Report - www.coronavirus.gov.hk/chi/inbound-travel.html

Report Overview

Submitted URL
www.coronavirus.gov.hk/chi/inbound-travel.html
IP
104.16.48.4
ASN
#13335 CLOUDFLARENET
Submitted
2023-01-06 15:17:27
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
4
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.8 kB	216.58.211.3
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	392 B	46 kB	142.250.74.168
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	21 kB	216.239.38.178
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	417 B	746 B	142.250.74.106
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	4.4 kB	95.101.11.115
www.coronavirus.gov.hk	219999	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	12 kB	1.1 MB	104.16.49.4
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
ocsp1.ecert.gov.hk	414052	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	342 B	5.1 kB	116.92.128.12
cdnjs.cloudflare.com	235	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	430 B	6.7 kB	104.17.25.14
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	797 B	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.203.75.56
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	49 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-01-06 15:17:04	medium	Client IP	Internal IP	ET HUNTING Suspicious Domain Request for Possible COVID-19 Domain M2
2023-01-06 15:17:04	medium	Client IP	Internal IP	ET HUNTING Suspicious Domain Request for Possible COVID-19 Domain M2
2023-01-06 15:17:05	medium	Client IP	104.16.49.4	ET HUNTING Suspicious GET Request with Possible COVID-19 Domain M2
2023-01-06 15:17:05	medium	Client IP	104.16.49.4	ET HUNTING Suspicious TLS SNI Request for Possible COVID-19 Domain M2

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (21)

	URL	Size	First Seen	Last Seen
	www.coronavirus.gov.hk/js/custom.js	51 kB	2023-03-10	2023-03-13
Pretty URL www.coronavirus.gov.hk/js/custom.js IP 104.16.49.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 04:48:20 Last Seen2023-03-13 12:01:11 Times Seen1 Hash f95a5c0966c457647a4513febe26941d 4c525c5ffd4c6efc5a82fcd5e6b72268880704c1 f9f4bb598ff8367e60ab57b222feee7946ee5806ed706d81f1f405895179912a Loading...

	www.coronavirus.gov.hk/chi/inbound-travel.html	1.8 kB	2023-03-12	2023-03-12
Pretty URL www.coronavirus.gov.hk/chi/inbound-travel.html IP 104.16.49.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 16:07:58 Last Seen2023-03-12 16:07:58 Times Seen1 Hash 5e763bb2d5d6f1f5421a51042df10bba 66fb9b6ff2343e374ec8b2c94c1b927029055865 d678982d201c73fde1b724bfbf2bab5301c6ba5a7c1e3fa6bb46b80fcd7b0e83 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-26
Pretty URL www.google-analytics.com/analytics.js IP 216.239.38.178 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-26 05:50:27 Times Seen1534 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	www.googletagmanager.com/gtag/js?id=UA-158663296-1	115 kB	2023-03-12	2023-03-12
Pretty URL www.googletagmanager.com/gtag/js?id=UA-158663296-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 16:07:58 Last Seen2023-03-12 16:07:58 Times Seen1 Hash 6ebcc8460d0b6963ea4bec9b12852e47 59a28ff51e678f2cc8a5e5f7ae3c16c695e4ad32 4f33654f7781b05c6400befe15c50f8e7965f53136ddab9a2f98cbad3cdc7097 Loading...

	www.coronavirus.gov.hk/chi/inbound-travel.html	27 B	2023-03-12	2023-03-12
Pretty URL www.coronavirus.gov.hk/chi/inbound-travel.html IP 104.16.49.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 16:07:58 Last Seen2023-03-12 16:07:58 Times Seen1 Hash 3ddfc1793bf0a01bdd05b9d98e4dd72f dc02182e2b9dc2cba6f444e56a195a665455caba 96f3755ac441a4ba70ce50a44fd5bf788c0383fb147901167c77beea08c8f186 Loading...

	www.coronavirus.gov.hk/chi/inbound-travel.html	30 B	2023-03-12	2023-03-12
Pretty URL www.coronavirus.gov.hk/chi/inbound-travel.html IP 104.16.49.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 16:07:58 Last Seen2023-03-12 16:07:58 Times Seen1 Hash ee2c265ce304cbe3c85691e2e017f35f bae6453023344b90fcdc11abe29f247a3c10d2c2 223e1ede9047da796fb6cd615b64a88d1f3889010d6220b04ce64716617503a9 Loading...

	www.coronavirus.gov.hk/chi/inbound-travel.html	451 B	2023-03-12	2023-03-12
Pretty URL www.coronavirus.gov.hk/chi/inbound-travel.html IP 104.16.49.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 16:07:58 Last Seen2023-03-12 16:07:58 Times Seen1 Hash 964959d1aa7a58f99a269965e62e2813 3a8a96b3ec75452bdb15fa29b7c0b74e3358ca8f bf3eca4d9fb414e9169b95557f0cc37a6ef4fda71cabfadbf59fb4340511c6eb Loading...

	www.coronavirus.gov.hk/js/swiper.min.js	139 kB	2023-03-07	2024-04-25
Pretty URL www.coronavirus.gov.hk/js/swiper.min.js IP 104.16.49.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:41:49 Last Seen2024-04-25 22:14:19 Times Seen87 Hash c7ef8f07111662c3748150781d7c1343 d24f8764579ab33665279b0c88e46bcb4de07482 f094cd2c4e88f831d445c2d65a82829afd7a803cf0d05a78237e0edb2e34bc2d Loading...

	www.coronavirus.gov.hk/js/popper.min.js	19 kB	2023-03-07	2024-04-26
Pretty URL www.coronavirus.gov.hk/js/popper.min.js IP 104.16.49.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:44 Last Seen2024-04-26 19:27:50 Times Seen111959 Hash 70d3fda195602fe8b75e0097eed74dde c3b977aa4b8dfb69d651e07015031d385ded964b a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66 Loading...

	www.coronavirus.gov.hk/js/kanhan.js	2.6 kB	2023-03-10	2023-03-13
Pretty URL www.coronavirus.gov.hk/js/kanhan.js IP 104.16.49.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 04:48:20 Last Seen2023-03-13 12:01:11 Times Seen1 Hash d2c1aba92e9183c69b47f9736002070f 48dfd6253b1ee40254bfcd99e5ffb59b4d7149a2 2ef04c71738aba4ae816e5fa06318b67008303fff2ad2a03ea221d8400ae82fa Loading...

	www.coronavirus.gov.hk/js/modernizr.min.js	11 kB	2023-03-07	2024-04-23
Pretty URL www.coronavirus.gov.hk/js/modernizr.min.js IP 104.16.49.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:46 Last Seen2024-04-23 23:38:46 Times Seen4263 Hash 65f1d21d5fcc9d21da758adababd0c3c e0661d07d64c00008bc9d013d16eec0a0f156dc7 d2b82e612d2a812e8be2a57300dab8923c4f2edbe7a799e7da70791b595646fe Loading...

	www.coronavirus.gov.hk/js/menu.js	7.9 kB	2023-03-12	2023-03-13
Pretty URL www.coronavirus.gov.hk/js/menu.js IP 104.16.49.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 16:07:58 Last Seen2023-03-13 12:01:11 Times Seen1 Hash b7852cc365ae1f640b5835acac6e6d96 4701be403d6f06d5ebc6a0591f123836b939f2d0 acef896f4e873dda340f43d29bcff3fa825b4402073764cc531a38ca9e8934a8 Loading...

	www.coronavirus.gov.hk/chi/inbound-travel.html	28 B	2023-03-12	2023-03-12
Pretty URL www.coronavirus.gov.hk/chi/inbound-travel.html IP 104.16.49.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 16:07:58 Last Seen2023-03-12 16:07:58 Times Seen1 Hash df325aba896469f148ffdd7ecf03a07f c332d6410d684ab6f63173d8d4f3c1a396879536 a9f43ebb2ca968ec131e04decadeecb4d7b197954db26eb8df825ecdc2331ebb Loading...

	www.coronavirus.gov.hk/chi/inbound-travel.html	32 B	2023-03-12	2023-03-12
Pretty URL www.coronavirus.gov.hk/chi/inbound-travel.html IP 104.16.49.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 16:07:58 Last Seen2023-03-12 16:07:58 Times Seen1 Hash 23cf7896470bf899c55b3451b8afbb93 d746ff8791e7f43508dedd22e5af9eff7bf80ceb 3c90a3f78ff97d2552893b561513e93c21a4df4b43d6e99715c8f67016643af3 Loading...

	www.coronavirus.gov.hk/chi/inbound-travel.html	40 B	2023-03-12	2023-03-12
Pretty URL www.coronavirus.gov.hk/chi/inbound-travel.html IP 104.16.49.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 16:07:58 Last Seen2023-03-12 16:07:58 Times Seen1 Hash f4cb1e5b3f65a54bab9fd7e80ed4a6cb b504ba05eb90d24954686735b9a6e7fd657279cb 3461a5796cb5cbc6cfdafe7b9680fa92b7097005aa7f2e6a25dc62418dcbf1bf Loading...

	www.coronavirus.gov.hk/js/swiper-ie-wa.js	478 B	2023-03-10	2023-03-13
Pretty URL www.coronavirus.gov.hk/js/swiper-ie-wa.js IP 104.16.49.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 04:48:20 Last Seen2023-03-13 12:01:11 Times Seen1 Hash 1329160d8238966d380ad75bcfbc775b 134e60b8b6eae28c1e3ee96750cff1fd0cf50b41 5b48d5b91d0a8e1958b7e81f1b53818c3004a8c6f59e4f8edc07279c9f635582 Loading...

	www.coronavirus.gov.hk/js/bootstrap.min.js	58 kB	2023-03-07	2024-04-26
Pretty URL www.coronavirus.gov.hk/js/bootstrap.min.js IP 104.16.49.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:33 Last Seen2024-04-26 17:44:25 Times Seen19661 Hash e1d98d47689e00f8ecbc5d9f61bdb42e 6778fed3cf095a318141a31f455c8f4663885bde 0a34a87842c539c1f4feec56bba982fd596b73500046a6e6fe38a22260c6577b Loading...

	www.coronavirus.gov.hk/js/jquery-3.5.1.min.js	90 kB	2023-03-07	2024-04-26
Pretty URL www.coronavirus.gov.hk/js/jquery-3.5.1.min.js IP 104.16.49.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-26 19:27:58 Times Seen139403 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	www.coronavirus.gov.hk/js/ga.js	216 B	2023-03-10	2023-03-13
Pretty URL www.coronavirus.gov.hk/js/ga.js IP 104.16.49.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 04:48:20 Last Seen2023-03-13 12:01:11 Times Seen1 Hash 09963d1f1f33d5ecac8a1cd95f4bfc3e a47fd7d1c5349ab3f9b9601770473147795711a0 8572555fb9651647af18b065b75e57fce60b6e40a70e3e6b1a188578b94e57ae Loading...

	www.coronavirus.gov.hk/chi/inbound-travel.html	51 B	2023-03-12	2023-03-12
Pretty URL www.coronavirus.gov.hk/chi/inbound-travel.html IP 104.16.49.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 16:07:58 Last Seen2023-03-12 16:07:58 Times Seen1 Hash 2724dbc71e6df7920b7eb57a565a35d7 ea48a2e9bdaea2e74cb96617220566f01b6354ba f2c1ac60e1d1cb7bf0577d3c2caf76d0bd1c66eaf944b5a1be1271c42a302f5c Loading...

	www.coronavirus.gov.hk/chi/inbound-travel.html	30 B	2023-03-12	2023-03-12
Pretty URL www.coronavirus.gov.hk/chi/inbound-travel.html IP 104.16.49.4 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 16:07:58 Last Seen2023-03-12 16:07:58 Times Seen1 Hash ae6d0362c3cc99a8c22b46bf2239d363 212189a6758be051ff60b1a9dd55416e5460087c 0466913421ddfca984934316e7c80cdda4c6481ccb35e4ba473e89d3e5bf1fe8 Loading...

HTTP Transactions (56)

URL IP Response Size

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
326898eb925368408f6f42ee173b9d89
b8b20ee34b7e7b139e7729b8e46a54ea25f54ac8
96c2c75f700ab55649882111713ca3cfb2eaf08e404c2bc245a641dc12ae168a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96C2C75F700AB55649882111713CA3CFB2EAF08E404C2BC245A641DC12AE168A"
Last-Modified: Wed, 04 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18492
Expires: Fri, 06 Jan 2023 20:25:27 GMT
Date: Fri, 06 Jan 2023 15:17:15 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ce8af3d72e7e9af609039abee59c8b87
8e1b16591fbc632df35f15e23da55ee86af31bc3
52edddbda4a3a3b778f61a491b21e6ea439e9d8024189e636b1f37b2dd7226fc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "52EDDDBDA4A3A3B778F61A491B21E6EA439E9D8024189E636B1F37B2DD7226FC"
Last-Modified: Wed, 04 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21351
Expires: Fri, 06 Jan 2023 21:13:07 GMT
Date: Fri, 06 Jan 2023 15:17:16 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 06 Jan 2023 14:48:02 GMT
content-type: application/json
age: 1754
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
da484f5e9c6805745e063b236fb81473
ae454bf4a7ae0e96935afc81ee0f89c049097b15
068d0da23acbe7f6b600c4e7dbe9c81d3ad78c8afd122255bbf3550e8a290686

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "068D0DA23ACBE7F6B600C4E7DBE9C81D3AD78C8AFD122255BBF3550E8A290686"
Last-Modified: Wed, 04 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12194
Expires: Fri, 06 Jan 2023 18:40:30 GMT
Date: Fri, 06 Jan 2023 15:17:16 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: +R3KzDn4YP6CNzizOEPehdlsMSHJ36kv1o/QX1lApHfFt6ceFgVZRPCdsqqhAlQl/7BmarFddqQ=
x-amz-request-id: CDQNVPDN70WKE628
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 06 Jan 2023 15:00:02 GMT
age: 1034
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

www.coronavirus.gov.hk/chi/inbound-travel.html

104.16.49.4

301 Moved Permanently

0 B

URL HTTP/1.1
www.coronavirus.gov.hk/chi/inbound-travel.html
IP
104.16.49.4:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

NIDS	Severity	Alert
suricata	medium	ET HUNTING Suspicious GET Request with Possible COVID-19 Domain M2

HTTP Headers

GET /chi/inbound-travel.html HTTP/1.1
Host: www.coronavirus.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Fri, 06 Jan 2023 15:17:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 06 Jan 2023 16:17:16 GMT
Location: https://www.coronavirus.gov.hk/chi/inbound-travel.html
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78556b67ec660af6-OSL

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 06 Jan 2023 15:17:16 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 06 Jan 2023 14:33:39 GMT
age: 2617
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp1.ecert.gov.hk/

116.92.128.12

200 OK

4.6 kB

URL HTTP/1.1
ocsp1.ecert.gov.hk/
IP
116.92.128.12:0
ASN
#9381 HKBN Enterprise Solutions HK Limited

File type
data
Size
4.6 kB (4555 bytes)
Hash
2f9525839f967c4fe8a51c2f35baf08c
e909c6534cdaa66c78e10846a86b37a4f6ae4690
7f1a0465e157feaa4edb543dcef360e47b1d44e9027d8daec000600eddea46cc

HTTP Headers

POST / HTTP/1.1
Host: ocsp1.ecert.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 06 Jan 2023 15:17:16 GMT
Server: Apache
Expires: Sun, 08 Jan 2023 15:17:16 GMT
X-Permitted-Cross-Domain-Policies: none
X-XSS-Protection: 1
X-Frame-Options: SAMEORIGIN, deny
ETag: "e909c6534cdaa66c78e10846a86b37a4f6ae4690"
Last-Modified: Fri, 06 Jan 2023 15:17:16 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Type: application/ocsp-response
Content-Length: 4555
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
43c8442b7447debab97b0f6bc973e23a
38a5f1869cff7f6ddbfd3a24e57a3da7851ba3b0
4eb7adc914570287dde1317395d1d95b07271c8fe20b97a8928025c292c47dba

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1999
Cache-Control: max-age=152571
Content-Type: application/ocsp-response
Date: Fri, 06 Jan 2023 15:17:16 GMT
Etag: "63b7e4a8-1d7"
Expires: Sun, 08 Jan 2023 09:40:07 GMT
Last-Modified: Fri, 06 Jan 2023 09:06:48 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

54.203.75.56

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.203.75.56:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: GOjQ2PzWw1Whrje47oOYmw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: DVa+eTu3WrAeedhe0en9VyhN0AQ=

www.coronavirus.gov.hk/chi/inbound-travel.html

104.16.49.4

200 OK

7.4 kB

URL HTTP/2
www.coronavirus.gov.hk/chi/inbound-travel.html
IP
104.16.49.4:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (653), with CRLF line terminators
Size
7.4 kB (7414 bytes)
Hash
a3f15392ab7101e87b058f9e09161cf6
05204cdc003ee960bfbef18280d8dfbaa5df3607
ea584296a8c9b313874d554baccb279de93823d6483a9ac37375d27e238a8af2

Detections

NIDS	Severity	Alert
suricata	medium	ET HUNTING Suspicious GET Request with Possible COVID-19 Domain M2

HTTP Headers

GET /chi/inbound-travel.html HTTP/1.1
Host: www.coronavirus.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Fri, 06 Jan 2023 15:17:18 GMT
content-type: text/html
content-length: 7414
x-frame-options: ALLOW-FROM https://chp-dashboard.geodata.gov.hk/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Fri, 06 Jan 2023 04:43:14 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=300
expires: Fri, 06 Jan 2023 15:47:18 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78556b6b69efb4ed-OSL
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1780bdca4138463723f65222d72004e2
c0acbd7a8cf08d7b675dd8a0cdb73d4ff4fbdb8b
92d022d0945f2e9ff1b27013792745c4ca2d65150693532049985efdf9022efa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "92D022D0945F2E9FF1B27013792745C4CA2D65150693532049985EFDF9022EFA"
Last-Modified: Wed, 04 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18582
Expires: Fri, 06 Jan 2023 20:27:00 GMT
Date: Fri, 06 Jan 2023 15:17:18 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1780bdca4138463723f65222d72004e2
c0acbd7a8cf08d7b675dd8a0cdb73d4ff4fbdb8b
92d022d0945f2e9ff1b27013792745c4ca2d65150693532049985efdf9022efa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "92D022D0945F2E9FF1B27013792745C4CA2D65150693532049985EFDF9022EFA"
Last-Modified: Wed, 04 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18582
Expires: Fri, 06 Jan 2023 20:27:00 GMT
Date: Fri, 06 Jan 2023 15:17:18 GMT
Connection: keep-alive

cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css

104.17.25.14

200 OK

5.6 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (30837)
Size
5.6 kB (5631 bytes)
Hash
109d1ed85cd01f9cdab73a4cac5bf80d
d6c6498ad46de2d8e2008a8ff68e364ae7f16b32
8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc

HTTP Headers

GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 06 Jan 2023 15:17:18 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1362311
expires: Wed, 27 Dec 2023 15:17:18 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yoZffjbmuaJBAOMumFk6RLxbawg9itSkmwOBdPB%2BrL4RwZZHRBDsFTEyoknGG6RPZzo7IxV8gKezT81rvPO3OxkhIfG7Lav0c3%2Bjgu69W8sdnPf5vhchQdACdubeVpThk8BWdJxg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 78556b76191ab4f7-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb84dc300-436d-4ab6-93ff-5c34a5e8faa9.jpeg

34.120.237.76

200 OK

4.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb84dc300-436d-4ab6-93ff-5c34a5e8faa9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.5 kB (4473 bytes)
Hash
905c01ccaa57e0ea71e9a2f58bbb2ca4
6cf4b068623644dd0ca790dbc75e3533e7759f8b
4b579d86c6b957bf5c777b44b474c1c8fac699ffe695757d43f9752b079ef42a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb84dc300-436d-4ab6-93ff-5c34a5e8faa9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4473
x-amzn-requestid: 4732a7f2-382c-41a0-a96a-dbd073af76dc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eScwQG6hoAMFQaw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b7419b-4b3c3ebf3c06242b360e6421;Sampled=0
x-amzn-remapped-date: Thu, 05 Jan 2023 21:31:07 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gwxWbkGIJgnJKjE2vGO2EtjwRrLcjtGcmG8CQ9cBa7-AYpGbCzZRnA==
via: 1.1 adc2002956acc4d61bfbf3b973fdf246.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 05 Jan 2023 22:05:44 GMT
age: 61894
etag: "6cf4b068623644dd0ca790dbc75e3533e7759f8b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.6 kB (5578 bytes)
Hash
e832123ea0c92a446b5894e75efc86ae
bb438ca635b43819701067ef07a3d910ad29a0c7
e1b0c6cd873f304de15664f96af6b6914e13fbbfb3e2179ba43369e116446773

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5578
x-amzn-requestid: 93353c3e-1b26-424c-b4c6-0d113703edd6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eFvpBFGvIAMFobw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b22c9f-1d07cff31ae39320693642f0;Sampled=0
x-amzn-remapped-date: Mon, 02 Jan 2023 01:00:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vIFVXgt2RmoplkAVOtUrOkXj3LmhRw-XEPe7fugZ2-mv_iDY07XzUg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 00:24:30 GMT
age: 53568
etag: "bb438ca635b43819701067ef07a3d910ad29a0c7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e4fdd703d4ebb3209cd70c0ffd234da1
2e3a0a6fe0e63d2991e4b8726d5a2c21406a0dc1
ff40f371b1ebac1fbc0e809a0e85f500977372f25e8a72eda450083755fef11d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 06 Jan 2023 15:17:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4210cd0d-e5ae-416b-b3b1-984a5c3f750c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11746 bytes)
Hash
7e96507584bce9f14a50123fb78a8102
c45249ddffb15b9e957af8f5203d7d06ddf32cf8
118f62631c92e42b135046647e828eb80a54405603f5b461320b483bce0c55ba

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4210cd0d-e5ae-416b-b3b1-984a5c3f750c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11746
x-amzn-requestid: dfac0548-1ee6-4eb6-8fb6-4be00f9cf601
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eRlO6Hc_IAMFT0g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b6e8c5-4459ff7b3622ddff7dc3e3ff;Sampled=0
x-amzn-remapped-date: Thu, 05 Jan 2023 15:12:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: P31AbiVmWqCAQfjCxt7iXE3RtDtZHNiXtBXcjBWKR_u-U_sHT1ZvTg==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 15:14:11 GMT
age: 187
etag: "c45249ddffb15b9e957af8f5203d7d06ddf32cf8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
623e85ff33837eb6c59e11ae2759237a
cea1948490802e652e7f6678dc76694e0d6ab61a
1fb30f3579d3277435c860f472008bea3680db1202d838ad4669d943ec88ba65

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 06 Jan 2023 15:17:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

34.120.237.76

200 OK

6.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0cc6987-cb45-42f9-8b7e-1ec781513572.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.3 kB (6268 bytes)
Hash
884498828be14529bda4485a38b033c3
9443f22559b64c5861bbc50d0980dad8da158352
c48b1203e6b6e9468dc9a07934709f5ec2ba064fb2c9dd97f6cdc0e452a7dd77

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0cc6987-cb45-42f9-8b7e-1ec781513572.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6268
x-amzn-requestid: 3674eb24-1902-4722-8ea0-63b5fb36b41e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eSdsIEtbIAMFYsw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b7431a-1e840ef57d3fa7ab2362f37c;Sampled=0
x-amzn-remapped-date: Thu, 05 Jan 2023 21:37:30 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jSI7UFknz6hbv5lG44ZUvaRg2ekHMRdi4NaLtpDGbpNrolofHvqbAQ==
via: 1.1 b838ef1ff22a4a994af82d5178c30e1c.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 05 Jan 2023 22:04:14 GMT
age: 61984
etag: "9443f22559b64c5861bbc50d0980dad8da158352"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F727b2cef-2229-487d-9623-29ccec44ab1f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.8 kB (5809 bytes)
Hash
d256d063b2698bb9d915589a2c79fbce
d7c083857e9512ad3ecb3bbaf285409926473ceb
d4e5f901f62fa98b525fc1ecbe187032fd2d0e112c6f1b9534b742b2d6c05b08

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F727b2cef-2229-487d-9623-29ccec44ab1f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5809
x-amzn-requestid: 16b4843e-ac69-402f-87e7-66c24984cecb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eSeJoHgwIAMFhdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b743d7-507b52112e0f1176182e5d99;Sampled=0
x-amzn-remapped-date: Thu, 05 Jan 2023 21:40:39 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JGGMyfzW2uwEbY-V22ZCWjFegXRLY-wAlWxSjLCM6C1A5kjXa2DTGw==
via: 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 05 Jan 2023 22:03:31 GMT
age: 62027
etag: "d7c083857e9512ad3ecb3bbaf285409926473ceb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F426acd7d-b225-4d35-a3be-10ba23ba69c9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8693 bytes)
Hash
49cab8228badce0317f63284420a2a06
94abc863dc8ac54c9ab9e57a791b404a8a09729e
399c22a3adea805a2fa373f6a85d842f47798088593803b6b38034f942e092af

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F426acd7d-b225-4d35-a3be-10ba23ba69c9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8693
x-amzn-requestid: ae2b861d-87b8-4913-853a-64c76f410bf4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eNLADE-ZoAMFttw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b52533-6e5412c92f70fbd12a893047;Sampled=0
x-amzn-remapped-date: Wed, 04 Jan 2023 07:05:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6HQs9iy3yXcPaOn5KyltAMJ2wtx39O-H8AcL0rryuW44M-hBNiyIfw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Fri, 06 Jan 2023 04:41:21 GMT
age: 38157
etag: "94abc863dc8ac54c9ab9e57a791b404a8a09729e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-158663296-1

142.250.74.168

200 OK

45 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-158663296-1
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1759)
Size
45 kB (45277 bytes)
Hash
4ef169af416b17fd2731f9d6ba88df77
007e206cc6e28ec31192f524fa7bfba89df95f15
6e8e3a26fda482daa85ba8fb82d1924e3e44695e839b3597ef125286e2c5a695

HTTP Headers

GET /gtag/js?id=UA-158663296-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 06 Jan 2023 15:17:18 GMT
expires: Fri, 06 Jan 2023 15:17:18 GMT
cache-control: private, max-age=900
last-modified: Fri, 06 Jan 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 45277
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e5782ef491c4bb5e1dc5245aed1640b7
2a34a0380e837befa2d6f2ba794c58fca083302a
88fa0e25126e72bd99d8333a8093ad8fa9d2ada9f2012bc64af23c5a7dd143a3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 06 Jan 2023 15:17:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e4fdd703d4ebb3209cd70c0ffd234da1
2e3a0a6fe0e63d2991e4b8726d5a2c21406a0dc1
ff40f371b1ebac1fbc0e809a0e85f500977372f25e8a72eda450083755fef11d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 06 Jan 2023 15:17:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.coronavirus.gov.hk/js/custom.js

104.16.49.4

200 OK

7.9 kB

URL HTTP/2
www.coronavirus.gov.hk/js/custom.js
IP
104.16.49.4:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
7.9 kB (7873 bytes)
Hash
7eb247d5129bf2f325284ee7f68faa3b
5038add8c0e343a14b3b7d15641d559184027f1d
227f31cbc6b1bc28226b99591ebff7facb5c2f490d69d051896d8cc3733b26fa

HTTP Headers

GET /js/custom.js HTTP/1.1
Host: www.coronavirus.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/chi/inbound-travel.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 06 Jan 2023 15:17:19 GMT
content-type: application/javascript
content-length: 7873
x-frame-options: ALLOW-FROM https://chp-dashboard.geodata.gov.hk/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Thu, 21 Apr 2022 13:33:36 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=300
expires: Fri, 06 Jan 2023 15:47:19 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78556b75bf25b4ed-OSL
X-Firefox-Spdy: h2

www.coronavirus.gov.hk/js/ga.js

104.16.49.4

200 OK

185 B

URL HTTP/2
www.coronavirus.gov.hk/js/ga.js
IP
104.16.49.4:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with CRLF line terminators
Size
185 B (185 bytes)
Hash
5b6fd51dc0f5fa480c35245939072d2d
eb38d99167d0448425ed3ef2cd7dcd1c0f6d7bff
1540531fce342de483d316307be7663fc223633fe43c4f04b83ce39f9c72b36f

HTTP Headers

GET /js/ga.js HTTP/1.1
Host: www.coronavirus.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/chi/inbound-travel.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 06 Jan 2023 15:17:19 GMT
content-type: application/javascript
content-length: 185
x-frame-options: ALLOW-FROM https://chp-dashboard.geodata.gov.hk/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Fri, 21 Feb 2020 10:03:43 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=300
expires: Fri, 06 Jan 2023 15:47:19 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78556b759f04b4ed-OSL
X-Firefox-Spdy: h2

www.coronavirus.gov.hk/css/bootstrap.min.css

104.16.49.4

200 OK

23 kB

URL HTTP/2
www.coronavirus.gov.hk/css/bootstrap.min.css
IP
104.16.49.4:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65324)
Size
23 kB (23238 bytes)
Hash
3b5537dce96f57098998e410b0202920
7732b57e4e3bbc122d63f67078efa7cf5f975448
a1c54426705d6cef00e0ae98f5ad1615735a31a4e200c3a5835b44266a4a3f88

HTTP Headers

GET /css/bootstrap.min.css HTTP/1.1
Host: www.coronavirus.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/chi/inbound-travel.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 06 Jan 2023 15:17:19 GMT
content-type: text/css
content-length: 23238
x-frame-options: ALLOW-FROM https://chp-dashboard.geodata.gov.hk/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Wed, 26 Feb 2020 02:34:30 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=300
expires: Fri, 06 Jan 2023 15:47:19 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78556b758eefb4ed-OSL
X-Firefox-Spdy: h2

www.coronavirus.gov.hk/js/bootstrap.min.js

104.16.49.4

200 OK

15 kB

URL HTTP/2
www.coronavirus.gov.hk/js/bootstrap.min.js
IP
104.16.49.4:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (57791)
Size
15 kB (15437 bytes)
Hash
8c7f5fa6aa5505726872ce0296828eb5
c7ce2e13bd25da05e7c4bc68be2e57e2cb515d33
8e0286a099efe027b863e8b7265ad2c9e053bfaa083f53749e5bf7301987284a

HTTP Headers

GET /js/bootstrap.min.js HTTP/1.1
Host: www.coronavirus.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/chi/inbound-travel.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 06 Jan 2023 15:17:19 GMT
content-type: application/javascript
content-length: 15437
x-frame-options: ALLOW-FROM https://chp-dashboard.geodata.gov.hk/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Fri, 21 Feb 2020 10:03:45 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=300
expires: Fri, 06 Jan 2023 15:47:19 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78556b75af20b4ed-OSL
X-Firefox-Spdy: h2

www.coronavirus.gov.hk/js/jquery-3.5.1.min.js

104.16.49.4

200 OK

31 kB

URL HTTP/2
www.coronavirus.gov.hk/js/jquery-3.5.1.min.js
IP
104.16.49.4:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65451)
Size
31 kB (30910 bytes)
Hash
888c5fa4504182a0224b264a1fda0e73
65f058a7dead59a8063362241865526eb0148f16
7d757e510b1f0c4d44fd98cc0121da8ca4f44793f8583debdef300fb1dbd3715

HTTP Headers

GET /js/jquery-3.5.1.min.js HTTP/1.1
Host: www.coronavirus.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/chi/inbound-travel.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 06 Jan 2023 15:17:19 GMT
content-type: application/javascript
content-length: 30910
x-frame-options: ALLOW-FROM https://chp-dashboard.geodata.gov.hk/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Wed, 02 Sep 2020 04:01:04 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=300
expires: Fri, 06 Jan 2023 15:47:19 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78556b75af18b4ed-OSL
X-Firefox-Spdy: h2

www.coronavirus.gov.hk/js/modernizr.min.js

104.16.49.4

200 OK

4.5 kB

URL HTTP/2
www.coronavirus.gov.hk/js/modernizr.min.js
IP
104.16.49.4:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text, with very long lines (11084), with no line terminators
Size
4.5 kB (4511 bytes)
Hash
6716e06cf1f37f84f0c8d3914bb44f7d
8b5eca583880639d2e83b68c9a02c2ba472bd422
323b945928e870330abb8a5046568f56d767d232d6a02cb1e6ecefa725ec879c

HTTP Headers

GET /js/modernizr.min.js HTTP/1.1
Host: www.coronavirus.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/chi/inbound-travel.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 06 Jan 2023 15:17:19 GMT
content-type: application/javascript
content-length: 4511
x-frame-options: ALLOW-FROM https://chp-dashboard.geodata.gov.hk/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Fri, 21 Feb 2020 10:03:45 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=300
expires: Fri, 06 Jan 2023 15:47:19 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78556b75bf22b4ed-OSL
X-Firefox-Spdy: h2

www.coronavirus.gov.hk/js/kanhan.js

104.16.49.4

200 OK

823 B

URL HTTP/2
www.coronavirus.gov.hk/js/kanhan.js
IP
104.16.49.4:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
823 B (823 bytes)
Hash
a779912a4e689115391e9aae2f2bba0c
a1e96dc0d2c66af50d379acefa5d16bac0e676dd
ba69248ffea7bcd2e493e2aa43ff52b116718bddb7c6a3d8f283f4d2ecd80376

HTTP Headers

GET /js/kanhan.js HTTP/1.1
Host: www.coronavirus.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/chi/inbound-travel.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 06 Jan 2023 15:17:19 GMT
content-type: application/javascript
content-length: 823
x-frame-options: ALLOW-FROM https://chp-dashboard.geodata.gov.hk/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Fri, 21 Feb 2020 10:03:43 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=300
expires: Fri, 06 Jan 2023 15:47:19 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78556b75bf23b4ed-OSL
X-Firefox-Spdy: h2

www.coronavirus.gov.hk/js/menu.js

104.16.49.4

200 OK

987 B

URL HTTP/2
www.coronavirus.gov.hk/js/menu.js
IP
104.16.49.4:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
987 B (987 bytes)
Hash
18c1180de32ef232b3fdcb7e7e2f2670
7da04a735359f5277a5d85adf71be64ce91e3efd
98554efe27a8ed954bad853df49f11efd308bdcacb99cf0d3165d96a6c517693

HTTP Headers

GET /js/menu.js HTTP/1.1
Host: www.coronavirus.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/chi/inbound-travel.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 06 Jan 2023 15:17:19 GMT
content-type: application/javascript
content-length: 987
x-frame-options: ALLOW-FROM https://chp-dashboard.geodata.gov.hk/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Sep 2021 08:50:00 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=300
expires: Fri, 06 Jan 2023 15:47:19 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78556b759f07b4ed-OSL
X-Firefox-Spdy: h2

www.coronavirus.gov.hk/images/concise_guide_inbound_CHI.jpg

104.16.49.4

200 OK

749 kB

URL HTTP/2
www.coronavirus.gov.hk/images/concise_guide_inbound_CHI.jpg
IP
104.16.49.4:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 150x150, segment length 16, baseline, precision 8, 1241x1754, components 3\012- data
Size
749 kB (749027 bytes)
Hash
9cce1ef4816f8519625bc848f567814f
f8192c4f6fb575c490d8e88d06610d0c0f3758eb
fa4e082339051f184587f9825f6cf6a9024789cc2f50aa3ee3a7247331f7ecdd

HTTP Headers

GET /images/concise_guide_inbound_CHI.jpg HTTP/1.1
Host: www.coronavirus.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/chi/inbound-travel.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 06 Jan 2023 15:17:19 GMT
content-type: image/jpeg
content-length: 749027
cache-control: s-maxage=300
cf-bgj: h2pri
expires: Fri, 06 Jan 2023 15:47:19 GMT
last-modified: Fri, 30 Dec 2022 10:05:34 GMT
x-content-type-options: nosniff
x-frame-options: ALLOW-FROM https://chp-dashboard.geodata.gov.hk/
x-xss-protection: 1; mode=block
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78556b75af14b4ed-OSL
X-Firefox-Spdy: h2

www.coronavirus.gov.hk/css/swiper.min.css

104.16.49.4

200 OK

4.1 kB

URL HTTP/2
www.coronavirus.gov.hk/css/swiper.min.css
IP
104.16.49.4:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (13411)
Size
4.1 kB (4127 bytes)
Hash
3ee064f0867b410756e27ea2e3bad47d
df4149733f5ff012c9855c9b54e45197113a3503
b1007853ec6f5df67cffaca1ea343f4e5bd97d47b8a74f482e74ea8dad1a3dc9

HTTP Headers

GET /css/swiper.min.css HTTP/1.1
Host: www.coronavirus.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/chi/inbound-travel.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 06 Jan 2023 15:17:19 GMT
content-type: text/css
content-length: 4127
x-frame-options: ALLOW-FROM https://chp-dashboard.geodata.gov.hk/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Fri, 21 Feb 2020 10:03:43 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=300
expires: Fri, 06 Jan 2023 15:47:19 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78556b758ee7b4ed-OSL
X-Firefox-Spdy: h2

www.coronavirus.gov.hk/css/styles.css

104.16.49.4

200 OK

7.4 kB

URL HTTP/2
www.coronavirus.gov.hk/css/styles.css
IP
104.16.49.4:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (321), with CRLF line terminators
Size
7.4 kB (7435 bytes)
Hash
83e9996a636a9fc0bfcd8a7a6de25c47
92f8f2c7604ce079ac2adcf0dd77a3af5e09f513
befda00751ebb23a2c117d67b6b3c1cf075c2286c1e2e84011e77b20c576ba64

HTTP Headers

GET /css/styles.css HTTP/1.1
Host: www.coronavirus.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/chi/inbound-travel.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 06 Jan 2023 15:17:19 GMT
content-type: text/css
content-length: 7435
x-frame-options: ALLOW-FROM https://chp-dashboard.geodata.gov.hk/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Mon, 28 Feb 2022 15:02:21 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=300
expires: Fri, 06 Jan 2023 15:47:19 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78556b758ef2b4ed-OSL
X-Firefox-Spdy: h2

www.coronavirus.gov.hk/js/swiper.min.js

104.16.49.4

200 OK

35 kB

URL HTTP/2
www.coronavirus.gov.hk/js/swiper.min.js
IP
104.16.49.4:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65281)
Size
35 kB (35441 bytes)
Hash
dce99ca2fe32bc085864b542e19c741d
0b9087297097f2555aeeb4d617df4ef938927a39
42208eff3744b4dffde242e8ed092d3bb04bdd2dfde0153f7296e0b10e389349

HTTP Headers

GET /js/swiper.min.js HTTP/1.1
Host: www.coronavirus.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/chi/inbound-travel.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 06 Jan 2023 15:17:19 GMT
content-type: application/javascript
content-length: 35441
x-frame-options: ALLOW-FROM https://chp-dashboard.geodata.gov.hk/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Fri, 21 Feb 2020 10:03:43 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=300
expires: Fri, 06 Jan 2023 15:47:19 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78556b75af19b4ed-OSL
X-Firefox-Spdy: h2

www.coronavirus.gov.hk/js/popper.min.js

104.16.49.4

200 OK

6.9 kB

URL HTTP/2
www.coronavirus.gov.hk/js/popper.min.js
IP
104.16.49.4:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (19015)
Size
6.9 kB (6911 bytes)
Hash
90b6591e6f8c482ed51ae2f926de636f
3bbd16f7069c09a1be90f86756ec065fa5ae0110
8d5bdc122214b5492a9e273f608d226a6e26244548b47af54fbfa8af945ec6e8

HTTP Headers

GET /js/popper.min.js HTTP/1.1
Host: www.coronavirus.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/chi/inbound-travel.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 06 Jan 2023 15:17:19 GMT
content-type: application/javascript
content-length: 6911
x-frame-options: ALLOW-FROM https://chp-dashboard.geodata.gov.hk/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Fri, 21 Feb 2020 10:03:43 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=300
expires: Fri, 06 Jan 2023 15:47:19 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78556b75af1ab4ed-OSL
X-Firefox-Spdy: h2

www.coronavirus.gov.hk/images/icon-en.png

104.16.49.4

200 OK

2.6 kB

URL HTTP/2
www.coronavirus.gov.hk/images/icon-en.png
IP
104.16.49.4:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 104 x 104, 8-bit/color RGBA, non-interlaced\012- data
Size
2.6 kB (2597 bytes)
Hash
86cb3d543eec846c7c651e5daa4583c0
adc527b3f94f3eaa01c99fbb4cd16e66f6266f4c
cd2aa3eaa28ac8fbd88e1605775b92efb04348f8cf30af364dd926e5694251c4

HTTP Headers

GET /images/icon-en.png HTTP/1.1
Host: www.coronavirus.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/chi/inbound-travel.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 06 Jan 2023 15:17:19 GMT
content-type: image/png
content-length: 2597
x-frame-options: ALLOW-FROM https://chp-dashboard.geodata.gov.hk/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Thu, 26 Mar 2020 02:41:41 GMT
cache-control: s-maxage=300
expires: Fri, 06 Jan 2023 15:47:19 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78556b759f0fb4ed-OSL
X-Firefox-Spdy: h2

www.coronavirus.gov.hk/images/icon-sc.png

104.16.49.4

200 OK

3.6 kB

URL HTTP/2
www.coronavirus.gov.hk/images/icon-sc.png
IP
104.16.49.4:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 104 x 104, 8-bit/color RGBA, non-interlaced\012- data
Size
3.6 kB (3611 bytes)
Hash
51f2d5a55b034b73fc01e753779ac128
ab697003e4d05ea64cfea01373db4b0a63b3f587
77ed26c660f80e150bfa54f72033742f1c3666197f3c8851bb02b6309640deea

HTTP Headers

GET /images/icon-sc.png HTTP/1.1
Host: www.coronavirus.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/chi/inbound-travel.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 06 Jan 2023 15:17:19 GMT
content-type: image/png
content-length: 3611
x-frame-options: ALLOW-FROM https://chp-dashboard.geodata.gov.hk/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Thu, 26 Mar 2020 02:41:38 GMT
cache-control: s-maxage=300
expires: Fri, 06 Jan 2023 15:47:19 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78556b75af10b4ed-OSL
X-Firefox-Spdy: h2

www.coronavirus.gov.hk/js/swiper-ie-wa.js

104.16.49.4

200 OK

284 B

URL HTTP/2
www.coronavirus.gov.hk/js/swiper-ie-wa.js
IP
104.16.49.4:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with CRLF line terminators
Size
284 B (284 bytes)
Hash
adf01e3b608c0f4886228d0958e3395a
136d7112889e17a3605826c75484c2e5730ec2fe
fc80783ec8d45c9216fb7506baf00461b50549bbc987ae13b1e98fd4d966c91b

HTTP Headers

GET /js/swiper-ie-wa.js HTTP/1.1
Host: www.coronavirus.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/chi/inbound-travel.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 06 Jan 2023 15:17:19 GMT
content-type: application/javascript
content-length: 284
x-frame-options: ALLOW-FROM https://chp-dashboard.geodata.gov.hk/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Fri, 21 Feb 2020 10:03:43 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=300
expires: Fri, 06 Jan 2023 15:47:19 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78556b75bf27b4ed-OSL
X-Firefox-Spdy: h2

www.coronavirus.gov.hk/chi/search.html

104.16.49.4

200 OK

487 B

URL HTTP/2
www.coronavirus.gov.hk/chi/search.html
IP
104.16.49.4:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
487 B (487 bytes)
Hash
93e4ff2e6ef5ad89e0b52258b9c8877d
19da06bc450b2599f55c0213704a1e6b9d70e54a
972c8ddffdf34153ca885079e2ae669bca3f41573f58f2515605e0d95f935cdc

HTTP Headers

GET /chi/search.html HTTP/1.1
Host: www.coronavirus.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/chi/inbound-travel.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 06 Jan 2023 15:17:19 GMT
content-type: text/html
content-length: 487
x-frame-options: ALLOW-FROM https://chp-dashboard.geodata.gov.hk/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Fri, 21 Feb 2020 10:03:45 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=300
expires: Fri, 06 Jan 2023 15:47:19 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78556b7c7861b4ed-OSL
X-Firefox-Spdy: h2

www.coronavirus.gov.hk/images/hksarg_logo_tc.jpg

104.16.49.4

200 OK

80 kB

URL HTTP/2
www.coronavirus.gov.hk/images/hksarg_logo_tc.jpg
IP
104.16.49.4:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 2000x290, components 3\012- data
Size
80 kB (80349 bytes)
Hash
8aec9ea9acd007cf1b1001160a0da2f9
691021875b3bf3146a9b9b8a13bc013a79e08aa8
eaf8176716cdef57ce10af00cb1c98198a47061055f6b08b79c89f3db69eee81

HTTP Headers

GET /images/hksarg_logo_tc.jpg HTTP/1.1
Host: www.coronavirus.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/chi/inbound-travel.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 06 Jan 2023 15:17:19 GMT
content-type: image/jpeg
content-length: 80349
cache-control: s-maxage=300
cf-bgj: h2pri
expires: Fri, 06 Jan 2023 15:47:19 GMT
last-modified: Thu, 26 Mar 2020 02:41:38 GMT
x-content-type-options: nosniff
x-frame-options: ALLOW-FROM https://chp-dashboard.geodata.gov.hk/
x-xss-protection: 1; mode=block
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78556b759f08b4ed-OSL
X-Firefox-Spdy: h2

www.coronavirus.gov.hk/images/fight-virus-1000x250.png

104.16.49.4

200 OK

109 kB

URL HTTP/2
www.coronavirus.gov.hk/images/fight-virus-1000x250.png
IP
104.16.49.4:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 1000 x 250, 8-bit/color RGB, non-interlaced\012- data
Size
109 kB (108639 bytes)
Hash
8b6c840640cc838a29f722f08ecc74aa
ee22ae8a19f4da4396a55fb4fb1b9d608572d087
dc68078d4ec01d9d44d7ee78204d85c9354a7fe02fa6ee4614f7e6e0a0e368a6

HTTP Headers

GET /images/fight-virus-1000x250.png HTTP/1.1
Host: www.coronavirus.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/chi/inbound-travel.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 06 Jan 2023 15:17:19 GMT
content-type: image/png
content-length: 108639
x-frame-options: ALLOW-FROM https://chp-dashboard.geodata.gov.hk/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Thu, 26 Mar 2020 02:41:38 GMT
cache-control: s-maxage=300
expires: Fri, 06 Jan 2023 15:47:19 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78556b759f0bb4ed-OSL
X-Firefox-Spdy: h2

www.coronavirus.gov.hk/chi/nav2.html

104.16.49.4

200 OK

891 B

URL HTTP/2
www.coronavirus.gov.hk/chi/nav2.html
IP
104.16.49.4:0
ASN
#13335 CLOUDFLARENET

File type
exported SGML document, Unicode text, UTF-8 text
Size
891 B (891 bytes)
Hash
4849ec084613ac2d0e3b480a20601ef2
8b85b0886b0d232086cc1163ecab91b355d6b756
cb4a6f0e8169a418ed9d324594125208d78077716628bd4393bb64291d69d89c

HTTP Headers

GET /chi/nav2.html HTTP/1.1
Host: www.coronavirus.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/chi/inbound-travel.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 06 Jan 2023 15:17:20 GMT
content-type: text/html
content-length: 891
x-frame-options: ALLOW-FROM https://chp-dashboard.geodata.gov.hk/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Thu, 20 Oct 2022 03:48:36 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=300
expires: Fri, 06 Jan 2023 15:47:20 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78556b7c785bb4ed-OSL
X-Firefox-Spdy: h2

www.coronavirus.gov.hk/chi/em.html

104.16.49.4

200 OK

531 B

URL HTTP/2
www.coronavirus.gov.hk/chi/em.html
IP
104.16.49.4:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, Unicode text, UTF-8 text, with CRLF line terminators
Size
531 B (531 bytes)
Hash
570ecf83da874a9cd58e8e007c147783
b55ce764f11ab2730d56856d800d0579e9711369
24897aae7c00a6bbe259626183b33d2c6b5e2b7ef4dfa77dbcee2c116b9155cd

HTTP Headers

GET /chi/em.html HTTP/1.1
Host: www.coronavirus.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/chi/inbound-travel.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 06 Jan 2023 15:17:20 GMT
content-type: text/html
content-length: 531
x-frame-options: ALLOW-FROM https://chp-dashboard.geodata.gov.hk/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Fri, 21 Feb 2020 10:03:45 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=300
expires: Fri, 06 Jan 2023 15:47:20 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78556b7c785fb4ed-OSL
X-Firefox-Spdy: h2

www.coronavirus.gov.hk/chi/nav.html

104.16.49.4

200 OK

892 B

URL HTTP/2
www.coronavirus.gov.hk/chi/nav.html
IP
104.16.49.4:0
ASN
#13335 CLOUDFLARENET

File type
exported SGML document, Unicode text, UTF-8 text
Size
892 B (892 bytes)
Hash
0f0dc2cec724bc4ac7f4e9d143973d62
811028583f41568cf30442fd1e859cc465435296
041d693a07a2056eb5e038095d531f2ba4158c1e1ea423b0e7eed04497809897

HTTP Headers

GET /chi/nav.html HTTP/1.1
Host: www.coronavirus.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/chi/inbound-travel.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 06 Jan 2023 15:17:20 GMT
content-type: text/html
content-length: 892
x-frame-options: ALLOW-FROM https://chp-dashboard.geodata.gov.hk/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Thu, 20 Oct 2022 03:48:36 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=300
expires: Fri, 06 Jan 2023 15:47:20 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78556b7c684bb4ed-OSL
X-Firefox-Spdy: h2

www.coronavirus.gov.hk/chi/socialmedia.html

104.16.49.4

200 OK

394 B

URL HTTP/2
www.coronavirus.gov.hk/chi/socialmedia.html
IP
104.16.49.4:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, Unicode text, UTF-8 text
Size
394 B (394 bytes)
Hash
8c12d291ac910b28db1be43c1ec2ac19
d0cfe6dd8ed2d807891df33bfad9e0fca0d8c145
386100a2df8627b8d8c10fc9f78d287365d82a408eb7bbcea4114b5b51300325

HTTP Headers

GET /chi/socialmedia.html HTTP/1.1
Host: www.coronavirus.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/chi/inbound-travel.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 06 Jan 2023 15:17:20 GMT
content-type: text/html
content-length: 394
x-frame-options: ALLOW-FROM https://chp-dashboard.geodata.gov.hk/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Fri, 08 Apr 2022 04:15:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=300
expires: Fri, 06 Jan 2023 15:47:20 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78556b7c785cb4ed-OSL
X-Firefox-Spdy: h2

www.coronavirus.gov.hk/chi/footer.html

104.16.49.4

200 OK

512 B

URL HTTP/2
www.coronavirus.gov.hk/chi/footer.html
IP
104.16.49.4:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, Unicode text, UTF-8 text
Size
512 B (512 bytes)
Hash
01c31e71b07084cdf10231af9fa14b7d
94e3e87d9735938f007e181d043d37d70177e9d8
677b0071312aa096933aec849bc04db19384f4e912d67f9ad66f07c8b94abaa8

HTTP Headers

GET /chi/footer.html HTTP/1.1
Host: www.coronavirus.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/chi/inbound-travel.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 06 Jan 2023 15:17:20 GMT
content-type: text/html
content-length: 512
x-frame-options: ALLOW-FROM https://chp-dashboard.geodata.gov.hk/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Fri, 17 Sep 2021 08:49:54 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
cache-control: s-maxage=300
expires: Fri, 06 Jan 2023 15:47:20 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 78556b7c7866b4ed-OSL
X-Firefox-Spdy: h2

www.coronavirus.gov.hk/images/blue-search.png

104.16.49.4

200 OK

2.3 kB

URL HTTP/2
www.coronavirus.gov.hk/images/blue-search.png
IP
104.16.49.4:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size
2.3 kB (2336 bytes)
Hash
646a31af208d247b78d50771cb2aec90
ecdff583586e5ce3b10aa3be2de7a3125fa0c144
82e9af3bc9a5f5bdd6ac720e72fbbd4364661f326857ef2209684be9d87914ba

HTTP Headers

GET /images/blue-search.png HTTP/1.1
Host: www.coronavirus.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/chi/inbound-travel.html
Cookie: last_lang=chi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 06 Jan 2023 15:17:20 GMT
content-type: image/png
content-length: 2336
x-frame-options: ALLOW-FROM https://chp-dashboard.geodata.gov.hk/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Thu, 26 Mar 2020 02:41:41 GMT
cache-control: s-maxage=300
expires: Fri, 06 Jan 2023 15:47:20 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78556b7e7b05b4ed-OSL
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

216.239.38.178

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
216.239.38.178:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 06 Jan 2023 14:41:10 GMT
expires: Fri, 06 Jan 2023 16:41:10 GMT
cache-control: public, max-age=7200
age: 2170
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google-analytics.com/j/collect?v=1&_v=j98&a=75442624&t=pageview&_s=1&dl=https%3A%2F%2Fwww.coronavirus.gov.hk%2Fchi%2Finbound-travel.html&ul=en-us&de=UTF-8&dt=2019%E5%86%A0%E7%8B%80%E7%97%85%E6%AF%92%E7%97%85%E5%B0%88%E9%A1%8C%E7%B6%B2%E7%AB%99%20-%20%E5%90%8C%E5%BF%83%E6%8A%97%E7%96%AB%20-%20%E5%85%A5%E5%A2%83%E6%B3%A8%E6%84%8F&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=2048768323&gjid=346154561&cid=1152652391.1673018230&tid=UA-158663296-1&_gid=428207499.1673018230&_r=1&gtm=2ou120&z=1390610593

216.239.38.178

200 OK

1 B

URL HTTP/2
www.google-analytics.com/j/collect?v=1&_v=j98&a=75442624&t=pageview&_s=1&dl=https%3A%2F%2Fwww.coronavirus.gov.hk%2Fchi%2Finbound-travel.html&ul=en-us&de=UTF-8&dt=2019%E5%86%A0%E7%8B%80%E7%97%85%E6%AF%92%E7%97%85%E5%B0%88%E9%A1%8C%E7%B6%B2%E7%AB%99%20-%20%E5%90%8C%E5%BF%83%E6%8A%97%E7%96%AB%20-%20%E5%85%A5%E5%A2%83%E6%B3%A8%E6%84%8F&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=2048768323&gjid=346154561&cid=1152652391.1673018230&tid=UA-158663296-1&_gid=428207499.1673018230&_r=1&gtm=2ou120&z=1390610593
IP
216.239.38.178:0
ASN
#15169 GOOGLE

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b

HTTP Headers

POST /j/collect?v=1&_v=j98&a=75442624&t=pageview&_s=1&dl=https%3A%2F%2Fwww.coronavirus.gov.hk%2Fchi%2Finbound-travel.html&ul=en-us&de=UTF-8&dt=2019%E5%86%A0%E7%8B%80%E7%97%85%E6%AF%92%E7%97%85%E5%B0%88%E9%A1%8C%E7%B6%B2%E7%AB%99%20-%20%E5%90%8C%E5%BF%83%E6%8A%97%E7%96%AB%20-%20%E5%85%A5%E5%A2%83%E6%B3%A8%E6%84%8F&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=2048768323&gjid=346154561&cid=1152652391.1673018230&tid=UA-158663296-1&_gid=428207499.1673018230&_r=1&gtm=2ou120&z=1390610593 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.coronavirus.gov.hk
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://www.coronavirus.gov.hk
date: Fri, 06 Jan 2023 15:17:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.coronavirus.gov.hk/images/wcag2AA.gif

104.16.49.4

200 OK

1.4 kB

URL HTTP/2
www.coronavirus.gov.hk/images/wcag2AA.gif
IP
104.16.49.4:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 88 x 31\012- data
Size
1.4 kB (1421 bytes)
Hash
fc09cc743ad2f94b8fe780a2beee5235
f8615a408888f781d0b1663ab0f69337483e20a1
927e706ae933629edc1e29efd93d8934faab1f6859240d7a9e3d3db11809714f

HTTP Headers

GET /images/wcag2AA.gif HTTP/1.1
Host: www.coronavirus.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/chi/inbound-travel.html
Cookie: last_lang=chi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 06 Jan 2023 15:17:20 GMT
content-type: image/gif
content-length: 1421
x-frame-options: ALLOW-FROM https://chp-dashboard.geodata.gov.hk/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Thu, 26 Mar 2020 02:41:42 GMT
cache-control: s-maxage=300
expires: Fri, 06 Jan 2023 15:47:20 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 78556b83a9a5b4ed-OSL
X-Firefox-Spdy: h2

www.coronavirus.gov.hk/favicon.ico

104.16.49.4

200 OK

0 B

URL HTTP/2
www.coronavirus.gov.hk/favicon.ico
IP
104.16.49.4:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.coronavirus.gov.hk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/chi/inbound-travel.html
Cookie: last_lang=chi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 06 Jan 2023 15:17:21 GMT
content-type: image/x-icon
x-frame-options: ALLOW-FROM https://chp-dashboard.geodata.gov.hk/
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Fri, 21 Feb 2020 05:56:11 GMT
cache-control: s-maxage=300
expires: Fri, 06 Jan 2023 15:47:21 GMT
cf-cache-status: REVALIDATED
vary: Accept-Encoding
server: cloudflare
cf-ray: 78556b848af2b4ed-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto+Condensed&display=swap

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto+Condensed&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto+Condensed&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.coronavirus.gov.hk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 06 Jan 2023 15:17:18 GMT
date: Fri, 06 Jan 2023 15:17:18 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (21)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations