r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7181eff9c60e83eb0004ece591e47dca
0fd8cd0c9d10b0547938982e57d2c43e2d98679f
89c5c0e2d6890798644174a8e31976aec03a1b3deb03812afbb520e5ed68f522
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89C5C0E2D6890798644174A8E31976AEC03A1B3DEB03812AFBB520E5ED68F522"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6165
Expires: Thu, 08 Dec 2022 08:42:13 GMT
Date: Thu, 08 Dec 2022 06:59:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3452
Expires: Thu, 08 Dec 2022 07:57:00 GMT
Date: Thu, 08 Dec 2022 06:59:28 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 08 Dec 2022 06:08:09 GMT
content-type: application/json
age: 3079
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 00e7703bd74975689fc9050356aaca6b
9788fe6a36d6f278e8da329ebc5dd87bcd212317
593bc437ff8a8233516c62613d50220fcb25b9f967ed5fb384c253f0db135103
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "593BC437FF8A8233516C62613D50220FCB25B9F967ED5FB384C253F0DB135103"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12013
Expires: Thu, 08 Dec 2022 10:19:41 GMT
Date: Thu, 08 Dec 2022 06:59:28 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: qdXY5Q9xlCB4jCm31xqTOAD9DOcylVjXBxSjUwhFrt88t5J2efrbhUNZJDd/AiCZSJMCHCCdgPA=
x-amz-request-id: 8B7FXHX7KD611TZH
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 08 Dec 2022 06:47:49 GMT
age: 699
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 06:59:28 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 08 Dec 2022 06:07:55 GMT
age: 3094
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ffnkquz.com/
188.114.96.1200 OK 14 kB IP 188.114.96.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (11707), with CRLF, LF line terminators
Hash e06299a454fb690468f06396b07b64fe
730ed91c921c1ed2c8429b1197e61c2dc6e46b74
bc9e7d930b491741d82c7c120ab3dab9b86608dbd88cfe11077e3b194adab024
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: ffnkquz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 06:59:28 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.4.16
P3P: CP="ALL CURa ADMa DEVa TAIa OUR BUS IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC OTC"
Set-Cookie: PHPSESSID=ssa6gqn4884vglbk16cottmrd1; path=/
2a0d2363701f23f8a75028924a3af643=MTYyLjE1OC4yMjIuMjUx; expires=Fri, 09-Dec-2022 06:59:28 GMT; path=/
Expires: 0
Last-Modified: Thu, 08 Dec 2022 06:59:28 GMT
Cache-Control: pre-check=0, post-check=0, max-age=0
Pragma: no-cache
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wTIEu7UbXTnM3P%2FcCCL8yj3acd443Jd5n7nTFOgbtZzs8DC1ZHnb55RD85OSznBH39hQOd5JjIDTa%2FJTI9x30ntWeTtp22l6UjZ7MavgSoGg1b09lg4Y5POXJ79gHw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77639e55fe300b55-OSL
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 053aff7451e55d4269dd9610ab070f3f
b3376256d11d159b0c7280ba1515b78d7d9e12ca
24114ca560fe70d03185bd66985603fd5a03dc310aa9a8ea7a7b3723ed46ce3e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1026
Cache-Control: max-age=95067
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 06:59:29 GMT
Etag: "639057aa-1d7"
Expires: Fri, 09 Dec 2022 09:23:56 GMT
Last-Modified: Wed, 07 Dec 2022 09:06:50 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
ffnkquz.com/css/default.css?ver=180820
188.114.96.1200 OK 3.9 kB URL HTTP/1.1 ffnkquz.com/css/default.css?ver=180820
IP 188.114.96.1:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 585ce94e75d58260aed0fb0d67445f2a
8b81799ba9fb00dca040c192d26a9ef3fb016c59
09581cb7746a69e55cf876e856d3d5b1cbb0e14b81044e550179eda84eb65508
Analyzer Verdict Alert quad9 Sinkholed
GET /css/default.css?ver=180820 HTTP/1.1
Host: ffnkquz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ffnkquz.com/
Cookie: PHPSESSID=ssa6gqn4884vglbk16cottmrd1; 2a0d2363701f23f8a75028924a3af643=MTYyLjE1OC4yMjIuMjUx
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 06:59:29 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 14 Nov 2019 12:57:44 GMT
ETag: W/"3f44-5974e06fc6200"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rd2SaP2%2Fh7uD6FnwNs8eXzSm10fYlaCGJG8CeKWO1JdeNYbYv3gpEsGU9JvWyJ9HYKr7owQl7oO8uiKPRqNPJouGggfO2FPEeAC6fjD1EvttesbR4DcdPYspzYtpXg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77639e59af6d0b4d-OSL
Content-Encoding: gzip
ffnkquz.com/thema/Basic/colorset/Basic/colorset.css
188.114.96.1200 OK 5.7 kB URL HTTP/1.1 ffnkquz.com/thema/Basic/colorset/Basic/colorset.css
IP 188.114.96.1:0
File type Non-ISO extended-ASCII text, with CRLF, NEL line terminators
Hash 1b60dcab4fe0abcd20e56635192e62c4
7264cbdcf115df13e9f28f0dae49dba13d86d570
100bfcada1ba4cd8920d8ca167e5ad34a15ea0d28296e66f8ea5407b5ce31b27
Analyzer Verdict Alert quad9 Sinkholed
GET /thema/Basic/colorset/Basic/colorset.css HTTP/1.1
Host: ffnkquz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ffnkquz.com/
Cookie: PHPSESSID=ssa6gqn4884vglbk16cottmrd1; 2a0d2363701f23f8a75028924a3af643=MTYyLjE1OC4yMjIuMjUx
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 06:59:29 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 14 Oct 2020 11:49:27 GMT
ETag: W/"6bcc-5b1a01f9fbfc0"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WmSp2QQ1vEmenKEu0aUs5xU1gT7hXMxpHQO%2FfOye0PfWFtF%2FqCVQgzFlIQXnAsiSs3YAPcSZSjpaw%2FQK5rp7wbEdse9ZSc%2BYYS13g96MyC5SGv9Jh1yMf3iatpz4bg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77639e59abcd0afa-OSL
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6ec5f6261a8262e9f94b29627f54cefe
7ac766cf2ac8c2d960ec033388a767ff8a7d45e2
5f6ee11d840909fc5272c2c32f7874d55f49d831abc88d527e35562d218890f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 06:59:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ffnkquz.com/thema/Basic/widget/basic-post-webzine/widget.css?ver=180820
188.114.96.1200 OK 560 B URL HTTP/1.1 ffnkquz.com/thema/Basic/widget/basic-post-webzine/widget.css?ver=180820
IP 188.114.96.1:0
File type ISO-8859 text, with CRLF line terminators
Hash 225457ae3d2ce4abbc52c3323951f7a6
b85ce45c26cd6bda05177345f1dd1e7e72c2b5aa
79472e68b53066792d6480b711e298e90e934ecf26702c6551b40192ca862702
Analyzer Verdict Alert quad9 Sinkholed
GET /thema/Basic/widget/basic-post-webzine/widget.css?ver=180820 HTTP/1.1
Host: ffnkquz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ffnkquz.com/
Cookie: PHPSESSID=ssa6gqn4884vglbk16cottmrd1; 2a0d2363701f23f8a75028924a3af643=MTYyLjE1OC4yMjIuMjUx
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 06:59:29 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 02 Jun 2020 18:26:22 GMT
ETag: W/"578-5a71e0c5f8f80"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UtQtIDSLSKuolruGS1SfZD01fiWm%2BEtd583kduY68eZTDb9cw248kzE0IEVfb1zjGveYNiCDDjnPxWpjoRkuDQsV16ujkp%2FpgFa7tKA27SL6ERlPnXCw3mdl1z8DzQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77639e5b29d80b55-OSL
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6ec5f6261a8262e9f94b29627f54cefe
7ac766cf2ac8c2d960ec033388a767ff8a7d45e2
5f6ee11d840909fc5272c2c32f7874d55f49d831abc88d527e35562d218890f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 06:59:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ffnkquz.com/css/apms.css?ver=180820
188.114.96.1200 OK 12 kB URL HTTP/1.1 ffnkquz.com/css/apms.css?ver=180820
IP 188.114.96.1:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash edd313e5a2fbded2d8082df800f20ba4
b5dfc581ef05eedb02e9cd9a8e54aa24db39e275
5c1222dfa3e4a402b8ee921f1e1abe00e2eb4319c12cafcaf0d4df8b7caac782
Analyzer Verdict Alert quad9 Sinkholed
GET /css/apms.css?ver=180820 HTTP/1.1
Host: ffnkquz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ffnkquz.com/
Cookie: PHPSESSID=ssa6gqn4884vglbk16cottmrd1; 2a0d2363701f23f8a75028924a3af643=MTYyLjE1OC4yMjIuMjUx
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 06:59:29 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 14 Nov 2019 12:57:44 GMT
ETag: W/"132d4-5974e06fc6200"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ou6naLz5cnFmg96qFtMuVmZvgxwJW5u2PDJ880XMSQ8Ou9L%2Fb75NdDjDjfPZwOoxImzx5Q8YYfTWSXVe7nEGvlhZOY%2B1REdwByc%2Bo5LeN%2F2pAZKSw1xNQ6LNiA0wcg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77639e59ad59b509-OSL
Content-Encoding: gzip
push.services.mozilla.com/
52.42.74.230101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.42.74.230:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 9IZ3T8uxmDsl5aRltMi9hg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: OC9Dd53DsdqeRkrW2U0EHx7UhE8=
ffnkquz.com/thema/Basic/assets/bs3/css/bootstrap.min.css
188.114.96.1200 OK 18 kB URL HTTP/1.1 ffnkquz.com/thema/Basic/assets/bs3/css/bootstrap.min.css
IP 188.114.96.1:0
File type ASCII text, with very long lines (65371)
Hash 4e6993e099a70a08f04d760b96854630
d8aa5616d983635efeaf4174de89ad1a44eb2432
7c92058d344df10ad5265611d11f51cceca2b45bb7493ee2a0e10ed79fb0d4bf
Analyzer Verdict Alert quad9 Sinkholed
GET /thema/Basic/assets/bs3/css/bootstrap.min.css HTTP/1.1
Host: ffnkquz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ffnkquz.com/
Cookie: PHPSESSID=ssa6gqn4884vglbk16cottmrd1; 2a0d2363701f23f8a75028924a3af643=MTYyLjE1OC4yMjIuMjUx
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 06:59:29 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 14 Nov 2019 13:03:16 GMT
ETag: W/"1abce-5974e1ac64d00"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BZDwuUpzgWuAa0tCKePjx1iM0Sni1Td20LZkqaBjausg%2BZWndank6FjZRaTaSX6qvDhrbTqXCFQrS0LLj8Ucp7sWGG6jbsmuzjdf%2BprUmsMufLCC5svjvcvu%2FTvIsA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77639e59ac01b518-OSL
Content-Encoding: gzip
ffnkquz.com/thema/Basic/widget/basic-sidebar/widget.css?ver=180820
188.114.96.1200 OK 1.6 kB URL HTTP/1.1 ffnkquz.com/thema/Basic/widget/basic-sidebar/widget.css?ver=180820
IP 188.114.96.1:0
File type ASCII text, with CRLF line terminators
Hash 7e7d87bdb762e154f0d0aafce26c33c0
52e53eb9bc27181993a9ea5d1f5172c9c6b02d88
fd7bcb59a0a39d7a029323093880e3922d4c22e1d55f3216abb84080417c8a85
Analyzer Verdict Alert quad9 Sinkholed
GET /thema/Basic/widget/basic-sidebar/widget.css?ver=180820 HTTP/1.1
Host: ffnkquz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ffnkquz.com/
Cookie: PHPSESSID=ssa6gqn4884vglbk16cottmrd1; 2a0d2363701f23f8a75028924a3af643=MTYyLjE1OC4yMjIuMjUx
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 06:59:29 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 14 Nov 2019 13:03:08 GMT
ETag: W/"18f0-5974e1a4c3b00"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JSiyRItjT2DhweI5QvlAm6d94wzH%2B80NbVyAK0fZnjHQCJl%2FDKSQ9xoxSukqlQQ9mM%2FH90wL0PQTVvmF3p0DzAWSdIEx1h8%2BDmlgkEghjZqAM6BNeaqHccetzuvAdA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77639e5ca94c0b4d-OSL
Content-Encoding: gzip
ffnkquz.com/css/level/basic.css?ver=180820
188.114.96.1200 OK 633 B URL HTTP/1.1 ffnkquz.com/css/level/basic.css?ver=180820
IP 188.114.96.1:0
File type ASCII text, with CRLF line terminators
Hash 526b6b9098088a39bcb2b002e2192a59
e5930568dc94a6f7d2c7cfd343031a0a8af1a92b
e26c61ecf6d47465d4dcd569dfeb8a2c5b0d7828e51a3dc612301904dd8b370c
Analyzer Verdict Alert quad9 Sinkholed
GET /css/level/basic.css?ver=180820 HTTP/1.1
Host: ffnkquz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ffnkquz.com/
Cookie: PHPSESSID=ssa6gqn4884vglbk16cottmrd1; 2a0d2363701f23f8a75028924a3af643=MTYyLjE1OC4yMjIuMjUx
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 06:59:29 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 14 Nov 2019 12:57:48 GMT
ETag: W/"912-5974e07396b00"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JHU8PLzvjpFb8C7RWzbRhqjNQONhAwrSijXFUOcO3XZ5eJW6gpLc%2BK8hHAuxps4EIhL5oVypqSj6SqDZp6RWeRQ4DoPGM%2BH3nIiisErX8SlA%2BqhCqQboQyA2wCgPQQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77639e5cbe1b0afa-OSL
Content-Encoding: gzip
ffnkquz.com/js/jquery-migrate-1.2.1.min.js
188.114.96.1200 OK 3.1 kB URL HTTP/1.1 ffnkquz.com/js/jquery-migrate-1.2.1.min.js
IP 188.114.96.1:0
File type ASCII text, with very long lines (7085)
Hash 07f6145db9cb4514f8902cc369977175
0c78bdd62090d509f8ce56a54801ac5b6e1b888c
e8cdafc088e42d092246e1dce3ec1a06f0d8d5251035fec5f460d127541fac67
Analyzer Verdict Alert quad9 Sinkholed
GET /js/jquery-migrate-1.2.1.min.js HTTP/1.1
Host: ffnkquz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ffnkquz.com/
Cookie: PHPSESSID=ssa6gqn4884vglbk16cottmrd1; 2a0d2363701f23f8a75028924a3af643=MTYyLjE1OC4yMjIuMjUx
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 06:59:29 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 14 Nov 2019 12:59:02 GMT
ETag: W/"1c1f-5974e0ba29180"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sGw%2BvnNOaoovByiAbIFGqCxaG3ZFZOwTAbaKI0MjLALO%2FuJA%2FPn0NjsAawME9%2FXi%2Bl7zUzrczsPR8m6nlXObH5fPxA9KtWmcsX%2B888Q1Qc8%2BoXPwJbBCOfGAwBESNQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77639e5d99cfb509-OSL
Content-Encoding: gzip
ffnkquz.com/lang/korean/lang.js?ver=180820
188.114.96.1200 OK 1.1 kB URL HTTP/1.1 ffnkquz.com/lang/korean/lang.js?ver=180820
IP 188.114.96.1:0
Hash 4c8fb4b846c6d3aa10d33ef967924c23
6927aa3984cae97fa91b6b5dea157b1de1df5faf
b13c3ca94ebe2799481d64eebdada58d368846e23da073acf2a09666066d98a2
Analyzer Verdict Alert quad9 Sinkholed
GET /lang/korean/lang.js?ver=180820 HTTP/1.1
Host: ffnkquz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ffnkquz.com/
Cookie: PHPSESSID=ssa6gqn4884vglbk16cottmrd1; 2a0d2363701f23f8a75028924a3af643=MTYyLjE1OC4yMjIuMjUx
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 06:59:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 14 Nov 2019 12:59:09 GMT
ETag: W/"abd-5974e0c0d6140"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2wnK0x1qNlwaXJa1lMIT85DMM8WRYiqiIesq91ycfKGzdG0SksIgNREansrGvTuUvzRIoTXJmHd59BitOilIF5Q%2Bj8ahamtsRohgNWwTBtWHI%2FZxN5ZfBmFOoRAxaQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77639e5e9868b518-OSL
Content-Encoding: gzip
ffnkquz.com/js/wrest.js?ver=180820
188.114.96.1200 OK 2.8 kB URL HTTP/1.1 ffnkquz.com/js/wrest.js?ver=180820
IP 188.114.96.1:0
Hash aab969b3f0891ff297d9767c6a405661
e905798001a8eb9e29c3e3b41eb5de9a032d4e26
80b3f4c762e6818b44da1cbcb6275bb9d34d75400f43b5d8bb4f40647ecf8f0c
Analyzer Verdict Alert quad9 Sinkholed
GET /js/wrest.js?ver=180820 HTTP/1.1
Host: ffnkquz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ffnkquz.com/
Cookie: PHPSESSID=ssa6gqn4884vglbk16cottmrd1; 2a0d2363701f23f8a75028924a3af643=MTYyLjE1OC4yMjIuMjUx
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 06:59:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 14 Nov 2019 12:59:02 GMT
ETag: W/"2a27-5974e0ba29180"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IyzFJdN%2FsPCQ6p%2Fw0U9Xfx5tpMjUbYTA4Beo2Gj40zFJgAgqKAz%2FoExXuXB3WOtDxfi0mxkj4465uApN1GksZ4B3hCuhFCz%2F%2Fk9mtCIqZ4T2JJ4UG49Q%2Fjdt8q3sbQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77639e5ebf510afa-OSL
Content-Encoding: gzip
ffnkquz.com/js/jquery-1.11.3.min.js
188.114.96.1200 OK 33 kB URL HTTP/1.1 ffnkquz.com/js/jquery-1.11.3.min.js
IP 188.114.96.1:0
File type ASCII text, with very long lines (32038)
Hash 333ccd14b23e0520a1e89acb0d694305
bf74cfe3163be4ca7c7ce657ef59d0f030579ae9
6f071a8f30944e4f09f18cd9c8613ca2c7f7d189ddbd19ac3b02dc1c53a8ff66
Analyzer Verdict Alert quad9 Sinkholed
GET /js/jquery-1.11.3.min.js HTTP/1.1
Host: ffnkquz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ffnkquz.com/
Cookie: PHPSESSID=ssa6gqn4884vglbk16cottmrd1; 2a0d2363701f23f8a75028924a3af643=MTYyLjE1OC4yMjIuMjUx
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 06:59:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 14 Nov 2019 12:59:01 GMT
ETag: W/"176d5-5974e0b934f40"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EtJFqN1rYO2hNOpcYWpAs1XQlI%2B8CuKsKQf84jcV%2BoHcRAHdlLPtR%2BMt3mqK41rKU7Y78aHltAWAbKQMfLQ2XBWnm4tKSa3FOU6wk9fbMsBpj6pog%2FV7UAYvRelOcw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77639e5d2b050b55-OSL
Content-Encoding: gzip
ffnkquz.com/js/placeholders.min.js
188.114.96.1200 OK 2.3 kB URL HTTP/1.1 ffnkquz.com/js/placeholders.min.js
IP 188.114.96.1:0
File type ASCII text, with very long lines (3907), with CRLF line terminators
Hash ac83f6d73850f012d9a079e1088bb2e3
260616376d4bb9cc8bc7bdad30424332324737a8
a5bb5f6cb74b18660d99281a0a9461f4c9d613d89f4b764d5bc5e030d5f65625
Analyzer Verdict Alert quad9 Sinkholed
GET /js/placeholders.min.js HTTP/1.1
Host: ffnkquz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ffnkquz.com/
Cookie: PHPSESSID=ssa6gqn4884vglbk16cottmrd1; 2a0d2363701f23f8a75028924a3af643=MTYyLjE1OC4yMjIuMjUx
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 06:59:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 16 Sep 2019 02:39:25 GMT
ETag: W/"13ef-592a283137140"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hpeZ8MBtF8mZ61By1xAUmAObl0VtGTqi89VWi99s5cc1xbMjdZc7tzj7tDHT8WXrH3argCB7weoYGumA8sfLzy%2F%2FIhWncuaeFUN3koZ3szWcyoPGxI3sbT4tc5HkHA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77639e5f9bfeb509-OSL
Content-Encoding: gzip
ffnkquz.com/js/common.js?ver=180820
188.114.96.1200 OK 6.3 kB URL HTTP/1.1 ffnkquz.com/js/common.js?ver=180820
IP 188.114.96.1:0
File type Unicode text, UTF-8 text, with very long lines (494)
Hash e4cd68e41f41af92fdfcf68a1604064e
ff28c33beb57a1a16ceb5d75b25dfa70de544386
e520779a5a20f332e491de64ad8e438b0506362336a3b573dd107a69c6a0118a
Analyzer Verdict Alert quad9 Sinkholed
GET /js/common.js?ver=180820 HTTP/1.1
Host: ffnkquz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ffnkquz.com/
Cookie: PHPSESSID=ssa6gqn4884vglbk16cottmrd1; 2a0d2363701f23f8a75028924a3af643=MTYyLjE1OC4yMjIuMjUx
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 06:59:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 14 Nov 2019 12:59:02 GMT
ETag: W/"5378-5974e0ba29180"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ki9W55VNtKPyEm4jD0KHqgnlXl9xS%2B%2BwG6XpPEPWVyzFMQiVFOvK%2FK0rWj3k5n6gw5MhnE22QQDeaBQluvbVPOEabX1oPKwVeeOQSUDjLTEMkzLtS4GPpyiuSfPxaQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77639e5eaa690b4d-OSL
Content-Encoding: gzip
ffnkquz.com/plugin/apms/js/jquery.mobile.swipe.min.js
188.114.96.1200 OK 2.9 kB URL HTTP/1.1 ffnkquz.com/plugin/apms/js/jquery.mobile.swipe.min.js
IP 188.114.96.1:0
File type ASCII text, with very long lines (7687)
Hash 00f7a868d22dd5610d564caa407d5df5
a5d042eea825fcdab3f5dee1866cd3f35a6e9bce
fe7e41afc39e3eec5de2dceeef6f39883c961c32be26881b4964d5b229586f8a
Analyzer Verdict Alert quad9 Sinkholed
GET /plugin/apms/js/jquery.mobile.swipe.min.js HTTP/1.1
Host: ffnkquz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ffnkquz.com/
Cookie: PHPSESSID=ssa6gqn4884vglbk16cottmrd1; 2a0d2363701f23f8a75028924a3af643=MTYyLjE1OC4yMjIuMjUx
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 06:59:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 14 Nov 2019 12:59:36 GMT
ETag: W/"1e68-5974e0da95e00"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BQA1hTFVBdTkZ6uU2f7VUetIBSAaU8WKbfZ3mWcwBX4WNrdUoZLUz7Wg7bgQcaWOgejvtU4f8EgjKfbYLUJDnQ0MHUL6Qd0mXghpdHqhnH4c4NTct2o7ZnL15bxRWw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77639e610d610b55-OSL
Content-Encoding: gzip
ffnkquz.com/thema/Basic/assets/bs3/js/bootstrap.min.js
188.114.96.1200 OK 8.5 kB URL HTTP/1.1 ffnkquz.com/thema/Basic/assets/bs3/js/bootstrap.min.js
IP 188.114.96.1:0
File type ASCII text, with very long lines (31650)
Hash 5700170b5a53afd0280341bf9e05a6c4
1f3217571b22dfd821ee74654c59f87958e3318b
a9a67bb551436fef379eff0587c242904b8fc6ec99a4cd4e58dc249982025216
Analyzer Verdict Alert quad9 Sinkholed
GET /thema/Basic/assets/bs3/js/bootstrap.min.js HTTP/1.1
Host: ffnkquz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ffnkquz.com/
Cookie: PHPSESSID=ssa6gqn4884vglbk16cottmrd1; 2a0d2363701f23f8a75028924a3af643=MTYyLjE1OC4yMjIuMjUx
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 06:59:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 14 Nov 2019 13:03:20 GMT
ETag: W/"7c4b-5974e1b035600"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DFoEXF7%2BSmGMD63mNSsLtnNo1%2FPLIF1Jl4T2lOeeSIkbtUUiMpVWcO4JmhUAREi%2BytcD3hgyk0g818zjHkvGYSFfc8nnBI2xli3UpQjM8p3w6d7j7Z83E5090%2F%2B6EA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77639e619dedb509-OSL
Content-Encoding: gzip
ffnkquz.com/js/font-awesome/css/font-awesome.min.css
188.114.96.1200 OK 6.9 kB URL HTTP/1.1 ffnkquz.com/js/font-awesome/css/font-awesome.min.css
IP 188.114.96.1:0
File type ASCII text, with very long lines (30837)
Hash d6c8c1428db744943001ade348510e65
83e16acc875a5e3559526ac3c3f31c471dc77d4c
13de46b403869629f28eb7e5c1403f714372b09b5eb8ecbe3a5955ba94debf16
Analyzer Verdict Alert quad9 Sinkholed
GET /js/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: ffnkquz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ffnkquz.com/
Cookie: PHPSESSID=ssa6gqn4884vglbk16cottmrd1; 2a0d2363701f23f8a75028924a3af643=MTYyLjE1OC4yMjIuMjUx
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 06:59:30 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 16 Sep 2019 02:39:25 GMT
ETag: W/"7918-592a283137140"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u7pGip4Ppg6yFrQO0wZlX2q%2B8b3xyd7E1dR0%2BDp9V96IBNzIOtGIwOwOaPD7kl8DVAtRAAxKOlbJOGHjYbL7%2BwiDUpF2htesnwXaf%2F5PYWJxSUzV1%2BsZ7t%2BmNh2s3Q%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77639e60b8a70afa-OSL
Content-Encoding: gzip
ffnkquz.com/thema/Basic/assets/js/custom.js
188.114.96.1200 OK 1.7 kB URL HTTP/1.1 ffnkquz.com/thema/Basic/assets/js/custom.js
IP 188.114.96.1:0
Hash ffb94406a9d14a01616d9d106e770148
7306008b4e0eb5199dabdc7d09bd4334ba7c10c8
ac5652b07ea3d2f1de018f44055c40524e8f500a00f48b0d138863426ed36246
Analyzer Verdict Alert quad9 Sinkholed
GET /thema/Basic/assets/js/custom.js HTTP/1.1
Host: ffnkquz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ffnkquz.com/
Cookie: PHPSESSID=ssa6gqn4884vglbk16cottmrd1; 2a0d2363701f23f8a75028924a3af643=MTYyLjE1OC4yMjIuMjUx
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 06:59:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 14 Nov 2019 13:02:36 GMT
ETag: W/"10ab-5974e1863f300"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g9wlEAV%2BfMDD73rq06pHWmqu58p1EOk9bHTvNKZe4ZFS6JU642KtPEamyvKqx%2BM0n5DfyMzGKw1xZBds%2FQNIjxorCmTXO%2FztJj5W8I8GWZp35OPhTr0Rp1HcGfoZsQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77639e637ead0b55-OSL
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6331
Expires: Thu, 08 Dec 2022 08:45:01 GMT
Date: Thu, 08 Dec 2022 06:59:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6331
Expires: Thu, 08 Dec 2022 08:45:01 GMT
Date: Thu, 08 Dec 2022 06:59:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6331
Expires: Thu, 08 Dec 2022 08:45:01 GMT
Date: Thu, 08 Dec 2022 06:59:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6331
Expires: Thu, 08 Dec 2022 08:45:01 GMT
Date: Thu, 08 Dec 2022 06:59:30 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9f5f2e2-f4e8-4ddc-9a23-4327bb79769a.jpeg
34.120.237.76200 OK 4.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9f5f2e2-f4e8-4ddc-9a23-4327bb79769a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 00cdac5a7f801c10e53b8651ceb94c46
d83d7a30038bbf534c531c3786c3458c66d6504a
4d767e2c8aee11a230ecbb4c5c2339a65ca380e87b713f2ad6c1efc02df07238
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9f5f2e2-f4e8-4ddc-9a23-4327bb79769a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4565
x-amzn-requestid: 153e9d72-d9e1-498e-b74b-f4fad27f4efd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy3_pHs4oAMFYYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639106ca-44aa3006114060145bd0b16d;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:34:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: R18FvbBqHk-TVWaS2scvsqim40JdzbHScbg9ougAYX9zwLx91NoS0A==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:01:22 GMT
age: 32288
etag: "d83d7a30038bbf534c531c3786c3458c66d6504a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3236488e-3e39-44b6-b864-0f7ede8ee3f5.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3236488e-3e39-44b6-b864-0f7ede8ee3f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3cbac0c7e45d3f33c38dbf3af4de05ba
e9106fec14ddda290951c61eda64a69ada9a244a
98d3785eb167ea6bbba3782ab3cfd8cc9c7715f493265ac6d59494c00d3b002e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3236488e-3e39-44b6-b864-0f7ede8ee3f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9376
x-amzn-requestid: bf2f33a6-7f13-4f5b-ba9c-da33282135b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctERHFRSoAMFgYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb406-121af6ba1b7b6a3066ffa103;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:16:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: yTLFIBUWHjudn2h6VKM79RUnXfuUTmQBkYSCFrRuY7_biVW5bEKZfA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 18:39:08 GMT
age: 44422
etag: "e9106fec14ddda290951c61eda64a69ada9a244a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d5b6cef-6b79-466f-a8bf-5f3864c9b0e7.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d5b6cef-6b79-466f-a8bf-5f3864c9b0e7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c9f7b9c77a99173619ee85d0cfa8e2f8
05ba0fab4533b9837dd8558ffa5eb168e974d2b3
17184aca15041d2770fe14397fc0ab87e5f8e9f910b557031ba7fbf1349b0b9c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d5b6cef-6b79-466f-a8bf-5f3864c9b0e7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11464
x-amzn-requestid: 04d9e95d-563e-4258-934e-add82f95a638
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdGysEDmIAMFSIQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851aa-426e37fb562dc25b3449311b;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RspslnJzOcAHAL--VTgFJkFxb1PvLM6OHJmJUsdOKocI5ZPmJSLdoA==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 20:13:23 GMT
age: 38767
etag: "05ba0fab4533b9837dd8558ffa5eb168e974d2b3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2dbe127a-1d23-4c1b-b13e-cd024e5fd5de.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2dbe127a-1d23-4c1b-b13e-cd024e5fd5de.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d2d14fc1b5d2e6d6f4751a2fe741b990
86cd1428b2fd21ccb9d80c7f6be4d1e6221e97ef
bfe88cb97ccec5af627853d0bbc02f4799c4b8a25a995c8578365cb5a2914d6a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2dbe127a-1d23-4c1b-b13e-cd024e5fd5de.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8626
x-amzn-requestid: c5f3e36b-87f1-4938-819c-7b1a6ec6bfeb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy4BXHJ0oAMFaKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639106d5-15635f9a10d25d8c1d702bbd;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:34:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zQXtGXxwwTmn7gMQQj5wM69mPzAmYXRyfTbYfgUovTGsS0y048GZDg==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:06:53 GMT
age: 31957
etag: "86cd1428b2fd21ccb9d80c7f6be4d1e6221e97ef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b87d6543345f73653ed4a49b37d7c959
c4f26846b8b72293368ff16915d49297cf12bbb9
aee6aa42e4b5b83b81f74801ff8f0039fc6d38036f42ee81875813c856cf5eef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8659
x-amzn-requestid: 6f420d07-65d5-4bb2-9f1f-e56025de497b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFSYFArIAMF46w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c0f-0a295e5c48228d5806b4f107;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TSh1BNzzIPhWCfYEiqvQJckSPAyhHobe-HK6msEVeEJ1ruX-_rMSSA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:35:32 GMT
age: 26638
etag: "c4f26846b8b72293368ff16915d49297cf12bbb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2019d3bc-b4a4-4afc-ad84-3ab33b8036ec.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2019d3bc-b4a4-4afc-ad84-3ab33b8036ec.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fbdf939d23b987fd36a86b7a1258b10d
2cad45ad8e56699db3457501cf1e488fe85d479a
285a8a3d3ec439f493ca5d586477c3e3ed3b9e5d7a0133da73c426b69e112cb1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2019d3bc-b4a4-4afc-ad84-3ab33b8036ec.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10861
x-amzn-requestid: ad568a35-9eba-4c6d-a09d-97e518fbf503
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy4gIFN4oAMFqrw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6391079a-434ca8281e48538e69e72e05;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:37:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 4MrxT27cyrFqR70ofprhh4FbJAfVpKb787jT3TsH0l7BxQOf2tWh6g==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:02:15 GMT
age: 32235
etag: "2cad45ad8e56699db3457501cf1e488fe85d479a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ffnkquz.com/thema/Basic/widget/basic-sidebar/sidebar.js
188.114.96.1200 OK 1.5 kB URL HTTP/1.1 ffnkquz.com/thema/Basic/widget/basic-sidebar/sidebar.js
IP 188.114.96.1:0
Hash 5f923a2eb27da3b5cd8b6241454ca39f
f72c8a43947239b1320d05003d8d283889dea619
06e5dc9e52d7c29ccb2412d6269100a1252871cb98221a6b019657efdbd48b4e
Analyzer Verdict Alert quad9 Sinkholed
GET /thema/Basic/widget/basic-sidebar/sidebar.js HTTP/1.1
Host: ffnkquz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ffnkquz.com/
Cookie: PHPSESSID=ssa6gqn4884vglbk16cottmrd1; 2a0d2363701f23f8a75028924a3af643=MTYyLjE1OC4yMjIuMjUx
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 06:59:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 14 Nov 2019 13:03:09 GMT
ETag: W/"1174-5974e1a5b7d40"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZainUBG3bHZFwh0r5TNZHVX5ItKGCHLUsweKMVMciAu8Vx7oQJb7aig3VTgHRrk2Jl1Zf3DctbQ%2Bp2iJjGzSfFZ3%2FZoLwpW1grrfAkZ13ml59101D9s9%2B8ij0HhJEg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77639e645b9d0afa-OSL
Content-Encoding: gzip
ffnkquz.com/thema/Basic/assets/js/sticky.js
188.114.96.1200 OK 1.5 kB URL HTTP/1.1 ffnkquz.com/thema/Basic/assets/js/sticky.js
IP 188.114.96.1:0
Hash 250b745337e73c199b8385bf1c2601cf
12cc6341f488e0f0543464c294acc4c6717d3111
f66863636b5af8febe4dd72d51e582e39d9ffcefe91e60aaea6601e8985f57f3
Analyzer Verdict Alert quad9 Sinkholed
GET /thema/Basic/assets/js/sticky.js HTTP/1.1
Host: ffnkquz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ffnkquz.com/
Cookie: PHPSESSID=ssa6gqn4884vglbk16cottmrd1; 2a0d2363701f23f8a75028924a3af643=MTYyLjE1OC4yMjIuMjUx
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 06:59:30 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 14 Nov 2019 13:02:36 GMT
ETag: W/"1106-5974e1863f300"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5S%2FY9qxLvqTgsEHl5KGBLLqPUTIBQqxp2V0wxZ45LJF2ronhMXZtJWvpOuOJK%2Bu1qucnSp%2F09CZ1LCltixTBUKYq76V7gOejxzKV1zYxLaa67QxIPfVSjHUXS2jJxw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77639e63a809b509-OSL
Content-Encoding: gzip
ffnkquz.com/thema/Basic/widget/basic-post-more1/widget.css?ver=180820
188.114.96.1200 OK 521 B URL HTTP/1.1 ffnkquz.com/thema/Basic/widget/basic-post-more1/widget.css?ver=180820
IP 188.114.96.1:0
File type ASCII text, with CRLF line terminators
Hash 8fcc587fa940b33953aa1b013a725a02
f0ae102e865935b4452812fda4316cfa834fa633
7d7749cf760ff9c5778f0ba2b6f99f795c4666f555742bc9538a46e0f04a0f47
Analyzer Verdict Alert quad9 Sinkholed
GET /thema/Basic/widget/basic-post-more1/widget.css?ver=180820 HTTP/1.1
Host: ffnkquz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ffnkquz.com/
Cookie: PHPSESSID=ssa6gqn4884vglbk16cottmrd1; 2a0d2363701f23f8a75028924a3af643=MTYyLjE1OC4yMjIuMjUx
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 06:59:32 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 13 Aug 2020 10:41:22 GMT
ETag: W/"5fd-5acbff1fa5880"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xxhPg%2F19mrsJqQfuYkwt4UCx1%2FLiGrPsggp%2FNv1FpRxj53JtJ0Zd8zGocqg0seRRa4TVpTVxka2agFD%2FtbPk6%2F62hlDOQ7RDUoBnVDDtaLGlzCzZaLnMlvX8kVHkAw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77639e59abc6b4f7-OSL
Content-Encoding: gzip
fonts.googleapis.com/css?family=Roboto:400,300,500,500italic,700,900,400italic,700italic
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:400,300,500,500italic,700,900,400italic,700italic
IP 142.250.74.106:0
GET /css?family=Roboto:400,300,500,500italic,700,900,400italic,700italic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ffnkquz.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Dec 2022 06:59:29 GMT
date: Thu, 08 Dec 2022 06:59:29 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2