nav_shop.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:18 GMT
etag: "62387c82-3e1"
accept-ranges: bytes
unused62: 8096267
vary: Accept-Encoding
content-encoding: gzip
date: Wed, 14 Sep 2022 13:35:50 GMT
content-length: 526
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Teko&display=swap

142.250.74.10

200 OK

305 kB

URL HTTP/2
fonts.googleapis.com/css2?family=Teko&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
305 kB (304768 bytes)
Hash
48d4e50d9bdab92376ebbe5413f9e999
5c25607ce8d0606dcb58a14d6bf53a4d6f3d2032
f75325529715307bcb667f1d5b830597b6863995d16522d8dcbd1d5d3eccc61b

HTTP Headers

GET /css2?family=Teko&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 13:35:48 GMT
date: Wed, 14 Sep 2022 13:35:48 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b7e665b6b70fa840ee6a1417da402132
658fa05afcf7752e8cb02979c28874efb0f4ddd8
9905cee109c441b937300b368ceccd186877a0923164bf3e1eb0971a2a224400

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 13:35:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stackpath.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0

104.18.10.207

200 OK

77 kB

URL HTTP/2
stackpath.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
104.18.10.207:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

HTTP Headers

GET /font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://yongg.duckdns.org
Connection: keep-alive
Referer: https://stackpath.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 14 Sep 2022 13:35:50 GMT
content-type: font/woff2
content-length: 77160
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "af7ae505a9eed503f8b8e6982036873e"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 08/17/2022 18:20:14
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 752
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 32e1e19cabb93c66025fbd758e0fb83b
cdn-cache: HIT
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74a982129e9cfac8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

yongg.duckdns.org/img/selow.jpg

20.212.4.248

200 OK

34 kB

URL HTTP/1.1
yongg.duckdns.org/img/selow.jpg
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x256, components 3\012- data
Size
34 kB (33457 bytes)
Hash
31e5d2282ef681dd37d9100bd1a9d79a
28ec9b2bf5c238f3e095dcbfeed9e948905c0576
3e70b163fbcbb4336a23dc7e14dcf707c8cc65d71077657476b43cabb525f416

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /img/selow.jpg HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:50 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 03:22:52 GMT
Accept-Ranges: bytes
Content-Length: 33457
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg

yongg.duckdns.org/img/container.jpg

20.212.4.248

200 OK

156 kB

URL HTTP/1.1
yongg.duckdns.org/img/container.jpg
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x960, components 3\012- data
Size
156 kB (156519 bytes)
Hash
e78cb56696399eacca68a9c58cc86e8d
18fbf007bb90bbea5327beb12a5fc273fda14a98
b73572d05568fec320d2a2417e42292789f8219e3b304d9dc5eaa14d16ed1c75

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /img/container.jpg HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/css-zone/style-zone.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:50 GMT
Server: Apache
Last-Modified: Sun, 11 Sep 2022 03:23:44 GMT
Accept-Ranges: bytes
Content-Length: 156519
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg

yongg.duckdns.org/img/btn-on.png

20.212.4.248

200 OK

10 kB

URL HTTP/1.1
yongg.duckdns.org/img/btn-on.png
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x142, components 3\012- data
Size
10 kB (10293 bytes)
Hash
d35bd1031f3e14f1b534e1be4e3844e6
6477f16736c97a850d3eaceba5fb601346e36cc9
1152d493c0826e16a4e61b8e1bf6317f5ff81e5fac266c2d79b003f6920fd168

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /img/btn-on.png HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:50 GMT
Server: Apache
Last-Modified: Fri, 15 Jul 2022 01:35:20 GMT
Accept-Ranges: bytes
Content-Length: 10293
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

yongg.duckdns.org/img/bg.png

20.212.4.248

200 OK

20 kB

URL HTTP/1.1
yongg.duckdns.org/img/bg.png
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 802x1280, components 3\012- data
Size
20 kB (20107 bytes)
Hash
1ecce4f68ef93f75761815865cb08339
4ee0579f7e577d32a05d195adb01035f6fef8f0e
3f0438928a3a0fddcaedec9f928b23918a64befad399cadc72e7a55e55cc49ad

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /img/bg.png HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/css-zone/style-zone.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:50 GMT
Server: Apache
Last-Modified: Fri, 05 Aug 2022 16:02:46 GMT
Accept-Ranges: bytes
Content-Length: 20107
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

yongg.duckdns.org/img/alert.jpg

20.212.4.248

200 OK

13 kB

URL HTTP/1.1
yongg.duckdns.org/img/alert.jpg
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x214, components 3\012- data
Size
13 kB (13295 bytes)
Hash
49b03a0b740f6741c3c5937061258457
ef6e484c11f2cec7d093b73e9978140ca56daa65
2694c31b51814a011c79c9dc4d2ea0423dd6ba3595186e3a54346f1969bb2425

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /img/alert.jpg HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:50 GMT
Server: Apache
Last-Modified: Thu, 04 Aug 2022 12:03:30 GMT
Accept-Ranges: bytes
Content-Length: 13295
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg

yongg.duckdns.org/fonts/pubg.woff2

20.212.4.248

200 OK

8.2 kB

URL HTTP/1.1
yongg.duckdns.org/fonts/pubg.woff2
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
TrueType Font data, 11 tables, 1st "OS/2", 32 names, Macintosh, Copyright 2014, 2015 Adobe Systems Incorporated (http://www.adobe.com/).pubg-headline-boldRegul\012- data
Size
8.2 kB (8156 bytes)
Hash
46c47ed3c526deb2920d3e0568166bcd
c807bd8c7803733f7fa76134ef1e8102c72e8430
cb43ac49eedab33f20aaf47304230a47a4f0da8e26e76dde2710f37a5aed0978

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /fonts/pubg.woff2 HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:50 GMT
Server: Apache
Last-Modified: Fri, 12 Aug 2022 23:04:30 GMT
Accept-Ranges: bytes
Content-Length: 8156
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: font/woff2

yongg.duckdns.org/img/popup-navbar2.png

20.212.4.248

200 OK

13 kB

URL HTTP/1.1
yongg.duckdns.org/img/popup-navbar2.png
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x138, components 3\012- data
Size
13 kB (12959 bytes)
Hash
940392e86a001b3533b3535158bd02cb
9e3080417bdc0487ee51aa288ebed3e01f25d950
050e3f367e338632993a722711d76a1ecaefd01e5a5ad864ce68f5cc1d073f46

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /img/popup-navbar2.png HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:50 GMT
Server: Apache
Last-Modified: Thu, 04 Aug 2022 13:40:04 GMT
Accept-Ranges: bytes
Content-Length: 12959
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

yongg.duckdns.org/img/popup-box-bg2.png

20.212.4.248

200 OK

15 kB

URL HTTP/1.1
yongg.duckdns.org/img/popup-box-bg2.png
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x527, components 3\012- data
Size
15 kB (15355 bytes)
Hash
cc936288e8627360e61ce5609dea8531
f8d1cd6da19416f6a0967df07ac58b65d69a75ac
1d5f1e93b958f19916a96283b2d9957c0442f08cc07cadcdce000ec9b2254fb0

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /img/popup-box-bg2.png HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:50 GMT
Server: Apache
Last-Modified: Thu, 04 Aug 2022 13:40:04 GMT
Accept-Ranges: bytes
Content-Length: 15355
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png

yongg.duckdns.org/img/popup-footer2.png

20.212.4.248

200 OK

6.1 kB

URL HTTP/1.1
yongg.duckdns.org/img/popup-footer2.png
IP
20.212.4.248:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x120, components 3\012- data
Size
6.1 kB (6112 bytes)
Hash
b685440d4528b8587832f9cc386f261c
9d313eb0cdff61955b9d89338d868444cecf7522
326142e948fa0861144e45a8a383f0fa341709bb04dcd9b246cdb1aeb073efe8

Detections

Analyzer	Verdict	Alert
urlquery		DynDNS domain detected

HTTP Headers

GET /img/popup-footer2.png HTTP/1.1
Host: yongg.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Wed, 14 Sep 2022 13:35:50 GMT
Server: Apache
Last-Modified: Thu, 04 Aug 2022 13:40:04 GMT
Accept-Ranges: bytes
Content-Length: 6112
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

www.pubgmobile.com/common/images/icon_logo.jpg

23.36.76.227

200 OK

982 kB

URL HTTP/2
www.pubgmobile.com/common/images/icon_logo.jpg
IP
23.36.76.227:0
ASN
#20940 Akamai International B.V.

File type
JPEG image data, baseline, precision 8, 1024x1024, components 3\012- data
Size
982 kB (982437 bytes)
Hash
b83d8d3e9beecfac081f4e742d27661c
448330670bef8c2ee17baf6d2410ca974341cb88
5899c82b2f0563679a9c1ee79b5b28f2545864d95c7627c1a70e36a2f034497d

HTTP Headers

GET /common/images/icon_logo.jpg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
content-length: 982437
last-modified: Mon, 30 Nov 2020 12:10:45 GMT
etag: "5fc4e145-efda5"
accept-ranges: bytes
unused62: 8096267
cache-control: max-age=256
expires: Wed, 14 Sep 2022 13:40:06 GMT
date: Wed, 14 Sep 2022 13:35:50 GMT
X-Firefox-Spdy: h2

platform.twitter.com/widgets.js

151.101.84.157

200 OK

29 kB

URL HTTP/2
platform.twitter.com/widgets.js
IP
151.101.84.157:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (33915)
Size
29 kB (29220 bytes)
Hash
8f378d26acad29e3c7e0980df0f09106
e10d14b287d22786ad0ae0a59e578282d700fba9
da23fe862ea27708533fc25453d57676907259c6dced22bd591493b323ef8d57

HTTP Headers

GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Wed, 31 Aug 2022 20:41:50 GMT
cache-control: public, max-age=1800
content-type: application/javascript; charset=utf-8
etag: "f116c7e6b28e2aebeb60ade5bdc8e2b4+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:50 GMT
x-served-by: cache-iad-kcgs7200045-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 29220
X-Firefox-Spdy: h2

platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fyongg.duckdns.org

151.101.84.157

200 OK

105 kB

URL HTTP/2
platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fyongg.duckdns.org
IP
151.101.84.157:0
ASN
#54113 FASTLY

File type
HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size
105 kB (105445 bytes)
Hash
2c908e4df66c813c91eb41dd02376079
29df916bd525b6e273f6a62adb7d6df80789edfb
767b670476dae60cf2ddfda9bf3695fd9be641e1a338564b0d23b80cedaed567

HTTP Headers

GET /widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fyongg.duckdns.org HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 31 Aug 2022 20:40:57 GMT
cache-control: public, max-age=315360000
content-type: text/html; charset=utf-8
etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:51 GMT
x-served-by: cache-iad-kiad7000062-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 105445
X-Firefox-Spdy: h2

www.pubgmobile.com/en/images/footer_link_bg.png

23.36.76.227

200 OK

1.6 kB

URL HTTP/2
www.pubgmobile.com/en/images/footer_link_bg.png
IP
23.36.76.227:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 560 x 127, 8-bit/color RGBA, non-interlaced\012- data
Size
1.6 kB (1630 bytes)
Hash
92ae645b6114492e8c1c5464d949466a
1d27f2644c0f5e899e9478c78136a9bc94131150
f1bd509f6032d31635a91d57de9428b83929221b854768c38c8f1643877a9417

HTTP Headers

GET /en/images/footer_link_bg.png HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/png
content-length: 1630
last-modified: Mon, 21 Mar 2022 13:24:17 GMT
etag: "62387c81-65e"
accept-ranges: bytes
unused62: 8096267
cache-control: max-age=296
expires: Wed, 14 Sep 2022 13:40:47 GMT
date: Wed, 14 Sep 2022 13:35:51 GMT
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

313 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
313 B (313 bytes)
Hash
319027b805e4395449d76299e8f321c9
b206fa12e4ed6b7aea8911d498dded8fd5743cf2
860b34dbd76e3be31d51d6c82d4d4b0200df4ad541c86eeaa05aa840c39ba207

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5080
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 14 Sep 2022 13:35:51 GMT
Last-Modified: Wed, 14 Sep 2022 12:11:12 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 313

syndication.twitter.com/settings?session_id=f4e7b73de61df9a6f75223b159080d9f2f55055f

104.244.42.8

200 OK

315 B

URL HTTP/2
syndication.twitter.com/settings?session_id=f4e7b73de61df9a6f75223b159080d9f2f55055f
IP
104.244.42.8:0
ASN
#13414 TWITTER

File type
JSON data\012- , ASCII text, with very long lines (724), with no line terminators
Size
315 B (315 bytes)
Hash
337895171bedda99072b721c70846968
b4d7f3bd6ecef71c0733dc21723344cb94e6a45f
798f4be409e38ca283cc33755def17dfabcaeae8b90b252bda96b5eea19e4eaa

HTTP Headers

GET /settings?session_id=f4e7b73de61df9a6f75223b159080d9f2f55055f HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Wed, 14 Sep 2022 13:35:50 GMT
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Wed, 14 Sep 2022 13:35:51 GMT
content-length: 315
content-encoding: gzip
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 109
x-connection-hash: 32b77bd7acbf1f21ba5129649e1590737a1eb240735f360e5f63e802da7f55c9
X-Firefox-Spdy: h2

platform.twitter.com/js/horizon_timeline.4836f7a62ef55f5880337b3b6602854f.js

151.101.84.157

200 OK

2.7 kB

URL HTTP/2
platform.twitter.com/js/horizon_timeline.4836f7a62ef55f5880337b3b6602854f.js
IP
151.101.84.157:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (7729), with no line terminators
Size
2.7 kB (2685 bytes)
Hash
3c17247ed7ba792f01a2cf2353ee4bb5
2c7859cf99c15f591587c0aa12e530aea56485f6
4c22c49ebc4dc7795fd9954d80d2ddb1acb14e0a7bc282481c2805e94c0d119c

HTTP Headers

GET /js/horizon_timeline.4836f7a62ef55f5880337b3b6602854f.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 31 Aug 2022 20:40:49 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "34e2e8018518a39f9995c88495115818+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:51 GMT
x-served-by: cache-iad-kiad7000067-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 2685
X-Firefox-Spdy: h2

syndication.twitter.com/i/jot/embeds?l=%7B%22experiment_key%22%3A%22tfw_horizon_timeline_12034%22%2C%22bucket%22%3A%22treatment%22%2C%22version%22%3Anull%2C%22data%22%3A%7B%7D%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663162537386%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22format_version%22%3A1%2C%22widget_origin%22%3A%22%22%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22ddg%22%2C%22section%22%3A%22tfw_horizon_timeline_12034%22%2C%22action%22%3A%22experiment%22%7D%7D&session_id=f4e7b73de61df9a6f75223b159080d9f2f55055f

104.244.42.8

200 OK

43 B

URL HTTP/2
syndication.twitter.com/i/jot/embeds?l=%7B%22experiment_key%22%3A%22tfw_horizon_timeline_12034%22%2C%22bucket%22%3A%22treatment%22%2C%22version%22%3Anull%2C%22data%22%3A%7B%7D%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663162537386%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22format_version%22%3A1%2C%22widget_origin%22%3A%22%22%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22ddg%22%2C%22section%22%3A%22tfw_horizon_timeline_12034%22%2C%22action%22%3A%22experiment%22%7D%7D&session_id=f4e7b73de61df9a6f75223b159080d9f2f55055f
IP
104.244.42.8:0
ASN
#13414 TWITTER

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957

HTTP Headers

GET /i/jot/embeds?l=%7B%22experiment_key%22%3A%22tfw_horizon_timeline_12034%22%2C%22bucket%22%3A%22treatment%22%2C%22version%22%3Anull%2C%22data%22%3A%7B%7D%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663162537386%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22format_version%22%3A1%2C%22widget_origin%22%3A%22%22%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22ddg%22%2C%22section%22%3A%22tfw_horizon_timeline_12034%22%2C%22action%22%3A%22experiment%22%7D%7D&session_id=f4e7b73de61df9a6f75223b159080d9f2f55055f HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 14 Sep 2022 13:35:50 GMT
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Wed, 14 Sep 2022 13:35:51 GMT
content-length: 43
strict-transport-security: max-age=631138519
x-response-time: 116
x-connection-hash: 32b77bd7acbf1f21ba5129649e1590737a1eb240735f360e5f63e802da7f55c9
X-Firefox-Spdy: h2

syndication.twitter.com/srv/timeline-profile/screen-name/PUBGMOBILE?dnt=false&embedId=twitter-widget-0&frame=false&hideBorder=false&hideFooter=true&hideHeader=true&hideScrollBar=false&lang=en&maxHeight=inherit&origin=https%3A%2F%2Fyongg.duckdns.org%2F&sessionId=f4e7b73de61df9a6f75223b159080d9f2f55055f&showHeader=false&showReplies=false&theme=dark&transparent=false&widgetsVersion=1bfeb5c3714e8%3A1661975971032

104.244.42.8

200 OK

15 kB

URL HTTP/2
syndication.twitter.com/srv/timeline-profile/screen-name/PUBGMOBILE?dnt=false&embedId=twitter-widget-0&frame=false&hideBorder=false&hideFooter=true&hideHeader=true&hideScrollBar=false&lang=en&maxHeight=inherit&origin=https%3A%2F%2Fyongg.duckdns.org%2F&sessionId=f4e7b73de61df9a6f75223b159080d9f2f55055f&showHeader=false&showReplies=false&theme=dark&transparent=false&widgetsVersion=1bfeb5c3714e8%3A1661975971032
IP
104.244.42.8:0
ASN
#13414 TWITTER

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (65380), with no line terminators
Size
15 kB (14953 bytes)
Hash
e0c994ea28e8d83189c19965c8326a63
00dafa82fd31f59e3ee1a50ed62b96f8c7c6df5b
d001b61dd80b6c8f52182392f940680a0273ef6c25f72d742ace3826f3894c00

HTTP Headers

GET /srv/timeline-profile/screen-name/PUBGMOBILE?dnt=false&embedId=twitter-widget-0&frame=false&hideBorder=false&hideFooter=true&hideHeader=true&hideScrollBar=false&lang=en&maxHeight=inherit&origin=https%3A%2F%2Fyongg.duckdns.org%2F&sessionId=f4e7b73de61df9a6f75223b159080d9f2f55055f&showHeader=false&showReplies=false&theme=dark&transparent=false&widgetsVersion=1bfeb5c3714e8%3A1661975971032 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 14 Sep 2022 13:35:51 GMT
etag: "20141-6I4lzHDH5cFByVcrghPF8JJ7Ppo"
server: tsa_o
content-type: text/html; charset=utf-8
cache-control: must-revalidate, max-age=60
x-xss-protection: 0
strict-transport-security: max-age=631138519
content-encoding: gzip
content-length: 14953
x-response-time: 542
x-connection-hash: 32b77bd7acbf1f21ba5129649e1590737a1eb240735f360e5f63e802da7f55c9
X-Firefox-Spdy: h2

platform.twitter.com/_next/static/chunks/runtime-c5040a30986fc1d092cc.js

151.101.84.157

200 OK

2.1 kB

URL HTTP/2
platform.twitter.com/_next/static/chunks/runtime-c5040a30986fc1d092cc.js
IP
151.101.84.157:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (3831), with no line terminators
Size
2.1 kB (2103 bytes)
Hash
ea7694ee2573238a6cf6228e899aa861
afa4dcc5c4333f6c590e8e9af146e5b57612f573
93975e48b4114496ed84f84608e9ae4485854c7abe9dcaefe7ee9a98ef4d6315

HTTP Headers

GET /_next/static/chunks/runtime-c5040a30986fc1d092cc.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 01 Sep 2022 19:07:42 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "e3bac7bbcce0b4c5a7d1d12f33d62321+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-iad-kjyo7100052-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 2103
X-Firefox-Spdy: h2

platform.twitter.com/_next/static/chunks/modules.c7def0268c66f6a548ed.js

151.101.84.157

200 OK

96 kB

URL HTTP/2
platform.twitter.com/_next/static/chunks/modules.c7def0268c66f6a548ed.js
IP
151.101.84.157:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65536), with no line terminators
Size
96 kB (95749 bytes)
Hash
e44429ed410e85b6513d5b732c3261a3
126e116e2e1da2d1b6cbe82576aa17aec7135fd5
80f9944656c76f5e49f8419e1a0aa60e60f45e73c4948cb8dcc7f8a9efc95c2e

HTTP Headers

GET /_next/static/chunks/modules.c7def0268c66f6a548ed.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 17 Aug 2022 17:37:21 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "51acddf0dbfab928b183f36c1ee67619+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-iad-kjyo7100085-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 95749
X-Firefox-Spdy: h2

platform.twitter.com/_next/static/chunks/main-e9db78f5e7b3d83edd5e.js

151.101.84.157

200 OK

85 B

URL HTTP/2
platform.twitter.com/_next/static/chunks/main-e9db78f5e7b3d83edd5e.js
IP
151.101.84.157:0
ASN
#54113 FASTLY

File type
ASCII text, with no line terminators
Size
85 B (85 bytes)
Hash
b8b2d50ef6298a552e16e83cbfa53a6e
3daca5bf4c3bb217c9a32ded540e661136bff3c8
f53e2f8b049c387ad83b59cd40790d8c642493499a844a91fad0f816078a0748

HTTP Headers

GET /_next/static/chunks/main-e9db78f5e7b3d83edd5e.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 17 Aug 2022 17:37:20 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "8e33207e7b788da9abde5b6d33da0b00+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-iad-kjyo7100169-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 85
X-Firefox-Spdy: h2

platform.twitter.com/_next/static/chunks/pages/_app-6b59be76f6e3292c4dd6.js

151.101.84.157

200 OK

668 B

URL HTTP/2
platform.twitter.com/_next/static/chunks/pages/_app-6b59be76f6e3292c4dd6.js
IP
151.101.84.157:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (1338), with no line terminators
Size
668 B (668 bytes)
Hash
5f7471f4f504b1272dfa395b93cba6b3
cd2dc0ca68a173fbc556f3def8f8c600ad65289f
87e7085e6737c1c42df4905661aa767ec05d5eefbccbba13c2c1f096742dfbed

HTTP Headers

GET /_next/static/chunks/pages/_app-6b59be76f6e3292c4dd6.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 01 Sep 2022 19:07:41 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "be3e428d416daa9027cecf70b5f26bf9+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-iad-kcgs7200123-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 668
X-Firefox-Spdy: h2

platform.twitter.com/_next/static/chunks/pages/timeline-profile/screen-name/%5BscreenName%5D-568c81a96d7917ec4ebb.js

151.101.84.157

200 OK

1.3 kB

URL HTTP/2
platform.twitter.com/_next/static/chunks/pages/timeline-profile/screen-name/%5BscreenName%5D-568c81a96d7917ec4ebb.js
IP
151.101.84.157:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (12981), with no line terminators
Size
1.3 kB (1258 bytes)
Hash
395898559125303a189a0ed3faf61677
59147e44763a2b010782f49eadc605f1ee81a023
0e55c4299279db956c3b5f27ec683379cca47c9161d37ffce593721f94049ec6

HTTP Headers

GET /_next/static/chunks/pages/timeline-profile/screen-name/%5BscreenName%5D-568c81a96d7917ec4ebb.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 01 Sep 2022 19:07:42 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "91226f111c965b9d32e61425d0e4a158+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-iad-kiad7000045-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 1258
X-Firefox-Spdy: h2

platform.twitter.com/_next/static/fJUFW1qGayM-Fl0txyHpE/_ssgManifest.js

151.101.84.157

200 OK

60 B

URL HTTP/2
platform.twitter.com/_next/static/fJUFW1qGayM-Fl0txyHpE/_ssgManifest.js
IP
151.101.84.157:0
ASN
#54113 FASTLY

File type
ASCII text, with no line terminators
Size
60 B (60 bytes)
Hash
3a3a21a8555661b82b582a230c270275
4b95dd3d9816126f2b3231ef3ee11fcfa646e015
6ec0f0d1830724535d444117c7724130da4633be58b3cf7bef512fdaab631429

HTTP Headers

GET /_next/static/fJUFW1qGayM-Fl0txyHpE/_ssgManifest.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 01 Sep 2022 19:07:41 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "abee47769bf307639ace4945f9cfd4ff+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-iad-kcgs7200124-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 60
X-Firefox-Spdy: h2

platform.twitter.com/_next/static/chunks/2.691622e4391d1973cb65.js

151.101.84.157

200 OK

7.7 kB

URL HTTP/2
platform.twitter.com/_next/static/chunks/2.691622e4391d1973cb65.js
IP
151.101.84.157:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (23122), with no line terminators
Size
7.7 kB (7674 bytes)
Hash
4e68298e4344aa0d3d13719534a3438e
ac46127e7ea4b8a1d548414dcc7760c87c92afa6
b1225020ac004667f5143b07e601c42f334723d978141edaf2f1288d34ec9e68

HTTP Headers

GET /_next/static/chunks/2.691622e4391d1973cb65.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 17 Aug 2022 17:37:20 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "942b5b928a24465d1906b4716131d896+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-iad-kcgs7200030-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 7674
X-Firefox-Spdy: h2

platform.twitter.com/_next/static/chunks/13.1400171dc985d5f47aaf.js

151.101.84.157

200 OK

12 kB

URL HTTP/2
platform.twitter.com/_next/static/chunks/13.1400171dc985d5f47aaf.js
IP
151.101.84.157:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (37725), with no line terminators
Size
12 kB (11940 bytes)
Hash
9f7c72125ab146f6b0ab3d0cb2187181
4b8dc9e0963f9fcdeab3874ece94144311e46ffc
a22e46bf2f6a6cbcda2838168a3d4bc6bb653c0e3c3d2eb08d9f8a5eb44244ad

HTTP Headers

GET /_next/static/chunks/13.1400171dc985d5f47aaf.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 01 Sep 2022 19:07:42 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "15b5ec14cb278c05621cea19cb44555b+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-iad-kjyo7100072-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 11940
X-Firefox-Spdy: h2

platform.twitter.com/_next/static/chunks/4.096fc3966cc81b0f4642.js

151.101.84.157

200 OK

1.2 kB

URL HTTP/2
platform.twitter.com/_next/static/chunks/4.096fc3966cc81b0f4642.js
IP
151.101.84.157:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (2496), with no line terminators
Size
1.2 kB (1249 bytes)
Hash
e91000050268bee96fc0effd9f0b2a6d
eee109f92ccc5648f86ae6a6991cc36bd803e2d8
0efd3154138ae2950333e0d597097e8026b190363fc345d41c60fbafd0f68e54

HTTP Headers

GET /_next/static/chunks/4.096fc3966cc81b0f4642.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 01 Sep 2022 19:07:42 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "74fc8570e9c4ef27736b0fd8e9534b6f+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-iad-kiad7000162-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 1249
X-Firefox-Spdy: h2

platform.twitter.com/_next/static/chunks/0.8f205dbb7b06b224e307.js

151.101.84.157

200 OK

187 kB

URL HTTP/2
platform.twitter.com/_next/static/chunks/0.8f205dbb7b06b224e307.js
IP
151.101.84.157:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65536), with no line terminators
Size
187 kB (186671 bytes)
Hash
c53840ee83134ba334814d56e1897678
5870bb7d87171b967d6bf5e59547810ca6352260
f1f27040417ef7a2d6eb9a66943b4d0a4ff14d86e0088d7cfe7958301efd6ab3

HTTP Headers

GET /_next/static/chunks/0.8f205dbb7b06b224e307.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 17 Aug 2022 17:37:22 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "11f6449263029b9f59f18afa52cc99ed+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-iad-kcgs7200092-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 186671
X-Firefox-Spdy: h2

platform.twitter.com/_next/static/chunks/ondemand.Dropdown.5730e0a49ea6a6dde3b4.js

151.101.84.157

200 OK

2.6 kB

URL HTTP/2
platform.twitter.com/_next/static/chunks/ondemand.Dropdown.5730e0a49ea6a6dde3b4.js
IP
151.101.84.157:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (6637), with no line terminators
Size
2.6 kB (2597 bytes)
Hash
800e12bfec1a8d00e991a4656176410a
26f4ab4196d79d1c7e0ff598e6776f06140a4990
fe518fe09b34dc60c540420f7884228a1f3aa6c4f8b33710d85bb0ed1627fed1

HTTP Headers

GET /_next/static/chunks/ondemand.Dropdown.5730e0a49ea6a6dde3b4.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 01 Sep 2022 19:07:42 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "deb1205c6e01f2720f75bbd978f5925b+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-iad-kiad7000127-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 2597
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1f929.svg

104.244.43.131

200 OK

640 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1f929.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1270), with no line terminators
Size
640 B (640 bytes)
Hash
0f0b95b6177aa258d1ef63cfd27c27da
a3183aab483df4b675fdf372c284f4b0fd753d37
f4e898f9b2b334d16f2995ccad7bba6c49eea9b1de5e5e643229f5e31c3dc5fa

HTTP Headers

GET /emoji/v2/svg/1f929.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/svg+xml
etag: "/6kvwsjwp4HVrp/77O+gVA=="
expires: Fri, 10 Jun 2022 08:33:39 GMT
last-modified: Wed, 21 Feb 2018 22:31:14 GMT
strict-transport-security: max-age=631138519
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-fty21368-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 640
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1f4f2.svg

104.244.43.131

200 OK

218 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1f4f2.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Size
218 B (218 bytes)
Hash
46411731164ce1b34b9d6dd1a553a6a8
1025c7170f071b08cfa50fa5fd1000bfba77602c
936372005a9f3a4acde6b1d9c25541db83efca2f02fa3ba1c990a71da3a67aae

HTTP Headers

GET /emoji/v2/svg/1f4f2.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
etag: "FLgxf9DPH40eionebIQcdg=="
expires: Wed, 08 Jun 2022 10:50:59 GMT
content-type: image/svg+xml
last-modified: Mon, 17 Sep 2018 19:15:41 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-fty13724-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 218
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1f4a5.svg

104.244.43.131

200 OK

510 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1f4a5.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (842), with no line terminators
Size
510 B (510 bytes)
Hash
ff27ba60235ab333c13b17fdddfe0c46
1603045040556444cebc68b2deee5bb4a6ee6619
3208d9e2ed85785a3208d4b754e2329e22d0089a6203c0c96fc12364ef443b2b

HTTP Headers

GET /emoji/v2/svg/1f4a5.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
etag: "0Zj5K5kRx/27ErqmlKgZog=="
expires: Fri, 04 Nov 2022 08:13:12 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:31:04 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-fty21377-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 510
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/2705.svg

104.244.43.131

200 OK

318 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/2705.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (482), with no line terminators
Size
318 B (318 bytes)
Hash
f3e9154302b8b2cebffda2e8daa0bfef
3ab0bb35c9ce28a20bc3b9d1688cbbc57fa1dc14
7e0f796b2c8094291c040b84fcd92510092c277fee3811ab6e42b1bcc09d8156

HTTP Headers

GET /emoji/v2/svg/2705.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
etag: "IS4w5HIyvgMDOofcWO2qlQ=="
expires: Thu, 16 Mar 2023 06:40:08 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:32:28 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-fty21328-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 318
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1f3d6.svg

104.244.43.131

200 OK

680 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1f3d6.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1388), with no line terminators
Size
680 B (680 bytes)
Hash
dfd08ee0e24f8dc8fbf35ae3fb6c37da
e665d528e9a98ae8ebe58f80655bda05beefe5ed
431e20bcd0a8bb96ef86420178be8c652c0fc9b44f8f2c000109731da86b6c39

HTTP Headers

GET /emoji/v2/svg/1f3d6.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
etag: "5rZM/sczPIOPqO+ZSFT83w=="
expires: Thu, 16 Mar 2023 07:38:27 GMT
content-type: image/svg+xml
last-modified: Thu, 17 May 2018 19:32:36 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-fty21348-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 680
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1f40a.svg

104.244.43.131

200 OK

577 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1f40a.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1201), with no line terminators
Size
577 B (577 bytes)
Hash
3613965e06fb3a7d2ed53d9915dee4d7
6c7dfbea87878bb6e74910ce318a232574c7d8c1
a84a09dce4562206aeed8101644953792df62f71f6aaf64204a9a9c05b965958

HTTP Headers

GET /emoji/v2/svg/1f40a.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
etag: "/6zgKOh90Vbbf3ctUAkhHg=="
expires: Thu, 16 Mar 2023 07:39:51 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:30:54 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-fty21380-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 577
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1f389.svg

104.244.43.131

200 OK

1.4 kB

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1f389.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3153), with no line terminators
Size
1.4 kB (1369 bytes)
Hash
9150b1a80e9092976df4c598f67b009a
a06b31c8b56d9bc80123c9a0062e1e9aeeb48e7f
46a5652add1705de2a358f144d4b94d064b55f5027ed121d6fb8f19029646264

HTTP Headers

GET /emoji/v2/svg/1f389.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/svg+xml
etag: "sFKkvvV8Gqc818/1vE+2HQ=="
expires: Wed, 15 Jun 2022 08:08:00 GMT
last-modified: Wed, 21 Feb 2018 22:30:50 GMT
strict-transport-security: max-age=631138519
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-fty21329-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 1369
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1f62f.svg

104.244.43.131

200 OK

423 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1f62f.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (749), with no line terminators
Size
423 B (423 bytes)
Hash
14e39db836192ce7486362718cd0da19
ce19a6d5142a0442658e66f6595841cefe9272bf
b729c29ca80c71cbaa304038239bf911a34eb9ab5a1e999adb4e14c25c4cc474

HTTP Headers

GET /emoji/v2/svg/1f62f.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
etag: "8tLIhccdfJi1P8FSFuNOhw=="
expires: Wed, 31 May 2023 08:31:52 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:31:08 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-fty21344-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 423
X-Firefox-Spdy: h2

platform.twitter.com/_next/static/chunks/1.d77d8092171c9a9ccc4c.js

151.101.84.157

200 OK

1.5 kB

URL HTTP/2
platform.twitter.com/_next/static/chunks/1.d77d8092171c9a9ccc4c.js
IP
151.101.84.157:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2969), with no line terminators
Size
1.5 kB (1511 bytes)
Hash
cb0d9bf3f9b5379ec4a2766cbd08b721
daa3be952f011d3d4c1549881b29eeee6988fa8b
3b0d6c4cdc2696fdbefacec32fa49cda3cc7b39c834b0ee1ac2ec6180dc359aa

HTTP Headers

GET /_next/static/chunks/1.d77d8092171c9a9ccc4c.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 01 Sep 2022 19:07:42 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "d951ba70c2a27d88a8b99a82c9a7361b+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-iad-kcgs7200101-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 296589
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1f3a8.svg

104.244.43.131

200 OK

387 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1f3a8.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (656), with no line terminators
Size
387 B (387 bytes)
Hash
e7b8f55c478b08b65505ce393afca7d5
90ad410322a7b03a55424474014a26699eda2c21
b5a0b1c0537c382d38fd23040ea04094c4c03f58ef896da4d657e59171f5d982

HTTP Headers

GET /emoji/v2/svg/1f3a8.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/svg+xml
etag: "XN9yU1/SNrKn5quOSCazpA=="
expires: Fri, 10 Jun 2022 06:44:23 GMT
last-modified: Wed, 21 Feb 2018 22:30:50 GMT
strict-transport-security: max-age=631138519
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-fty21383-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 387
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1f4c5.svg

104.244.43.131

200 OK

777 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1f4c5.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1923), with no line terminators
Size
777 B (777 bytes)
Hash
36a8bee11d04021d318ccee48a112541
0e6d1c39212e5a287f74597af20dde84c99e28b0
7f30293c652da180ab2e49daec3e8ace0b83c3b49c0f1d019755ef2509c10b8c

HTTP Headers

GET /emoji/v2/svg/1f4c5.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
etag: "xfcio3p+OAC3imHD69LddA=="
expires: Thu, 15 Jun 2023 08:05:15 GMT
content-type: image/svg+xml
last-modified: Mon, 13 Jul 2020 16:54:02 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-fty13729-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 777
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1f517.svg

104.244.43.131

200 OK

302 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1f517.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (502), with no line terminators
Size
302 B (302 bytes)
Hash
1c677789f1f87398bdd4bb9b6189c4f2
51e2ecdbb8828310a8c3c54ef81a102c15a40493
1cf9971e15e8d0802349ea7726b6b7bf5d87ee683df608d3cecf95a5f3737b74

HTTP Headers

GET /emoji/v2/svg/1f517.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
etag: "fBOqDe9sy2ky9H3t0z9ZwQ=="
expires: Mon, 22 Aug 2022 07:29:34 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:31:06 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-fty13721-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 302
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1f63c.svg

104.244.43.131

200 OK

1.1 kB

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1f63c.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2414), with no line terminators
Size
1.1 kB (1141 bytes)
Hash
70f89c68c950e27a41aa9e87cbff7fdc
87ef801624abe0d2ed2bcca935c852cb674f40d4
126b2070d0b1889a50ed8f18a680f35f45a78b73089c2d07c82f962db2bc0032

HTTP Headers

GET /emoji/v2/svg/1f63c.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
etag: "4lEoUQwmsKrZ1xvGz0nfZw=="
expires: Fri, 28 Oct 2022 08:24:06 GMT
content-type: image/svg+xml
last-modified: Fri, 18 Jan 2019 21:00:14 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-fty21364-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 1141
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1f5fa.svg

104.244.43.131

200 OK

2.7 kB

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1f5fa.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (5682), with no line terminators
Size
2.7 kB (2700 bytes)
Hash
75a44d4884635cefa265f71d6b879502
626bce78d8670773c4ab69cb10d805e7b8b76a97
30af9a622d461dce55165ec8a55e8409168763676d1edbdf05408d49d1943a9b

HTTP Headers

GET /emoji/v2/svg/1f5fa.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
etag: "iN4KQa6wn8Oz0SWNH5QijQ=="
expires: Thu, 01 Jun 2023 05:40:34 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:31:08 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-fty21373-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 2700
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/2600.svg

104.244.43.131

200 OK

310 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/2600.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (759), with no line terminators
Size
310 B (310 bytes)
Hash
afbd64874b85df1f9841ee9ca5799a90
3162438703afce71af1b541f24a3976cf3499a16
f8f948d1f6cb1d27c31f6b5c2fceb0a416145be027e1402aea066c2419edd7e0

HTTP Headers

GET /emoji/v2/svg/2600.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/svg+xml
etag: "EDjO5HoKgxPcLUAGFF/O5g=="
expires: Fri, 10 Jun 2022 07:56:15 GMT
last-modified: Wed, 21 Feb 2018 22:32:26 GMT
strict-transport-security: max-age=631138519
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:52 GMT
x-served-by: cache-fty21366-FTY, cache-bma1673-BMA
x-cache: HIT, MISS
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 310
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1f6a8.svg

104.244.43.131

200 OK

577 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1f6a8.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1108), with no line terminators
Size
577 B (577 bytes)
Hash
7f943e8cf2f0d893d64b1620b5c4418f
0d5b54fc73ecf6fb91588a148201cfe470bc7c02
e5f1c4800121406a7bdbcd97933a2e675d3c0048e36d1d9f3c4b2f84feb1483f

HTTP Headers

GET /emoji/v2/svg/1f6a8.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
etag: "tW5BCICP+eiGx1oTXM23hA=="
expires: Thu, 10 Nov 2022 10:21:36 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:31:11 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21352-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 577
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1f3f0.svg

104.244.43.131

200 OK

477 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1f3f0.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1010), with no line terminators
Size
477 B (477 bytes)
Hash
197f226b9a4c6d93b22662f910b24524
bb35d0d0205029217ab08094dd4dfdaeb9225710
21877d248bd53d059ba23c1566c85d7136eab81485a61665305bd14ae6a7e71c

HTTP Headers

GET /emoji/v2/svg/1f3f0.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
etag: "7BXVtQFBbktycMsd0WJGMQ=="
expires: Wed, 07 Jun 2023 09:30:59 GMT
content-type: image/svg+xml
last-modified: Thu, 16 Apr 2020 20:41:38 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21336-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 477
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1f4ad.svg

104.244.43.131

200 OK

336 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1f4ad.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (490), with no line terminators
Size
336 B (336 bytes)
Hash
0e1e76ea73559b290cc09824ca054115
6cd5c2da6a40bf01d2b2fbbad21f4c69bf2cce5b
bea52b82d562e56cffcb14f0f87c5e29856591ee49367de9cf899c0fb902bacc

HTTP Headers

GET /emoji/v2/svg/1f4ad.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
etag: "CTPEhghoJSvvwFUJFlodtA=="
expires: Wed, 15 Mar 2023 05:46:40 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:31:04 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21369-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 336
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1f914.svg

104.244.43.131

200 OK

830 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1f914.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1573), with no line terminators
Size
830 B (830 bytes)
Hash
d329c92224ab413eca1baf3499692881
c41c2c257763b60a6f97881e88eda8133e79780b
19ffc0ca4c16b2101f3f82857df084f68f8e56ae9dec5487cd018717a532b3bc

HTTP Headers

GET /emoji/v2/svg/1f914.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
etag: "Jjp/TutvaeRtlp+keRiFkg=="
expires: Fri, 07 Oct 2022 06:57:38 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:31:13 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty13724-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 830
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1f3dd.svg

104.244.43.131

200 OK

1.5 kB

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1f3dd.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3201), with no line terminators
Size
1.5 kB (1507 bytes)
Hash
975aa940aaf17d0c0902bebbcbc54b6f
b2daf3c4a76550ec903c76892d35d4a9b15cb17e
684aedf9a8ad3aca5c575af63a7f86e2105f09bcee9aef1aa184183a9c2f2344

HTTP Headers

GET /emoji/v2/svg/1f3dd.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
etag: "G9IzDpKscawm/mtatfrn3Q=="
expires: Wed, 26 Apr 2023 06:44:32 GMT
content-type: image/svg+xml
last-modified: Thu, 17 May 2018 19:32:37 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty13723-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 1507
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1f525.svg

104.244.43.131

200 OK

496 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1f525.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (822), with no line terminators
Size
496 B (496 bytes)
Hash
86a4b822aec109c562b67b24501b77f0
814cf2cce4cfe9892fbb43fcac8a66cd60811c36
42e702e299a6769e24e6a50b1bed3d44bc6303691a5385bff20f84983ff2c0b2

HTTP Headers

GET /emoji/v2/svg/1f525.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
etag: "ZwaaE+AGNFzijsxYHy7RYg=="
expires: Fri, 10 Jun 2022 07:03:53 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:31:06 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21382-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 496
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1f698.svg

104.244.43.131

200 OK

851 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1f698.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1803), with no line terminators
Size
851 B (851 bytes)
Hash
134dcb4f4666e55b328a34c671f9b6c9
163b51ed3c32693d835098ba724d39b1320d1392
81f9af010b03d945c2f75f2df87bf103b036160a3c160419c2ab48fd0246bdc3

HTTP Headers

GET /emoji/v2/svg/1f698.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
etag: "ZyJhHYHk6PE0miR2tI9aQA=="
expires: Wed, 12 Jul 2023 00:06:32 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:31:11 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21378-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 851
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1f3c6.svg

104.244.43.131

200 OK

647 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1f3c6.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1237), with no line terminators
Size
647 B (647 bytes)
Hash
8bda34f55f8015bc184121088d802eb3
8e7d4edf374656c9ea550e41bcf0337adbefa470
68f9eef2c4e75218bc680c4e391ca48fa4ea112a82e9e8ab490dd18c68602fa7

HTTP Headers

GET /emoji/v2/svg/1f3c6.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
etag: "CgDoZcRF1C37n2S+36uM+A=="
expires: Fri, 15 Jul 2022 08:25:06 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:30:52 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21347-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 647
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1f60d.svg

104.244.43.131

200 OK

517 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1f60d.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (941), with no line terminators
Size
517 B (517 bytes)
Hash
1b1b9d4f4c427f574c643fd9ce1443dc
51a3dd1d23acc243c04dddd16d437430e1b9f043
40bc211d8e8ff715ccce4606b574003a0f8537f311b351df733b8a628809289c

HTTP Headers

GET /emoji/v2/svg/1f60d.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
etag: "5V9VK9CxzzaLRmQiQIyEAQ=="
expires: Sat, 18 Jun 2022 06:38:05 GMT
content-type: image/svg+xml
last-modified: Fri, 10 Aug 2018 17:45:01 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21326-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 517
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1f381.svg

104.244.43.131

200 OK

359 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1f381.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (656), with no line terminators
Size
359 B (359 bytes)
Hash
ba368ed073b9f030934fe9cc1e780b01
a910d3fa2004cd8ec1a51baa682b7011d9fe420f
5d019dbbd6d1d730353931f3d52267b88d285df500e7cf6a0192acfe3b6f7838

HTTP Headers

GET /emoji/v2/svg/1f381.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
etag: "en/zXyJ9ZZ6179gX4gUhdA=="
expires: Thu, 10 Nov 2022 10:56:53 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:30:50 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21357-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 359
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1f447.svg

104.244.43.131

200 OK

361 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1f447.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (558), with no line terminators
Size
361 B (361 bytes)
Hash
e7bbc34baf6a224b6c198bcd589b36f2
13731cdada03b4b1e7a1c1a71d112b99125b26da
3355531d098e09b18230772f999236564a6908dccae138a9afab8194f07b2657

HTTP Headers

GET /emoji/v2/svg/1f447.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/svg+xml
etag: "mFuy0jmL5x4baLx+IQPJkw=="
expires: Wed, 08 Jun 2022 10:51:43 GMT
last-modified: Wed, 21 Feb 2018 22:30:55 GMT
strict-transport-security: max-age=631138519
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21382-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 361
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/26a0.svg

104.244.43.131

200 OK

331 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/26a0.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (548), with no line terminators
Size
331 B (331 bytes)
Hash
ef25a88edd59ffba5740333663b1386d
79a33c2889fe940346819736880f31b4b6b1bd24
0d1c2aa233fa1b90aab8cece920d5776a90a0d03ba9c9c7163d6e895b15d1ef3

HTTP Headers

GET /emoji/v2/svg/26a0.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/svg+xml
etag: "KJZzhY4G36Lg46fuYQw6MA=="
expires: Thu, 09 Jun 2022 06:47:43 GMT
last-modified: Wed, 21 Feb 2018 22:32:27 GMT
strict-transport-security: max-age=631138519
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21321-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 331
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1f92f.svg

104.244.43.131

200 OK

1.5 kB

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1f92f.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3078), with no line terminators
Size
1.5 kB (1488 bytes)
Hash
b69f1288deb51921ceea2840dd82e5f5
a7b882ce07c85e0cb1f89d8a2f7e834f3b41aa7d
ec43b734fe9eeb1dd8332010221c3fbee092959afc3262c0213f258b18a1f656

HTTP Headers

GET /emoji/v2/svg/1f92f.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
etag: "3epFAKJS+Ay/bWyS2xUXjg=="
expires: Fri, 14 Oct 2022 07:15:40 GMT
content-type: image/svg+xml
last-modified: Wed, 15 Apr 2020 20:59:41 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21381-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 1488
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1fa96.svg

104.244.43.131

200 OK

525 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1fa96.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1276), with no line terminators
Size
525 B (525 bytes)
Hash
308a2f95316974f514d0448d6bdfd4d4
11cbe86e87b454423543ba39bf5a3a904bd0230e
4f036655957faf55ca7d0fcc2787c0d09f06c3367f5d162a5ac9c50324f339c8

HTTP Headers

GET /emoji/v2/svg/1fa96.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
etag: "2cY2D+clpAVJafK1lQbcDQ=="
expires: Wed, 03 May 2023 06:48:19 GMT
content-type: image/svg+xml
last-modified: Fri, 08 May 2020 21:01:17 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21358-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 525
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/2697.svg

104.244.43.131

200 OK

626 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/2697.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1232), with no line terminators
Size
626 B (626 bytes)
Hash
543be3a2f9c2a5aeae08c4a557e988d2
332d9cdc8e7ac25196adc8fe6973bd3a0d2cd5b5
8ad64caf7d360f8cb0dede3b098e0c19d6f2ec0a115fdbd03416121f86043c50

HTTP Headers

GET /emoji/v2/svg/2697.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
etag: "u+M/4zBa1dMhIVcBRYQxfw=="
expires: Thu, 31 Aug 2023 09:11:30 GMT
content-type: image/svg+xml
last-modified: Wed, 11 Apr 2018 17:51:29 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty13727-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 626
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1f369.svg

104.244.43.131

200 OK

1.5 kB

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1f369.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3174), with no line terminators
Size
1.5 kB (1472 bytes)
Hash
3682b33ae77d439a001acb6f83479ada
916e8659a99f01fa4c71ee96426ad655f3fd1bc5
619cbb69c39938ec5e87628339c2a27f01a90f3e322a1d08cc815d2563338025

HTTP Headers

GET /emoji/v2/svg/1f369.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
etag: "tZjxJLhvkdna7SAtZOKRaQ=="
expires: Thu, 06 Jul 2023 07:11:38 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:30:50 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21376-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 1472
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1f440.svg

104.244.43.131

200 OK

437 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1f440.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1060), with no line terminators
Size
437 B (437 bytes)
Hash
89527706c13401fc860738589367bc1b
a5924fdd78bbfb5736204351c00076a3a2b830ab
85d3c75f4b838af7f72f505770d757dbaddc47628a450e5a73551a93d6931f4c

HTTP Headers

GET /emoji/v2/svg/1f440.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
etag: "TFp3qJcWNSaG9ZCm8BR3DA=="
expires: Fri, 26 Aug 2022 06:44:32 GMT
content-type: image/svg+xml
last-modified: Wed, 11 Apr 2018 17:50:49 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21356-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 437
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1f3af.svg

104.244.43.131

200 OK

505 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1f3af.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1029), with no line terminators
Size
505 B (505 bytes)
Hash
5c6606da57b0a2de0de1f2127f3bae64
08330f8248df45cc02b084278caccf8d2ef089d1
8a593ddcf797ba9d2a21ec8dfb711ae68ad7208831633c70adab755b6f396a3c

HTTP Headers

GET /emoji/v2/svg/1f3af.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
etag: "kOuDh3EyhPhU2Eroal/4EQ=="
expires: Thu, 09 Jun 2022 06:48:28 GMT
content-type: image/svg+xml
last-modified: Wed, 10 Mar 2021 20:22:54 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty13729-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 505
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/2764.svg

104.244.43.131

200 OK

268 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/2764.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (368), with no line terminators
Size
268 B (268 bytes)
Hash
95e1d04b43b41695bcabf7c8f4b121cf
785b7a4f7b0819f76b228ee74e2bc209d7a32d57
398e85423b6964eb4dbd3581bfb4eacfa5c7db0eabb8506cd9ee1838ab8f26af

HTTP Headers

GET /emoji/v2/svg/2764.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/svg+xml
etag: "BIPytkjcyYbQE4UGIFKuHA=="
expires: Thu, 09 Jun 2022 07:29:22 GMT
last-modified: Fri, 10 Aug 2018 17:46:01 GMT
strict-transport-security: max-age=631138519
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21366-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 268
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1f975.svg

104.244.43.131

200 OK

746 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1f975.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1454), with no line terminators
Size
746 B (746 bytes)
Hash
6a8e1c1fb86d780a2682bed36c6d732c
3adc92d119f04367f04ccccabe3515f224b2c245
e14d3c075b428d1f8091e3ad5b04cbd091c5a0a7973c67e703a322e55cc64139

HTTP Headers

GET /emoji/v2/svg/1f975.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: image/svg+xml
etag: "NyUYsTXUFPku3NBrieFGiw=="
expires: Fri, 10 Jun 2022 06:26:08 GMT
last-modified: Mon, 04 Jun 2018 23:15:19 GMT
strict-transport-security: max-age=631138519
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty13720-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 746
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/21aa.svg

104.244.43.131

200 OK

247 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/21aa.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (336), with no line terminators
Size
247 B (247 bytes)
Hash
b710a3b3dc0ce7281946381cdc4ffc74
26cccd23062f6da4c0cbda42b4bac14c53396fdc
a9566ce3a4ea5f4f9a86cb4e9c4ac94bf836917a6360f2d2d69eaa7c9d1ba23a

HTTP Headers

GET /emoji/v2/svg/21aa.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
etag: "OXzCp+50O/wARwGvyBi4Sg=="
expires: Wed, 23 Aug 2023 07:16:01 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:32:26 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21341-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 247
X-Firefox-Spdy: h2

abs-0.twimg.com/emoji/v2/svg/1f446.svg

104.244.43.131

200 OK

363 B

URL HTTP/2
abs-0.twimg.com/emoji/v2/svg/1f446.svg
IP
104.244.43.131:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (553), with no line terminators
Size
363 B (363 bytes)
Hash
552aee055bb365387c441bd35fd7f0e3
4ffa4b50f43d8c4369c852096dbf4e8d6516d668
b352707d26b0f8b1c9e6c4a8c7fd829ba7e39b28df99674260790ae70e78c393

HTTP Headers

GET /emoji/v2/svg/1f446.svg HTTP/1.1
Host: abs-0.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
etag: "hj1Hrk/dpNeDxX3ZxJa31g=="
expires: Thu, 16 Mar 2023 06:38:49 GMT
content-type: image/svg+xml
last-modified: Wed, 21 Feb 2018 22:30:55 GMT
content-encoding: gzip
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-fty21328-FTY, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
x-tw-cdn: FT
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 363
X-Firefox-Spdy: h2

platform.twitter.com/_next/static/chunks/vendors~ondemand.LottieWeb.84a69543ec64b75cae2a.js

151.101.84.157

200 OK

42 kB

URL HTTP/2
platform.twitter.com/_next/static/chunks/vendors~ondemand.LottieWeb.84a69543ec64b75cae2a.js
IP
151.101.84.157:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65536), with no line terminators
Size
42 kB (41941 bytes)
Hash
80850064250ad67b82f8748a8b8da9fc
eb412501982d2a28a1651b19da0f238d595351fa
81fa18b369d524ebbb7407ca8f97e473217ef387f845af838706f08096597383

HTTP Headers

GET /_next/static/chunks/vendors~ondemand.LottieWeb.84a69543ec64b75cae2a.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 17 Aug 2022 17:37:21 GMT
cache-control: public, max-age=315360000
content-type: application/javascript; charset=utf-8
etag: "72929dff5e574c1b877555fd36c7683a+gzip"
content-encoding: gzip
access-control-allow-methods: GET
access-control-allow-origin: *
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-served-by: cache-iad-kiad7000089-IAD, cache-bma1649-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
tw-cdn: FT
content-length: 41941
X-Firefox-Spdy: h2

abs.twimg.com/sticky/animations/like.3.json

152.199.21.141

200 OK

1.6 kB

URL HTTP/2
abs.twimg.com/sticky/animations/like.3.json
IP
152.199.21.141:0
ASN
#15133 EDGECAST

File type
ASCII text, with very long lines (19834)
Size
1.6 kB (1627 bytes)
Hash
07da5ecc2e4029fc7d3befffa5f3c536
1b57e1656f3cbf73adc77bf2a1a732b7882b2aca
faffe9c75fe31ec6ba41e043e88b0ad50c13ad847a468e1b34ecde308fa6f569

HTTP Headers

GET /sticky/animations/like.3.json HTTP/1.1
Host: abs.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://syndication.twitter.com/
Origin: https://syndication.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 1211055
content-type: application/json
date: Wed, 14 Sep 2022 13:35:53 GMT
etag: "b9munHAdxNyPtNl2GaO2bw=="
expires: Thu, 14 Sep 2023 13:35:53 GMT
last-modified: Tue, 15 Feb 2022 21:43:54 GMT
server: ECAcc (ska/F796)
strict-transport-security: max-age=631138519
surrogate-key: twitter-assets
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
vary: Accept-Encoding
x-cache: HIT
x-connection-hash: b2416fb8c94532ef46b2069f2a8d4ab6aa32507f9132cb6f6efe61940801c5b3
x-content-type-options: nosniff
x-response-time: 9
x-ton-expected-size: 19835
content-length: 1627
X-Firefox-Spdy: h2

pbs.twimg.com/media/FclmsdMXgAEJNRj.jpg

151.101.84.159

200 OK

169 kB

URL HTTP/2
pbs.twimg.com/media/FclmsdMXgAEJNRj.jpg
IP
151.101.84.159:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x675, components 3\012- data
Size
169 kB (169118 bytes)
Hash
7ec5115a70fc21e3aba1010da8e997fd
d78d5882a816ca355041c61f9c682d2b25ce64de
ce2bcbe5870ca759678f60d7983fedad76ecae1ab399e239dc0965239340ad39

HTTP Headers

GET /media/FclmsdMXgAEJNRj.jpg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: max-age=604800, must-revalidate
last-modified: Wed, 14 Sep 2022 03:58:29 GMT
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
content-type: image/jpeg
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-cache: HIT, HIT
x-tw-cdn: FT
x-served-by: cache-lhr7325-LHR, cache-bma1647-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 169118
X-Firefox-Spdy: h2

pbs.twimg.com/ext_tw_video_thumb/1567195213629636609/pu/img/XVhMbW8LYbdrM5PQ.jpg

151.101.84.159

200 OK

126 kB

URL HTTP/2
pbs.twimg.com/ext_tw_video_thumb/1567195213629636609/pu/img/XVhMbW8LYbdrM5PQ.jpg
IP
151.101.84.159:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 675x1200, components 3\012- data
Size
126 kB (126251 bytes)
Hash
669f32020bc07051da04a52987f73732
2d54ec3cfd737fddd17f49849af151df77de99a6
9cb7942006e5388061c8c2bedcf2ef9b8b09f395c631940f927a7dc816557869

HTTP Headers

GET /ext_tw_video_thumb/1567195213629636609/pu/img/XVhMbW8LYbdrM5PQ.jpg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: max-age=604800, must-revalidate
last-modified: Tue, 06 Sep 2022 16:55:10 GMT
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
content-type: image/jpeg
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-cache: HIT, HIT
x-tw-cdn: FT
x-served-by: cache-lhr7365-LHR, cache-bma1647-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 126251
X-Firefox-Spdy: h2

syndication.twitter.com/i/jot?l=%7B%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663162539561%2C%22event_namespace%22%3A%7B%22action%22%3A%22results%22%2C%22client%22%3A%22tfw%22%2C%22page%22%3A%22timeline-profile%22%2C%22section%22%3A%22main%22%7D%2C%22context%22%3A%22horizon%22%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22dnt%22%3Afalse%2C%22widget_id%22%3A%22twitter-widget-0%22%2C%22widget_origin%22%3A%22https%3A%2F%2Fyongg.duckdns.org%2F%22%2C%22widget_frame%22%3A%22false%22%2C%22widget_partner%22%3A%22%22%2C%22widget_site_screen_name%22%3A%22%22%2C%22widget_site_user_id%22%3A%22%22%2C%22widget_creator_screen_name%22%3A%22%22%2C%22widget_creator_user_id%22%3A%22%22%2C%22widget_iframe_version%22%3A%2254fb0dd%3A1662057638149%22%2C%22widget_data_source%22%3A%22screen-name%3APUBGMOBILE%22%7D&session_id=f4e7b73de61df9a6f75223b159080d9f2f55055f

104.244.42.8

200 OK

43 B

URL HTTP/2
syndication.twitter.com/i/jot?l=%7B%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663162539561%2C%22event_namespace%22%3A%7B%22action%22%3A%22results%22%2C%22client%22%3A%22tfw%22%2C%22page%22%3A%22timeline-profile%22%2C%22section%22%3A%22main%22%7D%2C%22context%22%3A%22horizon%22%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22dnt%22%3Afalse%2C%22widget_id%22%3A%22twitter-widget-0%22%2C%22widget_origin%22%3A%22https%3A%2F%2Fyongg.duckdns.org%2F%22%2C%22widget_frame%22%3A%22false%22%2C%22widget_partner%22%3A%22%22%2C%22widget_site_screen_name%22%3A%22%22%2C%22widget_site_user_id%22%3A%22%22%2C%22widget_creator_screen_name%22%3A%22%22%2C%22widget_creator_user_id%22%3A%22%22%2C%22widget_iframe_version%22%3A%2254fb0dd%3A1662057638149%22%2C%22widget_data_source%22%3A%22screen-name%3APUBGMOBILE%22%7D&session_id=f4e7b73de61df9a6f75223b159080d9f2f55055f
IP
104.244.42.8:0
ASN
#13414 TWITTER

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957

HTTP Headers

GET /i/jot?l=%7B%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663162539561%2C%22event_namespace%22%3A%7B%22action%22%3A%22results%22%2C%22client%22%3A%22tfw%22%2C%22page%22%3A%22timeline-profile%22%2C%22section%22%3A%22main%22%7D%2C%22context%22%3A%22horizon%22%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22dnt%22%3Afalse%2C%22widget_id%22%3A%22twitter-widget-0%22%2C%22widget_origin%22%3A%22https%3A%2F%2Fyongg.duckdns.org%2F%22%2C%22widget_frame%22%3A%22false%22%2C%22widget_partner%22%3A%22%22%2C%22widget_site_screen_name%22%3A%22%22%2C%22widget_site_user_id%22%3A%22%22%2C%22widget_creator_screen_name%22%3A%22%22%2C%22widget_creator_user_id%22%3A%22%22%2C%22widget_iframe_version%22%3A%2254fb0dd%3A1662057638149%22%2C%22widget_data_source%22%3A%22screen-name%3APUBGMOBILE%22%7D&session_id=f4e7b73de61df9a6f75223b159080d9f2f55055f HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/srv/timeline-profile/screen-name/PUBGMOBILE?dnt=false&embedId=twitter-widget-0&frame=false&hideBorder=false&hideFooter=true&hideHeader=true&hideScrollBar=false&lang=en&maxHeight=inherit&origin=https%3A%2F%2Fyongg.duckdns.org%2F&sessionId=f4e7b73de61df9a6f75223b159080d9f2f55055f&showHeader=false&showReplies=false&theme=dark&transparent=false&widgetsVersion=1bfeb5c3714e8%3A1661975971032
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 14 Sep 2022 13:35:53 GMT
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Wed, 14 Sep 2022 13:35:53 GMT
content-length: 43
strict-transport-security: max-age=631138519
x-response-time: 112
x-connection-hash: 32b77bd7acbf1f21ba5129649e1590737a1eb240735f360e5f63e802da7f55c9
X-Firefox-Spdy: h2

pbs.twimg.com/profile_images/1569933031959572485/LuzDB80M_normal.jpg

151.101.84.159

200 OK

2.3 kB

URL HTTP/2
pbs.twimg.com/profile_images/1569933031959572485/LuzDB80M_normal.jpg
IP
151.101.84.159:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 48x48, components 3\012- data
Size
2.3 kB (2263 bytes)
Hash
0401922fe9a23b859174e4b67ce2d0cc
27db96f1e042007872926d9ee5af7747167e5397
bea4962af7d4010adf545cc334f838ea91cc2278762860c950c01d2cf49df63e

HTTP Headers

GET /profile_images/1569933031959572485/LuzDB80M_normal.jpg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: max-age=604800, must-revalidate
last-modified: Wed, 14 Sep 2022 06:14:17 GMT
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
content-type: image/jpeg
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:53 GMT
x-cache: HIT, HIT
x-tw-cdn: FT
x-served-by: cache-lhr7355-LHR, cache-bma1647-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 2263
X-Firefox-Spdy: h2

pbs.twimg.com/media/Fclg3ECXgAE0Pg9?format=jpg&name=120x120

151.101.84.159

200 OK

4.9 kB

URL HTTP/2
pbs.twimg.com/media/Fclg3ECXgAE0Pg9?format=jpg&name=120x120
IP
151.101.84.159:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 120x63, components 3\012- data
Size
4.9 kB (4864 bytes)
Hash
1931f3e5ac6f04c4de23bde914fe5577
dbadf3ba610eee0f2aee4ee8eb8f7c4fa1690c4a
e7c01b2eb763fcafede5d81da79780a376ad9d13bc267f461f5d3791a11cb766

HTTP Headers

GET /media/Fclg3ECXgAE0Pg9?format=jpg&name=120x120 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
cache-control: max-age=604800, must-revalidate
last-modified: Wed, 14 Sep 2022 03:33:00 GMT
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:54 GMT
x-cache: HIT, HIT
x-tw-cdn: FT
x-served-by: cache-lhr6629-LHR, cache-bma1647-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 4864
X-Firefox-Spdy: h2

pbs.twimg.com/profile_images/1446736246320025602/JVKEcvvN_normal.jpg

151.101.84.159

200 OK

2.2 kB

URL HTTP/2
pbs.twimg.com/profile_images/1446736246320025602/JVKEcvvN_normal.jpg
IP
151.101.84.159:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 48x48, components 3\012- data
Size
2.2 kB (2187 bytes)
Hash
81cc44f83ea361d5ae9e3d3e27e93824
1a70433bac48151595d7cb5d69a8391d39a3d9cf
1030da79dd69746220da402b7686e4080bc1cb0cb345d834a26ed4ab954126bf

HTTP Headers

GET /profile_images/1446736246320025602/JVKEcvvN_normal.jpg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: max-age=604800, must-revalidate
last-modified: Sat, 09 Oct 2021 07:14:14 GMT
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
content-type: image/jpeg
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:55 GMT
x-cache: HIT, HIT
x-tw-cdn: FT
x-served-by: cache-lhr7325-LHR, cache-bma1647-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 2187
X-Firefox-Spdy: h2

pbs.twimg.com/media/FclUCx2XkAE8UI_?format=jpg&name=360x360

151.101.84.159

200 OK

31 kB

URL HTTP/2
pbs.twimg.com/media/FclUCx2XkAE8UI_?format=jpg&name=360x360
IP
151.101.84.159:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x203, components 3\012- data
Size
31 kB (31213 bytes)
Hash
5d533a00b31d5aa0de83a919f65a1013
a3a2af82ad8cb01f338b7e6ef43556d7e36f1720
777dc10856fc89e894958ebf8d177931f3501dc7123a707c14d39f9e87c466fa

HTTP Headers

GET /media/FclUCx2XkAE8UI_?format=jpg&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
cache-control: max-age=604800, must-revalidate
last-modified: Wed, 14 Sep 2022 02:37:00 GMT
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
accept-ranges: bytes
date: Wed, 14 Sep 2022 13:35:55 GMT
x-cache: HIT, MISS
x-tw-cdn: FT
x-served-by: cache-lhr6621-LHR, cache-bma1647-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 31213
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8c86775f-a6ef-49b2-85ad-4272db5b9f42.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.5 kB (9467 bytes)
Hash
80786e640acccfa61ef2aaa27a2a95fa
94663318844e6567f2d160d620eb9ed777fba2a3
686348c1aa038c5109c39c3491524a98bcfc5b1559568391ba7fb240a285a064

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8c86775f-a6ef-49b2-85ad-4272db5b9f42.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 9467
x-amzn-requestid: d14b460e-2aa5-41c8-9a8b-4da671156014
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yauv3HJJoAMFWgg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6320f7fe-0643dea6458034ab51d840d5;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 21:37:02 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: rVAqQoiN5d1Ph-lVvB7luXmG0zQJuvLi8I_B-xGbJjLkyyAid6rktw==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 21:45:09 GMT
age: 57047
etag: "94663318844e6567f2d160d620eb9ed777fba2a3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

syndication.twitter.com/i/jot?l=%7B%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663162542509%2C%22event_namespace%22%3A%7B%22action%22%3A%22impression%22%2C%22client%22%3A%22tfw%22%2C%22page%22%3A%22timeline-profile%22%2C%22section%22%3A%22main%22%7D%2C%22context%22%3A%22horizon%22%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22dnt%22%3Afalse%2C%22widget_id%22%3A%22twitter-widget-0%22%2C%22widget_origin%22%3A%22https%3A%2F%2Fyongg.duckdns.org%2F%22%2C%22widget_frame%22%3A%22false%22%2C%22widget_partner%22%3A%22%22%2C%22widget_site_screen_name%22%3A%22%22%2C%22widget_site_user_id%22%3A%22%22%2C%22widget_creator_screen_name%22%3A%22%22%2C%22widget_creator_user_id%22%3A%22%22%2C%22widget_iframe_version%22%3A%2254fb0dd%3A1662057638149%22%2C%22widget_data_source%22%3A%22screen-name%3APUBGMOBILE%22%7D&session_id=f4e7b73de61df9a6f75223b159080d9f2f55055f

104.244.42.8

200 OK

43 B

URL HTTP/2
syndication.twitter.com/i/jot?l=%7B%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663162542509%2C%22event_namespace%22%3A%7B%22action%22%3A%22impression%22%2C%22client%22%3A%22tfw%22%2C%22page%22%3A%22timeline-profile%22%2C%22section%22%3A%22main%22%7D%2C%22context%22%3A%22horizon%22%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22dnt%22%3Afalse%2C%22widget_id%22%3A%22twitter-widget-0%22%2C%22widget_origin%22%3A%22https%3A%2F%2Fyongg.duckdns.org%2F%22%2C%22widget_frame%22%3A%22false%22%2C%22widget_partner%22%3A%22%22%2C%22widget_site_screen_name%22%3A%22%22%2C%22widget_site_user_id%22%3A%22%22%2C%22widget_creator_screen_name%22%3A%22%22%2C%22widget_creator_user_id%22%3A%22%22%2C%22widget_iframe_version%22%3A%2254fb0dd%3A1662057638149%22%2C%22widget_data_source%22%3A%22screen-name%3APUBGMOBILE%22%7D&session_id=f4e7b73de61df9a6f75223b159080d9f2f55055f
IP
104.244.42.8:0
ASN
#13414 TWITTER

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957

HTTP Headers

GET /i/jot?l=%7B%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1663162542509%2C%22event_namespace%22%3A%7B%22action%22%3A%22impression%22%2C%22client%22%3A%22tfw%22%2C%22page%22%3A%22timeline-profile%22%2C%22section%22%3A%22main%22%7D%2C%22context%22%3A%22horizon%22%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22dnt%22%3Afalse%2C%22widget_id%22%3A%22twitter-widget-0%22%2C%22widget_origin%22%3A%22https%3A%2F%2Fyongg.duckdns.org%2F%22%2C%22widget_frame%22%3A%22false%22%2C%22widget_partner%22%3A%22%22%2C%22widget_site_screen_name%22%3A%22%22%2C%22widget_site_user_id%22%3A%22%22%2C%22widget_creator_screen_name%22%3A%22%22%2C%22widget_creator_user_id%22%3A%22%22%2C%22widget_iframe_version%22%3A%2254fb0dd%3A1662057638149%22%2C%22widget_data_source%22%3A%22screen-name%3APUBGMOBILE%22%7D&session_id=f4e7b73de61df9a6f75223b159080d9f2f55055f HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/srv/timeline-profile/screen-name/PUBGMOBILE?dnt=false&embedId=twitter-widget-0&frame=false&hideBorder=false&hideFooter=true&hideHeader=true&hideScrollBar=false&lang=en&maxHeight=inherit&origin=https%3A%2F%2Fyongg.duckdns.org%2F&sessionId=f4e7b73de61df9a6f75223b159080d9f2f55055f&showHeader=false&showReplies=false&theme=dark&transparent=false&widgetsVersion=1bfeb5c3714e8%3A1661975971032
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 14 Sep 2022 13:35:55 GMT
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Wed, 14 Sep 2022 13:35:56 GMT
content-length: 43
strict-transport-security: max-age=631138519
x-response-time: 106
x-connection-hash: 32b77bd7acbf1f21ba5129649e1590737a1eb240735f360e5f63e802da7f55c9
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:300,400,500,700|Teko:300,400,500

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto:300,400,500,700|Teko:300,400,500
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto:300,400,500,700|Teko:300,400,500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://yongg.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 14 Sep 2022 13:35:48 GMT
date: Wed, 14 Sep 2022 13:35:48 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (29)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP