Report - www.iwa.biz/

Report Overview

Submitted URL
www.iwa.biz/
IP
172.67.131.213
ASN
#13335 CLOUDFLARENET
Submitted
2023-02-03 10:21:39
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
5
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
hello.myfonts.net	5561	2016-03-15T06:54:22Z	2023-03-13T08:06:07Z	375 B	1.5 kB	104.17.244.73
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-13T08:02:41Z	596 B	587 B	173.194.222.154
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	877 B	1.3 kB	142.250.74.106
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	2.4 kB	5.6 kB	216.58.211.3
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	1.0 kB	1.8 kB	93.184.220.29
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	52.40.49.56
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	381 B	44 kB	142.250.74.72
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.8 kB	141 kB	34.120.237.76
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.7 kB	7.1 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-13T07:36:03Z	1.2 kB	21 kB	142.250.74.14
www.iwa.biz	unknown	2012-11-09T00:15:05Z	2023-01-25T19:13:02Z	784 B	22 kB	172.67.131.213
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.9 kB	34.160.144.191

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-02-03 10:21:57	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-02-03 10:21:57	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-02-03 10:21:58	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-02-03 10:22:00	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD
2023-02-03 10:22:01	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .biz TLD

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (27)

	URL	Size	First Seen	Last Seen
	www.iwa.biz/wp-includes/js/hoverIntent.min.js	1.5 kB	2023-03-07	2024-04-25
Pretty URL www.iwa.biz/wp-includes/js/hoverIntent.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:10 Last Seen2024-04-25 15:57:16 Times Seen27422 Hash 8c0498e2f1f7a684a8d2a3feb934b64b 76099689ccaee466d4608da621c403b368dcae03 ed5b5df9ceacfe76857ac51964972b0b417a215b2f50e837fd6b64bad7339c40 Loading...

	www.iwa.biz/wp-includes/js/jquery/jquery.min.js	90 kB	2023-03-08	2024-04-25
Pretty URL www.iwa.biz/wp-includes/js/jquery/jquery.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-25 17:24:34 Times Seen31811 Hash 17738318d61d394f1de8890d589afaec f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3 cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981 Loading...

	www.iwa.biz/wp-includes/js/wp-emoji-release.min.js	19 kB	2023-03-07	2024-04-25
Pretty URL www.iwa.biz/wp-includes/js/wp-emoji-release.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 18:37:13 Times Seen38049 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	www.iwa.biz/	1.9 kB	2023-03-13	2023-03-13
Pretty URL www.iwa.biz/ IP 172.67.131.213 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:44:00 Last Seen2023-03-13 15:44:00 Times Seen1 Hash d8077acb4503750268ab131ef4a5f6f5 2d957926ea40a243749e84ebd3177204bbe5de55 15a7fb3d4f3cb1308f73c2be20ddec8a141a640cea5c7fa4425922486498d588 Loading...

	www.iwa.biz/wp-content/themes/royal/js/modernizr.js	9.2 kB	2023-03-08	2024-04-17
Pretty URL www.iwa.biz/wp-content/themes/royal/js/modernizr.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:57:04 Last Seen2024-04-17 20:52:43 Times Seen35 Hash e6c353b0df611eade595734940bd3fca f5404dcb1b5a321be207b37dd9402b173bf51f5d df6845ed2adef5eed319985cf3c24801b6f2be38df3293b95688253a182601fd Loading...

	www.iwa.biz/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js	20 kB	2023-03-07	2024-04-25
Pretty URL www.iwa.biz/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:46 Last Seen2024-04-25 18:36:11 Times Seen2127 Hash 6ce179ee275d3bd58d0407b79d6366cd fb1393daafde2f3e85f31777543c3194a4ab11d0 1bd0097cd9d76a31566f4236a1aaa31cdd43c5857a9502679805fddbc7599a54 Loading...

	www.iwa.biz/	592 B	2023-03-13	2023-03-13
Pretty URL www.iwa.biz/ IP 172.67.131.213 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:44:00 Last Seen2023-03-13 15:44:00 Times Seen1 Hash 63f28275040a14876ef7db4f2c630b09 24ba59c0247aa79218167adf3e3a98cb22734ffa 639fe2f480d2a44b7fa5394e9e9eeb3bad227442e6c7b3291210dcdb4589a741 Loading...

	www.iwa.biz/	372 B	2023-03-08	2024-01-07
Pretty URL www.iwa.biz/ IP 172.67.131.213 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:53:39 Last Seen2024-01-07 10:16:55 Times Seen2 Hash 42d536716e1e29a1992f5554f729c760 31367a031b525f4930dc16c099f111fd1dc16c47 dfc7b9665826abcc5d74abfdc6d0ec04dc9b6bcb8a2f8c7b1a5b3feccbbf9a85 Loading...

	www.googletagmanager.com/gtag/js?id=UA-128908362-1	112 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=UA-128908362-1 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:44:00 Last Seen2023-03-13 15:44:00 Times Seen1 Hash 149a821c3181a0780af05754e7cec720 66005769d081adf29610a6d78329261f30f029e6 563dbd95190a4136e5b13c4cb9f159ba0e98fe88e601401fec8d06cbfca10f85 Loading...

	www.iwa.biz/wp-content/plugins/popup-builder/public/js/Popup.js	39 kB	2023-03-07	2024-04-19
Pretty URL www.iwa.biz/wp-content/plugins/popup-builder/public/js/Popup.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:33 Last Seen2024-04-19 11:35:06 Times Seen698 Hash f645b5ce666575f98f2c0958099af0e2 a1e1a2a120d57c290337921b96abf9305de51efc 5d59372b6612612e1f165c140beb8e541b9becfa771862e2d61376252a2ba91f Loading...

	www.iwa.biz/wp-content/plugins/popup-builder/public/js/PopupBuilder.js	79 kB	2023-03-07	2024-04-19
Pretty URL www.iwa.biz/wp-content/plugins/popup-builder/public/js/PopupBuilder.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:32 Last Seen2024-04-19 11:35:06 Times Seen453 Hash 9e287df152cc1b6b8699e1c43cea46be 509b05710725013433b0f70754ec23ae55d0442d 9ae1b9f867c5a14924d3d6b09e57f7451a00917838dd127af0782a07551e3d58 Loading...

	www.iwa.biz/wp-content/themes/royal/js/head.js	76 kB	2023-03-08	2024-03-04
Pretty URL www.iwa.biz/wp-content/themes/royal/js/head.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:53:39 Last Seen2024-03-04 04:48:23 Times Seen18 Hash 7bdbb146762e003aed7c7052426f3d88 0cb8bf6a5bbd33a387321d779890b74b6523b668 d7d16814e65c1a109a2edab6ebc69f4885679c01a578121a9b8b2d49b1360dd4 Loading...

	www.iwa.biz/	140 B	2023-03-13	2023-03-13
Pretty URL www.iwa.biz/ IP 172.67.131.213 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:44:00 Last Seen2023-03-13 15:44:00 Times Seen1 Hash ab2ecd96df4d872dd43c88dfeb3099ac 73c19ec2c57c46bfed4fc582f7338d1c0fed3232 bdc748463c11df24afbd17397ea4b9e799f1b917e2877daa87744e8537c1290e Loading...

	www.iwa.biz/	75 B	2023-03-13	2023-03-13
Pretty URL www.iwa.biz/ IP 172.67.131.213 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:44:00 Last Seen2023-03-13 15:44:00 Times Seen1 Hash 017c189ad06a214828b683ca1c302dbc 8d2eae3f1a04875069f3e637b70767dc8a9dfa04 b05f0e83b02c66f72cb7ed7a49bb045ab12a9c72b2956c168f725aee5a5fc3a7 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	www.iwa.biz/wp-content/plugins/popup-builder/public/js/PopupConfig.js	6.0 kB	2023-03-07	2024-04-25
Pretty URL www.iwa.biz/wp-content/plugins/popup-builder/public/js/PopupConfig.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:32 Last Seen2024-04-25 11:31:44 Times Seen1296 Hash c7a493f7e281b7a2c5fe182a44ba8367 11c971b79a4c8ea2dd1b6b4d7b33192275054f44 3fe8c79d67b21039a5d059ef40761950fb76e1d17933d61509f7eb3c68f5aeeb Loading...

	www.iwa.biz/	146 B	2023-03-13	2023-03-13
Pretty URL www.iwa.biz/ IP 172.67.131.213 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:44:00 Last Seen2023-03-13 15:44:00 Times Seen1 Hash c940383b550f076c38f373db8813d927 c620e24497565b9fcb4c30bada34322c6bd7f2c3 78e2789eb636ff24774a6a5d366a9e1c2de5d6b7f0b4f98ec8e72d04abe89819 Loading...

	www.iwa.biz/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	1.2 kB	2023-03-07	2024-04-25
Pretty URL www.iwa.biz/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-25 18:38:13 Times Seen54948 Hash 9e8f56e8e1806253ba01a95cfc3d392c a8af90d7482e1e99d03de6bf88fed2315c5dd728 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8 Loading...

	www.iwa.biz/wp-content/themes/royal/js/etheme.js	74 kB	2023-03-13	2023-03-13
Pretty URL www.iwa.biz/wp-content/themes/royal/js/etheme.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:44:00 Last Seen2023-03-13 15:44:00 Times Seen1 Hash 7d249312fb08e6d8ea4244379094b5e6 ef509a36b1fffee24ada5a06f514f85256ebe16c 82debdce55ac18ede5f7ae79de8b0189ad4ab59080d74a77dc99692424b141a3 Loading...

	www.iwa.biz/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate.min.js	219 kB	2023-03-11	2023-03-13
Pretty URL www.iwa.biz/wp-content/plugins/Ultimate_VC_Addons/assets/min-js/ultimate.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:13:08 Last Seen2023-03-13 15:44:00 Times Seen1 Hash a4d2c68304e811f302d40017804090f5 7c1ce8ce642ba4ed6b6b2ce258a2cbec0de60b85 9570b5b8944833d753906e5541ef4df2a8126dbd8179eac82c091b0344491de5 Loading...

	www.iwa.biz/wp-content/themes/royal/js/plugins.js	496 kB	2023-03-12	2024-03-04
Pretty URL www.iwa.biz/wp-content/themes/royal/js/plugins.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 10:45:04 Last Seen2024-03-04 04:48:23 Times Seen5 Hash bf842560025f29c7e96fbf29a96d2e80 f414a25e571e9be996b18bb398b2e82469f2e525 85e21dc05a5d6ca557205da28c4e3e4dffc11562aef8c24f38013478f19ec38e Loading...

	www.iwa.biz/	1.0 kB	2023-03-13	2023-03-13
Pretty URL www.iwa.biz/ IP 172.67.131.213 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:44:00 Last Seen2023-03-13 15:44:00 Times Seen1 Hash 8e6581ee304daea0f3cf2e2fe567ac38 81a15409ca7b48bbda644f89e12aa33a4593e631 9d9d913387923cd86210af2d15f8cc0718f969aecf7145b6ce808410b5319cfe Loading...

	www.iwa.biz/	2.1 kB	2023-03-13	2023-03-13
Pretty URL www.iwa.biz/ IP 172.67.131.213 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:44:00 Last Seen2023-03-13 15:44:00 Times Seen1 Hash ae918a7f7ac216c349348bdf41b14a1c b65de6baa88544f635eaa82ba44f40034adc2cef 133bb9b769c229ba7f407d3f3f12036113ab77ae4f8ac5762795156d204496aa Loading...

	www.iwa.biz/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js	34 kB	2023-03-07	2024-04-25
Pretty URL www.iwa.biz/wp-content/plugins/cookie-law-info/legacy/public/js/cookie-law-info-public.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:28 Last Seen2024-04-25 16:04:44 Times Seen7245 Hash dffa195b546cf1dfd52f2206955eb892 a3d48e8f126eb96d12191d76ed71ad2bc8651d59 6c52384c7b0641dd1ead85d079c22d39bcc6dc5f2537afb1e6396bb619771a3f Loading...

	www.iwa.biz/wp-includes/js/jquery/jquery-migrate.min.js	11 kB	2023-03-07	2024-04-25
Pretty URL www.iwa.biz/wp-includes/js/jquery/jquery-migrate.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-25 18:37:13 Times Seen68630 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

		Size	First Seen	Last Seen
	#1 Eval - cc87a578cb0c773e26544c4c0b508b44	13 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:42:33 Last Seen2024-04-25 11:31:43 Times Seen624 Hash cc87a578cb0c773e26544c4c0b508b44 12d38f39566b9e50bf6e74792ab1794798345bfa 7183a348a0201cc8e84da400ce9f4efc6b416fccc8c834df5907a9888bc38a1f Loading...

	#2 Eval - 10f76837eeaf63261c96f095794c8584	24 kB	2023-03-07	2024-04-17
Pretty Observations First Seen2023-03-07 12:04:23 Last Seen2024-04-17 20:52:43 Times Seen231 Hash 10f76837eeaf63261c96f095794c8584 1b2ae48c21820551b2665dbea4c7f0320f120511 5b9dbbf3e70397a139a26790fed6461aa5464e027efe65a8b068e5abe60cbdb3 Loading...

HTTP Transactions (39)

	URL	IP	Response	Size
	www.iwa.biz/	172.67.131.213	301 Moved Permanently	694 B
URL HTTP/1.1 www.iwa.biz/ IP 172.67.131.213:0 ASN #13335 CLOUDFLARENET File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators Size 694 B (694 bytes) Hash c9e760b83a4d479f53877a4a9c81e1c6 c8fe2c0c0d61eb4ff3dba7799196b899c7359baa 75d9c9b24b6b7a51cddbd2b86a7b6571b69c1bd1ffa5b92d6da92f125f68e5d7 HTTP Headers `GET / HTTP/1.1 Host: www.iwa.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` HTTP/1.1 301 Moved Permanently Date: Fri, 03 Feb 2023 10:21:27 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: keep-alive location: https://www.iwa.biz/ vary: User-Agent x-turbo-charged-by: LiteSpeed CF-Cache-Status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9UNrXa3js3iURp7QPr2yg3BzocbrgRJ0EeCz6nlt25G4GzVNxc640fthDoTc1jAJ9Pgtp%2FCamT7Zc7tKy%2Fk0mc8NtJib6derWf4WjH5qmr7J5WZbWVoDtWpvSbyerg%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 793a70970b25b4e8-OSL alt-svc: h2=":443"; ma=60

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d4e95d0d8982bcd07804baf6fc88231c 5027abda0875bd2529dd4d6691784c74da71a9ee 373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5890 Expires: Fri, 03 Feb 2023 11:59:37 GMT Date: Fri, 03 Feb 2023 10:21:27 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash e935ea42be4feaed61a824b0b903913e f966cfa80d65a805cb9d7c6a53b3340865d7c51a eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5240 Expires: Fri, 03 Feb 2023 11:48:47 GMT Date: Fri, 03 Feb 2023 10:21:27 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 9a76feabb767086ae0fa54e0ffbf763f 3655d78994a1e9838340669462728b67c8c12e54 bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7526 Expires: Fri, 03 Feb 2023 12:26:53 GMT Date: Fri, 03 Feb 2023 10:21:27 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 30db107dcf4380cef05efea409c2e6a3 96e6a306fbc07299aba64e5c14e2bfca35872fa9 b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Fri, 03 Feb 2023 09:43:35 GMT content-type: application/json age: 2272 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: U8XdHVdIdG2PQzr7/dOKZQUn8CxB3WSU4u5jnINpgEWtcQsdEybFgFQzBCmLqDAYUCEy6w52B8ia98CFHeaSiQ== x-amz-request-id: SYXMD9GG18TA0K9C content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Fri, 03 Feb 2023 09:52:22 GMT age: 1745 last-modified: Mon, 09 Jan 2023 18:04:21 GMT etag: "7b922915ebf1fa3639b333f994c74f24" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Fri, 03 Feb 2023 10:21:27 GMT content-type: application/json content-length: 12 access-control-expose-headers: content-type vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-allow-credentials: true strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash 1a6317ceaa19280909669d315515e749 bbd837f87544a2885bb2827610c1355f9424df86 48c02e5793fb52af0ac0391423cfd44c0bb1ba8c8cd7a5e419da8512401f15fd HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Cache-Control: max-age=161852 Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 10:21:27 GMT Etag: "63dcb563-118" Expires: Sun, 05 Feb 2023 07:18:59 GMT Last-Modified: Fri, 03 Feb 2023 07:18:59 GMT Server: nginx Content-Length: 280`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Fri, 03 Feb 2023 09:49:06 GMT age: 1942 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 8913af0be619500295008bb91f506660 a7b8068ba9aa506205a295b24458c2616997a0d1 6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A" Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9814 Expires: Fri, 03 Feb 2023 13:05:02 GMT Date: Fri, 03 Feb 2023 10:21:28 GMT Connection: keep-alive`

	push.services.mozilla.com/	52.40.49.56	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 52.40.49.56:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: Pqc+dKoPBVHIrfk1mvwnVw== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: iANaJN3VU4+YgwSH2AwR/eelIhA=`

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash 1a6317ceaa19280909669d315515e749 bbd837f87544a2885bb2827610c1355f9424df86 48c02e5793fb52af0ac0391423cfd44c0bb1ba8c8cd7a5e419da8512401f15fd HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 1 Cache-Control: max-age=161852 Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 10:21:28 GMT Etag: "63dcb563-118" Expires: Sun, 05 Feb 2023 07:19:00 GMT Last-Modified: Fri, 03 Feb 2023 07:18:59 GMT Server: ECS (ska/F71C) X-Cache: HIT Content-Length: 280`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash bbeb609cbf32a8842bf96a124588e65e 40c0f548bcb714731f62df5a27cad21adef0463d 502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 10:21:29 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 9c45ea25709afbea416f215ee34611b0 117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed 7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 10:21:29 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	1.1 kB
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type gzip compressed data, from Unix\012- data Size 1.1 kB (1126 bytes) Hash 6f0da579f8d896cde0c1827755690f35 6431453e01c4c5e94a5382829fb05824f12697d5 bc0b8f17023da6955f8b0fb26b45dd78c6c121b1ba73f9119c17992a77f5b3ce HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 10:21:29 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.googletagmanager.com/gtag/js?id=UA-128908362-1	142.250.74.72	200 OK	44 kB
URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-128908362-1 IP 142.250.74.72:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1759) Size 44 kB (43884 bytes) Hash dfbab5ad64f79f21e06549f5c2629d73 5acc77e0d932658f91c21755229dec25d0ec060f 8c1d01f45be98c494405e1fe7ad758c72d92a9d2364e3a8b6b5ca1ebcf87df0a HTTP Headers `GET /gtag/js?id=UA-128908362-1 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.iwa.biz/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Fri, 03 Feb 2023 10:21:29 GMT expires: Fri, 03 Feb 2023 10:21:29 GMT cache-control: private, max-age=900 last-modified: Fri, 03 Feb 2023 09:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 43884 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 9c45ea25709afbea416f215ee34611b0 117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed 7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 10:21:29 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash bbeb609cbf32a8842bf96a124588e65e 40c0f548bcb714731f62df5a27cad21adef0463d 502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 10:21:29 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.iwa.biz/	172.67.131.213	200 OK	20 kB
URL HTTP/2 www.iwa.biz/ IP 172.67.131.213:0 ASN #13335 CLOUDFLARENET File type data Size 20 kB (19731 bytes) Hash 90a5028080ecd91a9ea136002eb4b02c 7c4abf1786289ed351bcb9400ccc6cd79b4395f4 0308cd95359da2805ff7a5b7842f5730e2620d088ed94e222b1f4f051970a626 HTTP Headers `GET / HTTP/1.1 Host: www.iwa.biz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/2 200 OK date: Fri, 03 Feb 2023 10:21:28 GMT content-type: text/html; charset=UTF-8 cf-edge-cache: cache,platform=wordpress x-pingback: https://www.iwa.biz/xmlrpc.php link: <https://www.iwa.biz/wp-json/>; rel="https://api.w.org/", <https://www.iwa.biz/wp-json/wp/v2/pages/1077>; rel="alternate"; type="application/json", <https://www.iwa.biz/>; rel=shortlink vary: Accept-Encoding,User-Agent x-turbo-charged-by: LiteSpeed cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F7mYXZ8umsR0zMvG%2BDdziPTvsG%2FjHWEoW0kMOCaUQ8DatdejYT5vOIEBzpepbO64xQgvXysHXS9EAk3WTtM1p97Y49OCNEBOkBNhnMbtF0vVtG6YpgNVg0ddCbBshw%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 793a709a79dcb4f1-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 3e2ea24777261484446afd5ee5329553 11ab60fc3c324768a84728c03c1a44dedbfc1c38 b5c234471c6c814ab490ac00e33d3e3ed761a489028dacb63d1cca8b8215d8a3 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3013 Cache-Control: max-age=166677 Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 10:21:29 GMT Etag: "63dcbc79-117" Expires: Sun, 05 Feb 2023 08:39:26 GMT Last-Modified: Fri, 03 Feb 2023 07:49:13 GMT Server: ECS (ska/F71C) X-Cache: HIT Content-Length: 279`

	hello.myfonts.net/count/2f1d4e	104.17.244.73	200 OK	903 B
URL HTTP/2 hello.myfonts.net/count/2f1d4e IP 104.17.244.73:0 ASN #13335 CLOUDFLARENET File type data Size 903 B (903 bytes) Hash 332bc4029b2d54c824864b343e4ab917 7949cc4591948aef146a87eb2ac28fcbce8239d1 01c4c16eb3a98cc22b66ca24c9f03ca6f43549b41fcd5aed3815134ad598b3e5 HTTP Headers `GET /count/2f1d4e HTTP/1.1 Host: hello.myfonts.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.iwa.biz/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Fri, 03 Feb 2023 10:21:29 GMT content-type: text/css content-length: 0 accept-ranges: bytes access-control-allow-origin: * age: 1 cache-control: max-age=604800 expires: Sat, 03 Feb 2024 10:21:29 GMT expect-ct: null set-cookie: __cf_bm=5uvaT3D1F8cEH9_2h3_kTeWG8Y_u8egoVeKB28GcqXw-1675419689-0-AREvQ5N0MsI82wD33eBKiz0MZ6NWjHWJNKn/+c7tFHszpBSLueiycVN9mE9SD53VZYX6BuxQYvHpqh5/mzsuna8=; path=/; expires=Fri, 03-Feb-23 10:51:29 GMT; domain=.myfonts.net; HttpOnly; Secure; SameSite=None vary: Accept-Encoding server: cloudflare cf-ray: 793a70a3af74b4f7-OSL X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d719402de0cd695e55dab2767247da49 f12f4795987a284820f6785ec16b5032b9861d79 98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5567 Expires: Fri, 03 Feb 2023 11:54:16 GMT Date: Fri, 03 Feb 2023 10:21:29 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d719402de0cd695e55dab2767247da49 f12f4795987a284820f6785ec16b5032b9861d79 98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5567 Expires: Fri, 03 Feb 2023 11:54:16 GMT Date: Fri, 03 Feb 2023 10:21:29 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d719402de0cd695e55dab2767247da49 f12f4795987a284820f6785ec16b5032b9861d79 98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5567 Expires: Fri, 03 Feb 2023 11:54:16 GMT Date: Fri, 03 Feb 2023 10:21:29 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d719402de0cd695e55dab2767247da49 f12f4795987a284820f6785ec16b5032b9861d79 98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5567 Expires: Fri, 03 Feb 2023 11:54:16 GMT Date: Fri, 03 Feb 2023 10:21:29 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg	34.120.237.76	200 OK	28 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type data Size 28 kB (27956 bytes) Hash 581a48d46ae13381ae81c95d0fc8fe5d eef52d36927011469a72d3c80b5e4ce6ec018d2e 28c25e504aadf75cf14c3a140f501ee9508f781d53a1a1b60f0bb24fbebf826d HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10796 x-amzn-requestid: 5c9b1a83-c99a-44b9-9a90-5edd7ef1e225 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fi0XKG93oAMFtsA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d76760-01bf754d6c725c3275c02a1b;Sampled=0 x-amzn-remapped-date: Mon, 30 Jan 2023 06:44:48 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: XTZJAn0LMAfFtaQ2bN8z58cCsUT5GzxDMnHVB_iw9E_NskHQ-BgbRQ== via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google date: Thu, 02 Feb 2023 22:19:26 GMT age: 84437 etag: "18e9f8f160d3515f1cb31fc7538ac762a6cab344" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fff49ad64-ed0c-4270-8972-02b93a55c3b8.jpeg	34.120.237.76	200 OK	60 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fff49ad64-ed0c-4270-8972-02b93a55c3b8.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type data Size 60 kB (60395 bytes) Hash 8512c9be60fee26a1b2932e94e65661d ce24a8482b2db7b06aebfcd3e9af0ccf542c145c b063608319c059aa73a5203deec1aeca976f9b4889c1b4bf1d0b1b52ef49413a HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fff49ad64-ed0c-4270-8972-02b93a55c3b8.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 12514 x-amzn-requestid: e5e536fd-15ec-4a9f-a678-c24e6202d0f1 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fY_y3HRSoAMFxUw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d379ab-5137ec566a8ccb4a3628e17a;Sampled=0 x-amzn-remapped-date: Fri, 27 Jan 2023 07:13:47 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: KvaWZ_Re1oRbOGg3MDxp5BKPCMAzYqCfVo4n3rf67ppjVO9Pmey4wg== via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google date: Thu, 02 Feb 2023 21:56:23 GMT age: 44706 etag: "058dc594601de546ae391ffa47269b404fee0f02" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg	34.120.237.76	200 OK	5.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.6 kB (5641 bytes) Hash d4041f3b5316bc84c9e6d88ddbc85b89 4978a4a20836b6f5d863d331bcedad782b7b4ac6 549b62d2c4ec965b8bec62010c0ce338dfea7992ee83eb7af61ff1a30d21f8b5 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5641 x-amzn-requestid: b53b54b1-3b00-47cf-a25c-e93910c2ebfb x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fuvzpHsXoAMFsuw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dc2ce3-0c4fc8154763febb44460ac2;Sampled=0 x-amzn-remapped-date: Thu, 02 Feb 2023 21:36:36 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: x4-BZdG4JGRKCSdKynnuweZfo9l0XZtDB-MiANy7C2Yz1URYMHP4sQ== via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google date: Thu, 02 Feb 2023 21:57:49 GMT age: 44620 etag: "4978a4a20836b6f5d863d331bcedad782b7b4ac6" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (11565 bytes) Hash e366b32074025aaf60bbae8bdb08d330 a52c2883bad98fa20333aa639a5dd3a5bf544c8e 9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11565 x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fboIrFGboAMFyyQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0 x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: w0Zm5V0TQxsQ7917U3fdhS_n7qKE143PuhI2JmNCDM_Pf0yPLyW6yA== via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google date: Thu, 02 Feb 2023 21:48:01 GMT age: 45208 etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feed96488-989b-49ab-8eef-5c9dea89a5ca.jpeg	34.120.237.76	200 OK	5.9 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feed96488-989b-49ab-8eef-5c9dea89a5ca.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.9 kB (5898 bytes) Hash 5314f1087266189144982b464f4aa7a6 438b5a17b9060f6825331348aa3797ab1c15895d fb7d5ec834d28c99f6430703c002c24a9caf50b7701a369cbd69e51576f1e73c HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feed96488-989b-49ab-8eef-5c9dea89a5ca.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5898 x-amzn-requestid: 50d6181d-6804-48ab-bc38-9fcaf4da1bc5 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fZALWF5IIAMFv5g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d37a48-2e2e53124ce2f9eb31290ec4;Sampled=0 x-amzn-remapped-date: Fri, 27 Jan 2023 07:16:24 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: 9Jus6UYlOGiDdqLBxJ387FMtEAST6THfW-oz6gjgFzKzchCdwUCcvQ== via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google date: Fri, 03 Feb 2023 04:09:26 GMT age: 22323 etag: "438b5a17b9060f6825331348aa3797ab1c15895d" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15f2ebc9-82b4-4f1b-b0b8-978571cb123b.jpeg	34.120.237.76	200 OK	14 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15f2ebc9-82b4-4f1b-b0b8-978571cb123b.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type data Size 14 kB (14005 bytes) Hash dd78a38f945f37c003f65fc9ec2e1f30 05a3e085374c324139f8e91e1652df082f0262df 2f1f13e9f1e089def647bda4e876c8f926f31401c40613c7d10efd00bd715197 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15f2ebc9-82b4-4f1b-b0b8-978571cb123b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9130 x-amzn-requestid: 09ad3fbb-1e71-4455-82df-6e59f65239a1 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fuxiYEkqIAMFVZg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dc2fa8-1dca116e4317f9bd14f6d45a;Sampled=0 x-amzn-remapped-date: Thu, 02 Feb 2023 21:48:24 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: _Bc2svrG-wX63DK9RPUyjh-n6AHVHaQe3QRmEL27L-amwCH2I_f_9g== via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google date: Thu, 02 Feb 2023 21:57:38 GMT age: 44631 etag: "decf26282993d7f0b14cf4112d14fa39c97fa89f" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	www.google-analytics.com/analytics.js	142.250.74.14	200 OK	20 kB
URL HTTP/2 www.google-analytics.com/analytics.js IP 142.250.74.14:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1490) Size 20 kB (20085 bytes) Hash ca7fbbfd120e3e329633044190bbf134 d17f81e03dd827554ddd207ea081fb46b3415445 847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db HTTP Headers `GET /analytics.js HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.iwa.biz/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK strict-transport-security: max-age=10886400; includeSubDomains; preload x-content-type-options: nosniff vary: Accept-Encoding content-encoding: gzip cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 20085 date: Fri, 03 Feb 2023 09:45:20 GMT expires: Fri, 03 Feb 2023 11:45:20 GMT cache-control: public, max-age=7200 age: 2171 last-modified: Tue, 10 Jan 2023 21:29:14 GMT content-type: text/javascript alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.google-analytics.com/j/collect?v=1&_v=j99&a=2087082576&t=pageview&_s=1&dl=https%3A%2F%2Fwww.iwa.biz%2F&ul=en-us&de=UTF-8&dt=Home%20-%20Independent%20Warranty%20Association%20(IWA)&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=94967678&gjid=1602507166&cid=2005381898.1675419721&tid=UA-128908362-1&_gid=829849330.1675419721&_r=1&_slc=1&gtm=457e3210&z=2085299912	142.250.74.14	200 OK	4 B
URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=2087082576&t=pageview&_s=1&dl=https%3A%2F%2Fwww.iwa.biz%2F&ul=en-us&de=UTF-8&dt=Home%20-%20Independent%20Warranty%20Association%20(IWA)&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=94967678&gjid=1602507166&cid=2005381898.1675419721&tid=UA-128908362-1&_gid=829849330.1675419721&_r=1&_slc=1&gtm=457e3210&z=2085299912 IP 142.250.74.14:0 ASN #15169 GOOGLE File type ASCII text, with no line terminators Size 4 B (4 bytes) Hash 9e92e190700c1af4539b40c2171320a9 209bcdb79e6067b51091ce8586d4b977f25b67d8 aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8 HTTP Headers POST /j/collect?v=1&_v=j99&a=2087082576&t=pageview&_s=1&dl=https%3A%2F%2Fwww.iwa.biz%2F&ul=en-us&de=UTF-8&dt=Home%20-%20Independent%20Warranty%20Association%20(IWA)&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=94967678&gjid=1602507166&cid=2005381898.1675419721&tid=UA-128908362-1&_gid=829849330.1675419721&_r=1&_slc=1&gtm=457e3210&z=2085299912 HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 0 Origin: https://www.iwa.biz Connection: keep-alive Referer: https://www.iwa.biz/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK access-control-allow-origin: https://www.iwa.biz date: Fri, 03 Feb 2023 10:21:31 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Sun, 17 May 1998 03:00:00 GMT access-control-allow-credentials: true x-content-type-options: nosniff content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 4 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 9bfd33253208c9d034988400d66abd5d 8811fd76d9bc56c15431433f8f08d648185992ed 6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 10:21:31 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-128908362-1&cid=2005381898.1675419721&jid=94967678&gjid=1602507166&_gid=829849330.1675419721&_u=YEBAAUAAAAAAACAAI~&z=432652809	173.194.222.154	200 OK	1 B
URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-128908362-1&cid=2005381898.1675419721&jid=94967678&gjid=1602507166&_gid=829849330.1675419721&_u=YEBAAUAAAAAAACAAI~&z=432652809 IP 173.194.222.154:0 ASN #15169 GOOGLE File type very short file (no magic) Size 1 B (1 bytes) Hash c4ca4238a0b923820dcc509a6f75849b 356a192b7913b04c54574d18c28d46e6395428ab 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b HTTP Headers POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-128908362-1&cid=2005381898.1675419721&jid=94967678&gjid=1602507166&_gid=829849330.1675419721&_u=YEBAAUAAAAAAACAAI~&z=432652809 HTTP/1.1 Host: stats.g.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 0 Origin: https://www.iwa.biz Connection: keep-alive Referer: https://www.iwa.biz/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK access-control-allow-origin: https://www.iwa.biz strict-transport-security: max-age=10886400; includeSubDomains; preload date: Fri, 03 Feb 2023 10:21:31 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Sun, 17 May 1998 03:00:00 GMT access-control-allow-credentials: true x-content-type-options: nosniff content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 1 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 9bfd33253208c9d034988400d66abd5d 8811fd76d9bc56c15431433f8f08d648185992ed 6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 10:21:31 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg	34.120.237.76	200 OK	8.2 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type data Size 8.2 kB (8212 bytes) Hash 9befb30d5394fcdda386764f17a9033d 48ef4c59e66983dcc34460671988e972acf6060f b589355f5e4a2fe3692463f2163a4b32dc68b8c624e8be409014ba6b5b914f6e HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK server: nginx content-length: 8211 x-amzn-requestid: 6a1fd567-b34d-4787-aa05-5b7db3fc51c3 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fflRBHU4IAMFnsw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d61c06-2d1ec3206d2ebeb4780a84b4;Sampled=0 x-amzn-remapped-date: Sun, 29 Jan 2023 07:11:02 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: lUloQ6xaRWpnvMRh7kFvFIWhFotmILLZHfD_YK01RmrQ2vmYKVh46w== via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google date: Fri, 03 Feb 2023 03:08:32 GMT age: 25984 etag: "541e878afee68c8802bb52b0cbbe5a5a0a185392" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C700%2C300italic&ver=6.1.1	142.250.74.106	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C700%2C300italic&ver=6.1.1 IP 142.250.74.106:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css?family=Open+Sans%3A300%2C400%2C700%2C300italic&ver=6.1.1 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.iwa.biz/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Fri, 03 Feb 2023 10:21:29 GMT date: Fri, 03 Feb 2023 10:21:29 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Roboto%3A100%2C400%2C500%2C700%2C300&subset=latin%2Ccyrillic-ext&ver=6.1.1	142.250.74.106	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C400%2C500%2C700%2C300&subset=latin%2Ccyrillic-ext&ver=6.1.1 IP 142.250.74.106:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css?family=Roboto%3A100%2C400%2C500%2C700%2C300&subset=latin%2Ccyrillic-ext&ver=6.1.1 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.iwa.biz/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Fri, 03 Feb 2023 10:21:29 GMT date: Fri, 03 Feb 2023 10:21:29 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (27)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML