13.78.225.32/
13.78.225.32200 OK 7.6 kB IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (776), with CRLF line terminators
Hash 1da86ccb4ae4ed6116a75a444175a606
719086167584783e72737d86bd13425af010b824
fea97971d6dd91184f2f98f26c5def57138032f0f8ffe12abd54264162b0dc68
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:13 GMT
Content-Type: text/html
Last-Modified: Wed, 20 Jun 2018 15:30:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5b2a7305-7a66"
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2351
Expires: Fri, 09 Dec 2022 23:34:25 GMT
Date: Fri, 09 Dec 2022 22:55:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2acd891dc6eb1f09f57a2b086791781
1e2088306501a61edcca1ade62c4d54f23b3b083
51148fed95cc00d60dc3640350f135b1b2763ff0e3cfbffc40f0948317894be9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9714
Expires: Sat, 10 Dec 2022 01:37:08 GMT
Date: Fri, 09 Dec 2022 22:55:14 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 22:08:21 GMT
content-type: application/json
age: 2813
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4601
Expires: Sat, 10 Dec 2022 00:11:55 GMT
Date: Fri, 09 Dec 2022 22:55:14 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: WD+9n2IqUTafevMG9EOD8Qchevso8gPgUDDXz2RJqFj8aAjej52SH1f/8RvXU8qdeskza0G69Bg=
x-amz-request-id: X1AW2FYKYWZC3A9D
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 22:48:33 GMT
age: 401
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 22:55:14 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
13.78.225.32/css/jquery.bxslider.css?v=12
13.78.225.32200 OK 1.1 kB URL HTTP/1.1 13.78.225.32/css/jquery.bxslider.css?v=12
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 76e1fa6f021cf493700708b20ee7b890
cb50a39c1140af651cea315aac6d129b26d1ce90
3827b89ccd24ffd50b3f5a80ae6ece99b833a81c5e5295a0e8c8ef3e7fbfb867
Analyzer Verdict Alert quad9 Sinkholed
GET /css/jquery.bxslider.css?v=12 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:14 GMT
Content-Type: text/css
Last-Modified: Sat, 09 Jun 2018 14:30:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5b1be474-d58"
Expires: Mon, 19 Dec 2022 22:55:14 GMT
Cache-Control: max-age=864000
Content-Encoding: gzip
13.78.225.32/css/bootstrap.min.css?v=12
13.78.225.32200 OK 4.4 kB URL HTTP/1.1 13.78.225.32/css/bootstrap.min.css?v=12
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (17135)
Hash e16bb0d59f927c34f46febce8ec288ca
e42e544b430a505a79f88ea30bd7a83fd60d01cc
0045ef82a699882bd6df1de9b84903513272e82cfc005a487526788e07aa1ad1
Analyzer Verdict Alert quad9 Sinkholed
GET /css/bootstrap.min.css?v=12 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:14 GMT
Content-Type: text/css
Last-Modified: Sat, 09 Jun 2018 09:24:42 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5b1b9cda-44a4"
Expires: Mon, 19 Dec 2022 22:55:14 GMT
Cache-Control: max-age=864000
Content-Encoding: gzip
13.78.225.32/js/jquery.custom-select.min.js?v=12
13.78.225.32200 OK 4.8 kB URL HTTP/1.1 13.78.225.32/js/jquery.custom-select.min.js?v=12
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (481), with CRLF line terminators
Hash eea63f1343f1be621bb5111a9820d06d
b8cf8d06ba19a8334a2f1e4a4a79b1e9f3aa743f
3d4b9c54f222c4a31ecf9fc68a13bf7d271a4509b2fb11a4f0279d3533007d47
Analyzer Verdict Alert quad9 Sinkholed
GET /js/jquery.custom-select.min.js?v=12 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:14 GMT
Content-Type: application/javascript
Last-Modified: Mon, 18 Jun 2018 09:00:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5b2774c8-3faf"
Expires: Mon, 19 Dec 2022 22:55:14 GMT
Cache-Control: max-age=864000
Content-Encoding: gzip
13.78.225.32/js/main.js?v=12
13.78.225.32200 OK 2.2 kB URL HTTP/1.1 13.78.225.32/js/main.js?v=12
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with CRLF line terminators
Hash 255ea8ffe96dcfe9fcfefacb5f703b2b
6cf347e07b720590e9e5f769f6405b25f7cd5229
8fe57f746d169c79545e3ef468de6ef611cca98b75436188e14fe11cb5f6a65b
Analyzer Verdict Alert quad9 Sinkholed
GET /js/main.js?v=12 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:14 GMT
Content-Type: application/javascript
Last-Modified: Wed, 20 Jun 2018 10:38:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5b2a2e8d-1adc"
Expires: Mon, 19 Dec 2022 22:55:14 GMT
Cache-Control: max-age=864000
Content-Encoding: gzip
13.78.225.32/css/style.css?v=25
13.78.225.32200 OK 8.6 kB URL HTTP/1.1 13.78.225.32/css/style.css?v=25
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash ed1d9d10726a8cb9c8f5683e248b6afe
5b59bbc437901a32ce6c1214a659ee93312d2be3
f470485b72aeb4ea3bd1681775803ed1757604dd29097ac69177a17fc99345a9
Analyzer Verdict Alert quad9 Sinkholed
GET /css/style.css?v=25 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:14 GMT
Content-Type: text/css
Last-Modified: Wed, 20 Jun 2018 15:30:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5b2a72fa-9c45"
Expires: Mon, 19 Dec 2022 22:55:14 GMT
Cache-Control: max-age=864000
Content-Encoding: gzip
13.78.225.32/css/jquery.custom-select.min.css?v=12
13.78.225.32200 OK 894 B URL HTTP/1.1 13.78.225.32/css/jquery.custom-select.min.css?v=12
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (2869)
Hash 776c77fb3f8b77479c09e27403b05b8e
d37503143155a7597ffb58700aa6152814fa792d
0767cca697a9ce06ddfe040e7180be3ea4e98bfc5a2cf667845d0a3ea1073c1c
Analyzer Verdict Alert quad9 Sinkholed
GET /css/jquery.custom-select.min.css?v=12 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:14 GMT
Content-Type: text/css
Last-Modified: Sat, 09 Jun 2018 20:24:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5b1c3760-b6f"
Expires: Mon, 19 Dec 2022 22:55:14 GMT
Cache-Control: max-age=864000
Content-Encoding: gzip
13.78.225.32/js/jquery-3.3.1.min.js?v=12
13.78.225.32200 OK 35 kB URL HTTP/1.1 13.78.225.32/js/jquery-3.3.1.min.js?v=12
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (65451)
Hash 83a94c0e4dce1975b10bee48bf41267b
8ae39295f64d891e367e49a0ff54e80067085bc9
ee39efe9eba01b524accd2ac9af7a458fecce60e1479df06b22dd4be6f6f5d28
Analyzer Verdict Alert quad9 Sinkholed
GET /js/jquery-3.3.1.min.js?v=12 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:14 GMT
Content-Type: application/javascript
Last-Modified: Sat, 09 Jun 2018 14:25:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5b1be369-1538f"
Expires: Mon, 19 Dec 2022 22:55:14 GMT
Cache-Control: max-age=864000
Content-Encoding: gzip
13.78.225.32/js/jquery.bxslider.min.js?v=12
13.78.225.32200 OK 19 kB URL HTTP/1.1 13.78.225.32/js/jquery.bxslider.min.js?v=12
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 8c0563afdaea3c4a1b52a3195a69d36d
9b00e1e82e609c44a6c435508419f6bf73061ea0
18fc0b368e3fea6537d193ae8540a73bad843738daae430d29b1b54a747536d7
Analyzer Verdict Alert quad9 Sinkholed
GET /js/jquery.bxslider.min.js?v=12 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:14 GMT
Content-Type: application/javascript
Last-Modified: Wed, 20 Jun 2018 09:27:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5b2a1e14-107df"
Expires: Mon, 19 Dec 2022 22:55:14 GMT
Cache-Control: max-age=864000
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 22:33:13 GMT
age: 1321
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e6be4d2155028ffff5d01ab6e7edf6da
07172071b5cf43c4cd7d7930b4ad8518ec1e32e9
4d8a5fa2362fd0910babd6d128d850d4460829468eb23d34ee5ee6eaa42d5a38
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6169
Cache-Control: max-age=129270
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 22:55:14 GMT
Etag: "6392faaf-1d7"
Expires: Sun, 11 Dec 2022 10:49:44 GMT
Last-Modified: Fri, 09 Dec 2022 09:06:55 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
13.78.225.32/img/employees/Ron.jpg?v=3
13.78.225.32200 OK 60 kB URL HTTP/1.1 13.78.225.32/img/employees/Ron.jpg?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 413x413, components 3\012- data
Hash ee891224d379022fc75e9dc4b51bfc22
dceb7139c2fb976eddc7af9d2f7f0ee431e174e4
0aa3fdbec7ba473f7a79e37c435322c2643d389fb506ec89859726b6ef835f34
Analyzer Verdict Alert quad9 Sinkholed
GET /img/employees/Ron.jpg?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:14 GMT
Content-Type: image/jpeg
Content-Length: 59701
Last-Modified: Wed, 20 Jun 2018 08:04:27 GMT
Connection: keep-alive
ETag: "5b2a0a8b-e935"
Expires: Mon, 19 Dec 2022 22:55:14 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/employees/Ohad.jpg?v=3
13.78.225.32200 OK 79 kB URL HTTP/1.1 13.78.225.32/img/employees/Ohad.jpg?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 420x430, components 3\012- data
Hash 6f7b2f9d60d76c5a4a1960e9ebf99b5e
9baa1cd616a8b6a0b72dbce716d2704a306bef18
2343808400ce970a46b6bb88380946434c7abea46202400c1d4a5fe1037e6672
Analyzer Verdict Alert quad9 Sinkholed
GET /img/employees/Ohad.jpg?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:14 GMT
Content-Type: image/jpeg
Content-Length: 79042
Last-Modified: Mon, 18 Jun 2018 07:07:36 GMT
Connection: keep-alive
ETag: "5b275a38-134c2"
Expires: Mon, 19 Dec 2022 22:55:14 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/fonts/almoni-dl-aaa-400.ttf
13.78.225.32200 OK 124 kB URL HTTP/1.1 13.78.225.32/fonts/almoni-dl-aaa-400.ttf
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type TrueType Font data, 18 tables, 1st "GDEF", 28 names, Macintosh, Copyright (c) 2012 by Avraham Cornfeld. All rights reserved.Almoni DL AAARegular1.300;AAA ;Almon\012- data
Size 124 kB (123584 bytes)
Hash 0400a9d98cf93d8cc60d6099a6703a54
d9210bda1ad814c954a0bf7b9761f9b8a247bb8c
ea0de92c31d9871cf30e8566f6b8d4c40aed35d0b7333db657cc80be4df9635c
Analyzer Verdict Alert quad9 Sinkholed
GET /fonts/almoni-dl-aaa-400.ttf HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/css/style.css?v=25
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:14 GMT
Content-Type: application/octet-stream
Content-Length: 123584
Last-Modified: Sat, 09 Jun 2018 11:15:34 GMT
Connection: keep-alive
ETag: "5b1bb6d6-1e2c0"
Accept-Ranges: bytes
13.78.225.32/img/team_2.png?v=3
13.78.225.32200 OK 138 kB URL HTTP/1.1 13.78.225.32/img/team_2.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 446 x 463, 8-bit/color RGBA, non-interlaced\012- data
Size 138 kB (138547 bytes)
Hash d9bb925a9189bd204f4abf6727aa33ca
61e051dd97fed7494e040dd16e9573d0194a5bd4
e34b9e3c75097da87a106d1598dbc0486b5f77e1c2325d7b0468291b64f5f8e7
Analyzer Verdict Alert quad9 Sinkholed
GET /img/team_2.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:14 GMT
Content-Type: image/png
Content-Length: 138547
Last-Modified: Sat, 09 Jun 2018 13:19:07 GMT
Connection: keep-alive
ETag: "5b1bd3cb-21d33"
Expires: Mon, 19 Dec 2022 22:55:14 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/team_1.png?v=3
13.78.225.32200 OK 147 kB URL HTTP/1.1 13.78.225.32/img/team_1.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 441 x 333, 8-bit/color RGBA, non-interlaced\012- data
Size 147 kB (146884 bytes)
Hash 37f020ba463d1c1b854c769f0619af0a
60a7e3980b8d63cecccfce53779111853acc470b
772cb4f2ed63ca49cd228ccf39266feff396eecfc71dd64882ad756b2a0510b8
Analyzer Verdict Alert quad9 Sinkholed
GET /img/team_1.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:14 GMT
Content-Type: image/png
Content-Length: 146884
Last-Modified: Sat, 09 Jun 2018 13:18:30 GMT
Connection: keep-alive
ETag: "5b1bd3a6-23dc4"
Expires: Mon, 19 Dec 2022 22:55:14 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/fonts/almoni-dl-aaa-900.ttf
13.78.225.32200 OK 113 kB URL HTTP/1.1 13.78.225.32/fonts/almoni-dl-aaa-900.ttf
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type TrueType Font data, 18 tables, 1st "GDEF", 29 names, Macintosh, Copyright (c) 2011 by Avraham Cornfeld. All rights reserved.Almoni DL AAARegular1.300;AAA ;Almon\012- data
Size 113 kB (113132 bytes)
Hash 1168d4f6706febf7ebd1d2c47a74c387
6becc0e07cb08bbb1fe2cfa1b2344dc30c5edc8f
b2a68b3f50877ce5d9a9589b61ed763ee464a5edcec992cd7a889eedf0fefb30
Analyzer Verdict Alert quad9 Sinkholed
GET /fonts/almoni-dl-aaa-900.ttf HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/css/style.css?v=25
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:14 GMT
Content-Type: application/octet-stream
Content-Length: 113132
Last-Modified: Sat, 09 Jun 2018 11:15:44 GMT
Connection: keep-alive
ETag: "5b1bb6e0-1b9ec"
Accept-Ranges: bytes
13.78.225.32/img/separator.png
13.78.225.32200 OK 1.3 kB URL HTTP/1.1 13.78.225.32/img/separator.png
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 432 x 42, 8-bit colormap, non-interlaced\012- data
Hash 741e554fc3cb71ac4609526438e1ed48
71e95141da5ca6f9f0dfdec03c189ba943fafee3
de4095530d08ff814a886d613541197bdddb5a879681853f2cdf8d402e8cae8d
Analyzer Verdict Alert quad9 Sinkholed
GET /img/separator.png HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/css/style.css?v=25
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: image/png
Content-Length: 1346
Last-Modified: Sat, 09 Jun 2018 09:27:53 GMT
Connection: keep-alive
ETag: "5b1b9d99-542"
Expires: Mon, 19 Dec 2022 22:55:15 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/triple_win.png
13.78.225.32200 OK 33 kB URL HTTP/1.1 13.78.225.32/img/triple_win.png
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 665 x 639, 8-bit/color RGBA, non-interlaced\012- data
Hash 049b76f98b23b8b8b8734e916fd17862
c0d44dc26c4a1232ec256b67c9ea95e85641ca54
6a9d856389035d179614190f32270cfbfbf7225a58586f68e683f963f2fead6c
Analyzer Verdict Alert quad9 Sinkholed
GET /img/triple_win.png HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/css/style.css?v=25
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: image/png
Content-Length: 32793
Last-Modified: Wed, 13 Jun 2018 07:16:08 GMT
Connection: keep-alive
ETag: "5b20c4b8-8019"
Expires: Mon, 19 Dec 2022 22:55:15 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
push.services.mozilla.com/
52.35.190.173101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.35.190.173:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: mZzQ78Hfnn4P82nt1TQwew==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: iU34iv2XnryEzKNM7Or05orlU/o=
13.78.225.32/fonts/almoni-dl-aaa-700.ttf
13.78.225.32200 OK 195 kB URL HTTP/1.1 13.78.225.32/fonts/almoni-dl-aaa-700.ttf
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type TrueType Font data, 18 tables, 1st "GDEF", 28 names, Macintosh, Copyright (c) 2012 by Avraham Cornfeld. All rights reserved.Almoni DL AAABold1.300;AAA ;AlmoniDL\012- data
Size 195 kB (194640 bytes)
Hash 9f89e880cf9868001f469a66dc48c865
6eeac190b560a134d3b29dba3ebc69db931520e4
4e2b0574bfd6e721a1166952544b19a555d283c74a8775b948577a64d96baef1
Analyzer Verdict Alert quad9 Sinkholed
GET /fonts/almoni-dl-aaa-700.ttf HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/css/style.css?v=25
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: application/octet-stream
Content-Length: 194640
Last-Modified: Sat, 09 Jun 2018 11:15:40 GMT
Connection: keep-alive
ETag: "5b1bb6dc-2f850"
Accept-Ranges: bytes
13.78.225.32/img/banner_main-text.png?v=3
13.78.225.32200 OK 12 kB URL HTTP/1.1 13.78.225.32/img/banner_main-text.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 474 x 182, 8-bit colormap, non-interlaced\012- data
Hash c9531f90c75726ea689ac926f5253ed6
aa6bc13f48262f4b4be6178c534caa194e1179c4
0b54b9f8b5d8a2897206b6dac53888889724d64d8b325989e3a6f380f6dae2ef
Analyzer Verdict Alert quad9 Sinkholed
GET /img/banner_main-text.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: image/png
Content-Length: 12514
Last-Modified: Sat, 09 Jun 2018 09:31:08 GMT
Connection: keep-alive
ETag: "5b1b9e5c-30e2"
Expires: Mon, 19 Dec 2022 22:55:15 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/abilities_1.svg
13.78.225.32200 OK 6.0 kB URL HTTP/1.1 13.78.225.32/img/abilities_1.svg
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (6047), with no line terminators
Hash e767a9504503061ffbd961440f0dfafa
0254c1951371cfcce9f7e504720bb94586cb8e46
51f4b3e2623f83da434099af3d53c07951b0abba70ef84487fb07f3ed2fc4006
Analyzer Verdict Alert quad9 Sinkholed
GET /img/abilities_1.svg HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: image/svg+xml
Content-Length: 6047
Last-Modified: Wed, 20 Jun 2018 06:41:22 GMT
Connection: keep-alive
ETag: "5b29f712-179f"
Accept-Ranges: bytes
13.78.225.32/img/abilities_2.svg
13.78.225.32200 OK 6.7 kB URL HTTP/1.1 13.78.225.32/img/abilities_2.svg
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (6672), with no line terminators
Hash b9e964c28ca4928d1969880b336b77ff
8417d0a17f84b1d71a0888f9f4a0e2353ad03ae1
61b54af1570373302c6c7ba7336c022df84c5fef0f24c947e679558ce5a3c925
Analyzer Verdict Alert quad9 Sinkholed
GET /img/abilities_2.svg HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: image/svg+xml
Content-Length: 6672
Last-Modified: Wed, 20 Jun 2018 06:40:56 GMT
Connection: keep-alive
ETag: "5b29f6f8-1a10"
Accept-Ranges: bytes
13.78.225.32/img/abilities_3.svg
13.78.225.32200 OK 3.8 kB URL HTTP/1.1 13.78.225.32/img/abilities_3.svg
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (3842), with no line terminators
Hash 868bd2c5740d517db52eac00f43ce212
bb8a7ac5be629b6bdcd07c37b2f495afa3e72d58
7285c0d64c9b0496e575a9cce70c3097711c78ae02bae5d9c9d9b65fa7cc54bc
Analyzer Verdict Alert quad9 Sinkholed
GET /img/abilities_3.svg HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: image/svg+xml
Content-Length: 3842
Last-Modified: Wed, 20 Jun 2018 06:41:22 GMT
Connection: keep-alive
ETag: "5b29f712-f02"
Accept-Ranges: bytes
13.78.225.32/img/abilities_4.svg
13.78.225.32200 OK 9.9 kB URL HTTP/1.1 13.78.225.32/img/abilities_4.svg
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (9860), with no line terminators
Hash cf54daa2257ce24e0c2f2e6710fcea0a
39bf25a62d699ddb1390b49f1c5adfcce2ba10d0
4b0c9906e822c10c7200f3a82fe7077b63adaab16ffbe8089fa16b5b8ce2a64d
Analyzer Verdict Alert quad9 Sinkholed
GET /img/abilities_4.svg HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: image/svg+xml
Content-Length: 9860
Last-Modified: Wed, 20 Jun 2018 06:41:22 GMT
Connection: keep-alive
ETag: "5b29f712-2684"
Accept-Ranges: bytes
13.78.225.32/img/triple_win-1.svg
13.78.225.32200 OK 1.5 kB URL HTTP/1.1 13.78.225.32/img/triple_win-1.svg
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1476), with no line terminators
Hash 05122866054c179fc1df0e54d93be689
000197d6cc9b7f57122e286bcbc9fefc5905eef2
287ed89c61ebd03593a2913aa167a570904675ff6cf83c1beb2d0426af84c78c
Analyzer Verdict Alert quad9 Sinkholed
GET /img/triple_win-1.svg HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: image/svg+xml
Content-Length: 1476
Last-Modified: Wed, 20 Jun 2018 06:41:22 GMT
Connection: keep-alive
ETag: "5b29f712-5c4"
Accept-Ranges: bytes
13.78.225.32/img/banner_main.jpg
13.78.225.32200 OK 636 kB URL HTTP/1.1 13.78.225.32/img/banner_main.jpg
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2200x597, components 3\012- data
Size 636 kB (636047 bytes)
Hash 400719373c315cfa575a44699856a936
7d6ecc382b4a47f1e071badca27e044c684dfa5b
6e7d613b8007594e27ccb5dacb0f23e760512815191fb1ac6496b2b8a2c4643e
Analyzer Verdict Alert quad9 Sinkholed
GET /img/banner_main.jpg HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/css/style.css?v=25
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: image/jpeg
Content-Length: 636047
Last-Modified: Sat, 09 Jun 2018 09:27:32 GMT
Connection: keep-alive
ETag: "5b1b9d84-9b48f"
Expires: Mon, 19 Dec 2022 22:55:15 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/triple_win-2.svg
13.78.225.32200 OK 2.0 kB URL HTTP/1.1 13.78.225.32/img/triple_win-2.svg
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (2005), with no line terminators
Hash 38994beb47ff83ada8080d019af8355d
b2f970660973ff12f9228de8b7ca1faff17b6329
828a3fb51755d20bcd1dabb459724724c4a1422f8eedc1912cf6970e09cca3b5
Analyzer Verdict Alert quad9 Sinkholed
GET /img/triple_win-2.svg HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: image/svg+xml
Content-Length: 2005
Last-Modified: Wed, 20 Jun 2018 06:41:24 GMT
Connection: keep-alive
ETag: "5b29f714-7d5"
Accept-Ranges: bytes
13.78.225.32/img/triple_win-3.svg
13.78.225.32200 OK 1.7 kB URL HTTP/1.1 13.78.225.32/img/triple_win-3.svg
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1704), with no line terminators
Hash 5121948d3b61e06cca9372ff572f0818
83aa4b8a2801ecee859b1bca91510c71e65cc710
bdb5f83d5800e72fc6995994cb47fcc68c5290a53c8da1498116cbdd6da58a37
Analyzer Verdict Alert quad9 Sinkholed
GET /img/triple_win-3.svg HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: image/svg+xml
Content-Length: 1704
Last-Modified: Wed, 20 Jun 2018 06:41:24 GMT
Connection: keep-alive
ETag: "5b29f714-6a8"
Accept-Ranges: bytes
13.78.225.32/img/pineapple.png
13.78.225.32200 OK 693 kB URL HTTP/1.1 13.78.225.32/img/pineapple.png
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 869 x 464, 8-bit/color RGBA, non-interlaced\012- data
Size 693 kB (693378 bytes)
Hash 010937eb7bac3e0c69ff7c5fa46654cd
f8a17b2b4eebd3d60fd89594afc96831b5e464ac
31aca91de811515c5e3f314b326b5dacfb7f861a0527a8b317b35bd576b5f4b2
Analyzer Verdict Alert quad9 Sinkholed
GET /img/pineapple.png HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/css/style.css?v=25
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: image/png
Content-Length: 693378
Last-Modified: Wed, 20 Jun 2018 08:49:07 GMT
Connection: keep-alive
ETag: "5b2a1503-a9482"
Expires: Mon, 19 Dec 2022 22:55:15 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/team_4.png?v=3
13.78.225.32200 OK 161 kB URL HTTP/1.1 13.78.225.32/img/team_4.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 424 x 375, 8-bit/color RGBA, non-interlaced\012- data
Size 161 kB (161292 bytes)
Hash 3c5f97cf7a693d3b17e8b8461fdf8e3a
6dfe1e0107149a864e94b99f75e600da5029b869
3173db8f89d0d9c14500bd4bc648dbf6863a1c40853e93187b3771e7ee317f35
Analyzer Verdict Alert quad9 Sinkholed
GET /img/team_4.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: image/png
Content-Length: 161292
Last-Modified: Sat, 09 Jun 2018 13:19:19 GMT
Connection: keep-alive
ETag: "5b1bd3d7-2760c"
Expires: Mon, 19 Dec 2022 22:55:15 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/team_3.png?v=3
13.78.225.32200 OK 167 kB URL HTTP/1.1 13.78.225.32/img/team_3.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 375 x 340, 8-bit/color RGBA, non-interlaced\012- data
Size 167 kB (166829 bytes)
Hash 50f289a51a3fa16ad38630139890a7c8
afca87f716eaf440aa26789eeb2d0af13ea6911d
ff6990289b71a4a1841831c43bad5534829e87abe95d0495da3acf8e8af2417e
Analyzer Verdict Alert quad9 Sinkholed
GET /img/team_3.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: image/png
Content-Length: 166829
Last-Modified: Sat, 09 Jun 2018 13:19:12 GMT
Connection: keep-alive
ETag: "5b1bd3d0-28bad"
Expires: Mon, 19 Dec 2022 22:55:15 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/team_5.png?v=3
13.78.225.32200 OK 132 kB URL HTTP/1.1 13.78.225.32/img/team_5.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 356 x 375, 8-bit/color RGBA, non-interlaced\012- data
Size 132 kB (131505 bytes)
Hash dd3702a6fd7fbe96b5e88317f288ce32
085d0d9c2c9830627dce2c32f15e2e05ed8f9fda
6f6cdffbd0827ad646a7d108d82afbe66f850ef461cb1888a1e8cd4099befbc4
Analyzer Verdict Alert quad9 Sinkholed
GET /img/team_5.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: image/png
Content-Length: 131505
Last-Modified: Sat, 09 Jun 2018 13:19:24 GMT
Connection: keep-alive
ETag: "5b1bd3dc-201b1"
Expires: Mon, 19 Dec 2022 22:55:15 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/employees/Ofer.jpg?v=3
13.78.225.32200 OK 197 kB URL HTTP/1.1 13.78.225.32/img/employees/Ofer.jpg?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 600x600, components 3\012- data
Size 197 kB (197380 bytes)
Hash 145e7a90420688a48f64a8c813676f8d
c8b879dc7b452aa66b46e565f0eb0660edbcf378
b1c8c3be13f77e91be137a5913c094f0f3ad034de933a4798b6923ee7edfeaba
Analyzer Verdict Alert quad9 Sinkholed
GET /img/employees/Ofer.jpg?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: image/jpeg
Content-Length: 197380
Last-Modified: Wed, 20 Jun 2018 08:02:12 GMT
Connection: keep-alive
ETag: "5b2a0a04-30304"
Expires: Mon, 19 Dec 2022 22:55:15 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/employees/Ayelet.jpg?v=3
13.78.225.32200 OK 106 kB URL HTTP/1.1 13.78.225.32/img/employees/Ayelet.jpg?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 420x512, components 3\012- data
Size 106 kB (105677 bytes)
Hash 230220fd3c2b1ee6500fa677ebbee044
91574644fc361e99df96344bf6f60ceeba3e8d72
34c32b8adf10eabc300528651e40c539a0971ce83b255fb435de14827ed1faa7
Analyzer Verdict Alert quad9 Sinkholed
GET /img/employees/Ayelet.jpg?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: image/jpeg
Content-Length: 105677
Last-Modified: Mon, 18 Jun 2018 07:07:56 GMT
Connection: keep-alive
ETag: "5b275a4c-19ccd"
Expires: Mon, 19 Dec 2022 22:55:15 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/team_6.png?v=3
13.78.225.32200 OK 131 kB URL HTTP/1.1 13.78.225.32/img/team_6.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 357 x 330, 8-bit/color RGBA, non-interlaced\012- data
Size 131 kB (130808 bytes)
Hash c002b54a374e1366a1a380c8a1ae6a43
96fb53500a8c539e815944cee06787540f5086d8
7ae206b299f1befb941df9d18bc58b59c2d0cc97cf519280b83e4e4915def264
Analyzer Verdict Alert quad9 Sinkholed
GET /img/team_6.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: image/png
Content-Length: 130808
Last-Modified: Sat, 09 Jun 2018 13:19:35 GMT
Connection: keep-alive
ETag: "5b1bd3e7-1fef8"
Expires: Mon, 19 Dec 2022 22:55:15 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/employees/Shira.jpg?v=3
13.78.225.32200 OK 219 kB URL HTTP/1.1 13.78.225.32/img/employees/Shira.jpg?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 600x600, components 3\012- data
Size 219 kB (219395 bytes)
Hash 7e1c9e7269061620a324ddddf114a978
d812998534b1d27d708f4d9f66c7c74ed7f98610
b7db59325fe37e3203e5c2849780fd118917053d7e8203f5bc8e6bc78de97112
Analyzer Verdict Alert quad9 Sinkholed
GET /img/employees/Shira.jpg?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: image/jpeg
Content-Length: 219395
Last-Modified: Wed, 20 Jun 2018 07:59:44 GMT
Connection: keep-alive
ETag: "5b2a0970-35903"
Expires: Mon, 19 Dec 2022 22:55:15 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/team_7.png?v=3
13.78.225.32200 OK 131 kB URL HTTP/1.1 13.78.225.32/img/team_7.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 396 x 323, 8-bit/color RGBA, non-interlaced\012- data
Size 131 kB (130671 bytes)
Hash 59056434e8aa70c74a13901a65929ab8
09b514dd71db7c76224fdb647dd4f5051e13641f
925ce755cc9bbf12f42b7443d49ac696302686ee0cd8d9a07368acaed0f267ca
Analyzer Verdict Alert quad9 Sinkholed
GET /img/team_7.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: image/png
Content-Length: 130671
Last-Modified: Sat, 09 Jun 2018 13:19:43 GMT
Connection: keep-alive
ETag: "5b1bd3ef-1fe6f"
Expires: Mon, 19 Dec 2022 22:55:15 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/employees/Andrey.jpg?v=3
13.78.225.32200 OK 212 kB URL HTTP/1.1 13.78.225.32/img/employees/Andrey.jpg?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 600x600, components 3\012- data
Size 212 kB (212500 bytes)
Hash cdbcc6a2a1780df6bd79b15e686b1828
45ec983a929c6a30d3fd0558d9bdab3b3ccbc2bb
415d08134dc0c6804c367f90ada7cf308dfb684a0085ecc0c24c37bb65d9e94f
Analyzer Verdict Alert quad9 Sinkholed
GET /img/employees/Andrey.jpg?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: image/jpeg
Content-Length: 212500
Last-Modified: Wed, 20 Jun 2018 08:06:14 GMT
Connection: keep-alive
ETag: "5b2a0af6-33e14"
Expires: Mon, 19 Dec 2022 22:55:15 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/employees/Lena.jpg?v=3
13.78.225.32200 OK 130 kB URL HTTP/1.1 13.78.225.32/img/employees/Lena.jpg?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 506x506, components 3\012- data
Size 130 kB (130287 bytes)
Hash 80348bfa069978f9656135cb1a6dd2ad
fdff8ca1b8409a242719b6deb04bf7ad9529b20a
7903507fdc34fab0aa4db26c69df422715980fcedfa091a1dc9d4b64678e0568
Analyzer Verdict Alert quad9 Sinkholed
GET /img/employees/Lena.jpg?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: image/jpeg
Content-Length: 130287
Last-Modified: Wed, 20 Jun 2018 08:05:54 GMT
Connection: keep-alive
ETag: "5b2a0ae2-1fcef"
Expires: Mon, 19 Dec 2022 22:55:15 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/bumpyard.png?v=3
13.78.225.32200 OK 8.4 kB URL HTTP/1.1 13.78.225.32/img/partners/bumpyard.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 306 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash b8c3645f6ec4854f98a0c1f62474aaf9
3c537a0a08859d0a75db1ce808029de6eee3b379
8c8eee0a56530eccb5f10b1baf429608b332a3f411cdd3a7b7af9ca6d062e749
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/bumpyard.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: image/png
Content-Length: 8432
Last-Modified: Sat, 09 Jun 2018 14:14:05 GMT
Connection: keep-alive
ETag: "5b1be0ad-20f0"
Expires: Mon, 19 Dec 2022 22:55:15 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/bumpyard-colored.png?v=3
13.78.225.32200 OK 18 kB URL HTTP/1.1 13.78.225.32/img/partners/bumpyard-colored.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 306 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 72679fb003cd8159cbbfec72f942dc0d
38ef200c9c3737545fff3fbdbc1744677b6d3e4b
d2ac176b4780e973b7f25f20e019a88dacb3543dd7d8ab08b754de2e4bd76493
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/bumpyard-colored.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: image/png
Content-Length: 17792
Last-Modified: Wed, 13 Jun 2018 07:52:14 GMT
Connection: keep-alive
ETag: "5b20cd2e-4580"
Expires: Mon, 19 Dec 2022 22:55:15 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/wizsupport.png?v=3
13.78.225.32200 OK 7.8 kB URL HTTP/1.1 13.78.225.32/img/partners/wizsupport.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 291 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash f527374bb987371c0c4a126ac327cbf8
a165212f863ee8a7258a55d299b437268e4e6a84
f4e69fe2a1ac35278340f471e227004354fbdeec0c84b18a9a7e3689ce28567b
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/wizsupport.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: image/png
Content-Length: 7792
Last-Modified: Sat, 09 Jun 2018 14:14:23 GMT
Connection: keep-alive
ETag: "5b1be0bf-1e70"
Expires: Mon, 19 Dec 2022 22:55:15 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/wizsupport-colored.png?v=3
13.78.225.32200 OK 16 kB URL HTTP/1.1 13.78.225.32/img/partners/wizsupport-colored.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 291 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e5478dc59a6d8604b2b42eafae749db
8409d98d81bd20456c9f52b57c22aaa02f54c223
79a237bbeeb1688f0c4fc2c6b65137afa313c7c52e241c717943caa1b77bd9c1
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/wizsupport-colored.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: image/png
Content-Length: 16344
Last-Modified: Wed, 13 Jun 2018 07:54:44 GMT
Connection: keep-alive
ETag: "5b20cdc4-3fd8"
Expires: Mon, 19 Dec 2022 22:55:15 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/securedtouch.png?v=3
13.78.225.32200 OK 13 kB URL HTTP/1.1 13.78.225.32/img/partners/securedtouch.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 308 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash 427213d4bac958f01537faba8ee63d96
8a78e83934a233f6b715c621d4a9dae3fcc79689
2aaf57376c22b87bd51a8f795a56b263b1e5eddfd694e91cb2e2c4d06ae8858e
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/securedtouch.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: image/png
Content-Length: 12620
Last-Modified: Sat, 09 Jun 2018 14:14:25 GMT
Connection: keep-alive
ETag: "5b1be0c1-314c"
Expires: Mon, 19 Dec 2022 22:55:15 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/get.png?v=3
13.78.225.32200 OK 4.0 kB URL HTTP/1.1 13.78.225.32/img/partners/get.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 133 x 65, 8-bit/color RGBA, non-interlaced\012- data
Hash b218817e4a89dc084518e2e60142ff36
7a7cd5b231657323e6da419e60cf7596d8ec8844
17de53e50e267ce807047ea6ee7a868fe7c3369ead4c9ff654ab446bf89c2871
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/get.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: image/png
Content-Length: 3981
Last-Modified: Sat, 09 Jun 2018 14:14:27 GMT
Connection: keep-alive
ETag: "5b1be0c3-f8d"
Expires: Mon, 19 Dec 2022 22:55:15 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/securedtouch-colored.png?v=3
13.78.225.32200 OK 21 kB URL HTTP/1.1 13.78.225.32/img/partners/securedtouch-colored.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 308 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash e34c686a73d989ec040541c9edd9ac4e
bbb92f00e9ffdc8af22ec97c7b24cfc17969861d
8f37a72c2023127b6f0d8a12d18c8850b43585ae78608cd1a796cfc548f6f939
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/securedtouch-colored.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:15 GMT
Content-Type: image/png
Content-Length: 21051
Last-Modified: Mon, 18 Jun 2018 07:12:49 GMT
Connection: keep-alive
ETag: "5b275b71-523b"
Expires: Mon, 19 Dec 2022 22:55:15 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/get-colored.png?v=3
13.78.225.32200 OK 8.3 kB URL HTTP/1.1 13.78.225.32/img/partners/get-colored.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 133 x 65, 8-bit/color RGBA, non-interlaced\012- data
Hash 06bc67d40c1185115851da391d492935
3dc5dcf2128ea3f21d26ec310a9e689eceedba39
795b1012f0cfbdddbc88bfa998303077587f97bfe075e991d494233ffb03568f
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/get-colored.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 8286
Last-Modified: Wed, 13 Jun 2018 07:54:04 GMT
Connection: keep-alive
ETag: "5b20cd9c-205e"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/ibm.png?v=3
13.78.225.32200 OK 3.3 kB URL HTTP/1.1 13.78.225.32/img/partners/ibm.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 102 x 47, 8-bit/color RGBA, non-interlaced\012- data
Hash fd48b741aa9879a67eb7d3284b4fbf04
0d3b5ddb8bf8ecfc4221fa457c2bf9373df615fb
48dbafc95d3d44f7b6a98452f2411dbcbd428db8caf43b868b143fc7e1358440
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/ibm.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 3275
Last-Modified: Sat, 09 Jun 2018 14:14:28 GMT
Connection: keep-alive
ETag: "5b1be0c4-ccb"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/ibm-colored.png?v=3
13.78.225.32200 OK 9.3 kB URL HTTP/1.1 13.78.225.32/img/partners/ibm-colored.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 102 x 47, 8-bit/color RGBA, non-interlaced\012- data
Hash 03e8e92aacfe77a3e2487a939b80fffb
8377bebd1d0f5e7c531f82a49970e83c0988c7bf
cae78742698135c76cd332bea8260cd80d3aa3109080f65e49d58d347844f3b5
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/ibm-colored.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 9306
Last-Modified: Mon, 18 Jun 2018 07:12:14 GMT
Connection: keep-alive
ETag: "5b275b4e-245a"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/lacada-colored.png?v=3
13.78.225.32200 OK 18 kB URL HTTP/1.1 13.78.225.32/img/partners/lacada-colored.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 154 x 89, 8-bit/color RGBA, non-interlaced\012- data
Hash 89ef3300a34938c9775855beacc8d9c0
28c0b4a58fb6b3e9c74f4aadadd34962200c1f01
ff1cc07bb45a785dcd6d84bee8499bae9c1b9f95c6e7b2082d629895d7b0609f
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/lacada-colored.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 17685
Last-Modified: Mon, 18 Jun 2018 07:13:02 GMT
Connection: keep-alive
ETag: "5b275b7e-4515"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/lacada.png?v=3
13.78.225.32200 OK 12 kB URL HTTP/1.1 13.78.225.32/img/partners/lacada.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 154 x 89, 8-bit/color RGBA, non-interlaced\012- data
Hash c5b27bc476c0cdc3304670b0c3bad2a5
1ce7e41902f566d037195e3e5057c99aa19aa48c
9506c544c093e9424508453df421578498b077fc1b951594e7fead4a219e4346
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/lacada.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 11696
Last-Modified: Wed, 20 Jun 2018 08:26:52 GMT
Connection: keep-alive
ETag: "5b2a0fcc-2db0"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/smarttag-.png?v=3
13.78.225.32200 OK 9.0 kB URL HTTP/1.1 13.78.225.32/img/partners/smarttag-.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 190 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash eafe22892d705e2939c83322b89785f7
3ec37cbf9bc30dcd8bf44864f77fd8e45a9157df
7cecf625859278399a58dbbc1de6ecd4e71b41d76f03f63499dd67e802edb06b
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/smarttag-.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 9028
Last-Modified: Wed, 20 Jun 2018 08:24:59 GMT
Connection: keep-alive
ETag: "5b2a0f5b-2344"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/smarttag-colored.png?v=3
13.78.225.32200 OK 17 kB URL HTTP/1.1 13.78.225.32/img/partners/smarttag-colored.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 190 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash 4f6c97dd1c9e738436c71f4dd4da9743
ac237337a6fe77ab724b87c3d0c8248d3ade61d8
86bc3c2d3d4bc08419abab78a3a8523dc723a4f43748866f76f8e7b266b70597
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/smarttag-colored.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 17265
Last-Modified: Wed, 13 Jun 2018 07:54:23 GMT
Connection: keep-alive
ETag: "5b20cdaf-4371"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/endor.png?v=3
13.78.225.32200 OK 7.0 kB URL HTTP/1.1 13.78.225.32/img/partners/endor.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 181 x 43, 8-bit/color RGBA, non-interlaced\012- data
Hash dc1c50128abe89d62b53d8d126397593
bde867239cd37797aedf162a1711fa2a1745cddf
48a8ffb1e15f9228f43bf3e39ea9f9c0efba52451d1e73c3fb8dc8d7ce3e36b7
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/endor.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 7049
Last-Modified: Sat, 09 Jun 2018 14:14:34 GMT
Connection: keep-alive
ETag: "5b1be0ca-1b89"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/endor-colored.png?v=3
13.78.225.32200 OK 16 kB URL HTTP/1.1 13.78.225.32/img/partners/endor-colored.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 181 x 43, 8-bit/color RGBA, non-interlaced\012- data
Hash 1da6ae9c973fac48b933dec38405e3b5
507226aace63bd3568b0894d20eb004cfab30a9d
04b1c2153365f893e2429ca17ebf3b430d5f476e18daf2642522db490f4aaa26
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/endor-colored.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 16226
Last-Modified: Mon, 18 Jun 2018 07:12:34 GMT
Connection: keep-alive
ETag: "5b275b62-3f62"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/hopon.png?v=3
13.78.225.32200 OK 7.7 kB URL HTTP/1.1 13.78.225.32/img/partners/hopon.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 160 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash f210887ea37a3133a5cf00ce87010838
9e4a6be4f5a1b610648d537ccb9fa3002e65c26d
8cfa23d011eed733be7019e6716b90ea1cbea06f99fb5e8e4d3aaf1b550b6f94
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/hopon.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 7674
Last-Modified: Sat, 09 Jun 2018 14:14:36 GMT
Connection: keep-alive
ETag: "5b1be0cc-1dfa"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/hopon-colored.png?v=3
13.78.225.32200 OK 16 kB URL HTTP/1.1 13.78.225.32/img/partners/hopon-colored.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 160 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 83975efddd40346375a7969b97735835
ed1eae40f31193e5945b54cf7cfc0e609b080989
a111230bcbcffa2f3c000350a6ab00bcd6e41379cab3888ca94b12663e400499
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/hopon-colored.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 16229
Last-Modified: Mon, 18 Jun 2018 07:13:19 GMT
Connection: keep-alive
ETag: "5b275b8f-3f65"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/microsoft.png?v=3
13.78.225.32200 OK 6.5 kB URL HTTP/1.1 13.78.225.32/img/partners/microsoft.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 227 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash eb84d692d2643e8af1eca1e32cbefa5c
d2ad24e477e1f9ab8ce09ee98cea83ae786fbf9c
1afb5e22c49ebbc4853d760fa0a5a70287248fb4d9adb25db4b22eecb8ba11c6
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/microsoft.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 6453
Last-Modified: Wed, 20 Jun 2018 08:26:19 GMT
Connection: keep-alive
ETag: "5b2a0fab-1935"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/microsoft-colored.png?v=3
13.78.225.32200 OK 11 kB URL HTTP/1.1 13.78.225.32/img/partners/microsoft-colored.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 227 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 88485550ca081615dea4b3c8c31269b0
589253952950931742f9fd055b55816b618d3023
e33b26e690fdee0e5bb17b17d0089bbb1bc02c6e1bbe65a16abfe34f34e489af
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/microsoft-colored.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 11064
Last-Modified: Mon, 18 Jun 2018 07:14:58 GMT
Connection: keep-alive
ETag: "5b275bf2-2b38"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6394
Expires: Sat, 10 Dec 2022 00:41:50 GMT
Date: Fri, 09 Dec 2022 22:55:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6394
Expires: Sat, 10 Dec 2022 00:41:50 GMT
Date: Fri, 09 Dec 2022 22:55:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6394
Expires: Sat, 10 Dec 2022 00:41:50 GMT
Date: Fri, 09 Dec 2022 22:55:16 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5de5d319f43d9c9c641419d96655541f
cde4c7fa0145d3645af17e34c83c63c08f76a076
fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7557
x-amzn-requestid: 400d1465-ecbf-4d95-8aa8-4dce5dca0716
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctluwGo4oAMFhTg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee991-6dba29ae7065d5347a1a420d;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:04:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Lazl-stakC-31gMuQ2WzH9uFkIb0g7HaaM3xkwSFdFJMWKTaKqrBEQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 04:07:07 GMT
age: 67689
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6394
Expires: Sat, 10 Dec 2022 00:41:50 GMT
Date: Fri, 09 Dec 2022 22:55:16 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8eba44f9-82c7-4919-bc2f-4f847f621994.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8eba44f9-82c7-4919-bc2f-4f847f621994.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e8a5e9d0cddf26cf3a1478d2942f2478
e8a228a857a414f04108c84670ed7bc74534407c
3a15851f412000f1647057745348bc6f6e2f0cfe481ca7a72f6e94fab8d5e52e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8eba44f9-82c7-4919-bc2f-4f847f621994.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12990
x-amzn-requestid: 2e4f71f3-b81d-4822-a13a-e8367a76aa20
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eMREp3IAMFRJw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa4e-447650995616ab6a09780380;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: D3mXg-fDM59RiUxg-BxZNdAQG4_iGSTcxhleWiDkSmwlOdxS8SGhDA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 21:55:31 GMT
age: 3585
etag: "e8a228a857a414f04108c84670ed7bc74534407c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9aa9678b-479f-4894-b9e7-3d05e236f19c.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9aa9678b-479f-4894-b9e7-3d05e236f19c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9051770b3587c195bea670f8820e8cfe
abf58087f0e345202da088238daea85d177b431b
f687a10c0ae63699a551977e9a4ec5bc7ba606b1925178d7ed4ec6728889bb2e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9aa9678b-479f-4894-b9e7-3d05e236f19c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8841
x-amzn-requestid: 09b64f8e-60c0-4cf6-a0dc-15e597bd9d85
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eMWH7MIAMFyow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa4e-3471ee5f5a78b55c424e2c6d;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: F_FNF6MAvQjqQ9kTGvu8lERPdurC-ZyLWtxQ5Ezs1OBUUmejNwiQ4w==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 22:00:13 GMT
age: 3303
etag: "abf58087f0e345202da088238daea85d177b431b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05755b78-9a44-483c-9449-ae2df8a44bd0.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05755b78-9a44-483c-9449-ae2df8a44bd0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 00ad01d32ff690b4a28f6d0555c7e146
c607a2782213afcc058882ffa11a08860a6de034
b5896253222e132fa68f11fba133195a20e4aad94f8cdbfef747ded7e9243b0c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05755b78-9a44-483c-9449-ae2df8a44bd0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7444
x-amzn-requestid: eaf9e585-6b52-46c3-a62a-fa591bbf2204
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5f7BEV6IAMFbIw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393ad13-3cab7e35787037ec74ff6e31;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:48:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Q-JwtoYGsFkpCudY52QAzpwi-93TU1Eh_1szsnTQp1jHpILapcn5PQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 21:55:31 GMT
etag: "c607a2782213afcc058882ffa11a08860a6de034"
content-type: image/jpeg
age: 3585
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8732123d-ded0-4486-9019-0d87264f6c0e.webp
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8732123d-ded0-4486-9019-0d87264f6c0e.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0df452512aae4c4c1f4a2cd263b16dfd
68bac75574641febc463bd0819392dae2da15811
e0a9301c5be849e116f1d98b819c2eb91f73e74d836f3e099f2cd266e8f0bb36
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8732123d-ded0-4486-9019-0d87264f6c0e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12743
x-amzn-requestid: 6ed8a5f4-45cd-45bd-9820-df450f612c34
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eK4E_-IAMFf3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa45-31d928fc430577b463a68bd0;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nD0bWCjTU6LNSsNYCNqT4rt7okG1dmPPWiw4FXSi_uNWpcZnxhZgKw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 22:03:37 GMT
age: 3099
etag: "68bac75574641febc463bd0819392dae2da15811"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7a89cfef-fc4a-490b-b984-fd656e721e79.webp
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7a89cfef-fc4a-490b-b984-fd656e721e79.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash afcdc2c9891132c82cd09ef237930877
3e112ad867e159d1bfdf9bfd2e2a04fea8248494
8d543255c1272d77981913e4b0e0e5efede8f4ffaa91572a3eee9e44ac035946
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7a89cfef-fc4a-490b-b984-fd656e721e79.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8473
x-amzn-requestid: 40260408-5f10-42ed-832e-a8bc5d02e95c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5e9hGqwIAMFl2Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393ab89-078ecefb64853b047acc2de7;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:41:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oe1qgsBhixlxqlLZdNtuON-CMoWDhGTH1SQhmQQhLGYTmp_R9FKaEw==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 21:55:41 GMT
age: 3575
etag: "3e112ad867e159d1bfdf9bfd2e2a04fea8248494"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
13.78.225.32/img/partners/carmel.png?v=3
13.78.225.32200 OK 9.4 kB URL HTTP/1.1 13.78.225.32/img/partners/carmel.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 217 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 080434bd30919cff9c10608e7c2b7f2c
50933416db98fcb4ef75f69a215a2a86d0082d8b
1e9662be8c90f94f61306b6c47827b886f6f91cc8bd2c24bd03878ce601899fe
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/carmel.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 9371
Last-Modified: Sat, 09 Jun 2018 17:28:50 GMT
Connection: keep-alive
ETag: "5b1c0e52-249b"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/samsung.png?v=3
13.78.225.32200 OK 5.5 kB URL HTTP/1.1 13.78.225.32/img/partners/samsung.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 189 x 62, 8-bit/color RGBA, non-interlaced\012- data
Hash 5dfed7eb3beca9f84d7dd902aa1228c6
1eb07706a027154c73f8026925e03612e5e369e3
1d21e98fe21f4d899c49e4d7ce54aea4dfa62c42f9503d2c9ad1b5460243ca3d
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/samsung.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 5504
Last-Modified: Sat, 09 Jun 2018 17:28:12 GMT
Connection: keep-alive
ETag: "5b1c0e2c-1580"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/carmel-colored.png?v=3
13.78.225.32200 OK 23 kB URL HTTP/1.1 13.78.225.32/img/partners/carmel-colored.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 217 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 87a0904c90b254e50d8bb1a387cc577f
21ce6bad76fccc2062b8615dbfbad93263906949
91a5d9c17b29f23b5166e2a6f688d2c4a41820fabd470704456eecd9191b9e98
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/carmel-colored.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 22683
Last-Modified: Mon, 18 Jun 2018 07:15:34 GMT
Connection: keep-alive
ETag: "5b275c16-589b"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/samsung-colored.png?v=3
13.78.225.32200 OK 10 kB URL HTTP/1.1 13.78.225.32/img/partners/samsung-colored.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 189 x 62, 8-bit/color RGBA, non-interlaced\012- data
Hash 7b5db7388431cdc644f2c197c4f2023f
0703bdda9d26380ef53c8f3f7222bf7bc09e45bd
8b90cda339722b1a7418e27ecd776e20dc05db1f55b911538e851df3e53b7d55
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/samsung-colored.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 10309
Last-Modified: Mon, 18 Jun 2018 07:16:05 GMT
Connection: keep-alive
ETag: "5b275c35-2845"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/efma.png?v=3
13.78.225.32200 OK 5.7 kB URL HTTP/1.1 13.78.225.32/img/partners/efma.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 92 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash b222ca254465319ef5b3225aaa0e88af
4cd9bb626f61852ea446a78cb2369cc9d857a282
6ed0f97a445042531058ecbb0585ce28b0c7fba4ed7e553a2415aee46ce4f085
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/efma.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 5745
Last-Modified: Wed, 20 Jun 2018 08:27:43 GMT
Connection: keep-alive
ETag: "5b2a0fff-1671"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/efma-colored.png?v=3
13.78.225.32200 OK 10 kB URL HTTP/1.1 13.78.225.32/img/partners/efma-colored.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 92 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d9230394e06cc09c8f78fcdd4e1e089
6558f97af840a2d39093bd3ebc4d5e272563e99f
e94b1c79fb769e320b794abcfb0c34028adac156bb8845dc5e28664907635dc6
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/efma-colored.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 10061
Last-Modified: Mon, 18 Jun 2018 07:15:09 GMT
Connection: keep-alive
ETag: "5b275bfd-274d"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/mastercard.png?v=3
13.78.225.32200 OK 4.7 kB URL HTTP/1.1 13.78.225.32/img/partners/mastercard.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 103 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 28a2c4c1ab6051280b1510482f5e5436
1f644c8eade2ab3a85c45019efbe933ad61a1dcc
075b0e6847dade0a20e7402212886c19ed8768e771fbf49113a94f2e2dc656ad
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/mastercard.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 4680
Last-Modified: Wed, 20 Jun 2018 08:26:36 GMT
Connection: keep-alive
ETag: "5b2a0fbc-1248"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/mastercard-colored.png?v=3
13.78.225.32200 OK 4.3 kB URL HTTP/1.1 13.78.225.32/img/partners/mastercard-colored.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 103 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 6616aeef0da819b5b7583c641c7d0d1c
e3dabfbcb00c2f40e61a4aba831a00a63d47be5b
afefc399be78b614d623099ca25bcdb3414a6a30c5f0b64c6d17edf981d0819b
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/mastercard-colored.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 4264
Last-Modified: Mon, 18 Jun 2018 07:15:44 GMT
Connection: keep-alive
ETag: "5b275c20-10a8"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/unionpay.png?v=3
13.78.225.32200 OK 6.2 kB URL HTTP/1.1 13.78.225.32/img/partners/unionpay.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 103 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash d6416ada650c5e561e6761185d1495ac
e320bd2cf9d35cd2bb6f637e6c840ee77cc3d6bc
27340e418abeba7af754b4656cd6b5234d58a072cb195ae152d9fad27662f2f4
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/unionpay.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 6202
Last-Modified: Sat, 09 Jun 2018 17:28:15 GMT
Connection: keep-alive
ETag: "5b1c0e2f-183a"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/unionpay-colored.png?v=3
13.78.225.32200 OK 10 kB URL HTTP/1.1 13.78.225.32/img/partners/unionpay-colored.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 103 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash da1003fc316eb260d00eea2637c08d2a
623a02a62ac3940825793a7b5d51fd2aee189547
0ad1a14c3c5bf3a38c0303ea479874c9f89f5e45b11b15df515c145ddb852fdd
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/unionpay-colored.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 10474
Last-Modified: Wed, 20 Jun 2018 08:59:33 GMT
Connection: keep-alive
ETag: "5b2a1775-28ea"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/sigmalabs.png?v=3
13.78.225.32200 OK 14 kB URL HTTP/1.1 13.78.225.32/img/partners/sigmalabs.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 241 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash be52d3edb5a664541e9ada4fec518611
9d63b2b2efe5a76d5a2f501cfa354057ed5c6531
abdcc3a125bda332c74540998bd0911553fe0dc25c0a8843b1f81fd1b2ed08b1
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/sigmalabs.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 14144
Last-Modified: Wed, 20 Jun 2018 08:25:34 GMT
Connection: keep-alive
ETag: "5b2a0f7e-3740"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/sigmalabs-colored.png?v=3
13.78.225.32200 OK 24 kB URL HTTP/1.1 13.78.225.32/img/partners/sigmalabs-colored.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 241 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash 4e0b52e4ec46d14e25be13a83f53aefc
d95f30c54dc128fa67b9bcc7c6ac8ba7540ffdb5
1b270e4be2278cabda9a612621f6a02ca657872b579a826738b2e13f6efe0461
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/sigmalabs-colored.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 23453
Last-Modified: Mon, 18 Jun 2018 07:15:23 GMT
Connection: keep-alive
ETag: "5b275c0b-5b9d"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/iagree.png?v=3
13.78.225.32200 OK 11 kB URL HTTP/1.1 13.78.225.32/img/partners/iagree.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 217 x 78, 8-bit/color RGBA, non-interlaced\012- data
Hash 0d2965af3bdf90893e76cd4699e55692
d1d791039107509cd19c0cfbb0c10641e5b076b8
be1346d568c00d7d819f993dea5d6bd7f0d21f91eb275d4693016412a37ef3ed
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/iagree.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 11116
Last-Modified: Wed, 20 Jun 2018 08:27:14 GMT
Connection: keep-alive
ETag: "5b2a0fe2-2b6c"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/iagree-colored.png?v=3
13.78.225.32200 OK 18 kB URL HTTP/1.1 13.78.225.32/img/partners/iagree-colored.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 217 x 78, 8-bit/color RGBA, non-interlaced\012- data
Hash 24582f4ed1749fd02e517fc92f1f56e8
7258a46c4de0a83979f1ba143b6d257eff9538a1
a6308382586d67bc65c8df2bf5a2a7f6ce3f2953a0cc27630d9bcff72d9eaa3e
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/iagree-colored.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 18303
Last-Modified: Mon, 18 Jun 2018 07:15:54 GMT
Connection: keep-alive
ETag: "5b275c2a-477f"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/visa.png?v=3
13.78.225.32200 OK 6.8 kB URL HTTP/1.1 13.78.225.32/img/partners/visa.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 185 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 622ad2603a399ddf5e4b1eff8dd7e496
a17a87605358eee51f0e3366d514e7a5ba8cfd80
bd1eeb55b6826e3308b46a8337a1fc9c9b17cb588688d868d1fea76f657a848e
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/visa.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 6764
Last-Modified: Wed, 20 Jun 2018 08:24:31 GMT
Connection: keep-alive
ETag: "5b2a0f3f-1a6c"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/partners/visa-colored.png?v=3
13.78.225.32200 OK 13 kB URL HTTP/1.1 13.78.225.32/img/partners/visa-colored.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 185 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 2059edbe85f5d701331dfa8173380561
baaf87e016783205ae602c8bf3607b6536429bb5
e9563d5a77de7b3f84bee77097078eb46410332458757de6f908a39aa768e5b8
Analyzer Verdict Alert quad9 Sinkholed
GET /img/partners/visa-colored.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 13012
Last-Modified: Mon, 18 Jun 2018 07:16:14 GMT
Connection: keep-alive
ETag: "5b275c3e-32d4"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/success-1.png?v=3
13.78.225.32200 OK 6.3 kB URL HTTP/1.1 13.78.225.32/img/success-1.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 153 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash 638caa0c16410b8906cf1df872ddc147
3caa608326c18a746f0570291350d72efb847345
73057480001f7e8ed7d090d963f1330f35269609f099a8dc207156a47f9bca71
Analyzer Verdict Alert quad9 Sinkholed
GET /img/success-1.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 6333
Last-Modified: Sat, 09 Jun 2018 14:41:21 GMT
Connection: keep-alive
ETag: "5b1be711-18bd"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/success-2.png?v=3
13.78.225.32200 OK 3.1 kB URL HTTP/1.1 13.78.225.32/img/success-2.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 155 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash 0319d459f73337f71bdc6bcc99fb6346
872d90166db521f15a7aa06c607ce26a406d68da
67865216fcc48aedb66c19b8b285a625f49dba73aaf4d691363835512b585649
Analyzer Verdict Alert quad9 Sinkholed
GET /img/success-2.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 3074
Last-Modified: Sat, 09 Jun 2018 14:41:27 GMT
Connection: keep-alive
ETag: "5b1be717-c02"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/success-3.png?v=3
13.78.225.32200 OK 6.9 kB URL HTTP/1.1 13.78.225.32/img/success-3.png?v=3
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 141 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 804846bdfb9f7046667e44fdcf22e9b8
f4f406d3c3756f542bcd9ebdbb63dc6e9aea7c4e
882a9d125180fc0a0827c8d8531d926221eecd69c1367311fe465fdf373714c3
Analyzer Verdict Alert quad9 Sinkholed
GET /img/success-3.png?v=3 HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 6888
Last-Modified: Sat, 09 Jun 2018 14:41:32 GMT
Connection: keep-alive
ETag: "5b1be71c-1ae8"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/linked.png
13.78.225.32200 OK 349 B URL HTTP/1.1 13.78.225.32/img/linked.png
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 18 x 18, 8-bit colormap, non-interlaced\012- data
Hash 826724940a5c919d8c1b8b578ae02c98
561582ae4495ada772bab255f3babdaf4a33ef9a
9497a72a1ff5ee5f96ff972371ac17c12125cfd25a27ace800cec97fef9c1805
Analyzer Verdict Alert quad9 Sinkholed
GET /img/linked.png HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/css/style.css?v=25
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 349
Last-Modified: Sat, 09 Jun 2018 13:42:37 GMT
Connection: keep-alive
ETag: "5b1bd94d-15d"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/banner_business.jpg
13.78.225.32200 OK 596 kB URL HTTP/1.1 13.78.225.32/img/banner_business.jpg
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2200x662, components 3\012- data
Size 596 kB (595496 bytes)
Hash 872393ebd9650289b0ef00c0fb49e29c
2dec99934e78aaa49be49208dc4791da3db025e2
80cd3edbfe9ae220cddeadbfe2db8b2a629e91716c80b7445f1c3937566433f4
Analyzer Verdict Alert quad9 Sinkholed
GET /img/banner_business.jpg HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/css/style.css?v=25
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/jpeg
Content-Length: 595496
Last-Modified: Sat, 09 Jun 2018 13:07:59 GMT
Connection: keep-alive
ETag: "5b1bd12f-91628"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/callback-mail.png
13.78.225.32200 OK 858 B URL HTTP/1.1 13.78.225.32/img/callback-mail.png
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 46 x 34, 8-bit colormap, non-interlaced\012- data
Hash 358bc795b63618b6fb50e6a8daefba45
9cd361f91a800a9b2c7b08fd44b51cec84cffab3
06fd2ac8f871c68e01cf81a282aa2b073f08e121b10b6fb1d385e31fc8f1af46
Analyzer Verdict Alert quad9 Sinkholed
GET /img/callback-mail.png HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/css/style.css?v=25
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 858
Last-Modified: Sat, 09 Jun 2018 14:41:41 GMT
Connection: keep-alive
ETag: "5b1be725-35a"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/callback-dropdown.png
13.78.225.32200 OK 300 B URL HTTP/1.1 13.78.225.32/img/callback-dropdown.png
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 17 x 11, 8-bit colormap, non-interlaced\012- data
Hash 68b8d61f200b8b1928a85d1e632c165f
b4d6244a71bb09cab7ec37204482c484a820adbd
099115f11090d4708205a1f699b88966b930bc94b40fdc6692685189ce76ffa1
Analyzer Verdict Alert quad9 Sinkholed
GET /img/callback-dropdown.png HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/css/style.css?v=25
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/png
Content-Length: 300
Last-Modified: Sat, 09 Jun 2018 14:41:48 GMT
Connection: keep-alive
ETag: "5b1be72c-12c"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/img/callback_submitted-bg.jpg
13.78.225.32200 OK 228 kB URL HTTP/1.1 13.78.225.32/img/callback_submitted-bg.jpg
IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1168x835, components 3\012- data
Size 228 kB (228544 bytes)
Hash a7aa56ffd403bc00e2d2b9248d9beccb
a7923acd8a589891470d26ec8a6f3b4040b1cf93
0177597fa95538c753444076bdf0e3c7ef678c36508d213645bf80ae0c396f1e
Analyzer Verdict Alert quad9 Sinkholed
GET /img/callback_submitted-bg.jpg HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/css/style.css?v=25
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Dec 2022 22:55:16 GMT
Content-Type: image/jpeg
Content-Length: 228544
Last-Modified: Sat, 09 Jun 2018 19:36:42 GMT
Connection: keep-alive
ETag: "5b1c2c4a-37cc0"
Expires: Mon, 19 Dec 2022 22:55:16 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
13.78.225.32/favicon.ico
13.78.225.32404 Not Found 125 B IP 13.78.225.32:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 239540730a71a3ab34f1c0f1f87ae03e
4fd8d8975e2d3404e8ac5e2721c1b647ae65d59c
36d5cec09fddadf8132407e8f8c56956c85367dc3d598a1531214a55cca6b368
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: 13.78.225.32
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://13.78.225.32/
HTTP/1.1 404 Not Found
Server: nginx
Date: Fri, 09 Dec 2022 22:55:17 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip