r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9314
Expires: Thu, 01 Dec 2022 12:51:36 GMT
Date: Thu, 01 Dec 2022 10:16:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9fce5679881bf302a8978a0b462f01a9
b699fe030ea13ac73813e655c42ed9b531925e2b
a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12291
Expires: Thu, 01 Dec 2022 13:41:13 GMT
Date: Thu, 01 Dec 2022 10:16:22 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f3cf023c797da81728c0ac84c8759331
fa07c5e39e4b0741ea484101cccb2202acea9d9c
5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2067
Cache-Control: max-age=89364
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 10:16:22 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 11:05:46 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
hhdiamond.com/
74.208.236.37302 Moved Temporarily 0 B IP 74.208.236.37:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:22 GMT
Server: Apache
Location: home.php
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: S+xbjKMmgxUvQZLlWRDl5Jhl0R2ug/gyBgdsBP72NXVEgluprJMMdFu60og8VMSG6mNy3Zx/2PQ=
x-amz-request-id: 0FXN26HAQ6B2BN0W
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 09:45:37 GMT
age: 1845
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 09:19:46 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3396
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 10:16:22 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
hhdiamond.com/home.php
74.208.236.37200 OK 4.8 kB IP 74.208.236.37:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (559), with CRLF, LF line terminators
Hash cf3aa5bfc5e8b4d40abe582482977998
ecf25b5957556de55a04794bb17a88846d648e9d
37c7432d8a2387e305152153b8d3a88dab079f306de3c324a4fa0c5d6c2d4647
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /home.php HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:22 GMT
Server: Apache
Content-Encoding: gzip
hhdiamond.com/css/styleMenu.css
74.208.236.37200 OK 1.4 kB URL HTTP/1.1 hhdiamond.com/css/styleMenu.css
IP 74.208.236.37:0
Hash 80c92736636c2f6ffa30f6e85d6e3be6
1c9804598008b2f643db6306ac68b884bb62b036
32a20f29bcb8b3d667bc461dd3925513c1e103e85173483f40c39b0d87c69268
Analyzer Verdict Alert quad9 Sinkholed
GET /css/styleMenu.css HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/home.php
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 1448
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:23 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2011 08:49:47 GMT
ETag: "5a8-49fc3602020c0"
Accept-Ranges: bytes
hhdiamond.com/style.css
74.208.236.37200 OK 9.7 kB IP 74.208.236.37:0
Hash 8a789da408fef78297a3fdd497c9126d
57fdaa7ac7e97e4cad4226edeabb9cda28d77929
e03a34d1fde5d1fed7681d3e68b86f3ffac1df61d96921ff7e1b5890ef398243
Analyzer Verdict Alert quad9 Sinkholed
GET /style.css HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/home.php
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 9665
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:23 GMT
Server: Apache
Last-Modified: Sat, 27 Oct 2012 12:32:54 GMT
ETag: "25c1-4cd09a2a58980"
Accept-Ranges: bytes
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 10:11:15 GMT
cache-control: public,max-age=3600
age: 308
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
hhdiamond.com/js/script.js
74.208.236.37200 OK 1.3 kB URL HTTP/1.1 hhdiamond.com/js/script.js
IP 74.208.236.37:0
Hash a60bec35edaa74f392c5913902ed70c6
2d4a1e799d105524eed5e06e942f77a3ee2dea5d
1b525749933978d647bd724726db4b7b5bc653e11f083f5578a72e6e1e238638
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /js/script.js HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/home.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 1270
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:23 GMT
Server: Apache
Last-Modified: Thu, 17 Feb 2011 10:48:06 GMT
ETag: "4f6-49c7821ec8580"
Accept-Ranges: bytes
hhdiamond.com/js/img_preview.js
74.208.236.37200 OK 1.9 kB URL HTTP/1.1 hhdiamond.com/js/img_preview.js
IP 74.208.236.37:0
File type ASCII text, with CRLF line terminators
Hash 4ad6c44f802cef09178c9a6d7ad12a48
9ec6d20723af019a5e597d8f325a0c3d63ed7905
c9b5873a19e3be550dcf1434326f6c4fe884573cdc5034f2e4e0db239321e6db
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /js/img_preview.js HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/home.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 1902
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:23 GMT
Server: Apache
Last-Modified: Sat, 27 Oct 2012 10:50:19 GMT
ETag: "76e-4cd0833c7b0c0"
Accept-Ranges: bytes
hhdiamond.com/js/jquery13.js
74.208.236.37200 OK 1.2 kB URL HTTP/1.1 hhdiamond.com/js/jquery13.js
IP 74.208.236.37:0
Hash 3d5f84b8fb669c98e827ec72eb911a69
a163642f4e1c6fada9cd501184a5b0084cc74864
f6e58597d8f52da6832c1192b2c9c26e91f2745c19152b60eb878467ab9687e5
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /js/jquery13.js HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/home.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 1195
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:23 GMT
Server: Apache
Last-Modified: Thu, 17 Feb 2011 10:48:01 GMT
ETag: "4ab-49c7821a03a40"
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2065
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 10:16:23 GMT
Last-Modified: Thu, 01 Dec 2022 09:41:58 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
hhdiamond.com/css/smoothDivScroll.css
74.208.236.37200 OK 3.5 kB URL HTTP/1.1 hhdiamond.com/css/smoothDivScroll.css
IP 74.208.236.37:0
File type Unicode text, UTF-8 (with BOM) text
Hash 32a1af6740b1cf1358a6d1921675f786
672e882b44c319c9105bce40a7bb2c8a8e9a02c5
ec26d9152ebe3f508547b811a5ee715e368618332ba8e1984af26100bbc1f5e9
Analyzer Verdict Alert quad9 Sinkholed
GET /css/smoothDivScroll.css HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/home.php
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 3543
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:23 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2011 08:49:45 GMT
ETag: "dd7-49fc360019c40"
Accept-Ranges: bytes
hhdiamond.com/js/menu.js
74.208.236.37200 OK 3.9 kB IP 74.208.236.37:0
Hash 4c67c33e86699bc09cd84efeb9a0adb4
d082a6aa04a9c0366227361be4965f6cdb394c1c
765cf6e95bff9e94abca3f156a47233ed37d3b4f2e48ad382109a5177c140016
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /js/menu.js HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/home.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 3901
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:23 GMT
Server: Apache
Last-Modified: Thu, 17 Feb 2011 11:04:05 GMT
ETag: "f3d-49c785b15b340"
Accept-Ranges: bytes
hhdiamond.com/js/jquery_002.js
74.208.236.37200 OK 6.0 kB URL HTTP/1.1 hhdiamond.com/js/jquery_002.js
IP 74.208.236.37:0
Hash 0ecd4640bc55f1a53c8a6e2472249b7a
fa5db52cee1774cec7e784f0d78ff46ce3c81099
b1d85c7c7f483500d91328d0faa7c028a4742ff9dd181569b9959df1c4fbf1b6
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /js/jquery_002.js HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/home.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 5983
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:23 GMT
Server: Apache
Last-Modified: Thu, 17 Feb 2011 10:48:03 GMT
ETag: "175f-49c7821bebec0"
Accept-Ranges: bytes
hhdiamond.com/js/jquery_003.js
74.208.236.37200 OK 14 kB URL HTTP/1.1 hhdiamond.com/js/jquery_003.js
IP 74.208.236.37:0
File type ASCII text, with very long lines (14054)
Hash b625988ae8f5e8298b26967f1feef506
f515fd955a944d95f256e32a70c2693782659be7
a7d8d3aa0f7f653cd981a9500dadab97d5e7f02022dbb4c350f134aba2db6643
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /js/jquery_003.js HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/home.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 14255
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:23 GMT
Server: Apache
Last-Modified: Thu, 17 Feb 2011 10:48:06 GMT
ETag: "37af-49c7821ec8580"
Accept-Ranges: bytes
hhdiamond.com/js/jquery.min.js
74.208.236.37200 OK 71 kB URL HTTP/1.1 hhdiamond.com/js/jquery.min.js
IP 74.208.236.37:0
File type ASCII text, with very long lines (833)
Hash 9eb33df93b21325142088527103882d2
bff995d3a845903f281b0b51fea421059459a808
2cec78f739fbddfed852cd7934d2530e7cc4c8f14b38673b03ba5fb880ad4cc7
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /js/jquery.min.js HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/home.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 70843
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:23 GMT
Server: Apache
Last-Modified: Thu, 17 Feb 2011 10:48:03 GMT
ETag: "114bb-49c7821bebec0"
Accept-Ranges: bytes
push.services.mozilla.com/
52.89.217.163101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.217.163:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: eiJdjEWc/iqIXKXmlyMl3Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 5XOT6nwtbnsuYvVJM6EI+1S7+js=
hhdiamond.com/js/jquery-1.3.2.js
74.208.236.37200 OK 121 kB URL HTTP/1.1 hhdiamond.com/js/jquery-1.3.2.js
IP 74.208.236.37:0
Size 121 kB (120619 bytes)
Hash e4af2b4805203f1ac490ad67531b848b
58b83c75c0ce6d70066070cbce6ccfa90a575923
233a5d16bee5a64bf3bc19abe3cc812a1e0619435f01c163f628773a469ff719
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /js/jquery-1.3.2.js HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/home.php
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 120619
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:23 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2011 09:09:03 GMT
ETag: "1d72b-49fc3a50749c0"
Accept-Ranges: bytes
hhdiamond.com/images/search_bg.png
74.208.236.37200 OK 525 B URL HTTP/1.1 hhdiamond.com/images/search_bg.png
IP 74.208.236.37:0
File type PNG image data, 23 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash 991dc89442c94e8660d992476c7e8755
88f8a104f926b028399b9e618f540c25267d4d23
c1c3abea10ae2893ad6e4fd8e6151e5bf3b371cabe0eb65b14eb1b461b2b2ffa
Analyzer Verdict Alert quad9 Sinkholed
GET /images/search_bg.png HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/home.php
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 525
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:23 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2011 08:42:26 GMT
ETag: "20d-49fc345d70080"
Accept-Ranges: bytes
hhdiamond.com/images/shopBag.jpg
74.208.236.37200 OK 2.5 kB URL HTTP/1.1 hhdiamond.com/images/shopBag.jpg
IP 74.208.236.37:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=Paint.NET v3.5.4], baseline, precision 8, 38x35, components 3\012- data
Hash 1f319e6fc95e2d5e721863f47b8667bf
a64811cc8981d0794a98b3a8caadcc5f6f94838e
1d632ffdf3fc7cb18fc3dee03ebd879a9f4c52298b5daa57c318aff3f3ffed85
Analyzer Verdict Alert quad9 Sinkholed
GET /images/shopBag.jpg HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/home.php
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 2490
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:23 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2011 08:42:35 GMT
ETag: "9ba-49fc3466054c0"
Accept-Ranges: bytes
hhdiamond.com/images/logo.jpg
74.208.236.37200 OK 24 kB URL HTTP/1.1 hhdiamond.com/images/logo.jpg
IP 74.208.236.37:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=Paint.NET v3.5.4], baseline, precision 8, 504x70, components 3\012- data
Hash 531b2519ad75adf7d14647ea976860c8
b67ebb4c92a2311ffd681237828fe75511ab9ad9
3b64858bcd45132f893ed62b0164f4c84b074441eadf79df9c2389ef5377c7f4
Analyzer Verdict Alert quad9 Sinkholed
GET /images/logo.jpg HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/home.php
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 24481
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:23 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2011 08:42:39 GMT
ETag: "5fa1-49fc3469d5dc0"
Accept-Ranges: bytes
hhdiamond.com/products/HE3059.jpg
74.208.236.37200 OK 33 kB URL HTTP/1.1 hhdiamond.com/products/HE3059.jpg
IP 74.208.236.37:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 400x400, components 3\012- data
Hash f782bee2deb8f55731f0ddd4d498a038
83ff410101a5345caaa4f93f820489abcf3db4a3
8a41bab9ff1954abac8fb9dec56b749ad175ab9bf949f5f82de814b8f112f547
Analyzer Verdict Alert quad9 Sinkholed
GET /products/HE3059.jpg HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/home.php
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 33292
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:23 GMT
Server: Apache
Last-Modified: Tue, 20 Nov 2012 08:30:32 GMT
ETag: "820c-4cee90c113a00"
Accept-Ranges: bytes
hhdiamond.com/images/menuBg.jpg
74.208.236.37200 OK 822 B URL HTTP/1.1 hhdiamond.com/images/menuBg.jpg
IP 74.208.236.37:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2, software=Paint.NET v3.5.4], baseline, precision 8, 4x34, components 3\012- data
Hash 9d34e7a1ab9231f219fd9bcb79ab6c47
5bbd7a17543ad557fd7e021efaec1b208e0038c8
e3a75f22aca47dd8eb1fcbd75230282f1821a55367bbd0ec6c11eca624f798c8
Analyzer Verdict Alert quad9 Sinkholed
GET /images/menuBg.jpg HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/style.css
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 822
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:23 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2011 08:42:42 GMT
ETag: "336-49fc346cb2480"
Accept-Ranges: bytes
hhdiamond.com/images/hhdiamond_main_banner.jpg
74.208.236.37200 OK 33 kB URL HTTP/1.1 hhdiamond.com/images/hhdiamond_main_banner.jpg
IP 74.208.236.37:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=11, orientation=[*0*], xresolution=146, yresolution=154, resolutionunit=2, software=Alo Photo Scan - www.alophotoscan.com, datetime=2021:11:29 17:10:38, copyright=H. H. DIAMOND SALES LTD.], baseline, precision 8, 999x214, components 3\012- data
Hash 3d8aeb37a0df68adbf72dd034b295ede
488dfeb9dec3fc83e1e4a0fdfc609164130be6e8
d49d518d52ef38465acb9998af9553649dfbfd8e141e747c96f0d0270f0c0f53
Analyzer Verdict Alert quad9 Sinkholed
GET /images/hhdiamond_main_banner.jpg HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/home.php
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 32724
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:23 GMT
Server: Apache
Last-Modified: Fri, 10 Dec 2021 05:22:26 GMT
ETag: "7fd4-5d2c3e8951177"
Accept-Ranges: bytes
hhdiamond.com/images/arrow_left.gif
74.208.236.37200 OK 1.4 kB URL HTTP/1.1 hhdiamond.com/images/arrow_left.gif
IP 74.208.236.37:0
File type GIF image data, version 89a, 45 x 100\012- data
Hash d9a7075ff5d15553f30365dd1247a2e9
681beed3a6bc1c954688416271dc5d4ef5845c2a
d4c47fe9b94009c22aeec4fcd3bb62868cef876a71b159e2674a83c22e50dddc
Analyzer Verdict Alert quad9 Sinkholed
GET /images/arrow_left.gif HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/css/smoothDivScroll.css
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 1420
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:23 GMT
Server: Apache
Last-Modified: Thu, 17 Feb 2011 10:47:04 GMT
ETag: "58c-49c781e3a7a00"
Accept-Ranges: bytes
hhdiamond.com/images/arrow_right.gif
74.208.236.37200 OK 1.4 kB URL HTTP/1.1 hhdiamond.com/images/arrow_right.gif
IP 74.208.236.37:0
File type GIF image data, version 89a, 45 x 100\012- data
Hash de758cb44e95473edaacfa8e107a9a85
fcc7447097800dd4330f30fdafdba4d7f0ad8b86
a7b2d9cb5c7b94e4d78469e46abae4e2249c5e8beb78fea7d44ba470d1360ef1
Analyzer Verdict Alert quad9 Sinkholed
GET /images/arrow_right.gif HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/css/smoothDivScroll.css
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 1428
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:23 GMT
Server: Apache
Last-Modified: Thu, 17 Feb 2011 10:47:05 GMT
ETag: "594-49c781e49bc40"
Accept-Ranges: bytes
hhdiamond.com/images/catBG.jpg
74.208.236.37200 OK 8.4 kB URL HTTP/1.1 hhdiamond.com/images/catBG.jpg
IP 74.208.236.37:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS4 Windows, datetime=2010:09:09 14:56:34], baseline, precision 8, 3x314, components 3\012- data
Hash b86657acf2c5c977a0f75105fe9fe57f
1700f7139bb6315fb3e00113b86890fc6490dd45
de3335a90a5ae741c283081b652621d704a74291dc40f042c187f347157ca13b
Analyzer Verdict Alert quad9 Sinkholed
GET /images/catBG.jpg HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/css/smoothDivScroll.css
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 8396
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:23 GMT
Server: Apache
Last-Modified: Thu, 17 Feb 2011 10:47:12 GMT
ETag: "20cc-49c781eb48c00"
Accept-Ranges: bytes
hhdiamond.com/images/view1.jpg
74.208.236.37200 OK 5.2 kB URL HTTP/1.1 hhdiamond.com/images/view1.jpg
IP 74.208.236.37:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 124x38, components 3\012- data
Hash b447bde71bc228d95726bfb701c7e7af
5f7a62f24396662f79a77d05c67136294b95b53a
f6a2631ae5b405c2f117dad4e946fabb4b51b73370cbb4e3f460eb74f3cff27f
Analyzer Verdict Alert quad9 Sinkholed
GET /images/view1.jpg HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/css/smoothDivScroll.css
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 5223
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:24 GMT
Server: Apache
Last-Modified: Thu, 17 Feb 2011 10:47:52 GMT
ETag: "1467-49c782116e600"
Accept-Ranges: bytes
hhdiamond.com/products/4fd56f4dfd.phtml.png.png
74.208.236.37403 Forbidden 35 B URL HTTP/1.1 hhdiamond.com/products/4fd56f4dfd.phtml.png.png
IP 74.208.236.37:0
Hash 613f1d7b52a65da160c06109f255ec63
0a7560783ac26405b7a6526bd6c15001451b0dab
ffc7f40078dfeea61405d1305a2832b49fcbeff253262e44a15eda1832208121
Analyzer Verdict Alert quad9 Sinkholed
GET /products/4fd56f4dfd.phtml.png.png HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/home.php
HTTP/1.1 403 Forbidden
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:24 GMT
Server: Apache
Content-Encoding: gzip
hhdiamond.com/products/HR1077.jpg
74.208.236.37200 OK 38 kB URL HTTP/1.1 hhdiamond.com/products/HR1077.jpg
IP 74.208.236.37:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 400x400, components 3\012- data
Hash 756f975f5a70a9b76fef84c3f0daefbd
b478312c6f547ba928e731644fb55f1240c1364e
dbf81e429e75b6d38f4a05466a208a60d9ab1d222aef6f7122907502692d4f20
Analyzer Verdict Alert quad9 Sinkholed
GET /products/HR1077.jpg HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/home.php
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 38271
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:24 GMT
Server: Apache
Last-Modified: Tue, 20 Nov 2012 07:14:57 GMT
ETag: "957f-4cee7fdc29e40"
Accept-Ranges: bytes
hhdiamond.com/products/HP2104.jpg
74.208.236.37200 OK 48 kB URL HTTP/1.1 hhdiamond.com/products/HP2104.jpg
IP 74.208.236.37:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 400x400, components 3\012- data
Hash 7fb55ebeb325ee52708341432f200423
31fd368df7df038a044be9ca3c57d312e8b1d966
d20461f74117542fb45e96d7cba8bba73ecd9a454704fb5fcf414e9113348c41
Analyzer Verdict Alert quad9 Sinkholed
GET /products/HP2104.jpg HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/home.php
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 47878
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:24 GMT
Server: Apache
Last-Modified: Tue, 20 Nov 2012 07:16:30 GMT
ETag: "bb06-4cee8034daf80"
Accept-Ranges: bytes
hhdiamond.com/images/footBg.jpg
74.208.236.37200 OK 429 B URL HTTP/1.1 hhdiamond.com/images/footBg.jpg
IP 74.208.236.37:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 5x100, components 3\012- data
Hash bf2249c8b93442091fb29247cf7b72f7
f47d24df15b959a064d16cabac2a70140d5f4223
0d5e49361aaae1425f63bca74d52859ac85bdaea9c9c479dab5cfaf8872707a7
Analyzer Verdict Alert quad9 Sinkholed
GET /images/footBg.jpg HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/style.css
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 429
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:24 GMT
Server: Apache
Last-Modified: Thu, 17 Feb 2011 10:47:16 GMT
ETag: "1ad-49c781ef19500"
Accept-Ranges: bytes
hhdiamond.com/products/HE3085.jpg
74.208.236.37200 OK 48 kB URL HTTP/1.1 hhdiamond.com/products/HE3085.jpg
IP 74.208.236.37:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 400x400, components 3\012- data
Hash ba775b8f9b09f4458a28ed70324ebbc9
4e3c3d770b806f784c01a678f2fdbbd6c229394a
04fe572db9c3533f155ead9b4bc97953673352d02e044826e45c6afd07623bac
Analyzer Verdict Alert quad9 Sinkholed
GET /products/HE3085.jpg HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/home.php
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 48221
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:24 GMT
Server: Apache
Last-Modified: Tue, 20 Nov 2012 08:20:24 GMT
ETag: "bc5d-4cee8e7d3e200"
Accept-Ranges: bytes
hhdiamond.com/products/HB5047%20C.jpg
74.208.236.37200 OK 70 kB URL HTTP/1.1 hhdiamond.com/products/HB5047%20C.jpg
IP 74.208.236.37:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 400x400, components 3\012- data
Hash c183a6196e26008d723da35efedf5b4c
cb44e5012c458296836439d33d8bd4ff5594d584
99a17c230ae79d832cb4743936b83251b4451bef202c42a73f5aa4fd67d20c7e
Analyzer Verdict Alert quad9 Sinkholed
GET /products/HB5047%20C.jpg HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/home.php
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 70071
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:24 GMT
Server: Apache
Last-Modified: Mon, 29 Nov 2021 09:56:20 GMT
ETag: "111b7-5d1ea73e242a6"
Accept-Ranges: bytes
hhdiamond.com/products/HN5006.jpg
74.208.236.37200 OK 41 kB URL HTTP/1.1 hhdiamond.com/products/HN5006.jpg
IP 74.208.236.37:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 400x400, components 3\012- data
Hash 731479cbec88e5af1b93d9fa8097a04a
0defcfb183b773a57507eaa47c8f3160df75ef9b
411cd8be6a05720316c016856915d38bd625b37ed4479536a3cc135baee79728
Analyzer Verdict Alert quad9 Sinkholed
GET /products/HN5006.jpg HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/home.php
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 41073
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:24 GMT
Server: Apache
Last-Modified: Tue, 20 Nov 2012 08:21:15 GMT
ETag: "a071-4cee8eade14c0"
Accept-Ranges: bytes
hhdiamond.com/images/hhdiamond_small_banner.jpg
74.208.236.37200 OK 12 kB URL HTTP/1.1 hhdiamond.com/images/hhdiamond_small_banner.jpg
IP 74.208.236.37:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=2, orientation=upper-left], baseline, precision 8, 380x157, components 3\012- data
Hash 1f93c5ceb16cb448005fbfce0798ad8c
fdccada8ab57c9fe6fa96eb6a771b19a1d382356
5317503827293a823ec0ce6a567afeb249444460f12b937cc1f505487466e3de
Analyzer Verdict Alert quad9 Sinkholed
GET /images/hhdiamond_small_banner.jpg HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/home.php
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 11839
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:24 GMT
Server: Apache
Last-Modified: Fri, 10 Dec 2021 05:22:25 GMT
ETag: "2e3f-5d2c3e885afa5"
Accept-Ranges: bytes
hhdiamond.com/products/HP2031.jpg
74.208.236.37200 OK 84 kB URL HTTP/1.1 hhdiamond.com/products/HP2031.jpg
IP 74.208.236.37:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 400x400, components 3\012- data
Hash 98f0bc121a524379d9f4e703072b17c9
bff1e711b94bfb1d31a75a1b143eebac5f928b5e
42a02f0fdd49e6f760fd974ab21a5db5467c8dfd7750cf2c5dbf96112683c746
Analyzer Verdict Alert quad9 Sinkholed
GET /products/HP2031.jpg HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/home.php
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 83710
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:24 GMT
Server: Apache
Last-Modified: Tue, 20 Nov 2012 08:24:08 GMT
ETag: "146fe-4cee8f52dda00"
Accept-Ranges: bytes
hhdiamond.com/images/cursors/cursor_arrow_left.cur
74.208.236.37200 OK 326 B URL HTTP/1.1 hhdiamond.com/images/cursors/cursor_arrow_left.cur
IP 74.208.236.37:0
File type MS Windows cursor resource - 1 icon, 32x32, 2 colors, hotspot @0x8\012- data
Hash b0d1e96c93d736d8b1f870b0002b01c7
14010cf4e8092bfdf6b9a4b6f150ef601be98686
f4ef9c58692789fb3c5f57de64d34d41a946fd4ec3f14ec0bc7527726ce2845a
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /images/cursors/cursor_arrow_left.cur HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/css/smoothDivScroll.css
HTTP/1.1 200 OK
Content-Length: 326
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:24 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2011 08:42:34 GMT
ETag: "146-49fc346511280"
Accept-Ranges: bytes
hhdiamond.com/products/HR1006.JPG
74.208.236.37200 OK 788 kB URL HTTP/1.1 hhdiamond.com/products/HR1006.JPG
IP 74.208.236.37:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 340x340, segment length 16, baseline, precision 8, 3169x3169, components 3\012- data
Size 788 kB (788411 bytes)
Hash 70e294079d985ba5c4612439f17b3e44
2df9ca1faa4b6ebf06c7dc9e6fed99c1da1228c8
3e93bf3983d036b20224462940f82b7d10c920949275e99952bc9e4436a52b75
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /products/HR1006.JPG HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/home.php
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 788411
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:23 GMT
Server: Apache
Last-Modified: Tue, 20 Nov 2012 08:27:50 GMT
ETag: "c07bb-4cee902694d80"
Accept-Ranges: bytes
hhdiamond.com/images/cursors/cursor_arrow_right.cur
74.208.236.37200 OK 326 B URL HTTP/1.1 hhdiamond.com/images/cursors/cursor_arrow_right.cur
IP 74.208.236.37:0
File type MS Windows cursor resource - 1 icon, 32x32, 2 colors, hotspot @10x8\012- data
Hash 444fc6283c62dff0c2e541362edd17f9
e43d6006345c39e4ebac08e8365c506a760b2e52
33f13b474bb8488483e436cc60469aea510712cb1f757f6d99e636b7673f11d2
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /images/cursors/cursor_arrow_right.cur HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/css/smoothDivScroll.css
HTTP/1.1 200 OK
Content-Length: 326
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:24 GMT
Server: Apache
Last-Modified: Thu, 31 Mar 2011 08:42:34 GMT
ETag: "146-49fc346511280"
Accept-Ranges: bytes
www.google-analytics.com/ga.js
142.250.74.110200 OK 17 kB URL HTTP/1.1 www.google-analytics.com/ga.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Thu, 01 Dec 2022 09:06:02 GMT
Expires: Thu, 01 Dec 2022 11:06:02 GMT
Cache-Control: public, max-age=7200
Age: 4222
Last-Modified: Tue, 27 Sep 2022 22:01:05 GMT
Content-Type: text/javascript
www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=509251976&utmhn=hhdiamond.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=H.H.Diamond%20and%20Jewelry%20LLC&utmhid=1913725581&utmr=-&utmp=%2Fhome.php&utmht=1669889783127&utmac=UA-17822556-2&utmcc=__utma%3D138591466.1549512791.1669889783.1669889783.1669889783.1%3B%2B__utmz%3D138591466.1669889783.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1214986451&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
142.250.74.110200 OK 35 B URL HTTP/1.1 www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=509251976&utmhn=hhdiamond.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=H.H.Diamond%20and%20Jewelry%20LLC&utmhid=1913725581&utmr=-&utmp=%2Fhome.php&utmht=1669889783127&utmac=UA-17822556-2&utmcc=__utma%3D138591466.1549512791.1669889783.1669889783.1669889783.1%3B%2B__utmz%3D138591466.1669889783.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1214986451&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
IP 142.250.74.110:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=509251976&utmhn=hhdiamond.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=H.H.Diamond%20and%20Jewelry%20LLC&utmhid=1913725581&utmr=-&utmp=%2Fhome.php&utmht=1669889783127&utmac=UA-17822556-2&utmcc=__utma%3D138591466.1549512791.1669889783.1669889783.1669889783.1%3B%2B__utmz%3D138591466.1669889783.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1214986451&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Date: Thu, 01 Dec 2022 10:16:24 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Content-Type: image/gif
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 35
hhdiamond.com/images/logo.gif
74.208.236.37200 OK 4.2 kB URL HTTP/1.1 hhdiamond.com/images/logo.gif
IP 74.208.236.37:0
File type GIF image data, version 89a, 76 x 68\012- data
Hash 7ceb3d90cd57ef5177327fee8020f692
cfee6e99c251a7f22bd67d060b47ca6fb9141bb2
d69687bd9246b7ee192eb2c16cf1c0fb8473150572f58b2c84e68aab7d106e14
Analyzer Verdict Alert quad9 Sinkholed
GET /images/logo.gif HTTP/1.1
Host: hhdiamond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hhdiamond.com/home.php
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 4168
Connection: keep-alive
Keep-Alive: timeout=15
Date: Thu, 01 Dec 2022 10:16:24 GMT
Server: Apache
Last-Modified: Thu, 17 Feb 2011 10:47:36 GMT
ETag: "1048-49c782022c200"
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11741
Expires: Thu, 01 Dec 2022 13:32:05 GMT
Date: Thu, 01 Dec 2022 10:16:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11741
Expires: Thu, 01 Dec 2022 13:32:05 GMT
Date: Thu, 01 Dec 2022 10:16:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11741
Expires: Thu, 01 Dec 2022 13:32:05 GMT
Date: Thu, 01 Dec 2022 10:16:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11741
Expires: Thu, 01 Dec 2022 13:32:05 GMT
Date: Thu, 01 Dec 2022 10:16:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11741
Expires: Thu, 01 Dec 2022 13:32:05 GMT
Date: Thu, 01 Dec 2022 10:16:24 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: ad2d9243-5e32-4faf-8ff3-b9abd3af1e89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb1_hEJJIAMF4Vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387d063-596f5833509112ee6cbedf54;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:51:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jM-fTqLsmU3c_gc9Wle-lvCwXelA9Sid9axtzJQDsfOHv23yUbKsBw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 22:43:35 GMT
age: 41569
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ffd12f9c423ffc627d9e3b3145944fe4
5cf9a7a784952e1bb0cbe499104f1774b1269d08
a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16038
x-amzn-requestid: 925134ee-dd35-45ed-8da7-d60c9c484993
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz80EHboAMFtmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd1e-48de287757e82632291365ee;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: I8qQQUMSVzFmXqjWM1n_F1XEE-ZQcpEF81OwJgf9i3Q5M8XiFAa8Zg==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:52:00 GMT
age: 44664
etag: "5cf9a7a784952e1bb0cbe499104f1774b1269d08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26d6dffbf400da4803a2e76e2a8ef2f8
2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8
04c6e31623fe48cbe83dc91635bfa47b337590f18919995b08d5bde27e929e03
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8740
x-amzn-requestid: c6c3e3dc-c9a2-4fda-a83b-cdd6ae81166b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7uyE9CoAMF6Xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830cc4-2c8940405044071a082ee678;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qykE_oaoqqPTgqGnfUo74mH29IOS97b5sZb_3VmB9yW7KUiJ1a7dnA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 18:58:06 GMT
age: 55098
etag: "2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 820cf89fcab8380adff42982c9fb11ed
84241ddddbbfd7de30118307fb1a62800d0a4cb3
0d051495f06ac84de934283b40cbfee7a042d32153a73486dd7c017430e882d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12898
x-amzn-requestid: 9b594c3c-6b8c-4589-8fcb-b3d7518b46f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cQZBNFxToAMF_9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63833ba1-767f510d72eef86d0cc892df;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 10:27:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kZfRQsF_Fo2UtTqK0ByOPeQK-IzTQO9JtTmxIMlapmsd93SJk_4VYw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:47:30 GMT
age: 44934
etag: "84241ddddbbfd7de30118307fb1a62800d0a4cb3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash acffcb88ce68b2d70c9c046a7b5a4aa8
cd016e6c0bf5c6eef06e933c9a5257ff4fca9bc1
692d782ac1d812de6dadbcfe46034b6b5d8bbd586e56beedd96dc4d65445dd4c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12035
x-amzn-requestid: 2711a135-b390-43ef-9e95-92438058bc27
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz81FIpIAMFs9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd1e-742f7f293df074340ab6a217;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ygs-Qd7UU_k4t4_breZTyqkHqGjJzlH1UMa9ncww5_IGpJ1n781jfg==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:51:55 GMT
age: 44669
etag: "cd016e6c0bf5c6eef06e933c9a5257ff4fca9bc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F350e8884-8903-4779-8a0c-bb74e9168bfb.jpeg
34.120.237.76200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F350e8884-8903-4779-8a0c-bb74e9168bfb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4fd5f7a9e04d27654062b3e18b8aecca
07fafbd614cdb49f20bceea29d5e684725d3bdf6
0cb64a9a33f66b92eed5a591b6c368f3d74363941d8876e553a8ea6aaa547590
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F350e8884-8903-4779-8a0c-bb74e9168bfb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4199
x-amzn-requestid: 61981ad5-3560-43e1-a1cd-37f823e89675
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZQxoEz5IAMFzQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6386c80a-291574e42bee51b2523b3920;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 03:03:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fL5AwXN4Kitj3BB3DyYyYfFYk3GRgLvhNNTiQKrDcxPR6mkfzyUuzQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 22:05:04 GMT
age: 43880
etag: "07fafbd614cdb49f20bceea29d5e684725d3bdf6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2