Report - injuredripplegentleman.social-card-share.top/

Report Overview

Submitted URL
injuredripplegentleman.social-card-share.top/
IP
159.65.208.189
ASN
#14061 DIGITALOCEAN-ASN
Submitted
2022-11-25 14:55:26
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
10

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
injuredripplegentleman.social-card-share.top	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.5 kB	1.2 MB	159.65.208.189
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.38.146.2
hn.inspectlet.com	9209	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	505 B	627 B	104.22.57.245
api.livechatinc.com	5353	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	2.4 kB	23.36.79.16
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
anyimage.io	55221	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	416 B	35 kB	159.89.248.162
player.vimeo.com	1858	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	508 B	10 kB	162.159.138.60
i.vimeocdn.com	3126	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	965 B	10 kB	151.101.86.109
163vod-adaptive.akamaized.net	128676	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	639 B	4.9 kB	23.36.76.152
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	886 B	2.7 kB	142.250.74.10
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.1 kB	142.250.74.3
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	47 kB	34.120.237.76
cdn.inspectlet.com	9408	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	314 B	64 kB	104.22.56.245
f.vimeocdn.com	3234	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	255 kB	151.101.86.109
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.77.32
use.fontawesome.com	942	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	210 kB	172.64.132.15
cdn.livechatinc.com	6288	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	707 B	27 kB	23.36.79.16
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	3.4 kB	93.184.220.29

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-25	medium	injuredripplegentleman.social-card-share.top/	Malware
2022-11-25	medium	injuredripplegentleman.social-card-share.top/lock-ui.js	Malware
2022-11-25	medium	injuredripplegentleman.social-card-share.top/pixie/pixie-integrate.js	Malware
2022-11-25	medium	injuredripplegentleman.social-card-share.top/js/front/app.js?id=414ac47d55010fc19fb2	Malware
2022-11-25	medium	injuredripplegentleman.social-card-share.top/creator/lottery	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (16)

	URL	Size	First Seen	Last Seen
	injuredripplegentleman.social-card-share.top/	460 B	2023-03-11	2023-03-11
Pretty URL injuredripplegentleman.social-card-share.top/ IP 159.65.208.189 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:09:14 Last Seen2023-03-11 20:09:14 Times Seen1 Hash de508157a0f9d445f85b1a0c73078e67 a07a71289ebfa3e3c95020ca7da293ed4ec8988b 2b51ea159a4d129430d61a00ce2c1f9efb63010bb3059b667de165c54da30a14 Loading...

	cdn.livechatinc.com/tracking.js	87 kB	2023-03-08	2023-03-17
Pretty URL cdn.livechatinc.com/tracking.js IP 23.36.79.16 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:58 Last Seen2023-03-17 22:17:07 Times Seen1 Hash 72abe41f23b1a5d3b25350cc7025a805 68bb41da28f8a4e1fbb10323c837d294065f3f16 6c6c248f0a1c0823102a9421be3f864afe20dd840f1041055bbaa6420896fc3c Loading...

	player.vimeo.com/video/251553421	200 B	2023-03-07	2023-12-19
Pretty URL player.vimeo.com/video/251553421 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:34 Last Seen2023-12-19 13:15:14 Times Seen10 Hash af8cc9e4334b181797ba45066b8ef4d8 c4c1b4ea678176597ae6720445f701d40bfda97d f675bde2f1e403c77205aa30dfe61dc90f15027df3679a79c4582cc804690783 Loading...

	player.vimeo.com/video/251553421	359 B	2023-03-08	2023-03-18
Pretty URL player.vimeo.com/video/251553421 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:12 Last Seen2023-03-18 07:43:20 Times Seen1 Hash 3bebca74492661d309358758a5066f7f 35eb0d0a00a8f3df0c825a0093eacb71bc6e7d43 c5251ebe799b83572d361fe5378abcfe1c5f08fd2f9ad71d34e43b492b85b94b Loading...

	injuredripplegentleman.social-card-share.top/lock-ui.js	2.2 kB	2023-03-07	2024-04-18
Pretty URL injuredripplegentleman.social-card-share.top/lock-ui.js IP 159.65.208.189 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:42:00 Last Seen2024-04-18 11:46:40 Times Seen59 Hash 956eb118d6066b237c0309e4c6937183 6ea3cd295664cd8e8c37bb210c90e6a051b6958c 4ca3c9768e1ace8a0eb02fc8db102e38775fd3ff6920a3b655d8451638f2e8ec Loading...

	injuredripplegentleman.social-card-share.top/js/front/app.js?id=414ac47d55010fc19fb2	1.5 MB	2023-03-07	2024-01-02
Pretty URL injuredripplegentleman.social-card-share.top/js/front/app.js?id=414ac47d55010fc19fb2 IP 159.65.208.189 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:42:00 Last Seen2024-01-02 23:36:18 Times Seen56 Hash 414ac47d55010fc19fb26242833ba8dd c0c7a621261ecd556ccfaa93d762cd2cbb24d699 ce5091c3e5cb2933c989980e4d37ee96aa80a29fe49a511f93fea9b71fab360c Loading...

	player.vimeo.com/video/251553421	1.2 kB	2023-03-07	2023-03-13
Pretty URL player.vimeo.com/video/251553421 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:42:00 Last Seen2023-03-13 17:16:44 Times Seen1 Hash b1c059994e21b2831a56ff63f9e80437 e4fb3ead69c47c9fa4678c2ce7df9a28b40d3e92 4ff1adc8cc0e523a0006ea7e65d7ff6a5e9698a149f2234d4c40f2a326926aa0 Loading...

	player.vimeo.com/video/251553421	14 kB	2023-03-11	2023-03-11
Pretty URL player.vimeo.com/video/251553421 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:09:14 Last Seen2023-03-11 20:09:14 Times Seen1 Hash c6f702f5e41fc562aed0f7b8aa93e543 89b9048a083e62e6e10ace35410dfcaa3c19dabf bb9b4ee398ab8b0b5296b78fa29f7c7b1bc1ca2d76c1cbe262a1e5d8f49246e9 Loading...

	injuredripplegentleman.social-card-share.top/pixie/pixie-integrate.js	14 kB	2023-03-07	2024-04-18
Pretty URL injuredripplegentleman.social-card-share.top/pixie/pixie-integrate.js IP 159.65.208.189 ASN #14061 DIGITALOCEAN-ASN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:42:00 Last Seen2024-04-18 11:46:40 Times Seen57 Hash f26a18df9910290c5da1845649ce393b e10154ed0b64ec1c530dbd445d99e5be373f61c1 939c2773fb15b2a975d5928271661c4df5223547543d93af2570c0ec83a475fa Loading...

	cdn.inspectlet.com/inspectlet.js	193 kB	2023-03-07	2023-10-25
Pretty URL cdn.inspectlet.com/inspectlet.js IP 104.22.56.245 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:15 Last Seen2023-10-25 22:24:21 Times Seen110 Hash 6c7ab871f7f55224de0ae7526da87401 07c5b1ca23e5e312b51af1c3074bd1c3f89bbcb5 5d554121551df68e414c85920b6541d2e92251a189ff19a4b1f8dffe97ce1cb5 Loading...

	api.livechatinc.com/v3.3/customer/action/get_dynamic_configuration?license_id=6461921&url=http%3A%2F%2Finjuredripplegentleman.social-card-share.top%2F&channel_type=code&jsonp=__z5gfip04lb8	215 B	2023-03-11	2023-03-11
Pretty URL api.livechatinc.com/v3.3/customer/action/get_dynamic_configuration?license_id=6461921&url=http%3A%2F%2Finjuredripplegentleman.social-card-share.top%2F&channel_type=code&jsonp=__z5gfip04lb8 IP 23.36.79.16 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:09:14 Last Seen2023-03-11 20:09:14 Times Seen1 Hash 7ab2a3a25cc42ff1cdcb231e9a9a49c0 621e51dbf3831dbddadb8db2285eb1fe94c52565 62e7acba92423122b26d48d53def5fa9d5d17757b9b9f5e2f0c1ba3672b5dbea Loading...

	player.vimeo.com/video/251553421	88 B	2023-03-08	2023-03-18
Pretty URL player.vimeo.com/video/251553421 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:12 Last Seen2023-03-18 07:43:21 Times Seen1 Hash ad413198e105cd8f701ecfbbd330f933 10ce91413b40b42e0db106f75f9b906c53aadeae a2eae90d055f51a5223ced60b71f552e93c37d5a8c6caa224f92b90af6a2b971 Loading...

	player.vimeo.com/video/251553421	820 B	2023-03-08	2023-03-18
Pretty URL player.vimeo.com/video/251553421 IP 162.159.138.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:12 Last Seen2023-03-18 07:43:22 Times Seen1 Hash ef57c0109c58c2cbc1c0ef49652eb902 180b3bab67f413ffb480bd1eabfe0c66e2550b1a 5598f2690bcdf9b90ff7c652108104895b8e0f0346dd6cf425e4b36380a2a411 Loading...

	api.livechatinc.com/v3.3/customer/action/get_configuration?license_id=6461921&version=2969.10.10.1198.25.34.21.13.8.31.8.13.2&group_id=0&jsonp=__lc_static_config	4.8 kB	2023-03-11	2023-03-14
Pretty URL api.livechatinc.com/v3.3/customer/action/get_configuration?license_id=6461921&version=2969.10.10.1198.25.34.21.13.8.31.8.13.2&group_id=0&jsonp=__lc_static_config IP 23.36.79.16 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:18:20 Last Seen2023-03-14 13:17:13 Times Seen1 Hash 58e1a1179e30f66aa23ff26de95914db 5e86b05f6c20b1d1f434ca98683cdc8d5060e0f7 3fcf5d04e7c7fb2991ddf2a1be461df1b16c5a6c1e66f539dd3862d83c476328 Loading...

	f.vimeocdn.com/p/4.14.1/js/player.module.js	484 kB	2023-03-08	2023-03-11
Pretty URL f.vimeocdn.com/p/4.14.1/js/player.module.js IP 151.101.86.109 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:12 Last Seen2023-03-11 23:52:38 Times Seen1 Hash 5d2e31c6d64ddcb0aa152d5ab6e7ea54 956ee5db46786642603110687422a6e31f52d3f3 9bc4fe696ce22840edd594d94562f963f1710043bb81c71f179f39e133d81c70 Loading...

	f.vimeocdn.com/p/4.14.1/js/vendor.module.js	484 kB	2023-03-08	2023-03-11
Pretty URL f.vimeocdn.com/p/4.14.1/js/vendor.module.js IP 151.101.86.109 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:12 Last Seen2023-03-11 23:52:38 Times Seen1 Hash 972045036cf97b32ac55bfa336566b7b bf1d011eca0d600000de759d416b7abbcf6e04a7 62ad87ae35b8e6948990730f5ac9dfd088f37aa0b36841995b43f1cbb0553fe3 Loading...

HTTP Transactions (54)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7c60904d097cde276e4e5632cef1b9f1
4f805026462589345d85e8df2d18eafba6237504
12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15520
Expires: Fri, 25 Nov 2022 19:13:54 GMT
Date: Fri, 25 Nov 2022 14:55:14 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
10730f388c028d64e19b8a48d414768f
e43b104e57e5ea7ff8568835776858cf2ede6f00
f3c30c6d139288f1bfe13fce85c6ddc1514e1639fcf4d31a6012a3309ed1d50d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6147
Cache-Control: max-age=163107
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 14:55:14 GMT
Etag: "63809972-1d7"
Expires: Sun, 27 Nov 2022 12:13:41 GMT
Last-Modified: Fri, 25 Nov 2022 10:31:14 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
260e9998c20d831b66f1029c8f47aac9
716d630f647c54dc69a7f9c63a6cac294b3df7f7
c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2390
Expires: Fri, 25 Nov 2022 15:35:04 GMT
Date: Fri, 25 Nov 2022 14:55:14 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: ptvcpJtNCwwtwwDpGa1EWL8TDV8Z1CbZjppuZTEnHlYKOfLP7DsH00RMn3vY5BNFP15LbFuEbIc=
x-amz-request-id: XN8PW00BVYPWZY6Y
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 25 Nov 2022 14:40:50 GMT
age: 864
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 25 Nov 2022 14:17:26 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2268
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 14:55:14 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 25 Nov 2022 14:08:53 GMT
cache-control: public,max-age=3600
age: 2782
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

injuredripplegentleman.social-card-share.top/

159.65.208.189

200 OK

1.5 kB

URL HTTP/1.1
injuredripplegentleman.social-card-share.top/
IP
159.65.208.189:0
ASN
#14061 DIGITALOCEAN-ASN

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (481)
Size
1.5 kB (1520 bytes)
Hash
6c83aa7d9ab9b8823eda64ee3ca4e7c0
1edbe2010e279534e44cdbe5f0dc740f8dce9086
7d6b8cafa09b3d3cdc33c16acbb432d54b98dbe08d75aea831c1b7f75858916c

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: injuredripplegentleman.social-card-share.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Cache-Control: no-cache, private
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
Date: Fri, 25 Nov 2022 14:55:15 GMT
Server: Caddy
Set-Cookie: anyimage_session=eyJpdiI6ImxQdCtHYzF4RWx3cDBGaFNvYm1Rd3c9PSIsInZhbHVlIjoicmRNMnR1QWV2Uk12UG1aWENnbFFTV09cL3V2TktPd2ZnYkszdXlxbVlJbDNYajlnejFUXC9ZNzltWFdCdWMwckk1IiwibWFjIjoiOTczOGIwMTc1NzcwNTFmNWI5OTMwNDQ3MTliY2RmMzRmZjdiNzU5MmM1ZjVlOTIwOTRiZmNmYWVkMjBlOTkyYiJ9; expires=Fri, 25-Nov-2022 16:55:15 GMT; Max-Age=7200; path=/; httponly
Vary: Accept-Encoding
X-Powered-By: PHP/7.3.2
Content-Length: 1520

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
df06e70fc8a35facf1d8db463d18e231
fa8a2975566cc792898f870e48ae7518d3657326
4cef7e704f4d575ce6733f6f2d803d241b597be51ff3fb03f72e5c33a893b504

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4205
Cache-Control: max-age=156101
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 14:55:15 GMT
Etag: "638085ab-1d7"
Expires: Sun, 27 Nov 2022 10:16:56 GMT
Last-Modified: Fri, 25 Nov 2022 09:06:51 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

injuredripplegentleman.social-card-share.top/css/front/app.css?id=f9505f0dca97df03e6e5

159.65.208.189

200 OK

14 kB

URL HTTP/1.1
injuredripplegentleman.social-card-share.top/css/front/app.css?id=f9505f0dca97df03e6e5
IP
159.65.208.189:0
ASN
#14061 DIGITALOCEAN-ASN

File type
ASCII text, with very long lines (65194)
Size
14 kB (13702 bytes)
Hash
f21430ff45ef642321de165bdf5d0beb
de6a03b4948951a4ae535153f486471511bc7169
bbd98e65fba193f8a1e733c460f89184568ad6278eb6b0dc83a083b64e9e1891

HTTP Headers

GET /css/front/app.css?id=f9505f0dca97df03e6e5 HTTP/1.1
Host: injuredripplegentleman.social-card-share.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://injuredripplegentleman.social-card-share.top/
Cookie: anyimage_session=eyJpdiI6ImxQdCtHYzF4RWx3cDBGaFNvYm1Rd3c9PSIsInZhbHVlIjoicmRNMnR1QWV2Uk12UG1aWENnbFFTV09cL3V2TktPd2ZnYkszdXlxbVlJbDNYajlnejFUXC9ZNzltWFdCdWMwckk1IiwibWFjIjoiOTczOGIwMTc1NzcwNTFmNWI5OTMwNDQ3MTliY2RmMzRmZjdiNzU5MmM1ZjVlOTIwOTRiZmNmYWVkMjBlOTkyYiJ9

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: text/css; charset=utf-8
Etag: W/"r7cin32b9n"
Last-Modified: Tue, 15 Feb 2022 12:28:15 GMT
Server: Caddy
Vary: Accept-Encoding
Date: Fri, 25 Nov 2022 14:55:15 GMT
Transfer-Encoding: chunked

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b44543de9922ec7d97f2e0be1865553e
caef856450efd75de0cfae9402903b1f4bd6de4c
d251377b4bc11c32a847ce4dc5dfda92e56031617f5b3eeea54fdcd0945b3eb7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 14:55:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

injuredripplegentleman.social-card-share.top/lock-ui.js

159.65.208.189

200 OK

880 B

URL HTTP/1.1
injuredripplegentleman.social-card-share.top/lock-ui.js
IP
159.65.208.189:0
ASN
#14061 DIGITALOCEAN-ASN

File type
HTML document, ASCII text, with very long lines (787)
Size
880 B (880 bytes)
Hash
16e099b8f78a487623a97bc953a24013
ff6076cb720c4536d2a6f7eec06270942d797e30
1a696e83df2014cb5738e120017178dc8c0a3eb0d568445334ac95bc2d948a76

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /lock-ui.js HTTP/1.1
Host: injuredripplegentleman.social-card-share.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://injuredripplegentleman.social-card-share.top/
Cookie: anyimage_session=eyJpdiI6ImxQdCtHYzF4RWx3cDBGaFNvYm1Rd3c9PSIsInZhbHVlIjoicmRNMnR1QWV2Uk12UG1aWENnbFFTV09cL3V2TktPd2ZnYkszdXlxbVlJbDNYajlnejFUXC9ZNzltWFdCdWMwckk1IiwibWFjIjoiOTczOGIwMTc1NzcwNTFmNWI5OTMwNDQ3MTliY2RmMzRmZjdiNzU5MmM1ZjVlOTIwOTRiZmNmYWVkMjBlOTkyYiJ9

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: application/javascript
Etag: W/"r7cin31oa"
Last-Modified: Tue, 15 Feb 2022 12:28:15 GMT
Server: Caddy
Vary: Accept-Encoding
Date: Fri, 25 Nov 2022 14:55:15 GMT
Content-Length: 880

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
3fead833747597f4402b862e25ee679a
ae554d1c4829cf710a18826f5107d7ff0402f007
11214c69b7259b018c5c01eb2ca9bdc94a8f97f853948f4f18349f7387afe09d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6434
Cache-Control: max-age=169128
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 14:55:15 GMT
Etag: "6380afd9-116"
Expires: Sun, 27 Nov 2022 13:54:03 GMT
Last-Modified: Fri, 25 Nov 2022 12:06:49 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 278

injuredripplegentleman.social-card-share.top/pixie/pixie-integrate.js

159.65.208.189

200 OK

3.3 kB

URL HTTP/1.1
injuredripplegentleman.social-card-share.top/pixie/pixie-integrate.js
IP
159.65.208.189:0
ASN
#14061 DIGITALOCEAN-ASN

File type
C source, ASCII text
Size
3.3 kB (3325 bytes)
Hash
77c9d14ae032873143d65462fab19c7a
dd8c3f97dc39e5f5a00a7f3d646f9b9febba9148
dd1dbe7f916cdf9e09b528abd6ef0659b04c380556fa863929c836552f191f22

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /pixie/pixie-integrate.js HTTP/1.1
Host: injuredripplegentleman.social-card-share.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://injuredripplegentleman.social-card-share.top/
Cookie: anyimage_session=eyJpdiI6ImxQdCtHYzF4RWx3cDBGaFNvYm1Rd3c9PSIsInZhbHVlIjoicmRNMnR1QWV2Uk12UG1aWENnbFFTV09cL3V2TktPd2ZnYkszdXlxbVlJbDNYajlnejFUXC9ZNzltWFdCdWMwckk1IiwibWFjIjoiOTczOGIwMTc1NzcwNTFmNWI5OTMwNDQ3MTliY2RmMzRmZjdiNzU5MmM1ZjVlOTIwOTRiZmNmYWVkMjBlOTkyYiJ9

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: application/javascript
Etag: W/"r7cin3al2"
Last-Modified: Tue, 15 Feb 2022 12:28:15 GMT
Server: Caddy
Vary: Accept-Encoding
Date: Fri, 25 Nov 2022 14:55:15 GMT
Transfer-Encoding: chunked

fonts.googleapis.com/css?family=Open+Sans:300,400,600,700

142.250.74.10

200 OK

1.2 kB

URL HTTP/2
fonts.googleapis.com/css?family=Open+Sans:300,400,600,700
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
1.2 kB (1199 bytes)
Hash
fb7f8e4f408b604889d94692600ed8cc
5de2828b00052e50cac4635e51acd9153eeb8fc8
9af08bbeb951660a6b9c32dc8c57d8d61447cff909e87aeb1c58970b1039c1da

HTTP Headers

GET /css?family=Open+Sans:300,400,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://injuredripplegentleman.social-card-share.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 25 Nov 2022 14:55:15 GMT
date: Fri, 25 Nov 2022 14:55:15 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

injuredripplegentleman.social-card-share.top/js/front/app.js?id=414ac47d55010fc19fb2

159.65.208.189

200 OK

428 kB

URL HTTP/1.1
injuredripplegentleman.social-card-share.top/js/front/app.js?id=414ac47d55010fc19fb2
IP
159.65.208.189:0
ASN
#14061 DIGITALOCEAN-ASN

File type
Unicode text, UTF-8 text, with very long lines (59665), with no line terminators
Size
428 kB (428202 bytes)
Hash
4c3379019b1522680aa2541ce3f360cd
496b8b7e0dddb8a1e07732036b65566de2da07de
5d159442414e8feaf83d5880d82b2603951835775a1e92c102a4dd6084fe439d

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /js/front/app.js?id=414ac47d55010fc19fb2 HTTP/1.1
Host: injuredripplegentleman.social-card-share.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://injuredripplegentleman.social-card-share.top/
Cookie: anyimage_session=eyJpdiI6ImxQdCtHYzF4RWx3cDBGaFNvYm1Rd3c9PSIsInZhbHVlIjoicmRNMnR1QWV2Uk12UG1aWENnbFFTV09cL3V2TktPd2ZnYkszdXlxbVlJbDNYajlnejFUXC9ZNzltWFdCdWMwckk1IiwibWFjIjoiOTczOGIwMTc1NzcwNTFmNWI5OTMwNDQ3MTliY2RmMzRmZjdiNzU5MmM1ZjVlOTIwOTRiZmNmYWVkMjBlOTkyYiJ9

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: application/javascript
Etag: W/"r7cin3x6bs"
Last-Modified: Tue, 15 Feb 2022 12:28:15 GMT
Server: Caddy
Vary: Accept-Encoding
Date: Fri, 25 Nov 2022 14:55:15 GMT
Transfer-Encoding: chunked

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
3fead833747597f4402b862e25ee679a
ae554d1c4829cf710a18826f5107d7ff0402f007
11214c69b7259b018c5c01eb2ca9bdc94a8f97f853948f4f18349f7387afe09d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6434
Cache-Control: max-age=169128
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 14:55:15 GMT
Etag: "6380afd9-116"
Expires: Sun, 27 Nov 2022 13:54:03 GMT
Last-Modified: Fri, 25 Nov 2022 12:06:49 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 278

push.services.mozilla.com/

52.38.146.2

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.38.146.2:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VLu4N61zHDtmoDn1lwbfrw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: SY656vOh1LUsqlOCPyaH0eX0hv0=

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 14:55:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

use.fontawesome.com/releases/v5.8.1/css/all.css

172.64.132.15

200 OK

57 kB

URL HTTP/2
use.fontawesome.com/releases/v5.8.1/css/all.css
IP
172.64.132.15:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (54926)
Size
57 kB (56915 bytes)
Hash
cfd64ace345fe8a5df8824d1f37df2e9
6c8aec3a6bf8494d50814b7bd10e7e6d0c1abc10
4c061123061840b03beac0ad9bba43e0fbb5aa8f053f050a43598de0e7d04511

HTTP Headers

GET /releases/v5.8.1/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://injuredripplegentleman.social-card-share.top
Connection: keep-alive
Referer: http://injuredripplegentleman.social-card-share.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 25 Nov 2022 14:55:16 GMT
content-type: text/css
x-amz-id-2: eG/sk8peOg8gvseE/lcBWUHQjTbh/CzblE//10D9suLXGK6ZgjapcyNoFNzxQdzHudDmoUfHTgo=
x-amz-request-id: NKVTNMGYK05GCQ93
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:46:39 GMT
etag: W/"e4c542a7f6bf6f74fdd8cdf6e8096396"
cache-control: max-age=31556926
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=THpUOtz7QMcy6dccLphqxKc1YkQuhbiPCzDKniFVqn8xe9vWZMPPtnZ3XQRwBb4zVEaJshvkI2mCO2knWHi4SsPaufVS0SKpSSyMQLWtI8qeZF6N6dcQyeq0rS2ueBIWtqv5ifIP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76fb396bac027201-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

injuredripplegentleman.social-card-share.top/favicon.ico

159.65.208.189

200 OK

1.2 kB

URL HTTP/1.1
injuredripplegentleman.social-card-share.top/favicon.ico
IP
159.65.208.189:0
ASN
#14061 DIGITALOCEAN-ASN

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
cfb3931a8993d1859966b2ad99d6d1d5
c89dd549c59497402673d66ca4921b8bc4d210dc
231f851d23bae6d1b62d9cb9120b5bec6d5e5da7e394e921afa4e23c4ead2dac

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: injuredripplegentleman.social-card-share.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://injuredripplegentleman.social-card-share.top/
Cookie: anyimage_session=eyJpdiI6ImxQdCtHYzF4RWx3cDBGaFNvYm1Rd3c9PSIsInZhbHVlIjoicmRNMnR1QWV2Uk12UG1aWENnbFFTV09cL3V2TktPd2ZnYkszdXlxbVlJbDNYajlnejFUXC9ZNzltWFdCdWMwckk1IiwibWFjIjoiOTczOGIwMTc1NzcwNTFmNWI5OTMwNDQ3MTliY2RmMzRmZjdiNzU5MmM1ZjVlOTIwOTRiZmNmYWVkMjBlOTkyYiJ9

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Length: 1150
Content-Type: image/vnd.microsoft.icon
Etag: "r7cin3vy"
Last-Modified: Tue, 15 Feb 2022 12:28:15 GMT
Server: Caddy
Date: Fri, 25 Nov 2022 14:55:16 GMT

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 14:55:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

injuredripplegentleman.social-card-share.top/img/AnyImage-Logo.png

159.65.208.189

200 OK

6.6 kB

URL HTTP/1.1
injuredripplegentleman.social-card-share.top/img/AnyImage-Logo.png
IP
159.65.208.189:0
ASN
#14061 DIGITALOCEAN-ASN

File type
PNG image data, 678 x 109, 8-bit/color RGBA, non-interlaced\012- data
Size
6.6 kB (6641 bytes)
Hash
1bacf8483198a0677117c181848c0622
4d79640db4cc395de8e469ad8357e9b3910f130d
a3a5c73e70872c1dbb6e9665ef54e9f31a98968ae56b1f02613f682f9b9bee39

HTTP Headers

GET /img/AnyImage-Logo.png HTTP/1.1
Host: injuredripplegentleman.social-card-share.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://injuredripplegentleman.social-card-share.top/
Cookie: anyimage_session=eyJpdiI6ImxQdCtHYzF4RWx3cDBGaFNvYm1Rd3c9PSIsInZhbHVlIjoicmRNMnR1QWV2Uk12UG1aWENnbFFTV09cL3V2TktPd2ZnYkszdXlxbVlJbDNYajlnejFUXC9ZNzltWFdCdWMwckk1IiwibWFjIjoiOTczOGIwMTc1NzcwNTFmNWI5OTMwNDQ3MTliY2RmMzRmZjdiNzU5MmM1ZjVlOTIwOTRiZmNmYWVkMjBlOTkyYiJ9

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Length: 6641
Content-Type: image/png
Etag: "r7cin354h"
Last-Modified: Tue, 15 Feb 2022 12:28:15 GMT
Server: Caddy
Date: Fri, 25 Nov 2022 14:55:16 GMT

injuredripplegentleman.social-card-share.top/img/Animated-Characters.gif

159.65.208.189

200 OK

780 kB

URL HTTP/1.1
injuredripplegentleman.social-card-share.top/img/Animated-Characters.gif
IP
159.65.208.189:0
ASN
#14061 DIGITALOCEAN-ASN

File type
GIF image data, version 89a, 722 x 275\012- data
Size
780 kB (780357 bytes)
Hash
535b49e56785acd7705a37b95930ff16
d550d076651c973b443fa56548801a0a3c00916d
07906daad89d538b62a7c5ad35c0142102f390fdd895fb33314abfdce1c63a3b

HTTP Headers

GET /img/Animated-Characters.gif HTTP/1.1
Host: injuredripplegentleman.social-card-share.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://injuredripplegentleman.social-card-share.top/
Cookie: anyimage_session=eyJpdiI6ImxQdCtHYzF4RWx3cDBGaFNvYm1Rd3c9PSIsInZhbHVlIjoicmRNMnR1QWV2Uk12UG1aWENnbFFTV09cL3V2TktPd2ZnYkszdXlxbVlJbDNYajlnejFUXC9ZNzltWFdCdWMwckk1IiwibWFjIjoiOTczOGIwMTc1NzcwNTFmNWI5OTMwNDQ3MTliY2RmMzRmZjdiNzU5MmM1ZjVlOTIwOTRiZmNmYWVkMjBlOTkyYiJ9

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Length: 780357
Content-Type: image/gif
Etag: "r7cin3gq4l"
Last-Modified: Tue, 15 Feb 2022 12:28:15 GMT
Server: Caddy
Date: Fri, 25 Nov 2022 14:55:16 GMT

anyimage.io/img/PreviewImage.jpg

159.89.248.162

200 OK

35 kB

URL HTTP/2
anyimage.io/img/PreviewImage.jpg
IP
159.89.248.162:0
ASN
#14061 DIGITALOCEAN-ASN

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015.5 (Windows), datetime=2017:04:22 18:41:10], baseline, precision 8, 868x438, components 3\012- data
Size
35 kB (35017 bytes)
Hash
2b9ba0030436550dedfe7a5654abb321
ccdf19e43a1dd0888ff0b502148b1abcb5c483f0
c622975fe3d454253c1e975f820f2d44b079dd18d9aa9573deb5d9eb2d276b09

HTTP Headers

GET /img/PreviewImage.jpg HTTP/1.1
Host: anyimage.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://injuredripplegentleman.social-card-share.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
etag: "qrz9u7r0p"
last-modified: Thu, 22 Apr 2021 18:25:19 GMT
server: Caddy
content-length: 35017
date: Fri, 25 Nov 2022 14:55:16 GMT
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v5.8.1/webfonts/fa-solid-900.woff2

172.64.132.15

200 OK

74 kB

URL HTTP/2
use.fontawesome.com/releases/v5.8.1/webfonts/fa-solid-900.woff2
IP
172.64.132.15:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 74256, version 329.-17761\012- data
Size
74 kB (74256 bytes)
Hash
418dad87601f9c8abd0e5798c0dc1feb
a6b003ef506e92d05cde73adf67487d7fd7ec6df
f18c486a80175cf02fee0e05c2b4acd86c04cdbaecec61c1ef91f920509b5efe

HTTP Headers

GET /releases/v5.8.1/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://injuredripplegentleman.social-card-share.top
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 25 Nov 2022 14:55:16 GMT
content-type: font/woff2
content-length: 74256
x-amz-id-2: lea8ubVmlXvaR9GBORx5OevknbGE7YNzqH7JiW20bgCf3nlHtEFWbBLKzN+Sp/YjXti7bF4+u7E=
x-amz-request-id: V8H3ZKTBAS8JB04E
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:47:00 GMT
etag: "418dad87601f9c8abd0e5798c0dc1feb"
cache-control: max-age=31556926
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0qlO9J97x2wAICGNmLGNCEeDZ%2BJAxQf7YtH6x9YMosa0e4BpRUfDAsZ1tNPF6kQz0Hp8YUu4DpvaY05Csa6%2FIhHhMeymlKW6z6aZJGGsBg%2FeokEyK4KnLVMGO%2FUj5DbpJuozBiCQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76fb3970cd287201-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v5.8.1/webfonts/fa-brands-400.woff2

172.64.132.15

200 OK

75 kB

URL HTTP/2
use.fontawesome.com/releases/v5.8.1/webfonts/fa-brands-400.woff2
IP
172.64.132.15:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 74768, version 329.-17761\012- data
Size
75 kB (74768 bytes)
Hash
5e2f92123d241cabecf0b289b9b08d4a
7f6c682ade204e641aed8f471064c56b6eddc263
dc64d7192f84497cacad5c10aef682562c24aa6124270f85fe247e223607f3ed

HTTP Headers

GET /releases/v5.8.1/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://injuredripplegentleman.social-card-share.top
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 25 Nov 2022 14:55:16 GMT
content-type: font/woff2
content-length: 74768
x-amz-id-2: 8j4x0yevXRtNTdlw0SCfFrOF9Mz4ltR8hmkARu6bT164G/4hiidzrhuLId/QTqH3V0a7r1pNghg=
x-amz-request-id: V8HDATJAB2JDAYXZ
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:46:59 GMT
etag: "5e2f92123d241cabecf0b289b9b08d4a"
cache-control: max-age=31556926
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xfSm9zFIZ8x2AF%2FM2UirU%2F7JaZEbv7D3Iyn2h8o5KqIhRf3FmWJbsIhf8Fjo6RxT8FstJA5R7sm7yA3z7cwtcT0PXePoZGYgPlQzZd%2B1vzAODjP9PrzOxZPEQeJnnjeu%2BXdSQs7y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76fb3970ed577201-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14686
Expires: Fri, 25 Nov 2022 19:00:03 GMT
Date: Fri, 25 Nov 2022 14:55:17 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14686
Expires: Fri, 25 Nov 2022 19:00:03 GMT
Date: Fri, 25 Nov 2022 14:55:17 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14686
Expires: Fri, 25 Nov 2022 19:00:03 GMT
Date: Fri, 25 Nov 2022 14:55:17 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14686
Expires: Fri, 25 Nov 2022 19:00:03 GMT
Date: Fri, 25 Nov 2022 14:55:17 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11743 bytes)
Hash
8784bb7a8b88736a6016f712e3183bf3
b0ddc1555d2506177adcdcea77864d75f1245d07
8e331713b0ad0b5670dd33dfdadde665e076a40ddb80905d4df89876d49803d8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11743
x-amzn-requestid: 9ab0aba7-5cd1-4f6c-8984-dc221e1cbf8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cICD-F7joAMFqmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe3b2-152ba5f1495a44447356cdab;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oWSNdsrz59sJC2znLnFqa_Zm3T14_d6j-rjzDQe4yV22Dy2Qc4Swaw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:54:45 GMT
age: 61232
etag: "b0ddc1555d2506177adcdcea77864d75f1245d07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (7993 bytes)
Hash
92c78302bcce1568eb6a5563100b932c
43d1dec7fc06879988c9c3cadd800cc8145df988
0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7YSXUV-LZpsI7vciFhuqt1EVr6YRkhxcOgMg8z8bxLcOE01_baf6Gg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:47:53 GMT
age: 61644
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00e89fb5-5cb3-4f68-936b-5ee31d6061bc.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (8006 bytes)
Hash
8b6ee13d43732f7c764a49500d092865
5d15fd672e968d59b541e4d5d0d01cd5e69f4075
fc3623d527147e1c6aab399251ed8d527e6eefdee6ad7183f00df2613498bfe4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00e89fb5-5cb3-4f68-936b-5ee31d6061bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8006
x-amzn-requestid: 78aab013-df11-464b-a1c7-ee41b7e77b40
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB-AHSrIAMFvKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe38c-4d795f410a57fc2c21d7075d;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NntLZ3wUdcX9kEo-afFLU0TPKgqAlSK3bToNh2mmoqoyLBJINNk7ow==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:54:39 GMT
age: 61238
etag: "5d15fd672e968d59b541e4d5d0d01cd5e69f4075"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.0 kB (3955 bytes)
Hash
4006a9037ab5f28dca62b0aa7a704c41
74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b
556ae6516a1f272a96569a3637858292731a34e82672b682f6e7442ca68f4b1d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3955
x-amzn-requestid: 42c8d309-a8d2-47cc-8d97-c7fa3a63f8cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCM9NGJHoAMF4sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d8eba-2a06cda9346bd02c46955444;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 03:08:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5MlzpHpq7auKLSAYikINuPAylXI11VJL3xxIJ9Dyub-7rjQaPfg0WQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 04:23:00 GMT
age: 37937
etag: "74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F216636c8-4200-4f0d-83d2-8579be32f1ac.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.3 kB (4270 bytes)
Hash
648677a7e7bab1896a190d2e5fb7243c
6217a262002244ef3f2e8034076a735cafd9888a
72f2913f7c0770ebab0f2683bdc1ec5a5db8872e8f2c62a8fd5c9178b95dbb06

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F216636c8-4200-4f0d-83d2-8579be32f1ac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4270
x-amzn-requestid: 7327f8fb-804b-4d09-83dc-628e35ffa74b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB8xFwXoAMFkqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe384-33f83cea2c585279140f4f59;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:00 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rKROwsZ-X8yDd4iVaYBaNFe6bgHaThxafIt76PBgLoOTrPMqAVQ9iQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 22:22:43 GMT
age: 59554
etag: "6217a262002244ef3f2e8034076a735cafd9888a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.3 kB (4309 bytes)
Hash
841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: j_8oVo464QMWMnmkxQJIDRhaIVmwhzCTHe4A57OdmaUr9HcyTtBUjg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2750b94b402c92287d764b5fa115a042.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 05:04:28 GMT
age: 35449
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

cdn.inspectlet.com/inspectlet.js

104.22.56.245

200 OK

64 kB

URL HTTP/1.1
cdn.inspectlet.com/inspectlet.js
IP
104.22.56.245:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65471)
Size
64 kB (63547 bytes)
Hash
569b3965262c68b127413dd5861d1275
89e68f712df749fb2523d0941d2396aadad3d35a
0a22d9d9955ac06dfe50dafca2cb7ff4ac1e60fede2d4b7722ae969b914fa21d

HTTP Headers

GET /inspectlet.js HTTP/1.1
Host: cdn.inspectlet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://injuredripplegentleman.social-card-share.top/

HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 14:55:17 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: s-maxage=60, max-age=14400
Via: 1.1 vegur
CF-Cache-Status: HIT
Age: 16
Last-Modified: Fri, 25 Nov 2022 14:55:01 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76fb39743e030b4d-OSL
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

hn.inspectlet.com/ginit/533853771

104.22.57.245

200 OK

26 B

URL HTTP/1.1
hn.inspectlet.com/ginit/533853771
IP
104.22.57.245:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with no line terminators
Size
26 B (26 bytes)
Hash
49b3fce69f28ac42692d487abd127a23
83e1535738cd244e457aef0030b1e288efb4ac68
d0b1cb1455ecf8ab5a7eb203460cc7ff790df097c5907eb3d27ff7344282517e

HTTP Headers

POST /ginit/533853771 HTTP/1.1
Host: hn.inspectlet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 968
Origin: http://injuredripplegentleman.social-card-share.top
Connection: keep-alive
Referer: http://injuredripplegentleman.social-card-share.top/

HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 14:55:17 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 26
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-cache
Access-Control-Allow-Origin: http://injuredripplegentleman.social-card-share.top
Access-Control-Allow-Methods: GET, POST
Access-Control-Allow-Headers: X-Requested-With, Content-Type
Access-Control-Allow-Credentials: true
Etag: W/"1a-SbP85p8orEJpLUh6vRJ6Iw"
Via: 1.1 vegur
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76fb3974de900b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

injuredripplegentleman.social-card-share.top/creator/lottery

159.65.208.189

200 OK

57 B

URL HTTP/1.1
injuredripplegentleman.social-card-share.top/creator/lottery
IP
159.65.208.189:0
ASN
#14061 DIGITALOCEAN-ASN

File type
JSON data\012- , ASCII text, with no line terminators
Size
57 B (57 bytes)
Hash
ab71e6a0918b5925ba55289b4fd94e0b
bd945f145974bd5ad077ad43d63240e2f7e72e6a
3c8f820f5d183d8081f8521230b53ff769d8e90595b756552306190eb38b1b09

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /creator/lottery HTTP/1.1
Host: injuredripplegentleman.social-card-share.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-CSRF-TOKEN: WEhElgf7QBFWYJQKW9kXyqsIIc7VwPfcy7CCKudC
Connection: keep-alive
Referer: http://injuredripplegentleman.social-card-share.top/
Cookie: anyimage_session=eyJpdiI6ImxQdCtHYzF4RWx3cDBGaFNvYm1Rd3c9PSIsInZhbHVlIjoicmRNMnR1QWV2Uk12UG1aWENnbFFTV09cL3V2TktPd2ZnYkszdXlxbVlJbDNYajlnejFUXC9ZNzltWFdCdWMwckk1IiwibWFjIjoiOTczOGIwMTc1NzcwNTFmNWI5OTMwNDQ3MTliY2RmMzRmZjdiNzU5MmM1ZjVlOTIwOTRiZmNmYWVkMjBlOTkyYiJ9

HTTP/1.1 200 OK
Cache-Control: no-cache, private
Content-Encoding: gzip
Content-Type: application/json
Date: Fri, 25 Nov 2022 14:55:17 GMT
Server: Caddy
Set-Cookie: anyimage_session=eyJpdiI6IlFCRUE5RVFnWDZCVnZUc1BTSEFZU0E9PSIsInZhbHVlIjoidjJVSlRqUVZMd0ZjeHpcL1VBNk1OVkZ2YkdcL3dcL004TkppXC9qYmdcLzZaQTZsOHlWZVRvd3hOYmRpdmVXRUErQ1NsIiwibWFjIjoiZWM2ZDc1M2MyNzdjMDBkZGEyZmNlZDUyNDI3NjFmODU3YzU1MzUzYzU5MjVlOTY2MTIzZjJiOGY2ZTg1ODhkNCJ9; expires=Fri, 25-Nov-2022 16:55:17 GMT; Max-Age=7200; path=/; httponly
next_lottery_domain=eyJpdiI6ImhHTFYxcURpangzaWs0WE9BVUhKUUE9PSIsInZhbHVlIjoiNFc0aFVLY3BUd05UdXp5dkcwSndkVnNvRm9JVnpTMWY0WnJINVFoSXN4Yz0iLCJtYWMiOiJkNTY5ZDAzYjI4YTk5MGU2NTQyYmZiMjM1NzlkOWJmYmYyN2MwMjZkOTUwMjMxNjQ5MWM1YTI1OWI0MDg4MDQ4In0%3D; expires=Wed, 24-Nov-2027 14:55:17 GMT; Max-Age=157680000; path=/; httponly
Vary: Accept-Encoding
X-Powered-By: PHP/7.3.2
Content-Length: 57

cdn.livechatinc.com/tracking.js

23.36.79.16

301 Moved Permanently

0 B

URL HTTP/1.1
cdn.livechatinc.com/tracking.js
IP
23.36.79.16:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tracking.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://injuredripplegentleman.social-card-share.top/

HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://cdn.livechatinc.com/tracking.js
Cache-Control: max-age=28800
Expires: Fri, 25 Nov 2022 22:55:19 GMT
Date: Fri, 25 Nov 2022 14:55:19 GMT
Connection: keep-alive
Content-Type: application/javascript; charset=utf-8
Access-Control-Allow-Origin: *

cdn.livechatinc.com/tracking.js

23.36.79.16

200 OK

26 kB

URL HTTP/2
cdn.livechatinc.com/tracking.js
IP
23.36.79.16:0
ASN
#20940 Akamai International B.V.

File type
data
Size
26 kB (26070 bytes)
Hash
fdb3fbabc9d0fdd42c1230d360cd2d44
3968a4d120665750710b64068c0af871d1a149d5
b774ad6e513f484794d2f3985d3b42667e11c38c6def308bcce6b3d81ebff9c7

HTTP Headers

GET /tracking.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://injuredripplegentleman.social-card-share.top/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 13:08:42 GMT
x-amz-version-id: XiT9l9I6GGKdmfwcYLWex5TUwoVUOWV5
server: AmazonS3
content-encoding: br
etag: W/"72abe41f23b1a5d3b25350cc7025a805"
vary: Accept-Encoding
x-amz-cf-pop: AMS1-C1
x-amz-cf-id: eJ1RhyZFtJ67ys9ZLXiBEM_z7MpR6nU8ruaZM1x0xArTAnZ4qZMU4Q==
content-length: 26070
cache-control: max-age=28800
expires: Fri, 25 Nov 2022 22:55:19 GMT
date: Fri, 25 Nov 2022 14:55:19 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
X-Firefox-Spdy: h2

api.livechatinc.com/v3.3/customer/action/get_dynamic_configuration?license_id=6461921&url=http%3A%2F%2Finjuredripplegentleman.social-card-share.top%2F&channel_type=code&jsonp=__z5gfip04lb8

23.36.79.16

200 OK

215 B

URL HTTP/2
api.livechatinc.com/v3.3/customer/action/get_dynamic_configuration?license_id=6461921&url=http%3A%2F%2Finjuredripplegentleman.social-card-share.top%2F&channel_type=code&jsonp=__z5gfip04lb8
IP
23.36.79.16:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with no line terminators
Size
215 B (215 bytes)
Hash
7ab2a3a25cc42ff1cdcb231e9a9a49c0
621e51dbf3831dbddadb8db2285eb1fe94c52565
62e7acba92423122b26d48d53def5fa9d5d17757b9b9f5e2f0c1ba3672b5dbea

HTTP Headers

GET /v3.3/customer/action/get_dynamic_configuration?license_id=6461921&url=http%3A%2F%2Finjuredripplegentleman.social-card-share.top%2F&channel_type=code&jsonp=__z5gfip04lb8 HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://injuredripplegentleman.social-card-share.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-security-policy: frame-ancestors http://injuredripplegentleman.social-card-share.top/;
content-type: application/javascript; charset=UTF-8
legacy: 2023-06-30
vary: Accept-Encoding
x-frame-options: allow-from http://injuredripplegentleman.social-card-share.top/
content-length: 215
date: Fri, 25 Nov 2022 14:55:19 GMT
X-Firefox-Spdy: h2

api.livechatinc.com/v3.3/customer/action/get_configuration?license_id=6461921&version=2969.10.10.1198.25.34.21.13.8.31.8.13.2&group_id=0&jsonp=__lc_static_config

23.36.79.16

200 OK

1.5 kB

URL HTTP/2
api.livechatinc.com/v3.3/customer/action/get_configuration?license_id=6461921&version=2969.10.10.1198.25.34.21.13.8.31.8.13.2&group_id=0&jsonp=__lc_static_config
IP
23.36.79.16:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (4841), with no line terminators
Size
1.5 kB (1494 bytes)
Hash
077cb2cb9e517cadb4b262db904ba0e3
56087c96b024b544bfdb308c047066d4331b8347
fd1caf3ee9f80b19d0b8f8add42d3b44094cd88d615bd158b622bc739f2aa871

HTTP Headers

GET /v3.3/customer/action/get_configuration?license_id=6461921&version=2969.10.10.1198.25.34.21.13.8.31.8.13.2&group_id=0&jsonp=__lc_static_config HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://injuredripplegentleman.social-card-share.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
legacy: 2023-06-30
vary: Accept-Encoding
content-length: 1494
cache-control: public, max-age=600
expires: Fri, 25 Nov 2022 15:05:19 GMT
date: Fri, 25 Nov 2022 14:55:19 GMT
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
a54c80dec1c95f72609427d03724eeff
6f1afb5ac564d8f2daf59fe962fb059dcdb201f1
ac57e57ff83ab2ced0f8d7c0f806ebacae13fae70995eb076269a0b65ac81ff9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4065
Cache-Control: max-age=96224
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 14:55:21 GMT
Etag: "637f9c58-116"
Expires: Sat, 26 Nov 2022 17:39:05 GMT
Last-Modified: Thu, 24 Nov 2022 16:31:20 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 278

player.vimeo.com/video/251553421

162.159.138.60

200 OK

6.2 kB

URL HTTP/1.1
player.vimeo.com/video/251553421
IP
162.159.138.60:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (20040), with no line terminators
Size
6.2 kB (6200 bytes)
Hash
037d1d9c8bc4638dcd53e0d8be758f25
075abd994c649f68d3dc44802b508d0ed2986ad3
f2f889f080f4f32cf8ba594849a8866a9d27761c2c4370dab7e3706ba7a812ff

HTTP Headers

GET /video/251553421 HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://injuredripplegentleman.social-card-share.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 14:55:21 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app/ https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Fri, 25 Nov 2022 14:57:02 GMT
x-host: player-57c7694bdc-z44l8
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 1
x-vserver: playproxy-rollout-prod-varnish-2
x-backend-proxy: playproxy3
x-bapp-server: player-57c7694bdc-z44l8
Age: 0
X-Served-By: cache-bma1657-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1669388122.664437,VS0,VE132
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=8ZUv8RFYxRaEL505u8uPYd9M2xFPRTqRzUbjcbgfJ2Q-1669388121-0-AbSStchSU3Bpar5n4+bR/9DHrSDElcH0vlSNOuYjwlZab3PfRLlWXBoF6+7v3tmoPoT7Az/JZCcIZR25PFwWdvQ=; path=/; expires=Fri, 25-Nov-22 15:25:21 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 76fb3990592d0b02-OSL
Content-Encoding: gzip

f.vimeocdn.com/p/4.14.1/css/player.css

151.101.86.109

200 OK

21 kB

URL HTTP/2
f.vimeocdn.com/p/4.14.1/css/player.css
IP
151.101.86.109:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65495)
Size
21 kB (20726 bytes)
Hash
4acf7af3b78cc35650da87ee77464c29
abe870c3258849b8286439c8e06b7b885a1f1ac3
ed7715a1dab6ae7896cca6ae124ce68f61b8a502a7f468001142fdf9a81a3626

HTTP Headers

GET /p/4.14.1/css/player.css HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 25 Nov 2022 14:55:21 GMT
age: 245809
x-served-by: cache-iad-kiad7000129-IAD, cache-bma1660-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 63806
x-timer: S1669388122.974856,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 20726
X-Firefox-Spdy: h2

i.vimeocdn.com/video/677948780-1e9ff3eb4189338c2fbc3755801f3123a2a4330276716750c3493c9d82b0f643-d.jpg?mw=80&q=85

151.101.86.109

200 OK

1.1 kB

URL HTTP/2
i.vimeocdn.com/video/677948780-1e9ff3eb4189338c2fbc3755801f3123a2a4330276716750c3493c9d82b0f643-d.jpg?mw=80&q=85
IP
151.101.86.109:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x40, components 3\012- data
Size
1.1 kB (1105 bytes)
Hash
52295d72be8fe34a029dd90ef584316f
a43fc38660c4cce6b9531cf14dc3bbc91d0ac38d
00736455a2a39365c06bf601b347abd952230dd2834d9e29f4f4728d26a33872

HTTP Headers

GET /video/677948780-1e9ff3eb4189338c2fbc3755801f3123a2a4330276716750c3493c9d82b0f643-d.jpg?mw=80&q=85 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
etag: 52295d72be8fe34a029dd90ef584316f
x-viewmaster-lossless-format: lossy
viewmaster-server: viewmaster-us-central1-cz95
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Fri, 25 Nov 2022 14:55:22 GMT
age: 1309439
x-served-by: cache-dfw-kdfw8210021-DFW, cache-bma1660-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 246, 1
x-timer: S1669388122.999405,VS0,VE5
content-length: 1105
X-Firefox-Spdy: h2

f.vimeocdn.com/p/4.14.1/js/player.module.js

151.101.86.109

200 OK

117 kB

URL HTTP/2
f.vimeocdn.com/p/4.14.1/js/player.module.js
IP
151.101.86.109:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (65445)
Size
117 kB (116762 bytes)
Hash
93b123a49355679299f45758f7c7ead7
5edf4cf812084390b321b37e824196e0a5351243
2310a3197f869d02d56fbeabd61c29c842e0c22e4bcc8c528c17beb1a348042b

HTTP Headers

GET /p/4.14.1/js/player.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 25 Nov 2022 14:55:22 GMT
age: 245809
x-served-by: cache-iad-kjyo7100101-IAD, cache-bma1652-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 50781
x-timer: S1669388122.062301,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 116762
X-Firefox-Spdy: h2

f.vimeocdn.com/p/4.14.1/js/vendor.module.js

151.101.86.109

200 OK

116 kB

URL HTTP/2
f.vimeocdn.com/p/4.14.1/js/vendor.module.js
IP
151.101.86.109:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65457)
Size
116 kB (116187 bytes)
Hash
30972a3e9883ce81e7bb54ca377da88f
19077360603241f1fb218c44027d7d1437770d8d
10fb36a7c941c7565c0cb906cfeafc288aeaca33c293bbf3d1353f418eeb7d8f

HTTP Headers

GET /p/4.14.1/js/vendor.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://f.vimeocdn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 25 Nov 2022 14:55:22 GMT
age: 245810
x-served-by: cache-iad-kjyo7100028-IAD, cache-bma1652-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 62448
x-timer: S1669388122.258631,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 116187
X-Firefox-Spdy: h2

i.vimeocdn.com/video/677948780-1e9ff3eb4189338c2fbc3755801f3123a2a4330276716750c3493c9d82b0f643-d?mw=800&mh=397

151.101.86.109

200 OK

7.7 kB

URL HTTP/2
i.vimeocdn.com/video/677948780-1e9ff3eb4189338c2fbc3755801f3123a2a4330276716750c3493c9d82b0f643-d?mw=800&mh=397
IP
151.101.86.109:0
ASN
#54113 FASTLY

File type
ISO Media, AVIF Image\012- data
Size
7.7 kB (7692 bytes)
Hash
c7fac380763d566cd8210661401e833c
cbfa78f98890ce7b13848ac3e5b29434cc33ebc9
90f4f946a5b7132da8b162968836768263a1baa6f39d4713b251a83873504e9d

HTTP Headers

GET /video/677948780-1e9ff3eb4189338c2fbc3755801f3123a2a4330276716750c3493c9d82b0f643-d?mw=800&mh=397 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/avif
etag: c7fac380763d566cd8210661401e833c
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-gln7
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Fri, 25 Nov 2022 14:55:22 GMT
age: 99550
x-served-by: cache-dfw-kdfw8210070-DFW, cache-bma1660-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 268, 1
x-timer: S1669388122.495433,VS0,VE1
vary: Accept
content-length: 7692
X-Firefox-Spdy: h2

163vod-adaptive.akamaized.net/exp=1669392021~acl=%2Fefa712cf-a4f1-4711-b139-6276e51ca29a%2F%2A~hmac=d0fb9b46140d5641a8272c7eaccf9ec9d89f86ae1f4d864cd5474685585ad9f1/efa712cf-a4f1-4711-b139-6276e51ca29a/sep/video/6c85cb4c,4d4399b2,e3463b9b,833b86dc/master.json?base64_init=1

23.36.76.152

200 OK

4.1 kB

URL HTTP/1.1
163vod-adaptive.akamaized.net/exp=1669392021~acl=%2Fefa712cf-a4f1-4711-b139-6276e51ca29a%2F%2A~hmac=d0fb9b46140d5641a8272c7eaccf9ec9d89f86ae1f4d864cd5474685585ad9f1/efa712cf-a4f1-4711-b139-6276e51ca29a/sep/video/6c85cb4c,4d4399b2,e3463b9b,833b86dc/master.json?base64_init=1
IP
23.36.76.152:0
ASN
#20940 Akamai International B.V.

File type
JSON data\012- , ASCII text, with very long lines (22439)
Size
4.1 kB (4065 bytes)
Hash
96275fec4923eb964e6946460644fa9c
d7350ed8cff7ad3a6794d74edc3b3fa5425a9821
743670767ae17fafcdfddd2e2bc3ae477f38c46720254694a85bcf70353060eb

HTTP Headers

GET /exp=1669392021~acl=%2Fefa712cf-a4f1-4711-b139-6276e51ca29a%2F%2A~hmac=d0fb9b46140d5641a8272c7eaccf9ec9d89f86ae1f4d864cd5474685585ad9f1/efa712cf-a4f1-4711-b139-6276e51ca29a/sep/video/6c85cb4c,4d4399b2,e3463b9b,833b86dc/master.json?base64_init=1 HTTP/1.1
Host: 163vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
origin-retrieved-hour: 1657656000
Access-Control-Max-Age: 86400
timing-allow-origin: *
Content-Encoding: gzip
Content-Length: 4065
Aka-c-hit: cache-hit
Cache-Control: max-age=30565619
Date: Fri, 25 Nov 2022 14:55:22 GMT
Connection: keep-alive
Vary: Accept-Encoding
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
AK-REFERENCE-ID: 0.944c2417.1669388122.5149043
X-VIM-CACHEBC: EP:H11,E:m,PE:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 23.36.76.152
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *

use.fontawesome.com/releases/v5.8.1/css/all.css

172.64.132.15

200 OK

0 B

URL HTTP/2
use.fontawesome.com/releases/v5.8.1/css/all.css
IP
172.64.132.15:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v5.8.1/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://injuredripplegentleman.social-card-share.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 25 Nov 2022 14:55:15 GMT
content-type: text/css
x-amz-id-2: NzMgtXfSR9h1Ul6KgUWvsw67BTeADLnNbEnwU/Cy6XFid6osmmrwmTbviyay7VY2BovVLtp9FdA=
x-amz-request-id: G86K93CDJEX5KMH1
last-modified: Wed, 30 Jun 2021 15:46:39 GMT
etag: W/"e4c542a7f6bf6f74fdd8cdf6e8096396"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 2421048
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oPSyt0TOlHP4BM5T%2BT04K5na3M%2BqGfmcOHHJcR38O2w%2B1qOP0q6XXdHI6lsQz3a4EDJGDeACUvADLtJqHaEIm2xYR7zvxlm2UBV7FboRGnP5x6vt8AWw4GS1afe7HAXjm2nyBmF7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76fb396bfebf719f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open+Sans:300,400,500,600,700

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Open+Sans:300,400,500,600,700
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Open+Sans:300,400,500,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://injuredripplegentleman.social-card-share.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 25 Nov 2022 14:55:15 GMT
date: Fri, 25 Nov 2022 14:55:15 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (16)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations