Report - jobzcart.com/

Report Overview

Submitted URL
jobzcart.com/
IP
135.181.142.201
ASN
#24940 Hetzner Online GmbH
Submitted
2022-11-24 20:31:47
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
124

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	280 B	18 kB	142.250.74.174
ajax.googleapis.com	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	694 B	69 kB	142.250.74.74
widgets.tc2000.com	179344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.5 kB	109 kB	209.34.225.222
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	52 kB	34.120.237.76
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	2.2 kB	142.250.74.10
jobzcart.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	9.1 kB	568 kB	135.181.142.201
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.5 kB	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.148.69.31
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.77.32
cdnjs.cloudflare.com	235	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	421 B	17 kB	104.17.25.14
cdn.mlcalc.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	669 B	4.7 kB	172.66.43.170
ssl.google-analytics.com	275	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	368 B	18 kB	142.250.74.40
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.4 kB	7.0 kB	142.250.74.3
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	471 B	24 kB	216.58.207.195

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-24	medium	jobzcart.com/	Malware
2022-11-24	medium	jobzcart.com/run.html	Malware

mnemonic secure dns

Scan Date	Severity	Indicator	Alert
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed
2022-11-24	medium	jobzcart.com	Sinkholed

JavaScript (24)

	URL	Size	First Seen	Last Seen
	unknown	0 B	2023-03-07	2024-05-07
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-07 18:40:36 Times Seen37414451 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	widgets.tc2000.com/Scripts/grid/jquery.iscrollTable.js	25 kB	2023-03-11	2023-03-11
Pretty URL widgets.tc2000.com/Scripts/grid/jquery.iscrollTable.js IP 209.34.225.222 ASN #13649 ASN-VINS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:19:43 Last Seen2023-03-11 19:19:43 Times Seen1 Hash 38f3429e35f402db4b996414901a3b4c 873a4aeb8bbbdf645bfbb6cc1090e84f2d69e9e4 b9e96f7c665f232dd81e9623abed08c5f276834bf9c2b78e9b3d3431e6747995 Loading...

	widgets.tc2000.com/Scripts/autocomplete/jquery.autocomplete.js	15 kB	2023-03-11	2023-03-11
Pretty URL widgets.tc2000.com/Scripts/autocomplete/jquery.autocomplete.js IP 209.34.225.222 ASN #13649 ASN-VINS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:19:43 Last Seen2023-03-11 19:19:43 Times Seen1 Hash 37ebc8664f8a2007e2007a93d1728483 a7e121b71d4d1ce9e62deb56632db90df099d203 d6d700234933ae7359f389f541483bea8b2b095b65220279c68129f8faba4974 Loading...

	widgets.tc2000.com/Scripts/jquery.horizontalScroll.js	5.2 kB	2023-03-11	2023-03-11
Pretty URL widgets.tc2000.com/Scripts/jquery.horizontalScroll.js IP 209.34.225.222 ASN #13649 ASN-VINS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:19:44 Last Seen2023-03-11 19:19:44 Times Seen1 Hash f81f6a4c85d9cd868a37ac03bde93a7a 6b1de8821f4f7e91a4cd96e7044c42704917ec99 dead3216b944de211bb27ac1311b6b987f3c9e119852e9f87196fddbb9f117f1 Loading...

	widgets.tc2000.com/Scripts/jquery.form.keyEnter.js	612 B	2023-03-11	2023-03-11
Pretty URL widgets.tc2000.com/Scripts/jquery.form.keyEnter.js IP 209.34.225.222 ASN #13649 ASN-VINS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:19:44 Last Seen2023-03-11 19:19:44 Times Seen1 Hash 6800514e12b99d27ccd460d817b9810d a0b9a24a87640b053964dcbd2e533d4b3578888c 1eb6201f050f792bc748fd0d918773ce2263ae6a0182daffc2449b38d4bacf3a Loading...

	www.google-analytics.com/ga.js	46 kB	2023-03-07	2024-04-16
Pretty URL www.google-analytics.com/ga.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2024-04-16 23:24:27 Times Seen3495 Hash e9372f0ebbcf71f851e3d321ef2a8e5a 2c7d19d1af7d97085c977d1b69dcb8b84483d87c 1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js	94 kB	2023-03-07	2024-05-07
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js IP 142.250.74.74 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:13 Last Seen2024-05-07 13:25:06 Times Seen10646 Hash ddb84c1587287b2df08966081ef063bf 9eb9ac595e9b5544e2dc79fff7cd2d0b4b5ef71f 88171413fc76dda23ab32baa17b11e4fff89141c633ece737852445f1ba6c1bd Loading...

	widgets.tc2000.com/Scripts/grid/iscroll.js	33 kB	2023-03-11	2023-03-11
Pretty URL widgets.tc2000.com/Scripts/grid/iscroll.js IP 209.34.225.222 ASN #13649 ASN-VINS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:19:44 Last Seen2023-03-11 19:19:44 Times Seen1 Hash c56f8287657d7ae3424da042acc0409a 0d6cf647755c2025146db0ddca82678d594d3081 9bf3b98129229322d7ee6a2fe50c20cca587830bdee0c468b006bcf840dcd72a Loading...

	widgets.tc2000.com/TickerWidget.aspx?id=40284	15 kB	2023-03-11	2023-03-11
Pretty URL widgets.tc2000.com/TickerWidget.aspx?id=40284 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:19:44 Last Seen2023-03-11 19:19:44 Times Seen1 Hash ef4f5cfa52a8fe6332b28bc86a6b0e98 e458304577af1097ab291326dabb87f92935e8ae 0a3304f4a33db3e60adbdd184f7bf6e8759a1cf64523c242cf79b90f49aad681 Loading...

	widgets.tc2000.com/TickerWidget.aspx?id=40284	457 B	2023-03-11	2023-03-11
Pretty URL widgets.tc2000.com/TickerWidget.aspx?id=40284 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:19:44 Last Seen2023-03-11 19:19:44 Times Seen1 Hash 51ed9df08baecb8f064b295973e19d68 8c9d04b873db24c14fc20c1a0f5a1f146eb5140f c4bd536725ebf699aeff4ea22d16514fc53bfea3b305ed28a81f5a1ba3195bc9 Loading...

	jobzcart.com/	417 B	2023-03-07	2023-09-26
Pretty URL jobzcart.com/ IP 135.181.142.201 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:18:41 Last Seen2023-09-26 08:37:04 Times Seen45 Hash aaf4ad9090b20d6c5c6b7e433cd45c8c 1800ed7db921443e94b24e01eb09010df8a2661f dd5eba5752a162d61b0a3559ea44aaa0a2aa839c8b34c4195082624d79592c6d Loading...

	jobzcart.com/	417 B	2023-03-07	2023-09-26
Pretty URL jobzcart.com/ IP 135.181.142.201 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:18:41 Last Seen2023-09-26 08:37:04 Times Seen45 Hash f910ed5393b93aab604ad08ef95d5680 306f985bd66a80907f5caac117e56a304f06fc79 e3e69f9317e64d9146f36a3d7e49b135996c14d15f943146d10ec89cd9b2e813 Loading...

	jobzcart.com/	648 B	2023-03-11	2023-03-11
Pretty URL jobzcart.com/ IP 135.181.142.201 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:19:44 Last Seen2023-03-11 19:19:44 Times Seen1 Hash 49e9a7142a15e0b17db5d5e28218a580 f3c8052738efbceaa8e0b6a8b0c5719437a161d1 ffdfed32c23458e339cc8dba2f11c36768ee20e6e302107919f876c5aa50e718 Loading...

	jobzcart.com/	417 B	2023-03-07	2023-09-26
Pretty URL jobzcart.com/ IP 135.181.142.201 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:18:41 Last Seen2023-09-26 08:37:04 Times Seen45 Hash 1e58622939a47e44f0edc85f6bf86e61 9514546dd27b01c566529d576c3708175c32380a 5c74a15b36fd2e5c4009d3774004018cb9a1b3c4f702abf417491834c809a7b6 Loading...

	jobzcart.com/	446 B	2023-03-11	2023-03-11
Pretty URL jobzcart.com/ IP 135.181.142.201 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:19:44 Last Seen2023-03-11 19:19:44 Times Seen1 Hash cd9c13311d093252b53904f710f7cc18 9639982231eacef50e80e39f5d3a4d3bde22a4e2 5cabee05df14cf155622df89193bbc4eb8ae145bf555c5942c18500165472ed1 Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js	97 kB	2023-03-07	2024-05-07
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js IP 142.250.74.10 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-07 18:23:47 Times Seen119165 Hash 4f252523d4af0b478c810c2547a63e19 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb 668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404 Loading...

	jobzcart.com/	285 B	2023-03-11	2023-03-11
Pretty URL jobzcart.com/ IP 135.181.142.201 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:19:44 Last Seen2023-03-11 19:19:44 Times Seen1 Hash 33fa5ad503f42181d91a7fa5ab8455f9 2b531fd104fad8f45fd8668f6b0ad41a898e718b b5a1a74ed56268c29a8b0f28ffab0d21cc5b77e54b9519c42cd15eb8271de7c5 Loading...

	cdn.mlcalc.com/mortgage-rates/widget-wide.js	9.6 kB	2023-03-11	2023-03-11
Pretty URL cdn.mlcalc.com/mortgage-rates/widget-wide.js IP 172.66.43.170 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:19:44 Last Seen2023-03-11 19:19:44 Times Seen1 Hash 1308e8c3d6c8815d426a87d63f615eab f31ad45b21d1b5c2f604330c70accaa9d3c1eaa4 e89bccac5975d7c86d2f97ac1890b73f43227ff9b84f6a71650e855b47977b79 Loading...

		Size	First Seen	Last Seen
	#1 Write - 7b56638c0585c7a98e1e89220d09ccb4	110 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 19:19:44 Last Seen2023-03-11 19:19:44 Times Seen1 Hash 7b56638c0585c7a98e1e89220d09ccb4 5caa135c4bba9c12fe4cad010605c63ada4fa50c e6b8d31cad84356d823f88bd3399f67a115755d7383151365442ae6a648432ef Loading...

	#2 Write - d7c1e67bdc5a987ba104ada99dbf5ab2	98 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 19:19:44 Last Seen2023-03-11 19:19:44 Times Seen1 Hash d7c1e67bdc5a987ba104ada99dbf5ab2 238152e7a2f92db57bc5ee18795aeba3edb79341 11839f502a8d6774fa7864c82e4c061a9d6200a0b92ed5beceb57f9e4f8a1aa7 Loading...

	#3 Write - 8f3dea65292bd216d139eb9c765c58fd	5.6 kB	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 19:19:44 Last Seen2023-03-11 19:19:44 Times Seen1 Hash 8f3dea65292bd216d139eb9c765c58fd edded9d587ac5f29c9f4bf8f6d8d9ec0e333b7eb fa6a19192d6d1b2f8c3cc2892df896d1c7d851677c68e49d5126feb26d49266c Loading...

	#4 Write - 70f68dfbdaaa07097c460d8ae4b68816	26 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 15:29:11 Last Seen2023-03-11 19:19:44 Times Seen1 Hash 70f68dfbdaaa07097c460d8ae4b68816 cddccce5933459a47fb6a99436ddca5bbce55fca c1f6b6f4e812911502eec15892d4a3400414dfab5b7bd526cfd6991930e16d7b Loading...

	#5 Write - 26636dafca4aee2bddcdc4d398cc2904	25 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 19:19:44 Last Seen2023-03-11 21:37:25 Times Seen1 Hash 26636dafca4aee2bddcdc4d398cc2904 d50706f47657ef5f23918aaaf16dd62236705bd8 f22f9e435241315ad4f9200e26f1429172dc81d53f74ec328bcf53ecaa482ca6 Loading...

	#6 Write - 4f33f927828a16e0be3d73f04df36259	28 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 16:00:22 Last Seen2023-03-11 19:19:44 Times Seen1 Hash 4f33f927828a16e0be3d73f04df36259 194109cf02f2d3544258b102d6fcedfbdded6204 7c0567221508dadc13bed7cadd9679583934c62082dcb85f6194270f97b7bdb1 Loading...

HTTP Transactions (86)

URL IP Response Size

jobzcart.com/

135.181.142.201

200 OK

12 kB

URL HTTP/1.1
jobzcart.com/
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (10484), with CRLF line terminators
Size
12 kB (12203 bytes)
Hash
953e215af86744469132dea84d107ad9
ef9f070818baa02d28dc728069ddeac27da92c13
fa559169b89aadde0a7cbe5793b4384a90be5f7ff8933e3cbfc6897b2ade8d9e

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 20:31:36 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 29 Dec 2020 08:20:10 GMT
Cache-Control: max-age=3600, must-revalidate
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: HIT
X-Server-Powered-By: Engintron
Content-Encoding: gzip

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7c60904d097cde276e4e5632cef1b9f1
4f805026462589345d85e8df2d18eafba6237504
12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13003
Expires: Fri, 25 Nov 2022 00:08:20 GMT
Date: Thu, 24 Nov 2022 20:31:37 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
af40a2fcf8debb90c3608002da6c907a
3c75d6c0b557a3bd8d5db50155b8d896e852c145
555617a51ee3077552545a29a3baf0b43e8a82367e4c08110ee480ebedc8b523

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4054
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:31:37 GMT
Last-Modified: Thu, 24 Nov 2022 19:24:03 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 20:19:00 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 757
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
260e9998c20d831b66f1029c8f47aac9
716d630f647c54dc69a7f9c63a6cac294b3df7f7
c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3840
Expires: Thu, 24 Nov 2022 21:35:37 GMT
Date: Thu, 24 Nov 2022 20:31:37 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: N1zfAkIMDQ6AN0prB9uJvtkO2J3gsyQmgwsEC1V6HeGRSl2xVK3j8Kvsmkqjgh/X9TfM6ktQsn4=
x-amz-request-id: 9FMGQP5R1SDCSMS0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 19:40:31 GMT
age: 3066
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

www.google-analytics.com/ga.js

142.250.74.174

200 OK

17 kB

URL HTTP/1.1
www.google-analytics.com/ga.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1305)
Size
17 kB (17168 bytes)
Hash
01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d

HTTP Headers

GET /ga.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Thu, 24 Nov 2022 19:05:57 GMT
Expires: Thu, 24 Nov 2022 21:05:57 GMT
Cache-Control: public, max-age=7200
Age: 5140
Last-Modified: Tue, 27 Sep 2022 22:01:05 GMT
Content-Type: text/javascript

jobzcart.com/run.html

135.181.142.201

200 OK

242 B

URL HTTP/1.1
jobzcart.com/run.html
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
242 B (242 bytes)
Hash
104a63317ccaf9d5fb35cf5514a5f385
6bd4b54644baa3d042dcffa5daf223201cb7d014
8a86ce40550a9a153c2c8fa19062fd6a3575ecc679dd21934f5545d9af77dbb1

Detections

Analyzer	Verdict	Alert
fortinet	Malware
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /run.html HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 20:31:37 GMT
Content-Type: text/html
Content-Length: 242
Connection: keep-alive
Last-Modified: Sat, 19 Nov 2022 19:07:50 GMT
Cache-Control: max-age=3600, must-revalidate
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes

cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/3.3.7/css/bootstrap.min.css

104.17.25.14

200 OK

16 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/3.3.7/css/bootstrap.min.css
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65371)
Size
16 kB (16149 bytes)
Hash
875b3995d53e3efea3a5ed7361c379b7
f26a84d323fd0360bb187f14060dd63428001ae6
016fe2dcd08d54bdeacf2ad22011d1be4ff4af36b10d09877493b54bd96924ff

HTTP Headers

GET /ajax/libs/twitter-bootstrap/3.3.7/css/bootstrap.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jobzcart.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 24 Nov 2022 20:31:37 GMT
content-type: text/css; charset=utf-8
content-length: 16149
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04010-1d970"
last-modified: Mon, 04 May 2020 16:17:20 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 705791
expires: Tue, 14 Nov 2023 20:31:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kGqutAx9oLLLsM%2Bv8VRWEszm8pL9OcoQ%2Fy%2BwDUhjPli2FIK0MjQSIP0jOEiXi4or9chFCvKHZEmA09Xr%2B%2BK5NVTY3pjdj%2BY011Owu6zUHEqgbXQi45K5QEpGumajaeuIhSIJYIez"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76f4e8c1596fb50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js

142.250.74.74

200 OK

33 kB

URL HTTP/1.1
ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js
IP
142.250.74.74:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)
Size
33 kB (33333 bytes)
Hash
18351732b1849ba758e98884e186b3c8
d735af8661eda41ff4ffbf76e6a284a0e2deb81c
bfac625d304d52e04f2caeb19266354749929c888ca09d3d1e3edcbb8770d0f0

HTTP Headers

GET /ajax/libs/jquery/1.7.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 33333
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 09:29:57 GMT
Expires: Wed, 22 Nov 2023 09:29:57 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 212500

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:31:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 20:31:37 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:31:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:31:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:31:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js

142.250.74.10

200 OK

34 kB

URL HTTP/2
ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (32077)
Size
34 kB (33951 bytes)
Hash
fd2b58574f9637ba7ef639267349d848
6eda5ea93f549ceb5693f6f1c038893fa56a510d
75627d4b97e5e6294a8f88f5eeaf9b616696dc8600db9701c47ef05f067880ec

HTTP Headers

GET /ajax/libs/jquery/1.12.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jobzcart.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33951
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 15:01:07 GMT
expires: Thu, 23 Nov 2023 15:01:07 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 106230
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

jobzcart.com/photo/top-bar-image.png

135.181.142.201

200 OK

3.9 kB

URL HTTP/1.1
jobzcart.com/photo/top-bar-image.png
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 350 x 23, 8-bit/color RGBA, non-interlaced\012- data
Size
3.9 kB (3916 bytes)
Hash
d22a8e9cff1a126d115089c4cf2c16a4
7aabcc273ac80c0bcf1794fc17eea9d3dfefbe2e
47505f97cf9529a2f95e92f3dbeaf9449fcea64c1da849086acb38932950590f

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /photo/top-bar-image.png HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 20:31:37 GMT
Content-Type: image/png
Content-Length: 3916
Connection: keep-alive
Last-Modified: Thu, 12 Mar 2020 15:51:14 GMT
Expires: Mon, 23 Jan 2023 20:31:37 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes

jobzcart.com/photo/user20.jpg

135.181.142.201

200 OK

17 kB

URL HTTP/1.1
jobzcart.com/photo/user20.jpg
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=128, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=128], progressive, precision 8, 80x80, components 3\012- data
Size
17 kB (16803 bytes)
Hash
716e4d3fc07573f864b4607b3bcf37f6
5efdd0389c14b961f675ce92c1531b59c9c99f2b
050e546632d6fbf66111cf5926c5c61cc63294a7086de6325e353cfe47462214

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /photo/user20.jpg HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 20:31:37 GMT
Content-Type: image/jpeg
Content-Length: 16803
Connection: keep-alive
Last-Modified: Thu, 12 Mar 2020 16:23:10 GMT
Expires: Mon, 23 Jan 2023 20:31:37 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes

jobzcart.com/photo/girl-with-child2.jpg

135.181.142.201

200 OK

36 kB

URL HTTP/1.1
jobzcart.com/photo/girl-with-child2.jpg
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 242x287, components 3\012- data
Size
36 kB (35915 bytes)
Hash
afed3dd2a6882e31bbf111501ea745a7
54bbcf7e59eff120ed35aa5a9e827fd507f9b0d2
5e72727784aaa5687d80eb462f30ce73f07a4d22ebc8419869d13408ad012663

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /photo/girl-with-child2.jpg HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 20:31:37 GMT
Content-Type: image/jpeg
Content-Length: 35915
Connection: keep-alive
Last-Modified: Thu, 12 Mar 2020 16:15:22 GMT
Expires: Mon, 23 Jan 2023 20:31:37 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:31:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

jobzcart.com/photo/user13.jpg

135.181.142.201

200 OK

19 kB

URL HTTP/1.1
jobzcart.com/photo/user13.jpg
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=128, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=128], progressive, precision 8, 80x80, components 3\012- data
Size
19 kB (19055 bytes)
Hash
1c3937696a3e71a67488b79182913f03
be8982e3ec4e1f20fbb7817202688bc9cabb0bfd
d1000937af1cb251a0964314694446e0abf9d2564cabfb4cd34d90f048bf4c56

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /photo/user13.jpg HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 20:31:37 GMT
Content-Type: image/jpeg
Content-Length: 19055
Connection: keep-alive
Last-Modified: Thu, 12 Mar 2020 16:22:26 GMT
Expires: Mon, 23 Jan 2023 20:31:37 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes

jobzcart.com/photo/user12.jpg

135.181.142.201

200 OK

18 kB

URL HTTP/1.1
jobzcart.com/photo/user12.jpg
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=128, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=128], progressive, precision 8, 80x80, components 3\012- data
Size
18 kB (17789 bytes)
Hash
039d51b822e05594fa15a593a43f2d60
f530cb9c3906118dacdca5db27fa80671cdc7e88
8049206adf90c12a81e49c14d0508366b7d91939d3769d759a9f2d9682dc97ce

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /photo/user12.jpg HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 20:31:37 GMT
Content-Type: image/jpeg
Content-Length: 17789
Connection: keep-alive
Last-Modified: Thu, 12 Mar 2020 16:22:18 GMT
Expires: Mon, 23 Jan 2023 20:31:37 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes

jobzcart.com/photo/using-computer.jpg

135.181.142.201

200 OK

8.3 kB

URL HTTP/1.1
jobzcart.com/photo/using-computer.jpg
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 174x111, components 3\012- data
Size
8.3 kB (8321 bytes)
Hash
d35f36c15768065229d9582c544d6344
02aeac2ac99075f50f6ced7c32c7fbaea2c6f948
59d94fea9cd1bf952caeebe76c5a35549538c93c8caa737f2565bdac51ce359b

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /photo/using-computer.jpg HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 20:31:37 GMT
Content-Type: image/jpeg
Content-Length: 8321
Connection: keep-alive
Last-Modified: Thu, 12 Mar 2020 16:14:28 GMT
Expires: Mon, 23 Jan 2023 20:31:37 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:31:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

jobzcart.com/photo/header-banner.jpg

135.181.142.201

200 OK

45 kB

URL HTTP/1.1
jobzcart.com/photo/header-banner.jpg
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=99, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=980], progressive, precision 8, 980x99, components 3\012- data
Size
45 kB (44700 bytes)
Hash
5ea33f87470a568f52562f94578ad2ee
63a0fbba1ecdf881457433868eb04cea622b4df0
084676de0fb522985f6a18488915ecdcc299943a821baa36da6619d5ec346a00

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /photo/header-banner.jpg HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 20:31:37 GMT
Content-Type: image/jpeg
Content-Length: 44700
Connection: keep-alive
Last-Modified: Thu, 12 Mar 2020 16:05:28 GMT
Expires: Mon, 23 Jan 2023 20:31:37 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes

jobzcart.com/photo/new-article.jpg

135.181.142.201

200 OK

26 kB

URL HTTP/1.1
jobzcart.com/photo/new-article.jpg
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Picasa], baseline, precision 8, 506x336, components 3\012- data
Size
26 kB (25857 bytes)
Hash
5afa487a4bb8c55cda908b3c8e358da7
a0961856f2c0f710069331da62364806480091b4
727fe8c9a41861bf3aaacebc300801bf923355f59758c805e943bfd1ee7097f7

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /photo/new-article.jpg HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 20:31:37 GMT
Content-Type: image/jpeg
Content-Length: 25857
Connection: keep-alive
Last-Modified: Thu, 12 Mar 2020 16:15:54 GMT
Expires: Mon, 23 Jan 2023 20:31:37 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes

jobzcart.com/photo/screenshot.jpg

135.181.142.201

200 OK

35 kB

URL HTTP/1.1
jobzcart.com/photo/screenshot.jpg
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 100x100, segment length 16, baseline, precision 8, 506x259, components 3\012- data
Size
35 kB (34988 bytes)
Hash
7206aaa1e4f57418abb05f3781dc276c
07dc6cadffbe29f58c9cafca30eeceb0bac00a40
285383510ab68fed5ca44b3c5772e9b4a1702720ac7f2b8fd319302c2ddff681

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /photo/screenshot.jpg HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 20:31:37 GMT
Content-Type: image/jpeg
Content-Length: 34988
Connection: keep-alive
Last-Modified: Thu, 12 Mar 2020 16:16:30 GMT
Expires: Mon, 23 Jan 2023 20:31:37 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes

jobzcart.com/photo/user1.jpg

135.181.142.201

200 OK

18 kB

URL HTTP/1.1
jobzcart.com/photo/user1.jpg
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=360, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=360], baseline, precision 8, 80x80, components 3\012- data
Size
18 kB (17773 bytes)
Hash
4bd96463a544bf1d79195609fffc40de
e07e3548972b3409ece0445cc4db6149a1567bc3
d540d4b9c7109f5fd50e3ad6e26ae713489fe2afcc704f90cda0a3781db1b982

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /photo/user1.jpg HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 20:31:37 GMT
Content-Type: image/jpeg
Content-Length: 17773
Connection: keep-alive
Last-Modified: Thu, 12 Mar 2020 16:17:06 GMT
Expires: Mon, 23 Jan 2023 20:31:37 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes

jobzcart.com/photo/user2.jpg

135.181.142.201

200 OK

21 kB

URL HTTP/1.1
jobzcart.com/photo/user2.jpg
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=360, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=360], progressive, precision 8, 80x80, components 3\012- data
Size
21 kB (20865 bytes)
Hash
e293e53b39dcefcc3caff7f1ccd4d5d9
9040f85dad6b73f1164146d1976d459015ec4238
a55ca00c056f51f796ee98f0a0338788a64e0d53b5b5ad269dbbfa2e75d5e4fd

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /photo/user2.jpg HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 20:31:37 GMT
Content-Type: image/jpeg
Content-Length: 20865
Connection: keep-alive
Last-Modified: Thu, 12 Mar 2020 16:18:22 GMT
Expires: Mon, 23 Jan 2023 20:31:37 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes

jobzcart.com/photo/user3.jpg

135.181.142.201

200 OK

18 kB

URL HTTP/1.1
jobzcart.com/photo/user3.jpg
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=360, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=360], baseline, precision 8, 80x80, components 3\012- data
Size
18 kB (17773 bytes)
Hash
4bd96463a544bf1d79195609fffc40de
e07e3548972b3409ece0445cc4db6149a1567bc3
d540d4b9c7109f5fd50e3ad6e26ae713489fe2afcc704f90cda0a3781db1b982

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /photo/user3.jpg HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 20:31:37 GMT
Content-Type: image/jpeg
Content-Length: 17773
Connection: keep-alive
Last-Modified: Thu, 12 Mar 2020 16:18:52 GMT
Expires: Mon, 23 Jan 2023 20:31:37 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes

jobzcart.com/photo/user8.jpg

135.181.142.201

200 OK

18 kB

URL HTTP/1.1
jobzcart.com/photo/user8.jpg
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=557, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=557], progressive, precision 8, 80x80, components 3\012- data
Size
18 kB (18545 bytes)
Hash
1e41d30c4c417a399025f713a262ba6d
cce23803e0d4d0e3ea66eb3fffd21faefe373b8e
4f017a908b7bda637ba0df8eb44214d782f613d52628306c62cd25fe4c5c5c03

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /photo/user8.jpg HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 20:31:37 GMT
Content-Type: image/jpeg
Content-Length: 18545
Connection: keep-alive
Last-Modified: Thu, 12 Mar 2020 16:21:48 GMT
Expires: Mon, 23 Jan 2023 20:31:37 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes

jobzcart.com/photo/user9.jpg

135.181.142.201

200 OK

20 kB

URL HTTP/1.1
jobzcart.com/photo/user9.jpg
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=128, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=128], progressive, precision 8, 80x80, components 3\012- data
Size
20 kB (20400 bytes)
Hash
6b835f9a32b79f9a497d584fcc3eb29e
bdbace91382dc2ebfd8edc380bfa422963b58b05
c3d2f0c7af1ee921770b0367b9c431da9b9791e97901a212aa192e9850f1cfed

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /photo/user9.jpg HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 20:31:37 GMT
Content-Type: image/jpeg
Content-Length: 20400
Connection: keep-alive
Last-Modified: Thu, 12 Mar 2020 16:21:54 GMT
Expires: Mon, 23 Jan 2023 20:31:37 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:31:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

jobzcart.com/photo/user11.jpg

135.181.142.201

200 OK

19 kB

URL HTTP/1.1
jobzcart.com/photo/user11.jpg
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=128, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=128], progressive, precision 8, 80x80, components 3\012- data
Size
19 kB (19084 bytes)
Hash
8fe6fa908c00836c2551dd1ed47b30a7
4d4e73005485141582d97c17b4b209af3e4684dd
953e2d51d63994f8890aba70f7ffe5856fd5109f1cdea8a03125b0cbe8bab900

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /photo/user11.jpg HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 20:31:37 GMT
Content-Type: image/jpeg
Content-Length: 19084
Connection: keep-alive
Last-Modified: Thu, 12 Mar 2020 16:22:12 GMT
Expires: Mon, 23 Jan 2023 20:31:37 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes

jobzcart.com/photo/user14.jpg

135.181.142.201

200 OK

18 kB

URL HTTP/1.1
jobzcart.com/photo/user14.jpg
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=128, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=128], progressive, precision 8, 80x80, components 3\012- data
Size
18 kB (17789 bytes)
Hash
039d51b822e05594fa15a593a43f2d60
f530cb9c3906118dacdca5db27fa80671cdc7e88
8049206adf90c12a81e49c14d0508366b7d91939d3769d759a9f2d9682dc97ce

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /photo/user14.jpg HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 20:31:37 GMT
Content-Type: image/jpeg
Content-Length: 17789
Connection: keep-alive
Last-Modified: Thu, 12 Mar 2020 16:22:30 GMT
Expires: Mon, 23 Jan 2023 20:31:37 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes

jobzcart.com/photo/user10.jpg

135.181.142.201

200 OK

18 kB

URL HTTP/1.1
jobzcart.com/photo/user10.jpg
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=128, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=128], progressive, precision 8, 80x80, components 3\012- data
Size
18 kB (18169 bytes)
Hash
f3300f5d70426e76351e88c4787de6a4
49b0a2491b82dd75d56a11cc8798b8d8a657a668
5dcd4e1e2181cf7b2ce33373038bdaba69d6ae85eb6b92703f5103f5ab8719ce

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /photo/user10.jpg HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 20:31:37 GMT
Content-Type: image/jpeg
Content-Length: 18169
Connection: keep-alive
Last-Modified: Thu, 12 Mar 2020 16:22:08 GMT
Expires: Mon, 23 Jan 2023 20:31:37 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes

jobzcart.com/photo/user15.jpg

135.181.142.201

200 OK

24 kB

URL HTTP/1.1
jobzcart.com/photo/user15.jpg
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=360, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=360], progressive, precision 8, 80x80, components 3\012- data
Size
24 kB (24453 bytes)
Hash
4f8837d702d1f70770bf3bbff0d410b9
6e9d66f694fa91da770cf81960937e81705069c2
ecf5e550f2691502ec6df6d4b7e7faf2d03a34a67fcd04d9f57172b755d91bec

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /photo/user15.jpg HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 20:31:37 GMT
Content-Type: image/jpeg
Content-Length: 24453
Connection: keep-alive
Last-Modified: Thu, 12 Mar 2020 16:22:34 GMT
Expires: Mon, 23 Jan 2023 20:31:37 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes

jobzcart.com/photo/logo-news.gif

135.181.142.201

200 OK

802 B

URL HTTP/1.1
jobzcart.com/photo/logo-news.gif
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
GIF image data, version 89a, 106 x 20\012- data
Size
802 B (802 bytes)
Hash
7956eaf89ab589b0b376f469927ba44a
6b1d447d8e88d0713916a81bf9a7263ee3d013c4
057fa335f42280674ec7215c9b2968876894c6d36485fc54ae78c39bdd291ce1

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /photo/logo-news.gif HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 20:31:37 GMT
Content-Type: image/gif
Content-Length: 802
Connection: keep-alive
Last-Modified: Thu, 12 Mar 2020 16:26:04 GMT
Expires: Mon, 23 Jan 2023 20:31:37 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes

jobzcart.com/photo/user5.jpg

135.181.142.201

200 OK

19 kB

URL HTTP/1.1
jobzcart.com/photo/user5.jpg
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=128, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=128], baseline, precision 8, 80x80, components 3\012- data
Size
19 kB (19293 bytes)
Hash
eb4da9de267082de54b3404f45bc9cdf
717f94de06101b04a680f1d4063435d123639f24
a9d3f8e9450ba3babbded40722b5a7d14bf500edf206e8a9a6c1130163baa001

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /photo/user5.jpg HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 20:31:37 GMT
Content-Type: image/jpeg
Content-Length: 19293
Connection: keep-alive
Last-Modified: Thu, 12 Mar 2020 16:19:52 GMT
Expires: Mon, 23 Jan 2023 20:31:37 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes

jobzcart.com/photo/user19.jpg

135.181.142.201

200 OK

20 kB

URL HTTP/1.1
jobzcart.com/photo/user19.jpg
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=128, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=128], progressive, precision 8, 80x80, components 3\012- data
Size
20 kB (20141 bytes)
Hash
edca37609552da04fd404170bedc09f7
71e83585c3d1308c899103b5aaa55fc1ac042e0c
ceb74439373f537b391c3650af64ed6115b568f0433644cc3b81714525f01058

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /photo/user19.jpg HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 20:31:37 GMT
Content-Type: image/jpeg
Content-Length: 20141
Connection: keep-alive
Last-Modified: Thu, 12 Mar 2020 16:23:04 GMT
Expires: Mon, 23 Jan 2023 20:31:37 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes

jobzcart.com/photo/user4.jpg

135.181.142.201

200 OK

21 kB

URL HTTP/1.1
jobzcart.com/photo/user4.jpg
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=360, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=360], progressive, precision 8, 80x80, components 3\012- data
Size
21 kB (20865 bytes)
Hash
e293e53b39dcefcc3caff7f1ccd4d5d9
9040f85dad6b73f1164146d1976d459015ec4238
a55ca00c056f51f796ee98f0a0338788a64e0d53b5b5ad269dbbfa2e75d5e4fd

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /photo/user4.jpg HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 20:31:37 GMT
Content-Type: image/jpeg
Content-Length: 20865
Connection: keep-alive
Last-Modified: Thu, 12 Mar 2020 16:19:18 GMT
Expires: Mon, 23 Jan 2023 20:31:37 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes

jobzcart.com/photo/user18.jpg

135.181.142.201

200 OK

19 kB

URL HTTP/1.1
jobzcart.com/photo/user18.jpg
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=360, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=360], progressive, precision 8, 80x80, components 3\012- data
Size
19 kB (18639 bytes)
Hash
e09d125082555b1145fd92c16282a145
38fd37d20a7df03aef0e6f248e28077aab85336e
8c08150e874499dd518a02489fd9a7097e052d46d7e27970e479ad4ac46f9611

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /photo/user18.jpg HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 20:31:37 GMT
Content-Type: image/jpeg
Content-Length: 18639
Connection: keep-alive
Last-Modified: Thu, 12 Mar 2020 16:22:56 GMT
Expires: Mon, 23 Jan 2023 20:31:37 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes

fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2

216.58.207.195

200 OK

24 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Size
24 kB (23580 bytes)
Hash
e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://jobzcart.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 17:10:21 GMT
expires: Wed, 22 Nov 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 184876
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

jobzcart.com/photo/user6.jpg

135.181.142.201

200 OK

20 kB

URL HTTP/1.1
jobzcart.com/photo/user6.jpg
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=360, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=360], baseline, precision 8, 80x80, components 3\012- data
Size
20 kB (20292 bytes)
Hash
23fdb02e31a25af439301e6801fc7a66
164fb295f8be091411c8cd67c32cb00a19ab0272
0adda451459b488f3fc011b7f10d6b91a02e15d486e241727a66368fdd70bf10

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /photo/user6.jpg HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 20:31:37 GMT
Content-Type: image/jpeg
Content-Length: 20292
Connection: keep-alive
Last-Modified: Thu, 12 Mar 2020 16:20:20 GMT
Expires: Mon, 23 Jan 2023 20:31:37 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes

jobzcart.com/photo/user7.jpg

135.181.142.201

200 OK

21 kB

URL HTTP/1.1
jobzcart.com/photo/user7.jpg
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=128, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=128], baseline, precision 8, 80x80, components 3\012- data
Size
21 kB (20796 bytes)
Hash
420f35af8cfb488b42d3eaa88ae481c2
65b150ff76d459e6b164dc81c875804e0f550b6a
67f78e6ee8f4ab79294357cb2969b6a1e29632df5cdbe6f49db442c4baffafed

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /photo/user7.jpg HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 20:31:37 GMT
Content-Type: image/jpeg
Content-Length: 20796
Connection: keep-alive
Last-Modified: Thu, 12 Mar 2020 16:21:40 GMT
Expires: Mon, 23 Jan 2023 20:31:37 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes

jobzcart.com/photo/user16.jpg

135.181.142.201

200 OK

20 kB

URL HTTP/1.1
jobzcart.com/photo/user16.jpg
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=128, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=128], baseline, precision 8, 80x80, components 3\012- data
Size
20 kB (19986 bytes)
Hash
6f534c5fe99b4d2864bcfa5de86f2ae9
a461c44ac9943681a08126299ec52696d7d918bb
754184b15033b29ebf0e33589706bc870b3580d3de81949a1113c788bcaea72a

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /photo/user16.jpg HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 20:31:37 GMT
Content-Type: image/jpeg
Content-Length: 19986
Connection: keep-alive
Last-Modified: Thu, 12 Mar 2020 16:22:40 GMT
Expires: Mon, 23 Jan 2023 20:31:37 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes

jobzcart.com/photo/user17.jpg

135.181.142.201

200 OK

20 kB

URL HTTP/1.1
jobzcart.com/photo/user17.jpg
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=360, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=360], progressive, precision 8, 80x80, components 3\012- data
Size
20 kB (20464 bytes)
Hash
113b42908a0f099be291ffdccd490cf2
625c8908cfc9f4f167a70455c726d4fe3493db05
004cb16a11267f14433f4cd36fe8f255022e28f45b662f63131e68ef53cff87c

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /photo/user17.jpg HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Nov 2022 20:31:37 GMT
Content-Type: image/jpeg
Content-Length: 20464
Connection: keep-alive
Last-Modified: Thu, 12 Mar 2020 16:22:44 GMT
Expires: Mon, 23 Jan 2023 20:31:37 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Accept-Ranges: bytes

cdn.mlcalc.com/mortgage-rates/widget-wide.js

172.66.43.170

301 Moved Permanently

0 B

URL HTTP/1.1
cdn.mlcalc.com/mortgage-rates/widget-wide.js
IP
172.66.43.170:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /mortgage-rates/widget-wide.js HTTP/1.1
Host: cdn.mlcalc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 301 Moved Permanently
Date: Thu, 24 Nov 2022 20:31:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 24 Nov 2022 21:31:37 GMT
Location: https://cdn.mlcalc.com/mortgage-rates/widget-wide.js
Server-Timing: cf-q-config;dur=5.9999983932357e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JcIEFDu7SPPtbCLdmJGeYu%2BiDd0Dd2iMla0PSNntlHwC2UgXbO1GNE0nThBOQvPyYb25Iv4ubeXLaOS1A5u4GMbwLZIBmEOVzI%2BBwV1Wi8EL3tYPRQahmJL4jV%2FdPdkM"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f4e8c398311c02-OSL
alt-svc: h2=":443"; ma=60

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:31:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
4f0e75d7ad59ddd5d4017801a9ad724b
740d89d7612e6afa6a795fbb45834386a9e12cfb
ffde8acd95136c5f50398267e67e367bd4531a3f7c71efb0e784b3df2ebf6d32

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:31:37 GMT
Etag: "637c6418-116"
Server: ECS (amb/6B87)
Content-Length: 279

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 20:08:53 GMT
cache-control: public,max-age=3600
age: 1364
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
4f0e75d7ad59ddd5d4017801a9ad724b
740d89d7612e6afa6a795fbb45834386a9e12cfb
ffde8acd95136c5f50398267e67e367bd4531a3f7c71efb0e784b3df2ebf6d32

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:31:38 GMT
Etag: "637c6418-116"
Last-Modified: Thu, 24 Nov 2022 20:31:37 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
fb6949e7abaa473393f7c604691de14f
599681bba3947709baa603bbae2dd7afd04059a4
36c5165526ea9d34de14d36655ed494d0cffaa11ca3271ee47824ac11246ba13

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2602
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:31:38 GMT
Last-Modified: Thu, 24 Nov 2022 19:48:16 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

widgets.tc2000.com/WidgetServer.ashx?id=40284

209.34.225.222

302 Found

19 kB

URL HTTP/2
widgets.tc2000.com/WidgetServer.ashx?id=40284
IP
209.34.225.222:0
ASN
#13649 ASN-VINS

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (530), with CRLF line terminators
Size
19 kB (18825 bytes)
Hash
59748b7e2c7f9547b05641b68f53ab87
0826543bb055f012a3ccb3a6f7681176b2e495cb
57b21d4aff939f557db9b7a5c2eb3ccb2cccd0e47778494ac94a6fba381c2e38

HTTP Headers

GET /WidgetServer.ashx?id=40284 HTTP/1.1
Host: widgets.tc2000.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jobzcart.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
cache-control: private
content-type: text/plain; charset=utf-8
location: /TickerWidget.aspx?id=40284
server: Microsoft-IIS/10.0
set-cookie: ASP.NET_SessionId=1initwyzxk0linbjhdlu5hpx; path=/; HttpOnly; SameSite=Lax
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
date: Thu, 24 Nov 2022 20:31:37 GMT
X-Firefox-Spdy: h2

widgets.tc2000.com/Content/TickerThemes/TickerBase.css

209.34.225.222

200 OK

981 B

URL HTTP/2
widgets.tc2000.com/Content/TickerThemes/TickerBase.css
IP
209.34.225.222:0
ASN
#13649 ASN-VINS

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
981 B (981 bytes)
Hash
9b15885f191b9dd7c2ac664779abc0b3
b59c6240b59581f42b35b520b7d3251d95ae8bc8
f81eeffdf8bfb16c43d2982ff5daa8c33e5af0c5565fadc4fd348b3c6baea421

HTTP Headers

GET /Content/TickerThemes/TickerBase.css HTTP/1.1
Host: widgets.tc2000.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widgets.tc2000.com/TickerWidget.aspx?id=40284
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 18 Jan 2017 20:11:22 GMT
accept-ranges: bytes
etag: "0fac9c771d21:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Thu, 24 Nov 2022 20:31:37 GMT
content-length: 981
X-Firefox-Spdy: h2

widgets.tc2000.com/Content/TickerThemes/tickerWhite.css

209.34.225.222

200 OK

2.0 kB

URL HTTP/2
widgets.tc2000.com/Content/TickerThemes/tickerWhite.css
IP
209.34.225.222:0
ASN
#13649 ASN-VINS

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
2.0 kB (2015 bytes)
Hash
3b94c7f35d18d6487a5cd5068b355f1f
94c11835d0571dcd08027601778b68583ce354e2
865b71e3df4584c6e2478181c5b6e0f30770c994f7f6659ca1affdd99b08b3d6

HTTP Headers

GET /Content/TickerThemes/tickerWhite.css HTTP/1.1
Host: widgets.tc2000.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widgets.tc2000.com/TickerWidget.aspx?id=40284
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 18 Jan 2017 20:11:22 GMT
accept-ranges: bytes
etag: "0fac9c771d21:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Thu, 24 Nov 2022 20:31:37 GMT
content-length: 2015
X-Firefox-Spdy: h2

push.services.mozilla.com/

54.148.69.31

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.148.69.31:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: QjgBMcgs8b6uYoX83G87lg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: y3GEoSzVIkgj9cuBHNgjivHCJjU=

widgets.tc2000.com/Content/js/jquery-ui-1.8.5.custom.min.js

209.34.225.222

200 OK

51 kB

URL HTTP/2
widgets.tc2000.com/Content/js/jquery-ui-1.8.5.custom.min.js
IP
209.34.225.222:0
ASN
#13649 ASN-VINS

File type
ASCII text, with very long lines (658)
Size
51 kB (51099 bytes)
Hash
33b6e4cebf481f78e86f4571ad56980f
14e061a5d6624587ee004dde0c3f929b13ce3dca
c77abf863a579ba1d65b888ef39cb114905ade8c5f396997657a3fb83c4e4aeb

HTTP Headers

GET /Content/js/jquery-ui-1.8.5.custom.min.js HTTP/1.1
Host: widgets.tc2000.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widgets.tc2000.com/TickerWidget.aspx?id=40284
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Wed, 18 Jan 2017 20:11:22 GMT
accept-ranges: bytes
etag: "0918f9c771d21:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Thu, 24 Nov 2022 20:31:37 GMT
content-length: 51099
X-Firefox-Spdy: h2

cdn.mlcalc.com/mortgage-rates/widget-wide.js

172.66.43.170

301 Moved Permanently

3.2 kB

URL HTTP/2
cdn.mlcalc.com/mortgage-rates/widget-wide.js
IP
172.66.43.170:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
3.2 kB (3219 bytes)
Hash
733f7c04a8d496ffd4817b3fe759c058
a098bc4c14820ab1544beba762a2d7e4226efd18
a411fb4de4cc994553821d10333d93a5dda6413070b43ee2efbbfeed55850f5e

HTTP Headers

GET /mortgage-rates/widget-wide.js HTTP/1.1
Host: cdn.mlcalc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jobzcart.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
date: Thu, 24 Nov 2022 20:31:37 GMT
content-type: text/html
location: https://www.mlcalc.com/mortgage-rates/widget-wide.js
cache-control: max-age=86400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qagt%2BtyaWgQyX3%2BvAl9emRMHy3a55RugzsrX6ekpZEmmbKiv95mrcZpzojNCCOhM%2BSDdQuImhJZEUJ%2Bvhq3Ov%2FqC%2FxK72r675gCvv8h6GgmkrnH666siaNamccIznzlw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; preload
server: cloudflare
cf-ray: 76f4e8c4daa2b523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

widgets.tc2000.com/Content/css/smoothness/jquery-ui-1.8.5.custom.css

209.34.225.222

200 OK

6.0 kB

URL HTTP/2
widgets.tc2000.com/Content/css/smoothness/jquery-ui-1.8.5.custom.css
IP
209.34.225.222:0
ASN
#13649 ASN-VINS

File type
ASCII text, with very long lines (1399)
Size
6.0 kB (6000 bytes)
Hash
51d1006a41045c7695ca56f614e2886f
c03b39fe38ac7b86fda3613881f817b02e5e5f92
166cb3046686fb6e97cc8f62e9c920206dc1d9b2517d6833d3002fb89fc24229

HTTP Headers

GET /Content/css/smoothness/jquery-ui-1.8.5.custom.css HTTP/1.1
Host: widgets.tc2000.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widgets.tc2000.com/TickerWidget.aspx?id=40284
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-encoding: gzip
last-modified: Wed, 18 Jan 2017 20:11:21 GMT
accept-ranges: bytes
etag: "80faf68c771d21:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Thu, 24 Nov 2022 20:31:37 GMT
content-length: 6000
X-Firefox-Spdy: h2

widgets.tc2000.com/Scripts/grid/iscroll.js

209.34.225.222

200 OK

8.3 kB

URL HTTP/2
widgets.tc2000.com/Scripts/grid/iscroll.js
IP
209.34.225.222:0
ASN
#13649 ASN-VINS

File type
ASCII text, with very long lines (308)
Size
8.3 kB (8288 bytes)
Hash
3652920e86d73f000e935726a6a96ce9
51b5f72ef6a628d2b03761d03f6d1e0ee7d7fc86
d4da20f1772b9d07dac24947eb9f37584856b73ddc24116d4da74bb5bdf7258a

HTTP Headers

GET /Scripts/grid/iscroll.js HTTP/1.1
Host: widgets.tc2000.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widgets.tc2000.com/TickerWidget.aspx?id=40284
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Wed, 18 Jan 2017 20:11:23 GMT
accept-ranges: bytes
etag: "802728ac771d21:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Thu, 24 Nov 2022 20:31:37 GMT
content-length: 8288
X-Firefox-Spdy: h2

widgets.tc2000.com/Scripts/grid/jquery.iscrollTable.js

209.34.225.222

200 OK

5.6 kB

URL HTTP/2
widgets.tc2000.com/Scripts/grid/jquery.iscrollTable.js
IP
209.34.225.222:0
ASN
#13649 ASN-VINS

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
5.6 kB (5631 bytes)
Hash
0bd16beda24e4a89173544d27f5cbae2
e2cc2115dd2cbf515824e4875e55af8659de49df
a82e3f8808c27ee81820c9f97a58159412e12423501a87164351de043378b085

HTTP Headers

GET /Scripts/grid/jquery.iscrollTable.js HTTP/1.1
Host: widgets.tc2000.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widgets.tc2000.com/TickerWidget.aspx?id=40284
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Wed, 18 Jan 2017 20:11:23 GMT
accept-ranges: bytes
etag: "802728ac771d21:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Thu, 24 Nov 2022 20:31:37 GMT
content-length: 5631
X-Firefox-Spdy: h2

widgets.tc2000.com/Content/awesomeButton.css

209.34.225.222

200 OK

2.6 kB

URL HTTP/2
widgets.tc2000.com/Content/awesomeButton.css
IP
209.34.225.222:0
ASN
#13649 ASN-VINS

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
2.6 kB (2631 bytes)
Hash
9ba624e0d750d8d8815fccbcc92db4a7
cde498f370503fad16c09d50593a5d30938c1b4c
1061b3df98352449c59ee3124a4391e449eb4a1dc1bcbfdfdb2cf44faca6f6b4

HTTP Headers

GET /Content/awesomeButton.css HTTP/1.1
Host: widgets.tc2000.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widgets.tc2000.com/TickerWidget.aspx?id=40284
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 18 Jan 2017 20:11:21 GMT
accept-ranges: bytes
etag: "5aed6a9c771d21:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Thu, 24 Nov 2022 20:31:37 GMT
content-length: 2631
X-Firefox-Spdy: h2

widgets.tc2000.com/Scripts/autocomplete/styles.css

209.34.225.222

200 OK

618 B

URL HTTP/2
widgets.tc2000.com/Scripts/autocomplete/styles.css
IP
209.34.225.222:0
ASN
#13649 ASN-VINS

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
618 B (618 bytes)
Hash
0ff3f88398a3b4090af0ce374d8b0120
c22df8dc15720de8ca279e07122561b95e2eae5a
63feaae03e05e43c57d7521e20c314ad6139ad3715d45eab523b54605ff355cc

HTTP Headers

GET /Scripts/autocomplete/styles.css HTTP/1.1
Host: widgets.tc2000.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widgets.tc2000.com/TickerWidget.aspx?id=40284
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 18 Jan 2017 20:11:23 GMT
accept-ranges: bytes
etag: "ff9f31ac771d21:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Thu, 24 Nov 2022 20:31:37 GMT
content-length: 618
X-Firefox-Spdy: h2

widgets.tc2000.com/Scripts/autocomplete/jquery.autocomplete.js

209.34.225.222

200 OK

3.5 kB

URL HTTP/2
widgets.tc2000.com/Scripts/autocomplete/jquery.autocomplete.js
IP
209.34.225.222:0
ASN
#13649 ASN-VINS

File type
ASCII text, with CRLF line terminators
Size
3.5 kB (3512 bytes)
Hash
f29618a809db225399e83373a50b9e04
390b216be81ede544f9d7cc79bffe8d4bbdcb999
670aebe0deeb773e0e886f17dcb7f0a30be8a07e15c1ad66e614c841dcb5dba6

HTTP Headers

GET /Scripts/autocomplete/jquery.autocomplete.js HTTP/1.1
Host: widgets.tc2000.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widgets.tc2000.com/TickerWidget.aspx?id=40284
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Wed, 18 Jan 2017 20:11:22 GMT
accept-ranges: bytes
etag: "0918f9c771d21:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Thu, 24 Nov 2022 20:31:37 GMT
content-length: 3512
X-Firefox-Spdy: h2

widgets.tc2000.com/Scripts/jquery.form.keyEnter.js

209.34.225.222

200 OK

615 B

URL HTTP/2
widgets.tc2000.com/Scripts/jquery.form.keyEnter.js
IP
209.34.225.222:0
ASN
#13649 ASN-VINS

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
615 B (615 bytes)
Hash
09c49e4cac7026ca26826f3c0ec4a43e
7fa2f835cbc2d27f00e86af3df317a81ab527f0f
749f3c1025f96241cb0607a1040bb656f9a1b9f9de6692dc48e4d358192e5be1

HTTP Headers

GET /Scripts/jquery.form.keyEnter.js HTTP/1.1
Host: widgets.tc2000.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widgets.tc2000.com/TickerWidget.aspx?id=40284
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 18 Jan 2017 20:11:22 GMT
accept-ranges: bytes
etag: "d961f89c771d21:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Thu, 24 Nov 2022 20:31:37 GMT
content-length: 615
X-Firefox-Spdy: h2

widgets.tc2000.com/Scripts/jquery.horizontalScroll.js

209.34.225.222

200 OK

1.5 kB

URL HTTP/2
widgets.tc2000.com/Scripts/jquery.horizontalScroll.js
IP
209.34.225.222:0
ASN
#13649 ASN-VINS

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
1.5 kB (1483 bytes)
Hash
cee9d812f5dfb1c4d78e7c4024331a36
a01ea92b476a427e60e519bfe606342f956f60bc
4c9c5e9cfb88135927e2b5589d8a0f35b22421a1832f209d11db12e640982d81

HTTP Headers

GET /Scripts/jquery.horizontalScroll.js HTTP/1.1
Host: widgets.tc2000.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widgets.tc2000.com/TickerWidget.aspx?id=40284
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Wed, 18 Jan 2017 20:11:22 GMT
accept-ranges: bytes
etag: "0918f9c771d21:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Thu, 24 Nov 2022 20:31:37 GMT
content-length: 1483
X-Firefox-Spdy: h2

jobzcart.com/favicon.ico

135.181.142.201

404 Not Found

238 B

URL HTTP/1.1
jobzcart.com/favicon.ico
IP
135.181.142.201:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
238 B (238 bytes)
Hash
520f4af4fa2a221f0fcaf2bd8dd91190
ff7f6ecdcec4d56428d84c9380c81ede0f33fa4c
e4af90c52865b7203efde020d8d7ca02b5b99f50b435770b37a34766772744a7

Detections

Analyzer	Verdict	Alert
mnemonic_dns	Sinkholed
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: jobzcart.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jobzcart.com/

HTTP/1.1 404 Not Found
Server: nginx
Date: Thu, 24 Nov 2022 20:31:38 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Encoding: gzip

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
dd0dd96ca622aa07354fabdd0da767bf
a29eaa02a81dabed2c12be20a89d65a5a0417524
6a670e9031ec8c94bdc91c47a2d6a4ca2bd95fe032fec28888a8e6d7dc163cb4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:31:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ssl.google-analytics.com/ga.js

142.250.74.40

200 OK

17 kB

URL HTTP/2
ssl.google-analytics.com/ga.js
IP
142.250.74.40:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1305)
Size
17 kB (17168 bytes)
Hash
01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d

HTTP Headers

GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widgets.tc2000.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Thu, 24 Nov 2022 18:32:37 GMT
expires: Thu, 24 Nov 2022 20:32:37 GMT
cache-control: public, max-age=7200
age: 7141
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
dd0dd96ca622aa07354fabdd0da767bf
a29eaa02a81dabed2c12be20a89d65a5a0417524
6a670e9031ec8c94bdc91c47a2d6a4ca2bd95fe032fec28888a8e6d7dc163cb4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 20:31:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

widgets.tc2000.com/Scripts/autocomplete/shadow.png

209.34.225.222

200 OK

3.4 kB

URL HTTP/2
widgets.tc2000.com/Scripts/autocomplete/shadow.png
IP
209.34.225.222:0
ASN
#13649 ASN-VINS

File type
PNG image data, 828 x 837, 8-bit gray+alpha, non-interlaced\012- data
Size
3.4 kB (3403 bytes)
Hash
b5b27e0dd88d44d4a5d8e63bb61a1239
818964e7b83dd41f22093aa73675ad37d182edd7
c5cef9e0049b04ddcfdbb0a0cc60dfc627218da8772a788ad8aa61e4ccb0b732

HTTP Headers

GET /Scripts/autocomplete/shadow.png HTTP/1.1
Host: widgets.tc2000.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widgets.tc2000.com/Scripts/autocomplete/styles.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/png
last-modified: Wed, 18 Jan 2017 20:11:23 GMT
accept-ranges: bytes
etag: "2f782aac771d21:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Thu, 24 Nov 2022 20:31:38 GMT
content-length: 3403
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7725
Expires: Thu, 24 Nov 2022 22:40:24 GMT
Date: Thu, 24 Nov 2022 20:31:39 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7725
Expires: Thu, 24 Nov 2022 22:40:24 GMT
Date: Thu, 24 Nov 2022 20:31:39 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7725
Expires: Thu, 24 Nov 2022 22:40:24 GMT
Date: Thu, 24 Nov 2022 20:31:39 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7725
Expires: Thu, 24 Nov 2022 22:40:24 GMT
Date: Thu, 24 Nov 2022 20:31:39 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (13882 bytes)
Hash
64d79191f005c9876b952c5f948aa0f7
1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a
00fb36c3d322e8302c5ce202d6d4119d637510cd6f3b63e1347781ec3bb9d7fc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81517ad5-7c1b-49aa-9ba9-dbfa36fbb071.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13882
x-amzn-requestid: 9022b0b3-31d5-4149-a969-02514f11b95a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvzNHjMoAMFWMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9347-0e8354a02bef623644714e31;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ve4q5FDkwMGhPK6ZVVVCZtoBTaGaz43r_PwINzwS5Nx5tcZeQkVIfw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:49:47 GMT
age: 81712
etag: "1102dbdcbcabf5c25d17840f8f00d5b55b9b8f0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (7993 bytes)
Hash
92c78302bcce1568eb6a5563100b932c
43d1dec7fc06879988c9c3cadd800cc8145df988
0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7YSXUV-LZpsI7vciFhuqt1EVr6YRkhxcOgMg8z8bxLcOE01_baf6Gg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:06 GMT
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
content-type: image/jpeg
age: 81873
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.3 kB (4309 bytes)
Hash
841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: blE0hGNioAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:14:07 GMT
age: 47852
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7462 bytes)
Hash
b4157f2c5c3c77ce699324ecb08f47c7
a7d9135f9d01ba13c3cdaf8b038c70212f159297
2305f7afee95bb34d9e8dbff571c6b146ba7b694be96e9e925c32d1f41785916

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7462
x-amzn-requestid: 1f6fb14d-83e0-43d3-9dab-5bc83af1a7c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwV3HV9oAMFs9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9425-634d43db6308e0be596aa5a0;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GW5UTfY7-TwPWTno9z1e21a2cA9fmU7GfHFYWdL-zQvMLxeq-S9Trg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:03:54 GMT
age: 80865
etag: "a7d9135f9d01ba13c3cdaf8b038c70212f159297"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.8 kB (6789 bytes)
Hash
d9d93b2a6875d446c3467eb49767eef5
303c571b13b05fcf27ee1159d8fdf6369aaef0a2
2a2345a925e0187979930a7f2de8548957ad9f2baae77364dcb157286e2b3fcf

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50d7d834-f80d-4fd9-a728-24643ed00c45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6789
x-amzn-requestid: 4d94ce1b-d18f-43b8-bb4d-e7093f9bea42
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvd2G9UIAMFrEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5f2-64a570135be59b83031811da;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:04:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JygkDI7XSvlgurUTot874ZAXlOIqnv4cntMQ55IvHVqw93JBcksZjQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:15:22 GMT
age: 47777
etag: "303c571b13b05fcf27ee1159d8fdf6369aaef0a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.1 kB (5070 bytes)
Hash
0856fdb55f19f03a1bec38b3d6e0ac77
89accd230fba95fe0049678070817b36ead015fa
17c6e6f9bb8f4261fff2dc2a43ed994986418761624b8afead768e89927594f2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5070
x-amzn-requestid: d86d95ad-9b78-4047-82e7-04e83a97e330
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwViF1GIAMF_PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9423-10809ba1634776171cf79cb8;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:03 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8rbsN9OVJmneT9ov-Q7V4RB8DP5UWhhn-7cnukHiBpl06zmMM0zJTg==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:20 GMT
age: 81259
etag: "89accd230fba95fe0049678070817b36ead015fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Lato

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Lato
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Lato HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jobzcart.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 24 Nov 2022 20:31:37 GMT
date: Thu, 24 Nov 2022 20:31:37 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Hind

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Hind
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Hind HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jobzcart.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 24 Nov 2022 20:31:37 GMT
date: Thu, 24 Nov 2022 20:31:37 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto+Slab

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto+Slab
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto+Slab HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jobzcart.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 24 Nov 2022 20:31:37 GMT
date: Thu, 24 Nov 2022 20:31:37 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

widgets.tc2000.com/Widgetserver.ashx?svc=LISTCONTENTS&setid=4805940&sort=price&sortDir=desc&apptoken=cd0c052d-06cb-453c-b632-0cc5245b8c05&noCache=Thu%20Nov%2024%202022%2020:31:38%20GMT+0000%20(Coordinated%20Universal%20Time)&host=http://jobzcart.com/

209.34.225.222

200 OK

0 B

URL HTTP/2
widgets.tc2000.com/Widgetserver.ashx?svc=LISTCONTENTS&setid=4805940&sort=price&sortDir=desc&apptoken=cd0c052d-06cb-453c-b632-0cc5245b8c05&noCache=Thu%20Nov%2024%202022%2020:31:38%20GMT+0000%20(Coordinated%20Universal%20Time)&host=http://jobzcart.com/
IP
209.34.225.222:0
ASN
#13649 ASN-VINS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /Widgetserver.ashx?svc=LISTCONTENTS&setid=4805940&sort=price&sortDir=desc&apptoken=cd0c052d-06cb-453c-b632-0cc5245b8c05&noCache=Thu%20Nov%2024%202022%2020:31:38%20GMT+0000%20(Coordinated%20Universal%20Time)&host=http://jobzcart.com/ HTTP/1.1
Host: widgets.tc2000.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
Content-Length: 47
Origin: https://widgets.tc2000.com
Connection: keep-alive
Referer: https://widgets.tc2000.com/TickerWidget.aspx?id=40284
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: private
content-type: text/plain; charset=utf-8
server: Microsoft-IIS/10.0
set-cookie: ASP.NET_SessionId=ccgg0tvigxcusunbxy2zccwf; path=/; HttpOnly; SameSite=Lax
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
date: Thu, 24 Nov 2022 20:31:38 GMT
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (24)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP