r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6832
Expires: Sun, 29 Jan 2023 16:36:28 GMT
Date: Sun, 29 Jan 2023 14:42:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3eb88dea4fe00db1182370e72683c3ab
ca520abf1e91bfd2aef40c6a1270a911071e8922
d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6095
Expires: Sun, 29 Jan 2023 16:24:11 GMT
Date: Sun, 29 Jan 2023 14:42:36 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 29 Jan 2023 13:43:08 GMT
content-type: application/json
age: 3568
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 03092d1a1bc7ac91ee342a1a7ab2a562
52db06ce1fd2c74ddd36b6a0a7aee1b5c891600a
03b8ff2629abac9fc30ebec059c2e2018fcbc41646ad5f71c965ff630fbf1ffd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "03B8FF2629ABAC9FC30EBEC059C2E2018FCBC41646AD5F71C965FF630FBF1FFD"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3191
Expires: Sun, 29 Jan 2023 15:35:47 GMT
Date: Sun, 29 Jan 2023 14:42:36 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: rPhFUknacad6edt7wlSsTmJLQaa7gyiw2iUeqfZgW3hlrMr13e1z8tenNWNa19zyL/X1cUzJpZ8=
x-amz-request-id: V09H4R6QXYHNKFVP
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 29 Jan 2023 14:21:25 GMT
age: 1271
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 14:42:36 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
culture.cafe/post/2017%E5%B9%B44%E6%9C%88%E5%BD%B0%E6%BF%B1%E7%A7%80%E5%82%B3%E4%B9%8B%E7%BE%8E%E9%9F%B3%E6%A8%82%E9%A5%97%E5%AE%B4%E7%A6%8F%E7%88%BE%E6%91%A9%E6%B2%99%E9%99%B6%E7%AC%9B%E6%A8%82%E5%9C%98
52.219.196.99301 Moved Permanently 0 B URL HTTP/1.1 culture.cafe/post/2017%E5%B9%B44%E6%9C%88%E5%BD%B0%E6%BF%B1%E7%A7%80%E5%82%B3%E4%B9%8B%E7%BE%8E%E9%9F%B3%E6%A8%82%E9%A5%97%E5%AE%B4%E7%A6%8F%E7%88%BE%E6%91%A9%E6%B2%99%E9%99%B6%E7%AC%9B%E6%A8%82%E5%9C%98
IP 52.219.196.99:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /post/2017%E5%B9%B44%E6%9C%88%E5%BD%B0%E6%BF%B1%E7%A7%80%E5%82%B3%E4%B9%8B%E7%BE%8E%E9%9F%B3%E6%A8%82%E9%A5%97%E5%AE%B4%E7%A6%8F%E7%88%BE%E6%91%A9%E6%B2%99%E9%99%B6%E7%AC%9B%E6%A8%82%E5%9C%98 HTTP/1.1
Host: culture.cafe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
x-amz-id-2: 57io35R0NJTmdlUCAc/yscDL6HDL9x+4oqFsWfPGuXjB3nX4lkmwrI/gPStFGWY8AFmlHIVNNNY=
x-amz-request-id: ATF03HXMVZPVSTCF
Date: Sun, 29 Jan 2023 14:42:37 GMT
Location: http://www.culture.cafe/post/2017%E5%B9%B44%E6%9C%88%E5%BD%B0%E6%BF%B1%E7%A7%80%E5%82%B3%E4%B9%8B%E7%BE%8E%E9%9F%B3%E6%A8%82%E9%A5%97%E5%AE%B4%E7%A6%8F%E7%88%BE%E6%91%A9%E6%B2%99%E9%99%B6%E7%AC%9B%E6%A8%82%E5%9C%98
Server: AmazonS3
Content-Length: 0
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 29 Jan 2023 14:41:41 GMT
age: 55
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19537
Expires: Sun, 29 Jan 2023 20:08:14 GMT
Date: Sun, 29 Jan 2023 14:42:37 GMT
Connection: keep-alive
push.services.mozilla.com/
44.226.190.180101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.226.190.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ayJERQzCnra74I45Kq1bLQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: iRJYh7zd1hNSOeWpBHZUORoWw3k=
www.culture.cafe/post/2017%E5%B9%B44%E6%9C%88%E5%BD%B0%E6%BF%B1%E7%A7%80%E5%82%B3%E4%B9%8B%E7%BE%8E%E9%9F%B3%E6%A8%82%E9%A5%97%E5%AE%B4%E7%A6%8F%E7%88%BE%E6%91%A9%E6%B2%99%E9%99%B6%E7%AC%9B%E6%A8%82%E5%9C%98
52.219.197.83302 Moved Temporarily 313 B URL HTTP/1.1 www.culture.cafe/post/2017%E5%B9%B44%E6%9C%88%E5%BD%B0%E6%BF%B1%E7%A7%80%E5%82%B3%E4%B9%8B%E7%BE%8E%E9%9F%B3%E6%A8%82%E9%A5%97%E5%AE%B4%E7%A6%8F%E7%88%BE%E6%91%A9%E6%B2%99%E9%99%B6%E7%AC%9B%E6%A8%82%E5%9C%98
IP 52.219.197.83:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 84bd1985de7b1e754aa16ed0a5da702a
b608133ec80c86f21420905afafbbf5f26732905
3faa12ff3e7ec4e16e659693e445dda0c44f918ce0ce17a8da3382895d5c03d6
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /post/2017%E5%B9%B44%E6%9C%88%E5%BD%B0%E6%BF%B1%E7%A7%80%E5%82%B3%E4%B9%8B%E7%BE%8E%E9%9F%B3%E6%A8%82%E9%A5%97%E5%AE%B4%E7%A6%8F%E7%88%BE%E6%91%A9%E6%B2%99%E9%99%B6%E7%AC%9B%E6%A8%82%E5%9C%98 HTTP/1.1
Host: www.culture.cafe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
x-amz-error-code: Found
x-amz-error-message: Resource Found
x-amz-request-id: YFMJWDNAFCV0B3M3
x-amz-id-2: 6RQE7Nny7UAQtkaHNW72B5WvQI8jK61FsPxE3tvb62wdaM++njxfafnvELIlrxA80YeiKtbzqOY=
Location: /post/2017%e5%b9%b44%e6%9c%88%e5%bd%b0%e6%bf%b1%e7%a7%80%e5%82%b3%e4%b9%8b%e7%be%8e%e9%9f%b3%e6%a8%82%e9%a5%97%e5%ae%b4%e7%a6%8f%e7%88%be%e6%91%a9%e6%b2%99%e9%99%b6%e7%ac%9b%e6%a8%82%e5%9c%98/
Content-Type: text/html; charset=utf-8
Date: Sun, 29 Jan 2023 14:42:37 GMT
Server: AmazonS3
Content-Length: 313
www.culture.cafe/post/2017%e5%b9%b44%e6%9c%88%e5%bd%b0%e6%bf%b1%e7%a7%80%e5%82%b3%e4%b9%8b%e7%be%8e%e9%9f%b3%e6%a8%82%e9%a5%97%e5%ae%b4%e7%a6%8f%e7%88%be%e6%91%a9%e6%b2%99%e9%99%b6%e7%ac%9b%e6%a8%82%e5%9c%98/
52.219.197.83200 OK 10 kB URL HTTP/1.1 www.culture.cafe/post/2017%e5%b9%b44%e6%9c%88%e5%bd%b0%e6%bf%b1%e7%a7%80%e5%82%b3%e4%b9%8b%e7%be%8e%e9%9f%b3%e6%a8%82%e9%a5%97%e5%ae%b4%e7%a6%8f%e7%88%be%e6%91%a9%e6%b2%99%e9%99%b6%e7%ac%9b%e6%a8%82%e5%9c%98/
IP 52.219.197.83:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (38976), with CRLF, LF line terminators
Hash cb3bf82b4e24c488cf41bca7c03610e2
ddf01cb84fc47c5b0cc11306f28cf21b5fe876b6
04fecec793e428b8feb2dcf0235153559134e6f7ce258756c50889cfd2b21de7
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /post/2017%e5%b9%b44%e6%9c%88%e5%bd%b0%e6%bf%b1%e7%a7%80%e5%82%b3%e4%b9%8b%e7%be%8e%e9%9f%b3%e6%a8%82%e9%a5%97%e5%ae%b4%e7%a6%8f%e7%88%be%e6%91%a9%e6%b2%99%e9%99%b6%e7%ac%9b%e6%a8%82%e5%9c%98/ HTTP/1.1
Host: www.culture.cafe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
x-amz-id-2: na6lvuci08T8GKOSX88+HiGRhzIhpLNoGziRheQ0rAAXOAU3Bg/AmLDgvlUmEFAgES2SlN9wDW4=
x-amz-request-id: YFMMEX0WTQCDWN44
Date: Sun, 29 Jan 2023 14:42:38 GMT
Content-Encoding: gzip
Last-Modified: Fri, 10 Nov 2017 14:58:52 GMT
ETag: "cb3bf82b4e24c488cf41bca7c03610e2"
x-amz-storage-class: REDUCED_REDUNDANCY
Content-Type: text/html; charset=utf-8
Server: AmazonS3
Content-Length: 10354
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8c630e9bbc930d1c367efa81b67be3f7
ec536695531d40a813d99a06271c7c2d698d51d3
39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:42:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash efada10d2d3b1c0348542f4385bb0125
f7a73a926024caff1886422c930c6816192293d6
109aa85aa5895922a8c042bee431609d2c514ee08547cc0f4cbd96de9060b04f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:42:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 196441b9ab491e04729c460aa7c63959
867ae480338a7fb9b5b58822291e27da45e624e7
b9189c93052f01d911133670a93abb3fa63a2e45ca729c9d64c5e9a0096b3427
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:42:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash efada10d2d3b1c0348542f4385bb0125
f7a73a926024caff1886422c930c6816192293d6
109aa85aa5895922a8c042bee431609d2c514ee08547cc0f4cbd96de9060b04f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:42:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash efada10d2d3b1c0348542f4385bb0125
f7a73a926024caff1886422c930c6816192293d6
109aa85aa5895922a8c042bee431609d2c514ee08547cc0f4cbd96de9060b04f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:42:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash efada10d2d3b1c0348542f4385bb0125
f7a73a926024caff1886422c930c6816192293d6
109aa85aa5895922a8c042bee431609d2c514ee08547cc0f4cbd96de9060b04f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:42:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/v0/amp-sidebar-0.1.js
216.58.207.193200 OK 9.7 kB URL HTTP/2 cdn.ampproject.org/v0/amp-sidebar-0.1.js
IP 216.58.207.193:0
File type ASCII text, with very long lines (31286)
Hash 9154a37ace7c4c6c9bb16d0acbd3db27
8dc217c0d586a65ae3a5166c16eb8481747c7dc6
e69292f67a2d7254ab3c8dce4ea4a1de7be8cf8254b295564eca3452268ff6f8
GET /v0/amp-sidebar-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.culture.cafe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 9663
date: Sun, 29 Jan 2023 14:42:38 GMT
expires: Sun, 29 Jan 2023 14:42:38 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "2d11acc128026bdd"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8c630e9bbc930d1c367efa81b67be3f7
ec536695531d40a813d99a06271c7c2d698d51d3
39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:42:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/v0/amp-analytics-0.1.js
216.58.207.193200 OK 32 kB URL HTTP/2 cdn.ampproject.org/v0/amp-analytics-0.1.js
IP 216.58.207.193:0
File type ASCII text, with very long lines (65534)
Hash 841b6e8eaddbd08ee3495186079fcab0
4de766d60537161e6c04c427e4ddb277745fe837
073cbf22962a0b869ec4dfc3f945c3f4a1d5b49ee287349a5eba7bac56b61abe
GET /v0/amp-analytics-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.culture.cafe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 31977
date: Sun, 29 Jan 2023 14:42:38 GMT
expires: Sun, 29 Jan 2023 14:42:38 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "c33404c2de1399f4"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-accordion-0.1.js
216.58.207.193200 OK 5.9 kB URL HTTP/2 cdn.ampproject.org/v0/amp-accordion-0.1.js
IP 216.58.207.193:0
File type ASCII text, with very long lines (17551)
Hash 7bd0befda3ce6b1407f1bfd308301a59
1b8662460d25beb6286799a03094b8d682dd0e8a
542b26c4629fb83bd8dfcfd7fe459cce848b76c6264f0059694011599340f1c9
GET /v0/amp-accordion-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.culture.cafe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 5870
date: Sun, 29 Jan 2023 14:42:38 GMT
expires: Sun, 29 Jan 2023 14:42:38 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "b897423f1a354e6f"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-ad-0.1.js
216.58.207.193200 OK 23 kB URL HTTP/2 cdn.ampproject.org/v0/amp-ad-0.1.js
IP 216.58.207.193:0
File type ASCII text, with very long lines (65534)
Hash 8b2823213320dd21ca6e5b148c3910d4
25bc25a2a003614eab446cc17f1ff35ea1afa180
eb57535955570eb589450a2b5cb880b9d10a8fc46b7564bc2ecce8d8a841a943
GET /v0/amp-ad-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.culture.cafe/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 23102
date: Sun, 29 Jan 2023 14:42:38 GMT
expires: Sun, 29 Jan 2023 14:42:38 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "a3a0f9ec4054d8d8"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:42:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:42:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.culture.cafe
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 10:26:49 GMT
expires: Sun, 28 Jan 2024 10:26:49 GMT
cache-control: public, max-age=31536000
age: 101749
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash efada10d2d3b1c0348542f4385bb0125
f7a73a926024caff1886422c930c6816192293d6
109aa85aa5895922a8c042bee431609d2c514ee08547cc0f4cbd96de9060b04f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:42:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.culture.cafe
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 19:33:54 GMT
expires: Thu, 25 Jan 2024 19:33:54 GMT
cache-control: public, max-age=31536000
age: 328124
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:42:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.culture.cafe/images/hamburger.svg
52.219.197.83200 OK 1.4 kB URL HTTP/1.1 www.culture.cafe/images/hamburger.svg
IP 52.219.197.83:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash ae80e086ce5247b7f76269fd067ff92e
6e6dab285061da7cbe3c62bae4fc50c28242de66
a4b5cef02c77751ad9d2b4f4041d0efd249bdaa8692e74b92af30756cc49e5d7
Analyzer Verdict Alert quad9 Sinkholed
GET /images/hamburger.svg HTTP/1.1
Host: www.culture.cafe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culture.cafe/post/2017%e5%b9%b44%e6%9c%88%e5%bd%b0%e6%bf%b1%e7%a7%80%e5%82%b3%e4%b9%8b%e7%be%8e%e9%9f%b3%e6%a8%82%e9%a5%97%e5%ae%b4%e7%a6%8f%e7%88%be%e6%91%a9%e6%b2%99%e9%99%b6%e7%ac%9b%e6%a8%82%e5%9c%98/
HTTP/1.1 200 OK
x-amz-id-2: bxQKvwZMoMLoXPqZrx4Cq5z+lDlCd6xfUpQzTpSNMcsc8de5ujzN715Ua+snOjkx4d0Ze0aH9s8=
x-amz-request-id: W5PCCAG79Z3M2Y43
Date: Sun, 29 Jan 2023 14:42:39 GMT
Last-Modified: Fri, 10 Nov 2017 14:57:13 GMT
ETag: "ae80e086ce5247b7f76269fd067ff92e"
x-amz-storage-class: REDUCED_REDUNDANCY
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 1435
www.culture.cafe/images/chevron-left.svg
52.219.197.83200 OK 1.2 kB URL HTTP/1.1 www.culture.cafe/images/chevron-left.svg
IP 52.219.197.83:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash ac21f39ae1c58fa3b56b199ba2fa8260
eecabe3e06def4ab67e88ecaf810d1aa9568d6a8
bf75db59674fcdf8130c8ca0c065fe34f59aaecacfe3393a1a866f61cdf08d97
Analyzer Verdict Alert quad9 Sinkholed
GET /images/chevron-left.svg HTTP/1.1
Host: www.culture.cafe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culture.cafe/post/2017%e5%b9%b44%e6%9c%88%e5%bd%b0%e6%bf%b1%e7%a7%80%e5%82%b3%e4%b9%8b%e7%be%8e%e9%9f%b3%e6%a8%82%e9%a5%97%e5%ae%b4%e7%a6%8f%e7%88%be%e6%91%a9%e6%b2%99%e9%99%b6%e7%ac%9b%e6%a8%82%e5%9c%98/
HTTP/1.1 200 OK
x-amz-id-2: aI+sP4jQBeNt2rpfhPNbzgftfsZpCy6CfWGMIHNm2es7r88RhLhYqp/GYvS5+xPKZSq8sFOeVoA=
x-amz-request-id: W5PBCH80QVWAT9KK
Date: Sun, 29 Jan 2023 14:42:39 GMT
Last-Modified: Fri, 10 Nov 2017 14:57:13 GMT
ETag: "ac21f39ae1c58fa3b56b199ba2fa8260"
x-amz-storage-class: REDUCED_REDUNDANCY
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 1158
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9443
Expires: Sun, 29 Jan 2023 17:20:01 GMT
Date: Sun, 29 Jan 2023 14:42:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9443
Expires: Sun, 29 Jan 2023 17:20:01 GMT
Date: Sun, 29 Jan 2023 14:42:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9443
Expires: Sun, 29 Jan 2023 17:20:01 GMT
Date: Sun, 29 Jan 2023 14:42:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9443
Expires: Sun, 29 Jan 2023 17:20:01 GMT
Date: Sun, 29 Jan 2023 14:42:38 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5dcfee7f-f43c-4828-8113-8ba8eb26f727.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5dcfee7f-f43c-4828-8113-8ba8eb26f727.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d5ed99a9aed6f367efc5c9498ce87ff1
3123eb6f550c51fe17fc62eff943b3739e239a9b
536f45bf2eb41f7056df8b34964538005d6a0a4c6157def3fbdd9487f8c79027
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5dcfee7f-f43c-4828-8113-8ba8eb26f727.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10168
x-amzn-requestid: fe58fe3c-dd23-4614-b5a2-e91ef68c2ab7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fFOD7H-NIAMFcxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb907f-687fc51741d7ff97182d1955;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 07:13:03 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: SORDxKQP-GudaCfRIbrmexyEeJXBExRipfF8sPHI-UkaYhR_RkDjvQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 00:55:27 GMT
age: 49631
etag: "3123eb6f550c51fe17fc62eff943b3739e239a9b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 10a6491e2c1dfde68c7cd7297e70700f
d0f195319825a6d3e5e50ad15b2fcab27cb65896
4d9353d5874e5ea03c25e1562db5f479c222a48db526fdd10ede7c2e6a4dd874
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11470
x-amzn-requestid: 62d61967-9380-4ca9-b11a-531425dbd2ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIf6WFgAIAMF6gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce042-6d9fe51029094b7f37c0a648;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:05:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rUIvvkZQ028ey3klplI-x9oZFugon5HsAWT-SN2GQo5hBeBJWqoMAg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 04:01:15 GMT
age: 38483
etag: "d0f195319825a6d3e5e50ad15b2fcab27cb65896"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4c77437e3a7361861aed8bfecbfe6bd6
fefd238c13c0fdfb7d964c90fcc8a8cbbf953034
282d15c443cb6232ae0a30046a0dc24360617355a4651cdba59b11e6f7313d8a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5594
x-amzn-requestid: d56c9b84-dc1f-4d5c-91bf-7db55058bf67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLyeEGOloAMFpzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ce3126-5013a6b971d6800c5c85a4eb;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 07:03:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uPJu2SzvWcfqukF9t0PKG5iK7LrTnk1Cn5nioD4MklQgDAZnbiH8Gw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 14:55:48 GMT
age: 85610
etag: "fefd238c13c0fdfb7d964c90fcc8a8cbbf953034"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43c4a8e963936a8064dbd2bd3c67b905
8508727c97127c98b886833af28b3470306216c2
070c29fe7c0a227029483d675eac863904ab6b291467acdf62167f4845699c21
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8652
x-amzn-requestid: 21c734f0-cd73-4691-812e-7cd3908f8f89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fRbH4HtPIAMFUGA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d07232-291e20fb41c53db7664d04b2;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 00:05:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: j2zDtHz3pZLHJKG3-PaITyUzHOQBEELzuDIt7sbB8X_B10OxG394tg==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 06:49:29 GMT
age: 28389
etag: "8508727c97127c98b886833af28b3470306216c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: f644ca78-a07a-43d1-96e4-95bcdecff7fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPGLfFtOIAMFp7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf83e2-202ca7160544acd24259bd5d;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:08:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xRwqrWS66l4qJfg2HnGphN1dbrIUod9XKW3zTk_-Km9AQRPyV2UqWg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 20:46:16 GMT
age: 64582
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 21:56:46 GMT
age: 60352
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.culture.cafe/images/chevron-right.svg
52.219.197.83200 OK 1.2 kB URL HTTP/1.1 www.culture.cafe/images/chevron-right.svg
IP 52.219.197.83:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash f8bfa1afc489bfd307f03caff670a2f2
f96f84655286b8bfda34fb0cb0396c12e38154ff
dd0c22ea8bb202b509efbe04582906944151cbc38822a70bdee5a952c7b14888
Analyzer Verdict Alert quad9 Sinkholed
GET /images/chevron-right.svg HTTP/1.1
Host: www.culture.cafe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culture.cafe/post/2017%e5%b9%b44%e6%9c%88%e5%bd%b0%e6%bf%b1%e7%a7%80%e5%82%b3%e4%b9%8b%e7%be%8e%e9%9f%b3%e6%a8%82%e9%a5%97%e5%ae%b4%e7%a6%8f%e7%88%be%e6%91%a9%e6%b2%99%e9%99%b6%e7%ac%9b%e6%a8%82%e5%9c%98/
HTTP/1.1 200 OK
x-amz-id-2: j5KmOdeCAkxD4ODJdpAQa2An2CQMVZmiTxoTCRbL8ND6/Nzhu2/RV1ys57THXtvkZo39NZpCj+Q=
x-amz-request-id: W5P0NGN9546FN6GP
Date: Sun, 29 Jan 2023 14:42:39 GMT
Last-Modified: Fri, 10 Nov 2017 14:57:13 GMT
ETag: "f8bfa1afc489bfd307f03caff670a2f2"
x-amz-storage-class: REDUCED_REDUNDANCY
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 1168
d-3979077227344827854.ampproject.net/2301112346000/nameframe.html
142.250.74.99200 OK 269 B URL HTTP/2 d-3979077227344827854.ampproject.net/2301112346000/nameframe.html
IP 142.250.74.99:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 139605a73229c192646553d8094cdf7e
7eccab4209782752a44728171231014ee31c20a4
bc67df5bb65d58bd69b249c94994812a46de682ba4d4f98982a76b20cab96abc
GET /2301112346000/nameframe.html HTTP/1.1
Host: d-3979077227344827854.ampproject.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.culture.cafe/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/html
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
content-length: 269
date: Sun, 29 Jan 2023 14:42:38 GMT
expires: Mon, 29 Jan 2024 14:42:38 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 12 Jan 2023 08:48:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ef589be52a3e55b643978f17949a73da
74545de6f144282252ff92c751f97cc835c80341
7bfa68c43e60a2627770163b5c1b96fbd7e4843984ad5ff6225c5490b8073b26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:42:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.json?domain=www.culture.cafe
216.58.211.2200 OK 83 B URL HTTP/2 adservice.google.com/adsid/integrator.json?domain=www.culture.cafe
IP 216.58.211.2:0
File type JSON data\012- , ASCII text, with no line terminators
Hash c4b81d82331aacbf8fcbb2df2a7408b8
be1e8c836d11cf804fe635492e692e78868a87ae
049507f7888e44d57759656fdd254c4a30b5a0f5af405dfa52523abc7cddccfd
GET /adsid/integrator.json?domain=www.culture.cafe HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.culture.cafe/
Origin: http://www.culture.cafe
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/json; charset=UTF-8
access-control-allow-origin: http://www.culture.cafe
access-control-allow-credentials: true
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 29 Jan 2023 14:42:38 GMT
server: cafe
content-length: 83
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ef589be52a3e55b643978f17949a73da
74545de6f144282252ff92c751f97cc835c80341
7bfa68c43e60a2627770163b5c1b96fbd7e4843984ad5ff6225c5490b8073b26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:42:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e9eba61fbe87bc53d60d0fdd1ba6adb4
8dbb3dfacfaad4ce0fd3a355790cb9b245e01e07
9c0233792f873315e75ce5396d1a210f2df665db23ab858a0724f66bbb4528e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:42:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ed8a8c45dceab588456b222e04775919
0242859712655caa3c3e9b936878c7c7874b7b5a
669f0691b8bf32a10fb219ce47ad69495e5cd2a11317b672aecca53f50b51de3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:42:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-8448725626130846&format=960x100&w=960&h=100&ptt=12&iu=7489533131&adk=371558443&output=html&bc=7&pv=2&wgl=1&asnt=0-933220258244051666&dff=Roboto%2C%20verdana%2C%20arial%2C%20sans-serif&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&ifi=1&pfx=0&adf=2925613881&nhd=0&adx=154&ady=257&oid=2&is_amp=5&_v=2301112346000&d_imp=1&c=5002265&ga_cid=amp-iVVeHmohP_5axc_uBuYczA&ga_hid=2265&dt=1675003366404&biw=1280&bih=939&u_aw=1280&u_ah=1002&u_cd=24&u_w=1280&u_h=1024&u_tz=0&u_his=1&vis=1&scr_x=0&scr_y=0&url=http%3A%2F%2Fwww.culture.cafe%2Fpost%2F2017%25E5%25B9%25B44%25E6%259C%2588%25E5%25BD%25B0%25E6%25BF%25B1%25E7%25A7%2580%25E5%2582%25B3%25E4%25B9%258B%25E7%25BE%258E%25E9%259F%25B3%25E6%25A8%2582%25E9%25A5%2597%25E5%25AE%25B4%25E7%25A6%258F%25E7%2588%25BE%25E6%2591%25A9%25E6%25B2%2599%25E9%2599%25B6%25E7%25AC%259B%25E6%25A8%2582%25E5%259C%2598%2F&loc=http%3A%2F%2Fwww.culture.cafe%2Fpost%2F2017%25e5%25b9%25b44%25e6%259c%2588%25e5%25bd%25b0%25e6%25bf%25b1%25e7%25a7%2580%25e5%2582%25b3%25e4%25b9%258b%25e7%25be%258e%25e9%259f%25b3%25e6%25a8%2582%25e9%25a5%2597%25e5%25ae%25b4%25e7%25a6%258f%25e7%2588%25be%25e6%2591%25a9%25e6%25b2%2599%25e9%2599%25b6%25e7%25ac%259b%25e6%25a8%2582%25e5%259c%2598%2F&bdt=763&dtd=160&__amp_source_origin=http%3A%2F%2Fwww.culture.cafe
142.250.74.66200 OK 46 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-8448725626130846&format=960x100&w=960&h=100&ptt=12&iu=7489533131&adk=371558443&output=html&bc=7&pv=2&wgl=1&asnt=0-933220258244051666&dff=Roboto%2C%20verdana%2C%20arial%2C%20sans-serif&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&ifi=1&pfx=0&adf=2925613881&nhd=0&adx=154&ady=257&oid=2&is_amp=5&_v=2301112346000&d_imp=1&c=5002265&ga_cid=amp-iVVeHmohP_5axc_uBuYczA&ga_hid=2265&dt=1675003366404&biw=1280&bih=939&u_aw=1280&u_ah=1002&u_cd=24&u_w=1280&u_h=1024&u_tz=0&u_his=1&vis=1&scr_x=0&scr_y=0&url=http%3A%2F%2Fwww.culture.cafe%2Fpost%2F2017%25E5%25B9%25B44%25E6%259C%2588%25E5%25BD%25B0%25E6%25BF%25B1%25E7%25A7%2580%25E5%2582%25B3%25E4%25B9%258B%25E7%25BE%258E%25E9%259F%25B3%25E6%25A8%2582%25E9%25A5%2597%25E5%25AE%25B4%25E7%25A6%258F%25E7%2588%25BE%25E6%2591%25A9%25E6%25B2%2599%25E9%2599%25B6%25E7%25AC%259B%25E6%25A8%2582%25E5%259C%2598%2F&loc=http%3A%2F%2Fwww.culture.cafe%2Fpost%2F2017%25e5%25b9%25b44%25e6%259c%2588%25e5%25bd%25b0%25e6%25bf%25b1%25e7%25a7%2580%25e5%2582%25b3%25e4%25b9%258b%25e7%25be%258e%25e9%259f%25b3%25e6%25a8%2582%25e9%25a5%2597%25e5%25ae%25b4%25e7%25a6%258f%25e7%2588%25be%25e6%2591%25a9%25e6%25b2%2599%25e9%2599%25b6%25e7%25ac%259b%25e6%25a8%2582%25e5%259c%2598%2F&bdt=763&dtd=160&__amp_source_origin=http%3A%2F%2Fwww.culture.cafe
IP 142.250.74.66:0
File type HTML document, ASCII text, with very long lines (603), with no line terminators
Hash 0c80c3a2604d656b7e461160bf5eba0f
d4f5c720a2b94f5f13b2e569035a7b14a513630d
470b81d27902c371ec202ef835ecf76bf54c8e222dab8b77eb8d2fd45652c955
GET /pagead/ads?client=ca-pub-8448725626130846&format=960x100&w=960&h=100&ptt=12&iu=7489533131&adk=371558443&output=html&bc=7&pv=2&wgl=1&asnt=0-933220258244051666&dff=Roboto%2C%20verdana%2C%20arial%2C%20sans-serif&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&ifi=1&pfx=0&adf=2925613881&nhd=0&adx=154&ady=257&oid=2&is_amp=5&_v=2301112346000&d_imp=1&c=5002265&ga_cid=amp-iVVeHmohP_5axc_uBuYczA&ga_hid=2265&dt=1675003366404&biw=1280&bih=939&u_aw=1280&u_ah=1002&u_cd=24&u_w=1280&u_h=1024&u_tz=0&u_his=1&vis=1&scr_x=0&scr_y=0&url=http%3A%2F%2Fwww.culture.cafe%2Fpost%2F2017%25E5%25B9%25B44%25E6%259C%2588%25E5%25BD%25B0%25E6%25BF%25B1%25E7%25A7%2580%25E5%2582%25B3%25E4%25B9%258B%25E7%25BE%258E%25E9%259F%25B3%25E6%25A8%2582%25E9%25A5%2597%25E5%25AE%25B4%25E7%25A6%258F%25E7%2588%25BE%25E6%2591%25A9%25E6%25B2%2599%25E9%2599%25B6%25E7%25AC%259B%25E6%25A8%2582%25E5%259C%2598%2F&loc=http%3A%2F%2Fwww.culture.cafe%2Fpost%2F2017%25e5%25b9%25b44%25e6%259c%2588%25e5%25bd%25b0%25e6%25bf%25b1%25e7%25a7%2580%25e5%2582%25b3%25e4%25b9%258b%25e7%25be%258e%25e9%259f%25b3%25e6%25a8%2582%25e9%25a5%2597%25e5%25ae%25b4%25e7%25a6%258f%25e7%2588%25be%25e6%2591%25a9%25e6%25b2%2599%25e9%2599%25b6%25e7%25ac%259b%25e6%25a8%2582%25e5%259c%2598%2F&bdt=763&dtd=160&__amp_source_origin=http%3A%2F%2Fwww.culture.cafe HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.culture.cafe/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Sun, 29 Jan 2023 14:42:38 GMT
server: cafe
content-length: 46
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 29-Jan-2023 14:57:38 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Sun, 29 Jan 2023 14:42:38 GMT
cache-control: private
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-8448725626130846&format=960x100&w=960&h=100&ptt=12&iu=7489533131&adk=1223521770&output=html&bc=7&pv=1&wgl=1&asnt=0-3616085001555596611&dff=Roboto%2C%20verdana%2C%20arial%2C%20sans-serif&prev_fmts=960x100&prev_slotnames=7489533131&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&ifi=2&pfx=0&adf=3777577208&nhd=0&adx=154&ady=1274&oid=2&is_amp=5&_v=2301112346000&d_imp=1&c=5002265&ga_cid=amp-iVVeHmohP_5axc_uBuYczA&ga_hid=2265&dt=1675003366406&biw=1280&bih=939&u_aw=1280&u_ah=1002&u_cd=24&u_w=1280&u_h=1024&u_tz=0&u_his=1&vis=1&scr_x=0&scr_y=0&url=http%3A%2F%2Fwww.culture.cafe%2Fpost%2F2017%25E5%25B9%25B44%25E6%259C%2588%25E5%25BD%25B0%25E6%25BF%25B1%25E7%25A7%2580%25E5%2582%25B3%25E4%25B9%258B%25E7%25BE%258E%25E9%259F%25B3%25E6%25A8%2582%25E9%25A5%2597%25E5%25AE%25B4%25E7%25A6%258F%25E7%2588%25BE%25E6%2591%25A9%25E6%25B2%2599%25E9%2599%25B6%25E7%25AC%259B%25E6%25A8%2582%25E5%259C%2598%2F&loc=http%3A%2F%2Fwww.culture.cafe%2Fpost%2F2017%25e5%25b9%25b44%25e6%259c%2588%25e5%25bd%25b0%25e6%25bf%25b1%25e7%25a7%2580%25e5%2582%25b3%25e4%25b9%258b%25e7%25be%258e%25e9%259f%25b3%25e6%25a8%2582%25e9%25a5%2597%25e5%25ae%25b4%25e7%25a6%258f%25e7%2588%25be%25e6%2591%25a9%25e6%25b2%2599%25e9%2599%25b6%25e7%25ac%259b%25e6%25a8%2582%25e5%259c%2598%2F&bdt=765&dtd=158&__amp_source_origin=http%3A%2F%2Fwww.culture.cafe
142.250.74.66200 OK 46 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-8448725626130846&format=960x100&w=960&h=100&ptt=12&iu=7489533131&adk=1223521770&output=html&bc=7&pv=1&wgl=1&asnt=0-3616085001555596611&dff=Roboto%2C%20verdana%2C%20arial%2C%20sans-serif&prev_fmts=960x100&prev_slotnames=7489533131&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&ifi=2&pfx=0&adf=3777577208&nhd=0&adx=154&ady=1274&oid=2&is_amp=5&_v=2301112346000&d_imp=1&c=5002265&ga_cid=amp-iVVeHmohP_5axc_uBuYczA&ga_hid=2265&dt=1675003366406&biw=1280&bih=939&u_aw=1280&u_ah=1002&u_cd=24&u_w=1280&u_h=1024&u_tz=0&u_his=1&vis=1&scr_x=0&scr_y=0&url=http%3A%2F%2Fwww.culture.cafe%2Fpost%2F2017%25E5%25B9%25B44%25E6%259C%2588%25E5%25BD%25B0%25E6%25BF%25B1%25E7%25A7%2580%25E5%2582%25B3%25E4%25B9%258B%25E7%25BE%258E%25E9%259F%25B3%25E6%25A8%2582%25E9%25A5%2597%25E5%25AE%25B4%25E7%25A6%258F%25E7%2588%25BE%25E6%2591%25A9%25E6%25B2%2599%25E9%2599%25B6%25E7%25AC%259B%25E6%25A8%2582%25E5%259C%2598%2F&loc=http%3A%2F%2Fwww.culture.cafe%2Fpost%2F2017%25e5%25b9%25b44%25e6%259c%2588%25e5%25bd%25b0%25e6%25bf%25b1%25e7%25a7%2580%25e5%2582%25b3%25e4%25b9%258b%25e7%25be%258e%25e9%259f%25b3%25e6%25a8%2582%25e9%25a5%2597%25e5%25ae%25b4%25e7%25a6%258f%25e7%2588%25be%25e6%2591%25a9%25e6%25b2%2599%25e9%2599%25b6%25e7%25ac%259b%25e6%25a8%2582%25e5%259c%2598%2F&bdt=765&dtd=158&__amp_source_origin=http%3A%2F%2Fwww.culture.cafe
IP 142.250.74.66:0
File type HTML document, ASCII text, with very long lines (603), with no line terminators
Hash 0c80c3a2604d656b7e461160bf5eba0f
d4f5c720a2b94f5f13b2e569035a7b14a513630d
470b81d27902c371ec202ef835ecf76bf54c8e222dab8b77eb8d2fd45652c955
GET /pagead/ads?client=ca-pub-8448725626130846&format=960x100&w=960&h=100&ptt=12&iu=7489533131&adk=1223521770&output=html&bc=7&pv=1&wgl=1&asnt=0-3616085001555596611&dff=Roboto%2C%20verdana%2C%20arial%2C%20sans-serif&prev_fmts=960x100&prev_slotnames=7489533131&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&ifi=2&pfx=0&adf=3777577208&nhd=0&adx=154&ady=1274&oid=2&is_amp=5&_v=2301112346000&d_imp=1&c=5002265&ga_cid=amp-iVVeHmohP_5axc_uBuYczA&ga_hid=2265&dt=1675003366406&biw=1280&bih=939&u_aw=1280&u_ah=1002&u_cd=24&u_w=1280&u_h=1024&u_tz=0&u_his=1&vis=1&scr_x=0&scr_y=0&url=http%3A%2F%2Fwww.culture.cafe%2Fpost%2F2017%25E5%25B9%25B44%25E6%259C%2588%25E5%25BD%25B0%25E6%25BF%25B1%25E7%25A7%2580%25E5%2582%25B3%25E4%25B9%258B%25E7%25BE%258E%25E9%259F%25B3%25E6%25A8%2582%25E9%25A5%2597%25E5%25AE%25B4%25E7%25A6%258F%25E7%2588%25BE%25E6%2591%25A9%25E6%25B2%2599%25E9%2599%25B6%25E7%25AC%259B%25E6%25A8%2582%25E5%259C%2598%2F&loc=http%3A%2F%2Fwww.culture.cafe%2Fpost%2F2017%25e5%25b9%25b44%25e6%259c%2588%25e5%25bd%25b0%25e6%25bf%25b1%25e7%25a7%2580%25e5%2582%25b3%25e4%25b9%258b%25e7%25be%258e%25e9%259f%25b3%25e6%25a8%2582%25e9%25a5%2597%25e5%25ae%25b4%25e7%25a6%258f%25e7%2588%25be%25e6%2591%25a9%25e6%25b2%2599%25e9%2599%25b6%25e7%25ac%259b%25e6%25a8%2582%25e5%259c%2598%2F&bdt=765&dtd=158&__amp_source_origin=http%3A%2F%2Fwww.culture.cafe HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.culture.cafe/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Sun, 29 Jan 2023 14:42:38 GMT
server: cafe
content-length: 46
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 29-Jan-2023 14:57:38 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Sun, 29 Jan 2023 14:42:38 GMT
cache-control: private
X-Firefox-Spdy: h2
www.culture.cafe/favicon.ico
52.219.197.83404 Not Found 8.8 kB URL HTTP/1.1 www.culture.cafe/favicon.ico
IP 52.219.197.83:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (38976)
Hash ac29a1c1add23bc30ea8d09fb02d2699
0a8d4b7b0ddbcb916bb6c534407270463ba896c3
85c92c20e7659f9b54cf5e7bd7bc4518bda1445e37bfc5ee6b7aa7d842eb98b7
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: www.culture.cafe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.culture.cafe/post/2017%e5%b9%b44%e6%9c%88%e5%bd%b0%e6%bf%b1%e7%a7%80%e5%82%b3%e4%b9%8b%e7%be%8e%e9%9f%b3%e6%a8%82%e9%a5%97%e5%ae%b4%e7%a6%8f%e7%88%be%e6%91%a9%e6%b2%99%e9%99%b6%e7%ac%9b%e6%a8%82%e5%9c%98/
HTTP/1.1 404 Not Found
Content-Encoding: gzip
Last-Modified: Fri, 10 Nov 2017 14:56:19 GMT
ETag: "ac29a1c1add23bc30ea8d09fb02d2699"
x-amz-storage-class: REDUCED_REDUNDANCY
x-amz-error-code: NoSuchKey
x-amz-error-message: The specified key does not exist.
x-amz-error-detail-Key: favicon.ico
x-amz-request-id: W5P9PS0JD3Q42SRH
x-amz-id-2: VTJ4vp+/Fb0Jh3m6FLMV4XgqDaEiB6mzXT58v6B7Kwp0EUlFmwaKWP07C9m4uLKN8z3ola3O2I8=
Content-Type: text/html; charset=utf-8
Date: Sun, 29 Jan 2023 14:42:38 GMT
Server: AmazonS3
Content-Length: 8848
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ed8a8c45dceab588456b222e04775919
0242859712655caa3c3e9b936878c7c7874b7b5a
669f0691b8bf32a10fb219ce47ad69495e5cd2a11317b672aecca53f50b51de3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:42:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bab8a4c1e6bb2e6c9cc00222eef1235d
1a5dd108e9f9aaf33bc048b0097a9f510d295cad
fd182297a143655a9142e3ee5bbafefd76ca974094f43fb695611f6876f3ab63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:42:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/r/collect?v=1&_v=a1&ds=AMP&aip&_s=1&dt=2017%E5%B9%B44%E6%9C%88%E3%80%90%E5%BD%B0%E6%BF%B1%E7%A7%80%E5%82%B3%E4%B9%8B%E7%BE%8E%E9%9F%B3%E6%A8%82%E9%A5%97%E5%AE%B4%E3%80%91%E7%A6%8F%E7%88%BE%E6%91%A9%E6%B2%99%E9%99%B6%E7%AC%9B%E6%A8%82%E5%9C%98&sr=1280x1024&_utmht=1675003366497&cid=amp-iVVeHmohP_5axc_uBuYczA&tid=UA-5959305-19&dl=http%3A%2F%2Fwww.culture.cafe%2Fpost%2F2017%25e5%25b9%25b44%25e6%259c%2588%25e5%25bd%25b0%25e6%25bf%25b1%25e7%25a7%2580%25e5%2582%25b3%25e4%25b9%258b%25e7%25be%258e%25e9%259f%25b3%25e6%25a8%2582%25e9%25a5%2597%25e5%25ae%25b4%25e7%25a6%258f%25e7%2588%25be%25e6%2591%25a9%25e6%25b2%2599%25e9%2599%25b6%25e7%25ac%259b%25e6%25a8%2582%25e5%259c%2598%2F&dr=&sd=24&ul=en-us&de=UTF-8&t=pageview&jid=0.9933732990723647&_r=1&a=2265&z=0.5333787584163677
142.250.74.110200 OK 35 B URL HTTP/2 www.google-analytics.com/r/collect?v=1&_v=a1&ds=AMP&aip&_s=1&dt=2017%E5%B9%B44%E6%9C%88%E3%80%90%E5%BD%B0%E6%BF%B1%E7%A7%80%E5%82%B3%E4%B9%8B%E7%BE%8E%E9%9F%B3%E6%A8%82%E9%A5%97%E5%AE%B4%E3%80%91%E7%A6%8F%E7%88%BE%E6%91%A9%E6%B2%99%E9%99%B6%E7%AC%9B%E6%A8%82%E5%9C%98&sr=1280x1024&_utmht=1675003366497&cid=amp-iVVeHmohP_5axc_uBuYczA&tid=UA-5959305-19&dl=http%3A%2F%2Fwww.culture.cafe%2Fpost%2F2017%25e5%25b9%25b44%25e6%259c%2588%25e5%25bd%25b0%25e6%25bf%25b1%25e7%25a7%2580%25e5%2582%25b3%25e4%25b9%258b%25e7%25be%258e%25e9%259f%25b3%25e6%25a8%2582%25e9%25a5%2597%25e5%25ae%25b4%25e7%25a6%258f%25e7%2588%25be%25e6%2591%25a9%25e6%25b2%2599%25e9%2599%25b6%25e7%25ac%259b%25e6%25a8%2582%25e5%259c%2598%2F&dr=&sd=24&ul=en-us&de=UTF-8&t=pageview&jid=0.9933732990723647&_r=1&a=2265&z=0.5333787584163677
IP 142.250.74.110:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
POST /r/collect?v=1&_v=a1&ds=AMP&aip&_s=1&dt=2017%E5%B9%B44%E6%9C%88%E3%80%90%E5%BD%B0%E6%BF%B1%E7%A7%80%E5%82%B3%E4%B9%8B%E7%BE%8E%E9%9F%B3%E6%A8%82%E9%A5%97%E5%AE%B4%E3%80%91%E7%A6%8F%E7%88%BE%E6%91%A9%E6%B2%99%E9%99%B6%E7%AC%9B%E6%A8%82%E5%9C%98&sr=1280x1024&_utmht=1675003366497&cid=amp-iVVeHmohP_5axc_uBuYczA&tid=UA-5959305-19&dl=http%3A%2F%2Fwww.culture.cafe%2Fpost%2F2017%25e5%25b9%25b44%25e6%259c%2588%25e5%25bd%25b0%25e6%25bf%25b1%25e7%25a7%2580%25e5%2582%25b3%25e4%25b9%258b%25e7%25be%258e%25e9%259f%25b3%25e6%25a8%2582%25e9%25a5%2597%25e5%25ae%25b4%25e7%25a6%258f%25e7%2588%25be%25e6%2591%25a9%25e6%25b2%2599%25e9%2599%25b6%25e7%25ac%259b%25e6%25a8%2582%25e5%259c%2598%2F&dr=&sd=24&ul=en-us&de=UTF-8&t=pageview&jid=0.9933732990723647&_r=1&a=2265&z=0.5333787584163677 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: http://www.culture.cafe
Connection: keep-alive
Referer: http://www.culture.cafe/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://www.culture.cafe
date: Sun, 29 Jan 2023 14:42:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
access-control-allow-credentials: true
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bab8a4c1e6bb2e6c9cc00222eef1235d
1a5dd108e9f9aaf33bc048b0097a9f510d295cad
fd182297a143655a9142e3ee5bbafefd76ca974094f43fb695611f6876f3ab63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:42:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Roboto:100,200,300,400,500,700
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:100,200,300,400,500,700
IP 142.250.74.106:0
GET /css?family=Roboto:100,200,300,400,500,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.culture.cafe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 29 Jan 2023 14:42:38 GMT
date: Sun, 29 Jan 2023 14:42:38 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2