Report - ninzatool.pw/dragonball

Report Overview

Submitted URL
ninzatool.pw/dragonball
IP
104.21.91.84
ASN
#13335 CLOUDFLARENET
Submitted
2023-02-08 21:15:46
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
3
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	837 B	3.4 kB	142.250.74.106
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	1.4 kB	2.8 kB	142.250.74.163
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	64 kB	34.120.237.76
cldoffers.net	unknown	2020-04-22T10:42:18Z	2023-03-13T08:00:02Z	334 B	718 B	188.114.96.1
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
browser.sentry-cdn.com	4393	2018-07-13T13:42:06Z	2023-03-13T08:50:22Z	368 B	22 kB	151.101.2.217
d13pxqgp3ixdbh.cloudfront.net	unknown	2020-11-26T11:37:52Z	2023-03-13T08:07:56Z	5.0 kB	1.2 MB	54.230.245.98
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.4 kB	6.2 kB	23.36.77.32
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
ajax.googleapis.com	12905	2013-08-16T11:51:31Z	2023-03-13T08:37:09Z	348 B	85 kB	216.58.207.234
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	1.3 kB	52 kB	216.58.207.227
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	682 B	1.2 kB	93.184.220.29
d2punpeg7vtjci.cloudfront.net	unknown	2023-01-12T00:07:29Z	2023-03-13T08:08:06Z	2.0 kB	17 kB	54.230.245.201
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	35.84.241.69
d2bb5k76l7oivo.cloudfront.net	unknown	2023-01-12T23:59:08Z	2023-03-13T08:07:55Z	340 B	472 B	54.230.245.120
ninzatool.pw	unknown	2023-01-08T17:30:07Z	2023-01-22T06:41:38Z	354 B	20 kB	172.67.213.72
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-13T07:36:03Z	1.9 kB	22 kB	142.250.74.110

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-02-08 21:16:30	medium	Client IP	Internal IP	ET DNS Query to a *.pw domain - Likely Hostile
2023-02-08 21:16:30	medium	Client IP	Internal IP	ET DNS Query to a *.pw domain - Likely Hostile
2023-02-08 21:16:30	low	Client IP	172.67.213.72	ET INFO HTTP Request to a *.pw domain

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-02-08	medium	cldoffers.net/public/external/t.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (16)

	URL	Size	First Seen	Last Seen
	ninzatool.pw/dragonball	50 B	2023-03-13	2023-03-13
Pretty URL ninzatool.pw/dragonball IP 172.67.213.72 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 19:54:38 Last Seen2023-03-13 19:54:38 Times Seen1 Hash 1c53cec3e5435a7563faf964810312ec 0ea7bd1dc4185676162ccbeed7b3ec48763d6790 18dc3b9d333c4fa6437ae96b1876f012fe9b85cd7beee72ca6973cf1c018131d Loading...

	cldoffers.net/public/external/t.js	1.7 kB	2023-03-07	2024-02-13
Pretty URL cldoffers.net/public/external/t.js IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:58 Last Seen2024-02-13 09:58:40 Times Seen72 Hash 3990a35fbaa84d5ffbb9198a0e877159 6d5ea73d108853455c0c75425756adabe335e747 fff2c7e238400b24472e5d6c529d7f625ec50ec4383ac23d33ca05d9c1f07a7d Loading...

	ninzatool.pw/dragonball	283 B	2023-03-07	2024-04-19
Pretty URL ninzatool.pw/dragonball IP 172.67.213.72 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-19 15:45:34 Times Seen334 Hash b1df226ab42c09ce6a792b290b3bebc6 e0e82995a0e621550d4f06b3c5bbf6048fa355e6 a659c5ed40f29750a59c8e9ef6197ee2a2a684c592cebe5731c68fc67a451a43 Loading...

	browser.sentry-cdn.com/6.4.1/bundle.min.js	68 kB	2023-03-07	2024-04-19
Pretty URL browser.sentry-cdn.com/6.4.1/bundle.min.js IP 151.101.2.217 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-19 15:45:34 Times Seen807 Hash c2bcb2b153e152ba850057a843064c5f cdb5e35cf2c53fec13a111579eea73b08bb86bb3 22ece4ddd583540c08ccadf82d18658e2ed0eba5dd7fdca806aa259667edba56 Loading...

	ninzatool.pw/dragonball	148 B	2023-03-07	2024-04-19
Pretty URL ninzatool.pw/dragonball IP 172.67.213.72 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-19 15:45:33 Times Seen382 Hash 4231df4e31831961a937cba958c59559 f3d72b5781df7ddeebf11e5252d26f79e3221a84 52734e73487d2d3aa7d574b7324b733f8793bf79b356e386e245869952eacf1b Loading...

	d2bb5k76l7oivo.cloudfront.net/e397411.js	24 kB	2023-03-12	2023-05-24
Pretty URL d2bb5k76l7oivo.cloudfront.net/e397411.js IP 54.230.245.120 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:00:18 Last Seen2023-05-24 13:40:58 Times Seen180 Hash 8ab72c4473621e1b30a24ec89af90bcf 89829d7e56b8f854e950f589f4671380cf00e06c d212a5a732e0632cb7a63412830a021c8c0a4aaa835a604ef008c1b0e4b00300 Loading...

	ninzatool.pw/dragonball	12 kB	2023-03-07	2024-02-13
Pretty URL ninzatool.pw/dragonball IP 172.67.213.72 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:24:53 Last Seen2024-02-13 09:58:40 Times Seen5 Hash 760176f1b016d2579306ceba0a14ada2 028ebc791dbd2a32d2a2a8e5122e62e4aec1d0a3 69458ad9e9494d65a4e8b12e44afac2378d6b1653b3cb0024ffd2c2c2afdfdcf Loading...

	d2punpeg7vtjci.cloudfront.net/public/external/check.php?it=2565622&time=1675890994000	78 B	2023-03-07	2023-11-10
Pretty URL d2punpeg7vtjci.cloudfront.net/public/external/check.php?it=2565622&time=1675890994000 IP 54.230.245.201 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:27 Last Seen2023-11-10 15:11:30 Times Seen878 Hash 37ebc78db9bc22d4c972c5961163070c 865e3671f7e86b52d2f7b006b95ec7799a187572 9ef4a63fc5e0a14a7301d693d65d6acfc44cdf14853c4a20890198f2d5e52e3b Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	ninzatool.pw/dragonball	516 B	2023-03-07	2024-04-05
Pretty URL ninzatool.pw/dragonball IP 172.67.213.72 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:24:53 Last Seen2024-04-05 06:37:17 Times Seen7 Hash b1540df561b54b58570bad41bd40ca4f 72008adfef64afe9380b7629c920cfb09303c3c0 a561b8fe416b949892d08d001ec50b187a275457aa7ea6e3e2450a6d0a06b02c Loading...

	d13pxqgp3ixdbh.cloudfront.net/assets/content_lockers/noty-2.3.8/js/noty/packaged/jquery.noty.packaged.js	47 kB	2023-03-07	2024-03-31
Pretty URL d13pxqgp3ixdbh.cloudfront.net/assets/content_lockers/noty-2.3.8/js/noty/packaged/jquery.noty.packaged.js IP 54.230.245.98 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:58 Last Seen2024-03-31 08:00:17 Times Seen35 Hash 18397af3de42a96504923283d0d3d3a1 5197b9fd42894ce61f5e4232cefeacfd03677960 2727db8841f5a577e0d4bed1ab8f6b6bffa353dbffc087123c80ed1017a0b9bc Loading...

	unknown	0 B	2023-03-07	2024-04-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-20 06:08:06 Times Seen36969759 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	d13pxqgp3ixdbh.cloudfront.net/assets/landing_pages/jqueryui/jquery-ui.min.js	253 kB	2023-03-07	2024-03-31
Pretty URL d13pxqgp3ixdbh.cloudfront.net/assets/landing_pages/jqueryui/jquery-ui.min.js IP 54.230.245.98 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:58 Last Seen2024-03-31 08:00:17 Times Seen33 Hash 6cf0bfd19dae4c8eff9624f7cb36ac49 917d64b1ab3445c92d79bd0db1364f4af85dfec3 b827f5917d353d0862dbd30720e73926f4488b88f19fede11ca9d206b49f4831 Loading...

	ninzatool.pw/dragonball	25 kB	2023-03-07	2024-03-31
Pretty URL ninzatool.pw/dragonball IP 172.67.213.72 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:58 Last Seen2024-03-31 08:00:17 Times Seen13 Hash 6480b855f44b802c6373f6ce2545152e 9613a7bdd64a342402d13624ed5c50b57eda043c e85ce129c08735857ff4c9fca0965d3e757d3cc5b7b0af3bb04b021a35c1b88d Loading...

	ninzatool.pw/dragonball	158 B	2023-03-07	2024-02-13
Pretty URL ninzatool.pw/dragonball IP 172.67.213.72 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:58 Last Seen2024-02-13 09:58:40 Times Seen26 Hash 7683647226ff004fcd5f90b7b7fa8925 1e7cc9eb8be6c294d72c56449e51391bd4b60896 cc74d19bdbd9a8d3a26b549f1d762c1a93754f93a48a95af8ab5ca1672fc2ae6 Loading...

	d2punpeg7vtjci.cloudfront.net/public/external/v2/html.2565622.4a256.0.js	7.1 kB	2023-03-13	2023-03-13
Pretty URL d2punpeg7vtjci.cloudfront.net/public/external/v2/html.2565622.4a256.0.js IP 54.230.245.201 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 19:54:39 Last Seen2023-03-13 19:54:39 Times Seen1 Hash 2398c8ff9bab05d67af2a82ea41ae7ab c96336c7459b32912cb8b50c641f928cfec757f8 f0bd42e4f1b4797dd7486a92f9e41a69369a7a7213ce0caf7d42ad5ad84f1692 Loading...

HTTP Transactions (55)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3677
Expires: Wed, 08 Feb 2023 22:16:51 GMT
Date: Wed, 08 Feb 2023 21:15:34 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dca68db7aea32f6683ce8d542c078f04
19c495238df74fca680e21f18627ff94de5dd2e5
35cab3987fc0e4a41b305cb208c1e33fa38ce8bdfd9f386c3dc0411dd4d5ac61

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4319
Expires: Wed, 08 Feb 2023 22:27:33 GMT
Date: Wed, 08 Feb 2023 21:15:34 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16834
Expires: Thu, 09 Feb 2023 01:56:08 GMT
Date: Wed, 08 Feb 2023 21:15:34 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 08 Feb 2023 20:36:43 GMT
content-type: application/json
age: 2331
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: P3+K+ZgEt1Pm6JRXBtfKpz0jcLsMXzKulSt8MEjV/rvWxNxUn+WvyVkzg/Dgo8yXRtciOmajXxE=
x-amz-request-id: KH48TCCMQ9XWMVAY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 08 Feb 2023 20:36:05 GMT
age: 2369
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 21:15:34 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open+Sans:300

142.250.74.106

200 OK

602 B

URL HTTP/1.1
fonts.googleapis.com/css?family=Open+Sans:300
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
602 B (602 bytes)
Hash
f41ac43f60ff294d1633017e08bf62ae
bed42e2ef799df9db574334db4a84e0417ab9b69
1725c1a6790e2ef8c3165278c9e959a2520ba36d716bfbe338c56d01230e24a3

HTTP Headers

GET /css?family=Open+Sans:300 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Wed, 08 Feb 2023 21:15:34 GMT
Date: Wed, 08 Feb 2023 21:15:34 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

fonts.googleapis.com/css?family=Open+Sans:700

142.250.74.106

200 OK

601 B

URL HTTP/1.1
fonts.googleapis.com/css?family=Open+Sans:700
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
601 B (601 bytes)
Hash
91ecabeec20405285ca2808f96597b42
0b85b6f36cb8046df3f251d42f0024b0a3f86049
da6a000d269241e2dbabfa62d8cd66cfb42a1ac6bc26e96f139463d5796e4f46

HTTP Headers

GET /css?family=Open+Sans:700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Wed, 08 Feb 2023 21:15:34 GMT
Date: Wed, 08 Feb 2023 21:15:34 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

fonts.googleapis.com/css?family=Open+Sans:400

142.250.74.106

200 OK

601 B

URL HTTP/1.1
fonts.googleapis.com/css?family=Open+Sans:400
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
601 B (601 bytes)
Hash
75d181fc850170da6e8f60df6cfc3f07
8c36b95d4b2746668a67479d14c983993d415038
9f8f28568038df45d52650d52e7316819f7f787c480f016af0333127eb11b67e

HTTP Headers

GET /css?family=Open+Sans:400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Wed, 08 Feb 2023 21:15:34 GMT
Date: Wed, 08 Feb 2023 21:15:34 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

ninzatool.pw/dragonball

172.67.213.72

200 OK

20 kB

URL HTTP/1.1
ninzatool.pw/dragonball
IP
172.67.213.72:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (14908), with CRLF line terminators
Size
20 kB (19667 bytes)
Hash
f792b90a1d655684b819b6eb1caea748
706806c8bffbad77d2a545d27f254e938a59a59c
6348d92dd4aff2ab8009cd75ab8f1a73e413ca978df876d14c08241e2f95be37

Detections

NIDS	Severity	Alert
suricata	low	ET INFO HTTP Request to a *.pw domain

HTTP Headers

GET /dragonball HTTP/1.1
Host: ninzatool.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 21:15:34 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.2.34
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BBbuGGrJgMLuEjvqYTHGa4fte%2FJBTW%2FCLyictoEFLDI04wQ%2FlMXqkzSTwiTs0is%2Flr5jCSmjPGXlEmPcvSlC7CkpMKLtnBTDNeweVa86UNAiz2ymYQwPp405Q0tYJ5Q%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 796761a35cf0b527-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

browser.sentry-cdn.com/6.4.1/bundle.min.js

151.101.2.217

200 OK

21 kB

URL HTTP/2
browser.sentry-cdn.com/6.4.1/bundle.min.js
IP
151.101.2.217:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65448)
Size
21 kB (20972 bytes)
Hash
42639cce5db857005b8285dedd67553d
a24a4a308123397a9a786645f5843e70653d8552
2b5b83c27b4f52cb3fe8cebc8412b3ceb7c62a2dca290eef38117c33c85b3c66

HTTP Headers

GET /6.4.1/bundle.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://ninzatool.pw
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 26 Jan 2024 06:53:45 GMT
last-modified: Wed, 19 May 2021 16:36:38 GMT
etag: "42639cce5db857005b8285dedd67553d"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Wed, 08 Feb 2023 21:15:34 GMT
age: 1174910
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 20972
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0333fa3e34f17f01e9829bd8ee662c23
be4c7a8599038facc49c73d6d14451023bc919e7
8b4ad992549334395b268f43cf73150ed0dfe58801cf9595c3e245ea92dea7d9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 21:15:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

d13pxqgp3ixdbh.cloudfront.net/assets/landing_pages/fa/css/font-awesome.min.css

54.230.245.98

200 OK

29 kB

URL HTTP/2
d13pxqgp3ixdbh.cloudfront.net/assets/landing_pages/fa/css/font-awesome.min.css
IP
54.230.245.98:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (28900)
Size
29 kB (29063 bytes)
Hash
4083f5d376eb849a458cc790b53ba080
fb5b49426dee7f1508500e698d1b3c6b04c8fcce
008a1d103902f15fdb1c191fcb1ce8954330e7b8de43d09abb08555ba609f420

HTTP Headers

GET /assets/landing_pages/fa/css/font-awesome.min.css HTTP/1.1
Host: d13pxqgp3ixdbh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css
content-length: 29063
last-modified: Mon, 30 Jan 2017 06:33:55 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 19:46:41 GMT
etag: "4083f5d376eb849a458cc790b53ba080"
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 96wgDbmAMOOwwVUpPxBl2cf-pQLvksltruGtgYr0yYD74ekGisChCw==
age: 5341
X-Firefox-Spdy: h2

d13pxqgp3ixdbh.cloudfront.net/assets/landing_pages/jqueryui/jquery-ui.min.css

54.230.245.98

200 OK

32 kB

URL HTTP/2
d13pxqgp3ixdbh.cloudfront.net/assets/landing_pages/jqueryui/jquery-ui.min.css
IP
54.230.245.98:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (29685)
Size
32 kB (31604 bytes)
Hash
19ca3a91bcbc81deb63641d06e500736
f9bf379c2d4f2393cfd53f1d47f9d701fc1360f4
47cbd399f2a844e3a0e1bf92cf13a95144b9675adf0373832a66d90f0365846d

HTTP Headers

GET /assets/landing_pages/jqueryui/jquery-ui.min.css HTTP/1.1
Host: d13pxqgp3ixdbh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css
content-length: 31604
date: Wed, 08 Feb 2023 07:23:04 GMT
last-modified: Mon, 30 Jan 2017 06:33:56 GMT
etag: "19ca3a91bcbc81deb63641d06e500736"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BCQgJzfa-uFOU1kuiPsh1fu8uoJkD3tpR5MSMnLaW4pFuDyruSl-rA==
age: 49950
X-Firefox-Spdy: h2

d13pxqgp3ixdbh.cloudfront.net/assets/content_lockers/noty-2.3.8/js/noty/packaged/jquery.noty.packaged.js

54.230.245.98

200 OK

47 kB

URL HTTP/2
d13pxqgp3ixdbh.cloudfront.net/assets/content_lockers/noty-2.3.8/js/noty/packaged/jquery.noty.packaged.js
IP
54.230.245.98:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (394)
Size
47 kB (46983 bytes)
Hash
18397af3de42a96504923283d0d3d3a1
5197b9fd42894ce61f5e4232cefeacfd03677960
2727db8841f5a577e0d4bed1ab8f6b6bffa353dbffc087123c80ed1017a0b9bc

HTTP Headers

GET /assets/content_lockers/noty-2.3.8/js/noty/packaged/jquery.noty.packaged.js HTTP/1.1
Host: d13pxqgp3ixdbh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/x-javascript
content-length: 46983
date: Wed, 08 Feb 2023 06:07:28 GMT
last-modified: Mon, 30 Jan 2017 06:33:55 GMT
etag: "18397af3de42a96504923283d0d3d3a1"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: f4quyOI0KHeJ570dkJzXFLBJD7Iey2elqxrJgBnJQy78PXruRr_rsg==
age: 54487
X-Firefox-Spdy: h2

d13pxqgp3ixdbh.cloudfront.net/assets/content_lockers/css_front.css

54.230.245.98

200 OK

6.6 kB

URL HTTP/2
d13pxqgp3ixdbh.cloudfront.net/assets/content_lockers/css_front.css
IP
54.230.245.98:0
ASN
#16509 AMAZON-02

File type
ASCII text, with CRLF line terminators
Size
6.6 kB (6592 bytes)
Hash
90975bb431b0bc97e177770be23ecf7c
211a515db90a0505a0ee0993f80d41b0a06041c6
a316fe7b1efa45b37b1c03c170e5772d1d5f2ffd084af6ca474a984c3b0bcc3c

HTTP Headers

GET /assets/content_lockers/css_front.css HTTP/1.1
Host: d13pxqgp3ixdbh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css
content-length: 6592
last-modified: Mon, 30 Jan 2017 06:33:55 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 09:53:52 GMT
etag: "90975bb431b0bc97e177770be23ecf7c"
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9VpVabRdEVQQglhoXb9HptfpxCsndQJz0nBVovI3uxbIUyG9e-aEww==
age: 40903
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/1/jquery.js

216.58.207.234

200 OK

84 kB

URL HTTP/2
ajax.googleapis.com/ajax/libs/jquery/1/jquery.js
IP
216.58.207.234:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
84 kB (84371 bytes)
Hash
42e31554f77d599c9262a1c70bb1b30c
e3eece62325030cf5fa70a38b7bef2e27a24cd48
7f0b635a269a7a070d9280da9dbe05d533e5226642b7b748c4872cf98412c560

HTTP Headers

GET /ajax/libs/jquery/1/jquery.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 84371
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 09:12:16 GMT
expires: Fri, 02 Feb 2024 09:12:16 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 561798
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

d13pxqgp3ixdbh.cloudfront.net/assets/landing_pages/jqueryui/jquery-ui.min.js

54.230.245.98

200 OK

253 kB

URL HTTP/2
d13pxqgp3ixdbh.cloudfront.net/assets/landing_pages/jqueryui/jquery-ui.min.js
IP
54.230.245.98:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (33303)
Size
253 kB (253385 bytes)
Hash
6cf0bfd19dae4c8eff9624f7cb36ac49
917d64b1ab3445c92d79bd0db1364f4af85dfec3
b827f5917d353d0862dbd30720e73926f4488b88f19fede11ca9d206b49f4831

HTTP Headers

GET /assets/landing_pages/jqueryui/jquery-ui.min.js HTTP/1.1
Host: d13pxqgp3ixdbh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/x-javascript
content-length: 253385
date: Wed, 08 Feb 2023 08:43:49 GMT
last-modified: Mon, 30 Jan 2017 06:33:56 GMT
etag: "6cf0bfd19dae4c8eff9624f7cb36ac49"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1phcylrCpXDJbC0I5yBCbku3nXoDim2qLR04EsN_X22a3p8PIKHTcQ==
age: 45106
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0333fa3e34f17f01e9829bd8ee662c23
be4c7a8599038facc49c73d6d14451023bc919e7
8b4ad992549334395b268f43cf73150ed0dfe58801cf9595c3e245ea92dea7d9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 21:15:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2

216.58.207.227

200 OK

17 kB

URL HTTP/1.1
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Size
17 kB (16740 bytes)
Hash
e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681

HTTP Headers

GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ninzatool.pw
Connection: keep-alive
Referer: http://fonts.googleapis.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 16740
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 03 Feb 2023 18:46:50 GMT
Expires: Sat, 03 Feb 2024 18:46:50 GMT
Cache-Control: public, max-age=31536000
Age: 440925
Last-Modified: Mon, 15 Aug 2022 18:14:44 GMT
Content-Type: font/woff2

fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVI.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/1.1
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVI.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 16372, version 1.0\012- data
Size
16 kB (16372 bytes)
Hash
e45478d4d6f15dafda1f25d9e0fb5fa1
52cb490cd0ee4442ede034085cda9652b206f91c
d1a17abb1a999842fe425e1a4ace9d90f9c18f3595c21a63d89f0611b90cfd72

HTTP Headers

GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ninzatool.pw
Connection: keep-alive
Referer: http://fonts.googleapis.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 16372
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 02 Feb 2023 12:05:30 GMT
Expires: Fri, 02 Feb 2024 12:05:30 GMT
Cache-Control: public, max-age=31536000
Age: 551405
Last-Modified: Mon, 15 Aug 2022 18:14:45 GMT
Content-Type: font/woff2

fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsiH0B4gaVI.woff2

216.58.207.227

200 OK

17 kB

URL HTTP/1.1
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsiH0B4gaVI.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 16748, version 1.0\012- data
Size
17 kB (16748 bytes)
Hash
62d24b94de2fd801742f49d8c6306ba2
d4b841b136adad3051b58a66692f7c5942cf6deb
1b2f88142c19df560f487368810bba2d41c5d6948df584abaa2e0091c0b2245b

HTTP Headers

GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsiH0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ninzatool.pw
Connection: keep-alive
Referer: http://fonts.googleapis.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 16748
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 07 Feb 2023 12:57:42 GMT
Expires: Wed, 07 Feb 2024 12:57:42 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 15 Aug 2022 18:14:43 GMT
Content-Type: font/woff2
Age: 116273

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
9c9ae4ef4a8c27a913a07008e6b7b87b
5d4c24ac7be14ef52003df93f9ba0f59a46d09f5
c43404c91132b53043e8758f1a55314df63e3c2ae7200936c352a192a0575b8c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=170098
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 21:15:35 GMT
Etag: "63e40669-118"
Expires: Fri, 10 Feb 2023 20:30:33 GMT
Last-Modified: Wed, 08 Feb 2023 20:30:33 GMT
Server: nginx
Content-Length: 280

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Expires, Pragma, Retry-After, Last-Modified, ETag, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 08 Feb 2023 21:14:52 GMT
age: 43
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
9c9ae4ef4a8c27a913a07008e6b7b87b
5d4c24ac7be14ef52003df93f9ba0f59a46d09f5
c43404c91132b53043e8758f1a55314df63e3c2ae7200936c352a192a0575b8c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=170098
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 21:15:35 GMT
Etag: "63e40669-118"
Expires: Fri, 10 Feb 2023 20:30:33 GMT
Last-Modified: Wed, 08 Feb 2023 20:30:33 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 280

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4165
Expires: Wed, 08 Feb 2023 22:25:00 GMT
Date: Wed, 08 Feb 2023 21:15:35 GMT
Connection: keep-alive

d13pxqgp3ixdbh.cloudfront.net/uploads/157866565202aea47068b8e50c1492bf89ebf94806.png

54.230.245.98

200 OK

5.5 kB

URL HTTP/2
d13pxqgp3ixdbh.cloudfront.net/uploads/157866565202aea47068b8e50c1492bf89ebf94806.png
IP
54.230.245.98:0
ASN
#16509 AMAZON-02

File type
PNG image data, 120 x 120, 8-bit colormap, non-interlaced\012- data
Size
5.5 kB (5490 bytes)
Hash
3237201b511d730336e2226234d3a753
bd2c45a686216de1d046c1da2d0493c2e363092a
2f0d3622f9bd4211fc1870cc7037f99e87e17cc9d8e14d26492f69082281ca8a

HTTP Headers

GET /uploads/157866565202aea47068b8e50c1492bf89ebf94806.png HTTP/1.1
Host: d13pxqgp3ixdbh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 5490
date: Wed, 08 Feb 2023 14:44:03 GMT
last-modified: Fri, 10 Jan 2020 14:14:14 GMT
etag: "3237201b511d730336e2226234d3a753"
x-amz-version-id: Rb1sfyDskoFm_msB98YfPVGUKE02F8aB
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bYDIsWFbpOUGvivUPCFC9JgHou7PSFZTrTbtudn2LW_Zy5nz3KxDkg==
age: 23492
X-Firefox-Spdy: h2

d2punpeg7vtjci.cloudfront.net/public/external/css_front.css

54.230.245.201

200 OK

6.6 kB

URL HTTP/2
d2punpeg7vtjci.cloudfront.net/public/external/css_front.css
IP
54.230.245.201:0
ASN
#16509 AMAZON-02

File type
ASCII text, with CRLF line terminators
Size
6.6 kB (6596 bytes)
Hash
2649f9832b1ede1bca6b60a16e50a676
c96e86a59be0ab5f2a1c86558205193597822742
a7bd79b6fba60944ee3a9c153108ff0819d2db57850116ac7065a86db08af4ec

HTTP Headers

GET /public/external/css_front.css HTTP/1.1
Host: d2punpeg7vtjci.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css
content-length: 6596
date: Wed, 08 Feb 2023 21:15:35 GMT
server: Apache/2.4.48 () OpenSSL/1.0.2k-fips PHP/7.4.11
last-modified: Tue, 23 Jun 2020 20:06:47 GMT
etag: "19c4-5a8c5e62e9d0a"
accept-ranges: bytes
x-cache: Miss from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jOeVeOCQRVgT21FEEFjfZY_wIb3M_l0q6Kf_JtzazyzMUJAtcAkw7Q==
X-Firefox-Spdy: h2

d13pxqgp3ixdbh.cloudfront.net/uploads/1583216370f87a3ddc1b15cab5e9361fd04006c311.png

54.230.245.98

200 OK

2.3 kB

URL HTTP/2
d13pxqgp3ixdbh.cloudfront.net/uploads/1583216370f87a3ddc1b15cab5e9361fd04006c311.png
IP
54.230.245.98:0
ASN
#16509 AMAZON-02

File type
PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Size
2.3 kB (2345 bytes)
Hash
53e87f6e5271670b382bfa37b62ed6d0
4202fd9c7d5f832d18a4896955d7d1e157b33a63
7c86af21a3713bd51107b7168d3c656e651b63a6f5c1e639e091c8a59bc1b609

HTTP Headers

GET /uploads/1583216370f87a3ddc1b15cab5e9361fd04006c311.png HTTP/1.1
Host: d13pxqgp3ixdbh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 2345
last-modified: Tue, 03 Mar 2020 06:19:31 GMT
x-amz-version-id: ddaM4vib6m_ziyH6DUSL06Oeu8m46TCr
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 21:15:35 GMT
etag: "53e87f6e5271670b382bfa37b62ed6d0"
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: V3CuWSHw_nvn1mVsR9y5Hqzyn5XWUo8BmWUaOlG73dVqe1ElfMldoQ==
age: 48473
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c99599d6628f41d54430edaa40f5c533
4bbd35fd1097784ae5e1e046ba35595eb49ac57f
3cb4e5c0f89f5e97bd7b4a11c25b6bae84bb5a1d55982c44719b76b3f852035e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 21:15:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/analytics.js

142.250.74.110

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1490)
Size
20 kB (20085 bytes)
Hash
ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Wed, 08 Feb 2023 19:44:05 GMT
expires: Wed, 08 Feb 2023 21:44:05 GMT
cache-control: public, max-age=7200
age: 5490
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.163

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c99599d6628f41d54430edaa40f5c533
4bbd35fd1097784ae5e1e046ba35595eb49ac57f
3cb4e5c0f89f5e97bd7b4a11c25b6bae84bb5a1d55982c44719b76b3f852035e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 21:15:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/j/collect?v=1&_v=j99&a=1571652614&t=pageview&_s=1&dl=http%3A%2F%2Fninzatool.pw%2Fdragonball&ul=en-us&de=UTF-8&dt=Dragon%20Ball%20Legends%20Chrono%20Crystal%20Generator&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1619207442&gjid=7355297&cid=123144496.1675890992&tid=UA-168596379-1&_gid=1453867471.1675890992&_r=1&_slc=1&z=1553525472

142.250.74.110

200 OK

3 B

URL HTTP/2
www.google-analytics.com/j/collect?v=1&_v=j99&a=1571652614&t=pageview&_s=1&dl=http%3A%2F%2Fninzatool.pw%2Fdragonball&ul=en-us&de=UTF-8&dt=Dragon%20Ball%20Legends%20Chrono%20Crystal%20Generator&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1619207442&gjid=7355297&cid=123144496.1675890992&tid=UA-168596379-1&_gid=1453867471.1675890992&_r=1&_slc=1&z=1553525472
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
3 B (3 bytes)
Hash
dec002daa3f9abe33f5ab1a61ba58e91
b286614a767c86a75059fb1d4557be706e7c3812
1cffc2b3146584685cd72751d7f28aa030ab9ae2f1bc78f2c27909f8d8287b26

HTTP Headers

POST /j/collect?v=1&_v=j99&a=1571652614&t=pageview&_s=1&dl=http%3A%2F%2Fninzatool.pw%2Fdragonball&ul=en-us&de=UTF-8&dt=Dragon%20Ball%20Legends%20Chrono%20Crystal%20Generator&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=1619207442&gjid=7355297&cid=123144496.1675890992&tid=UA-168596379-1&_gid=1453867471.1675890992&_r=1&_slc=1&z=1553525472 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://ninzatool.pw
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: http://ninzatool.pw
date: Wed, 08 Feb 2023 21:15:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 3
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google-analytics.com/j/collect?v=1&_v=j99&a=1571652614&t=event&_s=1&dl=http%3A%2F%2Fninzatool.pw%2Fdragonball&ul=en-us&de=UTF-8&dt=Dragon%20Ball%20Legends%20Chrono%20Crystal%20Generator&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&ec=VisitorEvents&ea=lockerJS_pageload&el=Locker%20JS%20Pageload&_u=4EDAAEABAAAAACAAI~&jid=101669780&gjid=1061570270&cid=123144496.1675890992&uid=ye9cv5qg2&tid=UA-85922709-7&_gid=1453867471.1675890992&_r=1&_slc=1&z=631669078

142.250.74.110

200 OK

3 B

URL HTTP/2
www.google-analytics.com/j/collect?v=1&_v=j99&a=1571652614&t=event&_s=1&dl=http%3A%2F%2Fninzatool.pw%2Fdragonball&ul=en-us&de=UTF-8&dt=Dragon%20Ball%20Legends%20Chrono%20Crystal%20Generator&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&ec=VisitorEvents&ea=lockerJS_pageload&el=Locker%20JS%20Pageload&_u=4EDAAEABAAAAACAAI~&jid=101669780&gjid=1061570270&cid=123144496.1675890992&uid=ye9cv5qg2&tid=UA-85922709-7&_gid=1453867471.1675890992&_r=1&_slc=1&z=631669078
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
3 B (3 bytes)
Hash
dec002daa3f9abe33f5ab1a61ba58e91
b286614a767c86a75059fb1d4557be706e7c3812
1cffc2b3146584685cd72751d7f28aa030ab9ae2f1bc78f2c27909f8d8287b26

HTTP Headers

POST /j/collect?v=1&_v=j99&a=1571652614&t=event&_s=1&dl=http%3A%2F%2Fninzatool.pw%2Fdragonball&ul=en-us&de=UTF-8&dt=Dragon%20Ball%20Legends%20Chrono%20Crystal%20Generator&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&ec=VisitorEvents&ea=lockerJS_pageload&el=Locker%20JS%20Pageload&_u=4EDAAEABAAAAACAAI~&jid=101669780&gjid=1061570270&cid=123144496.1675890992&uid=ye9cv5qg2&tid=UA-85922709-7&_gid=1453867471.1675890992&_r=1&_slc=1&z=631669078 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://ninzatool.pw
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: http://ninzatool.pw
date: Wed, 08 Feb 2023 21:15:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 3
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

push.services.mozilla.com/

35.84.241.69

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.84.241.69:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: KkbuLoH5GE9E1gV475UfhQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: U9WgDi+yw30Oi+5029uWPdIBybM=

d2punpeg7vtjci.cloudfront.net/public/external/v2/html.2565622.4a256.0.js

54.230.245.201

200 OK

7.1 kB

URL HTTP/2
d2punpeg7vtjci.cloudfront.net/public/external/v2/html.2565622.4a256.0.js
IP
54.230.245.201:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (5039), with CRLF line terminators
Size
7.1 kB (7133 bytes)
Hash
2398c8ff9bab05d67af2a82ea41ae7ab
c96336c7459b32912cb8b50c641f928cfec757f8
f0bd42e4f1b4797dd7486a92f9e41a69369a7a7213ce0caf7d42ad5ad84f1692

HTTP Headers

GET /public/external/v2/html.2565622.4a256.0.js HTTP/1.1
Host: d2punpeg7vtjci.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 7133
date: Wed, 08 Feb 2023 21:15:35 GMT
server: Apache/2.4.46 () OpenSSL/1.0.2k-fips PHP/7.4.11
x-powered-by: PHP/7.4.11
x-cache: Miss from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kFXgGSSa9NrplX_4KuoZsVaxbb5IzPxa5s6QV7QqI5anInLkumr99w==
X-Firefox-Spdy: h2

d2punpeg7vtjci.cloudfront.net/public/clockers/HumanVerification/css.css

54.230.245.201

200 OK

1.1 kB

URL HTTP/2
d2punpeg7vtjci.cloudfront.net/public/clockers/HumanVerification/css.css
IP
54.230.245.201:0
ASN
#16509 AMAZON-02

File type
ASCII text, with CRLF line terminators
Size
1.1 kB (1078 bytes)
Hash
3341e9d54ee22decb1393fac6c9826bd
4ba7eba00c9fcded40ad249a4d30231d518cd589
9064b3368b65c9e47e057f59538af8739a43ff3e3b9713bf2675916a2d586b88

HTTP Headers

GET /public/clockers/HumanVerification/css.css HTTP/1.1
Host: d2punpeg7vtjci.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 1078
date: Wed, 08 Feb 2023 21:15:36 GMT
server: Apache/2.4.46 () OpenSSL/1.0.2k-fips PHP/7.4.11
last-modified: Fri, 10 Apr 2020 22:29:00 GMT
etag: "436-5a2f7428ae907"
accept-ranges: bytes
x-cache: Miss from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Imr6Za9n1eL2LJndlhIysOYrj3vG_FDLal73fSYSVUnwBn_nsYb5ZQ==
X-Firefox-Spdy: h2

d13pxqgp3ixdbh.cloudfront.net/assets/landing_pages/fa/fonts/fontawesome-webfont.woff2?v=4.6.3

54.230.245.98

200 OK

72 kB

URL HTTP/2
d13pxqgp3ixdbh.cloudfront.net/assets/landing_pages/fa/fonts/fontawesome-webfont.woff2?v=4.6.3
IP
54.230.245.98:0
ASN
#16509 AMAZON-02

File type
Web Open Font Format (Version 2), TrueType, length 71896, version 4.393\012- data
Size
72 kB (71896 bytes)
Hash
e6cf7c6ec7c2d6f670ae9d762604cb0b
97e438cc545714309882fbceadbf344fcaddcec5
7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73

HTTP Headers

GET /assets/landing_pages/fa/fonts/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1
Host: d13pxqgp3ixdbh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ninzatool.pw
Connection: keep-alive
Referer: https://d13pxqgp3ixdbh.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/octet-stream
content-length: 71896
date: Wed, 08 Feb 2023 21:15:36 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Mon, 30 Jan 2017 06:33:55 GMT
etag: "e6cf7c6ec7c2d6f670ae9d762604cb0b"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: shCnbzwkSU8NiHzAXOqOCNbqBr7Eeh_xTsPCC7vy1JR1LeuUA7d54Q==
X-Firefox-Spdy: h2

d13pxqgp3ixdbh.cloudfront.net/uploads/1583217404aeef8fc9dcd8e4c787f632bb68725807.png

54.230.245.98

200 OK

38 kB

URL HTTP/2
d13pxqgp3ixdbh.cloudfront.net/uploads/1583217404aeef8fc9dcd8e4c787f632bb68725807.png
IP
54.230.245.98:0
ASN
#16509 AMAZON-02

File type
PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size
38 kB (37605 bytes)
Hash
c1e03df710757be283246ca971a40fcf
edb2537d1708a3740e4ec3dac291c5253220fca3
2e27d05bf8f150c9bae615eda1056d2e67ac47d433909c70b67e190eca4bd75a

HTTP Headers

GET /uploads/1583217404aeef8fc9dcd8e4c787f632bb68725807.png HTTP/1.1
Host: d13pxqgp3ixdbh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 37605
date: Wed, 08 Feb 2023 21:15:37 GMT
last-modified: Tue, 03 Mar 2020 06:36:45 GMT
etag: "c1e03df710757be283246ca971a40fcf"
x-amz-version-id: N0r3oroMEQ0HhwEyuZfl7cwEbBIK8Rwd
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GlkJCP-rf1XLOYdhG8UTuFWffcYcxcsIdbJmzd4cQGTm7KdzRIYAAg==
X-Firefox-Spdy: h2

d2punpeg7vtjci.cloudfront.net/public/guid?cpguid=ye9cv5qg2&e=ll&t=1675890992417

54.230.245.201

200 OK

0 B

URL HTTP/2
d2punpeg7vtjci.cloudfront.net/public/guid?cpguid=ye9cv5qg2&e=ll&t=1675890992417
IP
54.230.245.201:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /public/guid?cpguid=ye9cv5qg2&e=ll&t=1675890992417 HTTP/1.1
Host: d2punpeg7vtjci.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 0
date: Wed, 08 Feb 2023 21:15:36 GMT
server: Apache/2.4.46 () OpenSSL/1.0.2k-fips PHP/7.4.11
x-powered-by: PHP/7.4.11
x-cache: Miss from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BMIRHZQJwuvRZ9GMUFtsdom55CXr__8tag0A3Mnq6BNooXSWsTk44Q==
X-Firefox-Spdy: h2

d13pxqgp3ixdbh.cloudfront.net/uploads/1583217567b52ec1a26658e4969fd438386781d8d9.png

54.230.245.98

200 OK

142 kB

URL HTTP/2
d13pxqgp3ixdbh.cloudfront.net/uploads/1583217567b52ec1a26658e4969fd438386781d8d9.png
IP
54.230.245.98:0
ASN
#16509 AMAZON-02

File type
PNG image data, 412 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size
142 kB (142432 bytes)
Hash
3494b44d8346ff6f83cb7653e1f106ad
a8200232bf9783d3b10e92556c0860ab5201448a
f57fa3c18b8bb0ed7664b89c9765a5e8475320c6f86a3796d39b5f8c45ffb3e6

HTTP Headers

GET /uploads/1583217567b52ec1a26658e4969fd438386781d8d9.png HTTP/1.1
Host: d13pxqgp3ixdbh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 142432
date: Wed, 08 Feb 2023 21:15:37 GMT
last-modified: Tue, 03 Mar 2020 06:39:29 GMT
etag: "3494b44d8346ff6f83cb7653e1f106ad"
x-amz-version-id: YhV3ZLlIIaDiFjVRFwGlTsR6Mdi3Ywqv
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7ZfnSXSzGLNJvDuE0Q3PB0s2w3lRJGsDfiG9lEptx1qcRuOoAG4_Yw==
X-Firefox-Spdy: h2

d13pxqgp3ixdbh.cloudfront.net/uploads/158321549951931788b1ba5613a54879f8a49bfcb0.jpg

54.230.245.98

200 OK

606 kB

URL HTTP/2
d13pxqgp3ixdbh.cloudfront.net/uploads/158321549951931788b1ba5613a54879f8a49bfcb0.jpg
IP
54.230.245.98:0
ASN
#16509 AMAZON-02

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2014 (Windows), datetime=2020:03:03 12:04:46], progressive, precision 8, 1176x622, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 29766-9042, spot sensor temperature 0.000000, unit celsius, color scheme 0, calibration: offset 0.000000, slope 1099272469882396012844154880.000000\012- data
Size
606 kB (606311 bytes)
Hash
dfa8a25b88b1a0c05449f734cfbac30d
b1ad4c098209bf2020fbea35f1e5e1c1127c0caf
b17c7d14309249ce74673520d8790314988402b7abec45fc3d083ba6aa1f3600

HTTP Headers

GET /uploads/158321549951931788b1ba5613a54879f8a49bfcb0.jpg HTTP/1.1
Host: d13pxqgp3ixdbh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/jpg
content-length: 606311
date: Wed, 08 Feb 2023 21:15:37 GMT
last-modified: Tue, 03 Mar 2020 06:05:00 GMT
etag: "dfa8a25b88b1a0c05449f734cfbac30d"
x-amz-version-id: wgBCvuS8wxg4mRnOxIZW42oz53YofnLr
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MBQ0-Q7PL2EGuEtbK0Gsfn2HdSjwlnDlJzy4ZkCpl5y9_euAopE3CQ==
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6246
Expires: Wed, 08 Feb 2023 22:59:42 GMT
Date: Wed, 08 Feb 2023 21:15:36 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6246
Expires: Wed, 08 Feb 2023 22:59:42 GMT
Date: Wed, 08 Feb 2023 21:15:36 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6246
Expires: Wed, 08 Feb 2023 22:59:42 GMT
Date: Wed, 08 Feb 2023 21:15:36 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa8532aa1-7280-445c-9c4c-b562d09929d0.jpeg

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa8532aa1-7280-445c-9c4c-b562d09929d0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10328 bytes)
Hash
1d2eccb9280b851aa1725df5681f6bbd
b4e2b14ee5bc9ee6c9c05666c34b2d1b6ec425b5
c64ece16f4c550feb05db1bccbf74b49d839e77fea31893d48a3f0c267939c92

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa8532aa1-7280-445c-9c4c-b562d09929d0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10328
x-amzn-requestid: 0b0b3fcd-416c-47ac-afa0-51be0ab85665
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_PPlGGqoAMFxYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c596-219ee5023d71e4ce17d49233;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:41:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1uPNh-FvA8oI5ZuruNle0ATMPSsyl-_ZjLrUnPQJrogPVREc8wrHMQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 22:12:09 GMT
etag: "b4e2b14ee5bc9ee6c9c05666c34b2d1b6ec425b5"
content-type: image/jpeg
age: 83007
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7e586b8-49f5-40c3-b0d4-f6cdfc375a2b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.8 kB (9760 bytes)
Hash
18a84ae645223aba0709b5e16c0207f7
0b865e797846520ccc6fff6fb2ee38d8836bd2c0
b1e4868045f074a84e3de1d82ec3ae22f6d2a1a4131b2a40bcce7f3f5375aff7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7e586b8-49f5-40c3-b0d4-f6cdfc375a2b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9760
x-amzn-requestid: d5d8fdde-048f-4705-9fa4-99fd7d29d804
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f582DETSIAMFmEA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0a826-52a3b175584df1914260c8ae;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 07:11:34 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: wUaruDuqNDIlR6CWz9G7DAofcvS7UNmtPM7C2ve-RRbp57J43rWPxQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 04:09:02 GMT
age: 61594
etag: "0b865e797846520ccc6fff6fb2ee38d8836bd2c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a39697d-4bed-4ebe-970d-d9950958f814.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (13714 bytes)
Hash
5de2fe3c9a2b091689a7213c4f781446
385fa88a857ba301f37ab56d72d11fb49abd8c6b
b64b11a68493fa304aa6102bf9b9ff11fab5e1536ecf768e4b0fa51470ae2293

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a39697d-4bed-4ebe-970d-d9950958f814.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13714
x-amzn-requestid: 8f776dba-4e5d-46e5-a3ac-459d86852375
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_PFjGNHIAMFrMA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c556-74429dc755cc37672c68b58b;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:40:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Cf-MbK2WIFs3foM-_Ou5OUg7IS8ovfw-dHJnIpVUvpeAbMi-TeC5SA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:54:34 GMT
etag: "385fa88a857ba301f37ab56d72d11fb49abd8c6b"
content-type: image/jpeg
age: 84062
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99e021e8-f66e-44fd-94ca-b30d25a8f5b4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.0 kB (4961 bytes)
Hash
544181f4aba24fc687a14522dd20f720
2b117270563b8c466ec774acce55271c38f6135b
607c45cc5b4726b92c8507988bbb90ac6a44a3cf22b290030d440266350099a1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99e021e8-f66e-44fd-94ca-b30d25a8f5b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4961
x-amzn-requestid: c3b9db99-726f-4473-a6b6-9cff0dceb949
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fswe1GeRoAMFiAA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63db612b-17b52fcd74e374f1104af709;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 07:07:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dSxTM3mmYK8cLOy5_x4o-lew1goEgwT4fBHi0pM-HSK_qBC6rDAlzg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 15:13:11 GMT
age: 21745
etag: "2b117270563b8c466ec774acce55271c38f6135b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F308abacb-8d5b-49bf-9e2b-59b6b40157cb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12772 bytes)
Hash
2bf626b824fefec1ecaceb9243f2e5ec
f222976d76d889a0cd767bfd73075ee114c531ce
3f981850c6e6628245be7f7e26418d8b945dbeaf45e06492d8e2ee9409245195

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F308abacb-8d5b-49bf-9e2b-59b6b40157cb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12772
x-amzn-requestid: a4603c5c-c842-4a1d-bf09-550f160e1082
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O7OEz8oAMFbOg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c514-763b7ecf50411a4d13dd8a25;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ECAdRS7as57pL15HxK4Ep0YOho8Kba8RFhMVnXGdJuKYItQHNf2yHA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:53:57 GMT
age: 84099
etag: "f222976d76d889a0cd767bfd73075ee114c531ce"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbee0b552-d236-4fa2-b702-1571b09d3fd6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.1 kB (6060 bytes)
Hash
db6e81972b8835dc48a0dae751ffde5f
826e2195cc52905cfed0bc4f01646290261113b6
720e6105b2ccc9cbc8fd005d53873ced5467a852c7a5041ce2ef96785c0d92f7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbee0b552-d236-4fa2-b702-1571b09d3fd6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6060
x-amzn-requestid: 80cbc454-e1b4-4e53-a3b6-3a5ac11920c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_PPQEPNIAMFkqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c594-4539ebb17f27d88a47100a82;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:41:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 50lUvmFMZ01J2FrO3AId_U87zBmCWLFQSDsly_Cd9xF_hVIOWbf3JA==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 22:14:43 GMT
age: 82853
etag: "826e2195cc52905cfed0bc4f01646290261113b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

d2punpeg7vtjci.cloudfront.net/public/external/check.php?it=2565622&time=1675890994000

54.230.245.201

200 OK

78 B

URL HTTP/2
d2punpeg7vtjci.cloudfront.net/public/external/check.php?it=2565622&time=1675890994000
IP
54.230.245.201:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
78 B (78 bytes)
Hash
37ebc78db9bc22d4c972c5961163070c
865e3671f7e86b52d2f7b006b95ec7799a187572
9ef4a63fc5e0a14a7301d693d65d6acfc44cdf14853c4a20890198f2d5e52e3b

HTTP Headers

GET /public/external/check.php?it=2565622&time=1675890994000 HTTP/1.1
Host: d2punpeg7vtjci.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 78
date: Wed, 08 Feb 2023 21:15:38 GMT
server: Apache/2.4.51 () OpenSSL/1.0.2k-fips PHP/7.4.11
x-powered-by: PHP/7.4.11
x-cache: Miss from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HFyw_Ug3shqZ2fH-l9FuOrFKt3B8eP6mubMILbsqpnijww1e0Rg6Jg==
X-Firefox-Spdy: h2

cldoffers.net/public/external/t.js

188.114.96.1

200 OK

0 B

URL HTTP/2
cldoffers.net/public/external/t.js
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /public/external/t.js HTTP/1.1
Host: cldoffers.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 08 Feb 2023 21:15:35 GMT
content-type: application/javascript
last-modified: Tue, 21 Jul 2020 08:43:38 GMT
etag: W/"696-5aaef9ea142f5"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3637
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NUV6krBYhjNby7BadPLcCqy9hYc8J6imAtMdGTQnT3bqrY84Ad73Yoom%2BxOqhZl7rMN5%2FWs%2FK0CSqCk65SZZTrr3BlgV5CdaA44aUDPl5fre6JmKS1jSfnFpQIXzN%2FYs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 796761a91a0fb51d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

d2bb5k76l7oivo.cloudfront.net/e397411.js

54.230.245.120

200 OK

0 B

URL HTTP/2
d2bb5k76l7oivo.cloudfront.net/e397411.js
IP
54.230.245.120:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /e397411.js HTTP/1.1
Host: d2bb5k76l7oivo.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 11 Jan 2023 21:50:46 GMT
server: AmazonS3
content-encoding: br
date: Wed, 08 Feb 2023 20:58:11 GMT
etag: W/"8ab72c4473621e1b30a24ec89af90bcf"
vary: Accept-Encoding
x-cache: Error from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fTMXLQ0cwlEYG4XH2RX9ep7c-QBKdZj4-LRQO6Z9slB0y0m1V3r9_A==
age: 1066
X-Firefox-Spdy: h2

d13pxqgp3ixdbh.cloudfront.net/assets/content_lockers/noty-2.3.8/demo/animate.css

54.230.245.98

200 OK

0 B

URL HTTP/2
d13pxqgp3ixdbh.cloudfront.net/assets/content_lockers/noty-2.3.8/demo/animate.css
IP
54.230.245.98:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /assets/content_lockers/noty-2.3.8/demo/animate.css HTTP/1.1
Host: d13pxqgp3ixdbh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css
content-length: 72922
last-modified: Mon, 30 Jan 2017 06:33:55 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 05:03:38 GMT
etag: "e78c4ece198b758d2fb2e18ff0283249"
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4-a_nB2h6VMcEx2BhPQv8T03xnHijwbNqK2CDf5Gr0OyW4BdvGlA_Q==
age: 58317
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (16)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML