Report - ggle.io/akHHkU1

Report Overview

Submitted URL
ggle.io/akHHkU1
IP
199.36.158.100
ASN
#54113 FASTLY
Submitted
2023-01-29 15:39:15
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
32

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.9 kB	34.160.144.191
region1.google-analytics.com	unknown	2022-03-17T12:26:33Z	2023-03-13T05:09:18Z	672 B	438 B	216.239.32.36
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.4 kB	6.2 kB	95.101.11.115
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	682 B	1.2 kB	93.184.220.29
www.gstatic.com	unknown	2016-07-26T11:37:06Z	2023-03-13T07:57:11Z	1.9 kB	214 kB	216.58.211.3
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	52.25.78.204
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-13T07:36:03Z	364 B	21 kB	142.250.74.110
firebase.googleapis.com	4897	2018-10-19T11:09:59Z	2023-03-13T07:32:25Z	1.1 kB	1.2 kB	216.58.211.10
dsnetx.web.app	460964	2019-11-04T11:15:25Z	2023-03-09T09:14:09Z	483 B	1.2 kB	199.36.158.100
cdnjs.cloudflare.com	235	2015-04-17T22:46:33Z	2023-03-13T05:09:21Z	406 B	28 kB	104.17.25.14
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	5.9 kB	12 kB	142.250.74.131
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	371 B	38 kB	172.217.21.168
firebaseinstallations.googleapis.com	529	2019-04-15T06:11:07Z	2023-03-13T08:33:06Z	1.1 kB	1.5 kB	216.58.211.10
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-13T08:02:41Z	589 B	586 B	173.194.221.157
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-13T06:26:15Z	508 B	578 B	142.250.74.67
getbootstrap.com	26931	2015-09-02T12:45:06Z	2023-03-13T05:37:09Z	405 B	861 B	104.22.59.100
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	2.7 kB	46 kB	34.120.237.76
www.google.com	7	2015-05-10T13:11:19Z	2023-03-13T06:40:43Z	509 B	578 B	142.250.74.164
netdna.bootstrapcdn.com	3413	2012-09-07T17:11:00Z	2023-03-13T05:50:43Z	386 B	966 B	104.18.10.207
ggle.io	unknown	2020-06-26T13:14:31Z	2023-03-11T21:50:10Z	6.2 kB	77 kB	199.36.158.100

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-01-29	medium	ggle.io	Sinkholed
2023-01-29	medium	ggle.io	Sinkholed
2023-01-29	medium	ggle.io	Sinkholed
2023-01-29	medium	ggle.io	Sinkholed
2023-01-29	medium	ggle.io	Sinkholed
2023-01-29	medium	ggle.io	Sinkholed
2023-01-29	medium	ggle.io	Sinkholed
2023-01-29	medium	ggle.io	Sinkholed
2023-01-29	medium	ggle.io	Sinkholed
2023-01-29	medium	ggle.io	Sinkholed
2023-01-29	medium	ggle.io	Sinkholed
2023-01-29	medium	ggle.io	Sinkholed
2023-01-29	medium	ggle.io	Sinkholed
2023-01-29	medium	ggle.io	Sinkholed
2023-01-29	medium	ggle.io	Sinkholed
2023-01-29	medium	ggle.io	Sinkholed

ThreatFox

No alerts detected

JavaScript (21)

	URL	Size	First Seen	Last Seen
	ggle.io/jsl/login.js?d=11261249	6.6 kB	2023-03-10	2023-03-13
Pretty URL ggle.io/jsl/login.js?d=11261249 IP 199.36.158.100 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 13:16:20 Last Seen2023-03-13 11:21:30 Times Seen1 Hash 661461d9409f85deac9ff64d633ed43e 0b54ac643199717be1974e91fc513f9afc7cce2b ac00c04e3f92ba0ba468cd3fd8aeec4861f7470931001bd8dd44e4e6c3f5d6cb Loading...

	www.gstatic.com/firebasejs/8.1.1/firebase-app.js	20 kB	2023-03-10	2024-04-16
Pretty URL www.gstatic.com/firebasejs/8.1.1/firebase-app.js IP 216.58.211.3 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:06:18 Last Seen2024-04-16 09:41:51 Times Seen28 Hash 611e8024fe74bfddbdf9e863e540a7e8 dc5fbdeb72f69ff736911cdff1b000d4fa435c7f 75e44068da4d508132edf26d1ff802128910a826b8fe6460146a0af0ce64d18c Loading...

	ggle.io/jsl/firebase-config.js	1.1 kB	2023-03-10	2023-03-13
Pretty URL ggle.io/jsl/firebase-config.js IP 199.36.158.100 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 13:16:20 Last Seen2023-03-13 11:21:30 Times Seen1 Hash 63ac56643fc557daed4ff092b24e7c02 c659ece24f21031dd8bc74596e86d90cce74825d e33e8026f659bc8e9fc0052c2113ec6c7f34c7d203f64dfe292822bb67b2fa7b Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	www.googletagmanager.com/gtag/js?id=G-5H9RRN423L&l=dataLayer&cx=c	182 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=G-5H9RRN423L&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:21:30 Last Seen2023-03-13 11:21:30 Times Seen1 Hash c084a9f4a9877f6642521d67ce4458b2 1b00a5e33c6ba8845a3a3f2e42efb385887a35a0 35d65fd907e0c85c0567dfadaa2d841c44e580cd030011d810b9bf492a6f1c1c Loading...

	netdna.bootstrapcdn.com/bootstrap/4.4.1/js/bootstrap.min.js	60 kB	2023-03-07	2024-04-19
Pretty URL netdna.bootstrapcdn.com/bootstrap/4.4.1/js/bootstrap.min.js IP 104.18.10.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:23 Last Seen2024-04-19 02:10:17 Times Seen7907 Hash 61f338f870fcd0ff46362ef109d28533 b3c116c65e6f053aaab45e5619a78ec00271a50f 5aa53525abc5c5200c70b3f6588388f86076cd699284c23cda64e92c372a1548 Loading...

	www.gstatic.com/firebasejs/8.1.1/firebase-analytics.js	36 kB	2023-03-07	2024-04-16
Pretty URL www.gstatic.com/firebasejs/8.1.1/firebase-analytics.js IP 216.58.211.3 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:48 Last Seen2024-04-16 09:41:51 Times Seen62 Hash 9fdc25d8602c39b1a3f73aa6ddf61c09 b3072db5b03b6aeac80390375248d59f468208f7 2148022def76b9fb894dda29d0fe31651e0492d59a87b3de6fad4ec69ae0a9be Loading...

	ggle.io/jsl/crypt.js?d=11261249	2.5 kB	2023-03-10	2023-07-13
Pretty URL ggle.io/jsl/crypt.js?d=11261249 IP 199.36.158.100 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:43:33 Last Seen2023-07-13 17:52:49 Times Seen4 Hash 0d5bb5d64547351e368fc9d54fff4bdb cddb38e3a7377e2fcc94b4160f64afd909bf5faf 98eddefb8ac7ba5f4c49c19927481e5f3d3ea34b0ef886b79dc4c192e4c7e7d9 Loading...

	ggle.io/jsl/invreport.js?d=11261249	2.2 kB	2023-03-10	2023-03-13
Pretty URL ggle.io/jsl/invreport.js?d=11261249 IP 199.36.158.100 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 13:16:20 Last Seen2023-03-13 11:21:30 Times Seen1 Hash ac75090bde7573eba893c3dab30cc67e 0402bbf9fb16454703dc80e8e25c0dad05d2e67d 56641597437f2b582b162a8f78a72148af86dfcc57fc130d9baf57359203a7b4 Loading...

	ggle.io/akHHkU1	653 B	2023-03-13	2023-03-13
Pretty URL ggle.io/akHHkU1 IP 199.36.158.100 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:21:30 Last Seen2023-03-13 11:21:30 Times Seen1 Hash 3d1e3faa12812c1d5fe59edbbd05a656 d393ad10e91bc8f509cac4e82420793bda6902c4 3d071d65ea998c3061aafa173db75d680970905c6f4d7a7ef9215538f47f92ad Loading...

	ggle.io/jsl/common.js?d=11261249	20 kB	2023-03-10	2023-03-13
Pretty URL ggle.io/jsl/common.js?d=11261249 IP 199.36.158.100 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 13:16:20 Last Seen2023-03-13 11:21:30 Times Seen1 Hash f6fcd4745ed9eb5f30b5617584d35788 388452002a0d7011bafa694b520670f6b1451edf 978190da3a07d223cc9b75ec47b95e5f1b05e90210e3332144e3199bd1bd24ad Loading...

	getbootstrap.com/2.3.2/assets/js/bootstrap-transition.js	1.8 kB	2023-03-07	2023-07-13
Pretty URL getbootstrap.com/2.3.2/assets/js/bootstrap-transition.js IP 104.22.59.100 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:40:54 Last Seen2023-07-13 17:52:49 Times Seen4 Hash 7e5b5a706c5d930ce54098c9e317ff86 499cf864f10b67a1db8128dbddbc77e4c61adb26 8ec2306340e07f7fa40f5fd79cb8519a31103e4953c17c99e061d3de509062eb Loading...

	www.googletagmanager.com/gtag/js?l=dataLayer	96 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?l=dataLayer IP 172.217.21.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:14:21 Last Seen2023-03-13 11:28:54 Times Seen1 Hash c4b7ffb18337d70d0e3316eb12893b40 b935b98110a555f802d29e0ed99aa867e4eb4a13 e2ed98dcae67072e3710c8b85ce69bb343295fb1acc624bec07a1b2cbebcd185 Loading...

	ggle.io/jsl/db2.js?d=11261249	3.2 kB	2023-03-10	2023-03-13
Pretty URL ggle.io/jsl/db2.js?d=11261249 IP 199.36.158.100 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 13:16:20 Last Seen2023-03-13 11:21:30 Times Seen1 Hash 64da6ae99bb83a1ff30aa8ddf89136ee 3c8cec5013ba84f4aed4969dc6e784a700cc264e 0141f8c7b035ceab71154fe0da30eeb933549cc9a823c0e33788fb3aefa526ea Loading...

	ggle.io/jsl/sls.js?d=11261249	2.8 kB	2023-03-10	2023-03-13
Pretty URL ggle.io/jsl/sls.js?d=11261249 IP 199.36.158.100 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 13:16:20 Last Seen2023-03-13 11:21:30 Times Seen1 Hash 817559e88e9b69a6104828c03efea17a 5fb4d6431533c6be2eb0122e4ac127df38d02fa6 348d82d147f99aba78cce588575320a914f3fcb0e7bbcbe46d681eaaf2f09f2c Loading...

	ggle.io/jsl/tracking.js?d=11261249	4.5 kB	2023-03-10	2023-03-13
Pretty URL ggle.io/jsl/tracking.js?d=11261249 IP 199.36.158.100 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 13:16:20 Last Seen2023-03-13 11:21:30 Times Seen1 Hash bf9dc797f3333e9976d16bae04f96e6f b30ff04eb93e3b2b53b4326206a8dad3c4788fd0 6a70405aa3582b4fa482834f05c6041d4516008ff400f6c3a7cb9a7472d36933 Loading...

	ggle.io/jsl/notify.min.js	14 kB	2023-03-10	2023-07-13
Pretty URL ggle.io/jsl/notify.min.js IP 199.36.158.100 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:43:33 Last Seen2023-07-13 17:52:49 Times Seen3 Hash dbe5aa06cd24f9a24c842d3f2b5882f0 03c617421b787efc658ac957da0247a7d97e081c b5ae55c17556dc26f303950aff9e61df48cd53f80640f210f7478e9bd4a16070 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.2.1/jquery.min.js	87 kB	2023-03-07	2024-04-19
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.2.1/jquery.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 15:08:30 Times Seen60881 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

	ggle.io/jsl/notifxapps.js?d=11261249	7.9 kB	2023-03-10	2023-03-13
Pretty URL ggle.io/jsl/notifxapps.js?d=11261249 IP 199.36.158.100 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 13:16:20 Last Seen2023-03-13 11:21:30 Times Seen1 Hash 9dc8ac68f7a2d45704b0bbe215f167d5 8dbc184c3815cd234e6505b21651a5872b0eb9e1 4092816e53083dd413dbaf395cc06642f1eae3d2599810116cb5f6f3f0bce64d Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 15:11:19 Times Seen36961110 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.gstatic.com/firebasejs/8.1.1/firebase-auth.js	176 kB	2023-03-10	2023-08-24
Pretty URL www.gstatic.com/firebasejs/8.1.1/firebase-auth.js IP 216.58.211.3 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 12:06:18 Last Seen2023-08-24 16:50:48 Times Seen21 Hash 2929774e10b12e1b42c434fd97aacfd1 ad030c60c3f3ad270038a067d7dde2aec37329f2 fb35c70938a6c57c2daa01ecdf52611b0617bfaa915d99af3cac0cb9ddb5687c Loading...

HTTP Transactions (71)

URL IP Response Size

ggle.io/akHHkU1

199.36.158.100

301 Moved Permanently

0 B

URL HTTP/1.1
ggle.io/akHHkU1
IP
199.36.158.100:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /akHHkU1 HTTP/1.1
Host: ggle.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Server: Varnish
Retry-After: 0
Location: https://ggle.io/akHHkU1
Accept-Ranges: bytes
Date: Sun, 29 Jan 2023 15:39:04 GMT
X-Served-By: cache-bma1634-BMA
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1675006744.233016,VS0,VE0
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5eb7c9bc996a0ff420e58af45526f053
8c2614832b8efe1c9da0bbd465d6f3f172d95a9e
c085cf277dd0429fe15e4a4bce5595636e9f2204d5a8e77220f8bf88adf4068f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C085CF277DD0429FE15E4A4BCE5595636E9F2204D5A8E77220F8BF88ADF4068F"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15307
Expires: Sun, 29 Jan 2023 19:54:11 GMT
Date: Sun, 29 Jan 2023 15:39:04 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3eb88dea4fe00db1182370e72683c3ab
ca520abf1e91bfd2aef40c6a1270a911071e8922
d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17534
Expires: Sun, 29 Jan 2023 20:31:18 GMT
Date: Sun, 29 Jan 2023 15:39:04 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 29 Jan 2023 14:43:08 GMT
content-type: application/json
age: 3356
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3121
Expires: Sun, 29 Jan 2023 16:31:05 GMT
Date: Sun, 29 Jan 2023 15:39:04 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: LLriAmC+q4GLeaIpcmATrnm2e+TCGSmpm9Dey21uTo/JMCqdJnuKanxMEjfRZR+da8+wqu+twyrRsfCHBTJT/A==
x-amz-request-id: P3N38YMTCPJRTE60
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 29 Jan 2023 15:21:26 GMT
age: 1058
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 15:39:04 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 29 Jan 2023 14:41:41 GMT
age: 3444
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16126
Expires: Sun, 29 Jan 2023 20:07:51 GMT
Date: Sun, 29 Jan 2023 15:39:05 GMT
Connection: keep-alive

ggle.io/jsl/crypt.js?d=11261249

199.36.158.100

200 OK

697 B

URL HTTP/2
ggle.io/jsl/crypt.js?d=11261249
IP
199.36.158.100:0
ASN
#54113 FASTLY

File type
ASCII text, with CRLF line terminators
Size
697 B (697 bytes)
Hash
df523208e18cdb4fadc3914fbc81f13e
57ba38c9b9011617a87d1e209dda70c68c2a24ce
a385479b098214440ebef29ffb35fef376a290a036f7b41a2c6b8696a67a05f7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /jsl/crypt.js?d=11261249 HTTP/1.1
Host: ggle.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ggle.io/akHHkU1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: max-age=3500
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "a715cf4e6923d23f94a14f85274199cf8c8490e4571c78493a024aa724e756d1-br"
last-modified: Sat, 22 Oct 2022 05:28:55 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:39:05 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675006745.377017,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 697
X-Firefox-Spdy: h2

ggle.io/jsl/common.js?d=11261249

199.36.158.100

200 OK

6.8 kB

URL HTTP/2
ggle.io/jsl/common.js?d=11261249
IP
199.36.158.100:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (20254), with no line terminators
Size
6.8 kB (6769 bytes)
Hash
9f1003bfd7ca3ff0812f789469167a7f
0d7ec890957a928eaf2353897802490ab7eb46a8
61049982e59167e1c802891dc5dc8c4939275b27c413c407c9b0ed0e843a23d6

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /jsl/common.js?d=11261249 HTTP/1.1
Host: ggle.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ggle.io/akHHkU1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: max-age=3500
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "be6d3f48d47ba510f57356e0da409a9a6a2b62b2d51ae446e72c416b91e0fdda-br"
last-modified: Sat, 22 Oct 2022 05:28:55 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:39:05 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675006745.377549,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 6769
X-Firefox-Spdy: h2

ggle.io/jsl/sls.js?d=11261249

199.36.158.100

200 OK

984 B

URL HTTP/2
ggle.io/jsl/sls.js?d=11261249
IP
199.36.158.100:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (2815), with no line terminators
Size
984 B (984 bytes)
Hash
4c0744f1e5277996516c0cbe9f078862
3bd68069efcefcc5521a75e4bc6317adec9c919c
288606ac8f899e47a2a5c586ef50e742d0d41c478f3ec1d11df7387feb13049e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /jsl/sls.js?d=11261249 HTTP/1.1
Host: ggle.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ggle.io/akHHkU1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: max-age=3500
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "227aa35ab1f5668246429b4412af9f6ca0dd79ec4484949fa2152b02b877ea1f-br"
last-modified: Sat, 22 Oct 2022 05:28:55 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:39:05 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675006745.377350,VS0,VE2
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 984
X-Firefox-Spdy: h2

ggle.io/css/home.css?d=11261249

199.36.158.100

200 OK

536 B

URL HTTP/2
ggle.io/css/home.css?d=11261249
IP
199.36.158.100:0
ASN
#54113 FASTLY

File type
ASCII text
Size
536 B (536 bytes)
Hash
940b2c5a957d6513973e787f61714540
e08769ceb05f766d49468a66d0cc23d8075768a7
01c79224db5c178a5ac2b5e77d12b6af8d8f95fb1bc8486e7f608eec9e6f942f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/home.css?d=11261249 HTTP/1.1
Host: ggle.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ggle.io/akHHkU1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: max-age=3500
content-encoding: br
content-type: text/css; charset=utf-8
etag: "33b85a09e70e455f6be02c86a54ffbbdcae4aeb4d567dbab45cea6dfd4b1e9a8-br"
last-modified: Sat, 22 Oct 2022 05:28:55 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:39:05 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675006745.382110,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 536
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1d4/0EpYlABb7nE

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1d4/0EpYlABb7nE
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0d4d6adc7fd50e983d48b53a3805bdbf
5b8f942a3d11d9aaef3c4cbbf6ad879f52927f05
4e8443f0d444e530fc7531b14ca13be3fb4a1e20096d0d8356b510bb57239969

HTTP Headers

POST /s/gts1d4/0EpYlABb7nE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:39:05 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ggle.io/jsl/tracking.js?d=11261249

199.36.158.100

200 OK

1.7 kB

URL HTTP/2
ggle.io/jsl/tracking.js?d=11261249
IP
199.36.158.100:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (4533), with no line terminators
Size
1.7 kB (1684 bytes)
Hash
fd413779f281e4b39ad34619f92eef96
72d9e4d9b0070452bf7e63bae9ed521fe46fc30e
c703b0c1856954d3bf25d5fe214b0f4307ac6ace87e249aa173e3fd668d9b9ae

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /jsl/tracking.js?d=11261249 HTTP/1.1
Host: ggle.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ggle.io/akHHkU1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: max-age=3500
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "e6c527006d972bcdd124b53db1e7e573eefa93961d6cc575a2136f3240fac9ff-br"
last-modified: Sat, 22 Oct 2022 05:28:55 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:39:05 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675006745.381555,VS0,VE2
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1684
X-Firefox-Spdy: h2

ggle.io/jsl/login.js?d=11261249

199.36.158.100

200 OK

2.3 kB

URL HTTP/2
ggle.io/jsl/login.js?d=11261249
IP
199.36.158.100:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (6617), with no line terminators
Size
2.3 kB (2337 bytes)
Hash
947b5151f7895ca479ebbd049d4342dc
9eeae0623a982df5f200efe4a2df07e2ccb3f5b3
37c75ad0b9741b174e205808f7f705823ff4b5bc5136090debf99ec33761054d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /jsl/login.js?d=11261249 HTTP/1.1
Host: ggle.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ggle.io/akHHkU1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: max-age=3500
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "3b001b838e626f93208a4ff230c9e3950057201e1210c48a23afcdada0873d54-br"
last-modified: Sat, 22 Oct 2022 05:28:55 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:39:05 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675006745.382444,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2337
X-Firefox-Spdy: h2

ggle.io/jsl/notify.min.js

199.36.158.100

200 OK

6.6 kB

URL HTTP/2
ggle.io/jsl/notify.min.js
IP
199.36.158.100:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (13780)
Size
6.6 kB (6638 bytes)
Hash
5f5c4bb0f3b416051559a3740d0745f8
73deb269a520af6eda7f4ac4fd366761421734ae
7132ebf22e134edc34d943ea5d2704e8c51e48d107c708889b2406c07a804685

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /jsl/notify.min.js HTTP/1.1
Host: ggle.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ggle.io/akHHkU1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: max-age=3500
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "9ac0d9de4b141a0ee19363580e37109cbe2528d779ad88b7ee733ac9149a2b94-br"
last-modified: Sat, 22 Oct 2022 05:28:55 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:39:05 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675006745.386166,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 6638
X-Firefox-Spdy: h2

ggle.io/jsl/invreport.js?d=11261249

199.36.158.100

200 OK

983 B

URL HTTP/2
ggle.io/jsl/invreport.js?d=11261249
IP
199.36.158.100:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (2220), with no line terminators
Size
983 B (983 bytes)
Hash
cdd0217ca3500cf66093a60505be3a78
08570c3d3f886d5f1f0ad208494cac0d5fd7c8ba
edffc5dd616327a382e535b48ffac7a9af51318524d1f61aae048cca4f4759a6

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /jsl/invreport.js?d=11261249 HTTP/1.1
Host: ggle.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ggle.io/akHHkU1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: max-age=3500
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "b23d61ab366cacdad2f59728c794fcf7e5b4fad6adf31a7ea484d52f9933cd7f-br"
last-modified: Sat, 22 Oct 2022 05:28:55 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:39:05 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675006745.387038,VS0,VE2
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 983
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery/3.2.1/jquery.min.js

104.17.25.14

200 OK

27 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/3.2.1/jquery.min.js
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (32058)
Size
27 kB (27277 bytes)
Hash
b51f9d778be466703e73aceee13d836d
cc5cd9dd2b48712dcf90f14a1ff19d729c43e378
f1e36d8f99614eef048fe3cb4275f3234536bff3e3b1b8f763f14a8a0cadab45

HTTP Headers

GET /ajax/libs/jquery/3.2.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ggle.io
Connection: keep-alive
Referer: https://ggle.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:39:05 GMT
content-type: application/javascript; charset=utf-8
content-length: 27277
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15283"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 233780
expires: Fri, 19 Jan 2024 15:39:05 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PUtHiyy9h%2BNKadEHcq2L5oK9y4IdfvBFcmtITYNb6D4UurqXJjmtpK%2FsIUkyk0mdOwjv9Rn9u%2BG1LhqTzN0NIaYNXLmhaPp%2B7iixF01umTUVJZ5dDv1xP2bk1Km04WWpK7EFUYsB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 79130efed9830b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ggle.io/jsl/db2.js?d=11261249

199.36.158.100

200 OK

1.0 kB

URL HTTP/2
ggle.io/jsl/db2.js?d=11261249
IP
199.36.158.100:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (3177), with no line terminators
Size
1.0 kB (1035 bytes)
Hash
172bb867f3aaec508f890c5df2040ac4
4e715fbf8b449519ae01ebd44e19b12380b7e79b
c078bdafc4c5290d538dc6bc516ce092def49bf7c879ef7709f8f977e913f443

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /jsl/db2.js?d=11261249 HTTP/1.1
Host: ggle.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ggle.io/akHHkU1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: max-age=3500
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "e7a76f6f1bff796fb18466ac40e4d8de5215f48edc5a8032bafdcf93ee75cf01-br"
last-modified: Sat, 22 Oct 2022 05:28:55 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:39:05 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675006745.374459,VS0,VE19
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1035
X-Firefox-Spdy: h2

ggle.io/css/common.css?d=11261249

199.36.158.100

200 OK

997 B

URL HTTP/2
ggle.io/css/common.css?d=11261249
IP
199.36.158.100:0
ASN
#54113 FASTLY

File type
ASCII text
Size
997 B (997 bytes)
Hash
2ef7db8b9dedf26dfc14907a9286f127
37827edabeac8c5a30ddd9d5898d706265b8dc94
4371d5ba1d2e3bd859ad57e030b533c4a18c0b1fc2a206fec83cbd864ca5f5f8

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /css/common.css?d=11261249 HTTP/1.1
Host: ggle.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ggle.io/akHHkU1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: max-age=3500
content-encoding: br
content-type: text/css; charset=utf-8
etag: "41070b51582df30b4ddc10997e08984660f33557aa095c8b705688786274e684-br"
last-modified: Sat, 22 Oct 2022 05:28:55 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:39:05 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675006745.381831,VS0,VE12
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 997
X-Firefox-Spdy: h2

ggle.io/jsl/notifxapps.js?d=11261249

199.36.158.100

200 OK

2.9 kB

URL HTTP/2
ggle.io/jsl/notifxapps.js?d=11261249
IP
199.36.158.100:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (7937), with no line terminators
Size
2.9 kB (2863 bytes)
Hash
ddc6f34d40649ab88f9d7ec3dfad1325
b96e84c893b0d5a80fc66647f5f194c05dc61bf4
921a481afd22adb3c99653f6cddca2d99793156d3068301ff95a38120af51a2d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /jsl/notifxapps.js?d=11261249 HTTP/1.1
Host: ggle.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ggle.io/akHHkU1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: max-age=3500
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "536981d008366993596b09b9ec29097605be7d12dfb07807369e8235ccf3b4bf-br"
last-modified: Sat, 22 Oct 2022 05:28:55 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:39:05 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675006745.395108,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2863
X-Firefox-Spdy: h2

ggle.io/img/copylink3.png

199.36.158.100

200 OK

2.0 kB

URL HTTP/2
ggle.io/img/copylink3.png
IP
199.36.158.100:0
ASN
#54113 FASTLY

File type
PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size
2.0 kB (2028 bytes)
Hash
902484b0c90ceed3895a882c2e2e42f8
ff50a5081b1c10a79f905ed4605486d72d9e87ac
6668a03f5e3ba6aaa66002478e3733c5050822d438b96d6ee67430e1c1bb7593

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/copylink3.png HTTP/1.1
Host: ggle.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ggle.io/akHHkU1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: max-age=3300
content-type: image/png
etag: "f77fcec5ccaf0e2b65563d08b88bfbe8301eacd889bd964b9e41ea268f0fef54"
last-modified: Sat, 22 Oct 2022 05:28:55 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:39:05 GMT
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675006745.406503,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2028
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
9cea98a843749ab6ffcc1e4d554d70ee
4d4d4c548678ce5dc407a73f393a2abf1aae4cfb
478e8249f84da1fe4fc36c7f752dde2d61de74e5271e4be36c51a8e5ad1c2730

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3543
Cache-Control: max-age=130144
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:39:05 GMT
Etag: "63d5dea2-118"
Expires: Tue, 31 Jan 2023 03:48:09 GMT
Last-Modified: Sun, 29 Jan 2023 02:49:06 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 280

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
9cea98a843749ab6ffcc1e4d554d70ee
4d4d4c548678ce5dc407a73f393a2abf1aae4cfb
478e8249f84da1fe4fc36c7f752dde2d61de74e5271e4be36c51a8e5ad1c2730

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3543
Cache-Control: max-age=130144
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:39:05 GMT
Etag: "63d5dea2-118"
Expires: Tue, 31 Jan 2023 03:48:09 GMT
Last-Modified: Sun, 29 Jan 2023 02:49:06 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 280

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:39:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ggle.io/img/warn.gif

199.36.158.100

200 OK

3.5 kB

URL HTTP/2
ggle.io/img/warn.gif
IP
199.36.158.100:0
ASN
#54113 FASTLY

File type
GIF image data, version 89a, 117 x 126\012- data
Size
3.5 kB (3457 bytes)
Hash
98ef32ce0d3c2e81d71579d3c14022b2
3acb46e77d99d776d739298ff21e1d6b7756d54a
089c976c1bd936b60648d8bf7e60e99c2cb95b8a4836bdb4b8c301ac6528ceaa

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /img/warn.gif HTTP/1.1
Host: ggle.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ggle.io/akHHkU1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: max-age=3300
content-encoding: br
content-type: image/gif
etag: "111720847cf4a6a6c4e35320012cf08330c516637fe6e0eeab3e0cf6905c7095-br"
last-modified: Sat, 22 Oct 2022 05:28:55 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:39:05 GMT
x-served-by: cache-bma1636-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675006745.413410,VS0,VE114
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3457
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:39:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:39:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:39:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/firebasejs/8.1.1/firebase-firestore.js

216.58.211.3

200 OK

85 kB

URL HTTP/2
www.gstatic.com/firebasejs/8.1.1/firebase-firestore.js
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (65536), with no line terminators
Size
85 kB (84720 bytes)
Hash
d2e2bd0d0f24555dd420c81f73211198
62be4a699cd46b68b7013e165bbe98beff42e875
8903be159407f87a1902875cb71b5dd3ec2ae52967cb01d464a93798f77235fe

HTTP Headers

GET /firebasejs/8.1.1/firebase-firestore.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ggle.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 84720
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 13:08:34 GMT
expires: Mon, 29 Jan 2024 13:08:34 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 20 Nov 2020 01:53:23 GMT
content-type: text/javascript; charset=UTF-8
age: 9031
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/firebasejs/8.1.1/firebase-analytics.js

216.58.211.3

200 OK

11 kB

URL HTTP/2
www.gstatic.com/firebasejs/8.1.1/firebase-analytics.js
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (35606)
Size
11 kB (10765 bytes)
Hash
d71e4cdfb58f980f707c92d941a5cd45
d2e5068193e363b8ecde0c1fd281423ae81f3cf7
151413f3bde71a3a8ea4818745ab0d1633e34b87075200deefc3fafd99171588

HTTP Headers

GET /firebasejs/8.1.1/firebase-analytics.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ggle.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 10765
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 05:30:32 GMT
expires: Fri, 26 Jan 2024 05:30:32 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 20 Nov 2020 01:53:23 GMT
content-type: text/javascript; charset=UTF-8
age: 295713
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ggle.io/jsl/firebase-config.js

199.36.158.100

200 OK

620 B

URL HTTP/2
ggle.io/jsl/firebase-config.js
IP
199.36.158.100:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (1143), with no line terminators
Size
620 B (620 bytes)
Hash
e7b0ce751944780931a77f05563654da
9ef66fcdd6ca02681084e196314cb3ad81dddc36
3fbd851e815c8370093291cc409988a360a0ef59625fb7f15c357bc4d11df61b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /jsl/firebase-config.js HTTP/1.1
Host: ggle.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ggle.io/akHHkU1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: max-age=3500
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: "8df9a3ffd058fffb8c7cc158be2e0f24a16da34e82ef773909a260fb50f1cedb-br"
last-modified: Sat, 22 Oct 2022 05:28:55 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:39:05 GMT
x-served-by: cache-bma1636-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675006745.427007,VS0,VE127
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 620
X-Firefox-Spdy: h2

www.gstatic.com/firebasejs/8.1.1/firebase-database.js

216.58.211.3

200 OK

51 kB

URL HTTP/2
www.gstatic.com/firebasejs/8.1.1/firebase-database.js
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (65536), with no line terminators
Size
51 kB (51261 bytes)
Hash
1bc4c1890c614bc6c3aa0001b8be8fb0
b84eab749720febde74be8bcf8f33e62857313d2
03a8b2161ad97e1170a839396d60e0910b7091f59be6e512080257ff22cf1adb

HTTP Headers

GET /firebasejs/8.1.1/firebase-database.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ggle.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 51261
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 06:23:59 GMT
expires: Thu, 25 Jan 2024 06:23:59 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 20 Nov 2020 01:53:39 GMT
content-type: text/javascript; charset=UTF-8
age: 378906
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/firebasejs/8.1.1/firebase-app.js

216.58.211.3

200 OK

6.5 kB

URL HTTP/2
www.gstatic.com/firebasejs/8.1.1/firebase-app.js
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (19927)
Size
6.5 kB (6546 bytes)
Hash
cbc34bdb4b4cf679742d9ed47b3f2545
8e854c2b581424802bdba9abe53348af458f840d
16c35f961008682a183a747c01fea4dd972ed29f34915f2d9b4cd8115041d1e4

HTTP Headers

GET /firebasejs/8.1.1/firebase-app.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ggle.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 6546
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 02:14:16 GMT
expires: Sat, 27 Jan 2024 02:14:16 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 20 Nov 2020 01:53:23 GMT
content-type: text/javascript; charset=UTF-8
age: 221089
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/firebasejs/8.1.1/firebase-auth.js

216.58.211.3

200 OK

56 kB

URL HTTP/2
www.gstatic.com/firebasejs/8.1.1/firebase-auth.js
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (65536), with no line terminators
Size
56 kB (56505 bytes)
Hash
ea0c72835477005edea5d2bbb065caab
137cc67edc4120bfffae3707843694b02d2c5f9f
8a2eb36c761262bbe858df21d0e26a161bdb9dce79a59e5e878f47f22dc609d9

HTTP Headers

GET /firebasejs/8.1.1/firebase-auth.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ggle.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 56505
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 13:41:35 GMT
expires: Sun, 28 Jan 2024 13:41:35 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 20 Nov 2020 01:53:31 GMT
content-type: text/javascript; charset=UTF-8
age: 93450
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

push.services.mozilla.com/

52.25.78.204

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.25.78.204:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0TTmfcZQYgCLhqJR5BgCag==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 1HNRYwWS9D/s9tUyi74+eQ/yAKw=

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12154
Expires: Sun, 29 Jan 2023 19:01:40 GMT
Date: Sun, 29 Jan 2023 15:39:06 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12154
Expires: Sun, 29 Jan 2023 19:01:40 GMT
Date: Sun, 29 Jan 2023 15:39:06 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12154
Expires: Sun, 29 Jan 2023 19:01:40 GMT
Date: Sun, 29 Jan 2023 15:39:06 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg

34.120.237.76

200 OK

4.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.5 kB (4475 bytes)
Hash
4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 4jPbm4WufkUKm7ljLvpHrJUFhr-JQ_nl3iYfI5S8nTqEszFdUtz9EQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 05:24:09 GMT
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
age: 36897
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11470 bytes)
Hash
10a6491e2c1dfde68c7cd7297e70700f
d0f195319825a6d3e5e50ad15b2fcab27cb65896
4d9353d5874e5ea03c25e1562db5f479c222a48db526fdd10ede7c2e6a4dd874

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11470
x-amzn-requestid: 62d61967-9380-4ca9-b11a-531425dbd2ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIf6WFgAIAMF6gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce042-6d9fe51029094b7f37c0a648;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:05:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rUIvvkZQ028ey3klplI-x9oZFugon5HsAWT-SN2GQo5hBeBJWqoMAg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 23:12:28 GMT
age: 59198
etag: "d0f195319825a6d3e5e50ad15b2fcab27cb65896"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8652 bytes)
Hash
43c4a8e963936a8064dbd2bd3c67b905
8508727c97127c98b886833af28b3470306216c2
070c29fe7c0a227029483d675eac863904ab6b291467acdf62167f4845699c21

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8652
x-amzn-requestid: 5a5a883e-d7d4-4fc5-925a-3a95830c504e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVguyG7BIAMFm8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d214c4-390b59a32060e41203533c58;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 05:51:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ewSsCY4u9DwRtaj00U9JCim9tYeCgHRuIQFpdHm4ttI6L02-e44iDQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 23:11:24 GMT
age: 59262
etag: "8508727c97127c98b886833af28b3470306216c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.6 kB (5594 bytes)
Hash
4c77437e3a7361861aed8bfecbfe6bd6
fefd238c13c0fdfb7d964c90fcc8a8cbbf953034
282d15c443cb6232ae0a30046a0dc24360617355a4651cdba59b11e6f7313d8a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5594
x-amzn-requestid: d56c9b84-dc1f-4d5c-91bf-7db55058bf67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLyeEGOloAMFpzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ce3126-5013a6b971d6800c5c85a4eb;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 07:03:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: D2ZAelkDgsd0wjoOSoPRwTzhozs84_aIcgwU-QmbDrTnHztVD0VL_A==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 05:26:16 GMT
age: 36770
etag: "fefd238c13c0fdfb7d964c90fcc8a8cbbf953034"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ggle.io/akHHkU1

199.36.158.100

200 OK

36 kB

URL HTTP/2
ggle.io/akHHkU1
IP
199.36.158.100:0
ASN
#54113 FASTLY

File type
data
Size
36 kB (36272 bytes)
Hash
bd065c79056db28cfe3892a12f2df1b2
ae35f08f8c35563141abbfc8c5d8dee23dc0d371
08dfd62ec3906e54eb77b37ec3f68ce6b75085b3663a2bf1fb84b46f201f0af4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /akHHkU1 HTTP/1.1
Host: ggle.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
access-control-allow-headers: Content-Type
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 3666
cache-control: private
content-encoding: gzip
content-type: text/html; charset=utf-8
etag: W/"15ec-HpXqODAgIidk8P8kLx61KbMPXXE"
function-execution-id: 27r5yg9lkwz5
referer: ggle.io
server: Google Frontend
strict-transport-security: max-age=31556926
x-cloud-trace-context: 4a2411214d6b124d5f3e5d360850393f
x-country-code: NO
x-orig-accept-language: en-US,en;q=0.5
x-powered-by: Express
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:39:05 GMT
x-served-by: cache-bma1636-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675006745.585955,VS0,VE683
vary: Origin,cookie,need-authorization, x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5dcfee7f-f43c-4828-8113-8ba8eb26f727.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10168 bytes)
Hash
d5ed99a9aed6f367efc5c9498ce87ff1
3123eb6f550c51fe17fc62eff943b3739e239a9b
536f45bf2eb41f7056df8b34964538005d6a0a4c6157def3fbdd9487f8c79027

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5dcfee7f-f43c-4828-8113-8ba8eb26f727.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10168
x-amzn-requestid: fe58fe3c-dd23-4614-b5a2-e91ef68c2ab7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fFOD7H-NIAMFcxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb907f-687fc51741d7ff97182d1955;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 07:13:03 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GEghrk0LlbdfqVAHey-W84Zk9XHT2PD268Vfxf85HEvil0Ra27YgPA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 03:43:37 GMT
age: 42929
etag: "3123eb6f550c51fe17fc62eff943b3739e239a9b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
bab8a4c1e6bb2e6c9cc00222eef1235d
1a5dd108e9f9aaf33bc048b0097a9f510d295cad
fd182297a143655a9142e3ee5bbafefd76ca974094f43fb695611f6876f3ab63

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:39:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?l=dataLayer

172.217.21.168

200 OK

38 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?l=dataLayer
IP
172.217.21.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1759)
Size
38 kB (37837 bytes)
Hash
432cf5255d856c7a288ef1b5cdf39215
cd6d742595ca644071510deb792298ef16116bd8
014de98ca610d2241fd45d16ecd9fea8086b4f94bf695e88fa42464c06641299

HTTP Headers

GET /gtag/js?l=dataLayer HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ggle.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 29 Jan 2023 15:39:06 GMT
expires: Sun, 29 Jan 2023 15:39:06 GMT
cache-control: private, max-age=900
last-modified: Sun, 29 Jan 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 37837
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
bab8a4c1e6bb2e6c9cc00222eef1235d
1a5dd108e9f9aaf33bc048b0097a9f510d295cad
fd182297a143655a9142e3ee5bbafefd76ca974094f43fb695611f6876f3ab63

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:39:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/analytics.js

142.250.74.110

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1490)
Size
20 kB (20085 bytes)
Hash
ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ggle.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sun, 29 Jan 2023 13:46:59 GMT
expires: Sun, 29 Jan 2023 15:46:59 GMT
cache-control: public, max-age=7200
age: 6727
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8c630e9bbc930d1c367efa81b67be3f7
ec536695531d40a813d99a06271c7c2d698d51d3
39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:39:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8c630e9bbc930d1c367efa81b67be3f7
ec536695531d40a813d99a06271c7c2d698d51d3
39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:39:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

firebase.googleapis.com/v1alpha/projects/-/apps/1:816845117531:web:8b5bce2c4d174d7415077e/webConfig

216.58.211.10

200 OK

0 B

URL HTTP/2
firebase.googleapis.com/v1alpha/projects/-/apps/1:816845117531:web:8b5bce2c4d174d7415077e/webConfig
IP
216.58.211.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /v1alpha/projects/-/apps/1:816845117531:web:8b5bce2c4d174d7415077e/webConfig HTTP/1.1
Host: firebase.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-goog-api-key
Referer: https://ggle.io/
Origin: https://ggle.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://ggle.io
vary: origin, referer, x-origin
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: x-goog-api-key
access-control-max-age: 3600
date: Sun, 29 Jan 2023 15:39:07 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

firebase.googleapis.com/v1alpha/projects/-/apps/1:816845117531:web:8b5bce2c4d174d7415077e/webConfig

216.58.211.10

200 OK

226 B

URL HTTP/2
firebase.googleapis.com/v1alpha/projects/-/apps/1:816845117531:web:8b5bce2c4d174d7415077e/webConfig
IP
216.58.211.10:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text
Size
226 B (226 bytes)
Hash
132eca96bf5eac85ae1e66ffedda1b5c
18f579aad5c6e59cb4d36584e9d7600602ff1990
77c2cf32386611854188086251af7bb5b45f40db4853d0b817e7e1f76d7afa02

HTTP Headers

GET /v1alpha/projects/-/apps/1:816845117531:web:8b5bce2c4d174d7415077e/webConfig HTTP/1.1
Host: firebase.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ggle.io/
x-goog-api-key: AIzaSyCPklB2IUMf9zKmibiG-E8wg7bnJMPfCnA
Origin: https://ggle.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 29 Jan 2023 15:39:07 GMT
server: ESF
cache-control: private
content-length: 226
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://ggle.io
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8c630e9bbc930d1c367efa81b67be3f7
ec536695531d40a813d99a06271c7c2d698d51d3
39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:39:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

dsnetx.web.app/apps/firelinks/msg.json?ref=URL_Ggle1.0&r=0.22373406030086151&_=1675006753397

199.36.158.100

200 OK

604 B

URL HTTP/2
dsnetx.web.app/apps/firelinks/msg.json?ref=URL_Ggle1.0&r=0.22373406030086151&_=1675006753397
IP
199.36.158.100:0
ASN
#54113 FASTLY

File type
JSON data\012- , ASCII text, with very long lines (396)
Size
604 B (604 bytes)
Hash
b14cd65bf23edf8d0e55d7b2cb751983
0911cac2d27315c8bd54171c8cbe3621dcb4727e
1c07ed17b98ca5bd5414090810af1f554a87e8a7206ff5bd127f64b4a8d418d6

HTTP Headers

GET /apps/firelinks/msg.json?ref=URL_Ggle1.0&r=0.22373406030086151&_=1675006753397 HTTP/1.1
Host: dsnetx.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ggle.io
Connection: keep-alive
Referer: https://ggle.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
cache-control: max-age=1300
content-encoding: br
content-type: application/json
etag: "8d76fdc5d4a210a1195481b7cf45f3d9d822c63eea2c64dcb69550c7c3da41d5-br"
last-modified: Thu, 19 Jan 2023 03:12:23 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sun, 29 Jan 2023 15:39:07 GMT
x-served-by: cache-bma1646-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675006747.073035,VS0,VE53
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 604
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1d4int/CgqZOssWAEQ

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1d4int/CgqZOssWAEQ
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
17f89757c093698bb22bcba49cd4b54e
bfac0c8faa39060b5f4d85cce1e0f7112679a91c
0007e426bfb31c22ab0179c1428c2b5da099d4da8792739134d06c79179616af

HTTP Headers

POST /s/gts1d4int/CgqZOssWAEQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:39:07 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

firebaseinstallations.googleapis.com/v1/projects/ggleio/installations

216.58.211.10

200 OK

0 B

URL HTTP/2
firebaseinstallations.googleapis.com/v1/projects/ggleio/installations
IP
216.58.211.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /v1/projects/ggleio/installations HTTP/1.1
Host: firebaseinstallations.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key
Referer: https://ggle.io/
Origin: https://ggle.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://ggle.io
vary: origin, referer, x-origin
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key
access-control-max-age: 3600
date: Sun, 29 Jan 2023 15:39:07 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e9eba61fbe87bc53d60d0fdd1ba6adb4
8dbb3dfacfaad4ce0fd3a355790cb9b245e01e07
9c0233792f873315e75ce5396d1a210f2df665db23ab858a0724f66bbb4528e7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:39:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-170143907-1&cid=1173505882.1675006755&jid=158608206&gjid=1542323611&_gid=55850257.1675006755&_u=YEBAAEAAAAAAACAEI~&z=1772857273

173.194.221.157

200 OK

4 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-170143907-1&cid=1173505882.1675006755&jid=158608206&gjid=1542323611&_gid=55850257.1675006755&_u=YEBAAEAAAAAAACAEI~&z=1772857273
IP
173.194.221.157:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-170143907-1&cid=1173505882.1675006755&jid=158608206&gjid=1542323611&_gid=55850257.1675006755&_u=YEBAAEAAAAAAACAEI~&z=1772857273 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://ggle.io
Connection: keep-alive
Referer: https://ggle.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://ggle.io
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 29 Jan 2023 15:39:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
86352d15c37831cf9bf1e41325029224
ac8b28bcc1e6dd026e1f62d1ef8b9f80a42eee21
154f5f5e116df41f5d3bd414c671138b2afc198071529a0f3573109277566cd8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:39:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b7da7d1d3e5880d5d4e313ac7fcf2a83
60a1e887ccb7c7cdae0035c65ef7df9908547fef
af17efcd17df50324c29cff05cea79f18cba79f6b1134ec0e6d1637759b5e895

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:39:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e9eba61fbe87bc53d60d0fdd1ba6adb4
8dbb3dfacfaad4ce0fd3a355790cb9b245e01e07
9c0233792f873315e75ce5396d1a210f2df665db23ab858a0724f66bbb4528e7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:39:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-170143907-1&cid=1173505882.1675006755&jid=158608206&_u=YEBAAEAAAAAAACAEI~&z=1009067883

142.250.74.67

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-170143907-1&cid=1173505882.1675006755&jid=158608206&_u=YEBAAEAAAAAAACAEI~&z=1009067883
IP
142.250.74.67:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-170143907-1&cid=1173505882.1675006755&jid=158608206&_u=YEBAAEAAAAAAACAEI~&z=1009067883 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ggle.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 29 Jan 2023 15:39:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-170143907-1&cid=1173505882.1675006755&jid=158608206&_u=YEBAAEAAAAAAACAEI~&z=1009067883

142.250.74.164

200 OK

42 B

URL HTTP/2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-170143907-1&cid=1173505882.1675006755&jid=158608206&_u=YEBAAEAAAAAAACAEI~&z=1009067883
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-170143907-1&cid=1173505882.1675006755&jid=158608206&_u=YEBAAEAAAAAAACAEI~&z=1009067883 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ggle.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 29 Jan 2023 15:39:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b7da7d1d3e5880d5d4e313ac7fcf2a83
60a1e887ccb7c7cdae0035c65ef7df9908547fef
af17efcd17df50324c29cff05cea79f18cba79f6b1134ec0e6d1637759b5e895

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:39:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ef589be52a3e55b643978f17949a73da
74545de6f144282252ff92c751f97cc835c80341
7bfa68c43e60a2627770163b5c1b96fbd7e4843984ad5ff6225c5490b8073b26

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:39:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

firebaseinstallations.googleapis.com/v1/projects/ggleio/installations

216.58.211.10

200 OK

491 B

URL HTTP/2
firebaseinstallations.googleapis.com/v1/projects/ggleio/installations
IP
216.58.211.10:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (331)
Size
491 B (491 bytes)
Hash
33b1f7a6db151dfa1469643a0c89e5e6
87f23f8093fb75cb0ec2e2846fa97eef6b715cf9
74200343dbea1eaf028520e10b21fc7998631486b677f2cb2d9c5eccdb2fdbe9

HTTP Headers

POST /v1/projects/ggleio/installations HTTP/1.1
Host: firebaseinstallations.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ggle.io/
content-type: application/json
x-goog-api-key: AIzaSyCPklB2IUMf9zKmibiG-E8wg7bnJMPfCnA
Origin: https://ggle.io
Content-Length: 131
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 29 Jan 2023 15:39:07 GMT
server: ESF
cache-control: private
content-length: 491
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://ggle.io
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

region1.google-analytics.com/g/collect?v=2&tid=G-5H9RRN423L&gtm=2oe1p0&_p=500533215&_fid=cgEYUZyrMObaIP-ON_bp8r&cid=1173505882.1675006755&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675006755&sct=1&seg=0&dl=https%3A%2F%2Fggle.io%2FakHHkU1&dt=URL%20Shortener&en=page_view&_fv=1&_ss=1&_ee=1&ep.origin=firebase

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-5H9RRN423L&gtm=2oe1p0&_p=500533215&_fid=cgEYUZyrMObaIP-ON_bp8r&cid=1173505882.1675006755&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675006755&sct=1&seg=0&dl=https%3A%2F%2Fggle.io%2FakHHkU1&dt=URL%20Shortener&en=page_view&_fv=1&_ss=1&_ee=1&ep.origin=firebase
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-5H9RRN423L&gtm=2oe1p0&_p=500533215&_fid=cgEYUZyrMObaIP-ON_bp8r&cid=1173505882.1675006755&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675006755&sct=1&seg=0&dl=https%3A%2F%2Fggle.io%2FakHHkU1&dt=URL%20Shortener&en=page_view&_fv=1&_ss=1&_ee=1&ep.origin=firebase HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ggle.io
Connection: keep-alive
Referer: https://ggle.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://ggle.io
date: Sun, 29 Jan 2023 15:39:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

getbootstrap.com/2.3.2/assets/js/bootstrap-transition.js

104.22.59.100

200 OK

0 B

URL HTTP/2
getbootstrap.com/2.3.2/assets/js/bootstrap-transition.js
IP
104.22.59.100:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /2.3.2/assets/js/bootstrap-transition.js HTTP/1.1
Host: getbootstrap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ggle.io
Connection: keep-alive
Referer: https://ggle.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:39:06 GMT
content-type: application/javascript; charset=utf-8
x-origin-cache: HIT
last-modified: Sat, 24 Dec 2022 16:43:28 GMT
access-control-allow-origin: *
etag: W/"63a72c30-6d9"
expires: Thu, 26 Jan 2023 12:47:56 GMT
cache-control: max-age=14400
x-proxy-cache: MISS
x-github-request-id: A994:189F:2A63FC:3203F1:63A8744D
via: 1.1 varnish
x-served-by: cache-mel11282-MEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1672123497.267478,VS0,VE2
vary: Accept-Encoding
x-fastly-request-id: 2589925666bf5cb4a6cdf9c71edcbb99795dd925
cf-cache-status: REVALIDATED
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79130eff2a4c1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

netdna.bootstrapcdn.com/bootstrap/4.4.1/js/bootstrap.min.js

104.18.10.207

200 OK

0 B

URL HTTP/2
netdna.bootstrapcdn.com/bootstrap/4.4.1/js/bootstrap.min.js
IP
104.18.10.207:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /bootstrap/4.4.1/js/bootstrap.min.js HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ggle.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:39:05 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cache-control: public, max-age=31919000
etag: W/"61f338f870fcd0ff46362ef109d28533"
last-modified: Mon, 25 Jan 2021 22:04:09 GMT
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 2022-02-23 12:47:12
cdn-edgestorageid: 863, 845
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: af9fbb54f2ae12c7d969597687f814d1
cdn-cache: HIT
cf-cache-status: HIT
age: 2095237
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 79130eff7f62b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (21)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML