Report - ascendprimitiv.top/

Report Overview

Submitted URL
ascendprimitiv.top/
IP
172.67.187.55
ASN
#13335 CLOUDFLARENET
Submitted
2022-12-23 07:37:11
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-09T10:04:36Z	3.3 kB	56 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-09T05:09:18Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-09T05:09:49Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-09T05:09:48Z	333 B	391 B	34.117.237.239
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-09T11:52:10Z	341 B	796 B	93.184.220.29
ascendprimitiv.top	unknown	2022-08-09T04:48:23Z	2022-12-04T23:55:49Z	798 B	1.5 kB	104.21.64.178
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-09T05:09:05Z	1.7 kB	4.4 kB	23.36.76.226
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-09T05:09:13Z	606 B	127 B	52.38.227.80
static.mercdn.net	197302	2019-03-06T15:38:16Z	2023-03-09T05:37:35Z	7.0 kB	1.5 MB	199.232.214.131

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2022-12-23 07:36:58	medium	Client IP	Internal IP	ET DNS Query to a *.top domain - Likely Hostile
2022-12-23 07:36:58	medium	Client IP	104.21.64.178	ET INFO HTTP Request to a *.top domain

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-23	medium	ascendprimitiv.top/	Malware
2022-12-23	medium	ascendprimitiv.top/	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (3)

	URL	Size	First Seen	Last Seen
	ascendprimitiv.top/includes/templates/1122-2/jscript/swiper.min.js	96 kB	2023-03-07	2024-03-19
Pretty URL ascendprimitiv.top/includes/templates/1122-2/jscript/swiper.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:24 Last Seen2024-03-19 11:27:32 Times Seen332 Hash 3acf25606abe3c349e7e41b618c07fe4 aaccafc1c740afd9344d953d3fb5375ca42a6cfb a7fd70819f091355af52f81c8b2669908b381d8d171a9f579e004dcea8f92358 Loading...

	ascendprimitiv.top/	683 B	2023-03-07	2023-04-05
Pretty URL ascendprimitiv.top/ IP 104.21.64.178 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:24 Last Seen2023-04-05 02:10:45 Times Seen124 Hash 31c9849173e3bdef39beca4fcdb4c4c4 58fb47482c59983941cf52598d83a9d54ddecc03 fb947a07fadcc619d6a8341ef9d42d5c4e454f8f563cb4373f5a4db54fa019ca Loading...

	ascendprimitiv.top/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	1.2 kB	2023-03-07	2024-04-26
Pretty URL ascendprimitiv.top/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-26 09:02:49 Times Seen55025 Hash 9e8f56e8e1806253ba01a95cfc3d392c a8af90d7482e1e99d03de6bf88fed2315c5dd728 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8 Loading...

HTTP Transactions (35)

URL IP Response Size

ascendprimitiv.top/

104.21.64.178

301 Moved Permanently

0 B

URL HTTP/1.1
ascendprimitiv.top/
IP
104.21.64.178:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

NIDS	Severity	Alert
suricata	medium	ET INFO HTTP Request to a *.top domain

HTTP Headers

GET / HTTP/1.1
Host: ascendprimitiv.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Fri, 23 Dec 2022 07:36:59 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 23 Dec 2022 08:36:59 GMT
Location: https://ascendprimitiv.top/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3asA2xLZemgJ3j24mx9wnqRygNbfCOGKH2y9toFVWNpV%2BkvDFMTZlpwllahUhRbBx3qtktYciCXl0jzkSVUrgUhYsG4%2FVg25JhyXZMo4rLc502tVi5XcorFCQBKi6T4iv6bCkWU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77df6deecaadb505-OSL
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d6a971d765338f107fe9d2c67fa4bbdf
a72bdf191446a37fa0420cc9d7c087aaff757cd6
dc5291c136b0b81621a02679a31f6b7c852e2803429d54c2a9afcc8edf031328

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DC5291C136B0B81621A02679A31F6B7C852E2803429D54C2A9AFCC8EDF031328"
Last-Modified: Thu, 22 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4117
Expires: Fri, 23 Dec 2022 08:45:37 GMT
Date: Fri, 23 Dec 2022 07:37:00 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7e300ca7d2d586dd1ca0c185ef6b0da5
3914cfd3b7aa6e1d1117bf509319479e489ed2a4
91c8810ad137faf4393f7d15f9c619c06d124a7aaebfa21290dca614db2c7757

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "91C8810AD137FAF4393F7D15F9C619C06D124A7AAEBFA21290DCA614DB2C7757"
Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7200
Expires: Fri, 23 Dec 2022 09:37:00 GMT
Date: Fri, 23 Dec 2022 07:37:00 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 23 Dec 2022 06:46:05 GMT
content-type: application/json
age: 3055
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
32167242c3bbe7e45a2a865279df94a6
d03436f418ff77d50a553daa892c05e0725ba908
d5578d537296da18f3f349a98465e9fe930dca60a8ed62c183e9c9f6eb53f493

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D5578D537296DA18F3F349A98465E9FE930DCA60A8ED62C183E9C9F6EB53F493"
Last-Modified: Wed, 21 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7463
Expires: Fri, 23 Dec 2022 09:41:23 GMT
Date: Fri, 23 Dec 2022 07:37:00 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: Xa7KXPVUFNsITI1qQO5ofr7LckLhlOxSyMtMP9E5szWjTcnZ7YpZO4HQpK5zkhRpUt56sNgIxNk=
x-amz-request-id: 1ETZNPV97801WSXE
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 23 Dec 2022 06:56:05 GMT
age: 2455
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 23 Dec 2022 07:37:00 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Last-Modified, Retry-After, Content-Type, Alert, Pragma, ETag, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 23 Dec 2022 07:08:02 GMT
age: 1738
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
70a7b165f99b2b8fa0dc98318a7158d7
4d924f7febab9c8fe3fe9199e8879fd6ad892575
c5e0e414c34f2f328b487ae72b21a12a1b50d952aa1a31fb6314b4e700d27e05

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5640
Cache-Control: max-age=97430
Content-Type: application/ocsp-response
Date: Fri, 23 Dec 2022 07:37:00 GMT
Etag: "63a41e2a-1d7"
Expires: Sat, 24 Dec 2022 10:40:50 GMT
Last-Modified: Thu, 22 Dec 2022 09:06:50 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

52.38.227.80

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.38.227.80:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: kcurNRn+i8Gf5YrYaQhOjQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: GGeuTYVEP4bexnvAAi1fClU8ZHw=

static.mercdn.net/item/detail/orig/photos/m94415763058_1.jpg?1638870737

199.232.214.131

200 OK

41 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m94415763058_1.jpg?1638870737
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x766, components 3\012- data
Size
41 kB (41304 bytes)
Hash
19de35991b0f246851c7f3312d531d82
d3b53633a0dd7f3070102b369f0dfc18e695ecc2
f9fe24ff545d0100bb66e49da4533ecdb19e5dbd90f1481e130a567119618999

HTTP Headers

GET /item/detail/orig/photos/m94415763058_1.jpg?1638870737 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ascendprimitiv.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EKf9ylIsvJUl0i6vYSIAAAAiMTQ4NTRiNTViNjNiYmYxNzRhNWQzYmU4MDI4M2M1N2Qi"
last-modified: Tue, 07 Dec 2021 09:52:18 GMT
x-amz-id-2: TzM76F4xtdVw5dOamZOO6HqWb1p9rHEwWFGgjzcuyHhkqYzPr1msZE3ILsINb3UFEvcvJ1Lox5c=
x-amz-request-id: AGBGXC41PDK4ZYGN
x-amz-version-id: S_ON.JC_dZLB_tYw_X0Svj3.KYfDZUAh
via: http/1.1 rear.sv124 (ATS [cMsSfW]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 23 Dec 2022 07:37:01 GMT
age: 6255909
x-served-by: cache-tyo11969-TYO, cache-bma1671-BMA
x-cache: HIT, HIT
x-cache-hits: 178, 1
x-timer: S1671781022.741859,VS0,VE1
access-control-allow-origin: *
content-length: 41304
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m86550960444_1.jpg?1639662405

199.232.214.131

200 OK

56 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m86550960444_1.jpg?1639662405
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 720x720, components 3\012- data
Size
56 kB (56288 bytes)
Hash
bb66308a5e0648187da8bc9012afa9b5
f58f19d43b952ed726f02d1b65cc85111c932821
8c7d0b31e413e5277d7ba0cf18b579bf2f19fa3a39fe6e380a9cb3b30c9c21ce

HTTP Headers

GET /item/detail/orig/photos/m86550960444_1.jpg?1639662405 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ascendprimitiv.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EAcSEScz_vt2RkO7YSIAAAAiOWI1NTEzYTZjNWRhY2ZhYmQ3YjFiMDYwZDdmZTAwMGMi"
last-modified: Thu, 16 Dec 2021 13:46:46 GMT
x-amz-id-2: 8zUkGXU8+GljjQcZoNATiJUJCNjJA/j7PFVtL1Jz/x1Q8ao2TcEm7D5nm7H6Qhrus46iPiuQQLc=
x-amz-request-id: WW6X4R9EJ145GKXB
x-amz-version-id: hpIvMubB5QZCvb9SP3i0BYdXpWczNnLI
via: http/1.1 rear.sv120 (ATS [cMsSfW]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 23 Dec 2022 07:37:01 GMT
age: 3304649
x-served-by: cache-tyo11951-TYO, cache-bma1671-BMA
x-cache: HIT, HIT
x-cache-hits: 79, 1
x-timer: S1671781022.742449,VS0,VE1
access-control-allow-origin: *
content-length: 56288
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m13000616596_1.jpg?1635036642

199.232.214.131

200 OK

64 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m13000616596_1.jpg?1635036642
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size
64 kB (64024 bytes)
Hash
26f9783ffb564f32e4fba8ad398f9669
99a21822bd2df62fb6495136a119cd1ff47ebf2d
27acbad360e7108e02797e951f9bd41fd318fad1a1ff4f1797050f517aeb632c

HTTP Headers

GET /item/detail/orig/photos/m13000616596_1.jpg?1635036642 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ascendprimitiv.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EC1scG9c6FAI4610YSIAAAAiNzQ2NmJjNTVjMDg3MzdlMGQ4ZjVkNTg2ZTUxYzcwNGMi"
last-modified: Sun, 24 Oct 2021 00:50:43 GMT
x-amz-id-2: Nam/D45Veyxr7umxLItNKcFoApjYiQNQ1u8aKS5cCzoUfoDYcNx2K4NwhXOBVvSW8RM6q7aU85U=
x-amz-request-id: 30750BS0SWDD9EE3
x-amz-version-id: mXiB1.rn0_5WeycBlwfcKbcSfRPDGc09
via: http/1.1 rear.sv125 (ATS [cHs f ]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 23 Dec 2022 07:37:01 GMT
age: 4194807
x-served-by: cache-tyo11960-TYO, cache-bma1671-BMA
x-cache: HIT, HIT
x-cache-hits: 86, 1
x-timer: S1671781022.747263,VS0,VE1
access-control-allow-origin: *
content-length: 64024
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m76945662561_1.jpg?1640827822

199.232.214.131

200 OK

162 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m76945662561_1.jpg?1640827822
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size
162 kB (162085 bytes)
Hash
7e2c37bcc9a092a35ceb561dbbf70acb
9d7483e88b8c1439859ac2755cf1aaf624fcfc94
1ec7bc368a31408d4430e8bc67fd698dfd156819d461571f71d195cb607d321d

HTTP Headers

GET /item/detail/orig/photos/m76945662561_1.jpg?1640827822 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ascendprimitiv.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EFxDCC3AEcWGrwvNYSIAAAAiYTdhNDNlMjlkZGE3YTk2ZjBmNjY0ODdlODU5ZTBkOTYi"
last-modified: Thu, 30 Dec 2021 01:30:23 GMT
x-amz-id-2: zwV4+Mc2sGATdhiEcd0ArrxY8XVpiIPxVI2D7U9NcPBU4ZhSQUrqYYufRrK8fwLSpSTX0ENK3bA=
x-amz-request-id: 85QXQS4VRM3DWH40
x-amz-version-id: q2S1BXdi1BZjeG0sD5cyg.lvSM5klzfw
via: http/1.1 rear.sv107 (ATS [cMsSfW]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 23 Dec 2022 07:37:01 GMT
age: 3926445
x-served-by: cache-tyo11941-TYO, cache-bma1671-BMA
x-cache: HIT, HIT
x-cache-hits: 310, 1
x-timer: S1671781022.744428,VS0,VE1
access-control-allow-origin: *
content-length: 162085
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m45883550289_1.jpg?1642070140

199.232.214.131

200 OK

70 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m45883550289_1.jpg?1642070140
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 540x720, components 3\012- data
Size
70 kB (70513 bytes)
Hash
00d142c434eb87520e0c83a1de6ed94e
72e8cb8d1293944fd97e4a04fea0c7adad2f5c51
8c01c71305ca3adaa850d9353498f9a9a21bf18acf8fc54deab878a1c5b2d27f

HTTP Headers

GET /item/detail/orig/photos/m45883550289_1.jpg?1642070140 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ascendprimitiv.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EA2XDt-k6MjDfQDgYSIAAAAiMGQ5ODFiMTBjMjI5NjMwZTZjNTRhNDdkMDRmYjkzYWIi"
last-modified: Thu, 13 Jan 2022 10:35:41 GMT
x-amz-id-2: kMcrY/EU6XmunxNrMA2eb8epD/OQq0bdwHXanEiHuW58godONs4AzWpHQRWRmsc2LK9HTmDye7M=
x-amz-request-id: QA1KX8KM6YY30ED3
x-amz-version-id: tvHhzqSIvK77xO5M_qZ5wP0YexzoRUan
via: http/1.1 rear.sv118 (ATS [cMsSfW]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 23 Dec 2022 07:37:01 GMT
age: 128818
x-served-by: cache-tyo11947-TYO, cache-bma1671-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1671781022.747317,VS0,VE5
access-control-allow-origin: *
content-length: 70513
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m19856559626_1.jpg?1637217068

199.232.214.131

200 OK

131 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m19856559626_1.jpg?1637217068
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size
131 kB (131128 bytes)
Hash
f3016c6c052b5bfc4039aab55032d660
dc55dfc008a3c13327838f48601c16cbf5132660
54653e092eed3e776c3d9ef89c040fec332773f6fb947d7f5351668946118690

HTTP Headers

GET /item/detail/orig/photos/m19856559626_1.jpg?1637217068 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ascendprimitiv.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"ELtPGiP9OZMALfOVYSIAAAAiZWVlODg5NTQ5ZjI2YjllYWM3ZTRhZDExZGZjNzU4ZjAi"
last-modified: Thu, 18 Nov 2021 06:31:09 GMT
x-amz-id-2: P5EUMJUcTHkCPEtn4bXa/IPM0WVrxo7dGGvmA7AHfX/QgahSn9UVZWyNTMHDdYidIWjqeQnATqY=
x-amz-request-id: B8JS2TPWB917TEMA
x-amz-version-id: 6Tgf4c_X3vN6JzybrLDY4ufpmMybe7UO
via: http/1.1 rear.sv114 (ATS [cMsSfW]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 23 Dec 2022 07:37:01 GMT
age: 4513180
x-served-by: cache-tyo11932-TYO, cache-bma1671-BMA
x-cache: HIT, HIT
x-cache-hits: 121, 1
x-timer: S1671781022.742120,VS0,VE12
access-control-allow-origin: *
content-length: 131128
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m89925540417_1.jpg?1644881586

199.232.214.131

200 OK

160 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m89925540417_1.jpg?1644881586
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 810x1080, components 3\012- data
Size
160 kB (159968 bytes)
Hash
1504a449b66b3133fce219ce7920e56f
542523a1cd5bf2d7cb362ed4cef762a2ae66ae2d
8a1433ee7ac077fb48eb9af2a1b065119adad2c05bf6c739e8ddf635bea89ca1

HTTP Headers

GET /item/detail/orig/photos/m89925540417_1.jpg?1644881586 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ascendprimitiv.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EA8Iy1Q_RJXIs-YKYiIAAAAiNWU1ZjAxNWIxZTZlZjgzNzcwZjljMDY5ZjE1MmJlZDEi"
last-modified: Mon, 14 Feb 2022 23:33:07 GMT
x-amz-id-2: /DTg0xqQsuJLzHONzThJS2W7QX4T8k3mz2Nq3KJSVKxuwVnFIWg5NhLbeP2gTr3Lfmg4+vu4Yw8=
x-amz-request-id: WGXHA8KCQ2TH3PXM
x-amz-version-id: il5fqornnxgu0gaRGcAcCK8StBUxtaDu
via: http/1.1 rear.sv108 (ATS [cMsSfW]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 23 Dec 2022 07:37:01 GMT
age: 268362
x-served-by: cache-tyo11945-TYO, cache-bma1671-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 1
x-timer: S1671781022.747283,VS0,VE4
access-control-allow-origin: *
content-length: 159968
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m83409083567_1.jpg?1642420507

199.232.214.131

200 OK

132 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m83409083567_1.jpg?1642420507
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 834x1080, components 3\012- data
Size
132 kB (131614 bytes)
Hash
a8d8bba59ffdd3057aed0c33ce515594
7fe947de1aadb4b8fdeef98d9f5a6a30ef2370dd
42395c48d4e76a6e0140e90fb35ed91e84a1285ee16d7929893b5ffc93272781

HTTP Headers

GET /item/detail/orig/photos/m83409083567_1.jpg?1642420507 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ascendprimitiv.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EGYRePazAF-NHFnlYSIAAAAiMjVlYTcxNTA5NTQxZjUzY2RlMWMzMDEzYTRkYWQ3MmUi"
last-modified: Mon, 17 Jan 2022 11:55:08 GMT
x-amz-id-2: TLwbBmFMWyCM7IUPHPaBCJg0koHnaT+0qGYl9m2UPtH631gfHPlLGDcRkB/27Mj6NJ+IwKgLjyk=
x-amz-request-id: 6ZE89WTNA0RX4TKK
x-amz-version-id: p0mzek4qd6g1wlJUUpRtrQaRq8hd_z8t
via: http/1.1 rear.sv125 (ATS [cHs f ]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 23 Dec 2022 07:37:02 GMT
age: 357444
x-served-by: cache-tyo11964-TYO, cache-bma1671-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1671781022.749456,VS0,VE254
access-control-allow-origin: *
content-length: 131614
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m98637132575_1.jpg?1640815548

199.232.214.131

200 OK

68 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m98637132575_1.jpg?1640815548
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 700x700, components 3\012- data
Size
68 kB (68263 bytes)
Hash
bbaa252a2065819c94b6c97f4120e9ef
16d526f14d54d6690e625eee5eaefe3596feacba
da462c9e0ac3c417be2488f894a6b6d240fc26c5c8274430a0c6724c4bce4d0f

HTTP Headers

GET /item/detail/orig/photos/m98637132575_1.jpg?1640815548 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ascendprimitiv.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EE2Mx1IVb8B9vdvMYSIAAAAiNGI5Njg3ODY2MzhmNTk4MWU2ZGU3YTQ1MGRmYzJiYWUi"
last-modified: Wed, 29 Dec 2021 22:05:49 GMT
x-amz-id-2: Ur+1Rt0NwjfJmawGp7e0TIl7LMk6xapy/8imp2NestXON2lM6jqY96Aed9WDWiwMUW0R/rbRwjo=
x-amz-request-id: MF96P88V29NPHRKH
x-amz-version-id: ZWXFkB8sLlhlbTQegyhSLMSxKSlFhDXG
via: http/1.1 rear.sv128 (ATS [cHs f ]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 23 Dec 2022 07:37:02 GMT
age: 956451
x-served-by: cache-tyo11929-TYO, cache-bma1671-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1671781022.749185,VS0,VE263
access-control-allow-origin: *
content-length: 68263
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m82045479053_1.jpg?1645093919

199.232.214.131

200 OK

141 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m82045479053_1.jpg?1645093919
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size
141 kB (140700 bytes)
Hash
50c7e2cdb27484a4eda5b50c9000a41f
379e9d3df554a11d1b8854b9a004ae9357d18f72
deb8f6ec046d67ccc0589b6d09fed7ca9ce7258932159238d5e6a43c1960f50c

HTTP Headers

GET /item/detail/orig/photos/m82045479053_1.jpg?1645093919 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ascendprimitiv.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EHrgfZabpeh_ICQOYiIAAAAiZTM2OGZjMjEwZWZjZTczYzMxNzgyOTNjOThjODViYjUi"
last-modified: Thu, 17 Feb 2022 10:32:00 GMT
x-amz-id-2: SyGon1ckiNIkKsYNtltzmUy4vR8lwlMZz1WbMV4cmf+zLgQiJz3s7GQxj3nDWCagLeia5vuTc9Y=
x-amz-request-id: HKCJ4DXXWNT0B2F6
x-amz-version-id: f6Eu9g648TQSo5NzRp3L.my.rORXXQp2
via: http/1.1 rear.sv115 (ATS [cHs f ]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 23 Dec 2022 07:37:02 GMT
age: 2878422
x-served-by: cache-tyo11966-TYO, cache-bma1671-BMA
x-cache: HIT, MISS
x-cache-hits: 7, 0
x-timer: S1671781022.741681,VS0,VE272
access-control-allow-origin: *
content-length: 140700
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m88343019638_1.jpg?1637898210

199.232.214.131

200 OK

74 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m88343019638_1.jpg?1637898210
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 720x720, components 3\012- data
Size
74 kB (73597 bytes)
Hash
d6338dec83e507e0363b1da84ba7640c
9a00d8be73df02ced541901c0de21552aa868484
2a1f2bf2b3f563711c3c23469b56bfe514df66ee6ce0fbbeef983db1b29f1447

HTTP Headers

GET /item/detail/orig/photos/m88343019638_1.jpg?1637898210 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ascendprimitiv.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EFxtl2jH8AQR41egYSIAAAAiMGI3Njc4NzIzNjgzNmU1ZWM3ZjhhYzMwYmI4MjI3NTYi"
last-modified: Fri, 26 Nov 2021 03:43:31 GMT
x-amz-id-2: p2QLnXr5BsatAiRPbUgXpjghLb0IH5XoBLQckTdtv7QNjeSRWb6LWVlZ++UaBHr4bkCBnVyJI8E=
x-amz-request-id: CE9HXA2YM7PCK2XG
x-amz-version-id: H508AiqozHJzQvhMBZDFECUCLf7fD_RS
via: http/1.1 rear.sv123 (ATS [cHs f ]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 23 Dec 2022 07:37:02 GMT
age: 922504
x-served-by: cache-tyo11972-TYO, cache-bma1671-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1671781022.748998,VS0,VE268
access-control-allow-origin: *
content-length: 73597
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m76299225863_1.jpg?1638935480

199.232.214.131

200 OK

244 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m76299225863_1.jpg?1638935480
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data
Size
244 kB (243579 bytes)
Hash
f0a72fe820817a759f5a669e78a85ffa
52e4a405d31d942b6cb18c3d610a31a56ed47c87
5691a8e5a81f400677bee35bcfb3d3975bdba9a483b0d59211a9d1aeb4ce87ff

HTTP Headers

GET /item/detail/orig/photos/m76299225863_1.jpg?1638935480 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ascendprimitiv.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EIWExcwUXAEnIp1SYiIAAAAiMTllNGU1N2JhNjhlMzcxNDY2ZDNlMjI3NzQ3MDk4YTgi"
last-modified: Sun, 10 Apr 2022 09:02:26 GMT
x-amz-id-2: 6NditNm86DCqje+x2LqnVSbNOBo4UYjqEuoksmy5VKrHogTU5nQ5+oHMnRQpYazLFCbiswpYJR8=
x-amz-request-id: 6JB71N4YQZ8P1836
x-amz-version-id: imoGBbOFKkciz.FsljKSdoAH3VxdQokz
via: http/1.1 rear.sv118 (ATS [cMsSfW]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 23 Dec 2022 07:37:02 GMT
age: 1501190
x-served-by: cache-tyo11948-TYO, cache-bma1671-BMA
x-cache: HIT, MISS
x-cache-hits: 100, 0
x-timer: S1671781022.742260,VS0,VE289
access-control-allow-origin: *
content-length: 243579
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m75222667099_1.jpg?1637394411

199.232.214.131

200 OK

39 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m75222667099_1.jpg?1637394411
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 720x714, components 3\012- data
Size
39 kB (39050 bytes)
Hash
ca5c1c7387d60bdfa56e064f419a61d6
55e2746eeb06caea218d96c259a3644179eac13a
1044b6b7e3837bcc243146f59fc64b1befbea3f0ac15e9c2cb73ddf93667447f

HTTP Headers

GET /item/detail/orig/photos/m75222667099_1.jpg?1637394411 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ascendprimitiv.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EBhAGJ6vJkFb7KeYYSIAAAAiNDE0ZTE4YmQ3Zjc0ZTA2ODBkMzYwNWIwMjUzNDA0Yzgi"
last-modified: Sat, 20 Nov 2021 07:46:52 GMT
x-amz-id-2: Agrnkqq10vSHrCdBXa6zk15Qz86qL9e5xtBoxiV96eH7JzY+1A2X8cbA0epfKSGggI8Mr1r7duQ=
x-amz-request-id: T1NEVHYR5BZ700DE
x-amz-version-id: J2Zz_NEfcYm2zbDF9jQ4enx.CQkvQ2wY
via: http/1.1 rear.sv124 (ATS [cMsSfW]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 23 Dec 2022 07:37:02 GMT
age: 0
x-served-by: cache-tyo11933-TYO, cache-bma1671-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1671781022.741042,VS0,VE325
access-control-allow-origin: *
content-length: 39050
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m53814437605_1.jpg?1638168747

199.232.214.131

200 OK

46 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m53814437605_1.jpg?1638168747
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 540x720, components 3\012- data
Size
46 kB (45952 bytes)
Hash
1c57de9c6249410ce0a1277dc1c76f4b
1f7514de125f4216fce6daa18e59f788d4cba4f1
6042d8584577f3e15d9fc7f09967a1ba792c0f519fae96a60c3ef73f7ce81481

HTTP Headers

GET /item/detail/orig/photos/m53814437605_1.jpg?1638168747 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ascendprimitiv.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EO3_nIhR-mcQrHikYSIAAAAiZGE2OWQ0OTlhMzhkMzUzOTAzODA2MTllZTcwMzYyM2Ui"
last-modified: Mon, 29 Nov 2021 06:52:28 GMT
x-amz-id-2: MSbb0imk7RUMRtIPWS+yagOWAbKeDN5t+InDnrDH0/ze+mhMdUyOkG9CCpwvLonncD6nE3VVVug=
x-amz-request-id: DTC6NBY4NC13B5RJ
x-amz-version-id: PLzNijI1TKLDAMZUMGMPZ333RtQ7NZ5_
via: http/1.1 rear.sv120 (ATS [cHs f ]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 23 Dec 2022 07:37:02 GMT
age: 2579540
x-served-by: cache-tyo11922-TYO, cache-bma1671-BMA
x-cache: HIT, MISS
x-cache-hits: 9, 0
x-timer: S1671781022.749009,VS0,VE318
access-control-allow-origin: *
content-length: 45952
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m86992981369_1.jpg?1632670057

199.232.214.131

200 OK

38 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m86992981369_1.jpg?1632670057
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 720x708, components 3\012- data
Size
38 kB (38001 bytes)
Hash
3df8ccc04cf2d4d35a9e6b5eee92cee8
2273cd8b9e017d556b62832561656adec7b10573
662ee9e2bd1318c661f488e8ed31c4ef8a07394a66657ca896aec980f6e78e72

HTTP Headers

GET /item/detail/orig/photos/m86992981369_1.jpg?1632670057 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ascendprimitiv.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"ELSE5AkHa7l6apFQYSIAAAAiOGRiNTU3Yjg3NTlhOWNmNTVkYmFmYzgzNTBmMWI2Zjgi"
last-modified: Sun, 26 Sep 2021 15:27:38 GMT
x-amz-id-2: A/qEiWC0ISdtSk4OuSrLAvE8arwgQaCoXKnYOXPs6iBYKEUqsmcELuNEr7UQyggPXc0xsv2pric=
x-amz-request-id: 9PCM60DG71FCNEJW
x-amz-version-id: GUkayt0K.zaG6hqT_zs01BfVcD79yMMT
via: http/1.1 rear.sv125 (ATS [cHs f ]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 23 Dec 2022 07:37:02 GMT
age: 2410250
x-served-by: cache-tyo11972-TYO, cache-bma1671-BMA
x-cache: HIT, MISS
x-cache-hits: 4, 0
x-timer: S1671781022.749649,VS0,VE322
access-control-allow-origin: *
content-length: 38001
X-Firefox-Spdy: h2

static.mercdn.net/item/detail/orig/photos/m37895212753_1.jpg?1641695073

199.232.214.131

200 OK

67 kB

URL HTTP/2
static.mercdn.net/item/detail/orig/photos/m37895212753_1.jpg?1641695073
IP
199.232.214.131:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 720x720, components 3\012- data
Size
67 kB (67186 bytes)
Hash
94eec370a26ff5bfb39ae16e3954dfce
5d586b5b3317093d71ccd18ec5d474b2eba5d28e
ea28a6372678c6470bcaef804673c9b55f6d6422c2ef67ffc4131e992be587b2

HTTP Headers

GET /item/detail/orig/photos/m37895212753_1.jpg?1641695073 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ascendprimitiv.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EOHT5I8uCxp9YkfaYSIAAAAiZDE4YmFkZjgxYzQxYjkzN2ViNjZkMjU4NGU1MDRjNmYi"
last-modified: Sun, 09 Jan 2022 02:24:34 GMT
x-amz-id-2: RI8kHXhSz13NTFAw8zJFvqg3Qt59GAM7aNKIM8mhwUt6SjAd84MCBksfDf51YAO5tZHPZ55QeK8=
x-amz-request-id: T1N3FP0FG55VJ427
x-amz-version-id: GSXQEpuZdu8Ms4RWiYV_PXgWe9q0U8NX
via: http/1.1 rear.sv125 (ATS [cMsSfW]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Fri, 23 Dec 2022 07:37:02 GMT
age: 0
x-served-by: cache-tyo11962-TYO, cache-bma1671-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1671781022.741483,VS0,VE343
access-control-allow-origin: *
content-length: 67186
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6ce699bd0db3ee9d3a4ef6dcf941f9f1
14d813942d74d801024c42e2a4628ecd9306d2ad
060de67922db1f612b7f4c173f11e8714c8329d20fbec45a421bcefe7451f388

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060DE67922DB1F612B7F4C173F11E8714C8329D20FBEC45A421BCEFE7451F388"
Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9404
Expires: Fri, 23 Dec 2022 10:13:46 GMT
Date: Fri, 23 Dec 2022 07:37:02 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6ce699bd0db3ee9d3a4ef6dcf941f9f1
14d813942d74d801024c42e2a4628ecd9306d2ad
060de67922db1f612b7f4c173f11e8714c8329d20fbec45a421bcefe7451f388

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060DE67922DB1F612B7F4C173F11E8714C8329D20FBEC45A421BCEFE7451F388"
Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9404
Expires: Fri, 23 Dec 2022 10:13:46 GMT
Date: Fri, 23 Dec 2022 07:37:02 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F580b4499-2ffd-427f-93ed-4c39a78dd125.jpeg

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F580b4499-2ffd-427f-93ed-4c39a78dd125.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12794 bytes)
Hash
7ee73339f3e7eaeb4c1ecab1a24632a8
48ff42e4329102d6a006b8f947bfaf29c0a5de17
ae5787d0df124d7d95ccaaf58148bb46c931610ca908cd58787748da5b75a1c0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F580b4499-2ffd-427f-93ed-4c39a78dd125.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12794
x-amzn-requestid: 82617475-f461-429b-b38d-0c84eee33754
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dk55IGPioAMFi1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a509d3-0dfc997d3853974a08914362;Sampled=0
x-amzn-remapped-date: Fri, 23 Dec 2022 01:52:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: -24dBoLhaZcF6kjZCYp8EJSAYmslMmv15G3oPgPAydPxVA0j51Vs3w==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Dec 2022 01:52:20 GMT
age: 20682
etag: "48ff42e4329102d6a006b8f947bfaf29c0a5de17"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bd09861-a6e6-4462-b7cf-0572eabdfd71.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.1 kB (7117 bytes)
Hash
61b1b9ece5581fe0b212144f45243f1a
d161c613f1491ae6ab63b536c50c6630e80d6382
f5a2b23b66a05734b86755986573c07c5f75bc6cbe67d2b769aee9ef402b2c14

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bd09861-a6e6-4462-b7cf-0572eabdfd71.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 7117
x-amzn-requestid: 470b959f-7f5f-4a64-8d8d-bfc91856fad2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dUnBBFhZIAMFhiQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e8539-3916bad034c86d5503e456f2;Sampled=0
x-amzn-remapped-date: Sun, 18 Dec 2022 03:12:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UIB-d7y4AawAml6oXhsAeoIud_U-fhQzha7VwRqY9AgNaYtJ49nlzg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Dec 2022 05:06:41 GMT
age: 9021
etag: "d161c613f1491ae6ab63b536c50c6630e80d6382"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a06f1b4-7136-4077-b835-37444f8dfbc2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.8 kB (8838 bytes)
Hash
88dede3fbbab789a953b46f7abd99bec
fdd5a2c09ec16ffccd33bde9f503171607b65653
a45d65e7e99c7eca94d2ded3741d1823a8ff1358065021e837b65247fd0e96ce

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a06f1b4-7136-4077-b835-37444f8dfbc2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 8838
x-amzn-requestid: 0dc7c87e-41a8-4bb9-94d3-fe58274100c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dkUhqFaxoAMFk-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a4ce0a-58fd6c175081eb4b11663189;Sampled=0
x-amzn-remapped-date: Thu, 22 Dec 2022 21:37:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: iI3L3JYjnY8hPns-f2AQwmQTZgsnPsLUFHPF4GyNC0D-JdYWsdCm1A==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Dec 2022 21:49:55 GMT
age: 35227
etag: "fdd5a2c09ec16ffccd33bde9f503171607b65653"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e289df1-a1b6-4a7a-a3f0-0326ee48b354.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.6 kB (8628 bytes)
Hash
ada16d13af9310487aee9dae29df40fd
fcecaab531e403f8d5912cf29d977e549f96765b
66b7f13460489f1cd5f09b44cebadcf2f459b46aa6ff0c984c10fe0a48062942

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e289df1-a1b6-4a7a-a3f0-0326ee48b354.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 8628
x-amzn-requestid: bf74fd40-dfac-4565-8e8d-a79bdaf4e1ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dVJpaHvTIAMF9ZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639ebca2-29fa0add445d8e0d1691645d;Sampled=0
x-amzn-remapped-date: Sun, 18 Dec 2022 07:09:22 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: v_cc-cskoH2Fd8guDwxt7OhXQozpMVr77b5YvSz5q3NQidTA3R5B2g==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 219e8f088c8c2a564bdacafe44be620a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Dec 2022 07:31:11 GMT
age: 351
etag: "fcecaab531e403f8d5912cf29d977e549f96765b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4d8b8ab-ff79-4e93-97dc-b4b7d18e0b5b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6645 bytes)
Hash
0c276f786c96caac3f6a2b1cb20e4993
233988de2b66d8d97e0f21cbd1a182a9b4bd162f
bd5418d62aabf5e38f5c06409d0e1144f101d045072513150d5f16ffc2df169c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4d8b8ab-ff79-4e93-97dc-b4b7d18e0b5b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6645
x-amzn-requestid: 0f18f9e7-c8b3-4250-8156-96d3ea8a9749
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: diVuQE5fIAMFeXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a40327-520100d2431fabd14317afe3;Sampled=0
x-amzn-remapped-date: Thu, 22 Dec 2022 07:11:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UYAT01ECmYKrp25iLBix5K0qdahEvfppThLwVjcQOffxq0UI9PEKsg==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Dec 2022 05:05:35 GMT
age: 9087
etag: "233988de2b66d8d97e0f21cbd1a182a9b4bd162f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46c838f6-5365-43bb-981e-8ddefc5f3f14.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.7 kB (5659 bytes)
Hash
2d4cf077d410b94f1326e942304f9e9b
98fb13feecfada3cc8b467aa48d7cdf1ed8ab001
ec82cd83bfd4da849888b0535c9764cd4d462ef9e12c5934512858375908dfe4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46c838f6-5365-43bb-981e-8ddefc5f3f14.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5659
x-amzn-requestid: bc225a93-868b-42d4-aa94-c8fa16ef2c64
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dk33gHUqIAMFg1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a50696-7710727f0f086a791a0e7939;Sampled=0
x-amzn-remapped-date: Fri, 23 Dec 2022 01:38:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FGP2S7V05eAwwnHzdlYQJC9ZW-5xLD8Aqi7XBCcJtaqbVoNCocGFhw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Dec 2022 01:50:42 GMT
age: 20780
etag: "98fb13feecfada3cc8b467aa48d7cdf1ed8ab001"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ascendprimitiv.top/

172.67.187.55

200 OK

0 B

URL HTTP/2
ascendprimitiv.top/
IP
172.67.187.55:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

NIDS	Severity	Alert
suricata	medium	ET INFO HTTP Request to a *.top domain

HTTP Headers

GET / HTTP/1.1
Host: ascendprimitiv.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Fri, 23 Dec 2022 07:37:01 GMT
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
vary: Accept-Encoding
set-cookie: zenid=tk8soasf3gq0d95qbjre4a7t06; path=/; domain=.ascendprimitiv.top; secure; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5AT9R%2FJKdtZnkIwb0Pmn9MpcYcHZdcmW1%2FCHrfo6FnvN2NIl44n49o5gyGSH%2B5cqKCJO1x6I4m%2F%2FopKVk9RCc5FW5qee3pXcQYtGMxJGm0AOGK6zG9S9JUNheLvhqnZfuhZkWPA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77df6df0acf6b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (35)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type