Overview

URL assia22.com/live2/mix4
IP31.220.0.201
ASNAmarutu Technology Ltd
Location Netherlands
Report completed2022-06-08 19:19:17 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2022-06-08 2 assia22.com/live2/mix4 Malware
2022-06-08 2 assia22.com/live2/mix4/ Malware
2022-06-08 2 assia22.com/css/bannernov.js Malware
2022-06-08 2 assia22.com/css/clapprpl.js Malware
2022-06-08 2 assia22.com/css/stat.js Malware
2022-06-08 2 assia22.com/css/jquerymin118-2.js Malware
2022-06-08 2 assia22.com/css/analytics.js Malware
2022-06-08 2 assia22.com/css/jquery.min.js Malware
2022-06-08 2 assia22.com/css/banr3.html Malware
2022-06-08 2 assia22.com/live2/mix4/undefined Malware
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (22)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
[Mnemonic Passive DNS] firefox.settings.services.mozilla.com (2) 867 2016-03-17 08:25:01 UTC 2020-05-25 20:01:47 UTC 54.230.111.118
[Mnemonic Passive DNS] r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-06-08 05:43:53 UTC 23.36.77.32
[Mnemonic Passive DNS] contile.services.mozilla.com (1) 1114 No data No data 34.117.237.239
[Mnemonic Passive DNS] cdn.trafficdok.com (1) 151343 No data No data 212.32.230.193
[Mnemonic Passive DNS] push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2022-06-08 05:43:54 UTC 34.214.236.46
[Mnemonic Passive DNS] assia22.com (14) 0 No data No data 31.220.0.201 Unknown ranking
[Mnemonic Passive DNS] z.cdn.trafficdok.com (1) 168997 2021-06-18 18:08:27 UTC 2022-06-08 05:25:05 UTC 213.227.149.183
[Mnemonic Passive DNS] imasdk.googleapis.com (2) 11661 2014-02-25 09:02:53 UTC 2019-10-16 04:23:19 UTC 142.250.74.138
[Mnemonic Passive DNS] ocsp.digicert.com (1) 86 2012-11-29 12:49:49 UTC 2022-06-08 12:05:19 UTC 93.184.220.29
[Mnemonic Passive DNS] fonts.googleapis.com (1) 8877 2017-01-30 04:59:43 UTC 2019-10-16 05:12:41 UTC 216.58.211.10
[Mnemonic Passive DNS] ocsp.godaddy.com (1) 698 2017-01-30 05:00:35 UTC 2022-06-08 05:12:48 UTC 192.124.249.36
[Mnemonic Passive DNS] d7.cdn.trafficdok.com (8) 401851 No data No data 178.162.196.143
[Mnemonic Passive DNS] s4.histats.com (1) 12782 No data No data 192.99.8.28
[Mnemonic Passive DNS] www.google-analytics.com (1) 40 2017-01-30 05:00:06 UTC 2022-06-08 05:43:57 UTC 216.58.207.238
[Mnemonic Passive DNS] fonts.gstatic.com (2) 0 2017-01-30 04:59:51 UTC 2022-06-08 05:43:55 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
[Mnemonic Passive DNS] img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-06-08 08:04:53 UTC 34.120.237.76
[Mnemonic Passive DNS] content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-06-08 05:43:53 UTC 54.230.111.99
[Mnemonic Passive DNS] cdn.jsdelivr.net (2) 439 2012-09-30 00:15:09 UTC 2022-06-08 05:44:51 UTC 151.101.85.229
[Mnemonic Passive DNS] ocsp.globalsign.com (1) 2075 2012-05-25 06:20:55 UTC 2022-06-08 05:44:07 UTC 104.18.21.226
[Mnemonic Passive DNS] www.googletagmanager.com (1) 75 2017-01-30 05:00:47 UTC 2022-06-08 05:43:57 UTC 142.250.74.72
[Mnemonic Passive DNS] ocsp.pki.goog (10) 175 2017-06-14 07:23:31 UTC 2022-06-08 05:43:54 UTC 142.250.74.3
[Mnemonic Passive DNS] s10.histats.com (1) 15211 2017-02-03 19:28:06 UTC 2022-06-08 11:11:14 UTC 46.105.201.240


Recent reports on same IP/ASN/Domain

No other reports on IP: 31.220.0.201


Last 10 reports on ASN: Amarutu Technology Ltd

Date UQ / IDS / BL URL IP
2022-08-08 05:22:23 +0000
0 - 0 - 6 younglolitas.top/ 103.109.100.197
2022-08-07 21:37:11 +0000
0 - 0 - 0 siggiztv.com 31.220.3.170
2022-08-05 18:04:22 +0000
0 - 0 - 4 kittyhub.xyz/ 103.109.100.197
2022-08-04 23:10:12 +0000
0 - 0 - 3 https://anz-por.tal-au.com/pages 198.144.121.78
2022-07-31 18:31:59 +0000
0 - 0 - 11 mixdrop.to/e/841xe3rwh6d986r 31.220.2.46
2022-07-31 18:07:27 +0000
0 - 0 - 23 anz-vali.date-web-au.com/pages 198.144.121.78
2022-07-31 04:54:58 +0000
0 - 0 - 27 anz-vali.date-web-au.com/ 198.144.121.78
2022-07-30 21:15:22 +0000
0 - 0 - 4 petitelady.top/ 103.109.100.197
2022-07-30 20:39:24 +0000
0 - 0 - 4 kittyhub.xyz/ 103.109.100.197
2022-07-29 15:12:26 +0000
0 - 0 - 4 kittyhub.xyz/ 103.109.100.197

No other reports on domain: assia22.com



JavaScript

Executed Scripts (20)


Executed Evals (0)


Executed Writes (2)

#1 JavaScript::Write (size: 28, repeated: 1) - SHA256: 99b7d281e7c5f462a293bb646f4869684c1f64373131cd902f9a5be466e517d4

                                        < div id = "pr6pd4rjco0" > < /div>
                                    

#2 JavaScript::Write (size: 436, repeated: 1) - SHA256: 4f68da7e1d769c6d8014d6dc42adac0cbc90eb4ef8abf85999a43d7c2c1d7380

                                        < script src = https: //pagead2.googlesyndication.com/omsdk/releases/live/omweb-v1.js></script>
    < script >
    window.addEventListener('message', function(e) {
        if (e.data.type === 'innerBridgeIframeLoaded') {
            window.frameElement.parentElement
                .querySelector('#goog_156652653').contentWindow
                .postMessage({
                    type: 'omidIframeLoaded'
                }, '*');
        }
    }); < /script>
                                    


HTTP Transactions (65)


Request Response
                                        
                                            GET /live2/mix4 HTTP/1.1 
Host: assia22.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         31.220.0.201
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx/1.10.3 (Ubuntu)
Date: Wed, 08 Jun 2022 19:19:06 GMT
Content-Length: 194
Location: http://assia22.com/live2/mix4/
Connection: keep-alive
Access-Control-Allow-Origin: http://imasdk.googleapis.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   194
Md5:    a718c83022dda2cc03813d97ea9f3a9a
Sha1:   b1e7b25d45f5ea8562a6f7c372491fecec492ad4
Sha256: e4ef2bd88e50ff8bba2faca31902a8e033531912c11f6ad23dc1fc74a2f38ba8

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.118
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Retry-After, Backoff, Alert, Content-Type
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 08 Jun 2022 18:33:00 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: dz_J4n1m3cF99ZA5Knlh5MvPLhgEdjBa8XHUmUbLGox2D9IAym1d4Q==
Age: 2766


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    680f534bc29773f704a63c3e3af93c2e
Sha1:   f1002cea53ff52d1c926d929f80601353c43bb48
Sha256: 0e83ec9c78b140e17c61e7c0f67997b5227af6f7c283c412a087b10a825a69f8
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "ED3BFF21268A2D101781A369CFB1A73A34E71442F716C3D4AED68FABDDC4F689"
Last-Modified: Mon, 06 Jun 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4240
Expires: Wed, 08 Jun 2022 20:29:46 GMT
Date: Wed, 08 Jun 2022 19:19:06 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-06-30-19-51-38.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.99
HTTP/2 200 OK
                                        
content-type: binary/octet-stream
content-length: 5348
last-modified: Wed, 11 May 2022 19:51:39 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Jun 2022 05:56:38 GMT
etag: "48ca0beea419a9039591cf1aee5179e0"
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AH_LST1xnESnftwEd8sJ5WHzcIfHbMZvkzmh4FU0MP78R7xKefjmOg==
age: 48149
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    48ca0beea419a9039591cf1aee5179e0
Sha1:   9e92629f505fcc07aab51221e8fe62197a23e307
Sha256: 630a5f110337b4a4876aa85c21107d9e8f2550bcc60f023a4777d895b17399fd
                                        
                                            GET /live2/mix4/ HTTP/1.1 
Host: assia22.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         31.220.0.201
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx/1.10.3 (Ubuntu)
Date: Wed, 08 Jun 2022 19:19:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: country=NO; expires=Wed, 08-Jun-2022 20:19:06 GMT; Max-Age=3600; path=/
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Size:   2468
Md5:    f1544b444953d48676dbd7859b71021d
Sha1:   4a2f00049cae28a3e40d4a5943223a000f915ae5
Sha256: 7400f838b8cf90811872095d3183a1bcf44da42ad37b0db1d576280c0c0b4219

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
                                        
server: nginx
date: Wed, 08 Jun 2022 19:19:06 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /css/cssffffnnn.css HTTP/1.1 
Host: assia22.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://assia22.com/live2/mix4/
Cookie: country=NO

                                         
                                         31.220.0.201
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.10.3 (Ubuntu)
Date: Wed, 08 Jun 2022 19:19:06 GMT
Content-Length: 709
Last-Modified: Tue, 09 Nov 2021 15:52:47 GMT
Connection: keep-alive
ETag: "618a994f-2c5"
Access-Control-Allow-Origin: http://imasdk.googleapis.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   709
Md5:    ec70799232da2e295311d17620b2d0ac
Sha1:   14cbe8be7f2f9444bf38bc8aa303273563526220
Sha256: aa9d3d4d74eb65d339ccff93e23e20c00581cba87975982f5c6082578ee35171
                                        
                                            GET /css/bannernov.js HTTP/1.1 
Host: assia22.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://assia22.com/live2/mix4/
Cookie: country=NO

                                         
                                         31.220.0.201
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.10.3 (Ubuntu)
Date: Wed, 08 Jun 2022 19:19:06 GMT
Content-Length: 588
Last-Modified: Sat, 10 Oct 2020 17:54:28 GMT
Connection: keep-alive
ETag: "5f81f554-24c"
Access-Control-Allow-Origin: http://imasdk.googleapis.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   588
Md5:    6be85adcab9d1d666b6d97a53a2d8107
Sha1:   d6e485dce0edc69735f7423ea71253a15ff63af6
Sha256: edf6f5f20b31f3f19ece84eaff9f8dd1ca1c76879c8ed1d812571f19da8da091

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /css/clapprpl.js HTTP/1.1 
Host: assia22.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://assia22.com/live2/mix4/
Cookie: country=NO

                                         
                                         31.220.0.201
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.10.3 (Ubuntu)
Date: Wed, 08 Jun 2022 19:19:06 GMT
Content-Length: 17053
Last-Modified: Sat, 04 Dec 2021 00:47:07 GMT
Connection: keep-alive
ETag: "61aaba8b-429d"
Access-Control-Allow-Origin: http://imasdk.googleapis.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text
Size:   17053
Md5:    c8f139bc95f3a560e18dbc5d453096a2
Sha1:   44e5de8bb7788444a379e02a3cff8af618a54e9a
Sha256: 4ce1e5427d15be50d50e0e14c06a81e40eda36549ebaaf6c06c51c2b866e7387

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /css/stat.js HTTP/1.1 
Host: assia22.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://assia22.com/live2/mix4/
Cookie: country=NO

                                         
                                         31.220.0.201
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.10.3 (Ubuntu)
Date: Wed, 08 Jun 2022 19:19:06 GMT
Content-Length: 425
Last-Modified: Wed, 01 Jun 2022 14:47:01 GMT
Connection: keep-alive
ETag: "62977be5-1a9"
Access-Control-Allow-Origin: http://imasdk.googleapis.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text
Size:   425
Md5:    c6acfe3dc7935e4f760192b758235204
Sha1:   68075bb12cefd15e5414c1bec9cfbaf6fcdd60f4
Sha256: 11dd59e500ab56eb3181b6672ef13df53381ad43c738218f0c989fbae6a64e90

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /css/jquerymin118-2.js HTTP/1.1 
Host: assia22.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://assia22.com/live2/mix4/
Cookie: country=NO

                                         
                                         31.220.0.201
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.10.3 (Ubuntu)
Date: Wed, 08 Jun 2022 19:19:06 GMT
Content-Length: 3429
Last-Modified: Tue, 07 Jun 2022 14:25:41 GMT
Connection: keep-alive
ETag: "629f5fe5-d65"
Access-Control-Allow-Origin: http://imasdk.googleapis.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   3429
Md5:    0c80d00c8175fb2909c5767a0193ac57
Sha1:   36bc0ee74f7139ffd8b496413b71e562fa748761
Sha256: 041f4ef6a8972d0de4a68e889ec6715fb590596e9ad1590f09eb83fd30637320

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /css/analytics.js HTTP/1.1 
Host: assia22.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://assia22.com/live2/mix4/
Cookie: country=NO

                                         
                                         31.220.0.201
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.10.3 (Ubuntu)
Date: Wed, 08 Jun 2022 19:19:06 GMT
Content-Length: 161
Last-Modified: Wed, 01 Jun 2022 14:35:49 GMT
Connection: keep-alive
ETag: "62977945-a1"
Access-Control-Allow-Origin: http://imasdk.googleapis.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   161
Md5:    22dc17a2ef1dc0365dfe4dd896d415d9
Sha1:   c93b026faec30d5d428947da9c7f436b0307fa51
Sha256: a108e003ac575dc68c6ca958742c92205fb5db743d715078db69c5c979b5ea3d

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /npm/clappr@latest/dist/clappr.min.js HTTP/1.1 
Host: cdn.jsdelivr.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://assia22.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.229
HTTP/2 200 OK
                                        
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.3.13
x-jsd-version-type: version
etag: W/"80319-k2KF+cjIWnSaHvjPxNXoS36ivIk"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 08 Jun 2022 19:19:06 GMT
age: 17726
x-served-by: cache-fra19156-FRA, cache-bma1674-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
content-length: 141142
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   141142
Md5:    7e7fdfacdb1943ea810449001d165a53
Sha1:   fc230e8b4a933497a2da4a783574a5b07b889a7e
Sha256: d530a67ca2ed5e6d11c2f4ef080c8b8c1cc55a587af2ef45da9a9415ebd788cf
                                        
                                            GET /npm/clappr-ima-plugin@latest/dist/clappr-ima-plugin.min.js HTTP/1.1 
Host: cdn.jsdelivr.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://assia22.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.229
HTTP/2 200 OK
                                        
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 0.4.6
x-jsd-version-type: version
etag: W/"12014-Kd+VEjzoa29wvdlgWNPrPEip+kc"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 08 Jun 2022 19:19:06 GMT
age: 25647
x-served-by: cache-fra19180-FRA, cache-bma1674-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
content-length: 23891
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65503), with no line terminators
Size:   23891
Md5:    8a59efcc04f5875458bd35283cdc6cdd
Sha1:   8d83ce895b8f762d93a546869bc28d68610e11f5
Sha256: 44ae0eea56348e23b1462ffbfaf64e458e7c1f07cb6cef733135545c63527e49
                                        
                                            GET /css/jquery.min.js HTTP/1.1 
Host: assia22.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://assia22.com/live2/mix4/
Cookie: country=NO

                                         
                                         31.220.0.201
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.10.3 (Ubuntu)
Date: Wed, 08 Jun 2022 19:19:06 GMT
Content-Length: 86659
Last-Modified: Sat, 10 Oct 2020 17:54:29 GMT
Connection: keep-alive
ETag: "5f81f555-15283"
Access-Control-Allow-Origin: http://imasdk.googleapis.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines (32058)
Size:   86659
Md5:    c9f5aeeca3ad37bf2aa006139b935f0a
Sha1:   1055018c28ab41087ef9ccefe411606893dabea2
Sha256: 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 08 Jun 2022 19:19:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "4FF7FBC6B3568559ABD756D5A92B52828C5B63EC"
Expires: Thu, 09 Jun 2022 06:00:00 GMT
Last-Modified: Wed, 08 Jun 2022 18:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 179
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7183fa2ab80d0b45-OSL


--- Additional Info ---
Magic:  data
Size:   1462
Md5:    70294b2e5311fd060fcbd5d6e3a1a85a
Sha1:   f5ff774096e76332ab2b1460c58cb93d05f83905
Sha256: d40a6910f7b1b03c212e936d27f2896634d053d59649342de9070261952e464f
                                        
                                            GET /gtag/js?id=G-Q3WP7SZC5D HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://assia22.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
                                        
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 Jun 2022 19:19:06 GMT
expires: Wed, 08 Jun 2022 19:19:06 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 65990
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (8295)
Size:   65990
Md5:    3c68a85bdec8b20c4da315b6d870885e
Sha1:   d3fbc0ae3a118c67c657917654e71e08552f741a
Sha256: ee6f74ce719c03418872c33c6a347bd892392453bed2be3823a4a5a49bbaa103
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 08 Jun 2022 19:19:06 GMT
Cache-Control: public, max-age=18000
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /css/banr3.html HTTP/1.1 
Host: assia22.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://assia22.com/live2/mix4/
Cookie: country=NO; _ga_Q3WP7SZC5D=GS1.1.1654715947.1.0.1654715947.0; _ga=GA1.1.1761116014.1654715947
Upgrade-Insecure-Requests: 1

                                         
                                         31.220.0.201
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.10.3 (Ubuntu)
Date: Wed, 08 Jun 2022 19:19:07 GMT
Last-Modified: Sat, 10 Oct 2020 17:54:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5f81f554-31"
Access-Control-Allow-Origin: http://imasdk.googleapis.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document, ASCII text, with CRLF line terminators
Size:   46
Md5:    4f1bbb0f286bc269b629eb21df90e305
Sha1:   917de3cb148781d0e6d86a6e07c29bfb60e62bc3
Sha256: 9cb716f6d8ee22faa196c4906d36f9a0c7bb8634f499c81cf32ad78af2d7f5b3

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /libs/e.js HTTP/1.1 
Host: cdn.trafficdok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://assia22.com/

                                         
                                         212.32.230.193
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Server: nginx
Date: Wed, 08 Jun 2022 19:19:07 GMT
Last-Modified: Thu, 03 Mar 2022 13:55:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6220c8ce-94a"
Expires: Thu, 09 Jun 2022 19:19:07 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   1390
Md5:    dc319f89aaaae2ce71eabbc57b619bb6
Sha1:   99cc7eb00b4a60c343c2ab9957618549cb5246d3
Sha256: 3e6c051eabb297021446a185ad4b6d61974f2437717e3d56b9481c51d9b12d02
                                        
                                            GET /css/logo.png HTTP/1.1 
Host: assia22.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://assia22.com/live2/mix4/
Cookie: country=NO; _ga_Q3WP7SZC5D=GS1.1.1654715947.1.0.1654715947.0; _ga=GA1.1.1761116014.1654715947

                                         
                                         31.220.0.201
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.10.3 (Ubuntu)
Date: Wed, 08 Jun 2022 19:19:07 GMT
Content-Length: 7879
Last-Modified: Sat, 10 Oct 2020 17:54:32 GMT
Connection: keep-alive
ETag: "5f81f558-1ec7"
Access-Control-Allow-Origin: http://imasdk.googleapis.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 120 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size:   7879
Md5:    f5c29946694e97fb589d2733b9bd32a8
Sha1:   b4ee1e198ff63a87037282de06f844e1f1476a97
Sha256: 7f99b88719b6ad2db09ee6415a84312f3c0aa59e8203e5ee6f6df730e2f295c3
                                        
                                            GET /img/background4.png HTTP/1.1 
Host: assia22.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://assia22.com/live2/mix4/
Cookie: country=NO; _ga_Q3WP7SZC5D=GS1.1.1654715947.1.0.1654715947.0; _ga=GA1.1.1761116014.1654715947

                                         
                                         31.220.0.201
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.10.3 (Ubuntu)
Date: Wed, 08 Jun 2022 19:19:07 GMT
Content-Length: 21790
Last-Modified: Mon, 23 Sep 2019 12:01:24 GMT
Connection: keep-alive
ETag: "5d88b414-551e"
Access-Control-Allow-Origin: http://imasdk.googleapis.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 1920 x 1130, 8-bit/color RGBA, non-interlaced\012- data
Size:   21790
Md5:    88296797b876a81aa61d1e30076c405f
Sha1:   8b4891df17b42a986da1aee9c4761f197398c44d
Sha256: 3f74d532a1a3a41f9e45b750aaaef97f07e52c5a8272012fb6b407d05de6a761
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: assia22.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://assia22.com/live2/mix4/
Cookie: country=NO; _ga_Q3WP7SZC5D=GS1.1.1654715947.1.0.1654715947.0; _ga=GA1.1.1761116014.1654715947

                                         
                                         31.220.0.201
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx/1.10.3 (Ubuntu)
Date: Wed, 08 Jun 2022 19:19:07 GMT
Content-Length: 4286
Last-Modified: Tue, 24 Apr 2018 17:32:27 GMT
Connection: keep-alive
ETag: "5adf6a2b-10be"
Access-Control-Allow-Origin: http://imasdk.googleapis.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Size:   4286
Md5:    dba1242bf1da311ec404c2e9268dc1dd
Sha1:   3ecaef9fd41cdc22044364b1c529d2de55308cbe
Sha256: 2d3ec320cba3bb28d9a015e5e63cee3dbeb52a51c97f7509580d0568d566e31d
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.118
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Content-Type, Content-Length, Expires, Alert, Backoff, Pragma, Retry-After, Cache-Control, Last-Modified
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Wed, 08 Jun 2022 18:50:32 GMT
Expires: Wed, 08 Jun 2022 19:06:03 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 4kb6GMB8E6g74daWxh8kRbU5oaNsHhNyV00KT6YdgEHnaKwxN-wajQ==
Age: 1715


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /js15_as.js HTTP/1.1 
Host: s10.histats.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://assia22.com/

                                         
                                         46.105.201.240
HTTP/1.1 200 OK
                                        
date: Wed, 08 Jun 2022 19:18:43 GMT
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 666894399
etag: W/"-375139978"
content-type: application/javascript; charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
x-cdn-pop: rbx1
x-cdn-pop-ip: 51.254.41.128/25
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4547
x-iplb-request-id: 5B5A2A9A:FB6D_2E69C9F0:0050_62A0F62B_160211:2FB9
x-iplb-instance: 28228


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (11440), with no line terminators
Size:   4547
Md5:    2b153cb2287eac49566b32fce9c385f8
Sha1:   206074b038daff8bc66d86bca0c5ff35f9f72655
Sha256: 7398435bd3f0dae8206173dd66954ae029dc8787962d5f089bcb548f53409869
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 08 Jun 2022 19:19:07 GMT
Cache-Control: public, max-age=18000
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.36
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Wed, 08 Jun 2022 19:19:07 GMT
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 07 Jun 2022 20:33:09 GMT
Expires: Wed, 08 Jun 2022 20:33:09 GMT
ETag: "34e036d9683212593e49c378da39d06b642a2470"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1778
Md5:    2593331011152825be3edb21e3b5594b
Sha1:   34e036d9683212593e49c378da39d06b642a2470
Sha256: 04c9ed977a077efa42e1362b537bd47779ade517ae9187dc9fa5b7f1f31a1847
                                        
                                            GET /load?z=2094559328&div=pr6pd4rjco0&cw=1280&ch=1024&sr=1280x1024&df=1&bh=1&tl=1092&hc=16&n=1654715947170&url=assia22.com%2Flive2%2Fmix4%2F&vc=0&ti=Mix4-live2&zyx=1673839576 HTTP/1.1 
Host: z.cdn.trafficdok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://assia22.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         213.227.149.183
HTTP/2 200 OK
                                        
server: nginx
date: Wed, 08 Jun 2022 19:19:07 GMT
content-type: application/javascript; charset=utf-8
content-length: 2518
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: -1
p3p: policyref="/p3p.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
content-encoding: gzip
set-cookie: AU=33ef760842ff8b48; Expires=Wed, 07 Jun 2034 21:00:07 GMT; Path=/; HttpOnly; SameSite=None; Secure
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (529)
Size:   2518
Md5:    1094ace8bdc859cdd59ffa349755dd4c
Sha1:   d1e86d96a745ebdf05ae0b7f2948632e4eedb425
Sha256: d8ef7a3e3ee1853b2c1a4e0eb32f5a530186c733af8848d29d375968e8f27ac5
                                        
                                            GET /js/sdkloader/ima3.js HTTP/1.1 
Host: imasdk.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://assia22.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.138
HTTP/2 200 OK
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 128968
date: Wed, 08 Jun 2022 19:19:07 GMT
expires: Wed, 08 Jun 2022 19:19:07 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1918)
Size:   128968
Md5:    fe4f8b0fedb21eb40ccd052005f8b414
Sha1:   fc6e2a839ec1bf535fa6bc9b13776944c808d345
Sha256: 36846438ac69408df852dab393a9ba2b664fc5f1ab20d25a5139e18ffe0e9399
                                        
                                            GET /live2/mix4/undefined HTTP/1.1 
Host: assia22.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://assia22.com/live2/mix4/
Cookie: country=NO; _ga_Q3WP7SZC5D=GS1.1.1654715947.1.0.1654715947.0; _ga=GA1.1.1761116014.1654715947; HstCfa4665998=1654715947364; HstCla4665998=1654715947364; HstCmu4665998=1654715947364; HstPn4665998=1; HstPt4665998=1; HstCnv4665998=1; HstCns4665998=1

                                         
                                         31.220.0.201
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx/1.10.3 (Ubuntu)
Date: Wed, 08 Jun 2022 19:19:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://imasdk.googleapis.com
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   141
Md5:    a94321d1b68ed4ff115bac45d32c57a6
Sha1:   8a8a1a624f9f0f45d08f99200997cb75ebd0d323
Sha256: d61af8da5501b4b8085bbc73121eca98a83b18d57017280dfbddc5ded4c3ce72

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 08 Jun 2022 19:19:07 GMT
Cache-Control: public, max-age=18000
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /uploads/media/9/0/77709/v1/index.html?clickTag=https://z.cdn.trafficdok.com/go?z=2094559328&m=1754900915&c=1168679183&p0=1870060826&p1=1463644551&p2=1379430099&u=33ef760842ff8b48&t=1654715947 HTTP/1.1 
Host: d7.cdn.trafficdok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://assia22.com/
Upgrade-Insecure-Requests: 1

                                         
                                         178.162.196.143
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Wed, 08 Jun 2022 19:19:07 GMT
Last-Modified: Thu, 16 Sep 2021 13:45:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61434a94-5a9"
Expires: Thu, 09 Jun 2022 19:19:07 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   496
Md5:    7ca1e734e8b8c4ca62d3fc64627363e5
Sha1:   5e14c60c304b83f2a292cb300a44e655224d8846
Sha256: 4fa2c8fb86efa054d1dae451675ee4439ef9343a7e8277676961a19cf6267b61
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1589
Cache-Control: max-age=134044
Date: Wed, 08 Jun 2022 19:19:07 GMT
Etag: "62a05892-1d7"
Expires: Fri, 10 Jun 2022 08:33:11 GMT
Last-Modified: Wed, 08 Jun 2022 08:06:42 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /uploads/media/9/0/77709/v1/css/styles.css HTTP/1.1 
Host: d7.cdn.trafficdok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://d7.cdn.trafficdok.com/uploads/media/9/0/77709/v1/index.html?clickTag=https://z.cdn.trafficdok.com/go?z=2094559328&m=1754900915&c=1168679183&p0=1870060826&p1=1463644551&p2=1379430099&u=33ef760842ff8b48&t=1654715947

                                         
                                         178.162.196.143
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Wed, 08 Jun 2022 19:19:07 GMT
Last-Modified: Thu, 16 Sep 2021 13:45:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61434a94-4311"
Expires: Thu, 09 Jun 2022 19:19:07 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   3520
Md5:    c10e8841a5fdd3d308eec8f301bd8542
Sha1:   8ab9a620bd05e90e45ce6521d00695534ca1a379
Sha256: 427fda8d0bc00d51c1d33f6b9507b81601be61c3e30c418ba749a7655f091b44
                                        
                                            GET /js/core/bridge3.517.2_en.html HTTP/1.1 
Host: imasdk.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://assia22.com/
Upgrade-Insecure-Requests: 1

                                         
                                         142.250.74.138
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="ads-doubleclick-instream-static"
Report-To: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
Content-Length: 210269
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 08 Jun 2022 09:52:31 GMT
Expires: Thu, 08 Jun 2023 09:52:31 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 23 May 2022 16:49:57 GMT
Age: 33996


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (39845)
Size:   210269
Md5:    d34dc505d088665dfdd7e920de264ccc
Sha1:   59118abe155345d25e069276054e21858ab9139b
Sha256: 634f092986915f15c713c85344c9d7bcde70812f61d184e7e237e4a55d21fdb2
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 08 Jun 2022 19:19:07 GMT
Cache-Control: public, max-age=18000
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1DA1DB74E375B5D861EA231A68035B8A2092BC0BD8655898B91195877607B1C3"
Last-Modified: Wed, 08 Jun 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5074
Expires: Wed, 08 Jun 2022 20:43:41 GMT
Date: Wed, 08 Jun 2022 19:19:07 GMT
Connection: keep-alive

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 08 Jun 2022 19:19:07 GMT
Cache-Control: public, max-age=18000
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 08 Jun 2022 19:19:07 GMT
Cache-Control: public, max-age=18000
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 08 Jun 2022 19:19:07 GMT
Cache-Control: public, max-age=18000
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /uploads/media/9/0/77709/v1/img/logo.png HTTP/1.1 
Host: d7.cdn.trafficdok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://d7.cdn.trafficdok.com/uploads/media/9/0/77709/v1/css/styles.css

                                         
                                         178.162.196.143
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Wed, 08 Jun 2022 19:19:07 GMT
Content-Length: 6880
Last-Modified: Thu, 16 Sep 2021 13:45:56 GMT
Connection: keep-alive
ETag: "61434a94-1ae0"
Expires: Thu, 09 Jun 2022 19:19:07 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 311 x 159, 8-bit colormap, non-interlaced\012- data
Size:   6880
Md5:    3b3b3038671c9d913d09595b968745a3
Sha1:   179ddfcac643b124923d2e0e64a6981067a06b77
Sha256: 66eafae41031d213ee091f52fed9bc58a4be864f3670cd98e04fa872281b4d2d
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 08 Jun 2022 19:19:07 GMT
Cache-Control: public, max-age=18000
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /uploads/media/9/0/77709/v1/img/s1-1.png HTTP/1.1 
Host: d7.cdn.trafficdok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://d7.cdn.trafficdok.com/uploads/media/9/0/77709/v1/css/styles.css

                                         
                                         178.162.196.143
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Wed, 08 Jun 2022 19:19:07 GMT
Content-Length: 2758
Last-Modified: Thu, 16 Sep 2021 13:45:56 GMT
Connection: keep-alive
ETag: "61434a94-ac6"
Expires: Thu, 09 Jun 2022 19:19:07 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 249 x 254, 8-bit colormap, non-interlaced\012- data
Size:   2758
Md5:    0f48f49af6b9330559e469a09225663f
Sha1:   70c5bd68ad5cdba256df01dcc434e49b0fe4b719
Sha256: 7aa09b7f74d3b20ff710a21d58fad5ac30a00a9eed182ec3021f0d9d1e16b396
                                        
                                            GET /uploads/media/9/0/77709/v1/img/btn-flare.png HTTP/1.1 
Host: d7.cdn.trafficdok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://d7.cdn.trafficdok.com/uploads/media/9/0/77709/v1/css/styles.css

                                         
                                         178.162.196.143
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Wed, 08 Jun 2022 19:19:07 GMT
Content-Length: 3268
Last-Modified: Thu, 16 Sep 2021 13:45:56 GMT
Connection: keep-alive
ETag: "61434a94-cc4"
Expires: Thu, 09 Jun 2022 19:19:07 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 129 x 90, 8-bit colormap, non-interlaced\012- data
Size:   3268
Md5:    c59dccc2db87d9f73b56a9077cd57c9b
Sha1:   fbf7cd42908a5f0733f63d901c42bb41e56e4f28
Sha256: 77001281f5f3626f3904f75256b20768066de4bfa543bac476eb7331f144ca4e
                                        
                                            GET /uploads/media/9/0/77709/v1/img/s2-2.png HTTP/1.1 
Host: d7.cdn.trafficdok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://d7.cdn.trafficdok.com/uploads/media/9/0/77709/v1/css/styles.css

                                         
                                         178.162.196.143
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Wed, 08 Jun 2022 19:19:07 GMT
Content-Length: 12635
Last-Modified: Thu, 16 Sep 2021 13:45:56 GMT
Connection: keep-alive
ETag: "61434a94-315b"
Expires: Thu, 09 Jun 2022 19:19:07 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 179 x 187, 8-bit colormap, non-interlaced\012- data
Size:   12635
Md5:    3363704a93bd2e0df5772a0f3d3a9eeb
Sha1:   907a8c4c4e7d6b7d2f7141be9a44ca762dae9dee
Sha256: e9a137e8553a1eb454dcd5cfccd0f46d7d50c228b99d503badf43a78db11db26
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 08 Jun 2022 19:19:07 GMT
Cache-Control: public, max-age=18000
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/oswald/v48/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUZiZQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://d7.cdn.trafficdok.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10172
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 Jun 2022 20:58:58 GMT
expires: Tue, 06 Jun 2023 20:58:58 GMT
cache-control: public, max-age=31536000
age: 166809
last-modified: Mon, 09 May 2022 18:36:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 10172, version 1.0\012- data
Size:   10172
Md5:    58e5c92fd1a1fc89b8ca6d74ce4793b8
Sha1:   337771c465778aeed6de18195e0cbe9d9098d299
Sha256: 6e059f38d9d643cd149fa02dfd97d6844f9b106198e027f55e2fe1e9a1428acf
                                        
                                            GET /s/oswald/v48/TK3_WkUHHAIjg75cFRf3bXL8LICs18NvsUZiZQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://d7.cdn.trafficdok.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10260
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 Jun 2022 21:20:40 GMT
expires: Tue, 06 Jun 2023 21:20:40 GMT
cache-control: public, max-age=31536000
age: 165507
last-modified: Mon, 09 May 2022 18:36:17 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 10260, version 1.0\012- data
Size:   10260
Md5:    e462f7ffb08d8bf86fff4aade61b0d72
Sha1:   bbebc3b747cc5c12b513070faa1ceaf3331df1d4
Sha256: 1f8cb94dc31befeebeb9b93a9ab4194e8b839edd9985d973b23514f7a6c52a0c
                                        
                                            GET /uploads/media/9/0/77709/v1/img/bcg1-1280.png HTTP/1.1 
Host: d7.cdn.trafficdok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://d7.cdn.trafficdok.com/uploads/media/9/0/77709/v1/css/styles.css

                                         
                                         178.162.196.143
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Wed, 08 Jun 2022 19:19:07 GMT
Content-Length: 82602
Last-Modified: Thu, 16 Sep 2021 13:45:56 GMT
Connection: keep-alive
ETag: "61434a94-142aa"
Expires: Thu, 09 Jun 2022 19:19:07 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 1618 x 90, 8-bit colormap, non-interlaced\012- data
Size:   82602
Md5:    e6f3b84b5f0da052f04db71efcb1eeff
Sha1:   1999664e65c1520171c6a80aa91853316e3ea6e9
Sha256: cb87b2e0a2e0fa259ce0a7466ec9c415839f0938af95c787ae734e535e952369
                                        
                                            GET /uploads/media/9/0/77709/v1/img/s3-2.png HTTP/1.1 
Host: d7.cdn.trafficdok.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://d7.cdn.trafficdok.com/uploads/media/9/0/77709/v1/css/styles.css

                                         
                                         178.162.196.143
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Wed, 08 Jun 2022 19:19:07 GMT
Content-Length: 15432
Last-Modified: Thu, 16 Sep 2021 13:45:56 GMT
Connection: keep-alive
ETag: "61434a94-3c48"
Expires: Thu, 09 Jun 2022 19:19:07 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Headers: X-PINGOTHER
Access-Control-Max-Age: 1728000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block;
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 206 x 288, 8-bit colormap, non-interlaced\012- data
Size:   15432
Md5:    09298e4e4e02e2ca2e5f9fe8b4f73f9d
Sha1:   0728e93c1b27ea01bc1cbccf33b887e360da4ca0
Sha256: 6994c1fe85f33a2ab515b9bd512ec2ff4a96c66455eb401bd031df7bd134ceed
                                        
                                            GET /stats/0.php?4665998&@f16&@g1&@h1&@i1&@j1654715947364&@k0&@l1&@mMix4-live2&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:43863173&@b3:1654715947&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fassia22.com%2Flive2%2Fmix4%2F&@w HTTP/1.1 
Host: s4.histats.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://assia22.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.99.8.28
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Date: Wed, 08 Jun 2022 19:19:07 GMT
Content-Length: 52
Connection: close


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   52
Md5:    9f3660c78cd971ffc44b3a26ab1039da
Sha1:   c128bc9e1bdb02bb50a1e714bc3513b1f2552974
Sha256: 77af433345b3891ea2833af5384eadd58bc4e0e3723d8a59ec3512f39282e561
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 08 Jun 2022 19:19:07 GMT
Cache-Control: public, max-age=18000
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /css2?family=Oswald:wght@500;700&display=swap HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://d7.cdn.trafficdok.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.211.10
HTTP/2 200 OK
                                        
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 Jun 2022 19:19:07 GMT
date: Wed, 08 Jun 2022 19:19:07 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   91283
Md5:    be1cfded0b00a99277e214f8bf317374
Sha1:   659c95edd22b856526c92e974d805b74ac79cdf2
Sha256: de4fd820382d0eee346de748978b724c1f3b9d2bdfc476f4b3214fdaa8dccd4c
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 9Pr8cVTUa8wJTyruZwdpZQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         34.214.236.46
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xfSUAp873M/7M3MwVIwlefz7T0Y=

                                        
                                            POST /g/collect?v=2&tid=G-Q3WP7SZC5D&gtm=2oe660&_p=1910765210&_z=ccd.t9B&cid=1761116014.1654715947&ul=en-us&sr=1280x1024&_s=1&sid=1654715947&sct=1&seg=0&dl=http%3A%2F%2Fassia22.com%2Flive2%2Fmix4%2F&dt=Mix4-live2&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://assia22.com
Connection: keep-alive
Referer: http://assia22.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         216.58.207.238
HTTP/2 204 No Content
                                        
access-control-allow-origin: http://assia22.com
date: Wed, 08 Jun 2022 19:19:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E760FFEA73B072D1688ADCC8B9B4FEE846467DB6DA54939A0C6483B050A360B1"
Last-Modified: Mon, 06 Jun 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11278
Expires: Wed, 08 Jun 2022 22:27:06 GMT
Date: Wed, 08 Jun 2022 19:19:08 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E760FFEA73B072D1688ADCC8B9B4FEE846467DB6DA54939A0C6483B050A360B1"
Last-Modified: Mon, 06 Jun 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11278
Expires: Wed, 08 Jun 2022 22:27:06 GMT
Date: Wed, 08 Jun 2022 19:19:08 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E760FFEA73B072D1688ADCC8B9B4FEE846467DB6DA54939A0C6483B050A360B1"
Last-Modified: Mon, 06 Jun 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11278
Expires: Wed, 08 Jun 2022 22:27:06 GMT
Date: Wed, 08 Jun 2022 19:19:08 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E760FFEA73B072D1688ADCC8B9B4FEE846467DB6DA54939A0C6483B050A360B1"
Last-Modified: Mon, 06 Jun 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11278
Expires: Wed, 08 Jun 2022 22:27:06 GMT
Date: Wed, 08 Jun 2022 19:19:08 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa8ea5f00-9c8a-4dc6-aa6e-2e3396d00a98.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 10372
x-amzn-requestid: 19a92916-fbab-4ea2-a2a0-dfefe5f28488
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: TYEwKG-LoAMFaWQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-629fe800-4859bf8d498125647b20a52e;Sampled=0
x-amzn-remapped-date: Wed, 08 Jun 2022 00:06:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: FTHbX_PZtuEUG81L9GWzAbIkSmpHo1ZDGG1uPj8pvOia75CwqS3PIQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Jun 2022 00:33:05 GMT
age: 67563
etag: "7d2b3ed2f5d5ec99532c546031d55ee920239b75"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10372
Md5:    c569c7b30701a42056c16702e7450dd1
Sha1:   7d2b3ed2f5d5ec99532c546031d55ee920239b75
Sha256: 7c6ee1f18717623f6f6aa906c913bf24807762c9ca27702a8b0625334dd1d0d4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15cd24a0-05e4-45c2-988b-a38f8a74eb54.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 11981
x-amzn-requestid: 1d80cb36-931a-4c36-b0ea-3911f9adf305
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: TYEvGHgUIAMF0hQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-629fe7fa-425947980f4e799e4bc7170c;Sampled=0
x-amzn-remapped-date: Wed, 08 Jun 2022 00:06:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: SIzVHcBI799t1glXSw108l_fHgG9emsPP4EQw22wnYIT9HaafIqBPg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 a2c13de7f3df76280ef01a6604863734.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Jun 2022 00:43:35 GMT
age: 66933
etag: "cb50d2e012ef8f76cde2d0d61231c2a839f5363d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11981
Md5:    d25d4b5d8128f318b987f85c22bd200d
Sha1:   cb50d2e012ef8f76cde2d0d61231c2a839f5363d
Sha256: a8fb984027cf461be116c8ef4e9220c7f05d31bb2333e8c3b3ead6e6e5ddf4a3
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc26dd17-7d16-484b-9734-cca3df3ba8ee.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 4098
x-amzn-requestid: 76317a3d-5dd7-48a3-aab2-39c8a87d960b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: TK5zJHt1IAMFdoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-629aa347-6e296baf0b8ea6a71b01c45c;Sampled=0
x-amzn-remapped-date: Sat, 04 Jun 2022 00:11:51 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: pw8LDfS3bAyvJp344CKAf22xZlyUezmeF84L3ddCjlGKOvFFKgdxUQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Jun 2022 20:07:09 GMT
age: 83519
etag: "7623d2c2751f7691181647abe22fd81b292937c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4098
Md5:    5b834e19ab83f229d97e8bef4f458cf6
Sha1:   7623d2c2751f7691181647abe22fd81b292937c3
Sha256: 4b4b6b9529881d7e1a820a1a041b45c9f0bfabcd29ea52cd1e774b13f2933357
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed557df4-e312-4200-8050-0f90c1971e32.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 7415
x-amzn-requestid: c9d4b2bb-4422-4f9b-9723-ac80d96d8e55
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: TYGIaErIIAMF0wQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-629fea35-728ee9e825bccb4842431208;Sampled=0
x-amzn-remapped-date: Wed, 08 Jun 2022 00:15:49 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: TIBn3L5Kkx4ULD5T0PiSDJ4eUtIuHe8FzM5hA745mYA_-y3Jcae6CQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Jun 2022 00:17:30 GMT
age: 68498
etag: "eabce1016cf3107ec0bc6665b1dc0535212e3d66"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7415
Md5:    ceb8c4deed2e765d2555ccd33fda39b2
Sha1:   eabce1016cf3107ec0bc6665b1dc0535212e3d66
Sha256: fb5449a810bb0946d33f318b9c5d5552dc1213b1ab57bd8286273546cacbe8bb
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd8e1966-e114-4b6e-a2b6-d74d73b49f44.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 8216
x-amzn-requestid: ce38b3fd-ec57-4d5b-95fd-24a2f8899801
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: TUydTHIwoAMFZoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-629e9788-65c3a8f234510f4b0e24b673;Sampled=0
x-amzn-remapped-date: Tue, 07 Jun 2022 00:10:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 6v5cWZYb2lb11TNWsOI_I14jFjxDNIQpuSNl1GVLPeDeCi8sBz4KFw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Jun 2022 04:08:50 GMT
age: 54618
etag: "fd2c009d8696b7707204b8b418bac41284ef93c9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8216
Md5:    cc9cd4c3424411865d9d9c730f127c69
Sha1:   fd2c009d8696b7707204b8b418bac41284ef93c9
Sha256: 2b16b9112f027ec1e87a8daa4977833d0c59bd6086594931d0ff89d554f5185c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23afdca3-3dc5-4648-9091-5f8380d56e35.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 6324
x-amzn-requestid: 539d7fc4-d502-421d-b8f4-ef9e83a8ed1b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: TUxslEgIIAMFfMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-629e9650-47c5f968687edcac0d5a9389;Sampled=0
x-amzn-remapped-date: Tue, 07 Jun 2022 00:05:36 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: vWS3l-dYbxc9XTTiQbg-ud0pXn2e15-XtmclvKrsgwNknmVTNZLLrQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Jun 2022 00:11:45 GMT
age: 68843
etag: "249823e8b84ca7d84c04828f67f2324179b59b2a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6324
Md5:    973566322da3f81834380aedf12794b5
Sha1:   249823e8b84ca7d84c04828f67f2324179b59b2a
Sha256: 1d0839f731fe096d400bbebbff4a1b20c10c920b68159eefdecdb5b078cdcc55