r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 507011ccb9124dcd57e84a90a0965cc4
1a6575d0ac979c7184490cc9836ac4812ad2afd1
01626c18e1e68507aa33ef7448dbc3311901ab6f29adc2f51d449409b0680dce
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01626C18E1E68507AA33EF7448DBC3311901AB6F29ADC2F51D449409B0680DCE"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2365
Expires: Wed, 08 Feb 2023 05:42:11 GMT
Date: Wed, 08 Feb 2023 05:02:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3698
Expires: Wed, 08 Feb 2023 06:04:24 GMT
Date: Wed, 08 Feb 2023 05:02:46 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 08 Feb 2023 04:34:12 GMT
content-type: application/json
age: 1714
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17594
Expires: Wed, 08 Feb 2023 09:56:00 GMT
Date: Wed, 08 Feb 2023 05:02:46 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 6ZCgb2rosA8zhCJxariscIFbMTlpXRfNYahxDqr4s5scaxx/L+NsHrdHLOWVJ9LgHy3aI2wGCsg=
x-amz-request-id: AKN8R7B5YQSJDYMP
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 08 Feb 2023 04:45:50 GMT
age: 1016
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 05:02:46 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ha3aihhdyysg9.xyz/
216.240.130.67200 OK 168 B IP 216.240.130.67:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b7949a2c2cec5d0fc76270710f132d4e
a51a1a70d14193182bc1cca339efbf805da63a34
0de73e0545467494dda68a11a3203376a2653991d9b4ec3d0376175f23802a21
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:46 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 168
Content-Type: text/html; charset=UTF-8
ha3aihhdyysg9.xyz/favicon.ico
216.240.130.67200 OK 168 B URL HTTP/1.1 ha3aihhdyysg9.xyz/favicon.ico
IP 216.240.130.67:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b7949a2c2cec5d0fc76270710f132d4e
a51a1a70d14193182bc1cca339efbf805da63a34
0de73e0545467494dda68a11a3203376a2653991d9b4ec3d0376175f23802a21
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ha3aihhdyysg9.xyz/
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:46 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 168
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Retry-After, Content-Length, Content-Type, ETag, Cache-Control, Alert, Pragma, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 08 Feb 2023 04:14:52 GMT
age: 2874
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6919
Expires: Wed, 08 Feb 2023 06:58:06 GMT
Date: Wed, 08 Feb 2023 05:02:47 GMT
Connection: keep-alive
push.services.mozilla.com/
54.187.106.193101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.106.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: b7x8ukp4y8XdQj4VgWWLJQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: wHSeeVdDLKUrmlXf2hoHpM/6qxs=
ha3aihhdyysg9.xyz/?type=really
216.240.130.67200 OK 24 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/?type=really
IP 216.240.130.67:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (347)
Hash f02e947f95382d046f3a07766ddf7ec1
5dfa8f47c1810336cce335529e9f88f0fbd59846
5512dd7f30981693e4734300e4d2e6a1702aeff68961581f2c00497d252a7093
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /?type=really HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ha3aihhdyysg9.xyz/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:47 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 24379
Content-Type: text/html; charset=utf-8
ha3aihhdyysg9.xyz/index_files/translator.css
216.240.130.67200 OK 4.9 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/translator.css
IP 216.240.130.67:0
File type ASCII text, with very long lines (22261), with no line terminators
Hash 19c6b2b20a5584488d4041981b4e6f82
4b265c5ba2e0e8a70f3a49e4423ba01a63ba25f8
3705d74bf957b74fd92efa1543d46a8837375ad3119607badc31ea1c55dfaeb2
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/translator.css HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:47 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:03:18 GMT
ETag: "56f5-5d1f71f78ab03-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4894
Content-Type: text/css
ha3aihhdyysg9.xyz/index_files/brandico2.css
216.240.130.67200 OK 1.3 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/brandico2.css
IP 216.240.130.67:0
File type ASCII text, with very long lines (4034), with no line terminators
Hash 2d5b0823104b8f865765ba5c8dd0d2bf
512cd1ca053c4be80561809b4f62dda0f571ffee
01992719d03d771be9057ec977afc40ae4540a95be7f52a37bd48cd36631ab59
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/brandico2.css HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:47 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:34 GMT
ETag: "fc2-5d1f71cdd9828-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1252
Content-Type: text/css
ha3aihhdyysg9.xyz/index_files/css1.css
216.240.130.67200 OK 601 B URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/css1.css
IP 216.240.130.67:0
Hash 1d587e78eeb8ea2a673c49410a14a75b
77aa18ac7b9f4f39e4c02d51518f83d2cc9e0db1
2e18413d1dcab0e9eaaee8eba36decffdc1a7953678451f865a5b812413e867f
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/css1.css HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:47 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:39 GMT
ETag: "11a0-5d1f71d1f06ab-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 601
Content-Type: text/css
ha3aihhdyysg9.xyz/index_files/1.css
216.240.130.67200 OK 658 B URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/1.css
IP 216.240.130.67:0
Hash 72f94674a030c48461080c36d07ed9e9
7a70624a35feefa5bc756defcf372fbbd5593027
953f52ecda5fbd1a7e7eba75f9df92d2b00a1f8b22349c3f86309fb999965750
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/1.css HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:47 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:24 GMT
ETag: "5e1-5d1f71c3ca7ac-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 658
Content-Type: text/css
ha3aihhdyysg9.xyz/index_files/index2.css
216.240.130.67200 OK 12 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/index2.css
IP 216.240.130.67:0
File type Unicode text, UTF-8 text, with very long lines (56606), with no line terminators
Hash a0cef36c36cd1e781f8992f07cf2a55e
57c2d72317f880aa45314cc4ba819fcbf99d1bcc
f87027a91345e384ff8d07e5f10f9294dd1d3f865bd7bd2dfeeafe6e4a2c2389
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/index2.css HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:47 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:44 GMT
ETag: "e637-5d1f71d6fa7ed-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11890
Content-Type: text/css
ha3aihhdyysg9.xyz/index_files/bootstrap.css
216.240.130.67200 OK 19 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/bootstrap.css
IP 216.240.130.67:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash f28a6caf2f9f0c4ad041a9816f540134
854076558365ce253d9714053fe176073714dda2
991b285f0615642d11309de84694630f93c09f179ad9d185bf44774702c908e6
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/bootstrap.css HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:47 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:34 GMT
ETag: "1bae3-5d1f71cd47c0d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 18563
Content-Type: text/css
ha3aihhdyysg9.xyz/index_files/ouibounce.css
216.240.130.67200 OK 774 B URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/ouibounce.css
IP 216.240.130.67:0
File type ASCII text, with very long lines (2646), with no line terminators
Hash e655d2c364c3868092c065ab5213596c
f6f695364d5702c0753515e4f1710963f33f36e1
edda419b0ca2a9559cb69e2755def3b87f025fb0f1b63695431f8e7b111fd43e
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/ouibounce.css HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:47 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:03:07 GMT
ETag: "a56-5d1f71ec70cde-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 774
Content-Type: text/css
ha3aihhdyysg9.xyz/index_files/jquery.eudm.all.css
216.240.130.67200 OK 92 B URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/jquery.eudm.all.css
IP 216.240.130.67:0
File type ASCII text, with no line terminators
Hash 67aeb755a8026fffb32b1c66ef22b610
4b9205ecfe7d1e2be18762ae33d84e9552097909
7ad9f5c36f026b9a477a2fc37d808bd29f615116c7a28f40b9c21ae5fe2ae713
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/jquery.eudm.all.css HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:48 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:46 GMT
ETag: "4a-5d1f71d94628f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 92
Content-Type: text/css
ha3aihhdyysg9.xyz/index_files/css2.css
216.240.130.67200 OK 692 B URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/css2.css
IP 216.240.130.67:0
Hash 515d3fd11c759625b9961c6488891428
b3b725a61771894f2a5e391c5c12c394d1525f8a
bd9566eb9f158d12494379d57510c89ee60afe90c505fb4ce1b7b6197351c2e1
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/css2.css HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:48 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:39 GMT
ETag: "1c48-5d1f71d2822c5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 692
Content-Type: text/css
ha3aihhdyysg9.xyz/index_files/jquery.glue.min.js.%E4%B8%8B%E8%BD%BD
216.240.130.67200 OK 1.3 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/jquery.glue.min.js.%E4%B8%8B%E8%BD%BD
IP 216.240.130.67:0
File type ASCII text, with very long lines (2813)
Hash c6b1d14e9a175af468549ee46b179218
adab1927c66e11c76976dc90a2729c86e1b7ec21
54b02f5af223b4f5648dbff7e466bbbfa53e30092316f3199a2004f8d21f171e
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /index_files/jquery.glue.min.js.%E4%B8%8B%E8%BD%BD HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:48 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:47 GMT
ETag: "b63-5d1f71d9d76d9-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1269
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 3f3962ef574ee0069c41f7cbcabd1ef3
c4b6aefa8563432c5e5901488c38ae7da3c83fd7
9518b917cc6f0b1724d687d6aac4d8c1851d46949eeb4926acdb26a84728fdc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 05:02:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 3f3962ef574ee0069c41f7cbcabd1ef3
c4b6aefa8563432c5e5901488c38ae7da3c83fd7
9518b917cc6f0b1724d687d6aac4d8c1851d46949eeb4926acdb26a84728fdc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 05:02:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ha3aihhdyysg9.xyz
Connection: keep-alive
Referer: http://ha3aihhdyysg9.xyz/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 21:48:03 GMT
expires: Fri, 02 Feb 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 458085
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15340, version 1.0\012- data
Hash 19b7a0adfdd4f808b53af7e2ce2ad4e5
81d5d4c7b5035ad10cce63cf7100295e0c51fdda
c912a9ce0c3122d4b2b29ad26bfe06b0390d1a5bdaa5d6128692c0befd1dfbbd
GET /s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ha3aihhdyysg9.xyz
Connection: keep-alive
Referer: http://ha3aihhdyysg9.xyz/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 Feb 2023 00:39:13 GMT
expires: Wed, 07 Feb 2024 00:39:13 GMT
cache-control: public, max-age=31536000
age: 102215
last-modified: Mon, 16 Oct 2017 17:33:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 3f3962ef574ee0069c41f7cbcabd1ef3
c4b6aefa8563432c5e5901488c38ae7da3c83fd7
9518b917cc6f0b1724d687d6aac4d8c1851d46949eeb4926acdb26a84728fdc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 05:02:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ha3aihhdyysg9.xyz/index_files/jquery.min.js.%E4%B8%8B%E8%BD%BD
216.240.130.67200 OK 30 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/jquery.min.js.%E4%B8%8B%E8%BD%BD
IP 216.240.130.67:0
File type ASCII text, with very long lines (32025)
Hash a65aef61540458fdab9584811195cf9e
7a4981522f51e9706af678567625f7a16abd6cb3
d5ad40d103977bcbf6de680ccefe3182b8aefc33558df0703167a89c516c41a7
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /index_files/jquery.min.js.%E4%B8%8B%E8%BD%BD HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:48 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:49 GMT
ETag: "1499c-5d1f71dbb0194-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 29556
Content-Type: application/javascript
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8225
Expires: Wed, 08 Feb 2023 07:19:53 GMT
Date: Wed, 08 Feb 2023 05:02:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8225
Expires: Wed, 08 Feb 2023 07:19:53 GMT
Date: Wed, 08 Feb 2023 05:02:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8225
Expires: Wed, 08 Feb 2023 07:19:53 GMT
Date: Wed, 08 Feb 2023 05:02:48 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3ed9aa0-a88e-4b92-a2bb-567735d813b6.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3ed9aa0-a88e-4b92-a2bb-567735d813b6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fbe359ce6fb136add75c8f3d3cc06330
e6584afcf39b6fad21eccbcce95c6645b8e1b3b8
29478bf1b8168dc457bb7d298448a78e1040bd3aa80cbf11cfa37475568590d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3ed9aa0-a88e-4b92-a2bb-567735d813b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8170
x-amzn-requestid: d1ddb47f-3472-4015-8d55-72f435671f03
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f5aSPHiroAMFpSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e070da-114975440d70915472cdba2f;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 03:15:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0w6JgtsKSRHLPJ3LyY6YUI8N7PS-gVlLuivQUq9jdyeYYm3STiJJIQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 04:34:33 GMT
age: 1695
etag: "e6584afcf39b6fad21eccbcce95c6645b8e1b3b8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbee0b552-d236-4fa2-b702-1571b09d3fd6.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbee0b552-d236-4fa2-b702-1571b09d3fd6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash db6e81972b8835dc48a0dae751ffde5f
826e2195cc52905cfed0bc4f01646290261113b6
720e6105b2ccc9cbc8fd005d53873ced5467a852c7a5041ce2ef96785c0d92f7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbee0b552-d236-4fa2-b702-1571b09d3fd6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6060
x-amzn-requestid: 80cbc454-e1b4-4e53-a3b6-3a5ac11920c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_PPQEPNIAMFkqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c594-4539ebb17f27d88a47100a82;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:41:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WvujLqUMXZ4VAF2OePAIOdk96p6-GwwVcWEGORS2NKZ3XxgGIZHAww==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:55:15 GMT
age: 25653
etag: "826e2195cc52905cfed0bc4f01646290261113b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4252883-1cf4-4e4a-98fa-fee2d1bd1a6c.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4252883-1cf4-4e4a-98fa-fee2d1bd1a6c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 298eca3ae092fd28108db52acaa59545
ee865a4919befec21c73f7a1cf0c2405c34743b7
d490b601b1dc9e89392b902b7b7376815c81019ef53ab06aa27ed563600bb1a3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4252883-1cf4-4e4a-98fa-fee2d1bd1a6c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13371
x-amzn-requestid: 2fd56339-7b32-4058-8eea-8565cae3037c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f2opoHjGoAMFsMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63df54a3-5b0bd42e1e21d7d65ac7c7f1;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 07:02:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: LrFMYSIZl786S-W1OGIiKDvgTNyEb7c5rlXsQIBMbAwah5JaBzJkCg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 10:47:01 GMT
age: 65747
etag: "ee865a4919befec21c73f7a1cf0c2405c34743b7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8122ba3b-f49a-49fa-acfb-88990087de42.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8122ba3b-f49a-49fa-acfb-88990087de42.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 25fb37d8b072e47aae74933481fb9418
b073d213a6a7939efed7ee5ef62a5548e00082bc
59a9c61013b3a4faab6f1c578f45bb87397d2f9e7975ae58e53e2c4e4a791da2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8122ba3b-f49a-49fa-acfb-88990087de42.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6177
x-amzn-requestid: 729ae67c-5468-42a6-ba16-2a6a55db001d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f-tUbE7EoAMFuOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e28f4f-7f1fa6e162899c495e44e643;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 17:50:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: xTJKf69wk7qWWhBYf-qO61jOY2jXIC4FNdt4Mxt2dLDmLm5U9OocVQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 18:24:36 GMT
etag: "b073d213a6a7939efed7ee5ef62a5548e00082bc"
content-type: image/jpeg
age: 38292
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a9c2a9eee923b84d4e06438a8b2acaff
520b122e3ce52220af153fee26bb7067283f9075
9ff4236fdcd05210a9c8bb48ea68179e142b1b05c8b19dd66282590dff69fa22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10058
x-amzn-requestid: 94374454-1e89-4c43-895b-0a90f39b851d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O5vEgcoAMFctg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c50a-0bf11cad4b0818c36188ba91;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qYXu_I4vL00EOopA1nQcxCTMKf4nObKFk9XQozhw6FezKsfTDem3Mw==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 22:06:35 GMT
etag: "520b122e3ce52220af153fee26bb7067283f9075"
content-type: image/jpeg
age: 24973
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8a3fa4f1ec82d501942f9db3de2cb7d
b91c2aea7f2fb26131c8929b254c5596a1bb25ff
9d246eeab8ba04c775a03fd960c8859934a0accb737e845e89aba40bc573fdaa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6342
x-amzn-requestid: b2b61a71-5326-4fc6-baba-7baad29cf7c5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OkbHfDIAMF5AQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c482-5cc4028d01d05305637af317;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:37:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: iIQAy6CQSvnvQ79UJ6ifJbs-0kEqUYe8OyCqPb2HSKxoDoLykOyaLg==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:52:28 GMT
age: 25820
etag: "b91c2aea7f2fb26131c8929b254c5596a1bb25ff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ha3aihhdyysg9.xyz/index_files/fonts/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
216.240.130.67200 OK 182 B URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/fonts/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
IP 216.240.130.67:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash db8afa4b6612eb6e06bea22cc7ed90ae
fe5d0864fff640afd6f1280130e0d9c05ebc0b56
2209bb8886fff013e1b26ebfe1ebade2eb409c70718d61fd20ebf377ed6630f0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /index_files/fonts/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2 HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://ha3aihhdyysg9.xyz/index_files/1.css
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:48 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Vary: Accept-Encoding
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ha3aihhdyysg9.xyz/index_files/3e0b70265ed238aea803a3b0bfaa3146.png
216.240.130.67200 OK 18 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/3e0b70265ed238aea803a3b0bfaa3146.png
IP 216.240.130.67:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x364, components 3\012- data
Hash a0750c4b21f8f98f07aa7ae09dc00ff3
201af9fc4fa719746ea7ac4744d7174663281e15
d6cb892e5830ffce5636b9d02e8e13cf5375c170f2dd7996d094daa956a43b5b
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/3e0b70265ed238aea803a3b0bfaa3146.png HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:48 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:26 GMT
ETag: "458f-5d1f71c5d91b6"
Accept-Ranges: bytes
Content-Length: 17807
Content-Type: image/png
ha3aihhdyysg9.xyz/index_files/star1.jpg
216.240.130.67200 OK 55 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/star1.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 640x360, components 3\012- data
Hash 91dd7192ea28d72de8659860897bb3fa
54d8bfb4e90d4ce3983614e42eda74b2b4d8e31c
a3f39de2b6963d059001f638e1788f5d9d261a084d11526ca42e5a170f95c9ae
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/star1.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:48 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:03:14 GMT
ETag: "d535-5d1f71f357374"
Accept-Ranges: bytes
Content-Length: 54581
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/slider_item_02.png
216.240.130.67200 OK 69 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/slider_item_02.png
IP 216.240.130.67:0
File type PNG image data, 465 x 364, 8-bit colormap, non-interlaced\012- data
Hash 83b6bd2ffead3d05bffbd98810be41c8
6e1771edfe9464cbe4f89ca0952caf2d2390cd44
f7baf8b5c46c145772e3ddf4eb95ba96118b395d2b71c25ad6b33b3223f44ad3
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/slider_item_02.png HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:48 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:03:13 GMT
ETag: "10cfd-5d1f71f29750c"
Accept-Ranges: bytes
Content-Length: 68861
Content-Type: image/png
ha3aihhdyysg9.xyz/index_files/star3.jpg
216.240.130.67200 OK 54 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/star3.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 750x427, components 3\012- data
Hash c85058d038abdb5b36ff6be694531c1e
aa39832d9b1d9ece4071b06b729a320c54b97cc5
181344033d503ade26bbcb0c28fc2ea69c9048ead2e90208ebd5c0055005a189
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/star3.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:48 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:03:17 GMT
ETag: "d29e-5d1f71f6618f6"
Accept-Ranges: bytes
Content-Length: 53918
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/fonts/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
216.240.130.67200 OK 182 B URL HTTP/1.1 ha3aihhdyysg9.xyz/fonts/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
IP 216.240.130.67:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash db8afa4b6612eb6e06bea22cc7ed90ae
fe5d0864fff640afd6f1280130e0d9c05ebc0b56
2209bb8886fff013e1b26ebfe1ebade2eb409c70718d61fd20ebf377ed6630f0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /fonts/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2 HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:48 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Vary: Accept-Encoding
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ha3aihhdyysg9.xyz/index_files/sharktankrights.jpg
216.240.130.67200 OK 154 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/sharktankrights.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1009x1324, components 3\012- data
Size 154 kB (153626 bytes)
Hash 4254ffb39f3f8da6a3e7bebcfa79cc42
ad11eedd9655ea961747efdfbbdb963dc2011506
468e48c6546c6dfe09e1b9220363d8ff002f16821e2463d11e015fb48ade5e36
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/sharktankrights.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:48 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:03:11 GMT
ETag: "2581a-5d1f71f04935a"
Accept-Ranges: bytes
Content-Length: 153626
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/checkmark.png
216.240.130.67200 OK 341 B URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/checkmark.png
IP 216.240.130.67:0
File type PNG image data, 30 x 29, 8-bit colormap, non-interlaced\012- data
Hash b2ed3542be33de58cbefded284f9f143
fa954b4cd2d0c8f055e6f83a0b11c581c07f02e8
4c2e9da4a343e1deb9ee9949a7612d4ca6c505ef7cbc88b6574e099446d3e0a1
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/checkmark.png HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:48 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:38 GMT
ETag: "155-5d1f71d15e2c1"
Accept-Ranges: bytes
Content-Length: 341
Content-Type: image/png
ha3aihhdyysg9.xyz/index_files/foxnews_logo.jpg
216.240.130.67200 OK 18 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/foxnews_logo.jpg
IP 216.240.130.67:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 150x150, components 3\012- data
Hash 93e57dfb143767123f5893175577b931
9eecefdcd37fe126e4b0da708f8ad014d59273c5
3d326f5f0333e1dce6b335c006ef1f89d95e588c2a867f2b2de3086e71da0fff
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/foxnews_logo.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:48 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:41 GMT
ETag: "4725-5d1f71d3a820a"
Accept-Ranges: bytes
Content-Length: 18213
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/Apple%20Keto%20Gummies.png
216.240.130.67200 OK 7.9 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/Apple%20Keto%20Gummies.png
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 116x236, components 3\012- data
Hash 1af915f9957d54587916e3e3718a84ab
0ddaa750f13247fde4acbfa993ff220e91d9ab65
546d40ac2be23d41e14e2802426d2b7970023b6074758081316ef50254ef0b1e
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/Apple%20Keto%20Gummies.png HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:49 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Sat, 23 Apr 2022 10:06:56 GMT
ETag: "1ebd-5dd4f80c6b916"
Accept-Ranges: bytes
Content-Length: 7869
Content-Type: image/png
ha3aihhdyysg9.xyz/index_files/acdd1f53fbb4d5eb6e35ea8c9b70e2c7.png
216.240.130.67200 OK 727 B URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/acdd1f53fbb4d5eb6e35ea8c9b70e2c7.png
IP 216.240.130.67:0
File type PNG image data, 229 x 43, 8-bit colormap, non-interlaced\012- data
Hash c4c4315c407eb5bbdcaa53f8b741e96a
65bc442f4660b0bb24c69b8010d5c555fe91443b
ff44b496c576fb6db19cb43e23bca53a208815df1a2108bc849165c9faa52ef1
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/acdd1f53fbb4d5eb6e35ea8c9b70e2c7.png HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:49 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:29 GMT
ETag: "2d7-5d1f71c8d6c17"
Accept-Ranges: bytes
Content-Length: 727
Content-Type: image/png
ha3aihhdyysg9.xyz/index_files/b886b753f875ef6414718d92d6ad8944.png
216.240.130.67200 OK 18 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/b886b753f875ef6414718d92d6ad8944.png
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x302, components 3\012- data
Hash 6913777b403c18fb994b1d0e85428cbe
10d4332d28d6eec36166d9d91313aa933514bac7
95bc5a11ed8227fabd0688c7dedddaa4c56326ca9dd70d890d9cf6d172649ab3
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/b886b753f875ef6414718d92d6ad8944.png HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:49 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:33 GMT
ETag: "479a-5d1f71cc4d41e"
Accept-Ranges: bytes
Content-Length: 18330
Content-Type: image/png
ha3aihhdyysg9.xyz/index_files/weight5.jpg
216.240.130.67200 OK 60 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/weight5.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 546x529, components 3\012- data
Hash bd280bc55212a221bce4f69122f5cdd1
ee32f4eeb12b3a248c17eb830011f871afc6259b
7a6944c5038342d8c57787c9d7a4ec9499787fad2dab54bfeb1ba47558262737
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/weight5.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:49 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:03:22 GMT
ETag: "eb50-5d1f71fae8497"
Accept-Ranges: bytes
Content-Length: 60240
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/checkmark-green-sm.png
216.240.130.67200 OK 565 B URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/checkmark-green-sm.png
IP 216.240.130.67:0
File type PNG image data, 18 x 20, 8-bit colormap, non-interlaced\012- data
Hash 594e59274f5d8996c66f31b2dfb2c6af
8fd90d3eea727bcc114a55811af1b3c8289e4933
1fc380ec18b43bfdc59b9a02407cb06c7c27e37d850527c6184d408fe4d53779
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/checkmark-green-sm.png HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:49 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:37 GMT
ETag: "235-5d1f71d029532"
Accept-Ranges: bytes
Content-Length: 565
Content-Type: image/png
ha3aihhdyysg9.xyz/index_files/offer.jpg
216.240.130.67200 OK 6.7 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/offer.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 980x68, components 3\012- data
Hash 198beed51daa0639b7cd1505959cf3b6
5cb1484f0852f33dd6913cfc4eafbfc827494c16
efe9077f8a49480164e5bd876c6a6d31f8574e7d61a9e1c72e30d784f9c22d15
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/offer.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:49 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:03:06 GMT
ETag: "1a4a-5d1f71ebdc5cc"
Accept-Ranges: bytes
Content-Length: 6730
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/weight6.jpg
216.240.130.67200 OK 85 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/weight6.jpg
IP 216.240.130.67:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 600x338, components 3\012- data
Hash 857c9df9df2426f1edf1d4a5cd2fc6df
46de38d8e7bbcf9a8012216fb7669e317a9777d2
195e676da128efbe36623ea0612419ea72a41e9aca3a0b5d08ccf2bfd0f20f2f
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/weight6.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:49 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:03:23 GMT
ETag: "14d51-5d1f71fbe289f"
Accept-Ranges: bytes
Content-Length: 85329
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/trust-stack-compressed.png
216.240.130.67200 OK 16 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/trust-stack-compressed.png
IP 216.240.130.67:0
File type PNG image data, 654 x 177, 8-bit colormap, non-interlaced\012- data
Hash c92ada4b631a3c91eea8e6b162c2739d
9577de4e56f4584b247ad5e7c6127baf63c5f774
f5e072d1cd1ebc4e50ffcb10df611c55386b3ef0aa0cad6d5608c8afede274a5
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/trust-stack-compressed.png HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:49 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:03:19 GMT
ETag: "4093-5d1f71f81f5fe"
Accept-Ranges: bytes
Content-Length: 16531
Content-Type: image/png
ha3aihhdyysg9.xyz/index_files/weight7.jpg
216.240.130.67200 OK 52 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/weight7.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 575x584, components 3\012- data
Hash e3993fb093aae3259e2d19facde628b5
91fee0443b374242e3c17d5844e774743504a2a0
3dc6827ea13c59e9b3bb74c5b30072db87701db41349dc89b9135920514b60f3
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/weight7.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:49 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:03:24 GMT
ETag: "cc46-5d1f71fd4604b"
Accept-Ranges: bytes
Content-Length: 52294
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/lewis.jpg
216.240.130.67200 OK 1.2 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/lewis.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash 4a5ada16efb6ca2566921dadb53455dc
3bb0366b2353f3c5ce3c826bce8affd5f2a16238
fbe64066bf43a2cc114a2062ff29e7fd30a76d8275bfbc8434d19d50f08a8e1b
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/lewis.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:49 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:03:03 GMT
ETag: "485-5d1f71e9369b7"
Accept-Ranges: bytes
Content-Length: 1157
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/jenni.jpg
216.240.130.67200 OK 1.4 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/jenni.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash 97a085651bec9943ec43c7d1d59563ce
960ddd19b6b51a519c9f22c00db38b8cb3fbd50e
e13b56c3f3dab952453babb174a0541ffe7fd3bb0ceadda4055c1ee89cf68295
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/jenni.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:49 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:45 GMT
ETag: "572-5d1f71d81fb7a"
Accept-Ranges: bytes
Content-Length: 1394
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/tanya.jpg
216.240.130.67200 OK 1.5 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/tanya.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash f3598a0ceb5f51df66f476f21f743e4a
bb42c7b2fa433d826f8ee57393df86397b68895e
3a703134593c6be4aed555cdb779f3001b35d391e49972f70a5c14674ca73d45
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/tanya.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:49 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:03:18 GMT
ETag: "5cf-5d1f71f6f7779"
Accept-Ranges: bytes
Content-Length: 1487
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/cash.jpg
216.240.130.67200 OK 1.2 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/cash.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash 0042302a010aba26e581d6f373f5cd35
476e1059b9fc4dcb35c04c0c41d065e17ee9ab10
ebb601622000c9cf383e16439209f01a17fda48b30d81da9a023b1bfb5ddf748
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/cash.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:49 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:36 GMT
ETag: "49d-5d1f71cf05145"
Accept-Ranges: bytes
Content-Length: 1181
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/katy.jpg
216.240.130.67200 OK 1.3 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/katy.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash 77c97976622d27891ebaad8b54e07ea9
d8388033de64fff570efdd98fceeed9857569ff5
2566a42853f919244a4bd0badb554ad3abbd26049c8479611974a6f6f2d505b0
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/katy.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:50 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:50 GMT
ETag: "51f-5d1f71dcd4199"
Accept-Ranges: bytes
Content-Length: 1311
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/julie.jpg
216.240.130.67200 OK 1.3 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/julie.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash 1ab1432f5e6c6b13723db0d912498293
b64ee02023f2191b1d588c6125bc206aae0f4cd8
47ca2fc16c82216f667ade14f8d35d515d9f38a2e442133115e7eeb722d4b7a4
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/julie.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:50 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:50 GMT
ETag: "508-5d1f71dc40e0e"
Accept-Ranges: bytes
Content-Length: 1288
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/amanda.jpg
216.240.130.67200 OK 1.1 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/amanda.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash 90bcad603f20528cb88f63c43e26c323
6b122730d82de1fe40e8d6f0e303582f2311686e
25847cb42aa918d70fbcab29c9879d49a64cdab57f0e064e287964b81fff0d1d
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/amanda.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:50 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:31 GMT
ETag: "47a-5d1f71ca8e776"
Accept-Ranges: bytes
Content-Length: 1146
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/kirs.jpg
216.240.130.67200 OK 1.0 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/kirs.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash 8a30b438af748ebcf7dd78fce163b1f3
7295e07ac28caa1b56c8be150457b1b46e9bb7b6
cd913e34dc17856f85f523cce7bf488fdaffd0bde930e78e99f96e64b95c9397
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/kirs.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:50 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:03:02 GMT
ETag: "3f3-5d1f71e8129b2"
Accept-Ranges: bytes
Content-Length: 1011
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/sarah.jpg
216.240.130.67200 OK 1.6 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/sarah.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 42fb30d4000ab774f33cd729e5ab5f51
6a1e589d455a087743ad619735ad7817fbb11351
4136b6d4f52d67e12d99af5c4a6468bb60194b95c245e22217816a778da7c374
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/sarah.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:50 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:03:08 GMT
ETag: "654-5d1f71ed95c83"
Accept-Ranges: bytes
Content-Length: 1620
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/celia.jpg
216.240.130.67200 OK 1.3 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/celia.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash 4cb81df0b4d60a418d833d88d41335df
055ae66fd0b75924bcd4c02de484c88cad2dc5ec
4b9b987e923d9a240a5cbe2211b4a3e084830b716c2633563d2745950a21583a
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/celia.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:50 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:36 GMT
ETag: "537-5d1f71cf97918"
Accept-Ranges: bytes
Content-Length: 1335
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/alice.jpg
216.240.130.67200 OK 1.3 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/alice.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash 69458c2daa90baeb2107ff30f506f2c9
bb3d8b569cb3da72065e867d6c292862ebabe8af
dbab7cee9ebaa05e319573083d0b3d5a1c00e632a7a9b1dbca3f3113f6d7f18d
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/alice.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:50 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:30 GMT
ETag: "535-5d1f71c9fbbbb"
Accept-Ranges: bytes
Content-Length: 1333
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/mark.jpg
216.240.130.67200 OK 1.6 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/mark.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 7e19038766a24c3609ac8b32e2ae9738
05ca9a521457fbbee556b9b0eebc773dc33500fd
93935c7a292dbadcc7a5264b95fb5e60df48ae3ba4470d4438fad4adc83a89a3
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/mark.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:50 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:03:05 GMT
ETag: "617-5d1f71eab8d97"
Accept-Ranges: bytes
Content-Length: 1559
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/alanna.jpg
216.240.130.67200 OK 1.1 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/alanna.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash 25d318bf7e68307210dc1d96aa32fced
49be7a101740dfad2625e78a456ec4221555c948
6fe158816768c7152ebe26cd934f2651667277acb8042edbfbbb7bbf1122633f
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/alanna.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:50 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:30 GMT
ETag: "468-5d1f71c96a771"
Accept-Ranges: bytes
Content-Length: 1128
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/ashley.jpg
216.240.130.67200 OK 1.3 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/ashley.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash f04f048e7ad662739de5314001bffd6e
ee56e63f88293a96250117e8a1f04a0eb00a372b
2b506dd0092eb05030cd96fdfe17ec08d8ffefda56d901a7b6e8e8c524c2421d
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/ashley.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:50 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:32 GMT
ETag: "524-5d1f71cb22aa0"
Accept-Ranges: bytes
Content-Length: 1316
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/hick.jpg
216.240.130.67200 OK 1.3 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/hick.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash f973d3f6d3f100c70f7087501bfd7785
020b5096a56a1da4eed1043d6ab9ec81b1edd5a3
8d36ca5fc3cf03ec2326c3ea161104fa1a1e8962479ca1b7c3a76d7eabe10801
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/hick.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:50 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:42 GMT
ETag: "505-5d1f71d4ce537"
Accept-Ranges: bytes
Content-Length: 1285
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/brit.jpg
216.240.130.67200 OK 1.2 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/brit.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash b8b5ac885aaca7b97d951776440afd27
0b219d0c46174e14a7d639d79ef55a705738ce99
6f3f46b42e5aa60387130722b47956e65fee907c863458ddd7aea11dae559245
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/brit.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:50 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:35 GMT
ETag: "4dc-5d1f71ce73143"
Accept-Ranges: bytes
Content-Length: 1244
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/shel.jpg
216.240.130.67200 OK 1.4 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/shel.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 1bbb491caca3a400969b5ff48f17a59a
c375a950e4d97464d4c049a286ee488629568391
c965631bc5e7f587084e050f02fef0d30c1c99967e0c4e9ad0e2bb97a683eefb
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/shel.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:50 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:03:11 GMT
ETag: "58a-5d1f71f11977c"
Accept-Ranges: bytes
Content-Length: 1418
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/jenna.jpg
216.240.130.67200 OK 1.1 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/jenna.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash 0585e674a5efec18e38b74dff8ad1615
ecc8448aac4cd81f49b0e1bd587c64167cb25d62
62cf6452100afc027b5d9a9d45c50cf8b0f25fcb260be4999c4671dcfbce67ac
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/jenna.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:50 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:45 GMT
ETag: "441-5d1f71d78d78f"
Accept-Ranges: bytes
Content-Length: 1089
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/jill.jpg
216.240.130.67200 OK 1.3 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/jill.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash 6ae9e416554767f3672280972fd7a1e0
73f2e3288ce416d6556b37220eae85aae1d358f1
8b33f95fe6abb06af758dc3d2e1a3f3f08b6448bf041f1d83804b2205df696a4
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/jill.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:50 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:46 GMT
ETag: "4f7-5d1f71d8b36d4"
Accept-Ranges: bytes
Content-Length: 1271
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/molly.jpg
216.240.130.67200 OK 1.4 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/molly.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash ad78e4ba0934968e21f39372996b037e
434740ce216462daa7372221e1f95f78dea193ca
dbefe6e580a9c223bb583e23d00444a835031721dcd2f630ec779775d97ae489
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/molly.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:50 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:03:05 GMT
ETag: "55f-5d1f71eb4a1e1"
Accept-Ranges: bytes
Content-Length: 1375
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/laura.jpg
216.240.130.67200 OK 1.4 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/laura.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash 83dba6e60a12a1e9cf5aa3ee793fea95
f5518f164d98244ef60563a3c73d9126346b2601
7f4e8d930782b051f5d11f5ac4666dbacd118c3810eb0795df5c17822515bc44
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/laura.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:50 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:03:03 GMT
ETag: "55a-5d1f71e8a5955"
Accept-Ranges: bytes
Content-Length: 1370
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/sara.jpg
216.240.130.67200 OK 1.6 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/sara.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash f64d399a586718a98877706ef542000f
f2da15e636e276ab97d20726764a38018b2b64eb
43ab0cb785c075227f30e91d46b3630e631c94c87417d1d99fde85acd224b9e8
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/sara.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:50 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:03:07 GMT
ETag: "61e-5d1f71ed04839"
Accept-Ranges: bytes
Content-Length: 1566
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/silver.jpg
216.240.130.67200 OK 1.4 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/silver.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash c5a8c776270cde331e9cae5b4fee510e
22891dd2d749d2ece45927e90cab2c93f387c1f6
f26acf6bf5cecca62875294823b12afb434c7f835694b1b5d241c204a3256b13
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/silver.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:51 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:03:12 GMT
ETag: "5a8-5d1f71f1abf4f"
Accept-Ranges: bytes
Content-Length: 1448
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/got.jpg
216.240.130.67200 OK 1.2 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/got.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash 236dcf1e34b75bc4cf99df639e8b96fe
59aa697c98ccd7c4a5af10606e77d257ef0ca6df
f53880031717533c60413e2b1288ba810ce09f97927039639e256656a6265e6e
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/got.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:51 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:41 GMT
ETag: "4b8-5d1f71d43adc5"
Accept-Ranges: bytes
Content-Length: 1208
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/find.png
216.240.130.67200 OK 315 B URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/find.png
IP 216.240.130.67:0
File type PNG image data, 40 x 40, 8-bit colormap, non-interlaced\012- data
Hash cf1a2b60ac1f4c6b41d40a455c7b934e
50319a1b920f7433434ff4891fb93eae16bdb201
a9adc3eacb0f5c0c30b1a616c1e9867a8b98fe8339bbc08c0344430fdd3b479c
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/find.png HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:51 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:40 GMT
ETag: "13b-5d1f71d3146b0"
Accept-Ranges: bytes
Content-Length: 315
Content-Type: image/png
ha3aihhdyysg9.xyz/index_files/asseenin.jpg
216.240.130.67200 OK 7.8 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/asseenin.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 750x123, components 3\012- data
Hash fa46b5df5244724eafda1f269d061f54
38f201a5d377c350c727345b101bb698c458918f
6252dc8e87b5147f1f961bee4a041825233ab2abbced841e0ffd7396a6098d29
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/asseenin.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:51 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:32 GMT
ETag: "1e9d-5d1f71cbb7d6b"
Accept-Ranges: bytes
Content-Length: 7837
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/50lbs.jpg
216.240.130.67200 OK 183 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/50lbs.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1116x576, components 3\012- data
Size 183 kB (183336 bytes)
Hash 250a020588365692dd6096c4a88713f3
e7725f21c921f1bfbe234624c8e8737d7bf5f765
0979f72044ebb365ec062c347769939fdd626cda3e5531dce0f4f24e979c0477
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/50lbs.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:51 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:29 GMT
ETag: "2cc28-5d1f71c844444"
Accept-Ranges: bytes
Content-Length: 183336
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/lift1.png
216.240.130.67200 OK 84 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/lift1.png
IP 216.240.130.67:0
File type PNG image data, 622 x 259, 8-bit colormap, non-interlaced\012- data
Hash 67685570066db1144d048e1990056bfe
4018fad9f36696aaf580d57e8626a007d897559f
5dcc1a8b70e7fccb7982c1fffb08b4ed416355453d1310d4d051311cef42a661
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/lift1.png HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:51 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:03:04 GMT
ETag: "14865-5d1f71ea2717d"
Accept-Ranges: bytes
Content-Length: 84069
Content-Type: image/png
ha3aihhdyysg9.xyz/index_files/4a5576a14732c71f6b4445c55ec2522b.png
216.240.130.67200 OK 129 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/4a5576a14732c71f6b4445c55ec2522b.png
IP 216.240.130.67:0
File type PNG image data, 2149 x 590, 8-bit colormap, non-interlaced\012- data
Size 129 kB (129121 bytes)
Hash e981ea3ecc8dacbe1a66feb46dd785af
ab7ed2f9ba5bffd89263ba0d7ab97c320aaf1087
3052114d089960d8705122da1f1aeff874080bd09d873a2418fe881df2358521
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/4a5576a14732c71f6b4445c55ec2522b.png HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:51 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:27 GMT
ETag: "1f861-5d1f71c6f6842"
Accept-Ranges: bytes
Content-Length: 129121
Content-Type: image/png
ha3aihhdyysg9.xyz/index_files/2.jpg
216.240.130.67200 OK 142 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/2.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 750x325, components 3\012- data
Size 142 kB (141523 bytes)
Hash 1f4bd1a59b6389a09fe8f1a262c37256
e6182bd9bfddfbf0269d1533c8e46a8fed364cc9
5fe330bd835336742ee0e9f9736d3baf3d2ec57110c2dbfef311a0ae0fbe7ada
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/2.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:51 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:02:25 GMT
ETag: "228d3-5d1f71c5469e4"
Accept-Ranges: bytes
Content-Length: 141523
Content-Type: image/jpeg
ha3aihhdyysg9.xyz/index_files/star2.jpg
216.240.130.67200 OK 124 kB URL HTTP/1.1 ha3aihhdyysg9.xyz/index_files/star2.jpg
IP 216.240.130.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 768x587, components 3\012- data
Size 124 kB (123473 bytes)
Hash 955417defbc0fc1717d94e909743ac73
725ef7dc5ac0fa13afb879612ac5d4aeb3a02b09
82bd0a1051d2ea5fd8b92480e16d2e25225b84741ab4077e588cad6fc1a0528c
Analyzer Verdict Alert quad9 Sinkholed
GET /index_files/star2.jpg HTTP/1.1
Host: ha3aihhdyysg9.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 05:02:51 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, close
Last-Modified: Tue, 30 Nov 2021 01:03:16 GMT
ETag: "1e251-5d1f71f59dc0d"
Accept-Ranges: bytes
Content-Length: 123473
Content-Type: image/jpeg
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf4a5986-35e6-4c6b-9dba-c981908d9ec1.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf4a5986-35e6-4c6b-9dba-c981908d9ec1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 726928e5de19ef978faebbe933c34008
bdaba3ed0c7efb65de88af96063d830683c8499b
c6d208fcee052da80de1bf2dcccbbc48853511b8888c4777799ee676abba51b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf4a5986-35e6-4c6b-9dba-c981908d9ec1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8644
x-amzn-requestid: d6d71f42-f887-4ad0-a2b7-9073d3857b03
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OjRHBFoAMF4_Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c47b-57490f255d8d30a561fdcd3a;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:36:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qfHMhMAdnYcOa0Xm23enTGXj4CQC-QFHV50Pq6QQdvM5YcIgUZVPRQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:54:36 GMT
etag: "bdaba3ed0c7efb65de88af96063d830683c8499b"
content-type: image/jpeg
age: 25699
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2