r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 8997fa58a7262e8fd559d64b40511a1b
0aa1c4365c28f45e4d7a8a234fbcf51cd009e083
1580d1145f125c765e40e5983cb4bb4e2424010d2920a25ea7da992485da0dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1580D1145F125C765E40E5983CB4BB4E2424010D2920A25EA7DA992485DA0DEA"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15257
Expires: Mon, 23 Jan 2023 12:17:36 GMT
Date: Mon, 23 Jan 2023 08:03:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 0be6cec5607bb65c06dbadd33456aec1
9d13129e936eb5fc82e403931884cdc8c6e6ab92
cb028034340b709ece65e45e8fc1a26a64dd85926beaa542f308d3f1d5ee2c84
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CB028034340B709ECE65E45E8FC1A26A64DD85926BEAA542F308D3F1D5EE2C84"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11498
Expires: Mon, 23 Jan 2023 11:14:57 GMT
Date: Mon, 23 Jan 2023 08:03:19 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 23 Jan 2023 07:34:59 GMT
content-type: application/json
age: 1700
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 17094b856fde02b2c8c2d3845ad325cf
26dc3f2ebf81faf5ab96eb75ffcbead6085528b8
6547376c41dcaa352cc4e747291916902bcddc0032b750bd84c5e3b2fe6f7d16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6547376C41DCAA352CC4E747291916902BCDDC0032B750BD84C5E3B2FE6F7D16"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4482
Expires: Mon, 23 Jan 2023 09:18:01 GMT
Date: Mon, 23 Jan 2023 08:03:19 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: q3IBi9Djgvqk7lx+dkSq2HcNtcMAPpzM+fDavU4Hz9643jEsTBm3EYTUYMbkB7Mvrk5kFC4KjSs=
x-amz-request-id: 9BTN0RCFCG1739NC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 23 Jan 2023 07:47:38 GMT
age: 941
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:19 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 3f0a262c2cb4f0dc1a95d2d074727ad5
651daf64c0aebbc0dadf98aafa030cb86f8f37e3
0933d8f271a1d69e8566e2b3dbffb3ae814d6839fa187bd75ff9a6712cd06c6c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0933D8F271A1D69E8566E2B3DBFFB3AE814D6839FA187BD75FF9A6712CD06C6C"
Last-Modified: Sun, 22 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 23 Jan 2023 14:03:19 GMT
Date: Mon, 23 Jan 2023 08:03:19 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 23 Jan 2023 07:17:30 GMT
age: 2749
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c74880fa99032b5c3831c179d702419
0020b368309735c94d8053d3781a7efb7283cfc5
437e2d4e2bbfb33b0ff696172378ce55a0a5ed005a1b8c4005eab4a6995a3042
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5908
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 08:03:20 GMT
Last-Modified: Mon, 23 Jan 2023 06:24:52 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.213.114.144101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.213.114.144:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: m+n6jHfKNqUEDQSdx1GB8g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: vETGt8PxjWFK1lo9kijcXQJSKBw=
ocsp.pki.goog/s/gts1d4/6Qu8bfAF_ZA
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/6Qu8bfAF_ZA
IP 142.250.74.131:0
Hash c49465221c5e01bd8eb789ba105c6f18
9cbda98b8adc3d9a4f063f29c703d2d6656de9f8
ba448b84b91888f0594465474a63a33e09f1b507eb3745c41965103973f9e041
POST /s/gts1d4/6Qu8bfAF_ZA HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 08:03:20 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kind-babbage.34-134-130-193.plesk.page/number_files/brand_logo.svg
34.134.130.193200 OK 3.3 kB URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/brand_logo.svg
IP 34.134.130.193:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3301), with no line terminators
Hash 61d6d4c84e4a5444ebbb6e18d143758e
1ac1495935ebdd35f7679596582aa6645db221dd
9d5e3a32e8cf0fb849eac2c3c0cad2a5c6a49f17657fff03eafc158cb19135f9
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/brand_logo.svg HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: image/svg+xml
content-length: 3301
last-modified: Sun, 22 Jan 2023 00:24:31 GMT
etag: "63cc823f-ce5"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/js
34.134.130.193200 OK 220 kB URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/js
IP 34.134.130.193:0
File type ASCII text, with very long lines (19574)
Size 220 kB (219905 bytes)
Hash dec5ca9cff1fa0b68092d3672104cca4
456d82087c0f5be6f882c24fd4671a79d7bd9e59
05c8ce383d32632f605f02789b39223286df84a373400ba5d32a802c661e510e
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/octet-stream
content-length: 219905
last-modified: Sun, 22 Jan 2023 00:24:26 GMT
etag: "63cc823a-35b01"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/wisetag
34.134.130.193200 OK 376 kB URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/wisetag
IP 34.134.130.193:0
File type ASCII text, with very long lines (44019)
Size 376 kB (376370 bytes)
Hash 08e78b64ecfae7fc80f45bee0623493c
f6ef0b9339a839bab5a59eef323d227974fa03cb
fbdf0b3b2632813c9573cb894c18299a4943274d1cf577b6905d4690049e0fa8
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/wisetag HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/octet-stream
content-length: 376370
last-modified: Sun, 22 Jan 2023 00:24:20 GMT
etag: "63cc8234-5be32"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/static-assets/app/_next/static/media/TW-Averta-Regular.efb4ba0c.woff2
34.134.130.193404 Not Found 808 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/static-assets/app/_next/static/media/TW-Averta-Regular.efb4ba0c.woff2
IP 34.134.130.193:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a943672a32297727bab01c3e76977550
3a667c4b7a457ef6c586cc581d533c128737bf53
b9347f234dc3c8d56e015e86d88a1400415db8f7a5ad91f02b6a2323c10a4187
Analyzer Verdict Alert openphish TransferWise
GET /static-assets/app/_next/static/media/TW-Averta-Regular.efb4ba0c.woff2 HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number_files/598878faba7ec6cf.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: text/html
content-length: 808
last-modified: Sun, 22 Jan 2023 00:23:08 GMT
etag: "328-5f2cf497d3766"
accept-ranges: bytes
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/static-assets/app/_next/static/media/TW-Averta-Semibold.04ae97a4.woff2
34.134.130.193404 Not Found 808 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/static-assets/app/_next/static/media/TW-Averta-Semibold.04ae97a4.woff2
IP 34.134.130.193:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a943672a32297727bab01c3e76977550
3a667c4b7a457ef6c586cc581d533c128737bf53
b9347f234dc3c8d56e015e86d88a1400415db8f7a5ad91f02b6a2323c10a4187
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /static-assets/app/_next/static/media/TW-Averta-Semibold.04ae97a4.woff2 HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number_files/598878faba7ec6cf.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: text/html
content-length: 808
last-modified: Sun, 22 Jan 2023 00:23:08 GMT
etag: "328-5f2cf497d3766"
accept-ranges: bytes
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/static-assets/app/_next/static/media/TW-Averta-Bold.7762960f.woff2
34.134.130.193404 Not Found 808 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/static-assets/app/_next/static/media/TW-Averta-Bold.7762960f.woff2
IP 34.134.130.193:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a943672a32297727bab01c3e76977550
3a667c4b7a457ef6c586cc581d533c128737bf53
b9347f234dc3c8d56e015e86d88a1400415db8f7a5ad91f02b6a2323c10a4187
Analyzer Verdict Alert openphish TransferWise
GET /static-assets/app/_next/static/media/TW-Averta-Bold.7762960f.woff2 HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number_files/598878faba7ec6cf.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: text/html
content-length: 808
last-modified: Sun, 22 Jan 2023 00:23:08 GMT
etag: "328-5f2cf497d3766"
accept-ranges: bytes
X-Firefox-Spdy: h2
wise.com/public-resources/assets/icons/apple_touch_icon.png
104.18.16.28200 OK 676 B URL HTTP/2 wise.com/public-resources/assets/icons/apple_touch_icon.png
IP 104.18.16.28:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash db4ed5d44389311bcae028bd9668c30b
43c20a6244f31d1cfc707eeafb69914af331fec5
cc79c228c5fa7f672f7c41ef29fa647731028a2c0c89896946a607e983c4f46e
GET /public-resources/assets/icons/apple_touch_icon.png HTTP/1.1
Host: wise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 23 Jan 2023 08:03:21 GMT
content-type: image/webp
content-length: 676
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=813
content-disposition: inline; filename="apple_touch_icon.webp"
vary: Accept
x-content-type-options: nosniff
cache-control: public,max-age=86400,s-maxage=3600,stale-while-revalidate=604800,stale-if-error=604800
etag: "bd5ab398a672c3d2d487286ed128cd22"
last-modified: Thu, 12 Jan 2023 09:52:24 GMT
x-amz-id-2: LiBolAsnahWDmctRh/pLfEhFQomWc9YpZDBDiYLsQTKAnnruDXVcq21odqUVsJFa8KG2vEpMq2A=
x-amz-request-id: 0Z382DXY87S6CN22
x-amz-version-id: eC.aft4MvNICuHHMT6mbyOVF3fajPdk1
x-envoy-attempt-count: 1
x-envoy-upstream-service-time: 21
cf-cache-status: HIT
age: 2245
accept-ranges: bytes
set-cookie: __cf_bm=W11QHrXkuxfgKaAOKVi0NReIsrq586L06uyc0k6N7hs-1674461001-0-Afaibq/BF7z9FEi28GiI1r+vpZAj3XGSu9hIoEEC1yifYKDjsDo3DXgBNc0Esn7DHNFjFkVDf/OtKv57tgYfwGINkrIVj2tGCZ3Va1iF6RVT; path=/; expires=Mon, 23-Jan-23 08:33:21 GMT; domain=.wise.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=31536000
server: cloudflare
cf-ray: 78df0329adfdb4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
wise.com/public-resources/assets/icons/favicon_16x16.png
104.18.16.28200 OK 116 B URL HTTP/2 wise.com/public-resources/assets/icons/favicon_16x16.png
IP 104.18.16.28:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash be4db316c3f04f66655048fa822779b8
a8e69751872d1fe241709328d1fb56330d3f58ce
4d41a5f75ec23c6e19e17fa261f1585f1aabe8fb55119b7a817ab587bc912bb5
GET /public-resources/assets/icons/favicon_16x16.png HTTP/1.1
Host: wise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 23 Jan 2023 08:03:21 GMT
content-type: image/webp
content-length: 116
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=227
content-disposition: inline; filename="favicon_16x16.webp"
vary: Accept
x-content-type-options: nosniff
cache-control: public,max-age=86400,s-maxage=3600,stale-while-revalidate=604800,stale-if-error=604800
etag: "fa6e213c85ca2e0fc18f7b5cd11bc091"
last-modified: Wed, 04 Jan 2023 14:35:13 GMT
x-amz-id-2: OOvb8U7BFCPkW7Xa2yYnb8vWakPEWV0LZZFBdA76FrAyYQKaHnDAdoTkM2T9GPyMeMzJziIKgIw=
x-amz-request-id: 1TBRS3MYB2QHWTDD
x-amz-version-id: Wzn6vaXpvaIjzsuleSvpLg0MZqKC3mCH
x-envoy-attempt-count: 1
x-envoy-upstream-service-time: 54
cf-cache-status: HIT
age: 3424
accept-ranges: bytes
set-cookie: __cf_bm=ejvCN2miQK.0a2LFOe.QMEOwtOEZXyt1YPEZnmfjygc-1674461001-0-AYr2vEYUtPeocHc1YdcxmW78GJQhyyWU/s0omyXen6AELWwiB3gHR6mT02mjg0vWVtl1QOBlCR7nNCFWq4qEqK/lrdUVAaLWhaGcd+D/SSft; path=/; expires=Mon, 23-Jan-23 08:33:21 GMT; domain=.wise.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=31536000
server: cloudflare
cf-ray: 78df0329be08b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/static-assets/app/_next/static/media/TW-Averta-Regular.8e8db741.woff
34.134.130.193404 Not Found 808 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/static-assets/app/_next/static/media/TW-Averta-Regular.8e8db741.woff
IP 34.134.130.193:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a943672a32297727bab01c3e76977550
3a667c4b7a457ef6c586cc581d533c128737bf53
b9347f234dc3c8d56e015e86d88a1400415db8f7a5ad91f02b6a2323c10a4187
Analyzer Verdict Alert openphish TransferWise
GET /static-assets/app/_next/static/media/TW-Averta-Regular.8e8db741.woff HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number_files/598878faba7ec6cf.css
Cookie: twCookieConsent=%7B%22policyId%22%3A%222020-01-31%22%2C%22expiry%22%3A1690185799824%2C%22isEu%22%3Afalse%2C%22status%22%3A%22accepted%22%7D; twCookieConsentGTM=true
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 23 Jan 2023 08:03:21 GMT
content-type: text/html
content-length: 808
last-modified: Sun, 22 Jan 2023 00:23:08 GMT
etag: "328-5f2cf497d3766"
accept-ranges: bytes
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/static-assets/app/_next/static/media/TW-Averta-Semibold.c170753c.woff
34.134.130.193404 Not Found 808 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/static-assets/app/_next/static/media/TW-Averta-Semibold.c170753c.woff
IP 34.134.130.193:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a943672a32297727bab01c3e76977550
3a667c4b7a457ef6c586cc581d533c128737bf53
b9347f234dc3c8d56e015e86d88a1400415db8f7a5ad91f02b6a2323c10a4187
Analyzer Verdict Alert openphish TransferWise
GET /static-assets/app/_next/static/media/TW-Averta-Semibold.c170753c.woff HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number_files/598878faba7ec6cf.css
Cookie: twCookieConsent=%7B%22policyId%22%3A%222020-01-31%22%2C%22expiry%22%3A1690185799824%2C%22isEu%22%3Afalse%2C%22status%22%3A%22accepted%22%7D; twCookieConsentGTM=true
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 23 Jan 2023 08:03:21 GMT
content-type: text/html
content-length: 808
last-modified: Sun, 22 Jan 2023 00:23:08 GMT
etag: "328-5f2cf497d3766"
accept-ranges: bytes
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/static-assets/app/_next/static/media/TW-Averta-Bold.5fd4f63f.woff
34.134.130.193404 Not Found 808 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/static-assets/app/_next/static/media/TW-Averta-Bold.5fd4f63f.woff
IP 34.134.130.193:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a943672a32297727bab01c3e76977550
3a667c4b7a457ef6c586cc581d533c128737bf53
b9347f234dc3c8d56e015e86d88a1400415db8f7a5ad91f02b6a2323c10a4187
Analyzer Verdict Alert openphish TransferWise
GET /static-assets/app/_next/static/media/TW-Averta-Bold.5fd4f63f.woff HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number_files/598878faba7ec6cf.css
Cookie: twCookieConsent=%7B%22policyId%22%3A%222020-01-31%22%2C%22expiry%22%3A1690185799824%2C%22isEu%22%3Afalse%2C%22status%22%3A%22accepted%22%7D; twCookieConsentGTM=true
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 23 Jan 2023 08:03:21 GMT
content-type: text/html
content-length: 808
last-modified: Sun, 22 Jan 2023 00:23:08 GMT
etag: "328-5f2cf497d3766"
accept-ranges: bytes
X-Firefox-Spdy: h2
js.adsrvr.org/up_loader.1.1.0.js
143.204.45.46200 OK 1.9 kB URL HTTP/1.1 js.adsrvr.org/up_loader.1.1.0.js
IP 143.204.45.46:0
File type ASCII text, with very long lines (4593), with no line terminators
Hash 8dc722d27824e60548fd25752623cd07
33d66ad1a4a162e2d6c9ed732d6c9af79635fc4d
14ce9119fe06fb2d363ba3c824e9f5b3f212f1f39dfab38c836fa13a20daec1b
GET /up_loader.1.1.0.js HTTP/1.1
Host: js.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Mon, 23 Jan 2023 06:03:07 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: vvUb1Dnscg21P8Rjj4KMcvMVSFBcolDgPbkRF1b4PTQKbytKh1auAg==
Age: 7215
www.redditstatic.com/ads/pixel.js
151.101.193.140200 OK 7.7 kB URL HTTP/2 www.redditstatic.com/ads/pixel.js
IP 151.101.193.140:0
File type ASCII text, with very long lines (25224)
Hash 3528fd00b652f61a266eb584d96f4fcc
d89e16aa1323c6c4f1ed3941122020684a599361
77efa9f2ddfdca7a45df37bbcd22fdaeb7b97161a2acd87e21eb78bdeaad1332
GET /ads/pixel.js HTTP/1.1
Host: www.redditstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 16:45:46 GMT
etag: "3528fd00b652f61a266eb584d96f4fcc"
cache-control: public, max-age=60
content-encoding: gzip
content-type: application/javascript
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 23 Jan 2023 08:03:21 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 7722
X-Firefox-Spdy: h2
sc-static.net/scevent.min.js
54.230.82.240200 OK 13 kB URL HTTP/2 sc-static.net/scevent.min.js
IP 54.230.82.240:0
File type ASCII text, with very long lines (30923), with no line terminators
Hash 957d65dfa972893511879b4d2abce54b
a0106f59c171c72c527a88cc3b06263af186a5c4
24cae1a14856e2642826fe9d960b0e61ae60fa45a778ec61f2b7d862dc3af603
GET /scevent.min.js HTTP/1.1
Host: sc-static.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 13270
server: CloudFront
date: Mon, 23 Jan 2023 08:03:21 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Content-Type
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=0d6e407936704bd380072f5891d28b0e;max-age=86400;expires=Tue, 24 Jan 2023 07:07:35 GMT;Path=/scevent.min.js; Secure; SameSite=None
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jhIjt6Mr5LB8GxeZYLxWRig2c2Wnc2CnD5AMuAQgRLR6Mct8jUoYng==
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/oGQfcJFPyx4
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/oGQfcJFPyx4
IP 142.250.74.131:0
Hash ca163b1c378be0573dfb0f5d27c3ee5f
9b7cc07348e3ded6780e3d1d82331296d3e1299d
534ad5fcc9d2480a9d2065a269312b3bde707e95689d78154429f185a0764fce
POST /s/gts1d4/oGQfcJFPyx4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 08:03:21 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.pdst.fm/ping.min.js
35.244.142.80200 OK 5.8 kB IP 35.244.142.80:0
File type ASCII text, with very long lines (26948), with no line terminators
Hash d001d1c9f5a942fa5524eeacb047e819
6ebc303d4e3fe71192400673808f37ce1c6a1d25
63882c75983a011c7ae5041061a95babb9e67fa508b0628e1c00f455ccd40b0a
GET /ping.min.js HTTP/1.1
Host: cdn.pdst.fm
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdst3fzxhcf50wF492IdXiczB6N8qk6-4PROZQ0Yrym9ODJOWaYS5_6nkHQX1_CqCDkL9M0GfN1ADlTJiuDcGgSaTPwFzirs
x-goog-generation: 1622234043862937
x-goog-metageneration: 3
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 5774
content-encoding: gzip
x-goog-hash: crc32c=oKoi/w==, md5=0AHRyfWpQvpVJO6ssEfoGQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
vary: Accept-Encoding
content-length: 5774
access-control-allow-origin: *
access-control-expose-headers: Content-Type
server: UploadServer
date: Mon, 23 Jan 2023 07:21:09 GMT
expires: Mon, 23 Jan 2023 08:21:09 GMT
cache-control: public, max-age=3600
age: 2532
last-modified: Fri, 28 May 2021 20:34:03 GMT
etag: "d001d1c9f5a942fa5524eeacb047e819"
content-type: application/javascript;
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/oGQfcJFPyx4
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/oGQfcJFPyx4
IP 142.250.74.131:0
Hash ca163b1c378be0573dfb0f5d27c3ee5f
9b7cc07348e3ded6780e3d1d82331296d3e1299d
534ad5fcc9d2480a9d2065a269312b3bde707e95689d78154429f185a0764fce
POST /s/gts1d4/oGQfcJFPyx4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 08:03:21 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 88bc7cef8f7329956760004d45477be3
f64a96c7d91550b948f225864044859d6b0649ec
b2a07a4994c6d6627813312ec4b325aa2a9cab97719a3399cb5b24114bebe180
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1304
Cache-Control: max-age=169653
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 08:03:21 GMT
Etag: "63ce2de6-1d7"
Expires: Wed, 25 Jan 2023 07:10:54 GMT
Last-Modified: Mon, 23 Jan 2023 06:49:10 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 88bc7cef8f7329956760004d45477be3
f64a96c7d91550b948f225864044859d6b0649ec
b2a07a4994c6d6627813312ec4b325aa2a9cab97719a3399cb5b24114bebe180
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1304
Cache-Control: max-age=169653
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 08:03:21 GMT
Etag: "63ce2de6-1d7"
Expires: Wed, 25 Jan 2023 07:10:54 GMT
Last-Modified: Mon, 23 Jan 2023 06:49:10 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 526de272e2922e4b8de8d2dedfb2a31b
a04b1c9d1bd935c9b6a32e6dc0047443846e1561
3f2196cbf1d926c651461ac4c17ec3da4ea066e9c9085422184b00c51ed96378
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3F2196CBF1D926C651461AC4C17EC3DA4EA066E9C9085422184B00C51ED96378"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9674
Expires: Mon, 23 Jan 2023 10:44:35 GMT
Date: Mon, 23 Jan 2023 08:03:21 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 00baef460bb15b064edbe8ee5f07e9a1
a061599cb02671a65688b04bf4ec2c2836429f11
2f0b599058f102c6d68e9e9a5447b44748f96c1ee41abd2a530b1f0ee59cad38
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6209
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 08:03:21 GMT
Last-Modified: Mon, 23 Jan 2023 06:19:53 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
kind-babbage.34-134-130-193.plesk.page/number_files/8934-2c1860920afedb5e.js
34.134.130.193200 OK 3.6 kB URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/8934-2c1860920afedb5e.js
IP 34.134.130.193:0
File type ASCII text, with very long lines (9631)
Hash 86d5d00e43756c03cd170bdd0bc43e32
57e06d267bfdcb30b23982e0b754f480cc49f770
15daf90290e20cce0357946303e4963e4733496ab04788fac18347c9edc33fac
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/8934-2c1860920afedb5e.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:30 GMT
etag: W/"63cc823e-25d1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10648
Expires: Mon, 23 Jan 2023 11:00:49 GMT
Date: Mon, 23 Jan 2023 08:03:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10648
Expires: Mon, 23 Jan 2023 11:00:49 GMT
Date: Mon, 23 Jan 2023 08:03:21 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d460749f736f9429a3f97b61cdee0a92
7afe18e64e83114bc2ef617f04cc2a1198f09cf7
c234db5cb820fa832f8dbfc76ccc0d5367f036c2e34de1b61b107c00890d1f4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 08:03:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10648
Expires: Mon, 23 Jan 2023 11:00:49 GMT
Date: Mon, 23 Jan 2023 08:03:21 GMT
Connection: keep-alive
kind-babbage.34-134-130-193.plesk.page/number_files/2160-0b2655a83af8130b.js
34.134.130.193200 OK 33 kB URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/2160-0b2655a83af8130b.js
IP 34.134.130.193:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 92c5efcea625123a7a4b1ca76bdec790
6fea38943adb727600fe892fd92293bf786d322e
9d00a7a58d4fa906d4a251c773994bd64c5acb292d482f6d8d0b14648f89aec4
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/2160-0b2655a83af8130b.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:28 GMT
etag: W/"63cc823c-1799f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2aa8ea3b-13bb-49a3-a61a-2cecc5ae20aa.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2aa8ea3b-13bb-49a3-a61a-2cecc5ae20aa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e2146bf738fb2120d9f167533c7ec2ab
ce546aa88e2ab0958a99c5a8240fcd95500ef1ea
54405cd0508b2dcf343c3b8563ad8bb484f01866e58b29a034aa650a415925d2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2aa8ea3b-13bb-49a3-a61a-2cecc5ae20aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5250
x-amzn-requestid: 364176ba-8f3f-4e2f-8d52-8c03d91b5f02
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fnEHMsoAMFysQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c612f9-33117b2d2175e2d55cedfa1f;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: M8HkrBuE_Syoj3hPAzEf6bgCTW1LqXG8hYYbg02QKreMYETbZkn_vA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 21:55:33 GMT
age: 36468
etag: "ce546aa88e2ab0958a99c5a8240fcd95500ef1ea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/2530-adff0fbf229e347e.js
34.134.130.193200 OK 8.5 kB URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/2530-adff0fbf229e347e.js
IP 34.134.130.193:0
File type ASCII text, with very long lines (19800)
Hash 498fd7ae22dc551be0129e6c04c274e5
cf6ee6351380fa4ea3c5a313999bc62e62f3d80d
f373e3b49674dbafabd5e1307aa67ae3fcfab5dbf0d9671694bd6e138827f142
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/2530-adff0fbf229e347e.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:20 GMT
etag: W/"63cc8234-4d8a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a0bad57-b7ca-4aa8-85b4-3ac127cb7346.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a0bad57-b7ca-4aa8-85b4-3ac127cb7346.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eac67b57277f6a61589ef5f6a4daccbb
654c00ad053213758c5946123f49cb157f751570
9271b578346c4e1c2192c5d64222af2874fc86e25e886c76a5d70e34d308f694
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a0bad57-b7ca-4aa8-85b4-3ac127cb7346.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7244
x-amzn-requestid: a9dfb0b3-2f43-49c0-8341-d242de8f6fe8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: exbl8HHyIAMFS3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c3a625-06ec97e4419248a777ed9e77;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 07:07:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uosIDE2c24c8qkJbUBjBliFv_Vweey99QzcN80MmHK-jS29voofwLA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 23 Jan 2023 05:28:59 GMT
age: 9262
etag: "654c00ad053213758c5946123f49cb157f751570"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d460749f736f9429a3f97b61cdee0a92
7afe18e64e83114bc2ef617f04cc2a1198f09cf7
c234db5cb820fa832f8dbfc76ccc0d5367f036c2e34de1b61b107c00890d1f4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 08:03:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7458f7a9b2070055df6f1d496794e43e
0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9
373097662c419eef9f4a19ce9f3bcead70f6eafbf0acf44806685eece43ce251
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12758
x-amzn-requestid: c3540562-8c62-4957-9528-7ae952daebaa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e9gf1E87oAMFpsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c87acb-49fd3f78275937e24d23fca3;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 23:03:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mjK4GJ3UCEuHk4XqmXdZCWHTVvJeX8Z2HFaem2GYzqfqlPSd_h6DfA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 23 Jan 2023 01:53:55 GMT
age: 22166
etag: "0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69f6ce48-0095-4b2b-b098-c6f6de90570c.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69f6ce48-0095-4b2b-b098-c6f6de90570c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5401628b3bdd03eeee51f68177ac4d41
bb12e1d1bc5a87d3fa05371894a8bc8eb3d1bb29
3e231ba2e44699d88ed1e28510dad0762a57e0854a11d40f752421bd41738944
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69f6ce48-0095-4b2b-b098-c6f6de90570c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10052
x-amzn-requestid: 10422f29-dc81-41f9-b03e-76fb2b0f4f87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e2vnHFT9oAMFbmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5c62d-780503606bec4fff6e911fc8;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 21:48:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bcQqOfvj5pAZj--Zx6PFaG7j5ei1DbbIzS90vaApoWwFWrxeLri4Ow==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Mon, 23 Jan 2023 07:11:12 GMT
age: 3129
etag: "bb12e1d1bc5a87d3fa05371894a8bc8eb3d1bb29"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F296d62aa-29a6-401f-a40f-9238dace1001.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F296d62aa-29a6-401f-a40f-9238dace1001.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9c9e3df640be93567ea081ffe31576f6
fb07a0e3cfcb7f53b94f614a2e96ec1d8d5967d4
679e5a9ab43a5599759171b70ad5dbe0c4ca8facb895f08ef0313b0c7e691ea3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F296d62aa-29a6-401f-a40f-9238dace1001.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7387
x-amzn-requestid: 54845590-a39f-4a1b-ba4a-fe24368b268a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fD7N3GmQIAMF6AQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb0bf2-4b4bf4fc209388b74cb1c7f7;Sampled=0
x-amzn-remapped-date: Fri, 20 Jan 2023 21:47:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Uv-WWW2LOuAxIaf_yYT1vVoI2G_h3uuC75aLEKAij4YM8tVdHwmfuw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 21:54:22 GMT
age: 36539
etag: "fb07a0e3cfcb7f53b94f614a2e96ec1d8d5967d4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 88bc7cef8f7329956760004d45477be3
f64a96c7d91550b948f225864044859d6b0649ec
b2a07a4994c6d6627813312ec4b325aa2a9cab97719a3399cb5b24114bebe180
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1304
Cache-Control: max-age=169653
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 08:03:21 GMT
Etag: "63ce2de6-1d7"
Expires: Wed, 25 Jan 2023 07:10:54 GMT
Last-Modified: Mon, 23 Jan 2023 06:49:10 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash f21e1c8de1fc514303faa5816438decb
9b98f1378213e2c97804e7967cfcf379fe24f495
161d291472e677107668bfd3686d34238b998bbf7e6ac4ad11be93ed1099f0cd
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 23 Jan 2023 08:03:21 GMT
Last-Modified: Mon, 23 Jan 2023 07:16:54 GMT
Server: ECS (nyb/1D25)
X-Cache: Miss from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: GpEwqo1Esmb3RK4ol3dmDfLtGfyCE5fY2hqxJE_FU_DkwjHcz-iPVg==
Age: 2787
q.quora.com/_/ad/cb419c3fe93d480dab5e86d948922c22/pixel?tag=ViewContent&i=gtm&u=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php
52.4.132.247200 OK 43 B URL HTTP/1.1 q.quora.com/_/ad/cb419c3fe93d480dab5e86d948922c22/pixel?tag=ViewContent&i=gtm&u=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php
IP 52.4.132.247:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /_/ad/cb419c3fe93d480dab5e86d948922c22/pixel?tag=ViewContent&i=gtm&u=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php HTTP/1.1
Host: q.quora.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Date: Mon, 23 Jan 2023 08:03:21 GMT
Server: nginx
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Q-Stat: ,40aed575da880c40202f3deaf6d99f4a,10.0.0.160,58726,91.90.42.154,,96436067010,1,1674461001.732,0.001,,.,0,0,0.000,0.000,-,0,0,197,179,89,10,34729,,,,,,-,
Content-Length: 43
Connection: keep-alive
us-central1-adaptive-growth.cloudfunctions.net/pdst-events-prod-sink
216.239.36.54200 OK 22 B URL HTTP/2 us-central1-adaptive-growth.cloudfunctions.net/pdst-events-prod-sink
IP 216.239.36.54:0
File type ASCII text, with no line terminators
Hash 8e7120c76040a47f820e8c87b95dddce
0ae6d0d5578537f5011e44f97e812069362ac7b2
e64c6bbbdbf2cc009eeb259cfb5f877274d073ea0ef1770008344cdf7d640c3c
OPTIONS /pdst-events-prod-sink HTTP/1.1
Host: us-central1-adaptive-growth.cloudfunctions.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Origin: https://kind-babbage.34-134-130-193.plesk.page
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-headers: Content-Type, Accept
access-control-allow-methods: GET, POST
access-control-allow-origin: *
content-type: text/html; charset=utf-8
etag: W/"2-ROqGvmcGDXooyAXFZHZ+i4au1yQ"
function-execution-id: alnyv106v7tu
x-powered-by: Express
x-cloud-trace-context: 08b9fa3c3551bc040876c286f04c3e18
content-encoding: gzip
date: Mon, 23 Jan 2023 08:03:21 GMT
server: Google Frontend
cache-control: private
content-length: 22
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d460749f736f9429a3f97b61cdee0a92
7afe18e64e83114bc2ef617f04cc2a1198f09cf7
c234db5cb820fa832f8dbfc76ccc0d5367f036c2e34de1b61b107c00890d1f4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 08:03:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kind-babbage.34-134-130-193.plesk.page/number_files/analytics.js
34.134.130.193200 OK 28 kB URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/analytics.js
IP 34.134.130.193:0
File type ASCII text, with very long lines (1490)
Hash f39d7c2a710b739d2a7ad86cb51e07bc
400882a38ee57f4ccff7c2306d0d035a7d8aa4da
28ce5ef432c7a5b0ba3a957440a2f7b5499d8f8e25eab56e14dd9765652671d7
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/analytics.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:33 GMT
etag: W/"63cc8241-c43a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
collector-20079.tvsquared.com/tv2track.php?action_name=Wise%20-%20Cr%C3%A9er%20un%20compte&idsite=TV-7290902709-1&rec=1&r=491026&h=8&m=3&s=20&url=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&_id=92d9d1b483e91a0a&_idts=1674461001&_idvc=0&_idn=1&_viewts=&cookie=1&res=1280x1024>_ms=684
3.131.224.102200 OK 42 B URL HTTP/1.1 collector-20079.tvsquared.com/tv2track.php?action_name=Wise%20-%20Cr%C3%A9er%20un%20compte&idsite=TV-7290902709-1&rec=1&r=491026&h=8&m=3&s=20&url=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&_id=92d9d1b483e91a0a&_idts=1674461001&_idvc=0&_idn=1&_viewts=&cookie=1&res=1280x1024>_ms=684
IP 3.131.224.102:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 00657dd79637a8daf5e6196ca17f1887
3e064855d1fe7c6eac52981a646ec5840ba7efb5
f0c71e3da5b3fcab3c66af1cf0cdbf262c97b9330b7b37116f1ae2ab18bdc660
GET /tv2track.php?action_name=Wise%20-%20Cr%C3%A9er%20un%20compte&idsite=TV-7290902709-1&rec=1&r=491026&h=8&m=3&s=20&url=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&_id=92d9d1b483e91a0a&_idts=1674461001&_idvc=0&_idn=1&_viewts=&cookie=1&res=1280x1024>_ms=684 HTTP/1.1
Host: collector-20079.tvsquared.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Date: Mon, 23 Jan 2023 08:03:21 GMT
P3p: CP='OTI DSP COR NID STP UNI OTPa OUR'
Request-Id: 23a18e48-27ce-4a85-b2c2-122a42e2977d
Server: nginx
Content-Length: 42
Connection: keep-alive
us-central1-adaptive-growth.cloudfunctions.net/pdst-events-prod-sink
216.239.36.54204 No Content 0 B URL HTTP/2 us-central1-adaptive-growth.cloudfunctions.net/pdst-events-prod-sink
IP 216.239.36.54:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pdst-events-prod-sink HTTP/1.1
Host: us-central1-adaptive-growth.cloudfunctions.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Content-Type: application/json
Origin: https://kind-babbage.34-134-130-193.plesk.page
Content-Length: 604
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-headers: Content-Type, Accept
access-control-allow-methods: GET, POST
access-control-allow-origin: *
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
function-execution-id: nriqq2kdo3ho
x-powered-by: Express
x-cloud-trace-context: 95b3ba35c78c8bb576387ba29fa3ce17
date: Mon, 23 Jan 2023 08:03:21 GMT
content-type: text/html
server: Google Frontend
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gtm.wise.com/g/collect?v=2&tid=G-MFT2R11DFX>m=2re1i0&_p=61750144&cid=1267389445.1674461000&ul=en-us&sr=1280x1024&_fplc=0&uaW=1&_s=2&sid=1674461000&sct=1&seg=0&dl=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&dt=Wise%20-%20Cr%C3%A9er%20un%20compte&en=scroll&ep.debug_mode=false&epn.event_time=1674461000&epn.event_time_ms=1674460999949&epn.percent_scrolled=90&_et=5&richsstsse
216.239.34.21200 OK 365 B URL HTTP/2 gtm.wise.com/g/collect?v=2&tid=G-MFT2R11DFX>m=2re1i0&_p=61750144&cid=1267389445.1674461000&ul=en-us&sr=1280x1024&_fplc=0&uaW=1&_s=2&sid=1674461000&sct=1&seg=0&dl=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&dt=Wise%20-%20Cr%C3%A9er%20un%20compte&en=scroll&ep.debug_mode=false&epn.event_time=1674461000&epn.event_time_ms=1674460999949&epn.percent_scrolled=90&_et=5&richsstsse
IP 216.239.34.21:0
Hash f823eae651d942a4d87cd62bb4b15daa
5bad7a962f4846ffdda2e1c80848b08225f2eee4
0a07ddae684fe0e3198013a44451c7158f8beb2f360c9427923ec7114c10ae8e
GET /g/collect?v=2&tid=G-MFT2R11DFX>m=2re1i0&_p=61750144&cid=1267389445.1674461000&ul=en-us&sr=1280x1024&_fplc=0&uaW=1&_s=2&sid=1674461000&sct=1&seg=0&dl=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&dt=Wise%20-%20Cr%C3%A9er%20un%20compte&en=scroll&ep.debug_mode=false&epn.event_time=1674461000&epn.event_time_ms=1674460999949&epn.percent_scrolled=90&_et=5&richsstsse HTTP/1.1
Host: gtm.wise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kind-babbage.34-134-130-193.plesk.page
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Cookie: __cf_bm=ejvCN2miQK.0a2LFOe.QMEOwtOEZXyt1YPEZnmfjygc-1674461001-0-AYr2vEYUtPeocHc1YdcxmW78GJQhyyWU/s0omyXen6AELWwiB3gHR6mT02mjg0vWVtl1QOBlCR7nNCFWq4qEqK/lrdUVAaLWhaGcd+D/SSft
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 23 Jan 2023 08:03:21 GMT
content-type: text/plain
vary: Accept-Encoding
set-cookie: FPLC=eAAogjl7MAdZ6o5EGsDWIoj0OcyVJ%2BAoT2%2FAHV8RgBXu6NKI5vr0msBZLo6%2BzvVwX7bNxIs7OaYm1bPsFF9HX4yz%2B3iKsxnlvoyNy8PyTgDxw%2FFiH7SPg%2FuPpacwuw%3D%3D; Max-Age=72000; Domain=34-134-130-193.plesk.page; Path=/; Secure
FPID=FPID2.3.u3PI5ZG8At%2BBFXkW2IMwc0AANXJTeBPT53AtFNjvhoc%3D.1674461000; Max-Age=63072000; Domain=34-134-130-193.plesk.page; Path=/; Secure; HttpOnly
cache-control: no-cache
x-content-type-options: nosniff
access-control-allow-origin: https://kind-babbage.34-134-130-193.plesk.page
access-control-allow-credentials: true
content-encoding: gzip
via: 1.1 google
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3bbec64cde333b8c3068e63b2adbf2bb
e1fad0f09db1e1b01c9d36d7dbc8163682dcc533
850bdbc33df9ee9c938ed81f35ee0a6782fe99f49f65359e1a66ff21e282ffc9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 08:03:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b6a7b076a30a5406b12344e01ba2d7ea
17e8497f4041b0c7e6fe4a13cfc5fe634c622fc5
5c82bf44b7ea0d2399d52df26b0ebc574cea4c4ff5d34423d07a1fc20e2e3587
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 08:03:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bat.bing.com/bat.js
13.107.21.200200 OK 12 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39124), with no line terminators
Hash d925a898de26295fdebfc90203ef46fa
77dd3f5893b76530e08058d50e8f9aef017e80c7
8f4a413fec7e48f5ac290f4596fef33b6396e7fb31080ec0203a5ec817d140c8
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11460
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 05 Dec 2022 17:15:50 GMT
accept-ranges: bytes
etag: "027e538cd8d91:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 6BBE8B419B114F609D70FE46A18F0C66 Ref B: OSL30EDGE0407 Ref C: 2023-01-23T08:03:22Z
date: Mon, 23 Jan 2023 08:03:22 GMT
X-Firefox-Spdy: h2
trck.spoteffects.net/analytics/piwik.php?action_name=Wise%20-%20Cr%C3%A9er%20un%20compte&idsite=984&rec=1&r=235168&h=8&m=3&s=20&url=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&_id=3b9a6725e998e2e7&_idts=1674461000&_idvc=1&_idn=0&_refts=0&_viewts=1674461000&send_image=1&cookie=1&res=1280x1024&_cvar=%7B%222%22%3A%5B%22GuestID%22%2C%22undefined%22%5D%7D>_ms=684&pv_id=AG3CUc
40.119.158.131200 OK 20 kB URL HTTP/2 trck.spoteffects.net/analytics/piwik.php?action_name=Wise%20-%20Cr%C3%A9er%20un%20compte&idsite=984&rec=1&r=235168&h=8&m=3&s=20&url=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&_id=3b9a6725e998e2e7&_idts=1674461000&_idvc=1&_idn=0&_refts=0&_viewts=1674461000&send_image=1&cookie=1&res=1280x1024&_cvar=%7B%222%22%3A%5B%22GuestID%22%2C%22undefined%22%5D%7D>_ms=684&pv_id=AG3CUc
IP 40.119.158.131:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 54c553884dbdc3fa808c1776ec654b5e
4b172502ddd4d4bdba309b4035a028cd0c6044bd
16a86ff12ec65f28bef24d4abaf8e10e4a9fcc7ad9c365b031b823624cc79ec3
GET /analytics/piwik.php?action_name=Wise%20-%20Cr%C3%A9er%20un%20compte&idsite=984&rec=1&r=235168&h=8&m=3&s=20&url=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&_id=3b9a6725e998e2e7&_idts=1674461000&_idvc=1&_idn=0&_refts=0&_viewts=1674461000&send_image=1&cookie=1&res=1280x1024&_cvar=%7B%222%22%3A%5B%22GuestID%22%2C%22undefined%22%5D%7D>_ms=684&pv_id=AG3CUc HTTP/1.1
Host: trck.spoteffects.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:21 GMT
content-type: image/gif
x-powered-by: PHP/7.2.13
cache-control: no-store
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/981785008/?random=1674461001483&cv=10&fst=1674461001483&fmt=3&bg=ffffff&guid=ON&u_w=1280&u_h=1024>m=3res1j0&url=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&tiba=Wise%20-%20Cr%C3%A9er%20un%20compte&auid=875180506.1674461001
142.250.74.66302 Found 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/981785008/?random=1674461001483&cv=10&fst=1674461001483&fmt=3&bg=ffffff&guid=ON&u_w=1280&u_h=1024>m=3res1j0&url=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&tiba=Wise%20-%20Cr%C3%A9er%20un%20compte&auid=875180506.1674461001
IP 142.250.74.66:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/981785008/?random=1674461001483&cv=10&fst=1674461001483&fmt=3&bg=ffffff&guid=ON&u_w=1280&u_h=1024>m=3res1j0&url=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&tiba=Wise%20-%20Cr%C3%A9er%20un%20compte&auid=875180506.1674461001 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 23 Jan 2023 08:03:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/pagead/1p-user-list/981785008/?random=1674461001483&cv=10&fst=1674460800000&fmt=3&bg=ffffff&guid=ON&u_w=1280&u_h=1024>m=3res1j0&url=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&tiba=Wise%20-%20Cr%C3%A9er%20un%20compte&is_vtc=1&random=67749175
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 23-Jan-2023 08:18:22 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.ads-twitter.com/uwt.js
151.101.244.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.244.157:0
File type ASCII text, with very long lines (57596), with no line terminators
Hash 573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Mon, 23 Jan 2023 08:03:22 GMT
x-served-by: cache-iad-kiad7000089-IAD, cache-hel1410021-HEL
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b6a7b076a30a5406b12344e01ba2d7ea
17e8497f4041b0c7e6fe4a13cfc5fe634c622fc5
5c82bf44b7ea0d2399d52df26b0ebc574cea4c4ff5d34423d07a1fc20e2e3587
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 08:03:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3bbec64cde333b8c3068e63b2adbf2bb
e1fad0f09db1e1b01c9d36d7dbc8163682dcc533
850bdbc33df9ee9c938ed81f35ee0a6782fe99f49f65359e1a66ff21e282ffc9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 08:03:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
alb.reddit.com/rp.gif?ts=1674461000105&id=t2_ln9y5&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=4a4b8950-f38c-4d55-b090-400a0e366ee1&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8
151.101.129.140200 OK 42 B URL HTTP/2 alb.reddit.com/rp.gif?ts=1674461000105&id=t2_ln9y5&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=4a4b8950-f38c-4d55-b090-400a0e366ee1&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8
IP 151.101.129.140:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /rp.gif?ts=1674461000105&id=t2_ln9y5&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=4a4b8950-f38c-4d55-b090-400a0e366ee1&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8 HTTP/1.1
Host: alb.reddit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
content-type: image/gif
accept-ranges: bytes
date: Mon, 23 Jan 2023 08:03:22 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash e7be27da69db27c40a32e0f6633da044
8c06cd441f191b31f47fd88eb56bf521496770d9
ea55eef7a093881e9cdd349609d234405ecf715d6ffbad33a63078367f9071a7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4914
Cache-Control: max-age=105199
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 08:03:22 GMT
Etag: "63cd2407-139"
Expires: Tue, 24 Jan 2023 13:16:41 GMT
Last-Modified: Sun, 22 Jan 2023 11:54:47 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 313
s.yimg.jp/images/listing/tool/cv/ytag.js
182.22.31.124200 OK 9.8 kB URL HTTP/2 s.yimg.jp/images/listing/tool/cv/ytag.js
IP 182.22.31.124:0
ASN #23816 Yahoo Japan Corporation
File type ASCII text, with very long lines (32040), with no line terminators
Hash 365c9c596b34a4638836c22c8a5dc623
90f05e1c6c4016e5677709bb6f8f0e810b9ca58a
ecddfb33f676186b2a23f80d1d12b32bfe11d1144b1e44da0347d5ac2943b76f
GET /images/listing/tool/cv/ytag.js HTTP/1.1
Host: s.yimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Mon, 23 Jan 2023 07:57:48 GMT
vary: Accept-Encoding
last-modified: Mon, 19 Dec 2022 01:14:54 GMT
cache-control: public, max-age=600
content-encoding: gzip
server: ATS
accept-ch: Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch
permissions-policy: ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-platform-version=*, ch-ua-arch=*
age: 334
content-length: 9788
ats-carp-promotion: 1
x-z-chihaya: r=1
X-Firefox-Spdy: h2
t.co/1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=5ac2470e-93a8-4687-b5ae-32995fe8b61e&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=5720d422-8fd4-4c9e-aa4f-049cbcdc0b58&tw_document_href=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&tw_iframe_status=0&txn_id=nuuhv&type=javascript&version=2.3.29
104.244.42.69200 OK 43 B URL HTTP/2 t.co/1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=5ac2470e-93a8-4687-b5ae-32995fe8b61e&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=5720d422-8fd4-4c9e-aa4f-049cbcdc0b58&tw_document_href=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&tw_iframe_status=0&txn_id=nuuhv&type=javascript&version=2.3.29
IP 104.244.42.69:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=5ac2470e-93a8-4687-b5ae-32995fe8b61e&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=5720d422-8fd4-4c9e-aa4f-049cbcdc0b58&tw_document_href=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&tw_iframe_status=0&txn_id=nuuhv&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 23 Jan 2023 08:03:22 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=6e3473c6-d2c8-43c9-9501-af138b209239; Max-Age=63072000; Expires=Wed, 22 Jan 2025 08:03:22 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 6b68252a4424d512
strict-transport-security: max-age=0
x-response-time: 111
x-connection-hash: 7eae757d4eb4d059758e63c07cb441713ee6a6eaae4a234a366d3e7009ad7d78
X-Firefox-Spdy: h2
d2hrivdxn8ekm8.cloudfront.net/tracker-latest.min.js
54.230.245.8200 OK 9.7 kB URL HTTP/2 d2hrivdxn8ekm8.cloudfront.net/tracker-latest.min.js
IP 54.230.245.8:0
File type C source, ASCII text, with very long lines (9726), with no line terminators
Hash b9969e7233e19c701e23250dfc600091
f7f21e6f6530d31964917d516b0ac699b7c69fd6
e2cd346faacef0060f6fcdee7ec4ff2cbfd19c09766a6949531bbd2d36d3d2a0
GET /tracker-latest.min.js HTTP/1.1
Host: d2hrivdxn8ekm8.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 9726
last-modified: Fri, 06 Jan 2023 22:11:58 GMT
x-amz-version-id: 25i7uZa9clT6y_Wdb4DMy43yEZwXSGD.
accept-ranges: bytes
server: AmazonS3
date: Mon, 23 Jan 2023 03:49:45 GMT
etag: "b9969e7233e19c701e23250dfc600091"
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rW8YXmTR-X_ruqlpRys5VxvG125xt-hlmPSK7OSfSAX_1K7VsOBrLQ==
age: 15219
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=5990948&tm=gtm002&Ver=2&mid=743c7dc7-fb67-4c49-bbe2-9db56c44ad8a&sid=674d5c009af411eda04cb94b021a9511&vid=674d65209af411ed91a1351a419a5796&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Wise%20-%20Cr%C3%A9er%20un%20compte&p=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&r=<=2148&evt=pageLoad&sv=1&rn=562088
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=5990948&tm=gtm002&Ver=2&mid=743c7dc7-fb67-4c49-bbe2-9db56c44ad8a&sid=674d5c009af411eda04cb94b021a9511&vid=674d65209af411ed91a1351a419a5796&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Wise%20-%20Cr%C3%A9er%20un%20compte&p=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&r=<=2148&evt=pageLoad&sv=1&rn=562088
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=5990948&tm=gtm002&Ver=2&mid=743c7dc7-fb67-4c49-bbe2-9db56c44ad8a&sid=674d5c009af411eda04cb94b021a9511&vid=674d65209af411ed91a1351a419a5796&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Wise%20-%20Cr%C3%A9er%20un%20compte&p=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&r=<=2148&evt=pageLoad&sv=1&rn=562088 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=0590936D11B5677B051981CF10E266A8; domain=.bing.com; expires=Sat, 17-Feb-2024 08:03:23 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: A6D0CF1184234220949E3DF17AC99091 Ref B: OSL30EDGE0407 Ref C: 2023-01-23T08:03:23Z
date: Mon, 23 Jan 2023 08:03:22 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9f9788e381983082a10350bba3234afb
dc16e103c5174374433d4432b8d6171a3960dbbc
961980c0a8fa08aca4b97e793686994e2d85e5272cebeb48229611a88ecabc83
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 08:03:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash d14e8782b62a4de2df55c33db9baea6b
a978ef5dd2733c04938063672de978795fec32f2
f02211e54ba4c2f92272a711e95edec35c0618f243880c8c9be1044cb6acb5a0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2412
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 08:03:23 GMT
Last-Modified: Mon, 23 Jan 2023 07:23:11 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 314
www.google.com/pagead/1p-user-list/981785008/?random=1674461001483&cv=10&fst=1674460800000&fmt=3&bg=ffffff&guid=ON&u_w=1280&u_h=1024>m=3res1j0&url=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&tiba=Wise%20-%20Cr%C3%A9er%20un%20compte&is_vtc=1&random=67749175
142.250.74.164302 Found 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/981785008/?random=1674461001483&cv=10&fst=1674460800000&fmt=3&bg=ffffff&guid=ON&u_w=1280&u_h=1024>m=3res1j0&url=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&tiba=Wise%20-%20Cr%C3%A9er%20un%20compte&is_vtc=1&random=67749175
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/981785008/?random=1674461001483&cv=10&fst=1674460800000&fmt=3&bg=ffffff&guid=ON&u_w=1280&u_h=1024>m=3res1j0&url=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&tiba=Wise%20-%20Cr%C3%A9er%20un%20compte&is_vtc=1&random=67749175 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 23 Jan 2023 08:03:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-user-list/981785008/?random=1674461001483&cv=10&fst=1674460800000&fmt=3&bg=ffffff&guid=ON&u_w=1280&u_h=1024>m=3res1j0&url=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&tiba=Wise%20-%20Cr%C3%A9er%20un%20compte&is_vtc=1&random=67749175&ipr=y
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dvqigh9b7wa32.cloudfront.net/5a28e627?data=dmVyc2lvbj0xLjIuMTYmdG9rZW49MjYxM2ZlNGMtMTBkMy00NTUzLWI5MTYtZmJkMjdmNDYyNDIyJnNlc3Npb25JZD04ZjRjYzE5MS1kODAxLTZkYmEtNWZiNS1iMmY5ZDllNmY1MTk%3D&date=1674461001801
143.204.42.227200 OK 43 B URL HTTP/2 dvqigh9b7wa32.cloudfront.net/5a28e627?data=dmVyc2lvbj0xLjIuMTYmdG9rZW49MjYxM2ZlNGMtMTBkMy00NTUzLWI5MTYtZmJkMjdmNDYyNDIyJnNlc3Npb25JZD04ZjRjYzE5MS1kODAxLTZkYmEtNWZiNS1iMmY5ZDllNmY1MTk%3D&date=1674461001801
IP 143.204.42.227:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb02f374b8f73825415db1bccd4bd76d
b103aa629cacdd90b39538a7561da7f8e49ad73f
caa849b179befa2645a8e2c474d2e82a76777a3305315ece911013e8ee9a916c
GET /5a28e627?data=dmVyc2lvbj0xLjIuMTYmdG9rZW49MjYxM2ZlNGMtMTBkMy00NTUzLWI5MTYtZmJkMjdmNDYyNDIyJnNlc3Npb25JZD04ZjRjYzE5MS1kODAxLTZkYmEtNWZiNS1iMmY5ZDllNmY1MTk%3D&date=1674461001801 HTTP/1.1
Host: dvqigh9b7wa32.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kind-babbage.34-134-130-193.plesk.page
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 43
date: Sun, 22 Jan 2023 12:41:05 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 08 Mar 2017 06:19:28 GMT
etag: "fb02f374b8f73825415db1bccd4bd76d"
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -A48zh-N4txQWyIhQNXb6mFeBD8hrhAB-D3E_N0OYsVEi4fSGzrfMQ==
age: 69739
X-Firefox-Spdy: h2
d330aiyvva2oww.cloudfront.net/5a28e627?data=aXB2Nj10cnVlJnZlcnNpb249MS4yLjE2JnRva2VuPTI2MTNmZTRjLTEwZDMtNDU1My1iOTE2LWZiZDI3ZjQ2MjQyMiZzZXNzaW9uSWQ9OGY0Y2MxOTEtZDgwMS02ZGJhLTVmYjUtYjJmOWQ5ZTZmNTE5&date=1674461001801
143.204.42.188200 OK 43 B URL HTTP/2 d330aiyvva2oww.cloudfront.net/5a28e627?data=aXB2Nj10cnVlJnZlcnNpb249MS4yLjE2JnRva2VuPTI2MTNmZTRjLTEwZDMtNDU1My1iOTE2LWZiZDI3ZjQ2MjQyMiZzZXNzaW9uSWQ9OGY0Y2MxOTEtZDgwMS02ZGJhLTVmYjUtYjJmOWQ5ZTZmNTE5&date=1674461001801
IP 143.204.42.188:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb02f374b8f73825415db1bccd4bd76d
b103aa629cacdd90b39538a7561da7f8e49ad73f
caa849b179befa2645a8e2c474d2e82a76777a3305315ece911013e8ee9a916c
GET /5a28e627?data=aXB2Nj10cnVlJnZlcnNpb249MS4yLjE2JnRva2VuPTI2MTNmZTRjLTEwZDMtNDU1My1iOTE2LWZiZDI3ZjQ2MjQyMiZzZXNzaW9uSWQ9OGY0Y2MxOTEtZDgwMS02ZGJhLTVmYjUtYjJmOWQ5ZTZmNTE5&date=1674461001801 HTTP/1.1
Host: d330aiyvva2oww.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kind-babbage.34-134-130-193.plesk.page
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 43
date: Sun, 22 Jan 2023 12:41:05 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 08 Mar 2017 06:19:28 GMT
etag: "fb02f374b8f73825415db1bccd4bd76d"
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 42K9iOogipa97zWqlZuajAr1gjq-AY9En54BqkOiKJmLs7JrS63ffQ==
age: 69739
X-Firefox-Spdy: h2
bat.bing.com/p/action/5990948.js
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/5990948.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/5990948.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 705EC0B18E834C5CB0C7948A241EF071 Ref B: OSL30EDGE0407 Ref C: 2023-01-23T08:03:23Z
date: Mon, 23 Jan 2023 08:03:23 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bb5fac1f289cb91381d3d1a07094b179
df6f8fe7a21efb35290d24f2b8b0fe809cae8d33
34472778a647b2db33e669d8582b510d94d9e0d355d77c73d643b7495b0f6997
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 08:03:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash cc298ded3fc0f058105ddd7b442f5b55
38d43fe921b0b34e4a762598c3ad003956592c04
61a166c11ee3bc04f5be109d262b7f69525e428b1a85f68e00a58de4ff26b4c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 08:03:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/981785008/?random=1674461001483&cv=10&fst=1674460800000&fmt=3&bg=ffffff&guid=ON&u_w=1280&u_h=1024>m=3res1j0&url=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&tiba=Wise%20-%20Cr%C3%A9er%20un%20compte&is_vtc=1&random=67749175&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/981785008/?random=1674461001483&cv=10&fst=1674460800000&fmt=3&bg=ffffff&guid=ON&u_w=1280&u_h=1024>m=3res1j0&url=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&tiba=Wise%20-%20Cr%C3%A9er%20un%20compte&is_vtc=1&random=67749175&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/981785008/?random=1674461001483&cv=10&fst=1674460800000&fmt=3&bg=ffffff&guid=ON&u_w=1280&u_h=1024>m=3res1j0&url=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&tiba=Wise%20-%20Cr%C3%A9er%20un%20compte&is_vtc=1&random=67749175&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 23 Jan 2023 08:03:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
analytics.twitter.com/1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=5ac2470e-93a8-4687-b5ae-32995fe8b61e&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=5720d422-8fd4-4c9e-aa4f-049cbcdc0b58&tw_document_href=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&tw_iframe_status=0&txn_id=nuuhv&type=javascript&version=2.3.29
104.244.42.67200 OK 43 B URL HTTP/2 analytics.twitter.com/1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=5ac2470e-93a8-4687-b5ae-32995fe8b61e&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=5720d422-8fd4-4c9e-aa4f-049cbcdc0b58&tw_document_href=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&tw_iframe_status=0&txn_id=nuuhv&type=javascript&version=2.3.29
IP 104.244.42.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=5ac2470e-93a8-4687-b5ae-32995fe8b61e&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=5720d422-8fd4-4c9e-aa4f-049cbcdc0b58&tw_document_href=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&tw_iframe_status=0&txn_id=nuuhv&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 23 Jan 2023 08:03:22 GMT
perf: 7626143928
server: tsa_o
set-cookie: guest_id_marketing=v1%3A167446100328033115; Max-Age=63072000; Expires=Wed, 22 Jan 2025 08:03:23 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
guest_id_ads=v1%3A167446100328033115; Max-Age=63072000; Expires=Wed, 22 Jan 2025 08:03:23 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
personalization_id="v1_GOybo0vx3kFEVULhl1gGrQ=="; Max-Age=63072000; Expires=Wed, 22 Jan 2025 08:03:23 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
guest_id=v1%3A167446100328033115; Max-Age=63072000; Expires=Wed, 22 Jan 2025 08:03:23 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: c53ea151ec8b820d
strict-transport-security: max-age=631138519
x-response-time: 106
x-connection-hash: 6c60cdccb200f4a3884000404c542dc0b16d4f5ba3e7a3f8d9a082d3976b738a
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash cc298ded3fc0f058105ddd7b442f5b55
38d43fe921b0b34e4a762598c3ad003956592c04
61a166c11ee3bc04f5be109d262b7f69525e428b1a85f68e00a58de4ff26b4c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 08:03:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
am.yahoo.co.jp/rt/?p=FDGMU2R6G4&label=&ref=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&rref=&pt=&item=&cat=&price=&quantity=&r=1674461001.4400167&pvid=nr76rlj1grnld8iuhs4&tsyjad=0&_impl=ytag
182.22.31.124403 Forbidden 14 kB URL HTTP/2 am.yahoo.co.jp/rt/?p=FDGMU2R6G4&label=&ref=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&rref=&pt=&item=&cat=&price=&quantity=&r=1674461001.4400167&pvid=nr76rlj1grnld8iuhs4&tsyjad=0&_impl=ytag
IP 182.22.31.124:0
ASN #23816 Yahoo Japan Corporation
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (486)
Hash e986e7a04549f3bef16fe1bb24e61acd
b3ec35460824fae12cf6342ae42d27597ec94fb7
e8b72fe96bc96ffcfef2cdf8ebb503ac854e5c2997ae389b96d04bf78f478edd
GET /rt/?p=FDGMU2R6G4&label=&ref=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&rref=&pt=&item=&cat=&price=&quantity=&r=1674461001.4400167&pvid=nr76rlj1grnld8iuhs4&tsyjad=0&_impl=ytag HTTP/1.1
Host: am.yahoo.co.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
date: Mon, 23 Jan 2023 08:03:23 GMT
server: ATS
x-z-chihaya: r=1
x-frame-options: SAMEORIGIN
content-length: 14275
content-type: text/html
X-Firefox-Spdy: h2
d1lu3pmaz2ilpx.cloudfront.net/5a28e627?data=dmVyc2lvbj0xLjIuMTYmdG9rZW49MjYxM2ZlNGMtMTBkMy00NTUzLWI5MTYtZmJkMjdmNDYyNDIyJnNlc3Npb25JZD04ZjRjYzE5MS1kODAxLTZkYmEtNWZiNS1iMmY5ZDllNmY1MTkmY29va2llU3VwcG9ydD1QRVJTSVNUJmV2ZW50PXBhZ2V2aWV3JiUyNG9zPVdpbmRvd3MmJTI0Y3VycmVudFVybD1odHRwcyUzQSUyRiUyRmtpbmQtYmFiYmFnZS4zNC0xMzQtMTMwLTE5My5wbGVzay5wYWdlJTJGbnVtYmVyLnBocA%3D%3D&date=1674461001804
54.230.245.4200 OK 43 B URL HTTP/2 d1lu3pmaz2ilpx.cloudfront.net/5a28e627?data=dmVyc2lvbj0xLjIuMTYmdG9rZW49MjYxM2ZlNGMtMTBkMy00NTUzLWI5MTYtZmJkMjdmNDYyNDIyJnNlc3Npb25JZD04ZjRjYzE5MS1kODAxLTZkYmEtNWZiNS1iMmY5ZDllNmY1MTkmY29va2llU3VwcG9ydD1QRVJTSVNUJmV2ZW50PXBhZ2V2aWV3JiUyNG9zPVdpbmRvd3MmJTI0Y3VycmVudFVybD1odHRwcyUzQSUyRiUyRmtpbmQtYmFiYmFnZS4zNC0xMzQtMTMwLTE5My5wbGVzay5wYWdlJTJGbnVtYmVyLnBocA%3D%3D&date=1674461001804
IP 54.230.245.4:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb02f374b8f73825415db1bccd4bd76d
b103aa629cacdd90b39538a7561da7f8e49ad73f
caa849b179befa2645a8e2c474d2e82a76777a3305315ece911013e8ee9a916c
GET /5a28e627?data=dmVyc2lvbj0xLjIuMTYmdG9rZW49MjYxM2ZlNGMtMTBkMy00NTUzLWI5MTYtZmJkMjdmNDYyNDIyJnNlc3Npb25JZD04ZjRjYzE5MS1kODAxLTZkYmEtNWZiNS1iMmY5ZDllNmY1MTkmY29va2llU3VwcG9ydD1QRVJTSVNUJmV2ZW50PXBhZ2V2aWV3JiUyNG9zPVdpbmRvd3MmJTI0Y3VycmVudFVybD1odHRwcyUzQSUyRiUyRmtpbmQtYmFiYmFnZS4zNC0xMzQtMTMwLTE5My5wbGVzay5wYWdlJTJGbnVtYmVyLnBocA%3D%3D&date=1674461001804 HTTP/1.1
Host: d1lu3pmaz2ilpx.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kind-babbage.34-134-130-193.plesk.page
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 08 Mar 2017 06:19:28 GMT
accept-ranges: bytes
server: AmazonS3
date: Mon, 23 Jan 2023 08:03:24 GMT
etag: "fb02f374b8f73825415db1bccd4bd76d"
vary: Origin
x-cache: RefreshHit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ToJWA9hjaO9j0CSh0I4O3ODoiZMFURmO6bLW1-bujIASK9rgi0D1ZA==
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8324c00462218a4997ff7b300dd0314f
221f8d122822a09fc812d9cba7cf2cc419a87df3
7110351a1a2ca5ba720ef2be45611b755ee570b3f29374769c1431833c3dddb5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3688
Cache-Control: max-age=95719
Content-Type: application/ocsp-response
Date: Mon, 23 Jan 2023 08:03:26 GMT
Etag: "63cd03cd-1d7"
Expires: Tue, 24 Jan 2023 10:38:45 GMT
Last-Modified: Sun, 22 Jan 2023 09:37:17 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
api-js.mixpanel.com/track/?verbose=1&ip=1&_=1674461004760
35.186.241.51200 OK 25 B URL HTTP/2 api-js.mixpanel.com/track/?verbose=1&ip=1&_=1674461004760
IP 35.186.241.51:0
File type JSON data\012- , ASCII text, with no line terminators
Hash fa4859df2aaba80141861afa205fe74e
d486b5a249527d022cc009bdc9c197efb66f23a2
e39a8118ec6cdf6ac33e6961518e9fe6ba3f6caf099aeeaec1389c2108ba90ba
POST /track/?verbose=1&ip=1&_=1674461004760 HTTP/1.1
Host: api-js.mixpanel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 933
Origin: https://kind-babbage.34-134-130-193.plesk.page
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-headers: X-Requested-With
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: https://kind-babbage.34-134-130-193.plesk.page
access-control-expose-headers: X-MP-CE-Backoff
access-control-max-age: 1728000
cache-control: no-cache, no-store
content-type: application/json
strict-transport-security: max-age=604800; includeSubDomains
date: Mon, 23 Jan 2023 08:03:26 GMT
content-length: 25
x-envoy-upstream-service-time: 10
server: envoy
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
insight.adsrvr.org/track/up?adv=ay3869r&ref=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&upid=64p74hp&upv=1.1.0&td1=undefined
35.71.131.137302 Found 0 B URL HTTP/2 insight.adsrvr.org/track/up?adv=ay3869r&ref=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&upid=64p74hp&upv=1.1.0&td1=undefined
IP 35.71.131.137:0
GET /track/up?adv=ay3869r&ref=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&upid=64p74hp&upv=1.1.0&td1=undefined HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Mon, 23 Jan 2023 08:03:23 GMT
content-type: text/html; charset=utf-8
location: https://match.adsrvr.org/track/upb/?adv=ay3869r&ref=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&upid=64p74hp&upv=1.1.0&td1=undefined
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
set-cookie: TDID=13030506-7dce-4dbc-8ae1-4201da6b2d2f; domain=.adsrvr.org; expires=Tue, 23-Jan-2024 08:03:23 GMT; path=/; secure; SameSite=None
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/9457-713da65b9efee877.js
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/9457-713da65b9efee877.js
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/9457-713da65b9efee877.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:29 GMT
etag: W/"63cc823d-2a94"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/598878faba7ec6cf.css
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/598878faba7ec6cf.css
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
GET /number_files/598878faba7ec6cf.css HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: text/css
last-modified: Sun, 22 Jan 2023 00:24:22 GMT
etag: W/"63cc8236-a76b6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/8764-86ee4dec8701906d.js
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/8764-86ee4dec8701906d.js
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/8764-86ee4dec8701906d.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:28 GMT
etag: W/"63cc823c-5b29"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/196-2606fc14caeb4b1f.js
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/196-2606fc14caeb4b1f.js
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/196-2606fc14caeb4b1f.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:29 GMT
etag: W/"63cc823d-64ee"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/8356-6b661c16fbfec3b7.js
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/8356-6b661c16fbfec3b7.js
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/8356-6b661c16fbfec3b7.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:34 GMT
etag: W/"63cc8242-50aa"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/3082-dbdf1191dec845b5.js
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/3082-dbdf1191dec845b5.js
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/3082-dbdf1191dec845b5.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:29 GMT
etag: W/"63cc823d-4179"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/_buildManifest.js
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/_buildManifest.js
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/_buildManifest.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:38 GMT
etag: W/"63cc8246-1444"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number.php
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number.php
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number.php HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.27, PleskLin
content-encoding: br
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/cookie-consent.js
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/cookie-consent.js
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/cookie-consent.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:34 GMT
etag: W/"63cc8242-e61"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/7737-d16ae6e4c310ae75.js
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/7737-d16ae6e4c310ae75.js
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/7737-d16ae6e4c310ae75.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:35 GMT
etag: W/"63cc8243-3c04"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/4828-46625e06a3e78695.js
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/4828-46625e06a3e78695.js
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/4828-46625e06a3e78695.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:38 GMT
etag: W/"63cc8246-2c08"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/_ssgManifest.js
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/_ssgManifest.js
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/_ssgManifest.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
x-accel-version: 0.01
last-modified: Sun, 22 Jan 2023 00:24:32 GMT
etag: W/"4d-5f2cf4e77ecdd"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/framework-560765ab0625ba27.js
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/framework-560765ab0625ba27.js
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/framework-560765ab0625ba27.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:23 GMT
etag: W/"63cc8237-1fc09"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/0b8754db-df9233371ffa7faf.js
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/0b8754db-df9233371ffa7faf.js
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/0b8754db-df9233371ffa7faf.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:30 GMT
etag: W/"63cc823e-11a77"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/1902-059f8538c4f98340.js
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/1902-059f8538c4f98340.js
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/1902-059f8538c4f98340.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:32 GMT
etag: W/"63cc8240-b0be"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/8988-4aba5236a479a828.js
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/8988-4aba5236a479a828.js
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/8988-4aba5236a479a828.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:25 GMT
etag: W/"63cc8239-2b1d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/3577-9daebefa682437f9.js
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/3577-9daebefa682437f9.js
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/3577-9daebefa682437f9.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:36 GMT
etag: W/"63cc8244-1677a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/visit/pixel.png?url=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&referer=
34.134.130.193404 Not Found 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/visit/pixel.png?url=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&referer=
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
GET /visit/pixel.png?url=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&referer= HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Cookie: twCookieConsent=%7B%22policyId%22%3A%222020-01-31%22%2C%22expiry%22%3A1690185799824%2C%22isEu%22%3Afalse%2C%22status%22%3A%22accepted%22%7D; twCookieConsentGTM=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 23 Jan 2023 08:03:21 GMT
content-type: text/html
last-modified: Sun, 22 Jan 2023 00:23:08 GMT
etag: W/"328-5f2cf497d3766"
content-encoding: br
X-Firefox-Spdy: h2
trck.spoteffects.net/analytics/spef.min.js
40.119.158.131200 OK 0 B URL HTTP/2 trck.spoteffects.net/analytics/spef.min.js
IP 40.119.158.131:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /analytics/spef.min.js HTTP/1.1
Host: trck.spoteffects.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:21 GMT
content-type: application/javascript
last-modified: Mon, 04 Mar 2019 19:31:08 GMT
etag: W/"5c7d7cfc-1323e"
expires: Mon, 30 Jan 2023 08:03:21 GMT
pragma: public
cache-control: max-age=604800, public
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/1e4258512dbe74d5.css
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/1e4258512dbe74d5.css
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
GET /number_files/1e4258512dbe74d5.css HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: text/css
last-modified: Sun, 22 Jan 2023 00:24:37 GMT
etag: W/"63cc8245-38f0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/3539-8b91295a0cfbcf77.js
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/3539-8b91295a0cfbcf77.js
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/3539-8b91295a0cfbcf77.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:36 GMT
etag: W/"63cc8244-159a3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/5850-a73e7762143c3749.js
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/5850-a73e7762143c3749.js
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/5850-a73e7762143c3749.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:24 GMT
etag: W/"63cc8238-5126"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/1396-19989e6502118a1d.js
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/1396-19989e6502118a1d.js
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/1396-19989e6502118a1d.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:37 GMT
etag: W/"63cc8245-a4fb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/8305-c6649af178043a68.js
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/8305-c6649af178043a68.js
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/8305-c6649af178043a68.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:25 GMT
etag: W/"63cc8239-1d46c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/webpack-8cf5524520adc263.js
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/webpack-8cf5524520adc263.js
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/webpack-8cf5524520adc263.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:22 GMT
etag: W/"63cc8236-e98"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/main-e396138b3196d310.js
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/main-e396138b3196d310.js
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/main-e396138b3196d310.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:21 GMT
etag: W/"63cc8235-1873c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/a2c29f49-0269af3af011b2d0.js
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/a2c29f49-0269af3af011b2d0.js
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/a2c29f49-0269af3af011b2d0.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:35 GMT
etag: W/"63cc8243-2811c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/4513-9a085d34a421f8d0.js
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/4513-9a085d34a421f8d0.js
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/4513-9a085d34a421f8d0.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:39 GMT
etag: W/"63cc8247-165b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/9748-c43d79dac4f09cae.js
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/9748-c43d79dac4f09cae.js
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/9748-c43d79dac4f09cae.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:24 GMT
etag: W/"63cc8238-904a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
gtm.wise.com/g/collect?v=2&tid=G-MFT2R11DFX>m=2re1i0&_p=61750144&cid=1267389445.1674461000&ul=en-us&sr=1280x1024&_fplc=0&uaW=1&_s=1&sid=1674461000&sct=1&seg=0&dl=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&dt=Wise%20-%20Cr%C3%A9er%20un%20compte&en=page_view&_fv=1&_ss=1&ep.debug_mode=false&epn.event_time=1674461000&epn.event_time_ms=1674460999949&richsstsse
216.239.34.21200 OK 0 B URL HTTP/2 gtm.wise.com/g/collect?v=2&tid=G-MFT2R11DFX>m=2re1i0&_p=61750144&cid=1267389445.1674461000&ul=en-us&sr=1280x1024&_fplc=0&uaW=1&_s=1&sid=1674461000&sct=1&seg=0&dl=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&dt=Wise%20-%20Cr%C3%A9er%20un%20compte&en=page_view&_fv=1&_ss=1&ep.debug_mode=false&epn.event_time=1674461000&epn.event_time_ms=1674460999949&richsstsse
IP 216.239.34.21:0
GET /g/collect?v=2&tid=G-MFT2R11DFX>m=2re1i0&_p=61750144&cid=1267389445.1674461000&ul=en-us&sr=1280x1024&_fplc=0&uaW=1&_s=1&sid=1674461000&sct=1&seg=0&dl=https%3A%2F%2Fkind-babbage.34-134-130-193.plesk.page%2Fnumber.php&dt=Wise%20-%20Cr%C3%A9er%20un%20compte&en=page_view&_fv=1&_ss=1&ep.debug_mode=false&epn.event_time=1674461000&epn.event_time_ms=1674460999949&richsstsse HTTP/1.1
Host: gtm.wise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kind-babbage.34-134-130-193.plesk.page
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/
Cookie: __cf_bm=ejvCN2miQK.0a2LFOe.QMEOwtOEZXyt1YPEZnmfjygc-1674461001-0-AYr2vEYUtPeocHc1YdcxmW78GJQhyyWU/s0omyXen6AELWwiB3gHR6mT02mjg0vWVtl1QOBlCR7nNCFWq4qEqK/lrdUVAaLWhaGcd+D/SSft
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 23 Jan 2023 08:03:21 GMT
content-type: text/plain
vary: Accept-Encoding
set-cookie: FPLC=2%2Bcj5OZQJNtoT8kkWcxLeaKvproVK4b24lDfoFgF5CoI%2BGbdCU2n8hjMw%2BEIUSymq03RL0kFWtPuIV%2Bo%2FhSwAmPxBQPWcFN007G1ros7iL7BUml46XPRrRsUdGQvAA%3D%3D; Max-Age=72000; Domain=34-134-130-193.plesk.page; Path=/; Secure
FPID=FPID2.3.u3PI5ZG8At%2BBFXkW2IMwc0AANXJTeBPT53AtFNjvhoc%3D.1674461000; Max-Age=63072000; Domain=34-134-130-193.plesk.page; Path=/; Secure; HttpOnly
FPAU=1.3.875180506.1674461001; Max-Age=7776000; Domain=34-134-130-193.plesk.page; Path=/; Secure
cache-control: no-cache
x-content-type-options: nosniff
access-control-allow-origin: https://kind-babbage.34-134-130-193.plesk.page
access-control-allow-credentials: true
content-encoding: gzip
via: 1.1 google
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/_app-7df3282cca69b6f8.js
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/_app-7df3282cca69b6f8.js
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/_app-7df3282cca69b6f8.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:27 GMT
etag: W/"63cc823b-4437d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/5153-061f73cabbd90954.js
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/5153-061f73cabbd90954.js
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/5153-061f73cabbd90954.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:24 GMT
etag: W/"63cc8238-739c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
kind-babbage.34-134-130-193.plesk.page/number_files/7593-0ce715ca86ca1ed8.js
34.134.130.193200 OK 0 B URL HTTP/2 kind-babbage.34-134-130-193.plesk.page/number_files/7593-0ce715ca86ca1ed8.js
IP 34.134.130.193:0
Analyzer Verdict Alert openphish TransferWise
fortinet Phishing
GET /number_files/7593-0ce715ca86ca1ed8.js HTTP/1.1
Host: kind-babbage.34-134-130-193.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kind-babbage.34-134-130-193.plesk.page/number.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 23 Jan 2023 08:03:20 GMT
content-type: application/javascript
last-modified: Sun, 22 Jan 2023 00:24:27 GMT
etag: W/"63cc823b-bc88"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2