Report - netflixjobs.org/

Report Overview

Submitted URL
netflixjobs.org/
IP
104.160.64.15
ASN
#46469 GETRESPONSE-IMPLIX
Submitted
2023-02-04 12:34:44
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
6

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
netflixjobs.org	unknown	2023-02-03T02:30:41Z	2023-02-04T04:50:11Z	1.5 kB	6.8 kB	104.160.64.15
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	100.20.3.157
dev.visualwebsiteoptimizer.com	5085	2012-05-21T15:21:05Z	2023-03-13T06:18:35Z	442 B	2.4 kB	34.96.102.137
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.8 kB	68 kB	34.120.237.76
ga.getresponse.com	73478	2017-02-01T19:19:42Z	2023-03-13T08:49:30Z	433 B	1.5 kB	178.16.117.14
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	3.0 kB	8.0 kB	23.36.77.32
us-as.gr-cdn.com	88529	2018-02-23T15:36:19Z	2023-03-13T09:37:43Z	4.0 kB	449 kB	205.185.216.10
fonts.bunny.net	unknown	2022-03-21T08:38:02Z	2023-03-13T05:11:02Z	507 B	1.1 kB	194.242.11.186
ocsp.godaddy.com	698	2012-05-20T21:28:57Z	2023-03-13T05:12:19Z	340 B	2.3 kB	192.124.249.24
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
us-ms.gr-cdn.com	286205	2018-03-16T14:05:44Z	2023-03-13T04:54:34Z	2.7 kB	2.2 MB	205.185.216.42
ocsp.starfieldtech.com	6616	2012-06-22T20:08:50Z	2023-03-13T05:25:08Z	692 B	4.7 kB	192.124.249.22
us-an.gr-cdn.com	unknown	2022-03-29T06:58:49Z	2023-03-13T08:49:30Z	382 B	6.9 kB	205.185.216.10
ga2.getresponse.com	unknown	2022-03-29T06:58:50Z	2023-03-13T08:49:30Z	829 B	736 B	178.16.117.14

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-02-04	medium	netflixjobs.org	Sinkholed
2023-02-04	medium	netflixjobs.org	Sinkholed
2023-02-04	medium	netflixjobs.org	Sinkholed

ThreatFox

No alerts detected

JavaScript (11)

	URL	Size	First Seen	Last Seen
	us-an.gr-cdn.com/v2.1.27.0.umd.js	20 kB	2023-03-12	2023-03-13
Pretty URL us-an.gr-cdn.com/v2.1.27.0.umd.js IP 205.185.216.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 11:01:42 Last Seen2023-03-13 17:15:37 Times Seen1 Hash 12d493ee9d7c6f50d086cb5b024bf4ea ba6ddf7305a84ff7ba2069f4b550935fdd4c101f 8a9656d27a3f090c73269987373a7307dd010d70186a4b32c55b602936eb8311 Loading...

	netflixjobs.org/	1.4 kB	2023-03-07	2023-08-31
Pretty URL netflixjobs.org/ IP 104.160.64.15 ASN #46469 GETRESPONSE-IMPLIX Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:23:22 Last Seen2023-08-31 13:03:22 Times Seen9 Hash e5c591dc7222dc36cdf8641dd92538e7 2ca3fb716ce1d08aa49c1aab4192e58c4b765277 6c0567e209053bdd5a4f24f45201e011b630039717284fcefd4963261e288bf7 Loading...

	unknown	0 B	2023-03-07	2024-04-23
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-23 21:53:47 Times Seen37025149 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	us-as.gr-cdn.com/javascripts/core/lps/dist/vendor.chunk.b92dac4b9a41c3baa4f3.js	696 kB	2023-03-12	2023-03-13
Pretty URL us-as.gr-cdn.com/javascripts/core/lps/dist/vendor.chunk.b92dac4b9a41c3baa4f3.js IP 205.185.216.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 11:01:42 Last Seen2023-03-13 16:44:33 Times Seen1 Hash ce2a529a50fd20e7402abc0542c35801 553b54fec1945cb155f804b739474305ceba0903 d65cf9342e0eac618a4e5a76b5dfa8f7f4e9cad1b43f3bf50f1cfc460ef6021b Loading...

	us-as.gr-cdn.com/javascripts/core/lps/dist/lps-webfont-module.chunk.ab45f87b16d5634ae501.js	12 kB	2023-03-12	2024-04-11
Pretty URL us-as.gr-cdn.com/javascripts/core/lps/dist/lps-webfont-module.chunk.ab45f87b16d5634ae501.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 11:01:42 Last Seen2024-04-11 09:08:36 Times Seen11 Hash 149e4279b316943386c651dff77dc93c 91e506397246ece5a50fc723454166f1bcfc692e c44131eb63f5c15ffe9d861bccbd6a74b9e5ba44e03b3ab28045cc022ecbd8fa Loading...

	ga.getresponse.com/script/0ab2915c-2c1e-4c41-8681-717557f2e5f2/ga.js	559 B	2023-03-13	2023-03-13
Pretty URL ga.getresponse.com/script/0ab2915c-2c1e-4c41-8681-717557f2e5f2/ga.js IP 178.16.117.14 ASN #198881 GETRESPONSE Sp.z o.o. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:44:33 Last Seen2023-03-13 16:44:33 Times Seen1 Hash bf2f56db1583aed7eb13a206ec9ff5a1 d9ce2769e0e5b097ddc9da1ed0ee372c6ee8d707 acf3d6c2230a9a4b50e602e4dae3e9d4bf266922744d2a596bb4f9673e151936 Loading...

	netflixjobs.org/	466 B	2023-03-13	2023-03-13
Pretty URL netflixjobs.org/ IP 104.160.64.15 ASN #46469 GETRESPONSE-IMPLIX Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:44:33 Last Seen2023-03-13 16:44:33 Times Seen1 Hash 7d1109f975af00bb8bdd4b1b26a36782 8528c4b500d4ec69d11972283d9942370de011f3 81f25585684d80d42429de1dfa0cd4ffa75adff55ac4da8f1da6c989bdf2fb6d Loading...

	netflixjobs.org/	19 kB	2023-03-13	2023-03-13
Pretty URL netflixjobs.org/ IP 104.160.64.15 ASN #46469 GETRESPONSE-IMPLIX Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:44:33 Last Seen2023-03-13 16:44:33 Times Seen1 Hash 1116d31c2b60b7fc3de542c6985bccca d4f5876ed2681198a831f133989c24c1fc3d8ff7 3f4d2bf68238253afef38e8f35b0a43c3f21b26151c8091b4e571bf9723f2f7e Loading...

	netflixjobs.org/	448 B	2023-03-07	2024-02-15
Pretty URL netflixjobs.org/ IP 104.160.64.15 ASN #46469 GETRESPONSE-IMPLIX Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:23:22 Last Seen2024-02-15 15:32:40 Times Seen8 Hash ee146903c72fe96e379f1261e2975555 24ed1e282cbc9df2cb0c54e82c49cb79c00e8185 82b574147c2756db6679b8d9012c0490713492fbbab0ef96b790be272c9640df Loading...

	us-as.gr-cdn.com/javascripts/core/lps/dist/manifest.b32595e925aa7c67875b.js	4.8 kB	2023-03-12	2024-04-11
Pretty URL us-as.gr-cdn.com/javascripts/core/lps/dist/manifest.b32595e925aa7c67875b.js IP 205.185.216.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 11:01:42 Last Seen2024-04-11 09:08:36 Times Seen22 Hash cd95dc382898182d1e9b3320588e15dc be185474ffd05dcac02791c03ee10a332d706f9e fe6b84021bb99f232690f26765b37db228d4a8fadbfa7088a7226bbebdc5badc Loading...

	dev.visualwebsiteoptimizer.com/j.php?a=4859&u=https%3A%2F%2Fnetflixjobs.org%2F&r=0.5983362059561886	3.2 kB	2023-03-13	2023-03-13
Pretty URL dev.visualwebsiteoptimizer.com/j.php?a=4859&u=https%3A%2F%2Fnetflixjobs.org%2F&r=0.5983362059561886 IP 34.96.102.137 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:44:33 Last Seen2023-03-13 16:44:33 Times Seen1 Hash 3b4daec1bf9934ef0683f093fa3d44af 518fa7f6495be2ec50c19f32eeb54d50f1b39298 6eb14ba40333dbe6b87939e067911168cb7051bc32c64e80273c33a6213e454e Loading...

HTTP Transactions (47)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
81713f952b51a865ad9764cde68e3fdb
278c3a9c4bb2a0ffb7375f90d89a1ba6e90a766a
c2eb0d8a24ecb51af28f1c71db4b9a95c568dcf6c94b41ee8c78787a4ebebcef

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2EB0D8A24ECB51AF28F1C71DB4B9A95C568DCF6C94B41EE8C78787A4EBEBCEF"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6613
Expires: Sat, 04 Feb 2023 14:24:45 GMT
Date: Sat, 04 Feb 2023 12:34:32 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17323
Expires: Sat, 04 Feb 2023 17:23:15 GMT
Date: Sat, 04 Feb 2023 12:34:32 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5484
Expires: Sat, 04 Feb 2023 14:05:56 GMT
Date: Sat, 04 Feb 2023 12:34:32 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 11:36:14 GMT
content-type: application/json
age: 3498
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: N0k39FnQrj4coGQGd/8W82vf4oXIi0gqLs9vue3R6/EzgdYMOf/GBL2sfvMtiMQoi2URYnU8nh0=
x-amz-request-id: 7S7BQAM4MHJXPW1Q
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 11:52:49 GMT
age: 2503
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

netflixjobs.org/

104.160.64.15

301 Moved Permanently

0 B

URL HTTP/1.1
netflixjobs.org/
IP
104.160.64.15:0
ASN
#46469 GETRESPONSE-IMPLIX

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: netflixjobs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
server: nginx
date: Sat, 04 Feb 2023 12:34:32 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
set-cookie: squeeze-page=coh754c16tqj8cok86qh73eni8; path=/; HttpOnly
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
location: https://netflixjobs.org/

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 12:34:32 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 11:49:07 GMT
age: 2725
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
72a585e909365930f2dfb36d03c552cd
115b01cfece8b6585a54e67d6698574113a4db1b
c1b59e1b7159fc88e0fabea121eaa50c152cdf8676afa39bd2c22017d2a61a5f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C1B59E1B7159FC88E0FABEA121EAA50C152CDF8676AFA39BD2C22017D2A61A5F"
Last-Modified: Fri, 03 Feb 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 04 Feb 2023 18:34:32 GMT
Date: Sat, 04 Feb 2023 12:34:32 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7822
Expires: Sat, 04 Feb 2023 14:44:55 GMT
Date: Sat, 04 Feb 2023 12:34:33 GMT
Connection: keep-alive

push.services.mozilla.com/

100.20.3.157

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
100.20.3.157:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: m2thU56X/7kaOKpfj2yRoQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: O8gqNR14fMMrYdmY4pEncSso4UM=

us-as.gr-cdn.com/javascripts/core/lps/dist/webform-styles.9f5e9d8b409d7e730b92.css

205.185.216.10

200 OK

4.9 kB

URL HTTP/2
us-as.gr-cdn.com/javascripts/core/lps/dist/webform-styles.9f5e9d8b409d7e730b92.css
IP
205.185.216.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (20300)
Size
4.9 kB (4867 bytes)
Hash
0dc7c8ff75c0c5796ddd2e00cd95150a
48a99a775d92a73c23a8ab6d6eb1fcee5f28a433
ae4612a8340e4a0a119d029e18ebafa0c1ad44015e09b0687226bc8790221089

HTTP Headers

GET /javascripts/core/lps/dist/webform-styles.9f5e9d8b409d7e730b92.css HTTP/1.1
Host: us-as.gr-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://netflixjobs.org
Connection: keep-alive
Referer: https://netflixjobs.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:34:33 GMT
content-encoding: gzip
content-length: 4867
content-type: text/css
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
accept-ranges: bytes
etag: W/"637ddf55-7d14"
cache-control: max-age=31536000, public
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains
x-hw: 1675514073.dop205.sk1.t,1675514073.cds230.sk1.hn,1675514073.cds069.sk1.c
X-Firefox-Spdy: h2

us-as.gr-cdn.com/javascripts/core/lps/dist/reset-styles.9722e6e66dc6d51a0eac.css

205.185.216.10

200 OK

501 B

URL HTTP/2
us-as.gr-cdn.com/javascripts/core/lps/dist/reset-styles.9722e6e66dc6d51a0eac.css
IP
205.185.216.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (925), with no line terminators
Size
501 B (501 bytes)
Hash
ba080314bda1749b0a37d964c3f8e650
4e8948973f42d6199bdc64f6900159b80466ced6
39a37505435a7815078d47f34c65b229c835b27b33e72de1c679c7a44c69908d

HTTP Headers

GET /javascripts/core/lps/dist/reset-styles.9722e6e66dc6d51a0eac.css HTTP/1.1
Host: us-as.gr-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://netflixjobs.org
Connection: keep-alive
Referer: https://netflixjobs.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:34:33 GMT
content-encoding: gzip
content-length: 501
content-type: text/css
last-modified: Wed, 23 Nov 2022 08:52:37 GMT
accept-ranges: bytes
etag: W/"637ddf55-39d"
cache-control: max-age=31536000, public
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains
x-hw: 1675514073.dop205.sk1.t,1675514073.cds230.sk1.hn,1675514073.cds249.sk1.c
X-Firefox-Spdy: h2

us-as.gr-cdn.com/images/common/templates/landing/284/1/css/style.css

205.185.216.10

200 OK

872 B

URL HTTP/2
us-as.gr-cdn.com/images/common/templates/landing/284/1/css/style.css
IP
205.185.216.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text
Size
872 B (872 bytes)
Hash
320c4c7a5d441024f9dc9434f618ec24
529b6de4cf5c4f3dfab8eb08a2dd99344320e695
7fdc43edb8cbc38e15cd7ffdfb2c1140b1b3d978fcb5636c77df6185a281e96a

HTTP Headers

GET /images/common/templates/landing/284/1/css/style.css HTTP/1.1
Host: us-as.gr-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://netflixjobs.org
Connection: keep-alive
Referer: https://netflixjobs.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:34:33 GMT
content-encoding: gzip
content-length: 872
content-type: text/css
last-modified: Tue, 17 Jan 2023 13:09:13 GMT
accept-ranges: bytes
etag: "63c69df9-145e"
cache-control: max-age=86400, public
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains
x-hw: 1675514073.dop205.sk1.t,1675514073.cds230.sk1.hn,1675514073.cds232.sk1.c
X-Firefox-Spdy: h2

us-as.gr-cdn.com/javascripts/core/lps/dist/core-styles.f9a4a35e31fa93530acd.css

205.185.216.10

200 OK

7.0 kB

URL HTTP/2
us-as.gr-cdn.com/javascripts/core/lps/dist/core-styles.f9a4a35e31fa93530acd.css
IP
205.185.216.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (26900), with no line terminators
Size
7.0 kB (6977 bytes)
Hash
9e6e36ade310cec5128b9cc10c1e7217
6ac748d9e3e6b69ff77b1f0f5abbae2d22919f5b
0f90ad30dcf4da877e16a1f63fa8fc2dd589747f03ab7fffbe201a46637d8b41

HTTP Headers

GET /javascripts/core/lps/dist/core-styles.f9a4a35e31fa93530acd.css HTTP/1.1
Host: us-as.gr-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://netflixjobs.org
Connection: keep-alive
Referer: https://netflixjobs.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:34:33 GMT
content-encoding: gzip
content-length: 6977
content-type: text/css
last-modified: Wed, 23 Nov 2022 08:52:33 GMT
accept-ranges: bytes
etag: W/"637ddf51-6914"
cache-control: max-age=31536000, public
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains
x-hw: 1675514073.dop205.sk1.t,1675514073.cds230.sk1.hn,1675514073.cds226.sk1.c
X-Firefox-Spdy: h2

us-ms.gr-cdn.com/getresponse-MpdOn/photos/4c3378b6-21bb-4b5a-a3c5-313eac512f29.jpg

205.185.216.42

200 OK

50 kB

URL HTTP/2
us-ms.gr-cdn.com/getresponse-MpdOn/photos/4c3378b6-21bb-4b5a-a3c5-313eac512f29.jpg
IP
205.185.216.42:0
ASN
#20446 STACKPATH-CDN

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x480, components 3\012- data
Size
50 kB (49614 bytes)
Hash
a48333d43c19612ed61987fa5dbff3c5
8a8781250b96fee7830eb63ee8dda19e5c871881
492fdebd363e40cbba153a244bcfe2a7f5f7cf20aff0805fe45d5c7e2180b875

HTTP Headers

GET /getresponse-MpdOn/photos/4c3378b6-21bb-4b5a-a3c5-313eac512f29.jpg HTTP/1.1
Host: us-ms.gr-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netflixjobs.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:34:33 GMT
cache-control: max-age=31493016
content-length: 49614
content-type: image/jpeg
last-modified: Wed, 01 Feb 2023 21:14:35 GMT
accept-ranges: bytes
x-amz-id-2: hLzM2GSeArFeZjDI9Omo9Fetxp11xvZqX//IsqbkA7Olz9RKQVIFnV14Az/CbdiUVNJnZSmB9FM=
x-amz-request-id: HMDQ3RW5CA30KZN5
etag: "a48333d43c19612ed61987fa5dbff3c5"
x-amz-version-id: 7Gsfp6aU9BK0j3VWqr.XS8eGUoaq4vSa
x-robots-tag: noindex, nofollow
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: DENY
x-content-type-options: nosniff
content-security-policy-report-only: default-src 'self'; form-action 'none'; frame-ancestors 'none'; upgrade-insecure-requests; report-uri https://index-log.getresponse.com/index/marketing_csp?source=multimedia-gr
x-hw: 1675514073.dop065.sk1.t,1675514073.cds247.sk1.hn,1675514073.cds202.sk1.c
timing-allow-origin: *
X-Firefox-Spdy: h2

us-ms.gr-cdn.com/getresponse-MpdOn/photos/f7569152-6e8c-4aeb-a069-0be2e1787a93.png

205.185.216.42

200 OK

1.5 kB

URL HTTP/2
us-ms.gr-cdn.com/getresponse-MpdOn/photos/f7569152-6e8c-4aeb-a069-0be2e1787a93.png
IP
205.185.216.42:0
ASN
#20446 STACKPATH-CDN

File type
PNG image data, 55 x 57, 8-bit/color RGBA, non-interlaced\012- data
Size
1.5 kB (1463 bytes)
Hash
409c4512cd54a68e0c82ea93c24921d4
41246385c6d2dde10b42fd5a3cd9bb32fe9ae539
e60bf02d7ba86921f982b17ffdda9364f6b27918539267a67f2f1b1943624bab

HTTP Headers

GET /getresponse-MpdOn/photos/f7569152-6e8c-4aeb-a069-0be2e1787a93.png HTTP/1.1
Host: us-ms.gr-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netflixjobs.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:34:33 GMT
cache-control: max-age=31493016
content-length: 1463
content-type: image/png
last-modified: Fri, 03 Feb 2023 20:19:25 GMT
accept-ranges: bytes
x-amz-id-2: RK5n7NsSE2Z44HOqtcoMohTucjXaN+1dZI0Bp4eaCixPZUe1D+kNPawEaJGX5GvMNlqarkbv/2g=
x-amz-request-id: HMDQHAD7CDBGR4C9
etag: "409c4512cd54a68e0c82ea93c24921d4"
x-amz-version-id: Yg9jRnHUtOOPOk0XxkEXnwpZAdbQ1Tk.
x-robots-tag: noindex, nofollow
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: DENY
x-content-type-options: nosniff
content-security-policy-report-only: default-src 'self'; form-action 'none'; frame-ancestors 'none'; upgrade-insecure-requests; report-uri https://index-log.getresponse.com/index/marketing_csp?source=multimedia-gr
x-hw: 1675514073.dop065.sk1.t,1675514073.cds247.sk1.hn,1675514073.cds258.sk1.c
timing-allow-origin: *
X-Firefox-Spdy: h2

us-ms.gr-cdn.com/getresponse-MpdOn/photos/6439b00e-651d-41db-9db9-28bc0a3b8c33.png

205.185.216.42

200 OK

16 kB

URL HTTP/2
us-ms.gr-cdn.com/getresponse-MpdOn/photos/6439b00e-651d-41db-9db9-28bc0a3b8c33.png
IP
205.185.216.42:0
ASN
#20446 STACKPATH-CDN

File type
PNG image data, 849 x 292, 8-bit/color RGBA, non-interlaced\012- data
Size
16 kB (16030 bytes)
Hash
84a4d89a72506b756e04efcf9e77eacc
15d14a48a37c6efb41c8d25a79c84a54a6e989d6
ed8f2185125e0b3ff740c12ac8eb3dbc0b587bd5f635e509c98702c1ec412f7c

HTTP Headers

GET /getresponse-MpdOn/photos/6439b00e-651d-41db-9db9-28bc0a3b8c33.png HTTP/1.1
Host: us-ms.gr-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netflixjobs.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:34:33 GMT
cache-control: max-age=31493016
content-length: 16030
content-type: image/png
last-modified: Wed, 01 Feb 2023 21:20:45 GMT
accept-ranges: bytes
x-amz-id-2: MvIzOEORqOqzkSWlR7fWX9G3oT7e1QaIx6AFzHiAkppbV538RuqPo4JkwSxPf2Uv3h86al8jqDk=
x-amz-request-id: HMDZ208GBNP60J7Q
etag: "84a4d89a72506b756e04efcf9e77eacc"
x-amz-version-id: PrvhVHFyw8r_wYOFkUrwOFj7M_odAakx
x-robots-tag: noindex, nofollow
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: DENY
x-content-type-options: nosniff
content-security-policy-report-only: default-src 'self'; form-action 'none'; frame-ancestors 'none'; upgrade-insecure-requests; report-uri https://index-log.getresponse.com/index/marketing_csp?source=multimedia-gr
x-hw: 1675514073.dop065.sk1.t,1675514073.cds247.sk1.hn,1675514073.cds226.sk1.c
timing-allow-origin: *
X-Firefox-Spdy: h2

us-ms.gr-cdn.com/getresponse-MpdOn/photos/e715006a-bfda-48db-b6d6-28c6d6d883ba.png

205.185.216.42

200 OK

4.7 kB

URL HTTP/2
us-ms.gr-cdn.com/getresponse-MpdOn/photos/e715006a-bfda-48db-b6d6-28c6d6d883ba.png
IP
205.185.216.42:0
ASN
#20446 STACKPATH-CDN

File type
PNG image data, 321 x 57, 8-bit/color RGBA, non-interlaced\012- data
Size
4.7 kB (4719 bytes)
Hash
3e31753bad77245abee7b128e038caf1
a3e2cc4901fb8d65c7889702f91474993256b0df
85ad5bb70a45d482d12f186d66cc54b2aa37e0f2b15af4dab08fdf0c3a15d910

HTTP Headers

GET /getresponse-MpdOn/photos/e715006a-bfda-48db-b6d6-28c6d6d883ba.png HTTP/1.1
Host: us-ms.gr-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netflixjobs.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:34:33 GMT
cache-control: max-age=31493016
content-length: 4719
content-type: image/png
last-modified: Fri, 03 Feb 2023 20:05:57 GMT
accept-ranges: bytes
x-amz-id-2: jNzIJf62A7VK0+608Yr1fUN+5273FBJmDd1k5rwr6eNyrXdjaYoLR+RP1SdP9X9bYKKUjMdyO5Q=
x-amz-request-id: HMDKVDBAME9RERRM
etag: "3e31753bad77245abee7b128e038caf1"
x-amz-version-id: _6dJ25brmBVd9bReEsoy6uR0JKIRLrsi
x-robots-tag: noindex, nofollow
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: DENY
x-content-type-options: nosniff
content-security-policy-report-only: default-src 'self'; form-action 'none'; frame-ancestors 'none'; upgrade-insecure-requests; report-uri https://index-log.getresponse.com/index/marketing_csp?source=multimedia-gr
x-hw: 1675514073.dop065.sk1.t,1675514073.cds247.sk1.hn,1675514073.cds231.sk1.c
timing-allow-origin: *
X-Firefox-Spdy: h2

us-ms.gr-cdn.com/getresponse-MpdOn/photos/1f29b149-5316-4754-b5be-0a6c5a131955.png

205.185.216.42

200 OK

716 kB

URL HTTP/2
us-ms.gr-cdn.com/getresponse-MpdOn/photos/1f29b149-5316-4754-b5be-0a6c5a131955.png
IP
205.185.216.42:0
ASN
#20446 STACKPATH-CDN

File type
PNG image data, 948 x 581, 8-bit/color RGBA, non-interlaced\012- data
Size
716 kB (715455 bytes)
Hash
2a9d8a7246e214f26061cde33efefe38
5bb93f85218b5c5bfd5906f62a77e8b8a4584ee7
574150ea375f4984d134f4c464fd9105942ae64ed1088f9316b358980dc06ca8

HTTP Headers

GET /getresponse-MpdOn/photos/1f29b149-5316-4754-b5be-0a6c5a131955.png HTTP/1.1
Host: us-ms.gr-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netflixjobs.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:34:33 GMT
cache-control: max-age=31493016
content-length: 715455
content-type: image/png
last-modified: Wed, 01 Feb 2023 21:10:17 GMT
accept-ranges: bytes
x-amz-id-2: OBRDfMYMBrDNjQx7fexnRQTVcIsOjvd2zdiLgVGGq3O4IZiSLRjGVnEDoijuLkxP7qrpWpw40CI=
x-amz-request-id: HMDV6W5GF4RCK79V
etag: "2a9d8a7246e214f26061cde33efefe38"
x-amz-version-id: 4Mg_TjdqJ0LdJTtiZcyZbAeaHI0zKvQh
x-robots-tag: noindex, nofollow
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: DENY
x-content-type-options: nosniff
content-security-policy-report-only: default-src 'self'; form-action 'none'; frame-ancestors 'none'; upgrade-insecure-requests; report-uri https://index-log.getresponse.com/index/marketing_csp?source=multimedia-gr
x-hw: 1675514073.dop065.sk1.t,1675514073.cds247.sk1.hn,1675514073.cds264.sk1.c
timing-allow-origin: *
X-Firefox-Spdy: h2

us-as.gr-cdn.com/javascripts/core/lps/dist/show.chunk.fc43820b5836f75a9d88.js

205.185.216.10

200 OK

230 kB

URL HTTP/2
us-as.gr-cdn.com/javascripts/core/lps/dist/show.chunk.fc43820b5836f75a9d88.js
IP
205.185.216.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (65447)
Size
230 kB (230432 bytes)
Hash
06b18fb7d81bd1f5d3946d50690901cd
bfa815f169fde35bdec110c1d3d457f17e64bc3d
d91da4828975ba7bce5947db49dc955322f6f3f3915f364460bd7d8d95da4fcc

HTTP Headers

GET /javascripts/core/lps/dist/show.chunk.fc43820b5836f75a9d88.js HTTP/1.1
Host: us-as.gr-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netflixjobs.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:34:33 GMT
content-encoding: gzip
content-length: 230432
content-type: application/javascript
last-modified: Mon, 12 Dec 2022 13:33:50 GMT
accept-ranges: bytes
etag: W/"63972dbe-dbd84"
cache-control: max-age=31536000, public
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains
x-hw: 1675514073.dop001.sk1.t,1675514073.cds018.sk1.hn,1675514073.cds232.sk1.c
X-Firefox-Spdy: h2

us-as.gr-cdn.com/javascripts/core/lps/dist/manifest.b32595e925aa7c67875b.js

205.185.216.10

200 OK

2.3 kB

URL HTTP/2
us-as.gr-cdn.com/javascripts/core/lps/dist/manifest.b32595e925aa7c67875b.js
IP
205.185.216.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (4748)
Size
2.3 kB (2270 bytes)
Hash
5a63543b3134aece09aaad169c3fcb85
a485d2525cd99c64bc67e0e0712f39d1d2e65281
da99dcb91a296000a22db2b85503656d4071c0517e0e8970594f43fb717537a9

HTTP Headers

GET /javascripts/core/lps/dist/manifest.b32595e925aa7c67875b.js HTTP/1.1
Host: us-as.gr-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netflixjobs.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:34:33 GMT
content-encoding: gzip
content-length: 2270
content-type: application/javascript
last-modified: Mon, 12 Dec 2022 13:33:48 GMT
accept-ranges: bytes
etag: W/"63972dbc-12c6"
cache-control: max-age=31536000, public
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains
x-hw: 1675514073.dop001.sk1.t,1675514073.cds018.sk1.hn,1675514073.cds222.sk1.c
X-Firefox-Spdy: h2

us-ms.gr-cdn.com/getresponse-MpdOn/photos/d9127341-8d12-45bd-b639-9b35efdbf555.jpg

205.185.216.42

200 OK

1.4 MB

URL HTTP/2
us-ms.gr-cdn.com/getresponse-MpdOn/photos/d9127341-8d12-45bd-b639-9b35efdbf555.jpg
IP
205.185.216.42:0
ASN
#20446 STACKPATH-CDN

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 2000x1125, components 3\012- data
Size
1.4 MB (1443620 bytes)
Hash
5018536135b323cc1e8a6b2a1663fbca
46d2d4896e32e1508b69a08c81a31b9794b672d8
c8e9b8db49e8aa9443490ca79656fa95afc6c2186dd0438dc16afad923a0ae75

HTTP Headers

GET /getresponse-MpdOn/photos/d9127341-8d12-45bd-b639-9b35efdbf555.jpg HTTP/1.1
Host: us-ms.gr-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netflixjobs.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:34:33 GMT
cache-control: max-age=31493016
content-length: 1443620
content-type: image/jpeg
last-modified: Wed, 01 Feb 2023 20:57:39 GMT
accept-ranges: bytes
x-amz-id-2: VGaMfHdWpAP39l5OGFLZiDE8i7jXKptRz6MsaHvYx6reFDyjBE/4rDO+vIRTix5I6XMx2nxvD4w=
x-amz-request-id: HMDSHGPZEFJW84FK
etag: "5018536135b323cc1e8a6b2a1663fbca"
x-amz-version-id: QPsfXQKAnY.5wVievlGYvFCkStUI2Wqs
x-robots-tag: noindex, nofollow
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: DENY
x-content-type-options: nosniff
content-security-policy-report-only: default-src 'self'; form-action 'none'; frame-ancestors 'none'; upgrade-insecure-requests; report-uri https://index-log.getresponse.com/index/marketing_csp?source=multimedia-gr
x-hw: 1675514073.dop065.sk1.t,1675514073.cds247.sk1.hn,1675514073.cds236.sk1.c
timing-allow-origin: *
X-Firefox-Spdy: h2

us-as.gr-cdn.com/javascripts/core/lps/dist/vendor.chunk.b92dac4b9a41c3baa4f3.js

205.185.216.10

200 OK

192 kB

URL HTTP/2
us-as.gr-cdn.com/javascripts/core/lps/dist/vendor.chunk.b92dac4b9a41c3baa4f3.js
IP
205.185.216.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (65445)
Size
192 kB (191571 bytes)
Hash
0017da2b4707467394d566e494f80e41
1d04fef7bd390a510e7cee017d9189b91274c93e
56f2bffcd9f014c4a901e96883bf2b8480d2c31ffe5459f5b20b7ad283c875b6

HTTP Headers

GET /javascripts/core/lps/dist/vendor.chunk.b92dac4b9a41c3baa4f3.js HTTP/1.1
Host: us-as.gr-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netflixjobs.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:34:33 GMT
content-encoding: gzip
content-length: 191571
content-type: application/javascript
last-modified: Mon, 12 Dec 2022 13:33:51 GMT
accept-ranges: bytes
etag: W/"63972dbf-a9e3c"
cache-control: max-age=31536000, public
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains
x-hw: 1675514073.dop001.sk1.t,1675514073.cds018.sk1.hn,1675514073.cds226.sk1.c
X-Firefox-Spdy: h2

netflixjobs.org/

104.160.64.15

200 OK

4.9 kB

URL HTTP/2
netflixjobs.org/
IP
104.160.64.15:0
ASN
#46469 GETRESPONSE-IMPLIX

File type
Unicode text, UTF-8 text, with very long lines (12156)
Size
4.9 kB (4945 bytes)
Hash
e9442f7a5557ed6975cbc2e70f0a0bb6
176653f216ae13be48287212b2c734e67fd09dcf
c6aabd9abf93fc8e0c9c7030c5bc74c4be1729fd6f189e6ef7d320203b51212c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: netflixjobs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 12:34:33 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: squeeze-page=5herkfkg89knqd0qtk5jpnf4lu; path=/; HttpOnly
zXagX[variantVersion]=0; path=/
content-encoding: gzip
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8c4a1017eb0e9018356a222664dca2a7
006c280a711aaf34a316d1f7691ee164346a3a3c
8ccfed8cd50c1337dc77ec8d684631ea80cb2c46db527f23ae00fa9a094c0501

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8CCFED8CD50C1337DC77EC8D684631EA80CB2C46DB527F23AE00FA9A094C0501"
Last-Modified: Sat, 04 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6570
Expires: Sat, 04 Feb 2023 14:24:04 GMT
Date: Sat, 04 Feb 2023 12:34:34 GMT
Connection: keep-alive

us-as.gr-cdn.com/images/squeeze-page/_external/various/favicons/favicon-194x194.png

205.185.216.10

200 OK

6.5 kB

URL HTTP/2
us-as.gr-cdn.com/images/squeeze-page/_external/various/favicons/favicon-194x194.png
IP
205.185.216.10:0
ASN
#20446 STACKPATH-CDN

File type
PNG image data, 194 x 194, 8-bit/color RGBA, non-interlaced\012- data
Size
6.5 kB (6450 bytes)
Hash
34c4c40ae8a0e70b08cd1a0c67890cd3
fed42d1d33e65455e1f53ba6bf8d6568107cd7ff
9380a1c0a0fc7ce40c799c218c287d3a46cc86617947dd337d6bf43c48d7ff85

HTTP Headers

GET /images/squeeze-page/_external/various/favicons/favicon-194x194.png HTTP/1.1
Host: us-as.gr-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netflixjobs.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:34:34 GMT
content-length: 6450
content-type: image/png
last-modified: Wed, 23 Nov 2022 08:52:50 GMT
accept-ranges: bytes
etag: "637ddf62-1932"
cache-control: max-age=31536000, public
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains
x-hw: 1675514074.dop001.sk1.t,1675514074.cds018.sk1.hn,1675514074.cds010.sk1.c
X-Firefox-Spdy: h2

us-as.gr-cdn.com/images/squeeze-page/_external/various/favicons/favicon-16x16.png

205.185.216.10

200 OK

617 B

URL HTTP/2
us-as.gr-cdn.com/images/squeeze-page/_external/various/favicons/favicon-16x16.png
IP
205.185.216.10:0
ASN
#20446 STACKPATH-CDN

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
617 B (617 bytes)
Hash
3620f7efd1a3df088aedc5d2b711f419
cca885fc3ac32b397e51ecd362105a3f19db3dc3
f3f4e5ff9e369382d320f100813ce4961edc1ea78d80ac6d5a0f7b4d74d881f6

HTTP Headers

GET /images/squeeze-page/_external/various/favicons/favicon-16x16.png HTTP/1.1
Host: us-as.gr-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netflixjobs.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:34:34 GMT
content-length: 617
content-type: image/png
last-modified: Wed, 23 Nov 2022 08:52:50 GMT
accept-ranges: bytes
etag: "637ddf62-269"
cache-control: max-age=31536000, public
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains
x-hw: 1675514074.dop001.sk1.t,1675514074.cds018.sk1.hn,1675514074.cds228.sk1.c
X-Firefox-Spdy: h2

ocsp.starfieldtech.com/

192.124.249.22

200 OK

1.8 kB

URL HTTP/1.1
ocsp.starfieldtech.com/
IP
192.124.249.22:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1845 bytes)
Hash
04d443cf397263d86c23d8c0500e7332
9675722c6d06a6ce785df4749551e4160155ce93
4d03352e064dc122580f56979785021d99386e6948d901b9a20950541e4ea083

HTTP Headers

POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 04 Feb 2023 12:34:34 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 03 Feb 2023 22:53:28 GMT
Expires: Sat, 04 Feb 2023 22:53:28 GMT
ETag: "9675722c6d06a6ce785df4749551e4160155ce93"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

ocsp.starfieldtech.com/

192.124.249.22

200 OK

1.8 kB

URL HTTP/1.1
ocsp.starfieldtech.com/
IP
192.124.249.22:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1845 bytes)
Hash
04d443cf397263d86c23d8c0500e7332
9675722c6d06a6ce785df4749551e4160155ce93
4d03352e064dc122580f56979785021d99386e6948d901b9a20950541e4ea083

HTTP Headers

POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 04 Feb 2023 12:34:34 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 03 Feb 2023 22:53:28 GMT
Expires: Sat, 04 Feb 2023 22:53:28 GMT
ETag: "9675722c6d06a6ce785df4749551e4160155ce93"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8339
Expires: Sat, 04 Feb 2023 14:53:33 GMT
Date: Sat, 04 Feb 2023 12:34:34 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8339
Expires: Sat, 04 Feb 2023 14:53:33 GMT
Date: Sat, 04 Feb 2023 12:34:34 GMT
Connection: keep-alive

dev.visualwebsiteoptimizer.com/j.php?a=4859&u=https%3A%2F%2Fnetflixjobs.org%2F&r=0.5983362059561886

34.96.102.137

200 OK

1.9 kB

URL HTTP/2
dev.visualwebsiteoptimizer.com/j.php?a=4859&u=https%3A%2F%2Fnetflixjobs.org%2F&r=0.5983362059561886
IP
34.96.102.137:0
ASN
#15169 GOOGLE

File type
data
Size
1.9 kB (1878 bytes)
Hash
3275610229bbdff77910831d0bde86d6
f040d0bad91c38eb36f97ec338cb6029d14de824
09fb8e8b90e4dbd6be601efcfc0b75324d197b758e4569e475df19a37d427557

HTTP Headers

GET /j.php?a=4859&amp;u=https%3A%2F%2Fnetflixjobs.org%2F&amp;r=0.5983362059561886 HTTP/1.1
Host: dev.visualwebsiteoptimizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netflixjobs.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:34:34 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
cache-control: public, max-age=0, no-cache, must-revalidate
etag: W/"1675357964"
server: gams1
timing-allow-origin: *
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8339
Expires: Sat, 04 Feb 2023 14:53:33 GMT
Date: Sat, 04 Feb 2023 12:34:34 GMT
Connection: keep-alive

fonts.bunny.net/css?family=Open+Sans+Extra-Bold:300,300i,400,400i,600,600i,700,700i,800,800i&subset=cyrillic,cyrillic-ext,greek,greek-ext,latin-ext,vietnamese

194.242.11.186

200 OK

96 B

URL HTTP/2
fonts.bunny.net/css?family=Open+Sans+Extra-Bold:300,300i,400,400i,600,600i,700,700i,800,800i&subset=cyrillic,cyrillic-ext,greek,greek-ext,latin-ext,vietnamese
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type
ASCII text
Size
96 B (96 bytes)
Hash
f81790470ed17e11fc9f16d98d5f1bb2
1b0eec8cf10d55bb9943b3216d8a485b558baca2
6be81c708e67803485b94d3dcd62a476bf29189d65615522c5a5715fe1b129e8

HTTP Headers

GET /css?family=Open+Sans+Extra-Bold:300,300i,400,400i,600,600i,700,700i,800,800i&subset=cyrillic,cyrillic-ext,greek,greek-ext,latin-ext,vietnamese HTTP/1.1
Host: fonts.bunny.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netflixjobs.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:34:34 GMT
content-type: text/css; charset=utf-8
content-length: 96
server: BunnyCDN-NO1-830
cdn-pullzone: 781720
cdn-uid: 3a60ca70-b89d-4cd5-a4b5-34a3468d7e0f
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=2592000
last-modified: Sat, 04 Feb 2023 12:34:34 GMT
x-do-app-origin: 1fb91846-e6b7-11ec-b1dc-0c42a19a82a7
x-do-orig-status: 200
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 02/04/2023 12:34:34
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: f6d3488b9addd26adb523c9b2d1704e9
cdn-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8527 bytes)
Hash
6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: 6a8c6487-6069-47d1-afa1-648626f85439
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyDqqGg5oAMFV-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd7fdd-0a772cde1e6fba6d7da97435;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:42:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: CHWhIpyzhoPtMUplzh1430Q9FfCM1wkTc_hQsgQk6InM9tYBPGYnNg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:05:44 GMT
age: 52130
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11565 bytes)
Hash
e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lsQxPtozrh2Ty1T-3d-1crDfi8HgVKRafOXb1UFl033bCx3kAzTS7w==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 06:20:04 GMT
age: 22470
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.1 kB (9141 bytes)
Hash
f7101f6e43855cb76ce48271a847ffbd
8e674830a97d8ce3818132fda197db4f0289d316
e78a83a4024e238bcdec3b9c4d5c12a99f49aabd57e34952f6a4cc8ed4422f55

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9141
x-amzn-requestid: ed7db574-6bca-4f3e-8879-c3e836549339
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD8zE5lIAMF1HA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8051-4480112f11d4ced0037d1ad8;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: aKr85ooofBPeKkeJIDO5W_X5Rn6xnJlRHmVrs8tgBMYe3HQhobsm3w==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:56:07 GMT
age: 52707
etag: "8e674830a97d8ce3818132fda197db4f0289d316"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5174 bytes)
Hash
e5b4e4f15da3323c73974c3f1cdb5d74
1f14971d0cf979cc34ff191849dc43d86e8ac463
5893d7e5b2fd9de92829b303c42d0c07ff32b3f6b8705b6f5b4a784315c8808e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5174
x-amzn-requestid: 35630c70-3bad-47b4-94bb-09c873632194
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7EFAHIAMFQQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-317b1fbb3bee0f377697bf3d;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OD5cy75AkNMwTIvIool2nKbKgr5Jpo1Plm_X_YPr3rdPbg86_V2fdA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:00:26 GMT
age: 52448
etag: "1f14971d0cf979cc34ff191849dc43d86e8ac463"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a517af0-06bb-4ad2-b66e-3627ca6b60a3.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.7 kB (9743 bytes)
Hash
518bba9a8770e8ff15229a68be5bddc3
139f944b3f4279e640901f7a6b993f1a49b51a22
0591e73dec2190752677f06525bc993dc8c7a5aa20984a5eda64c323188e2b1d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a517af0-06bb-4ad2-b66e-3627ca6b60a3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9743
x-amzn-requestid: b6c1caa9-72e4-476f-9c3d-4a746c410ba3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7EHLJoAMF_TA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-1289ef383fbad59621eda6d0;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i7ZNMlYetTGgoM0beS97MTxveM1H7CI4JdAvPhYdqe9pyCCQugjgNg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:58:58 GMT
age: 52536
etag: "139f944b3f4279e640901f7a6b993f1a49b51a22"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.5 kB (9500 bytes)
Hash
3ac51fd6789cbe19c2d484c9022b0e39
bcba22a7b7f5dd1f59fffd1027e5d7002cecb6e9
300b5e50cb910f9f4905ee7313d98763b68f85f5874db499cc94469fb14cabfe

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9500
x-amzn-requestid: 8fe94388-e8d9-4329-b73a-e9a356df76bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD9QEA1IAMF3Ug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8054-51f954ac4bec16d1055e38f5;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FkTJ6wQ4eFYBPDyS0l5vLeWvHHiQIx-cYyFzT4ggHJ8M5Gg3dozFxQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:59:51 GMT
age: 52483
etag: "bcba22a7b7f5dd1f59fffd1027e5d7002cecb6e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ga.getresponse.com/script/0ab2915c-2c1e-4c41-8681-717557f2e5f2/ga.js

178.16.117.14

200 OK

559 B

URL HTTP/2
ga.getresponse.com/script/0ab2915c-2c1e-4c41-8681-717557f2e5f2/ga.js
IP
178.16.117.14:0
ASN
#198881 GETRESPONSE Sp.z o.o.

File type
ASCII text, with very long lines (559), with no line terminators
Size
559 B (559 bytes)
Hash
bf2f56db1583aed7eb13a206ec9ff5a1
d9ce2769e0e5b097ddc9da1ed0ee372c6ee8d707
acf3d6c2230a9a4b50e602e4dae3e9d4bf266922744d2a596bb4f9673e151936

HTTP Headers

GET /script/0ab2915c-2c1e-4c41-8681-717557f2e5f2/ga.js HTTP/1.1
Host: ga.getresponse.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://netflixjobs.org
Connection: keep-alive
Referer: https://netflixjobs.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://netflixjobs.org
content-length: 559
content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
content-type: application/javascript; charset=utf-8
date: Sat, 04 Feb 2023 12:34:34 GMT
etag: W/"22f-2c4naeDlsJfdydoe0O43LG7o1wc"
expect-ct: max-age=0
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-response-id: 17062fb7-d20f-45f2-bdb1-0607bec6988f
x-xss-protection: 0
X-Firefox-Spdy: h2

us-an.gr-cdn.com/v2.1.27.0.umd.js

205.185.216.10

200 OK

6.3 kB

URL HTTP/2
us-an.gr-cdn.com/v2.1.27.0.umd.js
IP
205.185.216.10:0
ASN
#20446 STACKPATH-CDN

File type
Unicode text, UTF-8 text, with very long lines (19615)
Size
6.3 kB (6337 bytes)
Hash
d8de15e07833f030cf574e19f1c58bb5
57ec24b5c3ca089584312f58cd95aef83bff7f13
9e7c62fec3a552ebf590ffa5e66ffb8b3d4f6a9053ef488832c7234f9bacdcac

HTTP Headers

GET /v2.1.27.0.umd.js HTTP/1.1
Host: us-an.gr-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netflixjobs.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:34:35 GMT
cache-control: max-age=31276927
content-encoding: gzip
content-length: 6337
content-type: application/javascript
last-modified: Wed, 01 Feb 2023 12:34:37 GMT
accept-ranges: bytes
x-amz-id-2: 4PBt8yUqe/NTPHvOvNVl01YmWH3fEFAsPeEBcy2KiauAFqDL5Wd7VZ2ZJQVs/SzkmM2wn41wrp4=
x-amz-request-id: EE1Z7GBPM0JVSSJ7
etag: "12d493ee9d7c6f50d086cb5b024bf4ea"
x-amz-version-id: null
server: AmazonS3
x-hw: 1675514075.dop001.sk1.t,1675514075.cds018.sk1.hn,1675514075.cds252.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2

ga2.getresponse.com/index.php?ver=3&url=https%3A%2F%2Fnetflixjobs.org%2F&uid=%7B%22uuid%22%3A%22733912b7-670b-4938-96b7-68d8cab34d29%22%2C%22email%22%3A%22%22%2C%22xsid%22%3A%22%22%2C%22list_token%22%3A%22%22%2C%22gr_x%22%3A%22%22%2C%22gr_s%22%3A%22%22%2C%22gr_m%22%3A%22%22%2C%22valuable%22%3A0%2C%22domain%22%3A%22netflixjobs.org%22%7D&_cvar=%7B%221%22%3A%5B%22grid%22%2Cnull%5D%2C%222%22%3A%5B%22aid%22%2C%220ab2915c-2c1e-4c41-8681-717557f2e5f2%22%5D%7D&h=12&m=35&s=10&res=1280x1024&gt_ms=333

178.16.117.14

204 No Content

0 B

URL HTTP/2
ga2.getresponse.com/index.php?ver=3&url=https%3A%2F%2Fnetflixjobs.org%2F&uid=%7B%22uuid%22%3A%22733912b7-670b-4938-96b7-68d8cab34d29%22%2C%22email%22%3A%22%22%2C%22xsid%22%3A%22%22%2C%22list_token%22%3A%22%22%2C%22gr_x%22%3A%22%22%2C%22gr_s%22%3A%22%22%2C%22gr_m%22%3A%22%22%2C%22valuable%22%3A0%2C%22domain%22%3A%22netflixjobs.org%22%7D&_cvar=%7B%221%22%3A%5B%22grid%22%2Cnull%5D%2C%222%22%3A%5B%22aid%22%2C%220ab2915c-2c1e-4c41-8681-717557f2e5f2%22%5D%7D&h=12&m=35&s=10&res=1280x1024&gt_ms=333
IP
178.16.117.14:0
ASN
#198881 GETRESPONSE Sp.z o.o.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /index.php?ver=3&url=https%3A%2F%2Fnetflixjobs.org%2F&uid=%7B%22uuid%22%3A%22733912b7-670b-4938-96b7-68d8cab34d29%22%2C%22email%22%3A%22%22%2C%22xsid%22%3A%22%22%2C%22list_token%22%3A%22%22%2C%22gr_x%22%3A%22%22%2C%22gr_s%22%3A%22%22%2C%22gr_m%22%3A%22%22%2C%22valuable%22%3A0%2C%22domain%22%3A%22netflixjobs.org%22%7D&_cvar=%7B%221%22%3A%5B%22grid%22%2Cnull%5D%2C%222%22%3A%5B%22aid%22%2C%220ab2915c-2c1e-4c41-8681-717557f2e5f2%22%5D%7D&h=12&m=35&s=10&res=1280x1024&gt_ms=333 HTTP/1.1
Host: ga2.getresponse.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://netflixjobs.org/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
date: Sat, 04 Feb 2023 12:34:35 GMT
expect-ct: max-age=0
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-response-id: 047c26c1-9e33-47fa-8d4e-08434aa93fde
x-xss-protection: 0
X-Firefox-Spdy: h2

ocsp.godaddy.com/

192.124.249.24

200 OK

1.8 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.24:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1777 bytes)
Hash
4bcb8cb8ef25d640938eaa00c6c5909f
2c8231f89f58cbff8713dc154154bab1a586063c
8877313efcd60138ba0d87ce1a89b9f774f0f53c312873f6aa8c5efb0a6da59f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 04 Feb 2023 12:34:35 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 03 Feb 2023 22:06:34 GMT
Expires: Sat, 04 Feb 2023 22:06:34 GMT
ETag: "2c8231f89f58cbff8713dc154154bab1a586063c"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

34.120.237.76

200 OK

7.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c030376-7935-4601-969c-86a91f4f5e85.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.2 kB (7249 bytes)
Hash
d7afd5ce8fb9ec7b62e528bf97705e49
afbf22f5d8f54adcb00e8980a9b22f2c5b6703c3
b2d93ba6c0ed2c858d91afba1c81251afbffa41c779be2e9203994dcfb7bbc9d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c030376-7935-4601-969c-86a91f4f5e85.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 7249
x-amzn-requestid: 007ce521-ed5c-4074-a314-684ad0df2e22
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD9GH5goAMF_ag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8053-7060f02b767c90371991a190;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5fTV_e56nzjiXo4Guu67WXDDvp3nrjB0Yfyy6ByjcDSx23J-8r0fmQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:21 GMT
age: 51860
etag: "afbf22f5d8f54adcb00e8980a9b22f2c5b6703c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

netflixjobs.org/

104.160.64.15

200 OK

0 B

URL HTTP/2
netflixjobs.org/
IP
104.160.64.15:0
ASN
#46469 GETRESPONSE-IMPLIX

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

PATCH / HTTP/1.1
Host: netflixjobs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 342
Origin: https://netflixjobs.org
Connection: keep-alive
Referer: https://netflixjobs.org/
Cookie: squeeze-page=5herkfkg89knqd0qtk5jpnf4lu; zXagX[variantVersion]=0; _vwo_uuid_v2=D6849780AFD01B4409B229FF2BB080786|68887490c0ae0c012333a4f97462ecdf; gaVisitorUuid=733912b7-670b-4938-96b7-68d8cab34d29
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 12:34:35 GMT
content-type: application/json
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
set-cookie: zXagX[visit]=GG8eE; expires=Sat, 04-Feb-2023 13:04:35 GMT; Max-Age=1800; path=/
zXagX[uniqueVisit]=GG8eE; expires=Mon, 06-Mar-2023 12:34:35 GMT; Max-Age=2592000; path=/
dtCookie=v_4_srv_6_sn_0ACC88F7801725645146C3EDCA85BF55_perc_100000_ol_0_mul_1_app-3Aea7c4b59f27d43eb_0_rcs-3Acss_0; Path=/; Domain=.netflixjobs.org
csrf-token: a24dac60-ce9b-4f27-94ed-12a38ca687ce
timing-allow-origin: *
server-timing: dtSInfo;desc="0", dtRpid;desc="-1702697606", dtTao;desc="1"
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL