Report - saicsc-acs.org/cgi-bin/indusind/login/login.php

Report Overview

Submitted URL
saicsc-acs.org/cgi-bin/indusind/login/login.php
IP
74.220.199.8
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2022-11-23 03:12:40
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	50 kB	34.120.237.76
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.148.242.254
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	686 B	1.4 kB	142.250.74.35
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.77.32
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
www.hostmonster.com	466877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.6 kB	54 kB	104.18.43.217
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	18 kB	142.250.74.174
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	486 B	679 B	142.251.1.157
www.iyfubh.com	258477	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	10 kB	208.91.196.46
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.6 kB	93.184.220.29
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
saicsc-acs.org	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	918 B	11 kB	74.220.199.8
i3.cdn-image.com	120650	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.3 kB	224 kB	23.36.76.121

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-23	medium	saicsc-acs.org/cgi-bin/indusind/login/login.php	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (12)

	URL	Size	First Seen	Last Seen
	www.iyfubh.com/px.js?ch=1	346 B	2023-03-07	2024-05-11
Pretty URL www.iyfubh.com/px.js?ch=1 IP 208.91.196.46 ASN #40034 CONFLUENCE-NETWORK-INC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-05-11 03:29:19 Times Seen44266 Hash f84f931c0dd37448e03f0dabf4e4ca9f 9c2c50edcf576453ccc07bf65668bd23c76e8663 5c1d5fd46a88611c31ecbb8ffc1142a7e74ec7fb7d72bd3891131c880ef3f584 Loading...

	www.iyfubh.com/?dn=saicsc-acs.org&pid=9POW7N968	506 B	2023-03-11	2023-03-11
Pretty URL www.iyfubh.com/?dn=saicsc-acs.org&pid=9POW7N968 IP 208.91.196.46 ASN #40034 CONFLUENCE-NETWORK-INC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 16:02:37 Last Seen2023-03-11 16:02:37 Times Seen1 Hash 0a03977ab6ba3ee702b6c64614667858 1241b80a8bd1a4c6c9c0ac5c2eb74c9032ec4928 5dbab38f8f22005e98241be04498356bab498c58e04e86bcfde3078290b0543d Loading...

	www.iyfubh.com/?dn=saicsc-acs.org&pid=9POW7N968	27 B	2023-03-07	2024-05-11
Pretty URL www.iyfubh.com/?dn=saicsc-acs.org&pid=9POW7N968 IP 208.91.196.46 ASN #40034 CONFLUENCE-NETWORK-INC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:33 Last Seen2024-05-11 03:29:18 Times Seen12220 Hash 1a13337fc71dcb5b6fb8be5e40b05c66 8ca2b8e8b15ff416d1b6c557a767140c4c034243 e94f533b6c39b822e83695ecb11a193f5ba7a3a3f97c8136bd0bbef8436e48bf Loading...

	www.iyfubh.com/?dn=saicsc-acs.org&pid=9POW7N968	8 B	2023-03-07	2024-05-11
Pretty URL www.iyfubh.com/?dn=saicsc-acs.org&pid=9POW7N968 IP 208.91.196.46 ASN #40034 CONFLUENCE-NETWORK-INC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:33 Last Seen2024-05-11 03:29:18 Times Seen10986 Hash 883fa82f6169ed5ddd95e0c34cf36450 52fcfe1e375b542d4847a9c963bff266b98bfbc2 dca6253c1f2bdadb922b559c83bee52fbe1411e3a159adcb922ff3b45c623185 Loading...

	i3.cdn-image.com/__media__/js/min.js?v2.3	8.4 kB	2023-03-07	2024-05-11
Pretty URL i3.cdn-image.com/__media__/js/min.js?v2.3 IP 23.36.76.121 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:33 Last Seen2024-05-11 03:29:19 Times Seen26598 Hash c16c3a4c0fad29106f34d00e89f6886e 6e11811ab8a98bb295b0916cdee68b302c33403d 097786d677a859b7bc87e285377b083b76d66a2fc2832a16bcd50b0e99df77ff Loading...

	www.iyfubh.com/?dn=saicsc-acs.org&pid=9POW7N968	37 B	2023-03-07	2024-05-11
Pretty URL www.iyfubh.com/?dn=saicsc-acs.org&pid=9POW7N968 IP 208.91.196.46 ASN #40034 CONFLUENCE-NETWORK-INC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:33 Last Seen2024-05-11 03:29:18 Times Seen12413 Hash fcd7b94e73a1f9cc8807da94baec6354 088ae01bf28379b61fd5a322034c8c618d3f2b23 0361577e582e091d8656bc3ffeeafc27c0607530e2000d55772674122d703253 Loading...

	www.iyfubh.com/?dn=saicsc-acs.org&pid=9POW7N968	42 B	2023-03-07	2024-05-11
Pretty URL www.iyfubh.com/?dn=saicsc-acs.org&pid=9POW7N968 IP 208.91.196.46 ASN #40034 CONFLUENCE-NETWORK-INC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:33 Last Seen2024-05-11 03:29:18 Times Seen12239 Hash 4aa1cafcdca484710d10c7d6d1a6a273 4f2007c15b663111205ce137bdd263e5345104e5 9ce013c35c35b5f4007d40c0d4fa366530f064cbaa91de6c01b3edfe4471b7f8 Loading...

	saicsc-acs.org/cgi-bin/indusind/login/login.php	216 B	2023-03-07	2023-04-05
Pretty URL saicsc-acs.org/cgi-bin/indusind/login/login.php IP 74.220.199.8 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:34 Last Seen2023-04-05 02:08:37 Times Seen19 Hash abc5d6745cb5942f78cf115e260cc0ae f671fcdd42babb17fe00c83631a4664f35317580 7bbe77858fc8acbbf99452cd63fddc49e8a0be03417d95da246b9f57fa3ddb2a Loading...

	saicsc-acs.org/cgi-bin/indusind/login/login.php	189 B	2023-03-07	2023-04-05
Pretty URL saicsc-acs.org/cgi-bin/indusind/login/login.php IP 74.220.199.8 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:02 Last Seen2023-04-05 02:08:40 Times Seen410 Hash 6ce4801b4376ee5e7dd1012e39e56b36 9241c9ac7e9e8ee5c115e0be865b05911628408a cc333c1ac434648ff517c9ae6bd18f067c11cba4e82e0bae2f6714ece4e75063 Loading...

	www.google-analytics.com/ga.js	46 kB	2023-03-07	2024-05-09
Pretty URL www.google-analytics.com/ga.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2024-05-09 13:01:11 Times Seen3497 Hash e9372f0ebbcf71f851e3d321ef2a8e5a 2c7d19d1af7d97085c977d1b69dcb8b84483d87c 1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f Loading...

	saicsc-acs.org/cgi-bin/indusind/login/login.php	180 B	2023-03-07	2023-03-26
Pretty URL saicsc-acs.org/cgi-bin/indusind/login/login.php IP 74.220.199.8 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:33:48 Last Seen2023-03-26 12:49:53 Times Seen2 Hash c53c10aa9f236d7687431a3e5a114bbf 7a2849ad4bbf350fa002dd3fea15f7bf61727dce e2c955872cc4090ef2245925be10ac5b19143e6e1496304914714892c92a30a4 Loading...

		Size	First Seen	Last Seen
	#1 Write - 5b03bc175bbb628265a5d10883125163	61 B	2023-03-07	2024-05-11
Pretty Observations First Seen2023-03-07 01:03:02 Last Seen2024-05-11 03:29:18 Times Seen1281 Hash 5b03bc175bbb628265a5d10883125163 153792bb6fbfed97f19c6def01bc9848c442c344 ec220c05ec7b69cfe0d6ba704b3627575edfac8365a2564518be976a1769dac9 Loading...

HTTP Transactions (50)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1456357aecbd23f21ad98da57e0127eb
7074815b39fa8da9013883971d665e4c1b0797ea
f3eba265ee64870b2f822f1511b36c747d763c382557789cdad8be1d3b52d1f5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F3EBA265EE64870B2F822F1511B36C747D763C382557789CDAD8BE1D3B52D1F5"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4557
Expires: Wed, 23 Nov 2022 04:28:26 GMT
Date: Wed, 23 Nov 2022 03:12:29 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
b59d95402dfb464c176610284ba13f65
1a6c62fb0d48654dd204b66161bb03fefe60f71a
40cfd59b890ec5a3570603d28d90bd7e5c506babd52c2ece93e09f1c7b2a6880

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6403
Cache-Control: max-age=119129
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 03:12:29 GMT
Etag: "637ca4f3-1d7"
Expires: Thu, 24 Nov 2022 12:17:58 GMT
Last-Modified: Tue, 22 Nov 2022 10:31:15 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
054ff0d1a0a43f7cb1d78dbd34e27f99
3caf54f3de1d6a8c6f6454083f8b8e7dec77db54
fcdcef8306ae31f20c366489e1f88aa40b08f154d25d45f4055c4f8cdef47634

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FCDCEF8306AE31F20C366489E1F88AA40B08F154D25D45F4055C4F8CDEF47634"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5271
Expires: Wed, 23 Nov 2022 04:40:20 GMT
Date: Wed, 23 Nov 2022 03:12:29 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 23 Nov 2022 03:09:27 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 182
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: ERhhCwHhYSezEpFKM+WTS66jtxj+Wemj6RlIw+HScsUGUUrlhpjB97KgeYSsqNwJs9VoYsd3ZXw=
x-amz-request-id: GHT9TP13D89CKQZY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 23 Nov 2022 02:42:49 GMT
age: 1780
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 23 Nov 2022 03:12:29 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 23 Nov 2022 03:08:53 GMT
cache-control: public,max-age=3600
age: 217
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
8a181d95550cfdf3b1fc4deb71631e40
37866f7293c41fbfb817e321754cae5c5bf59f93
6aa3d2763181cc48d2ad0ce7d227f3cb3324045c3f7858ccdbae675768dcec55

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3441
Cache-Control: max-age=111105
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 03:12:30 GMT
Etag: "637c912f-1d7"
Expires: Thu, 24 Nov 2022 10:04:15 GMT
Last-Modified: Tue, 22 Nov 2022 09:06:55 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471

saicsc-acs.org/cgi-bin/indusind/login/login.php

74.220.199.8

200 OK

5.4 kB

URL HTTP/1.1
saicsc-acs.org/cgi-bin/indusind/login/login.php
IP
74.220.199.8:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (316)
Size
5.4 kB (5413 bytes)
Hash
44b83b78e3ce1621501650c9f4afc67b
10dc4a5b0266821f690c4f22c70c141e44b36116
d05b819a5ddf1327735c97135aa2c83e6528bb80ddbb8db8ab7eb6b0ed7fa3d9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /cgi-bin/indusind/login/login.php HTTP/1.1
Host: saicsc-acs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 03:12:30 GMT
Server: Apache/2.2.31 (CentOS)
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=ISO-8859-1

www.hostmonster.com/media/shared/general/_hm/homestyle.css

104.18.43.217

403 Forbidden

3.9 kB

URL HTTP/1.1
www.hostmonster.com/media/shared/general/_hm/homestyle.css
IP
104.18.43.217:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (857)
Size
3.9 kB (3892 bytes)
Hash
511c6008fef64c408770459d19bd6ce5
4f7728d6dc5361dcbe86d1840fbaccb2b3dfc14d
de2295eb0561350d6f71e58a6243cbc36d9b17b418d5fcc08d8cef52dcb54d0c

HTTP Headers

GET /media/shared/general/_hm/homestyle.css HTTP/1.1
Host: www.hostmonster.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://saicsc-acs.org/

HTTP/1.1 403 Forbidden
Date: Wed, 23 Nov 2022 03:12:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
CF-Chl-Bypass: 1
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Frame-Options: SAMEORIGIN
Set-Cookie: __cf_bm=AlLQJ2Z6EfJbd5GIBZ4iwTOm1IdkNer38A2AVM2nTsA-1669173150-0-AfBdD9q0q5ad8j7OAorcgDyiol7c0lzyEBSAEX+TFV5igbS9Yomqmc+Hqr/WZ9XvST8tYPuZge74Mgp/7SSwS6Q=; path=/; expires=Wed, 23-Nov-22 03:42:30 GMT; domain=.hostmonster.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76e6b93e3c64b517-OSL
Content-Encoding: gzip

www.hostmonster.com/media/shared/general/_hm/home.js

104.18.43.217

403 Forbidden

3.9 kB

URL HTTP/1.1
www.hostmonster.com/media/shared/general/_hm/home.js
IP
104.18.43.217:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (836)
Size
3.9 kB (3866 bytes)
Hash
c60dd342e502a5a10f82029bcc3b54a7
344a9d8869bed3b4fd39692e774d63f00c8f1935
695a67086980b9779ab5b588e5b64ba2b8198c61bd3350c24460c9023ce9e70b

HTTP Headers

GET /media/shared/general/_hm/home.js HTTP/1.1
Host: www.hostmonster.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://saicsc-acs.org/

HTTP/1.1 403 Forbidden
Date: Wed, 23 Nov 2022 03:12:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
CF-Chl-Bypass: 1
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Frame-Options: SAMEORIGIN
Set-Cookie: __cf_bm=qTDbMDppJuKyZxNtVzx3TZsUm9n28WwWQL7RnET9tRc-1669173150-0-AdC/MchHfNV1jA1212bT5Z7v92aCR1eztmFcAJ2fZJ6ry5PMlqZD6EnC/9L4GaLVNVm1/DmRlLApXe67s9eRSJw=; path=/; expires=Wed, 23-Nov-22 03:42:30 GMT; domain=.hostmonster.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76e6b93e3c5e0b06-OSL
Content-Encoding: gzip

www.hostmonster.com/media/shared/info/index/_hm/home.css

104.18.43.217

403 Forbidden

3.9 kB

URL HTTP/1.1
www.hostmonster.com/media/shared/info/index/_hm/home.css
IP
104.18.43.217:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (857)
Size
3.9 kB (3895 bytes)
Hash
410c4074cc17232697b96d37b0a85f92
3b6a802b1fedfba206327936fa1bdd3c3d2043b3
f258d1e2cab6a2d46abbc72e00ada2ee9d4eadac0e3545cf0c737081a008e570

HTTP Headers

GET /media/shared/info/index/_hm/home.css HTTP/1.1
Host: www.hostmonster.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://saicsc-acs.org/

HTTP/1.1 403 Forbidden
Date: Wed, 23 Nov 2022 03:12:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
CF-Chl-Bypass: 1
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Frame-Options: SAMEORIGIN
Set-Cookie: __cf_bm=N0ifAJna8v2b0kiplZUWzcyp0VtB1H2Rrmb7lqrsdec-1669173150-0-AT/NEsptvPLIc6w18MzZAP4mjWS8nJAl3tIgr2Uu+jhv3iU8iRCZKgGMxk9YR0l9Cg3mIplAD3t03EL1/Ts9Z9I=; path=/; expires=Wed, 23-Nov-22 03:42:30 GMT; domain=.hostmonster.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76e6b93e3a43b4ee-OSL
Content-Encoding: gzip

www.hostmonster.com/media/shared/general/jquery/jquery.min.js

104.18.43.217

403 Forbidden

3.9 kB

URL HTTP/1.1
www.hostmonster.com/media/shared/general/jquery/jquery.min.js
IP
104.18.43.217:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (857)
Size
3.9 kB (3897 bytes)
Hash
494d0597fd6958e9366b94ad4da5b709
2656767f6ac895521eb747f6b95fdbdc84b5ef0c
46fa46e78e4ca721fb07bc8e80023dcd6c86bd7c908e7f3b5637bfa04d2bc202

HTTP Headers

GET /media/shared/general/jquery/jquery.min.js HTTP/1.1
Host: www.hostmonster.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://saicsc-acs.org/

HTTP/1.1 403 Forbidden
Date: Wed, 23 Nov 2022 03:12:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
CF-Chl-Bypass: 1
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Frame-Options: SAMEORIGIN
Set-Cookie: __cf_bm=9zvbUxgHQLIwy.zhZLC2XBK9Qdp33JWTibx74H52E3c-1669173150-0-ATpudDJhpVOt3PQRs1M5Pe4tAABXb7h+jGA8zHU0tNBvBF1f8/KIPxi6btM3JCv2bjS+sl2dU2i2je0YHQ+Wjlk=; path=/; expires=Wed, 23-Nov-22 03:42:30 GMT; domain=.hostmonster.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76e6b93e4bf5b523-OSL
Content-Encoding: gzip

www.hostmonster.com/media/shared/general/spacer.gif

104.18.43.217

403 Forbidden

3.9 kB

URL HTTP/1.1
www.hostmonster.com/media/shared/general/spacer.gif
IP
104.18.43.217:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (836)
Size
3.9 kB (3869 bytes)
Hash
d13d2ab4f7198e342e06b1536ed053ef
311dec63ae847f40e22ce7ea6c14623c5cc5024a
3704edb583d71c53c5ee8414439d8c82dc354a31b00835dc8ee13b2c6214c556

HTTP Headers

GET /media/shared/general/spacer.gif HTTP/1.1
Host: www.hostmonster.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://saicsc-acs.org/

HTTP/1.1 403 Forbidden
Date: Wed, 23 Nov 2022 03:12:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
CF-Chl-Bypass: 1
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Frame-Options: SAMEORIGIN
Set-Cookie: __cf_bm=HjRdst8i2cRXNY_hmRBDvpTgzmqoACc1Bi.Cgm4WOMo-1669173150-0-AUNYsQJemAZLLKXK/LLITkst4hgGlnWfzL4F9Lp0aOR7p/GQ5bi5uTTDhcQJ7simvY3ykDCIlkXNrlZ4YFbPpXE=; path=/; expires=Wed, 23-Nov-22 03:42:30 GMT; domain=.hostmonster.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76e6b93e5e2ab512-OSL
Content-Encoding: gzip

www.hostmonster.com/media/shared/general/_hm/logo2.jpg

104.18.43.217

403 Forbidden

3.9 kB

URL HTTP/1.1
www.hostmonster.com/media/shared/general/_hm/logo2.jpg
IP
104.18.43.217:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (857)
Size
3.9 kB (3891 bytes)
Hash
b0881aa4e1de34176dd1f71584d76dda
e11226b69f106022f7237264aaccbd03b8cd2b2c
83163cc704615b62a1c2e306135b63845a6d5017a415e1c065c849ffbb9ef91b

HTTP Headers

GET /media/shared/general/_hm/logo2.jpg HTTP/1.1
Host: www.hostmonster.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://saicsc-acs.org/

HTTP/1.1 403 Forbidden
Date: Wed, 23 Nov 2022 03:12:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
CF-Chl-Bypass: 1
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Frame-Options: SAMEORIGIN
Set-Cookie: __cf_bm=vcX986md2.FZxIBIJVFVrSUCxOD32izmc_v2yq7P76c-1669173150-0-AdPT9OcYMkvbo/Rn90l20Q33pIqUAbeu2z5ZjGruby/t41YbK/35+EgF1WRRtgV+RdbLFHK8Z9GSfN51nwmJ6xY=; path=/; expires=Wed, 23-Nov-22 03:42:30 GMT; domain=.hostmonster.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76e6b93e5eac0b02-OSL
Content-Encoding: gzip

www.hostmonster.com/media/shared/general/_hm/hostmonster-h.png

104.18.43.217

403 Forbidden

3.9 kB

URL HTTP/1.1
www.hostmonster.com/media/shared/general/_hm/hostmonster-h.png
IP
104.18.43.217:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (879)
Size
3.9 kB (3917 bytes)
Hash
ee0e7aba17703051886a72dee5be64fe
df0d357fbd6e05a63d5435b6a2a94023f27dc084
2d34b751671c25d6cf5bcaebef16ce4dd6606b37946dc3a6f629946f9f36a0d4

HTTP Headers

GET /media/shared/general/_hm/hostmonster-h.png HTTP/1.1
Host: www.hostmonster.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://saicsc-acs.org/

HTTP/1.1 403 Forbidden
Date: Wed, 23 Nov 2022 03:12:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
CF-Chl-Bypass: 1
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Frame-Options: SAMEORIGIN
Set-Cookie: __cf_bm=tawFvQHSl2kny5qjtM3s1HNYKbjHGskWvzkCWb2mfyc-1669173150-0-Ad+GEcekZFigC67Jz7uSdZOFiJ9N1wjBcaBlzs7Fxx7r56C5H/5ccRAb07qTxNU3RC/Vie9ovZJZFAhbnCJwNzk=; path=/; expires=Wed, 23-Nov-22 03:42:30 GMT; domain=.hostmonster.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76e6b93e5ab9b500-OSL
Content-Encoding: gzip

www.hostmonster.com/media/shared/general/_hm/button-end.jpg

104.18.43.217

403 Forbidden

3.9 kB

URL HTTP/1.1
www.hostmonster.com/media/shared/general/_hm/button-end.jpg
IP
104.18.43.217:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (857)
Size
3.9 kB (3895 bytes)
Hash
8810baa802738aa0a3983d9fcd27551b
72b848e95e930433454bc0bae623f526baea9729
38236f12607ba2f29d5ff0bfc30132e3b207259d316b60b57084f1a4bebe0712

HTTP Headers

GET /media/shared/general/_hm/button-end.jpg HTTP/1.1
Host: www.hostmonster.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://saicsc-acs.org/

HTTP/1.1 403 Forbidden
Date: Wed, 23 Nov 2022 03:12:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
CF-Chl-Bypass: 1
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Frame-Options: SAMEORIGIN
Set-Cookie: __cf_bm=azSP1pVvvuugtVLoSFbNNizGf7QpK0NChBGnCC_lL0Y-1669173150-0-AX4mIkpxb58c+LKJbdKIS3TVcYCHL8TGnlmMvvkFuwENgAU/AIScRT4k69IXX7kqPSuQfrYrYmnyO2XdOkDlX5E=; path=/; expires=Wed, 23-Nov-22 03:42:30 GMT; domain=.hostmonster.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76e6b93e5c270af6-OSL
Content-Encoding: gzip

www.hostmonster.com/media/shared/general/jquery/jquery.min.js

104.18.43.217

403 Forbidden

3.9 kB

URL HTTP/1.1
www.hostmonster.com/media/shared/general/jquery/jquery.min.js
IP
104.18.43.217:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (857)
Size
3.9 kB (3896 bytes)
Hash
e90712666e46217186bd76c0ecb8308a
72430aa406ba651fbfbff0c3f374d8e1c34ceab6
99aa91a154f0dc4d8f864a2952432c75518904759a9ae3f3f33c279ebfc81014

HTTP Headers

GET /media/shared/general/jquery/jquery.min.js HTTP/1.1
Host: www.hostmonster.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://saicsc-acs.org/

HTTP/1.1 403 Forbidden
Date: Wed, 23 Nov 2022 03:12:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
CF-Chl-Bypass: 1
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Frame-Options: SAMEORIGIN
Set-Cookie: __cf_bm=PUnRvZflr.pE9eOJ6MqKZ27YLW8gzU7LPRyI2XWCNAo-1669173150-0-AR+5vSu+ZoR4HAqz+YPECzumXoZXkHVH8QxbBJ93M7k2LTtm/T22XQJiLuSsXq7LjZJiO+2u9B/pBxQLwKQxHxg=; path=/; expires=Wed, 23-Nov-22 03:42:30 GMT; domain=.hostmonster.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76e6b93e7e3cb512-OSL
Content-Encoding: gzip

www.hostmonster.com/media/shared/general/_hm/gradient-above-buttons.jpg

104.18.43.217

403 Forbidden

4.0 kB

URL HTTP/1.1
www.hostmonster.com/media/shared/general/_hm/gradient-above-buttons.jpg
IP
104.18.43.217:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (900)
Size
4.0 kB (3953 bytes)
Hash
f1d887874decd06b23a9b993d84678e8
0310df6003c834408920ec74ead98aef03576f8f
ed9a818c6b4b7d7f4895e781fcf8c57b25fc8b88d0a7d32566f997f0ec0e5f38

HTTP Headers

GET /media/shared/general/_hm/gradient-above-buttons.jpg HTTP/1.1
Host: www.hostmonster.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://saicsc-acs.org/

HTTP/1.1 403 Forbidden
Date: Wed, 23 Nov 2022 03:12:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
CF-Chl-Bypass: 1
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Frame-Options: SAMEORIGIN
Set-Cookie: __cf_bm=l7.zbO_hkpH7N1iEP5pDnk1wuIZQShUsxnaHuauDv6A-1669173150-0-AdL7QcT83D4bJdQlwZjzffqRRle9pYk93YYiTck1Sc/J3kPyt041djqczM5nZAdp3LD4tUT7gVjILNevym6Sr3c=; path=/; expires=Wed, 23-Nov-22 03:42:30 GMT; domain=.hostmonster.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76e6b93e8ef0b4f7-OSL
Content-Encoding: gzip

www.hostmonster.com/media/shared/general/_hm/hm_gradient.jpg

104.18.43.217

403 Forbidden

3.9 kB

URL HTTP/1.1
www.hostmonster.com/media/shared/general/_hm/hm_gradient.jpg
IP
104.18.43.217:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (857)
Size
3.9 kB (3899 bytes)
Hash
16fe9e18c2d25342d55e5291f62a1148
cf46994a5237fa3c83093ca3a0eddc04e3d685dc
1505f7a27aba5d9dc9a25a166ac8dd49a93842da3568d4a8e42a54e2aca95f07

HTTP Headers

GET /media/shared/general/_hm/hm_gradient.jpg HTTP/1.1
Host: www.hostmonster.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://saicsc-acs.org/

HTTP/1.1 403 Forbidden
Date: Wed, 23 Nov 2022 03:12:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
CF-Chl-Bypass: 1
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Frame-Options: SAMEORIGIN
Set-Cookie: __cf_bm=i5UveVYA4kKKSldcDjwEE9pKoVokv_690Q2jyl_fKKs-1669173150-0-Af1raXTZBkYRYDZrVsa2EWDybubHWNwoA5JYzSePZWIG8wAIijvMjj8PE8fC231z/QqP2qHPlrWwYEWkrMU2Q00=; path=/; expires=Wed, 23-Nov-22 03:42:30 GMT; domain=.hostmonster.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76e6b93e8fc1b4eb-OSL
Content-Encoding: gzip

www.google-analytics.com/ga.js

142.250.74.174

200 OK

17 kB

URL HTTP/1.1
www.google-analytics.com/ga.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1305)
Size
17 kB (17168 bytes)
Hash
01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d

HTTP Headers

GET /ga.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://saicsc-acs.org/

HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Wed, 23 Nov 2022 03:05:56 GMT
Expires: Wed, 23 Nov 2022 05:05:56 GMT
Cache-Control: public, max-age=7200
Age: 394
Last-Modified: Tue, 27 Sep 2022 22:01:05 GMT
Content-Type: text/javascript

push.services.mozilla.com/

54.148.242.254

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.148.242.254:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: lP0phvB/F8JbO5EpI/N3iw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: hRY0D9EYhaHfFVJdQ3Doqu9E7aA=

www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1197310541&utmhn=saicsc-acs.org&utmcs=windows-1252&utmsr=1280x1024&utmvp=1280x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Welcome%20saicsc-acs.org%20-%20Hostmonster.com&utmhid=1792709687&utmr=-&utmp=%2Fparked%2F%255B%2525%2520parked_type%2520%2525%255D%2Fsaicsc-acs.org%2F%255B%2525%2520request_uri%2520%2525%255D&utmht=1669173150222&utmac=UA-9156498-2&utmcc=__utma%3D15712820.564296273.1669173150.1669173150.1669173150.1%3B%2B__utmz%3D15712820.1669173150.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1835066581&utmredir=1&utmu=HACAAAAAAAAAAAAAAAAAAAAE~

142.250.74.174

302 Found

369 B

URL HTTP/1.1
www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1197310541&utmhn=saicsc-acs.org&utmcs=windows-1252&utmsr=1280x1024&utmvp=1280x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Welcome%20saicsc-acs.org%20-%20Hostmonster.com&utmhid=1792709687&utmr=-&utmp=%2Fparked%2F%255B%2525%2520parked_type%2520%2525%255D%2Fsaicsc-acs.org%2F%255B%2525%2520request_uri%2520%2525%255D&utmht=1669173150222&utmac=UA-9156498-2&utmcc=__utma%3D15712820.564296273.1669173150.1669173150.1669173150.1%3B%2B__utmz%3D15712820.1669173150.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1835066581&utmredir=1&utmu=HACAAAAAAAAAAAAAAAAAAAAE~
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size
369 B (369 bytes)
Hash
c5948472535eefd227d28ca251950108
43c27c3c016114ac5a3fdfc130498d0e9960e57c
ac6a5dff75f590f34012a893ef8eb9747e120513656614740e0e39e0fd086884

HTTP Headers

GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1197310541&utmhn=saicsc-acs.org&utmcs=windows-1252&utmsr=1280x1024&utmvp=1280x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Welcome%20saicsc-acs.org%20-%20Hostmonster.com&utmhid=1792709687&utmr=-&utmp=%2Fparked%2F%255B%2525%2520parked_type%2520%2525%255D%2Fsaicsc-acs.org%2F%255B%2525%2520request_uri%2520%2525%255D&utmht=1669173150222&utmac=UA-9156498-2&utmcc=__utma%3D15712820.564296273.1669173150.1669173150.1669173150.1%3B%2B__utmz%3D15712820.1669173150.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1835066581&utmredir=1&utmu=HACAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://saicsc-acs.org/

HTTP/1.1 302 Found
Location: https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-9156498-2&cid=564296273.1669173150&jid=1835066581&_v=5.7.2&z=1197310541
Access-Control-Allow-Origin: *
Date: Wed, 23 Nov 2022 03:12:30 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Cross-Origin-Resource-Policy: cross-origin
Content-Type: text/html; charset=UTF-8
Server: Golfe2
Content-Length: 369

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
461760f30678f8aa3ad801eb88dc59d9
7b3c33ec99c429ad19918895014e309ca947f31a
fe8c62f7c90fa17a3d286b4abc0c8d7aa338d26aa4724d0d5dbaaab7b889b382

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 03:12:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-9156498-2&cid=564296273.1669173150&jid=1835066581&_v=5.7.2&z=1197310541

142.251.1.157

200 OK

35 B

URL HTTP/2
stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-9156498-2&cid=564296273.1669173150&jid=1835066581&_v=5.7.2&z=1197310541
IP
142.251.1.157:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015

HTTP Headers

GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-9156498-2&cid=564296273.1669173150&jid=1835066581&_v=5.7.2&z=1197310541 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://saicsc-acs.org/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 23 Nov 2022 03:12:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

saicsc-acs.org/favicon.ico

74.220.199.8

200 OK

5.4 kB

URL HTTP/1.1
saicsc-acs.org/favicon.ico
IP
74.220.199.8:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (316)
Size
5.4 kB (5413 bytes)
Hash
44b83b78e3ce1621501650c9f4afc67b
10dc4a5b0266821f690c4f22c70c141e44b36116
d05b819a5ddf1327735c97135aa2c83e6528bb80ddbb8db8ab7eb6b0ed7fa3d9

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: saicsc-acs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://saicsc-acs.org/cgi-bin/indusind/login/login.php
Cookie: __utma=15712820.564296273.1669173150.1669173150.1669173150.1; __utmb=15712820.1.10.1669173150; __utmc=15712820; __utmz=15712820.1669173150.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1

HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 03:12:30 GMT
Server: Apache/2.2.31 (CentOS)
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=ISO-8859-1

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b2b92f1110c82662bfa1addc9bab3130
d6f86300cbfd5b21b3d505c08ffd6edef34b654a
6914944644172d563d0d7c2a5084690fce86ead13949ff29f42842d4bb6e0734

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Nov 2022 03:12:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20280
Expires: Wed, 23 Nov 2022 08:50:31 GMT
Date: Wed, 23 Nov 2022 03:12:31 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20280
Expires: Wed, 23 Nov 2022 08:50:31 GMT
Date: Wed, 23 Nov 2022 03:12:31 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20280
Expires: Wed, 23 Nov 2022 08:50:31 GMT
Date: Wed, 23 Nov 2022 03:12:31 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20280
Expires: Wed, 23 Nov 2022 08:50:31 GMT
Date: Wed, 23 Nov 2022 03:12:31 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg

34.120.237.76

200 OK

8.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.1 kB (8089 bytes)
Hash
c8f6118fc03f31862ff68fef8a2b9a7f
318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73
cdd4d44f05cc524d7f2b1d6d792ecd8a9a933e52ecb7685a7d7ea786a510ef39

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8089
x-amzn-requestid: f3c55266-9b03-4b7f-b076-fdf56704318e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b0QQyECioAMFzdQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6377fa6b-3e10cef6117a10a4115cfce7;Sampled=0
x-amzn-remapped-date: Fri, 18 Nov 2022 21:34:35 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ngJvyUydpRDSiYy9kfeh8JmydmR_K8mjfZtGLgT0qeE2JaABbDMSaQ==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 21:56:28 GMT
age: 18963
etag: "318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb450e2a1-222f-4dfe-850a-f862cd102c3e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.9 kB (6910 bytes)
Hash
21fc9852ed2db17695d7038195b9283f
cda806d600c9e63e50d8ec42549fb107e4915068
55a7098369eb94f4333a1079ed6ad570121b7c76eeafb35022224b86d9b7edbb

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb450e2a1-222f-4dfe-850a-f862cd102c3e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6910
x-amzn-requestid: 0d4fa715-c66a-4bcb-985c-f2c2ea71b3a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-pvrF-xoAMFSMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637c2330-67041f796d1906cc51e31b73;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 01:17:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: npd-DJrCfYjrwW7kfMwT38YWatTTdpr7bMRc0ikcXDwefQq-OR3ByQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 20:05:57 GMT
age: 25594
etag: "cda806d600c9e63e50d8ec42549fb107e4915068"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45ca81c5-d11a-4d86-a922-dbdce0f6b46c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.0 kB (4977 bytes)
Hash
0cc111ba6ae699fca7fbff3490640960
18084197b48ea3b4a143636250396e8791d0285f
34fbba92e665ad371ea2bd1a871251cf0c5b7832d6f4661b21b2cfbd7f786923

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45ca81c5-d11a-4d86-a922-dbdce0f6b46c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4977
x-amzn-requestid: 3e56de91-7ed1-4b1e-b230-5f19b2cc6601
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bxQKBHzdIAMFpUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376c70c-41c572d27999534d3c198372;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 23:43:08 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Or1B6k7o4cYqVXfndjJsKLOV-aYKX8bfHCQIUqNzvofjQSnIf8f04A==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 21:52:42 GMT
age: 19189
etag: "18084197b48ea3b4a143636250396e8791d0285f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a31b1f7-5b4e-41c3-a823-4b79b831c0f5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6180 bytes)
Hash
218956a7601433bcf0f6ff484dbd5b52
d005c3afc835a854efdfa9cceb54b81153bb9899
dcc6527a7705c8e870e6aaf6744319ba0541a9fdfef58ca897361309d11b2b2e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a31b1f7-5b4e-41c3-a823-4b79b831c0f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6180
x-amzn-requestid: 77d0b21a-db56-431c-8bc1-15ce409beadd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b7nE2FyqIAMFnEQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637aebb8-6661a45a00c174e87e789791;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 03:08:40 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 4i-DyxmOE3pf55HCp1_oYxYPupFwEdMiQH8YRPQlyj-HMHtlRUfS4g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 74ab105148338444981d1b2277ffd9c4.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 03:57:57 GMT
age: 83674
etag: "d005c3afc835a854efdfa9cceb54b81153bb9899"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f13f0a4-9e67-4f61-9165-83b87312d9cb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.1 kB (8081 bytes)
Hash
309227dc1b5f9193c6be8f5a010fa348
dff12e88a784a954012f257d3689862c52251d01
2d52b83ff0a58c41bf2e38abf8fce13eb87b5ecfce144ff0edc1bfadd254b452

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f13f0a4-9e67-4f61-9165-83b87312d9cb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8081
x-amzn-requestid: cafd3337-7bb8-4e2d-91d4-a33439a32b80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBcAMEwgoAMFl-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d4067-6074dcae15d9194513916d48;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 21:34:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lfLcMzlaKoOXDhvCk6dJCuqkINEqJX20JltVNZMLUFhQeNPpN8cVFg==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 21:56:14 GMT
age: 18977
etag: "dff12e88a784a954012f257d3689862c52251d01"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d582ed2-f829-4647-9113-832d4500a207.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.1 kB (9138 bytes)
Hash
6d2c986e076309d51d199332caebb07a
343a5bfba0f8fec28f9345f276b44f44c6eaf6a6
64e6fba6a45c70c1db6040a2273472774c00257bef373cc45b6ca00cb819681a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d582ed2-f829-4647-9113-832d4500a207.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9138
x-amzn-requestid: 524e565e-a9fb-45f9-b786-d64cf26a3cdf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBcAAHG8IAMFhwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d4066-3689e70e6212e9e77dc134f4;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 21:34:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cwu__NPGaU0zyAG0H1yZhmjGsFzvNmzsGv6Zt9hrF5gwSysEio2MjA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 21:45:52 GMT
age: 19599
etag: "343a5bfba0f8fec28f9345f276b44f44c6eaf6a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

i3.cdn-image.com/__media__/js/min.js?v2.3

23.36.76.121

200 OK

3.1 kB

URL HTTP/1.1
i3.cdn-image.com/__media__/js/min.js?v2.3
IP
23.36.76.121:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (8349), with CRLF line terminators
Size
3.1 kB (3050 bytes)
Hash
683b827c961eb1a55ae52a5c42524a13
a1c0b96af389b99124cb42f1730d2dcb0f3dc3f4
58e12a35c892e412e904c69e12d13915c07afb320633925f41a493ebfc2ee053

HTTP Headers

GET /__media__/js/min.js?v2.3 HTTP/1.1
Host: i3.cdn-image.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.iyfubh.com/

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/javascript
Last-Modified: Wed, 22 Sep 2021 05:10:41 GMT
ETag: "614abad1-20f3"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=28181
Expires: Wed, 23 Nov 2022 11:02:14 GMT
Date: Wed, 23 Nov 2022 03:12:33 GMT
Content-Length: 3050
Connection: keep-alive

www.iyfubh.com/?dn=saicsc-acs.org&pid=9POW7N968

208.91.196.46

200 OK

7.4 kB

URL HTTP/1.1
www.iyfubh.com/?dn=saicsc-acs.org&pid=9POW7N968
IP
208.91.196.46:0
ASN
#40034 CONFLUENCE-NETWORK-INC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2108), with CRLF, LF line terminators
Size
7.4 kB (7394 bytes)
Hash
a7690347d1ed06ac12a295c4fb1f0e90
78b810d0f42be96b8ac65f2597c91ec4701a5745
1e10436dbbdd4a0b7fa5e443efc6d5e0ffd3d7d7d229010c981f01ef1a6f2954

HTTP Headers

GET /?dn=saicsc-acs.org&pid=9POW7N968 HTTP/1.1
Host: www.iyfubh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://saicsc-acs.org/
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 03:12:30 GMT
Server: Apache
Referrer-Policy: no-referrer-when-downgrade
Accept-CH: Sec-CH-Save-Data, Sec-CH-DPR, Sec-CH-Width, Sec-CH-Viewport-Width, Sec-CH-Viewport-Height, Sec-CH-Device-Memory, Sec-CH-RTT, Sec-CH-Downlink, Sec-CH-ECT, Sec-CH-Prefers-Color-Scheme, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
Permissions-Policy: ch-ua-platform-version=("https://dts.gnpge.com"), ch-ua-model=("https://dts.gnpge.com")
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAKX74ixpzVyXbJprcLfbH4psP4+L2entqri0lzh6pkAaXLPIcclv6DQBeJJjGFWrBIF6QMyFwXT5CCRyjS2penECAwEAAQ==_eutWS7Qz2QUw3FHp3k/EMfrRl6obfaO6CPfpoRYqWYD2/ShHD2hzlzJdcOseXca1VmTo3Tc6nZOpMJ84LybOBw==
Keep-Alive: timeout=5, max=121
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
Cache-Control: private
Content-Encoding: gzip
Transfer-Encoding: chunked

www.iyfubh.com/px.js?ch=1

208.91.196.46

200 OK

346 B

URL HTTP/1.1
www.iyfubh.com/px.js?ch=1
IP
208.91.196.46:0
ASN
#40034 CONFLUENCE-NETWORK-INC

File type
ASCII text, with very long lines (346), with no line terminators
Size
346 B (346 bytes)
Hash
f84f931c0dd37448e03f0dabf4e4ca9f
9c2c50edcf576453ccc07bf65668bd23c76e8663
5c1d5fd46a88611c31ecbb8ffc1142a7e74ec7fb7d72bd3891131c880ef3f584

HTTP Headers

GET /px.js?ch=1 HTTP/1.1
Host: www.iyfubh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.iyfubh.com/?dn=saicsc-acs.org&pid=9POW7N968
Connection: keep-alive

HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 03:12:33 GMT
Server: Apache
Last-Modified: Wed, 20 Jan 2021 10:45:10 GMT
ETag: "15a-5b952a63b81f1"
Accept-Ranges: bytes
Content-Length: 346
Keep-Alive: timeout=5, max=122
Connection: Keep-Alive
Content-Type: application/javascript

www.iyfubh.com/px.js?ch=2

208.91.196.46

200 OK

346 B

URL HTTP/1.1
www.iyfubh.com/px.js?ch=2
IP
208.91.196.46:0
ASN
#40034 CONFLUENCE-NETWORK-INC

File type
ASCII text, with very long lines (346), with no line terminators
Size
346 B (346 bytes)
Hash
f84f931c0dd37448e03f0dabf4e4ca9f
9c2c50edcf576453ccc07bf65668bd23c76e8663
5c1d5fd46a88611c31ecbb8ffc1142a7e74ec7fb7d72bd3891131c880ef3f584

HTTP Headers

GET /px.js?ch=2 HTTP/1.1
Host: www.iyfubh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.iyfubh.com/?dn=saicsc-acs.org&pid=9POW7N968
Connection: keep-alive

HTTP/1.1 200 OK
Date: Wed, 23 Nov 2022 03:12:33 GMT
Server: Apache
Referrer-Policy: no-referrer-when-downgrade
Accept-CH: Sec-CH-Save-Data, Sec-CH-DPR, Sec-CH-Width, Sec-CH-Viewport-Width, Sec-CH-Viewport-Height, Sec-CH-Device-Memory, Sec-CH-RTT, Sec-CH-Downlink, Sec-CH-ECT, Sec-CH-Prefers-Color-Scheme, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
Permissions-Policy: ch-ua-platform-version=("https://dts.gnpge.com"), ch-ua-model=("https://dts.gnpge.com")
Last-Modified: Wed, 20 Jan 2021 10:45:10 GMT
ETag: "15a-5b952a63b81f1"
Accept-Ranges: bytes
Content-Length: 346
Keep-Alive: timeout=5, max=115
Connection: Keep-Alive
Content-Type: application/javascript

i3.cdn-image.com/__media__/pics/12471/bodybg.png

23.36.76.121

200 OK

97 kB

URL HTTP/1.1
i3.cdn-image.com/__media__/pics/12471/bodybg.png
IP
23.36.76.121:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 1637 x 921, 8-bit/color RGB, non-interlaced\012- data
Size
97 kB (97189 bytes)
Hash
5082ce2ca4166a85ac3651bc34ec3ec8
5069950a6df2fcc07a2318a8459e282f93e45fae
e5c767653898a8e9acb1e966aca9d01f39a45609557d1a4811ad26cd48234a1f

HTTP Headers

GET /__media__/pics/12471/bodybg.png HTTP/1.1
Host: i3.cdn-image.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.iyfubh.com/

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 97189
Last-Modified: Wed, 20 Jan 2021 10:46:07 GMT
ETag: "600809ef-17ba5"
Accept-Ranges: bytes
Cache-Control: public, max-age=13980
Expires: Wed, 23 Nov 2022 07:05:33 GMT
Date: Wed, 23 Nov 2022 03:12:33 GMT
Connection: keep-alive

i3.cdn-image.com/__media__/pics/12471/logo.png

23.36.76.121

200 OK

4.0 kB

URL HTTP/1.1
i3.cdn-image.com/__media__/pics/12471/logo.png
IP
23.36.76.121:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 52 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
4.0 kB (3956 bytes)
Hash
9c98595145e8a8f5a7b6d4f88dceea6a
ee14b50f3332d03e4557c14449deec1fa13ba773
b690a0cc0ad3a4899a5e6c52e4a5c7ca6c2f334f946c72b2aafecb316d83b932

HTTP Headers

GET /__media__/pics/12471/logo.png HTTP/1.1
Host: i3.cdn-image.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.iyfubh.com/

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 3956
Last-Modified: Wed, 20 Jan 2021 10:46:07 GMT
ETag: "600809ef-f74"
Accept-Ranges: bytes
Cache-Control: public, max-age=13981
Expires: Wed, 23 Nov 2022 07:05:34 GMT
Date: Wed, 23 Nov 2022 03:12:33 GMT
Connection: keep-alive

i3.cdn-image.com/__media__/pics/12471/search-icon.png

23.36.76.121

200 OK

1.2 kB

URL HTTP/1.1
i3.cdn-image.com/__media__/pics/12471/search-icon.png
IP
23.36.76.121:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
1.2 kB (1189 bytes)
Hash
750928ec52c1b77aa2e72d76895d3a96
69465013bc2d4766abfc566eeb2fb5b21ef20e8f
cf2e997ed10db7eef3394c65ec68720fce20c858bf202a8c83328b7c1586d87d

HTTP Headers

GET /__media__/pics/12471/search-icon.png HTTP/1.1
Host: i3.cdn-image.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.iyfubh.com/

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 1189
Last-Modified: Wed, 20 Jan 2021 10:46:07 GMT
ETag: "600809ef-4a5"
Accept-Ranges: bytes
Cache-Control: public, max-age=13981
Expires: Wed, 23 Nov 2022 07:05:34 GMT
Date: Wed, 23 Nov 2022 03:12:33 GMT
Connection: keep-alive

i3.cdn-image.com/__media__/pics/12471/kwbg.jpg

23.36.76.121

200 OK

37 kB

URL HTTP/1.1
i3.cdn-image.com/__media__/pics/12471/kwbg.jpg
IP
23.36.76.121:0
ASN
#20940 Akamai International B.V.

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 960x574, components 3\012- data
Size
37 kB (37219 bytes)
Hash
ac32f78c89e9e21e66009a46e538e8ca
6f28ca89ed5e69650c93b230579d774ef586f273
f38235e9eeeef5f8b2e931c53a950b8afa0691a4f8bdd32fc79708318cee71fc

HTTP Headers

GET /__media__/pics/12471/kwbg.jpg HTTP/1.1
Host: i3.cdn-image.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.iyfubh.com/

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/jpeg
Content-Length: 37219
Last-Modified: Wed, 20 Jan 2021 10:46:07 GMT
ETag: "600809ef-9163"
Accept-Ranges: bytes
Cache-Control: public, max-age=13981
Expires: Wed, 23 Nov 2022 07:05:34 GMT
Date: Wed, 23 Nov 2022 03:12:33 GMT
Connection: keep-alive

i3.cdn-image.com/__media__/pics/12471/libg.png

23.36.76.121

200 OK

1.1 kB

URL HTTP/1.1
i3.cdn-image.com/__media__/pics/12471/libg.png
IP
23.36.76.121:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 41 x 5, 8-bit/color RGB, non-interlaced\012- data
Size
1.1 kB (1092 bytes)
Hash
b06cc0ee3c9be723861a2fe8f3b594e6
4382bf913ea359024f00f6d95f93154bec2b7475
3d876c43f21d31d03eef6d5b51e9cf7d28f6b0f017239300980af88522a173a0

HTTP Headers

GET /__media__/pics/12471/libg.png HTTP/1.1
Host: i3.cdn-image.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.iyfubh.com/

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 1092
Last-Modified: Wed, 20 Jan 2021 10:46:07 GMT
ETag: "600809ef-444"
Accept-Ranges: bytes
Cache-Control: public, max-age=13981
Expires: Wed, 23 Nov 2022 07:05:34 GMT
Date: Wed, 23 Nov 2022 03:12:33 GMT
Connection: keep-alive

i3.cdn-image.com/__media__/pics/12471/arrow.png

23.36.76.121

200 OK

1.1 kB

URL HTTP/1.1
i3.cdn-image.com/__media__/pics/12471/arrow.png
IP
23.36.76.121:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 12 x 19, 8-bit/color RGBA, non-interlaced\012- data
Size
1.1 kB (1060 bytes)
Hash
9b3b30bf536e8e02958b60fe30988cd3
1614df649e959b231e3f33efbd33a69c0ac1b814
368c4a249c5eeb012917122f5314af8f89e7a7cc583d8bef33950f60cf0214d0

HTTP Headers

GET /__media__/pics/12471/arrow.png HTTP/1.1
Host: i3.cdn-image.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.iyfubh.com/

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 1060
Last-Modified: Wed, 20 Jan 2021 10:46:07 GMT
ETag: "600809ef-424"
Accept-Ranges: bytes
Cache-Control: public, max-age=13981
Expires: Wed, 23 Nov 2022 07:05:34 GMT
Date: Wed, 23 Nov 2022 03:12:33 GMT
Connection: keep-alive

i3.cdn-image.com/__media__/fonts/ubuntu-r/ubuntu-r.woff

23.36.76.121

200 OK

37 kB

URL HTTP/1.1
i3.cdn-image.com/__media__/fonts/ubuntu-r/ubuntu-r.woff
IP
23.36.76.121:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format, TrueType, length 37152, version 1.0\012- data
Size
37 kB (37152 bytes)
Hash
ab6a4224e23ff1a6f0011da5807ff728
7fcb6a535150e2d16f83aad0a92fc48660212b97
9bcf8c298e71f590ac9180df7724c3ff5fe9d84766a5103cf783178639cfcd29

HTTP Headers

GET /__media__/fonts/ubuntu-r/ubuntu-r.woff HTTP/1.1
Host: i3.cdn-image.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.iyfubh.com
Connection: keep-alive
Referer: http://www.iyfubh.com/

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/font-woff
Content-Length: 37152
Last-Modified: Wed, 20 Jan 2021 10:45:11 GMT
ETag: "600809b7-9120"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Date: Wed, 23 Nov 2022 03:12:33 GMT
Connection: keep-alive

i3.cdn-image.com/__media__/fonts/ubuntu-b/ubuntu-b.woff

23.36.76.121

200 OK

38 kB

URL HTTP/1.1
i3.cdn-image.com/__media__/fonts/ubuntu-b/ubuntu-b.woff
IP
23.36.76.121:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format, TrueType, length 37928, version 1.0\012- data
Size
38 kB (37928 bytes)
Hash
eaba38ce39b5e77c6a2f6d4c2d4f9cdb
343a50542a64043963234b3fd17b815b8bcfcbd5
0869d8fe5cfd1878d7cd657cf0b0e9f76f788f3800671d4e36672b271135a5ee

HTTP Headers

GET /__media__/fonts/ubuntu-b/ubuntu-b.woff HTTP/1.1
Host: i3.cdn-image.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.iyfubh.com
Connection: keep-alive
Referer: http://www.iyfubh.com/

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/font-woff
Content-Length: 37928
Last-Modified: Wed, 20 Jan 2021 10:45:11 GMT
ETag: "600809b7-9428"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Date: Wed, 23 Nov 2022 03:12:33 GMT
Connection: keep-alive

i3.cdn-image.com/__media__/pics/12471/libgh.png

23.36.76.121

200 OK

1.1 kB

URL HTTP/1.1
i3.cdn-image.com/__media__/pics/12471/libgh.png
IP
23.36.76.121:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 41 x 5, 8-bit/color RGB, non-interlaced\012- data
Size
1.1 kB (1081 bytes)
Hash
f7b06b634b1d6a88ef2b4308eec1825b
d465b3fb71919eba724173fbd07d17ed61a79791
b2a2e95373594e8886a28794ea4b448563391ba6871c79e530cd5c76d86bd4fb

HTTP Headers

GET /__media__/pics/12471/libgh.png HTTP/1.1
Host: i3.cdn-image.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.iyfubh.com/

HTTP/1.1 200 OK
Server: nginx
Content-Type: image/png
Content-Length: 1081
Last-Modified: Wed, 20 Jan 2021 10:46:07 GMT
ETag: "600809ef-439"
Accept-Ranges: bytes
Cache-Control: public, max-age=43678
Expires: Wed, 23 Nov 2022 15:20:31 GMT
Date: Wed, 23 Nov 2022 03:12:33 GMT
Connection: keep-alive

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (12)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations