Report - healthydogfood.com/

Report Overview

Submitted URL
healthydogfood.com/
IP
45.33.30.197
ASN
#63949 Linode, LLC
Submitted
2022-12-19 08:26:21
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
api.aws.parking.godaddy.com	36127	2020-03-23T22:33:37Z	2023-03-09T12:51:40Z	2.6 kB	4.0 kB	100.26.85.29
afs.googleusercontent.com	12123	2013-05-06T21:11:00Z	2023-03-09T05:12:35Z	885 B	2.3 kB	216.58.207.225
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-09T10:04:36Z	3.2 kB	52 kB	34.120.237.76
postback.trafficmotor.com	96726	2019-11-09T14:35:40Z	2023-03-09T05:33:19Z	955 B	618 B	45.79.38.145
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-09T05:09:49Z	413 B	5.8 kB	34.160.144.191
www.google.com	7	2015-05-10T13:11:19Z	2023-03-09T13:38:50Z	379 B	57 kB	216.58.207.228
img1.wsimg.com	9893	2012-06-20T16:42:31Z	2023-03-09T12:28:40Z	1.9 kB	196 kB	23.36.79.16
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-09T05:09:13Z	606 B	127 B	54.202.70.174
ocsp.godaddy.com	698	2012-05-20T21:28:57Z	2023-03-09T05:15:13Z	340 B	2.3 kB	192.124.249.22
partner.googleadservices.com	798	2012-10-03T03:04:21Z	2023-03-09T08:43:03Z	477 B	911 B	216.58.207.226
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-09T05:09:18Z	782 B	2.4 kB	35.241.9.150
www6.healthydogfood.com	unknown	2022-08-30T09:28:12Z	2023-03-08T18:39:46Z	873 B	3.2 kB	35.186.238.101
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-09T05:09:50Z	2.4 kB	4.9 kB	216.58.211.3
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-09T05:09:48Z	333 B	391 B	34.117.237.239
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-09T11:52:10Z	341 B	796 B	93.184.220.29
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-09T05:09:05Z	3.0 kB	8.0 kB	23.36.77.32
healthydogfood.com	unknown	2015-12-20T13:12:35Z	2023-03-09T09:27:46Z	842 B	6.6 kB	45.79.19.196

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-19	medium	healthydogfood.com/	Malware
2022-12-19	medium	healthydogfood.com/mtm/async/.eJxdi0sOwjAMBe_iZYkalnzEWZBJnY-U1CF1Iajq3UmBFbuZN3oLzCXACTQowOKmho0KWSpUvuJ5kuuIiZp6wij-NbCzzENvOG0_YyhLq0JVtJcUFeYcg0EJPOq6Lbv6v6Z4vl_2_VGFhI40PoL94ZNuWXW6-_QDrG98Cjc1:1p7BTO:fqzA9_wQtcXOfrXvC8kCi_q2kTM/1/	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (8)

	URL	Size	First Seen	Last Seen
	partner.googleadservices.com/gampad/cookie.js?domain=www6.healthydogfood.com&client=dp-namemedia08_3ph&product=SAS&callback=__sasCookie	376 B	2023-03-09	2023-03-09
Pretty URL partner.googleadservices.com/gampad/cookie.js?domain=www6.healthydogfood.com&client=dp-namemedia08_3ph&product=SAS&callback=__sasCookie IP 216.58.207.226 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 17:42:11 Last Seen2023-03-09 17:42:11 Times Seen1 Hash 3c9e46d41331bd819e141551960bb4ff 5b4ebb5d7eb7b15c3ea466eab69df38813328bc7 da361932872e6d9d84899a55ff92d70646bd43247a703116c26cd3f6dfe9a787 Loading...

	www.google.com/afs/ads?adsafe=low&adtest=off&psid=9841729664&pcsa=false&channel=08255&domain_name=healthydogfood.com&client=dp-namemedia08_3ph&r=m&terms=Get%20An%20Online%20Degree%2CB2B%20Travel%20Booking%20System%2CSocial%20Media%20Automation%20Marketing%20Software%2CGet%20An%20Online%20Degree%2CLowest%20Car%20Insurance%20Rates%2CMake%20Money%20From%20Home%2CBest%20Mortgage%20Refinancing%20Rates%2CLowest%20Car%20Insurance%20Rates%2CSocial%20Media%20Automation%20Marketing%20Software&type=3&uiopt=true&swp=as-drid-2962027375917336&oe=UTF-8&ie=UTF-8&fexp=21404&format=r9&nocache=1141671438372301&num=0&output=afd_ads&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1671438372302&u_w=1280&u_h=1024&biw=1280&bih=939&psw=1280&psh=939&frm=0&cl=493016327&uio=-&cont=relatedLinks&jsid=caf&jsv=493016327&rurl=http%3A%2F%2Fwww6.healthydogfood.com%2F%3Ftemplate%3DARROW_3%26tdfs%3D1%26s_token%3D1671438370.0427350000%26uuid%3D1671438370.0427350000%26term%3DGet%2520An%2520Online%2520Degree%26term%3DB2B%2520Travel%2520Booking%2520System%26term%3DSocial%2520Media%2520Automation%2520Marketing%2520Software%26term%3DGet%2520An%2520Online%2520Degree%26term%3DLowest%2520Car%2520Insurance%2520Rates%26term%3DMake%2520Money%2520From%2520Home%26term%3DBest%2520Mortgage%2520Refinancing%2520Rates%26term%3DLowest%2520Car%2520Insurance%2520Rates%26term%3DSocial%2520Media%2520Automation%2520Marketing%2520Software%26searchbox%3D0%26showDomain%3D1%26backfill%3D0&adbw=master-1%3A500	8.2 kB	2023-03-09	2023-03-09
Pretty URL www.google.com/afs/ads?adsafe=low&adtest=off&psid=9841729664&pcsa=false&channel=08255&domain_name=healthydogfood.com&client=dp-namemedia08_3ph&r=m&terms=Get%20An%20Online%20Degree%2CB2B%20Travel%20Booking%20System%2CSocial%20Media%20Automation%20Marketing%20Software%2CGet%20An%20Online%20Degree%2CLowest%20Car%20Insurance%20Rates%2CMake%20Money%20From%20Home%2CBest%20Mortgage%20Refinancing%20Rates%2CLowest%20Car%20Insurance%20Rates%2CSocial%20Media%20Automation%20Marketing%20Software&type=3&uiopt=true&swp=as-drid-2962027375917336&oe=UTF-8&ie=UTF-8&fexp=21404&format=r9&nocache=1141671438372301&num=0&output=afd_ads&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1671438372302&u_w=1280&u_h=1024&biw=1280&bih=939&psw=1280&psh=939&frm=0&cl=493016327&uio=-&cont=relatedLinks&jsid=caf&jsv=493016327&rurl=http%3A%2F%2Fwww6.healthydogfood.com%2F%3Ftemplate%3DARROW_3%26tdfs%3D1%26s_token%3D1671438370.0427350000%26uuid%3D1671438370.0427350000%26term%3DGet%2520An%2520Online%2520Degree%26term%3DB2B%2520Travel%2520Booking%2520System%26term%3DSocial%2520Media%2520Automation%2520Marketing%2520Software%26term%3DGet%2520An%2520Online%2520Degree%26term%3DLowest%2520Car%2520Insurance%2520Rates%26term%3DMake%2520Money%2520From%2520Home%26term%3DBest%2520Mortgage%2520Refinancing%2520Rates%26term%3DLowest%2520Car%2520Insurance%2520Rates%26term%3DSocial%2520Media%2520Automation%2520Marketing%2520Software%26searchbox%3D0%26showDomain%3D1%26backfill%3D0&adbw=master-1%3A500 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 17:42:11 Last Seen2023-03-09 17:42:11 Times Seen1 Hash 8f74e3ab2c19e69fba8f76b95406b2f6 5e2a8ad2a8eb19e883ef0ca81f3e2520f97da38a 573beff773e326a814434bf286471c3e59ce14cf6625f5d878313f7f6920aa21 Loading...

	healthydogfood.com/	3.7 kB	2023-03-09	2023-03-09
Pretty URL healthydogfood.com/ IP 45.79.19.196 ASN #63949 Linode, LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 17:42:11 Last Seen2023-03-09 17:42:11 Times Seen1 Hash bef2f784ef6a77f6efb572190bd8d772 3f7e6a9e01a27d743fcf39c48dca30cab065a717 510ada5c47f36ef809bc81b8da2f02985a37dac911c28447df015e4a797fb2af Loading...

	img1.wsimg.com/parking-lander/static/js/main.4e219663.chunk.js	280 kB	2023-03-07	2023-03-17
Pretty URL img1.wsimg.com/parking-lander/static/js/main.4e219663.chunk.js IP 23.36.79.16 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:28:50 Last Seen2023-03-17 21:22:50 Times Seen1 Hash 87b518e8e45487e774f8d47f2dc0026f e5da4365a7867737da9b39ef021cf9f35d12cc5b 1ef669d1914ecf9299396df700b34839c61c6bb24297dc6b4284820eb5f2e5d9 Loading...

	img1.wsimg.com/parking-lander/static/js/2.5940ae1c.chunk.js	429 kB	2023-03-07	2023-03-17
Pretty URL img1.wsimg.com/parking-lander/static/js/2.5940ae1c.chunk.js IP 23.36.79.16 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:54:32 Last Seen2023-03-17 21:22:50 Times Seen1 Hash 04bb6e8d9135d976f28e9ba68fbc6f67 fe386efd5e23414c48e37d3dbfe340f1ae5d4d4a b81d40ef3e5928c7bee6ec287ecebfea17f6d62b277916f0b70d223fa4881d18 Loading...

	www.google.com/adsense/domains/caf.js	147 kB	2023-03-08	2023-03-12
Pretty URL www.google.com/adsense/domains/caf.js IP 216.58.207.228 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:25:37 Last Seen2023-03-12 21:33:25 Times Seen1 Hash bd37a16563adf3f9d2f2488b3148e641 4be9135ace571f0ebbe31261b58655fc8b473ad7 bf232d787bc8a44a2e679a4c3d88de14d7be5acdf0f3e22043b814f9dea69ced Loading...

	www6.healthydogfood.com/?template=ARROW_3&tdfs=1&s_token=1671438370.0427350000&uuid=1671438370.0427350000&term=Get%20An%20Online%20Degree&term=B2B%20Travel%20Booking%20System&term=Social%20Media%20Automation%20Marketing%20Software&term=Get%20An%20Online%20Degree&term=Lowest%20Car%20Insurance%20Rates&term=Make%20Money%20From%20Home&term=Best%20Mortgage%20Refinancing%20Rates&term=Lowest%20Car%20Insurance%20Rates&term=Social%20Media%20Automation%20Marketing%20Software&searchbox=0&showDomain=1&backfill=0	25 B	2023-03-07	2023-04-05
Pretty URL www6.healthydogfood.com/?template=ARROW_3&tdfs=1&s_token=1671438370.0427350000&uuid=1671438370.0427350000&term=Get%20An%20Online%20Degree&term=B2B%20Travel%20Booking%20System&term=Social%20Media%20Automation%20Marketing%20Software&term=Get%20An%20Online%20Degree&term=Lowest%20Car%20Insurance%20Rates&term=Make%20Money%20From%20Home&term=Best%20Mortgage%20Refinancing%20Rates&term=Lowest%20Car%20Insurance%20Rates&term=Social%20Media%20Automation%20Marketing%20Software&searchbox=0&showDomain=1&backfill=0 IP 35.186.238.101 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2023-04-05 02:09:32 Times Seen1220 Hash 396983b43a97ac40197e7d22399b707b 9c54ff4c30658fd6a7e94eaaae5072b3ed2ec1dc de4e0ef840a4a74223bb4637d128d0fd8894ac9f95bf604576e8c5280c768442 Loading...

	www6.healthydogfood.com/?template=ARROW_3&tdfs=1&s_token=1671438370.0427350000&uuid=1671438370.0427350000&term=Get%20An%20Online%20Degree&term=B2B%20Travel%20Booking%20System&term=Social%20Media%20Automation%20Marketing%20Software&term=Get%20An%20Online%20Degree&term=Lowest%20Car%20Insurance%20Rates&term=Make%20Money%20From%20Home&term=Best%20Mortgage%20Refinancing%20Rates&term=Lowest%20Car%20Insurance%20Rates&term=Social%20Media%20Automation%20Marketing%20Software&searchbox=0&showDomain=1&backfill=0	1.6 kB	2023-03-07	2023-03-17
Pretty URL www6.healthydogfood.com/?template=ARROW_3&tdfs=1&s_token=1671438370.0427350000&uuid=1671438370.0427350000&term=Get%20An%20Online%20Degree&term=B2B%20Travel%20Booking%20System&term=Social%20Media%20Automation%20Marketing%20Software&term=Get%20An%20Online%20Degree&term=Lowest%20Car%20Insurance%20Rates&term=Make%20Money%20From%20Home&term=Best%20Mortgage%20Refinancing%20Rates&term=Lowest%20Car%20Insurance%20Rates&term=Social%20Media%20Automation%20Marketing%20Software&searchbox=0&showDomain=1&backfill=0 IP 35.186.238.101 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2023-03-17 21:22:50 Times Seen1 Hash c6606a761d8e442043559f725c8d86bc 8aa6b3788adcc94cd0a6bd029efdc36ec55b5aa6 116d226b7433c1f1d327264eac5194d042929b4da990ab1a83fa7345bfbaf9fd Loading...

HTTP Transactions (47)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4cbb89840b57466fcbc0b31305c9dc47
c2c08a7a243a3f7972e8068c448488cac6d2519f
5f871ffd142470f132fed1c93f5f1a7fe6a5ecc3b4311d3d47555fce1d9a35f1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5F871FFD142470F132FED1C93F5F1A7FE6A5ECC3B4311D3D47555FCE1D9A35F1"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8830
Expires: Mon, 19 Dec 2022 10:53:20 GMT
Date: Mon, 19 Dec 2022 08:26:10 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2039a1dda99e075b82840608771d2326
e89713a35b312f3b87fbeaad98f03fddecbf77ce
aae78c754635e9833fa6c231d775bddc82add02f9ce3197a0b260a0806e708c3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AAE78C754635E9833FA6C231D775BDDC82ADD02F9CE3197A0B260A0806E708C3"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8234
Expires: Mon, 19 Dec 2022 10:43:24 GMT
Date: Mon, 19 Dec 2022 08:26:10 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 19 Dec 2022 07:34:22 GMT
content-type: application/json
age: 3108
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cf03270e3476f7482a2cc7ddc6a9e857
ab70d5ee87b01e0601f8e518bf36f97c8ceeba9a
43a4e796860a1481636dac103488cadc68c261d13cfe835d273efc368e569f97

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "43A4E796860A1481636DAC103488CADC68C261D13CFE835D273EFC368E569F97"
Last-Modified: Sun, 18 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6343
Expires: Mon, 19 Dec 2022 10:11:53 GMT
Date: Mon, 19 Dec 2022 08:26:10 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: bOl+EyFBHm82/mHg7wtTyMGAigVLFVeBdsWY0iweThcZ4B9owgOmEr0ARZdY1pjpSkjc9aZHZSU=
x-amz-request-id: 2RG4R9TQ1Q6SW6BT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 19 Dec 2022 07:54:28 GMT
age: 1902
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

healthydogfood.com/

45.79.19.196

200 OK

4.7 kB

URL HTTP/1.1
healthydogfood.com/
IP
45.79.19.196:0
ASN
#63949 Linode, LLC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (305)
Size
4.7 kB (4678 bytes)
Hash
c70037918c140d50e23f77a655584980
8b15737093c7d20735680938cb4606fa5293333d
af372a6b0ee08ee7c114788a9c54ccef619dfe55e1ab26b59434b062efdde6ee

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: healthydogfood.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
server: openresty/1.13.6.1
date: Mon, 19 Dec 2022 08:26:10 GMT
content-type: text/html; charset=utf-8
content-length: 4678
vary: Accept-Language
content-language: en
connection: close

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 19 Dec 2022 08:26:10 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

healthydogfood.com/mtm/async/.eJxdi0sOwjAMBe_iZYkalnzEWZBJnY-U1CF1Iajq3UmBFbuZN3oLzCXACTQowOKmho0KWSpUvuJ5kuuIiZp6wij-NbCzzENvOG0_YyhLq0JVtJcUFeYcg0EJPOq6Lbv6v6Z4vl_2_VGFhI40PoL94ZNuWXW6-_QDrG98Cjc1:1p7BTO:fqzA9_wQtcXOfrXvC8kCi_q2kTM/1/

45.79.19.196

200 OK

512 B

URL HTTP/1.1
healthydogfood.com/mtm/async/.eJxdi0sOwjAMBe_iZYkalnzEWZBJnY-U1CF1Iajq3UmBFbuZN3oLzCXACTQowOKmho0KWSpUvuJ5kuuIiZp6wij-NbCzzENvOG0_YyhLq0JVtJcUFeYcg0EJPOq6Lbv6v6Z4vl_2_VGFhI40PoL94ZNuWXW6-_QDrG98Cjc1:1p7BTO:fqzA9_wQtcXOfrXvC8kCi_q2kTM/1/
IP
45.79.19.196:0
ASN
#63949 Linode, LLC

File type
ASCII text, with very long lines (512), with no line terminators
Size
512 B (512 bytes)
Hash
0a20aa6cd39f24acbad544889e64dd4e
b64b336189f5a97b8875c63ed84708e118cf1c6e
8c32d319948cad25ff41234b22a5a4b7bc04a319237f185682408717d37d0a75

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /mtm/async/.eJxdi0sOwjAMBe_iZYkalnzEWZBJnY-U1CF1Iajq3UmBFbuZN3oLzCXACTQowOKmho0KWSpUvuJ5kuuIiZp6wij-NbCzzENvOG0_YyhLq0JVtJcUFeYcg0EJPOq6Lbv6v6Z4vl_2_VGFhI40PoL94ZNuWXW6-_QDrG98Cjc1:1p7BTO:fqzA9_wQtcXOfrXvC8kCi_q2kTM/1/ HTTP/1.1
Host: healthydogfood.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://healthydogfood.com/
Connection: keep-alive

HTTP/1.1 200 OK
server: openresty/1.13.6.1
date: Mon, 19 Dec 2022 08:26:10 GMT
content-type: text/html; charset=utf-8
content-length: 512
x-mtm-path: 7
x-mtm-prov: 300:0.00;308:0.00
x-mtm-rd: 0.00
vary: Accept-Language
content-language: en
set-cookie: mtm_delivered=WyJoZWFsdGh5ZG9nZm9vZC5jb20iLCJodHRwOi8vd3d3Ni5oZWFsdGh5ZG9nZm9vZC5jb20vP3RlbXBsYXRlPUFSUk9XXzMmdGRmcz0xJnNfdG9rZW49MTY3MTQzODM3MC4wNDI3MzUwMDAwJnV1aWQ9MTY3MTQzODM3MC4wNDI3MzUwMDAwJnRlcm09R2V0JTIwQW4lMjBPbmxpbmUlMjBEZWdyZWUmdGVybT1CMkIlMjBUcmF2ZWwlMjBCb29raW5nJTIwU3lzdGVtJnRlcm09U29jaWFsJTIwTWVkaWElMjBBdXRvbWF0aW9uJTIwTWFya2V0aW5nJTIwU29mdHdhcmUmdGVybT1HZXQlMjBBbiUyME9ubGluZSUyMERlZ3JlZSZ0ZXJtPUxvd2VzdCUyMENhciUyMEluc3VyYW5jZSUyMFJhdGVzJnRlcm09TWFrZSUyME1vbmV5JTIwRnJvbSUyMEhvbWUmdGVybT1CZXN0JTIwTW9ydGdhZ2UlMjBSZWZpbmFuY2luZyUyMFJhdGVzJnRlcm09TG93ZXN0JTIwQ2FyJTIwSW5zdXJhbmNlJTIwUmF0ZXMmdGVybT1Tb2NpYWwlMjBNZWRpYSUyMEF1dG9tYXRpb24lMjBNYXJrZXRpbmclMjBTb2Z0d2FyZSZzZWFyY2hib3g9MCZzaG93RG9tYWluPTEmYmFja2ZpbGw9MCIsMSwiMjAyMi0xMi0xOSAwODoyNjoxMCIsMSwiMTY3MTQzODM3MC4wNDI3MzUwMDAwIiwzMDAsbnVsbCxudWxsXQ:1p7BTO:Q6H4i-nz1emvg5uZ-i-HuJjY2q4; expires=Mon, 19-Dec-2022 09:26:10 GMT; Max-Age=3600; Path=/
connection: close

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 19 Dec 2022 07:33:24 GMT
age: 3167
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

www6.healthydogfood.com/?template=ARROW_3&tdfs=1&s_token=1671438370.0427350000&uuid=1671438370.0427350000&term=Get%20An%20Online%20Degree&term=B2B%20Travel%20Booking%20System&term=Social%20Media%20Automation%20Marketing%20Software&term=Get%20An%20Online%20Degree&term=Lowest%20Car%20Insurance%20Rates&term=Make%20Money%20From%20Home&term=Best%20Mortgage%20Refinancing%20Rates&term=Lowest%20Car%20Insurance%20Rates&term=Social%20Media%20Automation%20Marketing%20Software&searchbox=0&showDomain=1&backfill=0

35.186.238.101

200 OK

2.6 kB

URL HTTP/1.1
www6.healthydogfood.com/?template=ARROW_3&tdfs=1&s_token=1671438370.0427350000&uuid=1671438370.0427350000&term=Get%20An%20Online%20Degree&term=B2B%20Travel%20Booking%20System&term=Social%20Media%20Automation%20Marketing%20Software&term=Get%20An%20Online%20Degree&term=Lowest%20Car%20Insurance%20Rates&term=Make%20Money%20From%20Home&term=Best%20Mortgage%20Refinancing%20Rates&term=Lowest%20Car%20Insurance%20Rates&term=Social%20Media%20Automation%20Marketing%20Software&searchbox=0&showDomain=1&backfill=0
IP
35.186.238.101:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2551), with no line terminators
Size
2.6 kB (2551 bytes)
Hash
41f66bb0ac50f2d851236170e7c71341
59bcec216302151922219b51be8ad8ab6d0b8384
ec99cca58b612ce268e6ada818dfcec0acc22dd1bbe372487be9abbdd07ce073

HTTP Headers

GET /?template=ARROW_3&tdfs=1&s_token=1671438370.0427350000&uuid=1671438370.0427350000&term=Get%20An%20Online%20Degree&term=B2B%20Travel%20Booking%20System&term=Social%20Media%20Automation%20Marketing%20Software&term=Get%20An%20Online%20Degree&term=Lowest%20Car%20Insurance%20Rates&term=Make%20Money%20From%20Home&term=Best%20Mortgage%20Refinancing%20Rates&term=Lowest%20Car%20Insurance%20Rates&term=Social%20Media%20Automation%20Marketing%20Software&searchbox=0&showDomain=1&backfill=0 HTTP/1.1
Host: www6.healthydogfood.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://healthydogfood.com/
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: openresty
Date: Mon, 19 Dec 2022 08:26:11 GMT
Content-Type: text/html
Content-Length: 2551
Last-Modified: Tue, 06 Dec 2022 22:15:37 GMT
ETag: "638fbf09-9f7"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_Z4/07ee3Hm5fQiITh1/b8KQ/vBh1uBYLGJycZ2n+m1gdnx7iBKB1udnTdvbQgF0+PRw4aKdfi0IXlREoOman4g
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Set-Cookie: caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400;
country=NO;Path=/;Max-Age=86400;
city="";Path=/;Max-Age=86400;
expiry_partner=;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
0bc27cdcd6c42d7f8eece6c074bc452f
ff1234b58f7381f51f9082c1ef4894b1ac5700ff
672fc3b7ba7ee7a8b376c73a86a5bab00b1a1aead54c3ca64c0bff83d831348e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6197
Cache-Control: max-age=95037
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 08:26:11 GMT
Etag: "639ed82b-1d7"
Expires: Tue, 20 Dec 2022 10:50:08 GMT
Last-Modified: Sun, 18 Dec 2022 09:06:51 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471

img1.wsimg.com/parking-lander/static/js/main.4e219663.chunk.js

23.36.79.16

200 OK

58 kB

URL HTTP/2
img1.wsimg.com/parking-lander/static/js/main.4e219663.chunk.js
IP
23.36.79.16:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (65459)
Size
58 kB (58202 bytes)
Hash
feb46b3c6b7556a8bf123a5e87ffd2b5
aff2efba814012e9fe1586055599069f77e6a062
6f8d46c42987c0d7b471b54065e6b8fd6e965452ccc5c2fcd12f25e5362b5fd7

HTTP Headers

GET /parking-lander/static/js/main.4e219663.chunk.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www6.healthydogfood.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: ePBtPNltighZ03JBS/Xu3LYeSA7F1yzEuIL6FXs/YdArb0qYS2ZncKxSX45UyFn4EY1mPti8L0Y=
x-amz-request-id: Q5Y8PK0VHGD0XQRS
last-modified: Fri, 16 Sep 2022 16:45:04 GMT
etag: "87b518e8e45487e774f8d47f2dc0026f"
x-amz-server-side-encryption: AES256
x-amz-version-id: 2Wom95JLG5jhnN_DEOMzqRfOKsQDbi7Z
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Tue, 19 Dec 2023 08:26:11 GMT
date: Mon, 19 Dec 2022 08:26:11 GMT
content-length: 58202
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/parking-lander/static/js/2.5940ae1c.chunk.js

23.36.79.16

200 OK

136 kB

URL HTTP/2
img1.wsimg.com/parking-lander/static/js/2.5940ae1c.chunk.js
IP
23.36.79.16:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (65462)
Size
136 kB (135541 bytes)
Hash
ed301c77cb4cfefcf054b77502912c41
0139ede39adaa61fdae8dfb9c7f6f8600025599b
10ebdcf812a393d96af2bf99a2e5ddf8381f37b2fa85698c4c25e7c03350712c

HTTP Headers

GET /parking-lander/static/js/2.5940ae1c.chunk.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www6.healthydogfood.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: Ft4hH0fy+dFAnl68G4QyXJ3pS5VY+/K35zEViDI+w7z+sTosafl2fAW4g9NrUhyUgJ7JKbozLe8=
x-amz-request-id: FBDK3VS1K6HF0NCR
last-modified: Fri, 16 Sep 2022 17:52:00 GMT
etag: "04bb6e8d9135d976f28e9ba68fbc6f67"
x-amz-server-side-encryption: AES256
x-amz-version-id: 4zafttojs22R6rxiZs_M0ICLL.vyZxyd
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Tue, 19 Dec 2023 08:26:11 GMT
date: Mon, 19 Dec 2022 08:26:11 GMT
content-length: 135541
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
03c8258e1c16364384a10c746732e080
24f121ea76ab812448228b238fadc421f5c4d6c8
9dfb03f619014cd8683030fb68b00b8a0befd9ad9755fcd77c69a2a4e163d397

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 08:26:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c7067973a30c54b2897aeeb5e204f014
7b0711fd3909e48347441e4edc9c429af69595a9
b224be5e7ec78abaa46ab333f0adee535cb24e5bc4b2b721c441e4061043a467

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 08:26:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

push.services.mozilla.com/

54.202.70.174

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.202.70.174:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 1VDQHz1OMbRwpQf2qySoOQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: cwaj8ZbCXtenQMrYgGAB89hrra0=

www.google.com/adsense/domains/caf.js

216.58.207.228

200 OK

56 kB

URL HTTP/2
www.google.com/adsense/domains/caf.js
IP
216.58.207.228:0
ASN
#15169 GOOGLE

File type
data
Size
56 kB (56067 bytes)
Hash
64e5445968aee0d0fa02019bf65fbbc3
749227e9671024d02ac7f351c30081c8cc208942
2da92414521f440b829a8d5951fe60c784f6f73de1c6839f8a75bc510ed813aa

HTTP Headers

GET /adsense/domains/caf.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www6.healthydogfood.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Mon, 19 Dec 2022 08:26:11 GMT
expires: Mon, 19 Dec 2022 08:26:11 GMT
cache-control: private, max-age=3600
etag: "14181701328128387770"
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

img1.wsimg.com/parking-lander/static/js/2.5940ae1c.chunk.js

23.36.79.16

304 Not Modified

0 B

URL HTTP/2
img1.wsimg.com/parking-lander/static/js/2.5940ae1c.chunk.js
IP
23.36.79.16:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /parking-lander/static/js/2.5940ae1c.chunk.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www6.healthydogfood.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Fri, 16 Sep 2022 17:52:00 GMT
If-None-Match: "04bb6e8d9135d976f28e9ba68fbc6f67"
Cache-Control: max-age=0
TE: trailers

HTTP/2 304 Not Modified
content-type: application/javascript
last-modified: Fri, 16 Sep 2022 17:52:00 GMT
etag: "04bb6e8d9135d976f28e9ba68fbc6f67"
cache-control: max-age=31536000
expires: Tue, 19 Dec 2023 08:26:11 GMT
date: Mon, 19 Dec 2022 08:26:11 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

img1.wsimg.com/parking-lander/static/js/main.4e219663.chunk.js

23.36.79.16

304 Not Modified

0 B

URL HTTP/2
img1.wsimg.com/parking-lander/static/js/main.4e219663.chunk.js
IP
23.36.79.16:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /parking-lander/static/js/main.4e219663.chunk.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www6.healthydogfood.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Fri, 16 Sep 2022 16:45:04 GMT
If-None-Match: "87b518e8e45487e774f8d47f2dc0026f"
Cache-Control: max-age=0
TE: trailers

HTTP/2 304 Not Modified
content-type: application/javascript
last-modified: Fri, 16 Sep 2022 16:45:04 GMT
etag: "87b518e8e45487e774f8d47f2dc0026f"
cache-control: max-age=31536000
expires: Tue, 19 Dec 2023 08:26:11 GMT
date: Mon, 19 Dec 2022 08:26:11 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

ocsp.godaddy.com/

192.124.249.22

200 OK

1.8 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.22:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1777 bytes)
Hash
b9d22dd0c550fa22f82591fa82bac9ce
74b2ffaec11e95e55129f56530abf2d2063a8b9c
f93405215265d72c7378fd01c1baba973eb62112dcfd9c392448ce34e01d85dc

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 19 Dec 2022 08:26:11 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 18 Dec 2022 21:38:13 GMT
Expires: Mon, 19 Dec 2022 21:38:13 GMT
ETag: "74b2ffaec11e95e55129f56530abf2d2063a8b9c"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

api.aws.parking.godaddy.com/v1/parkingEvents

100.26.85.29

200 OK

0 B

URL HTTP/2
api.aws.parking.godaddy.com/v1/parkingEvents
IP
100.26.85.29:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /v1/parkingEvents HTTP/1.1
Host: api.aws.parking.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://www6.healthydogfood.com/
Origin: http://www6.healthydogfood.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Cache-Control: max-age=0

HTTP/2 200 OK
date: Mon, 19 Dec 2022 08:26:12 GMT
content-type: text/plain
content-length: 0
set-cookie: AWSALB=P/hC68qRLquFLVuMWe7/y6RsDNFUX9RWUpkDm8QG7TUTpDyMnSKjKHku21i12+cXbOVKafheSeQYuN9OSRu9Whhp/dhMzZe/XwbVvIsw3uyh4j+kewPQPpPaQ3nf; Expires=Mon, 26 Dec 2022 08:26:12 GMT; Path=/
AWSALBCORS=P/hC68qRLquFLVuMWe7/y6RsDNFUX9RWUpkDm8QG7TUTpDyMnSKjKHku21i12+cXbOVKafheSeQYuN9OSRu9Whhp/dhMzZe/XwbVvIsw3uyh4j+kewPQPpPaQ3nf; Expires=Mon, 26 Dec 2022 08:26:12 GMT; Path=/; SameSite=None; Secure
access-control-allow-methods: POST
access-control-allow-headers: content-type
access-control-allow-origin: *
X-Firefox-Spdy: h2

api.aws.parking.godaddy.com/v1/parkingEvents

100.26.85.29

200 OK

0 B

URL HTTP/2
api.aws.parking.godaddy.com/v1/parkingEvents
IP
100.26.85.29:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /v1/parkingEvents HTTP/1.1
Host: api.aws.parking.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www6.healthydogfood.com/
Content-Type: application/json
Origin: http://www6.healthydogfood.com
Content-Length: 717
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 19 Dec 2022 08:26:12 GMT
content-type: text/plain
content-length: 0
set-cookie: AWSALB=XZmhMdqEbVZJFV2ory3Q9iyuSLo4mDH5XgKKdQEu0lutNHwnH6BPZvcYT9f9J4qLOp9+k0JTwvk42ixV12LaHqECZHrTlEiTIepZFKzZdfClRy72gQntrNqpLzPl; Expires=Mon, 26 Dec 2022 08:26:12 GMT; Path=/
AWSALBCORS=XZmhMdqEbVZJFV2ory3Q9iyuSLo4mDH5XgKKdQEu0lutNHwnH6BPZvcYT9f9J4qLOp9+k0JTwvk42ixV12LaHqECZHrTlEiTIepZFKzZdfClRy72gQntrNqpLzPl; Expires=Mon, 26 Dec 2022 08:26:12 GMT; Path=/; SameSite=None; Secure
access-control-allow-origin: *
X-Firefox-Spdy: h2

api.aws.parking.godaddy.com/v1/domains/domain?domain=www6.healthydogfood.com&portfolioId=

100.26.85.29

200 OK

0 B

URL HTTP/2
api.aws.parking.godaddy.com/v1/domains/domain?domain=www6.healthydogfood.com&portfolioId=
IP
100.26.85.29:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /v1/domains/domain?domain=www6.healthydogfood.com&portfolioId= HTTP/1.1
Host: api.aws.parking.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-request-id
Referer: http://www6.healthydogfood.com/
Origin: http://www6.healthydogfood.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Cache-Control: max-age=0

HTTP/2 200 OK
date: Mon, 19 Dec 2022 08:26:12 GMT
content-length: 0
set-cookie: AWSALB=+/9hsTigQ8qDvYrFq9HjmGTTOpsUaKLSirwJwQ4s7l7A1QbV/FMcMzRYcEecPkJR4d4ENpU6zOZ8DGM2ShW5fclc43q4V4f7L9EEkuc0oel27cHvqqoI+1p53wdz; Expires=Mon, 26 Dec 2022 08:26:12 GMT; Path=/
AWSALBCORS=+/9hsTigQ8qDvYrFq9HjmGTTOpsUaKLSirwJwQ4s7l7A1QbV/FMcMzRYcEecPkJR4d4ENpU6zOZ8DGM2ShW5fclc43q4V4f7L9EEkuc0oel27cHvqqoI+1p53wdz; Expires=Mon, 26 Dec 2022 08:26:12 GMT; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
access-control-allow-headers: X-Request-Id
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: http://www6.healthydogfood.com
access-control-max-age: 600
x-request-id: T-eMKpxv
X-Firefox-Spdy: h2

api.aws.parking.godaddy.com/v1/domains/domain?domain=www6.healthydogfood.com&portfolioId=

100.26.85.29

200 OK

843 B

URL HTTP/2
api.aws.parking.godaddy.com/v1/domains/domain?domain=www6.healthydogfood.com&portfolioId=
IP
100.26.85.29:0
ASN
#14618 AMAZON-AES

File type
JSON data\012- , ASCII text, with very long lines (842)
Size
843 B (843 bytes)
Hash
780b970c79569c15529bb332a9a26e9e
98deacc24412fafbe7ed9e4666155640b34ec6ad
6fa6e4d7aa84fa3f40ce18e2e133d16bb6fe2c0b50af8584de04577714146098

HTTP Headers

GET /v1/domains/domain?domain=www6.healthydogfood.com&portfolioId= HTTP/1.1
Host: api.aws.parking.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www6.healthydogfood.com/
X-Request-Id: 30806ae0-1b22-44d0-9a08-06d82a8a938f
Origin: http://www6.healthydogfood.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 19 Dec 2022 08:26:12 GMT
content-type: application/json
content-length: 843
set-cookie: AWSALB=rC/Hf1uTC49vIHzuLWk122SslkSRRdyzvjqowBMQkSZlYRZVOThPu1l4qHf0mqa0N2GjW3udCqyQLWsde8peyYZDjJL5Y3X4UVsui6HALAs+WTCuLRPJtBx9oAmu; Expires=Mon, 26 Dec 2022 08:26:12 GMT; Path=/
AWSALBCORS=rC/Hf1uTC49vIHzuLWk122SslkSRRdyzvjqowBMQkSZlYRZVOThPu1l4qHf0mqa0N2GjW3udCqyQLWsde8peyYZDjJL5Y3X4UVsui6HALAs+WTCuLRPJtBx9oAmu; Expires=Mon, 26 Dec 2022 08:26:12 GMT; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
access-control-allow-origin: http://www6.healthydogfood.com
access-control-max-age: 600
x-request-id: 30806ae0-1b22-44d0-9a08-06d82a8a938f
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0a629ae1225bc14881cd190ba5b7a62a
f524f2c5446ad5e5299001cef5721fbda6ea6e96
259562cb753ef25574c4345ba8eba508b8d1f38e08121f2adf1bbfe2115e230b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 08:26:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

partner.googleadservices.com/gampad/cookie.js?domain=www6.healthydogfood.com&client=dp-namemedia08_3ph&product=SAS&callback=__sasCookie

216.58.207.226

200 OK

248 B

URL HTTP/2
partner.googleadservices.com/gampad/cookie.js?domain=www6.healthydogfood.com&client=dp-namemedia08_3ph&product=SAS&callback=__sasCookie
IP
216.58.207.226:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (376), with no line terminators
Size
248 B (248 bytes)
Hash
da83c4d5c0d9064c22ff9077f1d43386
e691669547138b9623d8d32acc5dde6719db7ed7
ab0524c85ae1bbe9a0e8f8d3ed32626353661a488655147766c450cb4ff91dc4

HTTP Headers

GET /gampad/cookie.js?domain=www6.healthydogfood.com&client=dp-namemedia08_3ph&product=SAS&callback=__sasCookie HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www6.healthydogfood.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Dec 2022 08:26:12 GMT
server: cafe
cache-control: private
content-length: 248
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0a629ae1225bc14881cd190ba5b7a62a
f524f2c5446ad5e5299001cef5721fbda6ea6e96
259562cb753ef25574c4345ba8eba508b8d1f38e08121f2adf1bbfe2115e230b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 08:26:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
01b5c4e0ba6775471242d7e4cadee177
3eb321e5a94c9fe258113ce260fe64c1efef45fe
15bf058f5239aaa97a6138e8c005f0b6114f9857c4d61baa17214d470561b8df

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 08:26:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%231967d2

216.58.207.225

200 OK

272 B

URL HTTP/2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/search.svg?c=%231967d2
IP
216.58.207.225:0
ASN
#15169 GOOGLE

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (390)
Size
272 B (272 bytes)
Hash
bbbac37f0b6e29a6099e4aa7cb19d6ca
0acafe95e2141f0af6109203efeb2d98e6b926c6
a3d7b37475de5a3a350d4dc4790f14a6a5f4045726d2eae4cbe9bd59aeba2fe2

HTTP Headers

GET /ad_icons/standard/publisher_icon_image/search.svg?c=%231967d2 HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 272
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Sun, 18 Dec 2022 23:04:48 GMT
expires: Mon, 19 Dec 2022 22:04:48 GMT
cache-control: public, max-age=82800
age: 33684
last-modified: Thu, 19 Dec 2019 14:15:00 GMT
content-type: image/svg+xml
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
01b5c4e0ba6775471242d7e4cadee177
3eb321e5a94c9fe258113ce260fe64c1efef45fe
15bf058f5239aaa97a6138e8c005f0b6114f9857c4d61baa17214d470561b8df

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 08:26:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff

216.58.207.225

200 OK

174 B

URL HTTP/2
afs.googleusercontent.com/ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff
IP
216.58.207.225:0
ASN
#15169 GOOGLE

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Size
174 B (174 bytes)
Hash
4de8b85c8915995b571bde50e231be7c
29c226ca7b9cbe1d44e5480ce95bbb42727b2d99
2ec9168c4507546748c5f400f5030031f0eb06f2aed8deaa11362c395bff4f7a

HTTP Headers

GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff HTTP/1.1
Host: afs.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.google.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers"
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]}
content-length: 174
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
date: Sun, 18 Dec 2022 15:03:14 GMT
expires: Mon, 19 Dec 2022 14:03:14 GMT
cache-control: public, max-age=82800
age: 62578
last-modified: Thu, 22 Oct 2020 21:45:00 GMT
content-type: image/svg+xml
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
01b5c4e0ba6775471242d7e4cadee177
3eb321e5a94c9fe258113ce260fe64c1efef45fe
15bf058f5239aaa97a6138e8c005f0b6114f9857c4d61baa17214d470561b8df

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 08:26:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b52a05c34a7c3eaee8f5c1f73954364c
89c5023a0c43860efd362d0d2751a0ea9a204f54
94de3b3351ec8035986be412843212eebe4a3c9d6521b2a0c922870d5365adb8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94DE3B3351EC8035986BE412843212EEBE4A3C9D6521B2A0C922870D5365ADB8"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8193
Expires: Mon, 19 Dec 2022 10:42:45 GMT
Date: Mon, 19 Dec 2022 08:26:12 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b52a05c34a7c3eaee8f5c1f73954364c
89c5023a0c43860efd362d0d2751a0ea9a204f54
94de3b3351ec8035986be412843212eebe4a3c9d6521b2a0c922870d5365adb8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94DE3B3351EC8035986BE412843212EEBE4A3C9D6521B2A0C922870D5365ADB8"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8193
Expires: Mon, 19 Dec 2022 10:42:45 GMT
Date: Mon, 19 Dec 2022 08:26:12 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b52a05c34a7c3eaee8f5c1f73954364c
89c5023a0c43860efd362d0d2751a0ea9a204f54
94de3b3351ec8035986be412843212eebe4a3c9d6521b2a0c922870d5365adb8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94DE3B3351EC8035986BE412843212EEBE4A3C9D6521B2A0C922870D5365ADB8"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8193
Expires: Mon, 19 Dec 2022 10:42:45 GMT
Date: Mon, 19 Dec 2022 08:26:12 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b52a05c34a7c3eaee8f5c1f73954364c
89c5023a0c43860efd362d0d2751a0ea9a204f54
94de3b3351ec8035986be412843212eebe4a3c9d6521b2a0c922870d5365adb8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94DE3B3351EC8035986BE412843212EEBE4A3C9D6521B2A0C922870D5365ADB8"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8193
Expires: Mon, 19 Dec 2022 10:42:45 GMT
Date: Mon, 19 Dec 2022 08:26:12 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b52a05c34a7c3eaee8f5c1f73954364c
89c5023a0c43860efd362d0d2751a0ea9a204f54
94de3b3351ec8035986be412843212eebe4a3c9d6521b2a0c922870d5365adb8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94DE3B3351EC8035986BE412843212EEBE4A3C9D6521B2A0C922870D5365ADB8"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8193
Expires: Mon, 19 Dec 2022 10:42:45 GMT
Date: Mon, 19 Dec 2022 08:26:12 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4e12be4-4d3a-4c89-acc3-9f2634b84373.jpeg

34.120.237.76

200 OK

5.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4e12be4-4d3a-4c89-acc3-9f2634b84373.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.7 kB (5654 bytes)
Hash
8576327b06d5d8259e87bfeb71761ff5
2b2e5694e77b30f2e2cdfddd8ad616be214c9df2
377ffbcb85710900d97b1d99522a8087a6c66bcb778be42da806283cae833715

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4e12be4-4d3a-4c89-acc3-9f2634b84373.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5654
x-amzn-requestid: b9f6e88a-f07b-4c6c-b823-9b9e928274ee
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dKtB8Eb5oAMF3gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639a8ed9-3c8888ca41c995d67a09fa50;Sampled=0
x-amzn-remapped-date: Thu, 15 Dec 2022 03:04:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FaoiV9Jr3-1aqI-rVbXAYEMTsG_cjqVxmr0di-CbJaQBwIbb6BRg6A==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Dec 2022 06:05:02 GMT
age: 8470
etag: "2b2e5694e77b30f2e2cdfddd8ad616be214c9df2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F956cf952-1c2d-4c51-b322-8a251d3893bf.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.4 kB (4362 bytes)
Hash
43c9ed63c9760a5b3826550e59a96f43
912a87f2df4a93717a3817bb9c9bf0071b2fce7e
5e75e2e9bbc0d3e992f72257923c97ff8d037fcbf5ccf092e100ae26af2b2d89

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F956cf952-1c2d-4c51-b322-8a251d3893bf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4362
x-amzn-requestid: e88d6aea-c8f7-45e5-9f10-07bc6efb4b9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dObYsEa1IAMFa_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639c0c37-1f4852530ab1b5b73a088601;Sampled=0
x-amzn-remapped-date: Fri, 16 Dec 2022 06:12:07 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QIK3QHtic45T4AGzPHbGnLqJ41ynolJ48u3_-xk_BJ75_OJbCXt2NQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Dec 2022 21:52:39 GMT
age: 38013
etag: "912a87f2df4a93717a3817bb9c9bf0071b2fce7e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61dd0e23-c172-4f68-b254-9fd26e2782f6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.7 kB (5710 bytes)
Hash
5d9d95001bfc942895a41fb4bbd50c56
67e1f40fbf45d7f32e4bd05f7c9e71f352483fa9
042c3809a802ef44ff6de8a270194cdf69cc3ba9d8f5192110dda7829d2d52d8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61dd0e23-c172-4f68-b254-9fd26e2782f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5710
x-amzn-requestid: 9e587daa-7632-4765-a8c5-6cea13058bac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dNQQJEp6IAMF1Og=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639b9400-63c04fa4691c32f914301a3d;Sampled=0
x-amzn-remapped-date: Thu, 15 Dec 2022 21:39:12 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cRZhQNysDphRjUTZ7bCgTbwlYYVWgXvMMmPJSv6RysKbK0bWOY1cpA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Dec 2022 21:53:55 GMT
age: 37937
etag: "67e1f40fbf45d7f32e4bd05f7c9e71f352483fa9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

api.aws.parking.godaddy.com/v1/parkingEvents

100.26.85.29

200 OK

0 B

URL HTTP/2
api.aws.parking.godaddy.com/v1/parkingEvents
IP
100.26.85.29:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /v1/parkingEvents HTTP/1.1
Host: api.aws.parking.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www6.healthydogfood.com/
Content-Type: application/json
Origin: http://www6.healthydogfood.com
Content-Length: 740
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 19 Dec 2022 08:26:12 GMT
content-type: text/plain
content-length: 0
set-cookie: AWSALB=MJrldeAxwo8ofKR4mnjSvb3VUQXNHt0aLFCOlTu7k9MFPmc5MDUqQhLgyvq1R7sFI8c2MDewd6/rhK7hPh2y9sHpD2lM4u1csIcq6v7mhyqudVNm0CpoYKdn4yM5; Expires=Mon, 26 Dec 2022 08:26:12 GMT; Path=/
AWSALBCORS=MJrldeAxwo8ofKR4mnjSvb3VUQXNHt0aLFCOlTu7k9MFPmc5MDUqQhLgyvq1R7sFI8c2MDewd6/rhK7hPh2y9sHpD2lM4u1csIcq6v7mhyqudVNm0CpoYKdn4yM5; Expires=Mon, 26 Dec 2022 08:26:12 GMT; Path=/; SameSite=None; Secure
access-control-allow-origin: *
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47778af6-2d49-4ee8-b5bf-2e8c1140cce5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.1 kB (9058 bytes)
Hash
e6c714628a486b8d09101fe1115b4a25
a859bec81457e5b3511fb7612b65bcd4be790f21
41586527c64614c69c2833d2eb9a0e5e03906388a39ae16443b45dd6885329af

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47778af6-2d49-4ee8-b5bf-2e8c1140cce5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9058
x-amzn-requestid: 30f541b7-557c-45c6-a639-596ec624d6b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dVJtzFJPIAMFaow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639ebcbe-221f45c41cc4ac943f78ce6c;Sampled=0
x-amzn-remapped-date: Sun, 18 Dec 2022 07:09:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: f_sUIMBle-AT5Od_IJdlhNc1razIfG8LYIi1tEsIyWtMRBs063gjwQ==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Dec 2022 07:18:00 GMT
age: 4092
etag: "a859bec81457e5b3511fb7612b65bcd4be790f21"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbedc7d70-00c3-409b-9b46-11cbe9909f2b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12161 bytes)
Hash
71e9a308430eff340bb55c56b64fcc63
63d49b26322a1dca8ed669c1abafc27ee7f7c4b2
e3c8917124f2d13de6d1c0a1f1539f035abef31bbbf2246e77db44d9a3e29b61

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbedc7d70-00c3-409b-9b46-11cbe9909f2b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12161
x-amzn-requestid: 6ad8283c-3d3d-41f0-ada7-1b0d20568aa6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dXIZIGZFIAMFubg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639f876d-0bc6f28d582f63b35a494472;Sampled=0
x-amzn-remapped-date: Sun, 18 Dec 2022 21:34:37 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gJgluMuS-cEZnEk8LNtVJk02T883tD8OZJy4BftXFGhJ6tHeLGrcqw==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Dec 2022 21:37:59 GMT
age: 38893
etag: "63d49b26322a1dca8ed669c1abafc27ee7f7c4b2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1283f05-ca54-470d-bbc4-9b6d4386b138.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8722 bytes)
Hash
e0773ba795a9e9a70038c6d8c64ebfa2
3d1db768017331da152d0df6cf5bc6ea6c813b83
46c25962e3bad9785a77bd8f51021460bcf44e9907c725c38329b6dadf560a44

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1283f05-ca54-470d-bbc4-9b6d4386b138.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8722
x-amzn-requestid: 88a7ab87-3bee-429d-9d3d-8969f6908c65
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dKGGkH2UIAMF78Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639a5090-072ab9b341d4c00622492ee8;Sampled=0
x-amzn-remapped-date: Wed, 14 Dec 2022 22:39:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lpuH1nfNTFrtEUzxSDBEtunOkPU7Y5cP5PSVlJQ43YkRBrRX4OukPg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Dec 2022 21:38:25 GMT
age: 38867
etag: "3d1db768017331da152d0df6cf5bc6ea6c813b83"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
88f7ffcec7665d3269e674ccfbb30de6
ab113b569d6c879f142c486a28141cbafa3b7b3e
08b9960f1fabe66004ab9401bac89980827d4ce45d2f353e11fc1cb78b2cc04c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08B9960F1FABE66004AB9401BAC89980827D4CE45D2F353E11FC1CB78B2CC04C"
Last-Modified: Sat, 17 Dec 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8139
Expires: Mon, 19 Dec 2022 10:41:51 GMT
Date: Mon, 19 Dec 2022 08:26:12 GMT
Connection: keep-alive

postback.trafficmotor.com/sn/

45.79.38.145

200 OK

0 B

URL HTTP/1.1
postback.trafficmotor.com/sn/
IP
45.79.38.145:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /sn/ HTTP/1.1
Host: postback.trafficmotor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://www6.healthydogfood.com/
Origin: http://www6.healthydogfood.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: openresty/1.13.6.1
Date: Mon, 19 Dec 2022 08:26:13 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: close
Allow: HEAD, GET, POST, OPTIONS
Access-Control-Allow-Origin: http://www6.healthydogfood.com
Access-Control-Allow-Methods: DELETE, GET, HEAD, OPTIONS, PATCH, POST, PUT
Vary: Origin
Access-Control-Allow-Headers: content-type

postback.trafficmotor.com/sn/

45.79.38.145

200 OK

3 B

URL HTTP/1.1
postback.trafficmotor.com/sn/
IP
45.79.38.145:0
ASN
#63949 Linode, LLC

File type
JSON data\012- , ASCII text
Size
3 B (3 bytes)
Hash
8a80554c91d9fca8acb82f023de02f11
5f36b2ea290645ee34d943220a14b54ee5ea5be5
ca3d163bab055381827226140568f3bef7eaac187cebd76878e0b63e9e442356

HTTP Headers

POST /sn/ HTTP/1.1
Host: postback.trafficmotor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www6.healthydogfood.com/
Content-Type: application/json
Origin: http://www6.healthydogfood.com
Content-Length: 145
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: openresty/1.13.6.1
Date: Mon, 19 Dec 2022 08:26:13 GMT
Content-Type: application/json
Content-Length: 3
Connection: close
Access-Control-Allow-Origin: http://www6.healthydogfood.com
Vary: Origin

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (8)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations