Overview

URLinstallchecker.com/cl/i/j6rlkk
IP 23.22.126.183 (United States)
ASN#14618 AMAZON-AES
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-25 14:14:44 UTC
StatusLoading report..
IDS alerts0
Blocklist alert3
urlquery alerts No alerts detected
Tags None

Domain Summary (17)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
js-agent.newrelic.com (9) 378 2018-06-22 04:15:37 UTC 2020-05-01 11:44:04 UTC 151.101.86.137
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 35.165.176.211
fonts.gstatic.com (3) 0 2014-09-09 00:40:21 UTC 2022-11-25 06:26:28 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
img-getpocket.cdn.mozilla.net (5) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
r3.o.lencr.org (7) 344 No data No data 23.36.77.32
bam.nr-data.net (1) 630 2015-02-10 00:06:27 UTC 2022-05-19 12:27:58 UTC 162.247.241.14
stats.pusher.com (1) 6524 2013-02-08 01:32:41 UTC 2020-05-04 08:02:15 UTC 3.220.126.28
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-25 05:51:47 UTC 34.117.237.239
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-25 06:03:02 UTC 34.102.187.140
d3qilfrpqzfrg4.cloudfront.net (1) 0 2022-11-18 11:46:04 UTC 2022-11-24 16:04:23 UTC 54.230.245.32 Unknown ranking
ocsp.usertrust.com (1) 899 2012-05-21 15:43:18 UTC 2021-11-02 18:02:09 UTC 172.64.155.188
ws-us2.pusher.com (1) 9765 2018-11-21 18:48:45 UTC 2019-11-11 16:50:49 UTC 3.21.64.56
installchecker.com (4) 0 2022-03-23 02:15:47 UTC 2022-11-23 09:07:12 UTC 23.22.126.183 Unknown ranking
fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-11-25 05:53:13 UTC 142.250.74.10
ocsp.pki.goog (5) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.3

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-25 2 installchecker.com/cl/i/j6rlkk Phishing
2022-11-25 2 installchecker.com/cl/v/j6rlkk Phishing
2022-11-25 2 installchecker.com/cl/i/j6rlkk Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 23.22.126.183
Date UQ / IDS / BL URL IP
2023-01-09 21:29:07 +0000 0 - 0 - 2 verifyuser.org/cl/v/dvwpow 23.22.126.183
2023-01-07 17:34:21 +0000 0 - 0 - 3 appinstallcheck.com/cl/i/klxn98 23.22.126.183
2023-01-03 21:39:19 +0000 0 - 0 - 0 downloadlocked.com/cl/i/wogqmm?aff_sub4=&aff_sub5= 23.22.126.183
2022-12-03 05:09:19 +0000 0 - 0 - 3 locked1.com/cl/i/8d5r3k 23.22.126.183
2022-11-27 13:59:05 +0000 0 - 0 - 3 verifysuper.com/cl/i/41lj5 23.22.126.183


Last 5 reports on ASN: AMAZON-AES
Date UQ / IDS / BL URL IP
2023-01-27 05:23:05 +0000 0 - 0 - 7 prizepagoda.com/go/to/0a3b83/key/b2b3b27d8783 (...) 107.23.100.94
2023-01-27 05:17:32 +0000 0 - 6 - 0 www.greycompliance.com/Occupational-Safety-an (...) 34.196.128.173
2023-01-27 05:11:20 +0000 0 - 1 - 0 shopgala.api.twyne.io/lout/rdirect/80/852/163 (...) 34.224.124.123
2023-01-27 05:03:58 +0000 0 - 0 - 2 apitest.subscribenow.tv/ 18.213.226.237
2023-01-27 04:59:24 +0000 0 - 0 - 4 deepwavesystems.com/wxwx/xxx/index.php 34.206.209.2


Last 2 reports on domain: installchecker.com
Date UQ / IDS / BL URL IP
2022-11-25 14:14:44 +0000 0 - 0 - 3 installchecker.com/cl/i/j6rlkk 23.22.126.183
2022-10-25 13:02:12 +0000 0 - 0 - 3 installchecker.com/cl/i/2l5m8p 23.22.126.183


No other reports with similar screenshot

JavaScript

Executed Scripts (18)

Executed Evals (0)

Executed Writes (1)
#1 JavaScript::Write (size: 8568) - SHA256: bbe79ff2588a8f4414f5387257f12e693c37a840633d78de5f2cbf714a3e25bc
< meta name = "viewport"
content = "width=device-width" >
    < meta name = "csrf-token"
content = "E6vP2PbAwcEeAxvi3Cql4kWxkRcKOCuosBzRyx4w" >

    < style > @
    import url(https: //fonts.googleapis.com/css?family=Source+Sans+Pro:400,700,300,200);.lockerBackground{position:fixed;top:0;left:0;width:100%;height:100%;background-color:#000;opacity:.8;display:none;z-index:9999998}.lockerPopup{height:auto;z-index:9999999;top:50%;left:50%;position:fixed}.lockerPopup .header{text-align:center;font-weight:700;font-family:'Source Sans Pro',sans-serif}.lockerPopup .content{text-align:center;font-family:'Source Sans Pro',sans-serif}.lockerPopup .footer{font-family:'Source Sans Pro',sans-serif;text-align:center}.lc-checks{list-style:none;margin:0;position:relative;font-family:'Source Sans Pro',sans-serif}.lc-checks li{position:relative;cursor:hand;text-align:center;display:block}.animated{-webkit-animation-duration:1.5s;animation-duration:1.5s;-webkit-animation-fill-mode:both;animation-fill-mode:both}@-webkit-keyframes bounceInDown{0%{opacity:0;-webkit-transform:translate(-50%,-2000px)}60%{opacity:1;-webkit-transform:translateY(-50%,-53%)}80%{-webkit-transform:translateY(-50%,-51%)}100%{-webkit-transform:translate(-50%,-50%)}}@keyframes bounceInDown{0%{opacity:0;transform:translate(-50%,-2000px)}60%{opacity:1;transform:translate(-50%,-53%)}80%{transform:translate(-50%,-51%)}100%{transform:translate(-50%,-50%)}}.bounceInDown{-webkit-animation-name:bounceInDown;animation-name:bounceInDown}@media only screen and (min-device-width:560px) and (max-width:800px){.lockerPopup{width:400px!important}.lockerPopup .content{font-size:16px!important}.lockerPopup .header{font-size:20pt;color:#315965}.lc-checks li{font-size:10pt;padding:15px;margin-left:0!important}}@media only screen and (min-width:800px){.lockerPopup .header{font-size:26pt}.lockerPopup .content{font-size:18px}.lc-checks{padding:20px 0}.lc-checks li{padding:15px 0}.lc-checks li{background-color:rgba(73,128,227,.59)}}.lockerPopup{width:580px;background-color:#fff;padding:15px;border-radius:5px;box-shadow:0 0 0 10px rgba(45,208,255,.25)}.lockerPopup .header{padding:0 0 10px;border-bottom:1px solid #c3c2c2;color:#315965}a{color:#475890}.lockerPopup .content{padding:20px 10px 0 10px}.lc-checks{padding:20px 0}.lc-checks li{margin-bottom:10px;font-weight:800;background-color:rgba(73,128,227,.59)}.lockerPopup .footer{padding:10px 0 0;font-size:14px;padding:15px 10px 5px 10px;font-weight:300}.button{background-color:#4980e3;color:#f7fdf8;border:none;font-size:1em;padding:.625rem 0;text-align:center;width:100%;transition:all .2s ease;user-select:none;position:relative;top:0;cursor:pointer}.button:hover{background-color:#4980e3;color:#fff}.button:active{user-select:none}button:focus{outline:0}.spinner-circle{width:14px;height:14px;margin:-4px 0;border:2px solid #fff;display:inline-block;border-radius:500px;-webkit-border-radius:500px;-moz-border-radius:500px;position:relative}.spinner-circle:before{content:'';width:0;height:0;border-top:14px solid rgba(73,128,227,.5);border-right:14px solid transparent;position:absolute;left:6px;top:6px;display:block}.spin{-webkit-animation:spin 2s infinite linear;animation:spin 2s infinite linear}@-webkit-keyframes spin{0%{-webkit-transform:rotate(0);transform:rotate(0)}100%{-webkit-transform:rotate(359deg);transform:rotate(359deg)}}@keyframes spin{0%{-webkit-transform:rotate(0);transform:rotate(0)}100%{-webkit-transform:rotate(359deg);transform:rotate(359deg)}}

        : root {
            --custom - background - opacity: 0.8;
        }

        /* overrides */

        .lockerBackground {
            opacity: var (--custom - background - opacity);
        } < /style>

        < style >
        : root {
            --custom - background - color: # FFFFFF;
            --custom - border - color: 45, 208, 255;
            --custom - title - color: #315965;
            --custom-offer-color: 73, 128, 227;
            --custom-text-color: # 000000;
        }

        /* overrides */

        .lockerPopup {
            background - color: var (--custom - background - color);
            color: var (--custom - text - color);
            box - shadow: 0 0 0 10 px rgb(var (--custom - border - color), 0.25);
        }

        .lockerPopup.header {
            color: var (--custom - title - color);
        }

        .lockerPopup.lc - checks li {
            background - color: rgb(var (--custom - offer - color), 0.59);
        }

        .lockerPopup.button {
            background - color: rgb(var (--custom - offer - color));
        }

        < /style>


        < style id = "custom-custom-css" >



        < /style>

        < div id = "contentLockerBackground"
        class = "lockerBackground" > < /div> < div id = "contentLocker"
        class = "lockerPopup animated bounceInDown" >
        < div class = "header" >
        < span id = "tool-title" > < p > < b > < font color = "#FFFF00" > 4, 320 Diamonds < /font> </b > < /p></span >
        < /div> < div class = "content" >
        < span id = "tool-description" > < b > Complete < /b> 2 random surveys to get <b> 4,320 Diamonds</b > .Remaining: < b > < font color = "#FF0000" > 13 < /font></b > /<font color="#008000"><b>50</b > < /font></span >
        < /div> < div class = "links" >
        < ul class = "lc-checks" >
        < div id = "offer-43672" >
        < a href = "https://jump.ogtrk.net/aff_c?offer_id=43672&amp;aff_id=31829&amp;aff_sub=ContentLocker&amp;aff_sub2=j6rlkk&amp;aff_sub3=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJpc3MiOiJvZ2FkcyIsImF1ZCI6InBvc3RiYWNrIiwiaWF0IjoxNjY5Mzg1Njc0LCJuYmYiOjE2NjkzODU2NzQsImRhdGEiOnsiaXAiOiI5MS45MC40Mi4xNTQiLCJ1YSI6Ik1vemlsbGFcLzUuMCAoV2luZG93cyBOVCAxMC4wOyBXaW42NDsgeDY0OyBydjoxMDUuMCkgR2Vja29cLzIwMTAwMTAxIEZpcmVmb3hcLzEwNS4wIiwicmVmIjpudWxsfX0.gzGfqdPcdujOVkK4GpSVWtkdgA1ONuahsQozNp3_M3fNane3nWMQS9DSA1ehHBPsOfnSt9eLK63zlLNLHWi7gg&amp;aff_sub4=&amp;aff_sub5="
        target = "_blank" > < li > < span class = "lc-checks__feature" > Take this survey! < /span></li > < /a> < /div> < div id = "offer-38918" >
        < a href = "https://jump.ogtrk.net/aff_c?offer_id=38918&amp;aff_id=31829&amp;aff_sub=ContentLocker&amp;aff_sub2=j6rlkk&amp;aff_sub3=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJpc3MiOiJvZ2FkcyIsImF1ZCI6InBvc3RiYWNrIiwiaWF0IjoxNjY5Mzg1Njc0LCJuYmYiOjE2NjkzODU2NzQsImRhdGEiOnsiaXAiOiI5MS45MC40Mi4xNTQiLCJ1YSI6Ik1vemlsbGFcLzUuMCAoV2luZG93cyBOVCAxMC4wOyBXaW42NDsgeDY0OyBydjoxMDUuMCkgR2Vja29cLzIwMTAwMTAxIEZpcmVmb3hcLzEwNS4wIiwicmVmIjpudWxsfX0.gzGfqdPcdujOVkK4GpSVWtkdgA1ONuahsQozNp3_M3fNane3nWMQS9DSA1ehHBPsOfnSt9eLK63zlLNLHWi7gg&amp;aff_sub4=&amp;aff_sub5="
        target = "_blank" > < li > < span class = "lc-checks__feature" > Do you want to be a millionaire ? < /span></li > < /a> < /div> < /ul> < /div> < button class = "button" > < span class = "spinner-circle spin" > < /span> <span id="custom-checking">Checking completion</span > < /button> < div class = "footer" >
        < span id = "custom-countdown" > Complete < span id = "conversions-remaining" > 2 < /span> more offer(s) to continue</span >
        < /div> < /div>

        < script type = "text/javascript" >

        function loadScript(sScriptSrc, oCallback) {
            var oHead = document.getElementsByTagName('head')[0];
            var oScript = document.createElement('script');
            oScript.type = 'text/javascript';
            oScript.src = sScriptSrc;
            oScript.onload = oCallback;
            oHead.appendChild(oScript);
        }

        var js = "https://d3qilfrpqzfrg4.cloudfront.net/js/cl/desktop.js?id=AgWbPW";

        loadScript(js, function() {

            locker = new contentLocker({
                'id': "j6rlkk",
                'blockContextMenu': true,
                'pageCloseMessage': "Are you sure you want to leave?",
            });

            window.startConversionChecker({
                channel: "Tool.ContentLocker.j6rlkk.35b0bce9d250429df012c0426f88d0bd",
                route: "https:\/\/installchecker.com\/cl\/ajax\/c\/j6rlkk",
                l_route: "https:\/\/installchecker.com\/cl\/ajax\/e\/j6rlkk",
                completed: locker.actionCompleted,
                converted: null,
            });

        });

        < /script>

        < script type = "text/javascript" >
        hexToRgb = function(hex) {
            var result = /^#?([a-f\d]{2})([a-f\d]{2})([a-f\d]{2})$/i.exec(hex);
            return parseInt(result[1], 16) + ', ' + parseInt(result[2], 16) + ', ' + parseInt(result[3], 16);
        }

        parsePreviewChange = function(e) {
            if (e.name === 'custom-border-color' || e.name === 'custom-offer-color') {
                e.value = hexToRgb(e.value);
            }
            return e;
        } < /script>


HTTP Transactions (46)


Request Response
                                        
                                            GET /cl/i/j6rlkk HTTP/1.1 
Host: installchecker.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         23.22.126.183
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx/1.20.1
Date: Fri, 25 Nov 2022 14:14:33 GMT
Content-Length: 169
Connection: keep-alive
Location: https://installchecker.com/cl/i/j6rlkk


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   169
Md5:    0f952b73d3f5586637ea9a5a789d48f4
Sha1:   b29aff4ffa1d4decd77db5160f920e1c6417e5e9
Sha256: 69d11528ee32902d0c47ed215877f0610399536f755db03ed02a77ecedd74751

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2419
Expires: Fri, 25 Nov 2022 14:54:52 GMT
Date: Fri, 25 Nov 2022 14:14:33 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1720
Cache-Control: 'max-age=158059'
Date: Fri, 25 Nov 2022 14:14:33 GMT
Last-Modified: Fri, 25 Nov 2022 13:45:53 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4831
Expires: Fri, 25 Nov 2022 15:35:04 GMT
Date: Fri, 25 Nov 2022 14:14:33 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 25 Nov 2022 13:17:26 GMT
cache-control: public,max-age=3600
age: 3427
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    4d7e4eed097b9c4e5d509419f1cfc85a
Sha1:   290bb3d428a7c6330e2e3d73a952b16f820896c8
Sha256: 0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: IqSEQmtM4xZSomVE8iNBwESKZqe90mdcRm30VpsV0vV8T9hgiELm2p6eP9bU5HEf3cLe3VnjgzM=
x-amz-request-id: HNV5HCD9SJHYE5GZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 25 Nov 2022 13:40:49 GMT
age: 2024
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Fri, 25 Nov 2022 14:14:33 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6AC8F513E36C0E8D2BBD043E8608EA5A31AEC437FE2B596D7A109BBE73D7C588"
Last-Modified: Wed, 23 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6765
Expires: Fri, 25 Nov 2022 16:07:18 GMT
Date: Fri, 25 Nov 2022 14:14:33 GMT
Connection: keep-alive

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 25 Nov 2022 14:08:53 GMT
cache-control: public,max-age=3600
age: 341
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2396
Cache-Control: 'max-age=158059'
Date: Fri, 25 Nov 2022 14:14:34 GMT
Last-Modified: Fri, 25 Nov 2022 13:34:38 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /552.2d6a2503-1220.js HTTP/1.1 
Host: js-agent.newrelic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://installchecker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         151.101.86.137
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: PnZFPtaQ6Oa8SvsR598yLCynwQMleyjLyE8+/6kXxv1ZfRit6gnSEEKUHnQ2vqYi8syHn+Nxcq4=
x-amz-request-id: XM6WHM0J4M8X38WQ
last-modified: Wed, 05 Oct 2022 14:53:43 GMT
etag: "777ac0df4dba632ad1b2955c88dd51ac"
x-amz-version-id: 7EjqUQ3uiXAFqO0VnIOp2ymSTJq3JZwD
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Fri, 25 Nov 2022 14:14:34 GMT
via: 1.1 varnish
x-served-by: cache-bma1649-BMA
x-cache: HIT
x-cache-hits: 1409
x-timer: S1669385675.510287,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 5890
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (21423)
Size:   5890
Md5:    097ef34c5f5d635a147bca3721bd605b
Sha1:   3b31ef3cfb1d62d9884d631ec2467b9d6b0d46e2
Sha256: 3e05d4e42c1e87b516b525574b20d2570dccc50d1bd1b2956d6421699aa19914
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Qarvmih/QFTIoqF8QUPvLA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         35.165.176.211
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: LKNQUrUZ36YXXoL0/ssME8sIhCw=

                                        
                                            GET /favicon.ico HTTP/1.1 
Host: installchecker.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://installchecker.com/cl/i/j6rlkk
Cookie: XSRF-TOKEN=eyJpdiI6Im9rMGh5U2V2dzZ3ZzVkM0d0blhmbmc9PSIsInZhbHVlIjoiUjY4Rm1qbyttWmdFS0JkUyt3NmJTSGQ2QVQ4L1k2bUlMT2ZkWnBmL09XUTV2QlVMSVZrajQyM2RHMmhPa2VuMklnbWduUTlHRlZJQ3VyY2NLN2ZSNk5FNGI4alVscTFnQ29VTWtwb1R4QXh0bUp2ZFVId1pqWjBuaHArSFNNZGMiLCJtYWMiOiJkYTgwNzgwNGFlZjQxNDBhZjlhNWMzNDY3ODdkNjhhYmIyNzk3NTNjZjk0NDg3NzRjNjMyMjA4NTY0MzBjODAwIiwidGFnIjoiIn0%3D; ogads_session=eyJpdiI6IlFBT1IxN0dnNTJmUllGa0FYOXpsRHc9PSIsInZhbHVlIjoiU293SHNKd21ZUzIxdFBKWW96VEowVm5kMnVRZEttYzRCSEJ1cEhPVlAwbkJpQXlvOFhDN3ZIQkprZ2RTK1lLbHNvajh2Ymp2TjVnZ0VOV1RVL2tNcTJOYlgxdFMyR042TENUTmN5QXYrb0hkeXVvMnlVTDRtSkpvRGhGVWZodzYiLCJtYWMiOiI1NjNkOGM4OGMwODBkNDBkN2YyYjJiZGFjMWVlN2NiNzJjMGJhMjczMzYxNzU3M2ZiYjkxODMzNDk5Nzc4MTdlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         23.22.126.183
HTTP/2 200 OK
content-type: image/x-icon
                                        
server: nginx
date: Fri, 25 Nov 2022 14:14:34 GMT
content-length: 0
last-modified: Tue, 24 Aug 2021 10:08:19 GMT
etag: "6124c513-0"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
accept-ranges: bytes
X-Firefox-Spdy: h2

                                        
                                            GET /cl/v/j6rlkk HTTP/1.1 
Host: installchecker.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: VQcDVFRRDBABUVZbAwMEV1U=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjExNDUyMjQiLCJhcCI6IjE4MzM2Njg4NDMiLCJpZCI6ImYzMDc0YTBhNWE5M2M2MTUiLCJ0ciI6IjE1NGJmOGQ0YzM2NzgyNGNiNGM2YWZmOWIwMDY0MGQwIiwidGkiOjE2NjkzODU2NzM2NTV9fQ==
traceparent: 00-154bf8d4c367824cb4c6aff9b00640d0-f3074a0a5a93c615-01
tracestate: 1145224@nr=0-1-1145224-1833668843-f3074a0a5a93c615----1669385673655
Connection: keep-alive
Referer: https://installchecker.com/cl/i/j6rlkk
Cookie: XSRF-TOKEN=eyJpdiI6Im9rMGh5U2V2dzZ3ZzVkM0d0blhmbmc9PSIsInZhbHVlIjoiUjY4Rm1qbyttWmdFS0JkUyt3NmJTSGQ2QVQ4L1k2bUlMT2ZkWnBmL09XUTV2QlVMSVZrajQyM2RHMmhPa2VuMklnbWduUTlHRlZJQ3VyY2NLN2ZSNk5FNGI4alVscTFnQ29VTWtwb1R4QXh0bUp2ZFVId1pqWjBuaHArSFNNZGMiLCJtYWMiOiJkYTgwNzgwNGFlZjQxNDBhZjlhNWMzNDY3ODdkNjhhYmIyNzk3NTNjZjk0NDg3NzRjNjMyMjA4NTY0MzBjODAwIiwidGFnIjoiIn0%3D; ogads_session=eyJpdiI6IlFBT1IxN0dnNTJmUllGa0FYOXpsRHc9PSIsInZhbHVlIjoiU293SHNKd21ZUzIxdFBKWW96VEowVm5kMnVRZEttYzRCSEJ1cEhPVlAwbkJpQXlvOFhDN3ZIQkprZ2RTK1lLbHNvajh2Ymp2TjVnZ0VOV1RVL2tNcTJOYlgxdFMyR042TENUTmN5QXYrb0hkeXVvMnlVTDRtSkpvRGhGVWZodzYiLCJtYWMiOiI1NjNkOGM4OGMwODBkNDBkN2YyYjJiZGFjMWVlN2NiNzJjMGJhMjczMzYxNzU3M2ZiYjkxODMzNDk5Nzc4MTdlIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         23.22.126.183
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
server: nginx
date: Fri, 25 Nov 2022 14:14:34 GMT
vary: Accept-Encoding
cache-control: no-cache, private
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-robots-tag: none
set-cookie: XSRF-TOKEN=eyJpdiI6IjBLVHpoUjdnaW56c1B2S3NkMkJiOVE9PSIsInZhbHVlIjoidGxIY3l4SDQ5UzRZRXZIYjJBZTYxTFozVW5vb2UwODl3K1pINmpFOFBPeVVVQWI5WXRRNnJaV0hLcGVLVGhYYlpNcXh2OFVyY2VKbjlsdHNucUNrWUlEME1oWFVRNGtaVGpGU3BkRnArR3dneHk3Q2dVY2tRZVZMekZKR2FTSnQiLCJtYWMiOiJhNTAyOTM0ZTc5MzcwODAxY2NkZmUwOGVjZmI5YTVlZTIwNjI2OGI5NDhjY2JjYzhhMTY5OTBiN2ZjODlhMmQ4IiwidGFnIjoiIn0%3D; expires=Sat, 26 Nov 2022 10:14:34 GMT; Max-Age=72000; path=/; secure; samesite=none ogads_session=eyJpdiI6InlpWWhCcmdQQzI4QllFc3Q3UFVqa2c9PSIsInZhbHVlIjoiLzNpWHdETWNodDJxY20zeml0ZHJXajN0dGJkcXRFdUd4SFlsSytzeFlZRzBiTWU5MXhjNDBTcXNHZjdJaW5yVDJyQ2pqOC9NYkJOYzFHVXUzRFpkU3NrS3QveS9aZlRSRTR5SzZlMEQ0dHRWT20vdUxpMytGdGxjYldXZzZETHciLCJtYWMiOiI2N2Y3ZWQxYjM4MWNmZTRjMjI0MGEyNzJmZmU1NTE4OWM0YmYxMDA0YjcyOGQ0YjIzOTdmNmI3YmQ0ZTEyYmNkIiwidGFnIjoiIn0%3D; expires=Sat, 26 Nov 2022 10:14:34 GMT; Max-Age=72000; path=/; secure; httponly; samesite=none
x-xss-protection: 1; mode=block, 1; mode=block
x-content-type-options: DENY, nosniff
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (8544)
Size:   6303
Md5:    4be6b9bdd4065e33dcdb3664311c8332
Sha1:   eb22024c6a794d158b27833dae86a4ac0ef0e8bc
Sha256: e17bcd594aa644ec57e91ed62a7c56d98ba38b494d71238fd5420245c157c00d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /368.2d6a2503-1220.js HTTP/1.1 
Host: js-agent.newrelic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://installchecker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.86.137
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: GUwozRedGseijuU5ypA/WbbnDIf/u5E5/2u5+kb3ugz/wj5jQhWm8oFz9CQSV79o7P1yeeJAp+M=
x-amz-request-id: K9T2FMDPRF0ZCE4Q
last-modified: Wed, 05 Oct 2022 14:53:42 GMT
etag: "16b4f3676c3859e1378a2ccdebbad675"
x-amz-version-id: zC.KoTaM7bjdFj.W4KQMilxtjXXSNPks
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Fri, 25 Nov 2022 14:14:34 GMT
via: 1.1 varnish
x-served-by: cache-bma1649-BMA
x-cache: HIT
x-cache-hits: 1396
x-timer: S1669385675.626754,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1443
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3382)
Size:   1443
Md5:    fa50a55750d1d0978fca32be5dbc3988
Sha1:   a7f447621d48b3ecf7fc0192b515d506d3d1ad18
Sha256: c621038fb07e536af8a1ec6d260853dfe69055dc2fb526700919c53b3b7e5f20
                                        
                                            GET /768.2d6a2503-1220.js HTTP/1.1 
Host: js-agent.newrelic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://installchecker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.86.137
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: P4mBsEL/DTAFzpZmpgTrdkaNBJrByz58gWXjGItRhFpF6Y8vCPU2Lz0KL/HwWqBLBPUd/7ipab8=
x-amz-request-id: XM6J50R0X1MZPD9F
last-modified: Wed, 05 Oct 2022 14:53:42 GMT
etag: "d6cc8b42eda6fd7734014b03b87b5787"
x-amz-version-id: 0CJw6LdyBdZcjhOiVrtC0pLcOFtA3d5G
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Fri, 25 Nov 2022 14:14:34 GMT
via: 1.1 varnish
x-served-by: cache-bma1649-BMA
x-cache: HIT
x-cache-hits: 1557
x-timer: S1669385675.626885,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2225
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5523)
Size:   2225
Md5:    98a96a3306b7723c0b8c4bff074cdd9f
Sha1:   e9070da7daa34fa2d8ac2e4ec00e3c499ea37516
Sha256: a6079d50fa4c72b521fd865e67be080b5b21c336a71dbf7a1800a12ad42384f7
                                        
                                            GET /775.2d6a2503-1220.js HTTP/1.1 
Host: js-agent.newrelic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://installchecker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.86.137
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: 7LFMHtjJh1S3I7Y2nadjyW3qD5GSEUAPkhvRiGWUqI2yNIsj2jxS1WztietgESJCTo8b+MSjBS8=
x-amz-request-id: XM6WXR7ZNKJZ7WDR
last-modified: Wed, 05 Oct 2022 14:53:42 GMT
etag: "1dfdb74c0491489bf04c6deadb56add2"
x-amz-version-id: y1AQ2bnjUbwuFOuSS5MP1vew1dGw.1iz
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Fri, 25 Nov 2022 14:14:34 GMT
via: 1.1 varnish
x-served-by: cache-bma1649-BMA
x-cache: HIT
x-cache-hits: 883
x-timer: S1669385675.627102,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 632
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1169)
Size:   632
Md5:    661520fd0dfebb919d68a69b60ca426f
Sha1:   b85ef80a0e0d95bf4904f9ce4fad56c49ae035be
Sha256: ecd489671c6255fee8370fc1f8f4e99519ef8d4c4c0ab06640b0c021642e1db7
                                        
                                            GET /39.2d6a2503-1220.js HTTP/1.1 
Host: js-agent.newrelic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://installchecker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.86.137
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: KxfPNXIQ38SSfzz490TMAo2ltA9W5l6OlU9HI6h8SfmvQBHsTP/3JrzkCdnsVJAOdxSfq1TwUMk=
x-amz-request-id: ESHWVX2RDYQJKTJS
last-modified: Wed, 05 Oct 2022 14:53:42 GMT
etag: "0448380a8f2cd0426bbdf04dd45b5408"
x-amz-version-id: rKoZQfJFmGD6aC9Xn3l7.fk4j9L96MM_
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Fri, 25 Nov 2022 14:14:34 GMT
via: 1.1 varnish
x-served-by: cache-bma1649-BMA
x-cache: HIT
x-cache-hits: 677
x-timer: S1669385675.627359,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2755
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7169)
Size:   2755
Md5:    a0a406e7bdf3e14f047e46bcea27640c
Sha1:   c1fbc88d260f16a092c1b7b0e58e4291401478e8
Sha256: 2309d4e82574d5402ec3454a76051987336fe3b4e4d546f6565a3a443c6d4049
                                        
                                            GET /0.2d6a2503-1220.js HTTP/1.1 
Host: js-agent.newrelic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://installchecker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.86.137
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: f1JzRiK4HoHej55UIxY8kufnlKMhSjW2G+Vtj2sq4OUFu6SREeWg9kZpjawiQxSTZPEfmKoLolg=
x-amz-request-id: XM6JN6V8R5PG7B8J
last-modified: Wed, 05 Oct 2022 14:53:42 GMT
etag: "cc9b3d207e9ea2c79974f46bf474e6dd"
x-amz-version-id: 5C7ygpPS6JvoVHQoGDIm5lCTgaPcqmFc
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Fri, 25 Nov 2022 14:14:34 GMT
via: 1.1 varnish
x-served-by: cache-bma1649-BMA
x-cache: HIT
x-cache-hits: 665
x-timer: S1669385675.627605,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2349
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5198)
Size:   2349
Md5:    852267b16c136b977ccd94900c6c6308
Sha1:   e013e1b2c6de5b625ebbfe2e7cf3cfb09cee6c16
Sha256: 9bb09a133a1b33e9cecb06aa44e1ea67b3ad4ea74df5c6a89b1580064364cced
                                        
                                            GET /571.2d6a2503-1220.js HTTP/1.1 
Host: js-agent.newrelic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://installchecker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.86.137
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: Cn07g451pzP+BuOyXbJ5c0o8ExPUm1rBYP/GYVQDFxcy7KzhZDW/Ep1gB0iV/QBa/UCWbkhew68=
x-amz-request-id: XM6J6T5Z32K8FRFH
last-modified: Wed, 05 Oct 2022 14:53:42 GMT
etag: "04b00905b32fd8d29459545bc125cff6"
x-amz-version-id: ySPuP7kOqGri8HjzDqW2TYirQNYv9NMF
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Fri, 25 Nov 2022 14:14:34 GMT
via: 1.1 varnish
x-served-by: cache-bma1649-BMA
x-cache: HIT
x-cache-hits: 682
x-timer: S1669385675.627582,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1108
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2412)
Size:   1108
Md5:    d392a55faa7a0a2a43781a495891c9aa
Sha1:   1998ba6f85354606c186fa1a29285676f0b596f0
Sha256: 33b4cb21373961aa88430ff72406d46e95ceddf50afc086598ea5bdc3a311815
                                        
                                            GET /820.2d6a2503-1220.js HTTP/1.1 
Host: js-agent.newrelic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://installchecker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.86.137
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: mfz69jbwDdVjAOvigezanDeGlG58lNEgRQZJ5bHuLqr3T+YzVd1KlatkpX7gSSdNs3YsWLt1rsw=
x-amz-request-id: 7DG6EGGM14MJB93M
last-modified: Wed, 05 Oct 2022 14:53:42 GMT
etag: "897a1a72a47e4f4a24c05aec49af638f"
x-amz-version-id: P6j2S.7Iht6lmVHyZ_zkYmp136j6E8IA
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Fri, 25 Nov 2022 14:14:34 GMT
via: 1.1 varnish
x-served-by: cache-bma1649-BMA
x-cache: HIT
x-cache-hits: 325
x-timer: S1669385675.627878,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2979
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7460)
Size:   2979
Md5:    7d1295a839190615b34d5a62acceee4f
Sha1:   eef26f5c6d2ae14cb81b3a9b669da224faceacd0
Sha256: 4d59d58f31b6638fbc3792a0b5fddca6e8eafc19a0c9e9aabadb5ad4d9197198
                                        
                                            GET /790.2d6a2503-1220.js HTTP/1.1 
Host: js-agent.newrelic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://installchecker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         151.101.86.137
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: rOIosPuuEwyY2i5sNYqTXHwZXDs2re4AJB6+I1QFfF9D8vToAF8QBmtRttIasr2/YRes+1f0bv4=
x-amz-request-id: 9HYGKVEA32SEPK1W
last-modified: Wed, 05 Oct 2022 14:53:43 GMT
etag: "af8c077a247e90dff929d7af81c94f57"
x-amz-version-id: TFyNie.wEelbO4xbna5bJ14MRDIkKCak
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Fri, 25 Nov 2022 14:14:34 GMT
via: 1.1 varnish
x-served-by: cache-bma1649-BMA
x-cache: HIT
x-cache-hits: 189
x-timer: S1669385675.628173,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 6064
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (17591)
Size:   6064
Md5:    b3193d37837e2f200e10db13deff83a9
Sha1:   d8577b8a972583e81cfd8e31436dcd039aa049b2
Sha256: 5ba2e421fa78af3094294f4f8e30ba63225537da3ad68e35fbab63b2d22a0288
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 25 Nov 2022 14:14:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /css?family=Source+Sans+Pro:400,700,300,200 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://installchecker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 25 Nov 2022 14:14:34 GMT
date: Fri, 25 Nov 2022 14:14:34 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1192
Md5:    309c5bbc6e1a6248604c4feba28a8c54
Sha1:   9a12abbdbed8eb46e16f80c7d5c5c88cdb7093a4
Sha256: 22ebc1e843360e2c53089e509fd187a45cc5097a9ee0dfee431602abd89b707e
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 25 Nov 2022 14:14:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 25 Nov 2022 14:14:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 25 Nov 2022 14:14:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://installchecker.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:26:57 GMT
expires: Thu, 23 Nov 2023 19:26:57 GMT
cache-control: public, max-age=31536000
age: 154057
last-modified: Wed, 27 Apr 2022 16:02:31 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 12924, version 1.0\012- data
Size:   12924
Md5:    4610010f425c140b99c88b6819ce1c02
Sha1:   a7e839aa0452ceeb6228de7c15062fe82cc6d1c3
Sha256: 7348a2eb48c9a681d6178433394c7037144d85b57ee33a11339d3a33fa1001a4
                                        
                                            GET /1/c25b69ac34?a=157942311&v=1220.PROD&to=ZgFQYktXWUMCWkVZDV9LcUNKQlhdTE1eXw5CSlFZV0JSXhcUXV8BWgFAGFBYU1Ub&rst=1467&ck=0&s=4bff248c5ac9eef1&ref=https://installchecker.com/cl/i/j6rlkk&ap=35&be=982&fe=38&dc=35&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1669385672650,%22n%22:0,%22f%22:371,%22dn%22:374,%22dne%22:376,%22c%22:376,%22s%22:480,%22ce%22:712,%22rq%22:712,%22rp%22:908,%22rpe%22:908,%22dl%22:926,%22di%22:1012,%22ds%22:1016,%22de%22:1018,%22dc%22:1018,%22l%22:1018,%22le%22:1022%7D,%22navigation%22:%7B%7D%7D&at=SkZTFANNSk0%3D&jsonp=NREUM.setToken HTTP/1.1 
Host: bam.nr-data.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://installchecker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         162.247.241.14
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Fri, 25 Nov 2022 14:14:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 76fafdd329041c16-OSL
Access-Control-Allow-Origin: *
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   73
Md5:    516a128bb6000ca8154792678f4333fb
Sha1:   41d0257bea96afd36c6f3e40fcfdc9ca247f8e01
Sha256: 9fa62b52f24b87a40410fe842cb9be494abed114a2eac2eb406c8b4a4d372d10
                                        
                                            GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwlxdu.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://installchecker.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12956
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:28:31 GMT
expires: Thu, 23 Nov 2023 19:28:31 GMT
cache-control: public, max-age=31536000
age: 153963
last-modified: Wed, 27 Apr 2022 16:54:52 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 12956, version 1.0\012- data
Size:   12956
Md5:    1c772d9d0531b187db80bcfc199c1786
Sha1:   c0c04fb334190e10dffed0dcc5c817c2a6041a15
Sha256: 122854df4f39cf922db317714c2ff0eccab27a1028c14a5aa2211f48b7e0eade
                                        
                                            GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://installchecker.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:26:57 GMT
expires: Thu, 23 Nov 2023 19:26:57 GMT
cache-control: public, max-age=31536000
age: 154057
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Size:   13036
Md5:    0ad032b3d07aaf33b160ac4799dda40f
Sha1:   06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
Sha256: c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 25 Nov 2022 14:14:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2245
Expires: Fri, 25 Nov 2022 14:52:00 GMT
Date: Fri, 25 Nov 2022 14:14:35 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2245
Expires: Fri, 25 Nov 2022 14:52:00 GMT
Date: Fri, 25 Nov 2022 14:14:35 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2245
Expires: Fri, 25 Nov 2022 14:52:00 GMT
Date: Fri, 25 Nov 2022 14:14:35 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2245
Expires: Fri, 25 Nov 2022 14:52:00 GMT
Date: Fri, 25 Nov 2022 14:14:35 GMT
Connection: keep-alive

                                        
                                            GET /js/cl/desktop.js?id=AgWbPW HTTP/1.1 
Host: d3qilfrpqzfrg4.cloudfront.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://installchecker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         54.230.245.32
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Fri, 25 Nov 2022 14:14:36 GMT
last-modified: Tue, 01 Nov 2022 17:12:37 GMT
etag: W/"58f7c92b6c66bacb056a65c00ea1b30e"
cache-control: max-age=2628000
expires: Mon, 01 Nov 2027 17:12:36 GMT
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oEfZO15MVe0vSOLjNHbKHpMyJYZSytWmhTUYPwzgiXlYP_fQebidIA==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Size:   77710
Md5:    a39e116130a85e97e0f7aa81f7201762
Sha1:   159280ec29d2c1f166c79bd31108baf3ee88170d
Sha256: 468d91e97b7bcad47ce61f27fcd8bf0b824cfaa5dcf15e9dd7380408a0f59e05
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00e89fb5-5cb3-4f68-936b-5ee31d6061bc.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8006
x-amzn-requestid: 78aab013-df11-464b-a1c7-ee41b7e77b40
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB-AHSrIAMFvKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe38c-4d795f410a57fc2c21d7075d;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NntLZ3wUdcX9kEo-afFLU0TPKgqAlSK3bToNh2mmoqoyLBJINNk7ow==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:54:39 GMT
age: 58796
etag: "5d15fd672e968d59b541e4d5d0d01cd5e69f4075"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8006
Md5:    8b6ee13d43732f7c764a49500d092865
Sha1:   5d15fd672e968d59b541e4d5d0d01cd5e69f4075
Sha256: fc3623d527147e1c6aab399251ed8d527e6eefdee6ad7183f00df2613498bfe4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3955
x-amzn-requestid: 42c8d309-a8d2-47cc-8d97-c7fa3a63f8cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCM9NGJHoAMF4sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d8eba-2a06cda9346bd02c46955444;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 03:08:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5MlzpHpq7auKLSAYikINuPAylXI11VJL3xxIJ9Dyub-7rjQaPfg0WQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 04:23:00 GMT
age: 35495
etag: "74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3955
Md5:    4006a9037ab5f28dca62b0aa7a704c41
Sha1:   74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b
Sha256: 556ae6516a1f272a96569a3637858292731a34e82672b682f6e7442ca68f4b1d
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7YSXUV-LZpsI7vciFhuqt1EVr6YRkhxcOgMg8z8bxLcOE01_baf6Gg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:47:53 GMT
age: 59202
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7993
Md5:    92c78302bcce1568eb6a5563100b932c
Sha1:   43d1dec7fc06879988c9c3cadd800cc8145df988
Sha256: 0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20a12e2c-1403-4b39-9da1-b2be17a6bbd1.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11954
x-amzn-requestid: 0c912d90-72b5-4060-ae22-c2ecbe16b57a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b8J-nEFEoAMF2eA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637b2390-503ead086c8021af6eaeaa85;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 07:06:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JZAeoFNsUy2usSV7O41YGIfVow9gaIMXuKnfcaundLduQ5UX2eTKOQ==
via: 1.1 42ef990e439ae115ff739f04e3945234.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 17:17:27 GMT
age: 75428
etag: "b80047da428636adb7027f12718c8d11bd461da4"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11954
Md5:    6673267df195141739d1018c17101368
Sha1:   b80047da428636adb7027f12718c8d11bd461da4
Sha256: de30af07eed7326a1326c831e04727649a112c20d0c485a7e973edd96f91bfaa
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: j_8oVo464QMWMnmkxQJIDRhaIVmwhzCTHe4A57OdmaUr9HcyTtBUjg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2750b94b402c92287d764b5fa115a042.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 05:04:28 GMT
age: 33007
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4309
Md5:    841a4b110022a99ddea6f7bf66df0fa1
Sha1:   126771b86638108050cf57c0d12faa27f80f0edb
Sha256: 240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 25 Nov 2022 14:14:36 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 04:10:55 GMT
Expires: Tue, 29 Nov 2022 04:10:54 GMT
Etag: "9e77cdb31d8532d2bbf62de72214b7665e577809"
Cache-Control: max-age=603540,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1145
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76fafddb7c28b4f1-OSL

                                        
                                            GET /app/4971de26666a6fede50a?protocol=7&client=js&version=4.4.0&flash=false HTTP/1.1 
Host: ws-us2.pusher.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://installchecker.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 6ZeAEN1nz+Avw1XMg4B+cg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         3.21.64.56
HTTP/1.1 101 Switching Protocols
                                        
Date: Fri, 25 Nov 2022 14:14:36 GMT
Connection: upgrade
Server: nginx/1.17.7
Upgrade: websocket
Sec-WebSocket-Accept: 5snQiEfGcuuofdcJQAX7gXMu07Q=

                                        
                                            GET /timeline/v2/jsonp/1?session=Njk4MjQ3MTM2&bundle=MQ%3D%3D&key=NDk3MWRlMjY2NjZhNmZlZGU1MGE%3D&lib=anM%3D&version=NC40LjA%3D&cluster=dXMy&features=WyJ3cyJd&timeline=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 HTTP/1.1 
Host: stats.pusher.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://installchecker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         3.220.126.28
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: awselb/2.0
date: Fri, 25 Nov 2022 14:14:36 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /cl/i/j6rlkk HTTP/1.1 
Host: installchecker.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         23.22.126.183
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
server: nginx
date: Fri, 25 Nov 2022 14:14:34 GMT
vary: Accept-Encoding
cache-control: no-cache, private
strict-transport-security: max-age=31536000; includeSubDomains
x-robots-tag: none
set-cookie: XSRF-TOKEN=eyJpdiI6Im9rMGh5U2V2dzZ3ZzVkM0d0blhmbmc9PSIsInZhbHVlIjoiUjY4Rm1qbyttWmdFS0JkUyt3NmJTSGQ2QVQ4L1k2bUlMT2ZkWnBmL09XUTV2QlVMSVZrajQyM2RHMmhPa2VuMklnbWduUTlHRlZJQ3VyY2NLN2ZSNk5FNGI4alVscTFnQ29VTWtwb1R4QXh0bUp2ZFVId1pqWjBuaHArSFNNZGMiLCJtYWMiOiJkYTgwNzgwNGFlZjQxNDBhZjlhNWMzNDY3ODdkNjhhYmIyNzk3NTNjZjk0NDg3NzRjNjMyMjA4NTY0MzBjODAwIiwidGFnIjoiIn0%3D; expires=Sat, 26 Nov 2022 10:14:34 GMT; Max-Age=72000; path=/; secure; samesite=none ogads_session=eyJpdiI6IlFBT1IxN0dnNTJmUllGa0FYOXpsRHc9PSIsInZhbHVlIjoiU293SHNKd21ZUzIxdFBKWW96VEowVm5kMnVRZEttYzRCSEJ1cEhPVlAwbkJpQXlvOFhDN3ZIQkprZ2RTK1lLbHNvajh2Ymp2TjVnZ0VOV1RVL2tNcTJOYlgxdFMyR042TENUTmN5QXYrb0hkeXVvMnlVTDRtSkpvRGhGVWZodzYiLCJtYWMiOiI1NjNkOGM4OGMwODBkNDBkN2YyYjJiZGFjMWVlN2NiNzJjMGJhMjczMzYxNzU3M2ZiYjkxODMzNDk5Nzc4MTdlIiwidGFnIjoiIn0%3D; expires=Sat, 26 Nov 2022 10:14:34 GMT; Max-Age=72000; path=/; secure; httponly; samesite=none
x-xss-protection: 1; mode=block, 1; mode=block
x-content-type-options: DENY, nosniff
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing