urlquery - report: https://rentkayaksnearme.com/fswg/

Overview

URL	https://rentkayaksnearme.com/fswg/
IP	50.62.149.29
ASN	GO-DADDY-COM-LLC
Location	United States
Report completed	2022-07-02 10:17:44 UTC
Status	Loading report..
urlquery Alerts	No alerts detected

Settings

UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer

Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Blocklists

OpenPhish

Added / Verified	Severity	Host	Comment
2022-07-01	2	rentkayaksnearme.com/fswg/	LeBoncoin

PhishTank

No alerts detected

Fortinet's Web Filter

Added / Verified	Severity	Host	Comment
2022-07-02	2	rentkayaksnearme.com/fswg/	Phishing
2022-07-02	2	rentkayaksnearme.com/fswg/images/left.svg	Phishing
2022-07-02	2	rentkayaksnearme.com/fswg/images/verified.svg	Phishing
2022-07-02	2	rentkayaksnearme.com/fswg/images/logo.svg	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

Files

No files detected

Passive DNS (13)

Passive DNS Source	Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
[Mnemonic Passive DNS]	img-getpocket.cdn.mozilla.net (5)	1631	2017-09-01 03:40:57 UTC	2022-07-02 04:56:34 UTC	34.120.237.76
[Mnemonic Passive DNS]	www.deep-lab.com (1)	0	2018-06-15 18:39:28 UTC	2022-06-28 04:26:57 UTC	142.250.74.83	Unknown ranking
[Mnemonic Passive DNS]	rentkayaksnearme.com (7)	0	2021-01-04 20:18:59 UTC	2022-06-08 10:54:04 UTC	50.62.149.29	Unknown ranking
[Mnemonic Passive DNS]	content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03 12:26:46 UTC	2022-07-02 05:33:42 UTC	54.230.111.7
[Mnemonic Passive DNS]	r3.o.lencr.org (5)	344	2020-12-02 08:52:13 UTC	2022-07-02 05:03:49 UTC	23.36.77.32
[Mnemonic Passive DNS]	contile.services.mozilla.com (1)	1114	No data	No data	34.117.237.239
[Mnemonic Passive DNS]	code.jquery.com (2)	634	2012-05-21 17:28:02 UTC	2022-07-02 04:56:32 UTC	69.16.175.10
[Mnemonic Passive DNS]	ocsp.pki.goog (6)	175	2017-06-14 07:23:31 UTC	2022-07-02 05:05:05 UTC	142.250.74.3
[Mnemonic Passive DNS]	ocsp.pki.goog (6)	175	2017-06-14 07:23:31 UTC	2022-07-02 05:05:05 UTC
[Mnemonic Passive DNS]	ajax.googleapis.com (1)	12905	2017-01-30 05:00:30 UTC	2019-10-16 05:01:16 UTC	142.250.74.170
[Mnemonic Passive DNS]	firefox.settings.services.mozilla.com (2)	867	2016-03-17 08:25:01 UTC	2020-05-25 20:01:47 UTC	54.230.111.35
[Mnemonic Passive DNS]	push.services.mozilla.com (1)	2140	2014-10-24 08:27:06 UTC	2022-07-02 06:56:22 UTC	52.89.17.198
[Mnemonic Passive DNS]	ocsp.digicert.com (1)	86	2012-11-29 12:49:49 UTC	2022-07-02 07:46:12 UTC	93.184.220.29

Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 50.62.149.29

Date	UQ / IDS / BL	URL	IP
2022-08-03 02:45:08 +0000	0 - 0 - 3	piwcnorthhouston.org/admin/ckeditor/kcfinder/ (...)	50.62.149.29
2022-07-30 15:27:22 +0000	0 - 0 - 1	fantasypartyentertainment.com/wp-content/plug (...)	50.62.149.29
2022-07-28 13:15:29 +0000	0 - 0 - 2	piwcnorthhouston.org/admin/ckeditor/kcfinder/ (...)	50.62.149.29
2022-07-21 11:17:27 +0000	0 - 0 - 5	piwcnorthhouston.org/admin	50.62.149.29
2022-07-08 02:15:23 +0000	0 - 0 - 5	rentkayaksnearme.com/	50.62.149.29
2022-06-27 18:42:34 +0000	0 - 0 - 1	fantasypartyentertainment.com/wp-content/plug (...)	50.62.149.29
2022-06-26 06:11:17 +0000	0 - 0 - 2	piwcnorthhouston.org/admin/ckeditor/kcfinder/ (...)	50.62.149.29
2022-06-23 18:14:01 +0000	0 - 0 - 1	fantasypartyentertainment.com/wp-content/plug (...)	50.62.149.29
2022-06-22 03:45:34 +0000	0 - 0 - 1	fantasypartyentertainment.com/wp-content/plug (...)	50.62.149.29
2022-06-21 09:12:00 +0000	0 - 0 - 3	piwcnorthhouston.org/admin/ckeditor/kcfinder/ (...)	50.62.149.29

Last 10 reports on ASN: GO-DADDY-COM-LLC

Date	UQ / IDS / BL	URL	IP
2022-08-11 14:29:39 +0000	8 - 0 - 9	elitechairlifts.com/secur06c/auth.php?AdSBnWE (...)	132.148.244.203
2022-08-11 14:26:24 +0000	8 - 0 - 9	elitechairlifts.com/secur06c/auth.php?md=rmpr (...)	132.148.244.203
2022-08-11 14:26:24 +0000	8 - 0 - 9	elitechairlifts.com/secur06c/auth.php?md=pTHr (...)	132.148.244.203
2022-08-11 14:22:46 +0000	0 - 0 - 2	www.vivacuscoperu.com/anechoic.php	160.153.72.162
2022-08-11 14:22:27 +0000	0 - 0 - 2	www.vivacuscoperu.com/en.php	160.153.72.162
2022-08-11 14:22:05 +0000	0 - 0 - 2	www.vivacuscoperu.com/annotator.php	160.153.72.162
2022-08-11 13:55:10 +0000	0 - 0 - 1	training.globodyinc.biz/7irru0OP/	192.169.148.125
2022-08-11 13:55:00 +0000	0 - 0 - 1	tara.globodyinc.biz/cgi-bin/nkoqaAoDD7dO/	192.169.148.125
2022-08-11 13:49:56 +0000	0 - 0 - 1	tara.globodyinc.biz/cgi-bin/O_76180381/?i=1	192.169.148.125
2022-08-11 13:49:51 +0000	0 - 0 - 2	tara.globodyinc.biz/cgi-bin/O_76180381/	192.169.148.125

Last 1 reports on domain: rentkayaksnearme.com

Date	UQ / IDS / BL	URL	IP
2022-07-08 02:15:23 +0000	0 - 0 - 5	rentkayaksnearme.com/	50.62.149.29

JavaScript

Executed Scripts (3)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (33)

Request	Response
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 91dd975a7b17b2922dd23c0e49314e40$ 54.230.111.35 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Content-Length, Retry-After Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Sat, 02 Jul 2022 09:50:31 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: Zevpkr9QaSzDSxGq4B0pVuY8Uaw9Mbx8SbfvufOaE_oQPRW9pdO8Vw== Age: 1619 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 91dd975a7b17b2922dd23c0e49314e40 Sha1: 57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2 Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /chains/remote-settings.content-signature.mozilla.org-2022-08-10-12-10-21.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	$Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 581454acdd98f34fd3fbabd0977ade29$ 54.230.111.7 HTTP/2 200 OK content-type: binary/octet-stream content-length: 5348 last-modified: Tue, 21 Jun 2022 12:10:22 GMT content-disposition: attachment accept-ranges: bytes server: AmazonS3 date: Sat, 02 Jul 2022 03:26:42 GMT etag: "581454acdd98f34fd3fbabd0977ade29" x-cache: Hit from cloudfront via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: vP0YRKG9wATz-y0rjeTe_4JpMIHi6XB_kILun7KVmGpCvGDkr-hknA== age: 24649 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 581454acdd98f34fd3fbabd0977ade29 Sha1: d8d86c0b513137aeb85de01cea7b272c35eb6ab4 Sha256: e98f8f33ba5ed59c3cfdf2ae54957ed32652cf0899f3c8db4b5872e3ece1e4eb
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "8E263E6763753F5659AC0FC2D11DAF8ECE9720988153C38CB40631AF26C86575" Last-Modified: Fri, 01 Jul 2022 16:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15143 Expires: Sat, 02 Jul 2022 14:29:53 GMT Date: Sat, 02 Jul 2022 10:17:30 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: a7e37e80f3a67a41ff567648c1f2d285 Sha1: 7ce66e5153f2d4a7b14ccba49fd1a4b70ae274f5 Sha256: 8e263e6763753f5659ac0fc2d11daf8ece9720988153c38cb40631af26c86575
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6$ 34.117.237.239 HTTP/2 200 OK server: nginx date: Sat, 02 Jul 2022 10:17:30 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /fswg/ HTTP/1.1 Host: rentkayaksnearme.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	$Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators Size: 1579 Md5: 4c970b7fac29892c0b45ce19b9728521$ 50.62.149.29 HTTP/2 200 OK last-modified: Thu, 17 Mar 2022 05:16:22 GMT etag: "3562c80-132d-5da63217cd580-br" accept-ranges: bytes vary: Accept-Encoding content-encoding: br content-length: 1579 content-type: text/html date: Sat, 02 Jul 2022 10:17:31 GMT server: Apache X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators Size: 1579 Md5: 4c970b7fac29892c0b45ce19b9728521 Sha1: d9fcaad21d22b96bf74a82c9926dfe46ed0c86f2 Sha256: 206163474e85439f13b9ed2ff77f50a5bdbe659e6f70eeaf11c093edcc12c59d Alerts: Blocklists: - openphish: LeBoncoin - fortinet: Phishing
GET /jquery-3.1.1.min.js HTTP/1.1 Host: code.jquery.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://rentkayaksnearme.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	69.16.175.10 HTTP/2 200 OK date: Sat, 02 Jul 2022 10:17:31 GMT content-encoding: gzip content-length: 30070 content-type: application/javascript; charset=utf-8 last-modified: Fri, 20 Aug 2021 17:47:53 GMT accept-ranges: bytes server: nginx etag: W/"611feac9-152b5" cache-control: max-age=315360000, public access-control-allow-origin: * vary: Accept-Encoding x-hw: 1656757051.dop003.sk1.t,1656757051.cds067.sk1.hn,1656757051.cds010.sk1.c X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (32030) Size: 30070 Md5: f7a4a283c6a5130b43ce8de3b7842078 Sha1: ef243edbb67f9e50f8589885e4541f6c919ea8d7 Sha256: aee9e5b2534ced87fe1e02a1a9e661468ba548e02edacbe9b68b3b247607dc4e
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 02 Jul 2022 10:17:31 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: ccd471e21879c0bb72591571b7f9bf74 Sha1: d1ad3815366ca978acbf63d0f9deffecacd7bb3c Sha256: 0ae629c4bebc8d4c13e9cf0aa267b66f0870b39f2ace308dc7197fb425d1922d
GET /jquery-3.3.1.js HTTP/1.1 Host: code.jquery.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://rentkayaksnearme.com Connection: keep-alive Referer: https://rentkayaksnearme.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	69.16.175.10 HTTP/2 200 OK date: Sat, 02 Jul 2022 10:17:31 GMT content-encoding: gzip content-length: 80268 content-type: application/javascript; charset=utf-8 last-modified: Fri, 20 Aug 2021 17:47:53 GMT accept-ranges: bytes server: nginx etag: W/"611feac9-42587" cache-control: max-age=315360000, public access-control-allow-origin: * vary: Accept-Encoding x-hw: 1656757051.dop210.sk1.t,1656757051.cds067.sk1.hn,1656757051.cds214.sk1.c X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text Size: 80268 Md5: 9fd458b477c45f28862c10eeee99263f Sha1: bcfceda34c540b9957758de619b288362188bb0b Sha256: ef82ed7916ef7c6cb059d150c8b1e102c57e0e174ea6a1dfbcd0c286c465ba0f
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	--- Additional Info --- Magic: data Size: 472 Md5: ccd471e21879c0bb72591571b7f9bf74 Sha1: d1ad3815366ca978acbf63d0f9deffecacd7bb3c Sha256: 0ae629c4bebc8d4c13e9cf0aa267b66f0870b39f2ace308dc7197fb425d1922d
GET /fswg/images/left.svg HTTP/1.1 Host: rentkayaksnearme.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://rentkayaksnearme.com/fswg/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	$Magic: SVG Scalable Vector Graphics image\012- , ASCII text Size: 245 Md5: 417f07eb51e54d200fe43beff82ecd23$ 50.62.149.29 HTTP/2 200 OK last-modified: Tue, 10 Aug 2021 20:56:36 GMT etag: "3562c6f-188-5c93abcc70900-br" accept-ranges: bytes vary: Accept-Encoding content-encoding: br content-length: 245 content-type: image/svg+xml date: Sat, 02 Jul 2022 10:17:31 GMT server: Apache X-Firefox-Spdy: h2 --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text Size: 245 Md5: 417f07eb51e54d200fe43beff82ecd23 Sha1: 565604fb8c2885c302ed37ef75b4b9f7af4dafbf Sha256: 3f6bf9de4a98859b460d65db451019ef36dc0032170c10faa349fa2b1f95211b Alerts: Blocklists: - fortinet: Phishing
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://rentkayaksnearme.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	142.250.74.170 HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} timing-allow-origin: * content-length: 30028 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sun, 26 Jun 2022 06:55:53 GMT expires: Mon, 26 Jun 2023 06:55:53 GMT cache-control: public, max-age=31536000, stale-while-revalidate=2592000 age: 530498 last-modified: Tue, 03 Mar 2020 19:15:00 GMT content-type: text/javascript; charset=UTF-8 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (32065) Size: 30028 Md5: 6d973c8b7e2439d958e09c0a1ab9fe50 Sha1: 05ae0830200c20b9a2dfd5a825adc400481a60fb Sha256: f3c122dc227e829ed96b2a754296809201bd78abbad7ba50ef5079654e1cc894
GET /fswg/images/verified.svg HTTP/1.1 Host: rentkayaksnearme.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://rentkayaksnearme.com/fswg/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	$Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (427) Size: 308 Md5: 8b7d433a16f66c2e1b9527ce60cc8293$ 50.62.149.29 HTTP/2 200 OK last-modified: Tue, 10 Aug 2021 20:56:58 GMT etag: "3562c7e-207-5c93abe16ba80-br" accept-ranges: bytes vary: Accept-Encoding content-encoding: br content-length: 308 content-type: image/svg+xml date: Sat, 02 Jul 2022 10:17:31 GMT server: Apache X-Firefox-Spdy: h2 --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (427) Size: 308 Md5: 8b7d433a16f66c2e1b9527ce60cc8293 Sha1: 8a2fedb2df43369a2c07e67b37b58ed8ff1bd6f8 Sha256: 896bc0778e5d79fc9f6093a1884fb6d47a73e12bbee687f58a2fed3c9d41c713 Alerts: Blocklists: - fortinet: Phishing
GET /fswg/images/logo.svg HTTP/1.1 Host: rentkayaksnearme.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://rentkayaksnearme.com/fswg/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	$Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2481) Size: 1061 Md5: bfb520024f7bcc24dc13499e6314fbb9$ 50.62.149.29 HTTP/2 200 OK last-modified: Tue, 10 Aug 2021 20:56:46 GMT etag: "3562c72-a0f-5c93abd5f9f80-br" accept-ranges: bytes vary: Accept-Encoding content-encoding: br content-length: 1061 content-type: image/svg+xml date: Sat, 02 Jul 2022 10:17:31 GMT server: Apache X-Firefox-Spdy: h2 --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2481) Size: 1061 Md5: bfb520024f7bcc24dc13499e6314fbb9 Sha1: b7e5ec0a5287112a06b4383aa4f331c4a8e2aef2 Sha256: 68213280cd57baf34a4be1dbb913e7a258e2f7c8bcc1379ae96d0bc373c2b9ea Alerts: Blocklists: - fortinet: Phishing
GET /fswg/css/brand.css HTTP/1.1 Host: rentkayaksnearme.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://rentkayaksnearme.com/fswg/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	50.62.149.29 HTTP/2 302 Found x-powered-by: PHP/7.4.30 location: https://www.deep-lab.com/2022/04/semrush-moz.html vary: Accept-Encoding content-encoding: br content-length: 64 content-type: text/html; charset=UTF-8 date: Sat, 02 Jul 2022 10:17:31 GMT server: Apache X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document, ASCII text, with no line terminators Size: 64 Md5: c58da2c2b0035b85945d9658e690cb94 Sha1: 481f53a1eb6a179d9d8748dc57eb493386c32bd1 Sha256: 36108b1ccc0f952f7984ee893cb9411a81e8c2ec6c982795923d4fb15176995f
GET /fswg/css/hover.css HTTP/1.1 Host: rentkayaksnearme.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://rentkayaksnearme.com/fswg/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	50.62.149.29 HTTP/2 302 Found x-powered-by: PHP/7.4.30 location: https://www.deep-lab.com/2022/04/semrush-moz.html vary: Accept-Encoding content-encoding: br content-length: 64 content-type: text/html; charset=UTF-8 date: Sat, 02 Jul 2022 10:17:31 GMT server: Apache X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document, ASCII text, with no line terminators Size: 64 Md5: c58da2c2b0035b85945d9658e690cb94 Sha1: 481f53a1eb6a179d9d8748dc57eb493386c32bd1 Sha256: 36108b1ccc0f952f7984ee893cb9411a81e8c2ec6c982795923d4fb15176995f
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 02 Jul 2022 10:17:31 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: ccd471e21879c0bb72591571b7f9bf74 Sha1: d1ad3815366ca978acbf63d0f9deffecacd7bb3c Sha256: 0ae629c4bebc8d4c13e9cf0aa267b66f0870b39f2ace308dc7197fb425d1922d
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 02 Jul 2022 10:17:31 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: ccd471e21879c0bb72591571b7f9bf74 Sha1: d1ad3815366ca978acbf63d0f9deffecacd7bb3c Sha256: 0ae629c4bebc8d4c13e9cf0aa267b66f0870b39f2ace308dc7197fb425d1922d
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 1006 Cache-Control: 'max-age=158059' Date: Sat, 02 Jul 2022 10:17:31 GMT Last-Modified: Sat, 02 Jul 2022 10:00:45 GMT Server: ECS (ska/F6FE) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 1bbeee0af8ba2baaa7ba2cfd41d985fe Sha1: b8ebc12a31a06bb371e40a11190af4a51efa169d Sha256: 12f4813aabd9a8839077cfa09cf1115f357f7772d4544ecad4be03f1d13fee1c
POST /s/gts1d4/Sav4EOENy64 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 02 Jul 2022 10:17:32 GMT Cache-Control: public, max-age=14400 Server: scaffolding on HTTPServer2 Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 3ea9fb400874096c28121696f109d80f Sha1: c2329bddc536bc660ee0d4d46c31472aac96e776 Sha256: 1cf5b55f5d366f5134982cc609f69c1ed149cc94143720f61ad19d87aefe2daa
POST /s/gts1d4/Sav4EOENy64 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 02 Jul 2022 10:17:32 GMT Cache-Control: public, max-age=14400 Server: scaffolding on HTTPServer2 Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 3ea9fb400874096c28121696f109d80f Sha1: c2329bddc536bc660ee0d4d46c31472aac96e776 Sha256: 1cf5b55f5d366f5134982cc609f69c1ed149cc94143720f61ad19d87aefe2daa
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243$ 54.230.111.35 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Date: Sat, 02 Jul 2022 09:38:48 GMT Cache-Control: max-age=3600 Expires: Sat, 02 Jul 2022 10:29:01 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: WlIbA6NnzHmE3R6u3J2s-BKrmINAfqce_SyZlmT_-X5YLLxre1Hdlg== Age: 2324 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: A1qHnrnnnlDd84CSFNKcIQ== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	52.89.17.198 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: GgjDSegf1QGwOL/HqXAzgGlZ/Og= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638" Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9436 Expires: Sat, 02 Jul 2022 12:54:49 GMT Date: Sat, 02 Jul 2022 10:17:33 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 58ddda9bd3e53e01306c6a03b89b13c9 Sha1: 617798858ee1e2abf3267917c977cd743294db2e Sha256: ed6c6f73611fb56dfa41fd028e23f0bc0470d319e51b212b8078c2c0df8f4638
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638" Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9436 Expires: Sat, 02 Jul 2022 12:54:49 GMT Date: Sat, 02 Jul 2022 10:17:33 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 58ddda9bd3e53e01306c6a03b89b13c9 Sha1: 617798858ee1e2abf3267917c977cd743294db2e Sha256: ed6c6f73611fb56dfa41fd028e23f0bc0470d319e51b212b8078c2c0df8f4638
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638" Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9436 Expires: Sat, 02 Jul 2022 12:54:49 GMT Date: Sat, 02 Jul 2022 10:17:33 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 58ddda9bd3e53e01306c6a03b89b13c9 Sha1: 617798858ee1e2abf3267917c977cd743294db2e Sha256: ed6c6f73611fb56dfa41fd028e23f0bc0470d319e51b212b8078c2c0df8f4638
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "ED6C6F73611FB56DFA41FD028E23F0BC0470D319E51B212B8078C2C0DF8F4638" Last-Modified: Fri, 01 Jul 2022 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9436 Expires: Sat, 02 Jul 2022 12:54:49 GMT Date: Sat, 02 Jul 2022 10:17:33 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 58ddda9bd3e53e01306c6a03b89b13c9 Sha1: 617798858ee1e2abf3267917c977cd743294db2e Sha256: ed6c6f73611fb56dfa41fd028e23f0bc0470d319e51b212b8078c2c0df8f4638
GET /fswg/images/bg.png HTTP/1.1 Host: rentkayaksnearme.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://rentkayaksnearme.com/fswg/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	$Magic: PNG image data, 2049 x 1201, 8-bit/color RGBA, non-interlaced\012- data Size: 127924 Md5: 116aeb2b928bf013c35aeb22f124134d$ 50.62.149.29 HTTP/2 200 OK last-modified: Tue, 10 Aug 2021 21:14:22 GMT etag: "3562c67-1f3b4-5c93afc50e780" accept-ranges: bytes content-length: 127924 content-type: image/png date: Sat, 02 Jul 2022 10:17:32 GMT server: Apache X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 2049 x 1201, 8-bit/color RGBA, non-interlaced\012- data Size: 127924 Md5: 116aeb2b928bf013c35aeb22f124134d Sha1: 7fb42feae3977770cebddf92f2da2695e4003bce Sha256: b4bd7ddb3091012d6e263aea4479027125254cf1fdc98aed6a99807bb79a08ef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff52666ca-9cf5-46c2-96f1-bb6216284ea1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6720 Md5: 73bcaab53a06d64548bc4a49ca3d4a03$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 6720 x-amzn-requestid: f48f512e-4f19-4b7b-83bc-285d34ed3349 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Ua_XOE90IAMF2HQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62baac2e-2d113cf3404951d05385d9f1;Sampled=0 x-amzn-remapped-date: Tue, 28 Jun 2022 07:22:22 GMT x-amz-cf-pop: SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: j68fXePNT1IUwg2hPjAbBlyXhZXnQaM8fhGvyeyUjmj3X4xJ8nSkgQ== via: 1.1 3c974a460e97e56c6eb1e6a30797d9d6.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google date: Fri, 01 Jul 2022 11:43:17 GMT age: 81256 etag: "9351c584e318a6337c1acef4beebce39b08ff1a1" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6720 Md5: 73bcaab53a06d64548bc4a49ca3d4a03 Sha1: 9351c584e318a6337c1acef4beebce39b08ff1a1 Sha256: b54146b877b787c71685ec413f0ef9e3a30a931036d97dd1ce8fc160b19f8cd8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1edb2a2-bd4b-4101-b70d-9136a59ce340.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8828 Md5: 8760265218db4424cf9d0cda9cc7e7df$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 8828 x-amzn-requestid: f38dcd2a-5fde-4373-b296-082dabd98c9f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Um2B7GozIAMFdeA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bf6a0c-211025f83d38b6c16a260502;Sampled=0 x-amzn-remapped-date: Fri, 01 Jul 2022 21:41:32 GMT x-amz-cf-pop: SEA73-P2, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: 1CZOHWd6jBu1e7lXcuarhhdBDbT8K2KVQAVOwM61MG3rLCOg_DXt9A== via: 1.1 f62c9ca47e35df5c65764381977823a6.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google date: Fri, 01 Jul 2022 21:53:15 GMT age: 44658 etag: "6809a6b6843631c3f0a2cf2f51e805166deb90ee" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8828 Md5: 8760265218db4424cf9d0cda9cc7e7df Sha1: 6809a6b6843631c3f0a2cf2f51e805166deb90ee Sha256: 4e4399d233c3a721e2d4def6cddfca03b4e43d4122428a503e27aa7527b1cfff
GET /2022/04/semrush-moz.html HTTP/1.1 Host: www.deep-lab.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://rentkayaksnearme.com/ Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	142.250.74.83 HTTP/2 200 OK x-robots-tag: all,noodp content-type: text/html; charset=UTF-8 expires: Sat, 02 Jul 2022 10:17:32 GMT date: Sat, 02 Jul 2022 10:17:32 GMT cache-control: private, max-age=0 last-modified: Sat, 02 Jul 2022 08:14:20 GMT etag: W/"bbd81ddfbfd405007111c6f1bef0ca36bf591601717db0d5f8fbda3a4cc831b5" content-encoding: gzip x-content-type-options: nosniff x-xss-protection: 1; mode=block content-length: 64218 server: GSE X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 10834 Md5: 2ffd90791aed5e0035a67f3233fb4612 Sha1: 7872a54ccc9ec4a0e9a1415ae872a9595a8495dc Sha256: 15025eb767a6759a7043f729c9c9fb5b65db33de6f935f151c125627c1f37fb0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F780d0ba1-2e10-4515-b170-383b7d7649ba.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 4427 Md5: e81705e423a9840f81e570fc0dbe405c$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 4427 x-amzn-requestid: 239b2a1a-bac3-49ed-8a18-b8fa19115154 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Um1xQEQVIAMFjqg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bf69a1-410d3b8551ebda0e1167e8a5;Sampled=0 x-amzn-remapped-date: Fri, 01 Jul 2022 21:39:45 GMT x-amz-cf-pop: SEA73-P2, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: fj-SUquJcnZ8NHJRYev4g8Mq8q1oWx6YLvjCsfTzU5f4UyVl8vblDg== via: 1.1 34c44cb7892e57a3b6c51812bcf68ee4.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google date: Fri, 01 Jul 2022 21:53:14 GMT etag: "efd1eb8f098ce9fdecedb4ded72e78ba33f3a4f3" content-type: image/jpeg age: 44659 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 4427 Md5: e81705e423a9840f81e570fc0dbe405c Sha1: efd1eb8f098ce9fdecedb4ded72e78ba33f3a4f3 Sha256: 78c7221278bea7e4bfb60c9fd8de53f07291bb1add9fc7ca52c099d498fcbd46
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6854447-7e48-4069-85f2-193a583aa842.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9552 Md5: 06d90412311c5f961e6173769938a735$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 9552 x-amzn-requestid: 2ccd4490-49a0-4255-8902-c7d32ccec0f8 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UklGQF-fIAMFezg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62be8227-68adf7811dd561a35892cd77;Sampled=0 x-amzn-remapped-date: Fri, 01 Jul 2022 05:12:07 GMT x-amz-cf-pop: SEA73-P2, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: pjABXIYaUX7nZ0GbLuYV28QBUIvWhlIBttDiOQON_YmcmjTqC2ERgg== via: 1.1 95785220a566cd050f3ad80928463374.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google date: Sat, 02 Jul 2022 09:17:24 GMT age: 3609 etag: "f692c66a71b4450dac8ed2908d2c6af6b25dc903" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9552 Md5: 06d90412311c5f961e6173769938a735 Sha1: f692c66a71b4450dac8ed2908d2c6af6b25dc903 Sha256: 017ad6b57f063252fc719ed5a44bf7837bdd6cdc5c69b03dc1c89c5da0322cb3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb68b83e0-72c7-49aa-9626-3d36db21293e.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 11496 Md5: 524069fd1931d39f6c9f106be7c29e3c$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 11496 x-amzn-requestid: 7254cb45-1ef0-478c-9910-beca727c109f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Um1yaEYPoAMFa-Q= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bf69a8-53e04a3858a351eb5debddac;Sampled=0 x-amzn-remapped-date: Fri, 01 Jul 2022 21:39:52 GMT x-amz-cf-pop: SEA73-P2, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: sAkLQP7KAyNYnfEcZBBCmke_nFOGLjkMq0-jrVvfD4h_xx1GU-pxWA== via: 1.1 bd6f70221217681265382902c6157c76.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google date: Fri, 01 Jul 2022 21:53:11 GMT etag: "c69cccbe6d0394d4b40bc350462da9bf00064e61" content-type: image/jpeg age: 44662 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 11496 Md5: 524069fd1931d39f6c9f106be7c29e3c Sha1: c69cccbe6d0394d4b40bc350462da9bf00064e61 Sha256: ba7d5c6f33a49f80db9eec2634fcfc3fd5261bdf4932bce7bc70b54c02d6cc66