Report - srvapm03.isabnet.com/meridium/api/core/security/sessionhttps:/pirelli-my.sharepoint.com/personal/belluda001_group_pirelli_com/Documents/R&D%20Digital%20Development%20FLUX.pptx?d=wae58a7deed654c83ac7c399ec2cf80fc&web=1

Report Overview

Submitted URL
srvapm03.isabnet.com/meridium/api/core/security/sessionhttps:/pirelli-my.sharepoint.com/personal/belluda001_group_pirelli_com/Documents/R&D%20Digital%20Development%20FLUX.pptx?d=wae58a7deed654c83ac7c399ec2cf80fc&web=1
IP
45.33.2.79
ASN
#63949 Linode, LLC
Submitted
2023-02-07 08:52:26
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	48 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
srvapm03.isabnet.com	unknown	2022-11-02T22:58:10Z	2023-02-17T09:53:43Z	1.8 kB	23 kB	45.33.20.235
www1.isabnet.com	unknown	2022-06-09T17:33:21Z	2023-03-12T23:56:14Z	3.3 kB	9.9 kB	99.83.136.84
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	2.4 kB	4.9 kB	142.250.74.131
partner.googleadservices.com	798	2012-10-03T03:04:21Z	2023-03-13T08:39:17Z	466 B	787 B	216.58.207.226
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.4 kB	6.2 kB	23.33.119.27
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	54.148.87.114
www.google.com	7	2015-05-10T13:11:19Z	2023-03-13T06:40:43Z	2.5 kB	112 kB	216.58.207.228
d38psrni17bvxu.cloudfront.net	unknown	2022-09-22T18:48:38Z	2023-03-13T08:42:29Z	357 B	12 kB	54.230.245.138
afs.googleusercontent.com	12123	2013-05-06T21:11:00Z	2023-03-13T05:21:41Z	442 B	1.1 kB	142.250.74.97

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-02-07	medium	www1.isabnet.com/ls.php	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (18)

	URL	Size	First Seen	Last Seen
	www.google.com/adsense/domains/caf.js?abp=1	148 kB	2023-03-13	2023-03-13
Pretty URL www.google.com/adsense/domains/caf.js?abp=1 IP 216.58.207.228 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:34:51 Last Seen2023-03-13 20:46:46 Times Seen1 Hash 1f49d36e377b246ac4b2dd21bab44c9d d323712e0a6eff94f17927e1eef389b34c25b019 c5e23931a69ed78a873c7be642dcc8f423f406a3e5629a34c8d12ce167ae2f95 Loading...

	www1.isabnet.com/?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0	968 B	2023-03-08	2024-04-26
Pretty URL www1.isabnet.com/?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0 IP 99.83.136.84 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:24:08 Last Seen2024-04-26 23:55:48 Times Seen27739 Hash c77554570ae0fa8e4fb31747dc213058 e989fbde07e6a68975c7a31e1d4df76afd90b96f c3f831fe1717c6d76a8950ac5e7dc88ceee7440d079b11584be5c6c5b3269e77 Loading...

	www1.isabnet.com/?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0	29 B	2023-03-12	2024-01-03
Pretty URL www1.isabnet.com/?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0 IP 99.83.136.84 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 12:56:36 Last Seen2024-01-03 12:53:29 Times Seen10974 Hash 5405126a58d646a09ad6d154c5d3a335 9e64f2a4ee55fef112fbd9654e76e8eabb751e28 76229fdaf8e9553878811c30cf5305bd2dab82248d0054d3fb2e760b35f32154 Loading...

	srvapm03.isabnet.com/meridium/api/core/security/sessionhttps:/pirelli-my.sharepoint.com/personal/belluda001_group_pirelli_com/Documents/R&D%20Digital%20Development%20FLUX.pptx?d=wae58a7deed654c83ac7c399ec2cf80fc&web=1	295 B	2023-03-12	2023-04-17
Pretty URL srvapm03.isabnet.com/meridium/api/core/security/sessionhttps:/pirelli-my.sharepoint.com/personal/belluda001_group_pirelli_com/Documents/R&D%20Digital%20Development%20FLUX.pptx?d=wae58a7deed654c83ac7c399ec2cf80fc&web=1 IP 45.33.20.235 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:33:38 Last Seen2023-04-17 10:54:20 Times Seen995 Hash 55d924c46ca242980c8747a74666a082 6b4b5690848f934e34660ae22e61699ca0baf731 cb76393cfbb49fafe6d4bab97eca2cdfc435132b387247d2eb972e8acb5d8803 Loading...

	srvapm03.isabnet.com/meridium/api/core/security/sessionhttps:/pirelli-my.sharepoint.com/personal/belluda001_group_pirelli_com/Documents/R&D%20Digital%20Development%20FLUX.pptx?d=wae58a7deed654c83ac7c399ec2cf80fc&web=1	776 B	2023-03-13	2023-03-13
Pretty URL srvapm03.isabnet.com/meridium/api/core/security/sessionhttps:/pirelli-my.sharepoint.com/personal/belluda001_group_pirelli_com/Documents/R&D%20Digital%20Development%20FLUX.pptx?d=wae58a7deed654c83ac7c399ec2cf80fc&web=1 IP 45.33.20.235 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 18:55:44 Last Seen2023-03-13 18:55:44 Times Seen1 Hash 7330118027d5087ead1f42260a819ea0 9fbd336c3c91a07854f4736b15d3b72b842853b0 4bffd041484da3df5460c94fb8231b317fc22592d2dd1ab0a5f79a51269364a8 Loading...

	partner.googleadservices.com/gampad/cookie.js?domain=www1.isabnet.com&client=dp-teaminternet12_3ph&product=SAS&callback=__sasCookie	362 B	2023-03-13	2023-03-13
Pretty URL partner.googleadservices.com/gampad/cookie.js?domain=www1.isabnet.com&client=dp-teaminternet12_3ph&product=SAS&callback=__sasCookie IP 216.58.207.226 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 18:55:44 Last Seen2023-03-13 18:55:44 Times Seen1 Hash 8e5c32c78f625006978ec911084859f2 3c92da1dec36d31312d4ed6266703d3d4b38b75e 7d3eedeafb694c7ea47f0924aea5277478c278df6b5ff78c66d7bdf078c29315 Loading...

	www1.isabnet.com/?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0	71 B	2023-03-08	2024-01-04
Pretty URL www1.isabnet.com/?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0 IP 99.83.136.84 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:23:53 Last Seen2024-01-04 08:38:22 Times Seen25410 Hash 1a5a5e1b6a26f57b95e3dd42f60612f4 b62a27e55a59b49084e682bd3c1588f6a40881ab 4066da16910907c7962da8e7011bf0cd62b6f2dcddb1911e3ea2de03ce3e1dc7 Loading...

	www.google.com/adsense/domains/caf.js	147 kB	2023-03-13	2023-03-13
Pretty URL www.google.com/adsense/domains/caf.js IP 216.58.207.228 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:06:03 Last Seen2023-03-13 19:50:05 Times Seen1 Hash a009d2c675a342b28545f6bbd45f3a6a 13b26a6929ec3eb8f499b657afb3c39ca4a4309a 254120f0af1e52ac7bbff7b6e94c3a65be0136c2e75a6fcd5b3ed68928f675f9 Loading...

	srvapm03.isabnet.com/meridium/api/core/security/sessionhttps:/pirelli-my.sharepoint.com/personal/belluda001_group_pirelli_com/Documents/R&D%20Digital%20Development%20FLUX.pptx?d=wae58a7deed654c83ac7c399ec2cf80fc&web=1	54 kB	2023-03-13	2023-03-14
Pretty URL srvapm03.isabnet.com/meridium/api/core/security/sessionhttps:/pirelli-my.sharepoint.com/personal/belluda001_group_pirelli_com/Documents/R&D%20Digital%20Development%20FLUX.pptx?d=wae58a7deed654c83ac7c399ec2cf80fc&web=1 IP 45.33.20.235 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:39:57 Last Seen2023-03-14 00:56:22 Times Seen1 Hash 1d630f3591d9c2ce11f499097cd5f82a 8464179972e3a7114d92bd156c8f76689dd128a6 b8108e97000cf4c92a43a01620dbc5a28d9f1033ef44f19c5c9b2f3f04e755df Loading...

	www1.isabnet.com/?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0	719 B	2023-03-13	2023-03-13
Pretty URL www1.isabnet.com/?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0 IP 99.83.136.84 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 18:55:44 Last Seen2023-03-13 18:55:44 Times Seen1 Hash 9a046e31a3f3d8b4c6138838efd03dec 612f506cf01fda27d8ae8011ee8c8df724753297 eb10266dea813f900a4f0dd00f880ddfa0c8203625d2203032a7beff31834e97 Loading...

	www1.isabnet.com/?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0	1.4 kB	2023-03-13	2023-03-13
Pretty URL www1.isabnet.com/?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0 IP 99.83.136.84 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 18:55:44 Last Seen2023-03-13 18:55:44 Times Seen1 Hash 5af0821fae2f1663e452c167fef8afc0 c08ce618c337be7ee21a70a5335b4672eab78ef4 5e6e03f23893ae00a1da587237e3f67f324dce008ea2219df7e887d4f6b14aa2 Loading...

	www1.isabnet.com/?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0	472 B	2023-03-13	2024-01-03
Pretty URL www1.isabnet.com/?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0 IP 99.83.136.84 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 06:13:46 Last Seen2024-01-03 14:22:39 Times Seen25251 Hash d31eefc1e54bdae9204297e4ae5b9cce fc49bf319586a623670a81c01d43bbd93b477fbb 2683a6247a15433dd269eaefbc7131b1326c7bc0146361913ea10ad8fa23bb14 Loading...

	www1.isabnet.com/?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0	3.3 kB	2023-03-13	2023-03-13
Pretty URL www1.isabnet.com/?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0 IP 99.83.136.84 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 18:55:44 Last Seen2023-03-13 18:55:44 Times Seen1 Hash d6e394d22e3c26bdf97db2872b677621 a637f4960afc4b3e6fb11f4674c9c21446e55e6b f45425ebf9a89ee54618a9c8516216ee72d2f273e592557789de01170b2a47a6 Loading...

	www1.isabnet.com/?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0	40 B	2023-03-08	2023-05-23
Pretty URL www1.isabnet.com/?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0 IP 99.83.136.84 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:24:08 Last Seen2023-05-23 17:14:04 Times Seen4695 Hash bbf1d9896eb3544c767d965a657e142c 5df55c7669b87f414501ffc91de02e4756141a83 f73cb6aef53ef853b780335ddf7d4cb319edcf02c8c050f270639a91226a09bc Loading...

	www1.isabnet.com/?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0	246 B	2023-03-13	2023-03-13
Pretty URL www1.isabnet.com/?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0 IP 99.83.136.84 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 18:55:44 Last Seen2023-03-13 18:55:44 Times Seen1 Hash 9379c6a3febededbd0a45c371319e5fb d7a822b1e30566ce4653ba81ec849610adbefafc 425766cc7219038cbe516e42287ca9c0ef0027abe93b71d9b53f22312a6a522a Loading...

	www1.isabnet.com/?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0	7.0 kB	2023-03-13	2024-01-03
Pretty URL www1.isabnet.com/?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0 IP 99.83.136.84 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 06:10:31 Last Seen2024-01-03 14:22:39 Times Seen25920 Hash 04b2b624f94797c26d17a57f399d9356 3143986e839c47a5c1eff03bd9df63ecc54dca9c 233b1cbfb295a0629bcf68a2a4198a62132f02ee1f061ada2ce7143bd5d2dabb Loading...

	www1.isabnet.com/?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0	65 B	2023-03-12	2023-12-04
Pretty URL www1.isabnet.com/?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0 IP 99.83.136.84 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 13:34:00 Last Seen2023-12-04 00:35:16 Times Seen35 Hash 190d9b949811690429426120739473af e04a6781fafcf2e840e06d47d8cf8f65fd4c1d4b d14308fb4ed4db086e3e6cb92a4a1cb96926e251a1fb06f24703decddec4fca1 Loading...

	www.google.com/afs/ads?adtest=off&psid=6016880802&pcsa=false&channel=000001%2C000003%2C001812%2Cbucket103&client=dp-teaminternet12_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fwww1.isabnet.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQxMDN8fHx8fHw2M2UyMTE0MTI2ZTBhfHx8MTY3NTc1OTkzNy4xNjk3fGEyYWIwYzY0NGQ1YTY2ZTVkMTNiYTcwOTg5MDVlMDI2N2IxZjE1Nzh8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfGV5Sm9iQ0k2SW1WdUluMD18fDB8ZXlKemRXSnBaRFFpT2lJeE5qYzFOelU1T1RNMkxqQXlOell3TVRBd01EQWlmUT09fGRkYmYxMmU4NDZjM2VkMDhhNzlmNjdkZDZjNDQ1OTliMWQ1YmM5Y2F8MHxkcC10ZWFtaW50ZXJuZXQxMl8zcGh8MHww&terms=Student%20Intranet%20Platform%2CProfessor%20Self%20Service%20Portal%20Software%2CPassword%20Management%20Software&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2983123576258743&oe=UTF-8&ie=UTF-8&fexp=21404&format=r3%7Cs&nocache=6821675759986415&num=0&output=afd_ads&domain_name=www1.isabnet.com&v=3&bsl=8&pac=0&u_his=1&u_tz=0&dt=1675759986416&u_w=1280&u_h=1024&biw=1280&bih=939&psw=1280&psh=760&frm=0&cl=503972142&uio=--&cont=tc&jsid=caf&jsv=503972142&rurl=http%3A%2F%2Fwww1.isabnet.com%2F%3Ftm%3D1%26subid4%3D1675759936.0276010000%26kw%3DEnterprise%2BExtranet%2BPortal%2BSystem%2BSoftware%26KW1%3DStudent%2520Intranet%2520Platform%26KW2%3DProfessor%2520Self%2520Service%2520Portal%2520Software%26KW3%3DPassword%2520Management%2520Software%26searchbox%3D0%26domainname%3D0%26backfill%3D0&adbw=master-1%3A530	7.3 kB	2023-03-13	2023-03-13
Pretty URL www.google.com/afs/ads?adtest=off&psid=6016880802&pcsa=false&channel=000001%2C000003%2C001812%2Cbucket103&client=dp-teaminternet12_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fwww1.isabnet.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQxMDN8fHx8fHw2M2UyMTE0MTI2ZTBhfHx8MTY3NTc1OTkzNy4xNjk3fGEyYWIwYzY0NGQ1YTY2ZTVkMTNiYTcwOTg5MDVlMDI2N2IxZjE1Nzh8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfGV5Sm9iQ0k2SW1WdUluMD18fDB8ZXlKemRXSnBaRFFpT2lJeE5qYzFOelU1T1RNMkxqQXlOell3TVRBd01EQWlmUT09fGRkYmYxMmU4NDZjM2VkMDhhNzlmNjdkZDZjNDQ1OTliMWQ1YmM5Y2F8MHxkcC10ZWFtaW50ZXJuZXQxMl8zcGh8MHww&terms=Student%20Intranet%20Platform%2CProfessor%20Self%20Service%20Portal%20Software%2CPassword%20Management%20Software&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2983123576258743&oe=UTF-8&ie=UTF-8&fexp=21404&format=r3%7Cs&nocache=6821675759986415&num=0&output=afd_ads&domain_name=www1.isabnet.com&v=3&bsl=8&pac=0&u_his=1&u_tz=0&dt=1675759986416&u_w=1280&u_h=1024&biw=1280&bih=939&psw=1280&psh=760&frm=0&cl=503972142&uio=--&cont=tc&jsid=caf&jsv=503972142&rurl=http%3A%2F%2Fwww1.isabnet.com%2F%3Ftm%3D1%26subid4%3D1675759936.0276010000%26kw%3DEnterprise%2BExtranet%2BPortal%2BSystem%2BSoftware%26KW1%3DStudent%2520Intranet%2520Platform%26KW2%3DProfessor%2520Self%2520Service%2520Portal%2520Software%26KW3%3DPassword%2520Management%2520Software%26searchbox%3D0%26domainname%3D0%26backfill%3D0&adbw=master-1%3A530 IP 216.58.207.228 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 18:55:44 Last Seen2023-03-13 18:55:44 Times Seen1 Hash fb07ead36f96e323d53d35cb5c95e591 0b86a9b8a8bcac7ef51e106deebbdc5312953447 aeaa6c0eb5120d0c18ab994590b854ffe3a0b46b888bf615fcd72a30c6f62827 Loading...

HTTP Transactions (38)

URL IP Response Size

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4761
Expires: Tue, 07 Feb 2023 10:11:37 GMT
Date: Tue, 07 Feb 2023 08:52:16 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dca68db7aea32f6683ce8d542c078f04
19c495238df74fca680e21f18627ff94de5dd2e5
35cab3987fc0e4a41b305cb208c1e33fa38ce8bdfd9f386c3dc0411dd4d5ac61

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15900
Expires: Tue, 07 Feb 2023 13:17:16 GMT
Date: Tue, 07 Feb 2023 08:52:16 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Content-Type, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 07 Feb 2023 08:36:31 GMT
content-type: application/json
age: 945
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12449
Expires: Tue, 07 Feb 2023 12:19:45 GMT
Date: Tue, 07 Feb 2023 08:52:16 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: +7HMYsv/eumb7GcbEhSPGsubVdJ3A/qTWRX/ck1JVKzD9gq2YBfSDnOSUSqQhFlW/GepIqW5anM=
x-amz-request-id: CJ3K8JPWFD37BKEV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 07 Feb 2023 08:45:30 GMT
age: 406
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

srvapm03.isabnet.com/meridium/api/core/security/sessionhttps:/pirelli-my.sharepoint.com/personal/belluda001_group_pirelli_com/Documents/R&D%20Digital%20Development%20FLUX.pptx?d=wae58a7deed654c83ac7c399ec2cf80fc&web=1

45.33.20.235

200 OK

22 kB

URL HTTP/1.1
srvapm03.isabnet.com/meridium/api/core/security/sessionhttps:/pirelli-my.sharepoint.com/personal/belluda001_group_pirelli_com/Documents/R&D%20Digital%20Development%20FLUX.pptx?d=wae58a7deed654c83ac7c399ec2cf80fc&web=1
IP
45.33.20.235:0
ASN
#63949 Linode, LLC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (54539)
Size
22 kB (21903 bytes)
Hash
84321793a1cad1f655864e4118ae21ed
f4a4bb6b169f62d402b7c2385a46cd4aa00c7c2b
a8f70512c9fb82413c2540a46f8e83eaa414fdf9e9b837ef502acc1813db2d56

HTTP Headers

GET /meridium/api/core/security/sessionhttps:/pirelli-my.sharepoint.com/personal/belluda001_group_pirelli_com/Documents/R&D%20Digital%20Development%20FLUX.pptx?d=wae58a7deed654c83ac7c399ec2cf80fc&web=1 HTTP/1.1
Host: srvapm03.isabnet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
server: openresty/1.13.6.1
date: Tue, 07 Feb 2023 08:52:15 GMT
content-type: text/html
transfer-encoding: chunked
content-encoding: gzip
connection: close

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 07 Feb 2023 08:52:16 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Expires, Pragma, Retry-After, Last-Modified, ETag, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 07 Feb 2023 08:51:19 GMT
age: 57
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

srvapm03.isabnet.com/meridium/api/core/security/sessionhttps%3A/pirelli-my.sharepoint.com/personal/belluda001_group_pirelli_com/Documents/R%26D%20Digital%20Development%20FLUX.pptx?gp=1&js=1&uuid=1675759935.0048105640&other_args=eyJ1cmkiOiAiL21lcmlkaXVtL2FwaS9jb3JlL3NlY3VyaXR5L3Nlc3Npb25odHRwczovcGlyZWxsaS1teS5zaGFyZXBvaW50LmNvbS9wZXJzb25hbC9iZWxsdWRhMDAxX2dyb3VwX3BpcmVsbGlfY29tL0RvY3VtZW50cy9SJkQgRGlnaXRhbCBEZXZlbG9wbWVudCBGTFVYLnBwdHgiLCAiYXJncyI6ICJkPXdhZTU4YTdkZWVkNjU0YzgzYWM3YzM5OWVjMmNmODBmYyZ3ZWI9MSIsICJyZWZlcmVyIjogIiIsICJhY2NlcHQiOiAidGV4dC9odG1sLGFwcGxpY2F0aW9uL3hodG1sK3htbCxhcHBsaWNhdGlvbi94bWw7cT0wLjksaW1hZ2UvYXZpZixpbWFnZS93ZWJwLCovKjtxPTAuOCJ9

45.33.20.235

302 Found

0 B

URL HTTP/1.1
srvapm03.isabnet.com/meridium/api/core/security/sessionhttps%3A/pirelli-my.sharepoint.com/personal/belluda001_group_pirelli_com/Documents/R%26D%20Digital%20Development%20FLUX.pptx?gp=1&js=1&uuid=1675759935.0048105640&other_args=eyJ1cmkiOiAiL21lcmlkaXVtL2FwaS9jb3JlL3NlY3VyaXR5L3Nlc3Npb25odHRwczovcGlyZWxsaS1teS5zaGFyZXBvaW50LmNvbS9wZXJzb25hbC9iZWxsdWRhMDAxX2dyb3VwX3BpcmVsbGlfY29tL0RvY3VtZW50cy9SJkQgRGlnaXRhbCBEZXZlbG9wbWVudCBGTFVYLnBwdHgiLCAiYXJncyI6ICJkPXdhZTU4YTdkZWVkNjU0YzgzYWM3YzM5OWVjMmNmODBmYyZ3ZWI9MSIsICJyZWZlcmVyIjogIiIsICJhY2NlcHQiOiAidGV4dC9odG1sLGFwcGxpY2F0aW9uL3hodG1sK3htbCxhcHBsaWNhdGlvbi94bWw7cT0wLjksaW1hZ2UvYXZpZixpbWFnZS93ZWJwLCovKjtxPTAuOCJ9
IP
45.33.20.235:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /meridium/api/core/security/sessionhttps%3A/pirelli-my.sharepoint.com/personal/belluda001_group_pirelli_com/Documents/R%26D%20Digital%20Development%20FLUX.pptx?gp=1&js=1&uuid=1675759935.0048105640&other_args=eyJ1cmkiOiAiL21lcmlkaXVtL2FwaS9jb3JlL3NlY3VyaXR5L3Nlc3Npb25odHRwczovcGlyZWxsaS1teS5zaGFyZXBvaW50LmNvbS9wZXJzb25hbC9iZWxsdWRhMDAxX2dyb3VwX3BpcmVsbGlfY29tL0RvY3VtZW50cy9SJkQgRGlnaXRhbCBEZXZlbG9wbWVudCBGTFVYLnBwdHgiLCAiYXJncyI6ICJkPXdhZTU4YTdkZWVkNjU0YzgzYWM3YzM5OWVjMmNmODBmYyZ3ZWI9MSIsICJyZWZlcmVyIjogIiIsICJhY2NlcHQiOiAidGV4dC9odG1sLGFwcGxpY2F0aW9uL3hodG1sK3htbCxhcHBsaWNhdGlvbi94bWw7cT0wLjksaW1hZ2UvYXZpZixpbWFnZS93ZWJwLCovKjtxPTAuOCJ9 HTTP/1.1
Host: srvapm03.isabnet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://srvapm03.isabnet.com/meridium/api/core/security/sessionhttps:/pirelli-my.sharepoint.com/personal/belluda001_group_pirelli_com/Documents/R&D%20Digital%20Development%20FLUX.pptx?d=wae58a7deed654c83ac7c399ec2cf80fc&web=1
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
server: openresty/1.13.6.1
date: Tue, 07 Feb 2023 08:52:16 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: http://www1.isabnet.com/?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0
referrer-policy: no-referrer
x-mtm-path: 0
vary: Accept-Language
content-language: en
set-cookie: mtm_delivered=WyJzcnZhcG0wMy5pc2FibmV0LmNvbSIsImh0dHA6Ly93d3cxLmlzYWJuZXQuY29tLz90bT0xJnN1YmlkND0xNjc1NzU5OTM2LjAyNzYwMTAwMDAma3c9RW50ZXJwcmlzZStFeHRyYW5ldCtQb3J0YWwrU3lzdGVtK1NvZnR3YXJlJktXMT1TdHVkZW50JTIwSW50cmFuZXQlMjBQbGF0Zm9ybSZLVzI9UHJvZmVzc29yJTIwU2VsZiUyMFNlcnZpY2UlMjBQb3J0YWwlMjBTb2Z0d2FyZSZLVzM9UGFzc3dvcmQlMjBNYW5hZ2VtZW50JTIwU29mdHdhcmUmc2VhcmNoYm94PTAmZG9tYWlubmFtZT0wJmJhY2tmaWxsPTAiLDEsIjIwMjMtMDItMDcgMDg6NTI6MTYiLDEsIjE2NzU3NTk5MzYuMDI3NjAxMDAwMCIsMTgzLG51bGwsbnVsbF0:1pPJi4:Xq0XXxghkQP1moFXLLs5JVjtO0w; expires=Tue, 07-Feb-2023 09:52:16 GMT; Max-Age=3600; Path=/
connection: close

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14912
Expires: Tue, 07 Feb 2023 13:00:48 GMT
Date: Tue, 07 Feb 2023 08:52:16 GMT
Connection: keep-alive

push.services.mozilla.com/

54.148.87.114

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.148.87.114:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VXeJvPtQ5OSY+H336W/2MA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: yK4mES25qca2oq2BnP0VStcIcS0=

www1.isabnet.com/?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0

99.83.136.84

200 OK

7.2 kB

URL HTTP/1.1
www1.isabnet.com/?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0
IP
99.83.136.84:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3042)
Size
7.2 kB (7212 bytes)
Hash
ab751e91c7e2c08d6dc0b093343408d7
41c5865384e1432a2c394bafc0e58b121985222f
8d67423e404a2cd6ef067d70dfdedb14002ea4c577ae429e2ac99c9dd2012bb9

HTTP Headers

GET /?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0 HTTP/1.1
Host: www1.isabnet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 08:52:17 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Buckets: bucket103
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_iEv2uvN1wsQF2j43j1QI5uOJjDlDOJJVsOLqs3mnJSutGX4/juOEHHmJgWw0Xqqvs8/z4x5q8nwhTO2vF80ohA==
X-Template: tpl_CleanPeppermintBlack_twoclick
X-Language: norwegian
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
X-Domain: isabnet.com
X-Subdomain: www1
Content-Encoding: gzip

www.google.com/adsense/domains/caf.js?abp=1

216.58.207.228

200 OK

54 kB

URL HTTP/1.1
www.google.com/adsense/domains/caf.js?abp=1
IP
216.58.207.228:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1743)
Size
54 kB (53822 bytes)
Hash
be31f3f48d77cf13f4e06c6bae9bca2f
8c5e2369acdcde297055c556029ada5aba7640e5
e858749a28d91d5572c4a09a4534d45c8845cac65589958bd711b41361f2b638

HTTP Headers

GET /adsense/domains/caf.js?abp=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.isabnet.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Type: text/javascript; charset=UTF-8
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="ads-afs-ui"
Report-To: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
Date: Tue, 07 Feb 2023 08:52:17 GMT
Expires: Tue, 07 Feb 2023 08:52:17 GMT
Cache-Control: private, max-age=3600
ETag: "7542557195153031068"
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: sffe
X-XSS-Protection: 0

www1.isabnet.com/track.php?domain=isabnet.com&toggle=browserjs&uid=MTY3NTc1OTkzNy4xNTkzOjA2MjM2M2MzYjA2ZmIyMjQxNGRjZmI5OGJmMDg0MTU4OWU0OWM1NzcxOTE0ZDk1MGQyMDU4ODJlMjMyYTgwZmY6NjNlMjExNDEyNmUyYg%3D%3D

99.83.136.84

200 OK

20 B

URL HTTP/1.1
www1.isabnet.com/track.php?domain=isabnet.com&toggle=browserjs&uid=MTY3NTc1OTkzNy4xNTkzOjA2MjM2M2MzYjA2ZmIyMjQxNGRjZmI5OGJmMDg0MTU4OWU0OWM1NzcxOTE0ZDk1MGQyMDU4ODJlMjMyYTgwZmY6NjNlMjExNDEyNmUyYg%3D%3D
IP
99.83.136.84:0
ASN
#16509 AMAZON-02

File type
data
Size
20 B (20 bytes)
Hash
a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

HTTP Headers

GET /track.php?domain=isabnet.com&toggle=browserjs&uid=MTY3NTc1OTkzNy4xNTkzOjA2MjM2M2MzYjA2ZmIyMjQxNGRjZmI5OGJmMDg0MTU4OWU0OWM1NzcxOTE0ZDk1MGQyMDU4ODJlMjMyYTgwZmY6NjNlMjExNDEyNmUyYg%3D%3D HTTP/1.1
Host: www1.isabnet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.isabnet.com/?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0

HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 08:52:17 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Custom-Track: browserjs
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
c0c18b789b296a2b3cc9adb04c94e6f7
a0fa241f813c414178f5dffd30d5c2b82d16669b
95ec61ae9d1384fdbcee256ec441d6db4e3243ed3f8e1801b3607ce3c2e1e3f0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 08:52:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

d38psrni17bvxu.cloudfront.net/themes/cleanPeppermintBlack_657d9013/img/arrows.png

54.230.245.138

200 OK

11 kB

URL HTTP/1.1
d38psrni17bvxu.cloudfront.net/themes/cleanPeppermintBlack_657d9013/img/arrows.png
IP
54.230.245.138:0
ASN
#16509 AMAZON-02

File type
PNG image data, 1500 x 600, 8-bit colormap, non-interlaced\012- data
Size
11 kB (11375 bytes)
Hash
0cb2e5165dc9324eb462199f04e1ffa9
9e0f89847ec8a98d98a6020bc5c4ed32b7a48bf8
67dff0aad873050f12609885f2264417ccdd0d438311000a704c89f0865f7865

HTTP Headers

GET /themes/cleanPeppermintBlack_657d9013/img/arrows.png HTTP/1.1
Host: d38psrni17bvxu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.isabnet.com/

HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 11375
Connection: keep-alive
Server: nginx
Date: Tue, 07 Feb 2023 01:21:39 GMT
Last-Modified: Thu, 23 Jun 2022 10:44:43 GMT
Accept-Ranges: bytes
ETag: "62b4441b-2c6f"
X-Cache: Hit from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: k71Rr1hqMoBsdfqCbagBZikFAReaepWioxfVu8OnVKpHIeFXmDW9eQ==
Age: 27038

www.google.com/afs/ads?adtest=off&psid=6016880802&pcsa=false&channel=000001%2C000003%2C001812%2Cbucket103&client=dp-teaminternet12_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fwww1.isabnet.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQxMDN8fHx8fHw2M2UyMTE0MTI2ZTBhfHx8MTY3NTc1OTkzNy4xNjk3fGEyYWIwYzY0NGQ1YTY2ZTVkMTNiYTcwOTg5MDVlMDI2N2IxZjE1Nzh8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfGV5Sm9iQ0k2SW1WdUluMD18fDB8ZXlKemRXSnBaRFFpT2lJeE5qYzFOelU1T1RNMkxqQXlOell3TVRBd01EQWlmUT09fGRkYmYxMmU4NDZjM2VkMDhhNzlmNjdkZDZjNDQ1OTliMWQ1YmM5Y2F8MHxkcC10ZWFtaW50ZXJuZXQxMl8zcGh8MHww&terms=Student%20Intranet%20Platform%2CProfessor%20Self%20Service%20Portal%20Software%2CPassword%20Management%20Software&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2983123576258743&oe=UTF-8&ie=UTF-8&fexp=21404&format=r3%7Cs&nocache=6821675759986415&num=0&output=afd_ads&domain_name=www1.isabnet.com&v=3&bsl=8&pac=0&u_his=1&u_tz=0&dt=1675759986416&u_w=1280&u_h=1024&biw=1280&bih=939&psw=1280&psh=760&frm=0&cl=503972142&uio=--&cont=tc&jsid=caf&jsv=503972142&rurl=http%3A%2F%2Fwww1.isabnet.com%2F%3Ftm%3D1%26subid4%3D1675759936.0276010000%26kw%3DEnterprise%2BExtranet%2BPortal%2BSystem%2BSoftware%26KW1%3DStudent%2520Intranet%2520Platform%26KW2%3DProfessor%2520Self%2520Service%2520Portal%2520Software%26KW3%3DPassword%2520Management%2520Software%26searchbox%3D0%26domainname%3D0%26backfill%3D0&adbw=master-1%3A530

216.58.207.228

200 OK

2.5 kB

URL HTTP/2
www.google.com/afs/ads?adtest=off&psid=6016880802&pcsa=false&channel=000001%2C000003%2C001812%2Cbucket103&client=dp-teaminternet12_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fwww1.isabnet.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQxMDN8fHx8fHw2M2UyMTE0MTI2ZTBhfHx8MTY3NTc1OTkzNy4xNjk3fGEyYWIwYzY0NGQ1YTY2ZTVkMTNiYTcwOTg5MDVlMDI2N2IxZjE1Nzh8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfGV5Sm9iQ0k2SW1WdUluMD18fDB8ZXlKemRXSnBaRFFpT2lJeE5qYzFOelU1T1RNMkxqQXlOell3TVRBd01EQWlmUT09fGRkYmYxMmU4NDZjM2VkMDhhNzlmNjdkZDZjNDQ1OTliMWQ1YmM5Y2F8MHxkcC10ZWFtaW50ZXJuZXQxMl8zcGh8MHww&terms=Student%20Intranet%20Platform%2CProfessor%20Self%20Service%20Portal%20Software%2CPassword%20Management%20Software&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2983123576258743&oe=UTF-8&ie=UTF-8&fexp=21404&format=r3%7Cs&nocache=6821675759986415&num=0&output=afd_ads&domain_name=www1.isabnet.com&v=3&bsl=8&pac=0&u_his=1&u_tz=0&dt=1675759986416&u_w=1280&u_h=1024&biw=1280&bih=939&psw=1280&psh=760&frm=0&cl=503972142&uio=--&cont=tc&jsid=caf&jsv=503972142&rurl=http%3A%2F%2Fwww1.isabnet.com%2F%3Ftm%3D1%26subid4%3D1675759936.0276010000%26kw%3DEnterprise%2BExtranet%2BPortal%2BSystem%2BSoftware%26KW1%3DStudent%2520Intranet%2520Platform%26KW2%3DProfessor%2520Self%2520Service%2520Portal%2520Software%26KW3%3DPassword%2520Management%2520Software%26searchbox%3D0%26domainname%3D0%26backfill%3D0&adbw=master-1%3A530
IP
216.58.207.228:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7165)
Size
2.5 kB (2504 bytes)
Hash
8bb58d01a78704c979dd01dbe1f63af7
69d4dd5864b99545f04bd9e0d2c37f790747e617
0d0e0be7164abca697c0d3089cedf17936abf63cdf32c950c54e6a832d484271

HTTP Headers

GET /afs/ads?adtest=off&psid=6016880802&pcsa=false&channel=000001%2C000003%2C001812%2Cbucket103&client=dp-teaminternet12_3ph&r=m&hl=en&rpbu=http%3A%2F%2Fwww1.isabnet.com%2F%3Fts%3DfENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQxMDN8fHx8fHw2M2UyMTE0MTI2ZTBhfHx8MTY3NTc1OTkzNy4xNjk3fGEyYWIwYzY0NGQ1YTY2ZTVkMTNiYTcwOTg5MDVlMDI2N2IxZjE1Nzh8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfGV5Sm9iQ0k2SW1WdUluMD18fDB8ZXlKemRXSnBaRFFpT2lJeE5qYzFOelU1T1RNMkxqQXlOell3TVRBd01EQWlmUT09fGRkYmYxMmU4NDZjM2VkMDhhNzlmNjdkZDZjNDQ1OTliMWQ1YmM5Y2F8MHxkcC10ZWFtaW50ZXJuZXQxMl8zcGh8MHww&terms=Student%20Intranet%20Platform%2CProfessor%20Self%20Service%20Portal%20Software%2CPassword%20Management%20Software&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2983123576258743&oe=UTF-8&ie=UTF-8&fexp=21404&format=r3%7Cs&nocache=6821675759986415&num=0&output=afd_ads&domain_name=www1.isabnet.com&v=3&bsl=8&pac=0&u_his=1&u_tz=0&dt=1675759986416&u_w=1280&u_h=1024&biw=1280&bih=939&psw=1280&psh=760&frm=0&cl=503972142&uio=--&cont=tc&jsid=caf&jsv=503972142&rurl=http%3A%2F%2Fwww1.isabnet.com%2F%3Ftm%3D1%26subid4%3D1675759936.0276010000%26kw%3DEnterprise%2BExtranet%2BPortal%2BSystem%2BSoftware%26KW1%3DStudent%2520Intranet%2520Platform%26KW2%3DProfessor%2520Self%2520Service%2520Portal%2520Software%26KW3%3DPassword%2520Management%2520Software%26searchbox%3D0%26domainname%3D0%26backfill%3D0&adbw=master-1%3A530 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www1.isabnet.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-disposition: inline
date: Tue, 07 Feb 2023 08:52:17 GMT
expires: Tue, 07 Feb 2023 08:52:17 GMT
cache-control: private, max-age=3600
cross-origin-opener-policy-report-only: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
content-encoding: br
server: gws
content-length: 2504
x-xss-protection: 0
set-cookie: CONSENT=PENDING+148; expires=Thu, 06-Feb-2025 08:52:17 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
eacdb128cb4c4270c389816f33b2bb15
97bdbd4416cf816e822421ea576175b7aeb2f7cf
436d88e47be153d724949abb1aeea7ec7f3880f703fc5c67c516f9fd7b51bb71

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 08:52:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

partner.googleadservices.com/gampad/cookie.js?domain=www1.isabnet.com&client=dp-teaminternet12_3ph&product=SAS&callback=__sasCookie

216.58.207.226

200 OK

240 B

URL HTTP/2
partner.googleadservices.com/gampad/cookie.js?domain=www1.isabnet.com&client=dp-teaminternet12_3ph&product=SAS&callback=__sasCookie
IP
216.58.207.226:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (362), with no line terminators
Size
240 B (240 bytes)
Hash
3c0c9279ed3960771b36ffade995bcd9
6d349b0938b731255f6de6870a43c035013eeea2
d39fa17d50b8592498bafe5b46d4c2f58da68c5fb46c8abaa02792741e721ab9

HTTP Headers

GET /gampad/cookie.js?domain=www1.isabnet.com&client=dp-teaminternet12_3ph&product=SAS&callback=__sasCookie HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www1.isabnet.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 07 Feb 2023 08:52:17 GMT
server: cafe
cache-control: private
content-length: 240
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
45214010f2ef8a835d723fcd5b485977
346507b6da40928a8c600ef9c52fd6a7e0875344
4b4e5c2038d6fe241aedc738e0bd22052078bf365b6dade88cae752d0f06fa54

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 08:52:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
eacdb128cb4c4270c389816f33b2bb15
97bdbd4416cf816e822421ea576175b7aeb2f7cf
436d88e47be153d724949abb1aeea7ec7f3880f703fc5c67c516f9fd7b51bb71

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 08:52:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www1.isabnet.com/favicon.ico

99.83.136.84

200 OK

0 B

URL HTTP/1.1
www1.isabnet.com/favicon.ico
IP
99.83.136.84:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www1.isabnet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.isabnet.com/?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0

HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 08:52:17 GMT
Content-Type: image/x-icon
Content-Length: 0
Connection: keep-alive
Server: nginx
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
ETag: "5ebab1f0-0"
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5d8fdc3f3fcd0a67e69f28b56f4f0c65
4971af943010d5bbb9d714deef8c44597f6b3092
3342a5a542b3dcd7f44f490609d077b00aad3be7d1ce6474073a9f589c32e403

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 08:52:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5d8fdc3f3fcd0a67e69f28b56f4f0c65
4971af943010d5bbb9d714deef8c44597f6b3092
3342a5a542b3dcd7f44f490609d077b00aad3be7d1ce6474073a9f589c32e403

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 08:52:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff

142.250.74.97

200 OK

270 B

URL HTTP/2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff
IP
142.250.74.97:0
ASN
#15169 GOOGLE

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (390)
Size
270 B (270 bytes)
Hash
5100391430a00e10ce60aa159f525b5c
231a4492d73b225f441b1e9028dc33c89862e498
52b1432a6e3002e41ed1d8f4c84b258fdc4c6dac863e3c0e5c06360c81be6067

HTTP Headers

GET /ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 270
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Mon, 06 Feb 2023 15:27:13 GMT
expires: Tue, 07 Feb 2023 14:27:13 GMT
cache-control: public, max-age=82800
age: 62704
last-modified: Thu, 19 Dec 2019 14:15:00 GMT
content-type: image/svg+xml
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/adsense/domains/caf.js

216.58.207.228

200 OK

53 kB

URL HTTP/2
www.google.com/adsense/domains/caf.js
IP
216.58.207.228:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1745)
Size
53 kB (53424 bytes)
Hash
72a20149ae79ea78d5b00a72e91fc636
388459a11e6a52020419aca991dcd9d25e350f93
b0fe2bc5bb8bf16df4bf2230a08e6afc1952f78ba650a1fe9f811ebd5a17e0e8

HTTP Headers

GET /adsense/domains/caf.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Tue, 07 Feb 2023 08:52:17 GMT
expires: Tue, 07 Feb 2023 08:52:17 GMT
cache-control: private, max-age=3600
etag: "2098299557918403697"
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5d8fdc3f3fcd0a67e69f28b56f4f0c65
4971af943010d5bbb9d714deef8c44597f6b3092
3342a5a542b3dcd7f44f490609d077b00aad3be7d1ce6474073a9f589c32e403

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 08:52:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www1.isabnet.com/track.php?domain=isabnet.com&caf=1&toggle=answercheck&answer=yes&uid=MTY3NTc1OTkzNy4xNTkzOjA2MjM2M2MzYjA2ZmIyMjQxNGRjZmI5OGJmMDg0MTU4OWU0OWM1NzcxOTE0ZDk1MGQyMDU4ODJlMjMyYTgwZmY6NjNlMjExNDEyNmUyYg%3D%3D

99.83.136.84

200 OK

20 B

URL HTTP/1.1
www1.isabnet.com/track.php?domain=isabnet.com&caf=1&toggle=answercheck&answer=yes&uid=MTY3NTc1OTkzNy4xNTkzOjA2MjM2M2MzYjA2ZmIyMjQxNGRjZmI5OGJmMDg0MTU4OWU0OWM1NzcxOTE0ZDk1MGQyMDU4ODJlMjMyYTgwZmY6NjNlMjExNDEyNmUyYg%3D%3D
IP
99.83.136.84:0
ASN
#16509 AMAZON-02

File type
data
Size
20 B (20 bytes)
Hash
a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

HTTP Headers

GET /track.php?domain=isabnet.com&caf=1&toggle=answercheck&answer=yes&uid=MTY3NTc1OTkzNy4xNTkzOjA2MjM2M2MzYjA2ZmIyMjQxNGRjZmI5OGJmMDg0MTU4OWU0OWM1NzcxOTE0ZDk1MGQyMDU4ODJlMjMyYTgwZmY6NjNlMjExNDEyNmUyYg%3D%3D HTTP/1.1
Host: www1.isabnet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.isabnet.com/?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0
Cookie: __gsas=ID=05cadbc4c4feaa0e:T=1675759937:S=ALNI_MZx97CFfiYeDDxVs6zAWuUOsB-liw

HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 08:52:17 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Custom-Track: answercheck
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip

www1.isabnet.com/ls.php

99.83.136.84

201 Created

0 B

URL HTTP/1.1
www1.isabnet.com/ls.php
IP
99.83.136.84:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

POST /ls.php HTTP/1.1
Host: www1.isabnet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 2994
Origin: http://www1.isabnet.com
Connection: keep-alive
Referer: http://www1.isabnet.com/?tm=1&subid4=1675759936.0276010000&kw=Enterprise+Extranet+Portal+System+Software&KW1=Student%20Intranet%20Platform&KW2=Professor%20Self%20Service%20Portal%20Software&KW3=Password%20Management%20Software&searchbox=0&domainname=0&backfill=0
Cookie: GoogleAdServingTest=Good

HTTP/1.1 201 Created
Date: Tue, 07 Feb 2023 08:52:18 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
X-Log-Success: 63e21141c5a72b11d9642854
Charset: utf-8
Access-Control-Allow-Origin: http://www1.isabnet.com
Access-Control-Allow-Methods: POST, OPTIONS
Access-Control-Max-Age: 86400
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_c4B0gM9suYi1ecBwz8xha9A2C3hwtPcssIFXNFEmXXjI2dIEKi1GPnypOXa8X+oyhScHRQyAbweiORxUYFb0zw==

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6707
Expires: Tue, 07 Feb 2023 10:44:05 GMT
Date: Tue, 07 Feb 2023 08:52:18 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6707
Expires: Tue, 07 Feb 2023 10:44:05 GMT
Date: Tue, 07 Feb 2023 08:52:18 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6707
Expires: Tue, 07 Feb 2023 10:44:05 GMT
Date: Tue, 07 Feb 2023 08:52:18 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7926951f-dd16-4029-a877-933fa5d3c0f5.png

34.120.237.76

200 OK

5.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7926951f-dd16-4029-a877-933fa5d3c0f5.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.6 kB (5634 bytes)
Hash
cf292b03a5db7eb8e0660a518f41233c
8fa486cdecffff8a663da2df88227ee784c298a2
cfc5efb92068bdeeda5c95f9851213b14afa76776486d0493cf4c05b30453cf0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7926951f-dd16-4029-a877-933fa5d3c0f5.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5634
x-amzn-requestid: c380f2eb-c707-4086-9646-179ea89ba210
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fy9JKEpqoAMF9RA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dddbd4-49510561740468ba7b39f211;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 04:15:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ofAz9sRlztBs3zypgsL9DkiJypsxagC7ZcUX3PLL_7FzUALp_MxtKA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 18:44:39 GMT
age: 50859
etag: "8fa486cdecffff8a663da2df88227ee784c298a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13160 bytes)
Hash
003fc35e140a75a12b7795c3986426ec
da002b22e2a01f48a545b369d4403eabb17a10d5
bb0754411aa7d0a5036b86b282d0e93d13227765ca9ccaf3a34e8e486cb413d1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13160
x-amzn-requestid: 34aa6dfe-7f14-48d0-89b2-90548621be79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzVxSHh7IAMFjAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de033b-49587fff75aebe96136137be;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 07:03:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qwSN-ztVJgRfu3bFIjYaVYV8Cnx77j1ugkRjqhRtRXdPju7AhEMg-A==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 07:15:46 GMT
age: 5792
etag: "da002b22e2a01f48a545b369d4403eabb17a10d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.2 kB (4227 bytes)
Hash
eedb4de12585c70ddb5b8f94fe6a59e2
83c9437e71a0a03b3e8ff652155a85eafa76cdda
d4493a30f62e9ad224b3595ba3af8a322e2d4a3d9238a1847973f962bdcc0c82

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4227
x-amzn-requestid: b45f2ab7-0102-4542-9514-54fb93a0e27f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f77sTH4jIAMFnsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e1731b-4a24bcb1102e58543cd81343;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 21:37:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: V_4NzIAVBOZMjf_YIM3bowFdlP1y4peI5JI-jO105s3NVjmyYnC0Tg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 21:48:48 GMT
age: 39810
etag: "83c9437e71a0a03b3e8ff652155a85eafa76cdda"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32cb7a16-13bc-4d42-8e17-7be2a40cfc82.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.3 kB (6316 bytes)
Hash
c3cd20c6639e2b0d996fbbd7df2d4f47
2e54c22fb83981e2690161cd521e4fc3998e9c16
9b2b1f3e062fca74341d09540e44d2a02ec451b8349440ed5917073e8fab988d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32cb7a16-13bc-4d42-8e17-7be2a40cfc82.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6316
x-amzn-requestid: 1988058c-5aee-4964-9046-83a5f14a927d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fwhjnFdxoAMFgpQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dce2e3-5ec35d0d6bef4d4944c629c0;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 10:33:07 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Z9b1A_GpinQXvbA-g2PoKhVSNVd5gMrId0WUTmKSCkg-YAan1dtp-w==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 22:21:35 GMT
age: 37843
etag: "2e54c22fb83981e2690161cd521e4fc3998e9c16"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F121b1de4-8f9a-42ce-aca5-9ff190235e9e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.6 kB (5584 bytes)
Hash
94a975a866d575be68f687fd81a36f5b
16f334adff0205badeb468d248f925504137782a
d550618f7c7e902ca0f4f57f8da3199b22063f242e0fa07f10fe6631b35e026b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F121b1de4-8f9a-42ce-aca5-9ff190235e9e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5584
x-amzn-requestid: 130aa2ee-b175-4658-9c82-8f49944207dd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpdejHeaIAMFYgQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63da0f90-4f9c757a30af548878052b0d;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 07:06:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9URXL7tafn0kenWtzS1LRu2q0bgjM8ZC4NCS6L6MMPkvBqIHDOMugA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 02:04:18 GMT
age: 24480
etag: "16f334adff0205badeb468d248f925504137782a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bbda930-ccb5-4a8a-b679-2389a710fc6f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.8 kB (6787 bytes)
Hash
d057038cd3164c40413a88f9b5c2af92
afbcb6617c7277ea42068c2aa1c8dcba02549873
ae03b42f1a5c3774e3ea569a886707a8a31da05a45bd971b829cf579be0ea6c7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bbda930-ccb5-4a8a-b679-2389a710fc6f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6787
x-amzn-requestid: 15924d6a-68a3-414b-9e23-68d37291d4a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fvyxSEjXIAMFT3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc9808-22daff920f5fe1201328ccee;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 05:13:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AOnXbzTBcVZ3quJx3NoNQC08Gk5_phyp8UiWCm6Dk4GPxl8FCaIC4w==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 04:57:41 GMT
age: 14077
etag: "afbcb6617c7277ea42068c2aa1c8dcba02549873"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (18)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML