Report - nm.sh

Report Overview

Visited public
2023-12-11 16:27:07
Tags
URL
nm.sh
Finishing URL
nm.sh/
IP / ASN
3.139.159.151
#16509 AMAZON-02
Title
nm.sh - This is a premium name

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
nm.sh	unknown	unknown	No data	No data	4.6 kB	240 kB	3.139.159.151
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-12-11 08:59:17	362 B	1.3 kB	142.250.74.106
translate.google.com	1156	1997-09-15	2012-05-30 03:30:32	2023-12-10 18:13:27	755 B	1.6 kB	142.250.74.142
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-12-11 10:04:41	1.4 kB	103 kB	216.58.207.227
translate.googleapis.com	1005	2005-01-25	2012-05-31 09:21:21	2023-12-10 18:39:00	3.1 kB	97 kB	142.250.74.74
www.google.com	7	1997-09-15	2015-05-10 13:11:19	2023-12-09 10:58:51	874 B	1.5 kB	142.250.74.164
translate-pa.googleapis.com	1620	2005-01-25	2021-11-04 07:37:42	2023-12-10 22:42:16	530 B	2.3 kB	142.250.74.106
ipinfo.io	8136	2013-04-23	2013-12-16 08:25:53	2023-12-10 18:16:38	448 B	796 B	34.117.59.81
divido.org	494111	2013-07-19	2015-02-26 20:36:16	2023-12-07 10:13:58	554 B	0 B	0.0.0.0
ajax.googleapis.com	12905	2005-01-25	2013-08-16 11:51:31	2023-12-11 11:26:03	431 B	32 kB	142.250.74.106
www.gstatic.com	unknown	2008-02-11	2016-07-26 11:37:06	2023-12-11 06:13:42	3.2 kB	24 kB	142.250.74.35

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-12-11 16:26:42	medium	Client IP	34.117.59.81	ET POLICY Possible External IP Lookup Domain Observed in SNI (ipinfo. io)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (10)

	URL	From	Size	First Seen	Last Seen
	unknown	ScriptElement	49 kB	2023-12-08	2025-05-07
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-08 03:46 Last Seen2025-05-07 12:11 Times Seen1221 Hash 95a79d9eec10cbcd3a22313eb08523bb 0a26303c22beedddd464324712828599519b7cca bf5f99f9b0cf7c4e2b4e6e20ca35c24e142d87507f8db00ef4ad6ed73ce4da92 Loading...

	nm.sh/	ScriptElement	0 B	0001-01-01	2025-05-11
Pretty URL nm.sh/ IP 3.139.159.151 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-11 07:44 Times Seen4651790 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	nm.sh/_/translate_http/_/js/k=translate_http.tr.no.L3wIDG9mmTk.O/am=AAM/d=1/rs=AN8SPfrPgOxDirRraXwwVCWhWj26dFe3YA/m=el_conf	ScriptElement	90 kB	2024-08-20	2024-08-20
Pretty URL nm.sh/_/translate_http/_/js/k=translate_http.tr.no.L3wIDG9mmTk.O/am=AAM/d=1/rs=AN8SPfrPgOxDirRraXwwVCWhWj26dFe3YA/m=el_conf IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 16:06 Last Seen2024-08-20 16:06 Times Seen1 Hash 342e240b5b26cce150f6d2286f6f4d79 602d82a20d4d3169ba6217b355841cd1c4e0315b 5bf654288e664d6e31c46a286f40e843520b8756518755d663da1767fa5dee1d Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js	ScriptElement	90 kB	2023-03-07	2025-05-11
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 07:39 Times Seen108921 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.L3wIDG9mmTk.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrYT5fIDVzVavnV7x1S07NcQgDRsA/m=el_main	ScriptElement	261 kB	2023-12-08	2025-03-26
Pretty URL translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.L3wIDG9mmTk.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrYT5fIDVzVavnV7x1S07NcQgDRsA/m=el_main IP 142.250.74.74 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-08 03:46 Last Seen2025-03-26 14:20 Times Seen246 Hash 879ffbe206a9e9b58833370a30157dc7 296cf6cda05aed2e3a1c04314b7b2e7c51dfbe5f 8abe56f67c72b6b5ba0f7e27e49d42791f1b687f45b7e370f2f78bf50ec9ae55 Loading...

		Size	First Seen	Last Seen
	#1 Write - 5531a5834816222280f20d1ef9e95f69	4 B	2023-03-12 12:17	2024-08-29 17:45
Pretty Observations First Seen2023-03-12 12:17 Last Seen2024-08-29 17:45 Times Seen7112 Hash 5531a5834816222280f20d1ef9e95f69 445cd2fd3273962bdf09425109a2d09f7170e837 d398b29d3dbbb9bf201d4c7e1c19ff9d43c15fd45a0cec46fbe9885ec3f6e97f Loading...

	#2 Write - 47281443276ff497304b7c50626c7a4e	469 B	2023-12-05 03:22	2024-08-20 16:44
Pretty Observations First Seen2023-12-05 03:22 Last Seen2024-08-20 16:44 Times Seen152 Hash 47281443276ff497304b7c50626c7a4e e2f6754227d78aab5f75bec68e16defae24f69ab 3e779f640632f74e1d0bf8b3dc900a84571be552f6c94e5176c47dd5a8524e7e Loading...

	#3 Write - 48bde8a029a92a9a0a43a3e2a7a669f3	3.0 kB	2023-12-05 09:52	2024-08-20 16:43
Pretty Observations First Seen2023-12-05 09:52 Last Seen2024-08-20 16:43 Times Seen80 Hash 48bde8a029a92a9a0a43a3e2a7a669f3 755f8f4b163ad36fd2ec39d3b0ae12bf151535fd 64c866bf2a3f6cd3c3a11439b046902daf3de87cba3be3a242ceaf3be4082e66 Loading...

	#4 Write - a53fd519d393e7cd5b7b8b9b812c410d	469 B	2023-12-05 10:45	2024-08-20 16:42
Pretty Observations First Seen2023-12-05 10:45 Last Seen2024-08-20 16:42 Times Seen162 Hash a53fd519d393e7cd5b7b8b9b812c410d 91b15db31a009714e8a2c364308fa785d1e73c73 ce2c9e09b0263bd073d8f591e620be13c46db381d55f597706becf92f1940d69 Loading...

	#5 Write - b3c7042965753de31b363642f0365f04	469 B	2023-12-05 20:26	2024-08-20 16:39
Pretty Observations First Seen2023-12-05 20:26 Last Seen2024-08-20 16:39 Times Seen40 Hash b3c7042965753de31b363642f0365f04 34758c7fec1910edca1cf9be50b301fface58cb7 73a6b3f8e107d974017f9bbd136f8ecb64d3dfd32e5c2fcbd3e0a3005ec8219e Loading...

HTTP Transactions (37)

	URL	IP	Response	Size
	nm.sh/	3.139.159.151	200 OK	1.9 kB
URL User Request GET HTTP/1.1 nm.sh/ IP 3.139.159.151:80 ASN #16509 AMAZON-02 File type HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - exported SGML document text - exported SGML document, ASCII text Size 1.9 kB (1875 bytes) Hash 0fd772cfce7bec1975c9edd66f7d9649 1e5ed39e7cb23f77e4baeeab32c44a89dce482af d7584eb24144ad6f59eb3bb8a9c529f7b027f57cffd3232772f38e7f296cd236 HTTP Headers `GET / HTTP/1.1 Host: nm.sh User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 11 Dec 2023 16:26:41 GMT Server: Apache/2.4.52 (Ubuntu) Last-Modified: Wed, 02 Nov 2022 13:19:13 GMT ETag: "166d-5ec7cafd38bd4-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 1875 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/html`

	fonts.googleapis.com/css?family=Open+Sans:400,700,800	142.250.74.106	200 OK	716 B
URL GET HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans:400,700,800 IP 142.250.74.106:80 ASN #15169 GOOGLE Requested by http://nm.sh/ File type ASCII text Size 716 B (716 bytes) Hash bb59be0bdc2e0a631cf93978a680fe46 ad0b1b917ad667944828fbe105251f6a6188ea25 ffb2e449d17f4f298756d909849c02b1d07bb998d9beaef61bf59566f3dc9292 HTTP Headers `GET /css?family=Open+Sans:400,700,800 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: text/css; charset=utf-8 Access-Control-Allow-Origin: * Timing-Allow-Origin: * Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin Expires: Mon, 11 Dec 2023 16:26:41 GMT Date: Mon, 11 Dec 2023 16:26:41 GMT Cache-Control: private, max-age=86400 Cross-Origin-Resource-Policy: cross-origin Cross-Origin-Opener-Policy: same-origin-allow-popups Content-Encoding: gzip Transfer-Encoding: chunked Server: ESF X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff

	translate.google.com/translate_a/element.js?cb=googleTranslateElementInit	142.250.74.142	200 OK	0 B
URL GET HTTP/2 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit IP 142.250.74.142:443 ASN #15169 GOOGLE Requested by http://nm.sh/ Certificate IssuerGoogle Trust Services LLC Subject.google.com Fingerprint5D:3A:D9:47:14:B0:78:30:A1:BF:B4:45:F6:F5:81:AD:0A:C7:76:89 ValidityMon, 20 Nov 2023 08:02:55 GMT - Mon, 12 Feb 2024 08:02:54 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1 Host: translate.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 301 Moved Permanently Content-Type: application/binary Cache-Control: no-cache, no-store, max-age=0, must-revalidate Pragma: no-cache Expires: Mon, 01 Jan 1990 00:00:00 GMT Date: Mon, 11 Dec 2023 16:26:41 GMT Location: https://translate.google.com/translate_a/element.js?cb=googleTranslateElementInit Cross-Origin-Opener-Policy: same-origin-allow-popups Server: ESF Content-Length: 0 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff`

	ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js	142.250.74.106	200 OK	31 kB
URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by http://nm.sh/ Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT File type ASCII text, with very long lines (65451) Size 31 kB (31021 bytes) Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d HTTP Headers `GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} timing-allow-origin: * content-length: 31021 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 11 Dec 2023 16:06:54 GMT expires: Tue, 10 Dec 2024 16:06:54 GMT cache-control: public, max-age=31536000, stale-while-revalidate=2592000 last-modified: Fri, 08 May 2020 07:05:03 GMT content-type: text/javascript; charset=UTF-8 vary: Accept-Encoding age: 1187 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	nm.sh/css/style.css	3.139.159.151	200 OK	2.4 kB
URL GET HTTP/1.1 nm.sh/css/style.css IP 3.139.159.151:80 ASN #16509 AMAZON-02 Requested by http://nm.sh/ File type ASCII text Size 2.4 kB (2415 bytes) Hash 5a6454f713d63bb3ab6afb551aab1ad0 a21f625c035409734698c3551a1b0638700ffe6e b078ab8b6ed19b969249ceaa7e4191fcea353a5d1f1af80ee3a5cf3194a50825 HTTP Headers `GET /css/style.css HTTP/1.1 Host: nm.sh User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 11 Dec 2023 16:26:41 GMT Server: Apache/2.4.52 (Ubuntu) Last-Modified: Fri, 30 Sep 2022 05:44:49 GMT ETag: "2479-5e9de7e05f97e-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 2415 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Content-Type: text/css`

	nm.sh/css/style-sh.css	3.139.159.151	200 OK	406 B
URL GET HTTP/1.1 nm.sh/css/style-sh.css IP 3.139.159.151:80 ASN #16509 AMAZON-02 Requested by http://nm.sh/ File type ASCII text Size 406 B (406 bytes) Hash 8716c4840069d5cd276836a1e78a4bfb 1eeabea2a029c4386246cb2dceaa696b5855bc0e edbc417c6fb7bea330d0f123d35eb1ee7342405577f3f358284d40025fdec0da HTTP Headers `GET /css/style-sh.css HTTP/1.1 Host: nm.sh User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 11 Dec 2023 16:26:41 GMT Server: Apache/2.4.52 (Ubuntu) Last-Modified: Fri, 30 Sep 2022 05:44:49 GMT ETag: "5fd-5e9de7e05f97e-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 406 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/css`

	nm.sh/img/cdns-logo-142x64.png	3.139.159.151	200 OK	8.2 kB
URL GET HTTP/1.1 nm.sh/img/cdns-logo-142x64.png IP 3.139.159.151:80 ASN #16509 AMAZON-02 Requested by http://nm.sh/ File type PNG image data, 142 x 64, 8-bit/color RGBA, non-interlaced - data Size 8.2 kB (8226 bytes) Hash d48636927c2702b36a793482c1d37f99 12f6f9a19322165a78633f8e8896568af6263eef 7a9c85b05dbc68510189899f976fda1177f0d16ac4dc4a12bb719313e70bac88 HTTP Headers `GET /img/cdns-logo-142x64.png HTTP/1.1 Host: nm.sh User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 11 Dec 2023 16:26:42 GMT Server: Apache/2.4.52 (Ubuntu) Last-Modified: Fri, 30 Sep 2022 05:44:49 GMT ETag: "2022-5e9de7e06091e" Accept-Ranges: bytes Content-Length: 8226 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: image/png`

	nm.sh/img/divido-icon-email.png	3.139.159.151	200 OK	2.2 kB
URL GET HTTP/1.1 nm.sh/img/divido-icon-email.png IP 3.139.159.151:80 ASN #16509 AMAZON-02 Requested by http://nm.sh/ File type PNG image data, 22 x 22, 8-bit/color RGBA, non-interlaced - data Size 2.2 kB (2161 bytes) Hash 8a8366f12aaf20295b3b33b04f00fcb3 020c98216ce837d88930bb1710b5bd654841622f 7fdcd71f989ba49943ac8d6822e8b2be47440c34712fae9bc4e57dd35fadd50b HTTP Headers `GET /img/divido-icon-email.png HTTP/1.1 Host: nm.sh User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 11 Dec 2023 16:26:42 GMT Server: Apache/2.4.52 (Ubuntu) Last-Modified: Fri, 30 Sep 2022 05:44:49 GMT ETag: "871-5e9de7e06091e" Accept-Ranges: bytes Content-Length: 2161 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: image/png`

	nm.sh/img/divido-compatible.png	3.139.159.151	200 OK	10 kB
URL GET HTTP/1.1 nm.sh/img/divido-compatible.png IP 3.139.159.151:80 ASN #16509 AMAZON-02 Requested by http://nm.sh/ File type PNG image data, 126 x 64, 8-bit/color RGBA, non-interlaced - data Size 10 kB (10313 bytes) Hash b6ede054ce81fe83a8bce395ca40ed93 a47a434f4f45a55ac344cdbd997519b14f3f7efc 783ed8ae0934f9708e412fcbefaf8d94fb99ac8881e47bf91abdbd65dd694e24 HTTP Headers `GET /img/divido-compatible.png HTTP/1.1 Host: nm.sh User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 11 Dec 2023 16:26:42 GMT Server: Apache/2.4.52 (Ubuntu) Last-Modified: Fri, 30 Sep 2022 05:44:49 GMT ETag: "2849-5e9de7e06091e" Accept-Ranges: bytes Content-Length: 10313 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: image/png`

	nm.sh/img/divido-action-logo.png	3.139.159.151	200 OK	4.3 kB
URL GET HTTP/1.1 nm.sh/img/divido-action-logo.png IP 3.139.159.151:80 ASN #16509 AMAZON-02 Requested by http://nm.sh/ File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced - data Size 4.3 kB (4313 bytes) Hash 47edc8a705967b81bfda68bcd2ab490e 65450f9718d4dff7f25c3fa92a20731633cff4b8 a84ee2bdc0b349c9dda6dc0040e2d9fbe2969ef18d9893b405ff3f40dfa4350c HTTP Headers `GET /img/divido-action-logo.png HTTP/1.1 Host: nm.sh User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 11 Dec 2023 16:26:42 GMT Server: Apache/2.4.52 (Ubuntu) Last-Modified: Fri, 30 Sep 2022 05:44:49 GMT ETag: "10d9-5e9de7e06091e" Accept-Ranges: bytes Content-Length: 4313 Keep-Alive: timeout=5, max=98 Connection: Keep-Alive Content-Type: image/png`

	nm.sh/img/divido-icon-globe.png	3.139.159.151	200 OK	2.4 kB
URL GET HTTP/1.1 nm.sh/img/divido-icon-globe.png IP 3.139.159.151:80 ASN #16509 AMAZON-02 Requested by http://nm.sh/ File type PNG image data, 22 x 22, 8-bit/color RGBA, non-interlaced - data Size 2.4 kB (2404 bytes) Hash a80d77effac3587c7f7d2f5920d41042 63541266aa82844d647322fe58c1323652989983 e1602d6473364ae295ab1185bdbb06f7027a3aaa2e5ae7c5809d9dd77089bf1e HTTP Headers `GET /img/divido-icon-globe.png HTTP/1.1 Host: nm.sh User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 11 Dec 2023 16:26:42 GMT Server: Apache/2.4.52 (Ubuntu) Last-Modified: Fri, 30 Sep 2022 05:44:49 GMT ETag: "964-5e9de7e06091e" Accept-Ranges: bytes Content-Length: 2404 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Content-Type: image/png`

	fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2	216.58.207.227	200 OK	48 kB
URL GET HTTP/1.1 fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP 216.58.207.227:80 ASN #15169 GOOGLE Requested by http://nm.sh/ File type Web Open Font Format (Version 2), TrueType, length 48432, version 1.0 - data Size 48 kB (48432 bytes) Hash e2d74c5e631bc53a7240bbfe4be99c8f eb513857bb01cc4f7249067fc7e969bef415fc90 9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5 HTTP Headers `GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://nm.sh DNT: 1 Connection: keep-alive Referer: http://fonts.googleapis.com/ Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes Cross-Origin-Resource-Policy: cross-origin Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes" Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} Timing-Allow-Origin: * Content-Length: 48432 X-Content-Type-Options: nosniff Server: sffe X-XSS-Protection: 0 Date: Thu, 07 Dec 2023 04:58:36 GMT Expires: Fri, 06 Dec 2024 04:58:36 GMT Cache-Control: public, max-age=31536000 Age: 386886 Last-Modified: Thu, 14 Sep 2023 00:40:31 GMT Content-Type: font/woff2

	nm.sh/img/sh-logo-140.png	3.139.159.151	200 OK	19 kB
URL GET HTTP/1.1 nm.sh/img/sh-logo-140.png IP 3.139.159.151:80 ASN #16509 AMAZON-02 Requested by http://nm.sh/ File type PNG image data, 140 x 140, 8-bit/color RGBA, non-interlaced - data Size 19 kB (19434 bytes) Hash 6ec22611696bd5c5ba3a45c96308e9d8 acdda56aa5fc51be3c47159da889adf036b44732 141270a4e44c7b70ddb4b8927878b5ba478946376cdad80e60cdbdbe8d4efc9a HTTP Headers `GET /img/sh-logo-140.png HTTP/1.1 Host: nm.sh User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 11 Dec 2023 16:26:42 GMT Server: Apache/2.4.52 (Ubuntu) Last-Modified: Fri, 30 Sep 2022 05:44:49 GMT ETag: "4bea-5e9de7e06091e" Accept-Ranges: bytes Content-Length: 19434 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: image/png`

	nm.sh/img/divido-cloud.png	3.139.159.151	200 OK	7.8 kB
URL GET HTTP/1.1 nm.sh/img/divido-cloud.png IP 3.139.159.151:80 ASN #16509 AMAZON-02 Requested by http://nm.sh/ File type PNG image data, 214 x 162, 8-bit/color RGBA, non-interlaced - data Size 7.8 kB (7836 bytes) Hash 2bd30341b4171ef423bcd3240bc16aea 11349ec145ee5f689afc344904296898e620e6df ed936c635015697a4072158fe9da4ba34854f05d7b21d6e7f95ddf81f50cfe4d HTTP Headers `GET /img/divido-cloud.png HTTP/1.1 Host: nm.sh User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://nm.sh/css/style.css Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 11 Dec 2023 16:26:42 GMT Server: Apache/2.4.52 (Ubuntu) Last-Modified: Fri, 30 Sep 2022 05:44:49 GMT ETag: "1e9c-5e9de7e06091e" Accept-Ranges: bytes Content-Length: 7836 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Content-Type: image/png`

	www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css	142.250.74.35	200 OK	4.0 kB
URL GET HTTP/3 www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by http://nm.sh/ Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1 ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT File type ASCII text, with very long lines (20367), with no line terminators Size 4.0 kB (3960 bytes) Hash 72d3a735ccca1027f6b3afba2c93e3a7 67f8eff8d17334c59c28fc1753bf451527c7490d c8c845f55e2346b89894ce0df8185ee182359e096bf29987d5cf1f8a7391bef1 HTTP Headers GET /_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="rosetta" report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]} content-length: 3960 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sat, 09 Dec 2023 15:42:31 GMT expires: Sun, 08 Dec 2024 15:42:31 GMT cache-control: public, max-age=31536000 last-modified: Sat, 15 Jul 2023 01:09:03 GMT content-type: text/css; charset=UTF-8 vary: Accept-Encoding age: 175451 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2	216.58.207.227	200 OK	48 kB
URL GET HTTP/1.1 fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP 216.58.207.227:80 ASN #15169 GOOGLE Requested by http://nm.sh/ File type Web Open Font Format (Version 2), TrueType, length 48432, version 1.0 - data Size 48 kB (48432 bytes) Hash e2d74c5e631bc53a7240bbfe4be99c8f eb513857bb01cc4f7249067fc7e969bef415fc90 9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5 HTTP Headers `GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://nm.sh DNT: 1 Connection: keep-alive Referer: http://fonts.googleapis.com/ Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes Cross-Origin-Resource-Policy: cross-origin Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes" Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} Timing-Allow-Origin: * Content-Length: 48432 X-Content-Type-Options: nosniff Server: sffe X-XSS-Protection: 0 Date: Thu, 07 Dec 2023 04:58:36 GMT Expires: Fri, 06 Dec 2024 04:58:36 GMT Cache-Control: public, max-age=31536000 Age: 386886 Last-Modified: Thu, 14 Sep 2023 00:40:31 GMT Content-Type: font/woff2

	translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.L3wIDG9mmTk.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrYT5fIDVzVavnV7x1S07NcQgDRsA/m=el_main	142.250.74.74	200 OK	90 kB
URL GET HTTP/2 translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.L3wIDG9mmTk.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrYT5fIDVzVavnV7x1S07NcQgDRsA/m=el_main IP 142.250.74.74:443 ASN #15169 GOOGLE Requested by http://nm.sh/ Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT File type ASCII text, with very long lines (2191) Size 90 kB (89471 bytes) Hash 879ffbe206a9e9b58833370a30157dc7 296cf6cda05aed2e3a1c04314b7b2e7c51dfbe5f 8abe56f67c72b6b5ba0f7e27e49d42791f1b687f45b7e370f2f78bf50ec9ae55 HTTP Headers GET /_/translate_http/_/js/k=translate_http.tr.no.L3wIDG9mmTk.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrYT5fIDVzVavnV7x1S07NcQgDRsA/m=el_main HTTP/1.1 Host: translate.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="rosetta" report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]} content-length: 89471 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 07 Dec 2023 21:46:23 GMT expires: Fri, 06 Dec 2024 21:46:23 GMT cache-control: public, max-age=31536000 last-modified: Wed, 06 Dec 2023 14:12:04 GMT content-type: text/javascript; charset=UTF-8 vary: Accept-Encoding age: 326419 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	nm.sh/favicon.ico	3.139.159.151	404 Not Found	1.9 kB
URL GET HTTP/1.1 nm.sh/favicon.ico IP 3.139.159.151:80 ASN #16509 AMAZON-02 Requested by http://nm.sh/ File type HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - exported SGML document text - exported SGML document, ASCII text Size 1.9 kB (1875 bytes) Hash 0fd772cfce7bec1975c9edd66f7d9649 1e5ed39e7cb23f77e4baeeab32c44a89dce482af d7584eb24144ad6f59eb3bb8a9c529f7b027f57cffd3232772f38e7f296cd236 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: nm.sh User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 404 Not Found Date: Mon, 11 Dec 2023 16:26:42 GMT Server: Apache/2.4.52 (Ubuntu) Last-Modified: Wed, 02 Nov 2022 13:19:13 GMT ETag: "166d-5ec7cafd38bd4-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 1875 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Content-Type: text/html`

	www.gstatic.com/images/branding/product/2x/translate_24dp.png	142.250.74.35	200 OK	1.8 kB
URL GET HTTP/3 www.gstatic.com/images/branding/product/2x/translate_24dp.png IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by http://nm.sh/ Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1 ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced - data Size 1.8 kB (1842 bytes) Hash c69c796362406f9e11c7f4bf5bb628da e489ce95ab56208090868882113d7416abf46775 4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82 HTTP Headers GET /images/branding/product/2x/translate_24dp.png HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable" report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]} content-length: 1842 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 07 Dec 2023 05:20:13 GMT expires: Fri, 06 Dec 2024 05:20:13 GMT cache-control: public, max-age=31536000 age: 385589 last-modified: Thu, 14 Oct 2021 09:08:00 GMT content-type: image/png vary: Origin alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css	142.250.74.35	200 OK	4.0 kB
URL GET HTTP/3 www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by http://nm.sh/ Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1 ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT File type ASCII text, with very long lines (20367), with no line terminators Size 4.0 kB (3960 bytes) Hash 72d3a735ccca1027f6b3afba2c93e3a7 67f8eff8d17334c59c28fc1753bf451527c7490d c8c845f55e2346b89894ce0df8185ee182359e096bf29987d5cf1f8a7391bef1 HTTP Headers GET /_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="rosetta" report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]} content-length: 3960 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sat, 09 Dec 2023 15:42:31 GMT expires: Sun, 08 Dec 2024 15:42:31 GMT cache-control: public, max-age=31536000 last-modified: Sat, 15 Jul 2023 01:09:03 GMT content-type: text/css; charset=UTF-8 vary: Accept-Encoding age: 175451 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg	216.58.207.227	200 OK	3.3 kB
URL GET HTTP/2 fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by http://nm.sh/ Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1 ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT File type SVG Scalable Vector Graphics image - , ASCII text, with very long lines (6225), with no line terminators Size 3.3 kB (3340 bytes) Hash 2bd5c073a88b83ed74db88282a56ddfb d0ebfc376f8c6a44a8d4cd216817dcd7d0c33650 ab5c23a05e39deed14d9d8262b0dce9f024f86105a27196cad37d14a3f516e09 HTTP Headers `GET /s/i/productlogos/translate/v14/24px.svg HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} content-length: 3340 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sat, 09 Dec 2023 15:42:33 GMT expires: Sun, 08 Dec 2024 15:42:33 GMT cache-control: public, max-age=31536000 last-modified: Wed, 20 Apr 2022 14:24:23 GMT content-type: image/svg+xml vary: Accept-Encoding age: 175449 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.google.com/images/cleardot.gif	142.250.74.164	200 OK	43 B
URL GET HTTP/2 www.google.com/images/cleardot.gif IP 142.250.74.164:443 ASN #15169 GOOGLE Requested by http://nm.sh/ Certificate IssuerGoogle Trust Services LLC Subjectwww.google.com Fingerprint50:3E:DA:12:EC:7F:39:A5:E9:4F:16:D7:D6:AA:BF:45:15:44:7F:E9 ValidityMon, 20 Nov 2023 08:09:47 GMT - Mon, 12 Feb 2024 08:09:46 GMT File type GIF image data, version 89a, 1 x 1 - data Size 43 B (43 bytes) Hash fc94fb0c3ed8a8f909dbc7630a0987ff 56d45f8a17f5078a20af9962c992ca4678450765 2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363 HTTP Headers `GET /images/cleardot.gif HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes content-type: image/gif cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable" report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]} content-length: 43 date: Mon, 11 Dec 2023 16:26:42 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Tue, 22 Oct 2019 18:30:00 GMT x-content-type-options: nosniff server: sffe x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback	142.250.74.106		1.4 kB
URL translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback IP 142.250.74.106:0 ASN #15169 GOOGLE File type Unicode text, UTF-8 text Size 1.4 kB (1392 bytes) Hash a3eefe14b1b4698460d992bd1673a26b a2fca6ebb00b8bdcca3eda88654d02d2c165b9c4 87514750a90cd70dd22c8673cfa80d804ef55840bd0755950af2118d8d218067 HTTP Headers GET /v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback HTTP/1.1 Host: translate-pa.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK cross-origin-resource-policy: cross-origin p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." content-type: text/javascript; charset=UTF-8 vary: Origin, X-Origin, Referer content-encoding: gzip date: Mon, 11 Dec 2023 16:26:42 GMT server: ESF cache-control: private content-length: 1392 x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff set-cookie: NID=511=ld9_863vEp-DQVPeyMN2fBrufg70SGWa_arHftm32bn12n2WprtEXamgEwDlbl4aG_7CyMejPwEp-SF8kP9rJlQKlfCbnaZKsO1hrAATjDY-FNk06TteTpr4B-oGfotUi0tqsR0d67yRw5Yda6W97gqy6_vfQ9_5T_Vf4Qv1AK8; expires=Tue, 11-Jun-2024 16:26:42 GMT; path=/; domain=.translate-pa.googleapis.com; HttpOnly CONSENT=PENDING+097; expires=Wed, 10-Dec-2025 16:26:42 GMT; path=/; domain=.googleapis.com; Secure expires: Mon, 11 Dec 2023 16:26:42 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css	142.250.74.35	200 OK	4.0 kB
URL GET HTTP/3 www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by http://nm.sh/ Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1 ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT File type ASCII text, with very long lines (20367), with no line terminators Size 4.0 kB (3960 bytes) Hash 72d3a735ccca1027f6b3afba2c93e3a7 67f8eff8d17334c59c28fc1753bf451527c7490d c8c845f55e2346b89894ce0df8185ee182359e096bf29987d5cf1f8a7391bef1 HTTP Headers GET /_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="rosetta" report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]} content-length: 3960 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sat, 09 Dec 2023 15:42:31 GMT expires: Sun, 08 Dec 2024 15:42:31 GMT cache-control: public, max-age=31536000 last-modified: Sat, 15 Jul 2023 01:09:03 GMT content-type: text/css; charset=UTF-8 vary: Accept-Encoding age: 175451 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_68x28dp.png	142.250.74.35	200 OK	1.6 kB
URL GET HTTP/3 www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_68x28dp.png IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by http://nm.sh/ Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1 ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT File type PNG image data, 68 x 28, 8-bit/color RGBA, non-interlaced - data Size 1.6 kB (1597 bytes) Hash c4a931d597decd2553aac6634b766cf2 6ec84fb4a2745b4b71520241be77db1fd1013830 f56402b127698db4b4dc611a97a6f081d04c4691c60522c5912d189e37c94a9e HTTP Headers `GET /images/branding/googlelogo/1x/googlelogo_color_68x28dp.png HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK accept-ranges: bytes cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable" report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]} content-length: 1597 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 07 Dec 2023 04:52:51 GMT expires: Fri, 06 Dec 2024 04:52:51 GMT cache-control: public, max-age=31536000 age: 387231 last-modified: Fri, 30 Jun 2023 18:58:00 GMT content-type: image/png vary: Origin alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	translate.googleapis.com/translate_static/img/loading.gif	142.250.74.74	200 OK	702 B
URL GET HTTP/3 translate.googleapis.com/translate_static/img/loading.gif IP 142.250.74.74:443 ASN #15169 GOOGLE Requested by http://nm.sh/ Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT File type GIF image data, version 89a, 16 x 16 - data Size 702 B (702 bytes) Hash eefaa072b284a305c12c06608333abc2 58272721ccc1efda26eaa22354022c7c793edbb6 fb6b7bcc1ab09f27db17bcbdf5239ce1d52af34f1fc5125b3fc8528a07848d21 HTTP Headers `GET /translate_static/img/loading.gif HTTP/1.1 Host: translate.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK accept-ranges: bytes cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable" report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]} content-length: 702 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 07 Dec 2023 04:57:57 GMT expires: Fri, 06 Dec 2024 04:57:57 GMT cache-control: public, max-age=31536000 age: 386925 last-modified: Thu, 03 Oct 2019 10:15:00 GMT content-type: image/gif alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	www.google.com/images/cleardot.gif	142.250.74.164	200 OK	43 B
URL GET HTTP/2 www.google.com/images/cleardot.gif IP 142.250.74.164:443 ASN #15169 GOOGLE Requested by http://nm.sh/ Certificate IssuerGoogle Trust Services LLC Subjectwww.google.com Fingerprint50:3E:DA:12:EC:7F:39:A5:E9:4F:16:D7:D6:AA:BF:45:15:44:7F:E9 ValidityMon, 20 Nov 2023 08:09:47 GMT - Mon, 12 Feb 2024 08:09:46 GMT File type GIF image data, version 89a, 1 x 1 - data Size 43 B (43 bytes) Hash fc94fb0c3ed8a8f909dbc7630a0987ff 56d45f8a17f5078a20af9962c992ca4678450765 2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363 HTTP Headers `GET /images/cleardot.gif HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK accept-ranges: bytes content-type: image/gif cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable" report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]} content-length: 43 date: Mon, 11 Dec 2023 16:26:42 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Tue, 22 Oct 2019 18:30:00 GMT x-content-type-options: nosniff server: sffe x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css	142.250.74.35	200 OK	4.0 kB
URL GET HTTP/3 www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css IP 142.250.74.35:443 ASN #15169 GOOGLE Requested by http://nm.sh/ Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1 ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT File type ASCII text, with very long lines (20367), with no line terminators Size 4.0 kB (3960 bytes) Hash 72d3a735ccca1027f6b3afba2c93e3a7 67f8eff8d17334c59c28fc1753bf451527c7490d c8c845f55e2346b89894ce0df8185ee182359e096bf29987d5cf1f8a7391bef1 HTTP Headers GET /_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="rosetta" report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]} content-length: 3960 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sat, 09 Dec 2023 15:42:31 GMT expires: Sun, 08 Dec 2024 15:42:31 GMT cache-control: public, max-age=31536000 last-modified: Sat, 15 Jul 2023 01:09:03 GMT content-type: text/css; charset=UTF-8 vary: Accept-Encoding age: 175451 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	translate.google.com/gen204?sl=en&nca=te_ap&client=te&logld=vTE_20231206	142.250.74.142	204 No Content	0 B
URL GET HTTP/1.1 translate.google.com/gen204?sl=en&nca=te_ap&client=te&logld=vTE_20231206 IP 142.250.74.142:80 ASN #15169 GOOGLE Requested by http://nm.sh/ File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /gen204?sl=en&nca=te_ap&client=te&logld=vTE_20231206 HTTP/1.1 Host: translate.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 204 No Content Content-Type: image/gif; charset=us-ascii Cache-Control: no-cache, no-store, max-age=0, must-revalidate Pragma: no-cache Expires: Mon, 01 Jan 1990 00:00:00 GMT Date: Mon, 11 Dec 2023 16:26:42 GMT Cross-Origin-Resource-Policy: cross-origin Cross-Origin-Opener-Policy: same-origin Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version Content-Security-Policy: require-trusted-types-for 'script';report-uri /_/TranslateApiHttp/cspreport, script-src 'nonce-2o5PcDat4X6HKvC1q26VtQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/TranslateApiHttp/cspreport;worker-src 'self' Permissions-Policy: ch-ua-arch=, ch-ua-bitness=, ch-ua-full-version=, ch-ua-full-version-list=, ch-ua-model=, ch-ua-wow64=, ch-ua-form-factor=, ch-ua-platform=, ch-ua-platform-version=* Server: ESF Content-Length: 0 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff

	translate.googleapis.com/translate_static/img/te_ctrl3.gif	142.250.74.74	200 OK	1.4 kB
URL GET HTTP/3 translate.googleapis.com/translate_static/img/te_ctrl3.gif IP 142.250.74.74:443 ASN #15169 GOOGLE Requested by http://nm.sh/ Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT File type GIF image data, version 89a, 84 x 19 - data Size 1.4 kB (1412 bytes) Hash 9afe50090c0bc612953d081295eab5b1 71a4da2a622879c29176ecfa5afe1bbe3e8cfa40 d228d0256370863119c043f1e5ca8f3930f6999bd9f250434b6d8935f45dc171 HTTP Headers `GET /translate_static/img/te_ctrl3.gif HTTP/1.1 Host: translate.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK accept-ranges: bytes cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable" report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]} content-length: 1412 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 07 Dec 2023 15:53:24 GMT expires: Fri, 06 Dec 2024 15:53:24 GMT cache-control: public, max-age=31536000 last-modified: Thu, 03 Oct 2019 10:15:00 GMT content-type: image/gif age: 347598 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	translate.googleapis.com/translate_static/img/te_bk.gif	142.250.74.74	200 OK	848 B
URL GET HTTP/3 translate.googleapis.com/translate_static/img/te_bk.gif IP 142.250.74.74:443 ASN #15169 GOOGLE Requested by http://nm.sh/ Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT File type GIF image data, version 89a, 1 x 59 - data Size 848 B (848 bytes) Hash daf9b48977041ac85a62dc9b7c16b38d 049dcb061470572d06fd83b287ebd1d96e6bb870 cb1fd0e051209c32622e91cdeda967e50d80a184b185ac6a656a807986e8eb75 HTTP Headers `GET /translate_static/img/te_bk.gif HTTP/1.1 Host: translate.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK accept-ranges: bytes cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable" report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]} content-length: 848 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 07 Dec 2023 23:22:03 GMT expires: Fri, 06 Dec 2024 23:22:03 GMT cache-control: public, max-age=31536000 age: 320679 last-modified: Sun, 25 Jun 2023 02:58:00 GMT content-type: image/gif alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	nm.sh/img/divido-background-set.jpg	3.139.159.151	200 OK	175 kB
URL GET HTTP/1.1 nm.sh/img/divido-background-set.jpg IP 3.139.159.151:80 ASN #16509 AMAZON-02 Requested by http://nm.sh/ File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC (Macintosh), datetime=2013-10-17T21:43:16-07:00], progressive, precision 8, 1000x700, components 3 - data Size 175 kB (174791 bytes) Hash 7cfb80e05d170be169d4089a571778f6 380a3de3a1993c60052b6b01836604a170f30fc8 8ebad74e36ea0469fc1cc85de5951967d9de10d2874310cf50555c07a596f434 HTTP Headers `GET /img/divido-background-set.jpg HTTP/1.1 Host: nm.sh User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 11 Dec 2023 16:26:42 GMT Server: Apache/2.4.52 (Ubuntu) Last-Modified: Fri, 30 Sep 2022 05:44:49 GMT ETag: "2aac7-5e9de7e06091e" Accept-Ranges: bytes Content-Length: 174791 Keep-Alive: timeout=5, max=98 Connection: Keep-Alive Content-Type: image/jpeg`

	translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0	142.250.74.74	200 OK	0 B
URL POST HTTP/3 translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0 IP 142.250.74.74:443 ASN #15169 GOOGLE Requested by http://nm.sh/ Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1 Host: translate.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-encoding,content-type,x-goog-authuser Referer: http://nm.sh/ Origin: http://nm.sh DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK access-control-allow-origin: http://nm.sh access-control-allow-methods: GET, POST, OPTIONS access-control-max-age: 86400 access-control-allow-credentials: true access-control-allow-headers: X-Playlog-Web,authorization,content-encoding,content-type,x-goog-authuser,origin content-type: text/plain; charset=UTF-8 date: Mon, 11 Dec 2023 16:26:52 GMT server: Playlog content-length: 0 x-xss-protection: 0 x-frame-options: SAMEORIGIN set-cookie: CONSENT=PENDING+038; expires=Wed, 10-Dec-2025 16:26:52 GMT; path=/; domain=.googleapis.com; Secure p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 expires: Mon, 11 Dec 2023 16:26:52 GMT cache-control: private

	translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0	142.250.74.74	200 OK	131 B
URL POST HTTP/3 translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0 IP 142.250.74.74:443 ASN #15169 GOOGLE Requested by http://nm.sh/ Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT File type JSON data - , ASCII text, with no line terminators Size 131 B (131 bytes) Hash ca0b7e866005f6774d284b9f438ebfd2 53644f5ee3640189bdb223473ba6a2d46606c556 502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358 HTTP Headers POST /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1 Host: translate.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-Goog-AuthUser: 0 Content-Encoding: gzip Content-Type: application/binary Content-Length: 279 Origin: http://nm.sh DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK access-control-allow-origin: http://nm.sh cross-origin-resource-policy: cross-origin access-control-allow-credentials: true access-control-allow-headers: X-Playlog-Web content-type: text/plain; charset=UTF-8 content-encoding: gzip date: Mon, 11 Dec 2023 16:26:52 GMT server: Playlog cache-control: private content-length: 131 x-xss-protection: 0 x-frame-options: SAMEORIGIN set-cookie: CONSENT=PENDING+792; expires=Wed, 10-Dec-2025 16:26:52 GMT; path=/; domain=.googleapis.com; Secure p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 expires: Mon, 11 Dec 2023 16:26:52 GMT

	nm.sh/	0.0.0.0		0 B
URL GET nm.sh/ IP 0.0.0.0:0 ASN #0 Requested by http://nm.sh/ File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET / HTTP/1.1 Host: nm.sh User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache`

	ipinfo.io/	34.117.59.81	200 OK	280 B
URL GET HTTP/2 ipinfo.io/ IP 34.117.59.81:443 ASN #15169 GOOGLE Requested by http://nm.sh/ Certificate IssuerLet's Encrypt Subjectipinfo.io Fingerprint02:67:9A:BD:EB:E2:DF:E4:D3:87:6D:3B:B4:56:D4:77:D6:F3:61:E3 ValidityTue, 07 Nov 2023 06:17:02 GMT - Mon, 05 Feb 2024 06:17:01 GMT File type ASCII text, with very long lines (331), with no line terminators Size 280 B (280 bytes) Hash 1438617e5afe35240ea18211e338db01 89cd78f604e6cbe17941a252074a02a4a01e4f44 3ea7df984d0727ca5eddf1c01b8f584629a1fb93caa8c0b581e5835ede012c1d HTTP Headers `GET / HTTP/1.1 Host: ipinfo.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://nm.sh DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK access-control-allow-origin: * x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block x-content-type-options: nosniff referrer-policy: strict-origin-when-cross-origin content-type: application/json; charset=utf-8 date: Mon, 11 Dec 2023 16:26:42 GMT x-envoy-upstream-service-time: 1 strict-transport-security: max-age=2592000; includeSubDomains vary: Accept-Encoding content-encoding: gzip via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	divido.org/get-tracking-info?info%5Bcountry%5D=NO&info%5Bcity%5D=Oslo&info%5Bip%5D=91.90.42.154&info%5Bregion%5D=Oslo&info%5Bfrom_website%5D=http%3A%2F%2Fnm.sh	0.0.0.0		0 B
URL GET divido.org/get-tracking-info?info%5Bcountry%5D=NO&info%5Bcity%5D=Oslo&info%5Bip%5D=91.90.42.154&info%5Bregion%5D=Oslo&info%5Bfrom_website%5D=http%3A%2F%2Fnm.sh IP 0.0.0.0:0 ASN #0 Requested by http://nm.sh/ File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /get-tracking-info?info%5Bcountry%5D=NO&info%5Bcity%5D=Oslo&info%5Bip%5D=91.90.42.154&info%5Bregion%5D=Oslo&info%5Bfrom_website%5D=http%3A%2F%2Fnm.sh HTTP/1.1 Host: divido.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://nm.sh DNT: 1 Connection: keep-alive Referer: http://nm.sh/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (10)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

HTTP Transactions (37)

URL User Request GET HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers