Report - msnews.net.br/wp-content/uploads/2018/02/LINK.htm

Report Overview

Submitted URL
msnews.net.br/wp-content/uploads/2018/02/LINK.htm
IP
108.179.193.99
ASN
#26337 OIS1
Submitted
2023-01-31 14:40:57
Access
Website Title
Final URL
Tags
twitter social phishing
urlquery detections
Phishing - Twitter

Detections

urlquery
4
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
syndication.twitter.com	833	2013-09-20T03:46:47Z	2023-03-13T05:26:52Z	608 B	359 B	104.244.42.72
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	3.0 kB	8.0 kB	23.36.76.226
www.msnews.net.br	unknown	2019-03-10T13:33:38Z	2023-03-08T06:50:25Z	592 B	22 kB	108.179.193.99
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	1.4 kB	2.5 kB	93.184.220.29
analytics.twitter.com	526	2013-04-10T21:53:18Z	2023-03-13T05:25:19Z	421 B	796 B	104.244.42.3
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	68 kB	34.120.237.76
abs.twimg.com	1724	2013-04-11T00:09:30Z	2023-03-13T06:06:42Z	7.9 kB	747 kB	152.199.21.141
pbs.twimg.com	624	2012-09-06T02:07:06Z	2023-03-13T05:16:16Z	8.9 kB	65 kB	151.101.84.159
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	52.43.158.219
msnews.net.br	unknown	2019-03-10T13:33:38Z	2023-03-08T06:50:36Z	1.0 kB	114 kB	108.179.193.99
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.9 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
api.twitter.com	1170	2012-05-21T04:09:21Z	2023-03-13T05:25:31Z	485 B	320 B	104.244.42.66
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-13T07:36:03Z	288 B	455 B	142.250.74.14
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-01-31	medium	msnews.net.br/wp-content/uploads/2018/02/LINK.htm	Twitter, Inc.

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-31	medium	msnews.net.br/wp-content/uploads/2018/02/LINK.htm	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (11)

	URL	Size	First Seen	Last Seen
	msnews.net.br/wp-content/uploads/2018/02/LINK.htm	656 B	2023-03-07	2023-03-25
Pretty URL msnews.net.br/wp-content/uploads/2018/02/LINK.htm IP 108.179.193.99 ASN #26337 OIS1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:26:21 Last Seen2023-03-25 23:14:20 Times Seen2 Hash 726f846220812dbb8594f371759a58f2 ff97e4fb71b2ee53dbb98a64eb8268d164b5e4b4 6f47a8199c8eb243d5e4fc546aa3baa62e8e5a16e4d41f5e32f604a109154e2a Loading...

	msnews.net.br/wp-content/uploads/2018/02/LINK.htm	2.6 kB	2023-03-07	2024-04-19
Pretty URL msnews.net.br/wp-content/uploads/2018/02/LINK.htm IP 108.179.193.99 ASN #26337 OIS1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:26:21 Last Seen2024-04-19 02:01:47 Times Seen17 Hash 9175484a52d4d5350f9277c43c2f6f1e 9e60fd5f20dd36567e91ddba6e334429155e6c5d af6a39b88462c0372c211fbdbf1e75c6262671d63ef59189a10e81fc3f1ce2d8 Loading...

	msnews.net.br/wp-content/uploads/2018/02/LINK.htm	120 B	2023-03-07	2024-04-19
Pretty URL msnews.net.br/wp-content/uploads/2018/02/LINK.htm IP 108.179.193.99 ASN #26337 OIS1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:44:30 Last Seen2024-04-19 02:01:47 Times Seen24 Hash c0a157ce5e88d99a38d39bbf2a774cb5 f2e0b89ea4f46abe7c6d8d89a4b7f04da1e27803 334939d7aa45c63cf81d83dece556cb76acd2dbb7794b62d395ee975a25965a5 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	msnews.net.br/wp-content/uploads/2018/02/LINK.htm	228 B	2023-03-07	2024-04-19
Pretty URL msnews.net.br/wp-content/uploads/2018/02/LINK.htm IP 108.179.193.99 ASN #26337 OIS1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:26:21 Last Seen2024-04-19 02:01:47 Times Seen16 Hash bec6344485269f51a6806614b5aab01e 805e21f8d321e6a1cdc2dac67d801b1c21af954b f2b3656593d5e4396ae9a457a4813412b570d479d216cd6bacd2019995ee5c7b Loading...

	msnews.net.br/wp-content/uploads/2018/02/LINK.htm	280 B	2023-03-07	2024-04-19
Pretty URL msnews.net.br/wp-content/uploads/2018/02/LINK.htm IP 108.179.193.99 ASN #26337 OIS1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:26:21 Last Seen2024-04-19 02:01:47 Times Seen17 Hash f7a42d2767e524a25ff48dffc9ba9cb9 bfd719da11ce2d9a61ebc037a18eb64f173863d3 8f82e46837e9e72d748a703260b197551272f14cfc3ecd1eaa6347f942269348 Loading...

	msnews.net.br/wp-content/uploads/2018/02/LINK.htm	322 B	2023-03-07	2023-11-22
Pretty URL msnews.net.br/wp-content/uploads/2018/02/LINK.htm IP 108.179.193.99 ASN #26337 OIS1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:26:21 Last Seen2023-11-22 06:30:11 Times Seen3 Hash d7f03390ff038c36cb066ba6f5591c70 df5d292b97206ecbbf8e29a62f0848c0b100ac06 484cd10b26bf0d64ffcbe328b974deca6f0493a640b8c58f100de23b00681969 Loading...

	abs.twimg.com/k/pt/init.pt.fd47eb013678b019ab5b.js	512 kB	2023-03-07	2023-03-25
Pretty URL abs.twimg.com/k/pt/init.pt.fd47eb013678b019ab5b.js IP 152.199.21.141 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:26:21 Last Seen2023-03-25 23:14:20 Times Seen2 Hash 7d7c38fff32ad8b6e181dede7d9ce565 1ea7466b3acacbb9b499671f7f771f7a40f7dcad 814beec84173fa0b06ae1c72ee8bcc5dc4c7b0ffc3617568e7763931f765b09d Loading...

	unknown	0 B	2023-03-07	2024-04-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-20 02:22:25 Times Seen36969249 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	abs.twimg.com/k/pt/6.pages_permalink.pt.8a0a62484d3876bce014.js	95 kB	2023-03-07	2023-03-25
Pretty URL abs.twimg.com/k/pt/6.pages_permalink.pt.8a0a62484d3876bce014.js IP 152.199.21.141 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:26:21 Last Seen2023-03-25 23:14:20 Times Seen2 Hash eaefc3b72608c4d31a970000ba117e03 9637409bdeba1cb305c4d899576c2515bdd6d0a2 e58b55b48ab8f8c9fda58b3861bd97358cf2804af87ae4ec0a7637febb139c70 Loading...

	msnews.net.br/wp-content/uploads/2018/02/LINK.htm	108 B	2023-03-07	2024-04-19
Pretty URL msnews.net.br/wp-content/uploads/2018/02/LINK.htm IP 108.179.193.99 ASN #26337 OIS1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:26:21 Last Seen2024-04-19 02:01:47 Times Seen16 Hash 45fec27eff301ca5471ad6eab47d9839 7267a8ee99dc90962ecba157d3eb93c35c37d2a5 58175fca4fe4bb55353c0b248c25f19a2a4ed165d284b2fae1f4dd39843aa89c Loading...

HTTP Transactions (73)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5eb7c9bc996a0ff420e58af45526f053
8c2614832b8efe1c9da0bbd465d6f3f172d95a9e
c085cf277dd0429fe15e4a4bce5595636e9f2204d5a8e77220f8bf88adf4068f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C085CF277DD0429FE15E4A4BCE5595636E9F2204D5A8E77220F8BF88ADF4068F"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2165
Expires: Tue, 31 Jan 2023 15:16:51 GMT
Date: Tue, 31 Jan 2023 14:40:46 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
0c35c3ec659d3a26ea97e68d787bb043
d97e3672244efec5b7814f2d8a734cd1a9387854
4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3715
Expires: Tue, 31 Jan 2023 15:42:41 GMT
Date: Tue, 31 Jan 2023 14:40:46 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 31 Jan 2023 13:43:17 GMT
content-type: application/json
age: 3449
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7333
Expires: Tue, 31 Jan 2023 16:42:59 GMT
Date: Tue, 31 Jan 2023 14:40:46 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: p5U4FsZaJu45K1qX5XtgaDtz0Mb/wF3aioxVFr1HoOoonF0ZbR0jp7qPN3xTgpw+oov4bI+4Mb0HYPF+4NBcWQ==
x-amz-request-id: KDJXVBC2MVDN7NNE
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 31 Jan 2023 13:51:11 GMT
age: 2975
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 14:40:46 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

msnews.net.br/wp-content/uploads/2018/02/LINK.htm

108.179.193.99

200 OK

112 kB

URL HTTP/1.1
msnews.net.br/wp-content/uploads/2018/02/LINK.htm
IP
108.179.193.99:0
ASN
#26337 OIS1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (13041)
Size
112 kB (112532 bytes)
Hash
267917fd5544893e0a1cdead399190df
c45f2f6d6aac24805ff26f1054dadf5e7ee526a7
300ed9db48d74f0f1f875115b2146e72003b5111ebb14305f66725595c4ca567

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Twitter
openphish	Twitter, Inc.
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2018/02/LINK.htm HTTP/1.1
Host: msnews.net.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 14:40:46 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Accept-Ranges: bytes
Cache-Control: max-age=0, public
Expires: Tue, 31 Jan 2023 14:40:46 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: WP Rocket/3.10.5.1
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

abs.twimg.com/k/pt/0.commons.pt.329d561e7300c4695b1f.js

152.199.21.141

200 OK

251 kB

URL HTTP/2
abs.twimg.com/k/pt/0.commons.pt.329d561e7300c4695b1f.js
IP
152.199.21.141:0
ASN
#15133 EDGECAST

File type
Unicode text, UTF-8 text, with very long lines (65405), with no line terminators
Size
251 kB (250879 bytes)
Hash
0b596bc7e97a828e8f67a414f9fbc2b5
c36b1d54f325a60df49a3598f51f6f2bd02be5cb
303db5afca45e3c752fdec2367893d463cb979aae41c8e9622bafd7f28e5b104

HTTP Headers

GET /k/pt/0.commons.pt.329d561e7300c4695b1f.js HTTP/1.1
Host: abs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 14657787
content-type: application/javascript
date: Tue, 31 Jan 2023 14:40:47 GMT
etag: "PGPTOfa3kcb+QIrOOq2YTQ=="
expires: Wed, 31 Jan 2024 14:40:47 GMT
last-modified: Wed, 07 Feb 2018 19:02:59 GMT
server: ECAcc (ska/F767)
strict-transport-security: max-age=631138519
surrogate-key: twitter-assets
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
vary: Accept-Encoding
x-cache: HIT
x-connection-hash: 8d110ee0f59d4aa8437257a5f012767a251f864682d76c9557282624bdd307ea
x-content-type-options: nosniff
x-response-time: 75
x-ton-expected-size: 983172
content-length: 250879
X-Firefox-Spdy: h2

abs.twimg.com/k/pt/init.pt.fd47eb013678b019ab5b.js

152.199.21.141

200 OK

165 kB

URL HTTP/2
abs.twimg.com/k/pt/init.pt.fd47eb013678b019ab5b.js
IP
152.199.21.141:0
ASN
#15133 EDGECAST

File type
Unicode text, UTF-8 text, with very long lines (57709)
Size
165 kB (164822 bytes)
Hash
8b7fe206f2e6999c5be57c68e9d5fa7e
64773cf0b297265a9cac815d567bb31144008ecb
43769eaaba2f48ace73d1a748d63b9dd8b1df00e40e8b55d74f432abf527715d

HTTP Headers

GET /k/pt/init.pt.fd47eb013678b019ab5b.js HTTP/1.1
Host: abs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 14377158
content-type: application/javascript
date: Tue, 31 Jan 2023 14:40:47 GMT
etag: "fXw4//Mq2Lbhgd7efZzlZQ=="
expires: Wed, 31 Jan 2024 14:40:47 GMT
last-modified: Thu, 08 Feb 2018 02:35:34 GMT
server: ECAcc (ska/F6CB)
strict-transport-security: max-age=631138519
surrogate-key: twitter-assets
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
vary: Accept-Encoding
x-cache: HIT
x-connection-hash: bb9600871ef0c6a0b42cd3ef897939ea582e75a0ce10c9963a01d3504d1d061c
x-content-type-options: nosniff
x-response-time: 44
x-ton-expected-size: 512445
content-length: 164822
X-Firefox-Spdy: h2

abs.twimg.com/k/pt/6.pages_permalink.pt.8a0a62484d3876bce014.js

152.199.21.141

200 OK

22 kB

URL HTTP/2
abs.twimg.com/k/pt/6.pages_permalink.pt.8a0a62484d3876bce014.js
IP
152.199.21.141:0
ASN
#15133 EDGECAST

File type
Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Size
22 kB (22044 bytes)
Hash
45cebd64d904170e772af3e157f0ece8
799b7b09643946f27a3cb4dccd3ef7fb254c0e16
e7f06d2a39cb0c63ae556c9ca78de6bcaac39d257bc778f772adbe48d9d29907

HTTP Headers

GET /k/pt/6.pages_permalink.pt.8a0a62484d3876bce014.js HTTP/1.1
Host: abs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 14377158
content-type: application/javascript
date: Tue, 31 Jan 2023 14:40:47 GMT
etag: "6u/DtyYIxNMalwAAuhF+Aw=="
expires: Wed, 31 Jan 2024 14:40:47 GMT
last-modified: Thu, 08 Feb 2018 00:08:05 GMT
server: ECAcc (ska/F799)
strict-transport-security: max-age=631138519
surrogate-key: twitter-assets
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
vary: Accept-Encoding
x-cache: HIT
x-connection-hash: 14812285285a13ba29ddedd7f312446cfe492fcf3697748a9b30f93bdd965ffe
x-content-type-options: nosniff
x-response-time: 14
x-ton-expected-size: 94581
content-length: 22044
X-Firefox-Spdy: h2

abs.twimg.com/a/1518055799/css/t1/twitter_core.bundle.css

152.199.21.141

200 OK

35 kB

URL HTTP/2
abs.twimg.com/a/1518055799/css/t1/twitter_core.bundle.css
IP
152.199.21.141:0
ASN
#15133 EDGECAST

File type
Unicode text, UTF-8 text, with very long lines (65502), with no line terminators
Size
35 kB (34769 bytes)
Hash
50adf84db85e0c51a7fb9fe2680cbdea
d73cdc84b62d744cc7eb43920da865bf6e26d395
c6018aeb189c34028a05e82de234894aee01e96ceef0207a5d71367508ce1fd8

HTTP Headers

GET /a/1518055799/css/t1/twitter_core.bundle.css HTTP/1.1
Host: abs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 14624795
content-type: text/css
date: Tue, 31 Jan 2023 14:40:47 GMT
etag: "1jFm00MeCObdGUI4Sr5EpA=="
expires: Wed, 31 Jan 2024 14:40:47 GMT
last-modified: Thu, 08 Feb 2018 02:35:29 GMT
server: ECAcc (ska/F6A9)
strict-transport-security: max-age=631138519
surrogate-key: twitter-assets
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
vary: Accept-Encoding
x-cache: HIT
x-connection-hash: 6ce21f3177f55a2921da20e83aaa56092f603ac8288db05c9b4f95e8ded5cd3f
x-content-type-options: nosniff
x-response-time: 191
x-ton-expected-size: 185162
content-length: 34769
X-Firefox-Spdy: h2

abs.twimg.com/a/1518055799/css/t1/twitter_more_1.bundle.css

152.199.21.141

200 OK

43 kB

URL HTTP/2
abs.twimg.com/a/1518055799/css/t1/twitter_more_1.bundle.css
IP
152.199.21.141:0
ASN
#15133 EDGECAST

File type
ASCII text, with very long lines (63709)
Size
43 kB (43016 bytes)
Hash
f6fd6f09f77c2d6f8f5ae03971d754c3
94601d29b8438ec06cdb5a3c509bdc33add96deb
2580a8dca5a7527443e23131685abe92d187e12aeb27d1b4b1b010ae6e741ef4

HTTP Headers

GET /a/1518055799/css/t1/twitter_more_1.bundle.css HTTP/1.1
Host: abs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 14624795
content-type: text/css
date: Tue, 31 Jan 2023 14:40:47 GMT
etag: "lvblUXufJXooYiwoPkql6w=="
expires: Wed, 31 Jan 2024 14:40:47 GMT
last-modified: Thu, 08 Feb 2018 02:35:29 GMT
server: ECAcc (ska/F75E)
strict-transport-security: max-age=631138519
surrogate-key: twitter-assets
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
vary: Accept-Encoding
x-cache: HIT
x-connection-hash: 05da6997f237f5ddc35ca40618987099624e4825de910885a496674455a3e875
x-content-type-options: nosniff
x-response-time: 8
x-ton-expected-size: 223150
content-length: 43016
X-Firefox-Spdy: h2

abs.twimg.com/a/1518055799/css/t1/twitter_more_2.bundle.css

152.199.21.141

200 OK

38 kB

URL HTTP/2
abs.twimg.com/a/1518055799/css/t1/twitter_more_2.bundle.css
IP
152.199.21.141:0
ASN
#15133 EDGECAST

File type
ASCII text, with very long lines (65536), with no line terminators
Size
38 kB (37840 bytes)
Hash
fccd9ecb2f5e35656f0bde644e0983d7
61fe18ee54226d661ea30244a5ed617b8593a2ee
6d48b99b83c1aadc23ea248453107fcfb4cc88a56a3f9e851db2348c5316688f

HTTP Headers

GET /a/1518055799/css/t1/twitter_more_2.bundle.css HTTP/1.1
Host: abs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 14624795
content-type: text/css
date: Tue, 31 Jan 2023 14:40:47 GMT
etag: "S1JMM/fFXm6sonLUiL993w=="
expires: Wed, 31 Jan 2024 14:40:47 GMT
last-modified: Thu, 08 Feb 2018 02:35:29 GMT
server: ECAcc (ska/F766)
strict-transport-security: max-age=631138519
surrogate-key: twitter-assets
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
vary: Accept-Encoding
x-cache: HIT
x-connection-hash: 36f096129233aece48ae72081b7a6b709ea9315891b4d4fc0c8afee2077d3b0e
x-content-type-options: nosniff
x-response-time: 150
x-ton-expected-size: 228965
content-length: 37840
X-Firefox-Spdy: h2

msnews.net.br/i/js_inst?c_name=ui_metrics

108.179.193.99

301 Moved Permanently

0 B

URL HTTP/1.1
msnews.net.br/i/js_inst?c_name=ui_metrics
IP
108.179.193.99:0
ASN
#26337 OIS1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Twitter

HTTP Headers

GET /i/js_inst?c_name=ui_metrics HTTP/1.1
Host: msnews.net.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://msnews.net.br/wp-content/uploads/2018/02/LINK.htm

HTTP/1.1 301 Moved Permanently
Date: Tue, 31 Jan 2023 14:40:47 GMT
Server: Apache
Vary: Accept-Encoding,Cookie
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://www.msnews.net.br/i/js_inst?c_name=ui_metrics
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

abs.twimg.com/a/1518055799/font/edge-icons-Regular.woff

152.199.21.141

200 OK

25 kB

URL HTTP/2
abs.twimg.com/a/1518055799/font/edge-icons-Regular.woff
IP
152.199.21.141:0
ASN
#15133 EDGECAST

File type
Web Open Font Format, CFF, length 24904, version 1.0\012- data
Size
25 kB (24904 bytes)
Hash
76609d35739ebed53d9d29f773bb2824
2ae3edb0c05312e17a9c9d91cc9e0b4f47eeb8a5
f86ebc8cafade5674ba880c2c5de3d689fa650943ccf2bf4ebab07ee4a5edb18

HTTP Headers

GET /a/1518055799/font/edge-icons-Regular.woff HTTP/1.1
Host: abs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://msnews.net.br
Connection: keep-alive
Referer: https://abs.twimg.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 6510014
content-type: application/font-woff
date: Tue, 31 Jan 2023 14:40:47 GMT
etag: "dmCdNXOevtU9nSn3c7soJA=="
expires: Wed, 31 Jan 2024 14:40:47 GMT
last-modified: Thu, 08 Feb 2018 02:35:29 GMT
server: ECAcc (ska/F7A2)
strict-transport-security: max-age=631138519
surrogate-key: twitter-assets
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: HIT
x-connection-hash: fe04d76fff85e0062402224121c0d77dcd128143ea8a5b114747e84ee2a02608
x-content-type-options: nosniff
x-response-time: 135
x-ton-expected-size: 24904
content-length: 24904
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 31 Jan 2023 13:49:04 GMT
age: 3103
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2366
Expires: Tue, 31 Jan 2023 15:20:13 GMT
Date: Tue, 31 Jan 2023 14:40:47 GMT
Connection: keep-alive

abs.twimg.com/emoji/v2/72x72/1f54a.png

152.199.21.141

200 OK

1.1 kB

URL HTTP/2
abs.twimg.com/emoji/v2/72x72/1f54a.png
IP
152.199.21.141:0
ASN
#15133 EDGECAST

File type
PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Size
1.1 kB (1081 bytes)
Hash
9e10864c4a45b2aad9b28095fe9eb443
62d9e5ac112bad6d9282e04a68daa2778009ecbd
a4bdc9fdd466eab7acda6553cb09068720479f5eb7232676be21108107a89d06

HTTP Headers

GET /emoji/v2/72x72/1f54a.png HTTP/1.1
Host: abs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 20498867
content-type: image/png
date: Tue, 31 Jan 2023 14:40:47 GMT
etag: "nhCGTEpFsqrZsoCV/p60Qw=="
expires: Wed, 31 Jan 2024 14:40:47 GMT
last-modified: Wed, 21 Feb 2018 22:30:26 GMT
server: ECAcc (ska/F6E3)
strict-transport-security: max-age=631138519
surrogate-key: twitter-assets
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: HIT
x-connection-hash: c928a7ee7a1adc292a3ff183705a8d31c1427431ba1a9b84ff925a00d88bc8c4
x-content-type-options: nosniff
x-response-time: 7
x-ton-expected-size: 1081
content-length: 1081
X-Firefox-Spdy: h2

abs.twimg.com/a/1518055799/img/search/ic_places_foursquare_logo.png

152.199.21.141

200 OK

2.3 kB

URL HTTP/2
abs.twimg.com/a/1518055799/img/search/ic_places_foursquare_logo.png
IP
152.199.21.141:0
ASN
#15133 EDGECAST

File type
PNG image data, 237 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size
2.3 kB (2280 bytes)
Hash
ad0a65076541765e39bf8225560fea89
0fb1bdc0d46667cdc5de1ed501cd55b9169a4a96
584f1589ca66477b114e2748eca57e606ad01d08ed17bd2fdfd723c67fc6d155

HTTP Headers

GET /a/1518055799/img/search/ic_places_foursquare_logo.png HTTP/1.1
Host: abs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 14624793
content-type: image/png
date: Tue, 31 Jan 2023 14:40:47 GMT
etag: "rQplB2VBdl45v4IlVg/qiQ=="
expires: Wed, 31 Jan 2024 14:40:47 GMT
last-modified: Thu, 08 Feb 2018 02:35:29 GMT
server: ECAcc (ska/F7B3)
strict-transport-security: max-age=631138519
surrogate-key: twitter-assets
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: HIT
x-connection-hash: 169d431d19fd35ce3f817b3445edc15ba5a0ff5ed2e5022510f87deaf82fae84
x-content-type-options: nosniff
x-response-time: 8
x-ton-expected-size: 2280
content-length: 2280
X-Firefox-Spdy: h2

abs.twimg.com/emoji/v2/72x72/1f602.png

152.199.21.141

200 OK

1.1 kB

URL HTTP/2
abs.twimg.com/emoji/v2/72x72/1f602.png
IP
152.199.21.141:0
ASN
#15133 EDGECAST

File type
PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Size
1.1 kB (1095 bytes)
Hash
0ac90a5cb9a3127aabe648204b9ae79d
a6dca94754173f3ccabc9f2276a94878349096e7
c252a58367211c11d839155e50dc5e98551826c64b8d2e8d6267124c054ceae0

HTTP Headers

GET /emoji/v2/72x72/1f602.png HTTP/1.1
Host: abs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 21448852
content-type: image/png
date: Tue, 31 Jan 2023 14:40:47 GMT
etag: "CskKXLmjEnqr5kggS5rnnQ=="
expires: Wed, 31 Jan 2024 14:40:47 GMT
last-modified: Wed, 21 Feb 2018 22:30:28 GMT
server: ECAcc (ska/F77F)
strict-transport-security: max-age=631138519
surrogate-key: twitter-assets
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: HIT
x-connection-hash: d75aa0348efb3e6fe557f5d264dcfdfa729145121053e90a520262e4736c599d
x-content-type-options: nosniff
x-response-time: 8
x-ton-expected-size: 1095
content-length: 1095
X-Firefox-Spdy: h2

abs.twimg.com/a/1518055799/img/search/ic_places_yelp_logo.png

152.199.21.141

200 OK

2.3 kB

URL HTTP/2
abs.twimg.com/a/1518055799/img/search/ic_places_yelp_logo.png
IP
152.199.21.141:0
ASN
#15133 EDGECAST

File type
PNG image data, 60 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size
2.3 kB (2324 bytes)
Hash
07ea90c9102288a7f380edcc462cf06d
7a058be834243ae95d803dbbaea2ae6e6020457d
3bda3be454692ebdeb19989a00e1953b1e315cae60b8b1cf2b6b430bc7f68ff7

HTTP Headers

GET /a/1518055799/img/search/ic_places_yelp_logo.png HTTP/1.1
Host: abs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 14624793
content-type: image/png
date: Tue, 31 Jan 2023 14:40:47 GMT
etag: "B+qQyRAiiKfzgO3MRizwbQ=="
expires: Wed, 31 Jan 2024 14:40:47 GMT
last-modified: Thu, 08 Feb 2018 02:35:29 GMT
server: ECAcc (ska/F69B)
strict-transport-security: max-age=631138519
surrogate-key: twitter-assets
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: HIT
x-connection-hash: 5e797e52e8bba43dd634ee2af3736ce8cb5b5be15115bb474c5109e2639eee5e
x-content-type-options: nosniff
x-response-time: 8
x-ton-expected-size: 2324
content-length: 2324
X-Firefox-Spdy: h2

abs.twimg.com/emoji/v2/72x72/1f44d.png

152.199.21.141

200 OK

778 B

URL HTTP/2
abs.twimg.com/emoji/v2/72x72/1f44d.png
IP
152.199.21.141:0
ASN
#15133 EDGECAST

File type
PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Size
778 B (778 bytes)
Hash
4a32750fe064ddf814db545eed11d57c
843b8f83526930c973d9dee64535cfb8bcf4b43e
42b43325b3edacba2a0e72b742bdc6fc5e4bc2ad38adca271fcc6d8353639887

HTTP Headers

GET /emoji/v2/72x72/1f44d.png HTTP/1.1
Host: abs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 15655713
content-type: image/png
date: Tue, 31 Jan 2023 14:40:47 GMT
etag: "SjJ1D+Bk3fgU21Re7RHVfA=="
expires: Wed, 31 Jan 2024 14:40:47 GMT
last-modified: Wed, 21 Feb 2018 22:28:35 GMT
server: ECAcc (ska/F69F)
strict-transport-security: max-age=631138519
surrogate-key: twitter-assets
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: HIT
x-connection-hash: 95685d3564f806eba0ef31d3577f1f67e5cd7ce2014bc3de474eb569b853e375
x-content-type-options: nosniff
x-response-time: 8
x-ton-expected-size: 778
content-length: 778
X-Firefox-Spdy: h2

abs.twimg.com/a/1518055799/img/animations/web_heart_animation_edge.png

152.199.21.141

200 OK

23 kB

URL HTTP/2
abs.twimg.com/a/1518055799/img/animations/web_heart_animation_edge.png
IP
152.199.21.141:0
ASN
#15133 EDGECAST

File type
PNG image data, 2900 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size
23 kB (22711 bytes)
Hash
3c55287249301bb4097a4d7bacb6e607
37e2fe49c8eff269585fffce2f1c7cd92fa037c9
b6657ed2caacb58e9d1c1e78e493760d317031237bb3c90982b6ade9e3d9e62e

HTTP Headers

GET /a/1518055799/img/animations/web_heart_animation_edge.png HTTP/1.1
Host: abs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abs.twimg.com/a/1518055799/css/t1/twitter_core.bundle.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 14624793
content-type: image/png
date: Tue, 31 Jan 2023 14:40:47 GMT
etag: "PFUockkwG7QJek17rLbmBw=="
expires: Wed, 31 Jan 2024 14:40:47 GMT
last-modified: Thu, 08 Feb 2018 02:35:29 GMT
server: ECAcc (ska/F7B3)
strict-transport-security: max-age=631138519
surrogate-key: twitter-assets
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: HIT
x-connection-hash: 938be02faef38c692e7649893f3bf55d142f36fca008b588f1c8d62641189ce9
x-content-type-options: nosniff
x-response-time: 7
x-ton-expected-size: 22711
content-length: 22711
X-Firefox-Spdy: h2

abs.twimg.com/sticky/default_profile_images/default_profile_normal.png

152.199.21.141

200 OK

504 B

URL HTTP/2
abs.twimg.com/sticky/default_profile_images/default_profile_normal.png
IP
152.199.21.141:0
ASN
#15133 EDGECAST

File type
PNG image data, 48 x 48, 8-bit colormap, non-interlaced\012- data
Size
504 B (504 bytes)
Hash
41cb913c884e018a737c6874bccb5001
221298ed6ac4f4f57a277bb6e90373126743622b
e34a680ea26c1aeeb0163f836240d84892c4a889cd3fd92bd6b322eb575e3b45

HTTP Headers

GET /sticky/default_profile_images/default_profile_normal.png HTTP/1.1
Host: abs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 18637842
content-type: image/png
date: Tue, 31 Jan 2023 14:40:47 GMT
etag: "QcuRPIhOAYpzfGh0vMtQAQ=="
expires: Wed, 31 Jan 2024 14:40:47 GMT
last-modified: Wed, 25 May 2022 20:44:02 GMT
server: ECAcc (ska/F7AE)
strict-transport-security: max-age=631138519
surrogate-key: twitter-assets
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: HIT
x-connection-hash: 8ebfd4a5322198211a16cad3e79c5c40633607771c9f682a78a62dea69ecea26
x-content-type-options: nosniff
x-response-time: 11
x-ton-expected-size: 504
content-length: 504
X-Firefox-Spdy: h2

msnews.net.br/i/js_inst?c_name=ui_metrics

108.179.193.99

301 Moved Permanently

0 B

URL HTTP/1.1
msnews.net.br/i/js_inst?c_name=ui_metrics
IP
108.179.193.99:0
ASN
#26337 OIS1

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Twitter

HTTP Headers

GET /i/js_inst?c_name=ui_metrics HTTP/1.1
Host: msnews.net.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://msnews.net.br/wp-content/uploads/2018/02/LINK.htm

HTTP/1.1 301 Moved Permanently
Date: Tue, 31 Jan 2023 14:40:47 GMT
Server: Apache
Vary: Accept-Encoding,Cookie
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://www.msnews.net.br/i/js_inst?c_name=ui_metrics
Content-Length: 0
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

abs.twimg.com/a/1518055799/img/t1/spinners/spinner-rosetta-gray-32x32.gif

152.199.21.141

200 OK

11 kB

URL HTTP/2
abs.twimg.com/a/1518055799/img/t1/spinners/spinner-rosetta-gray-32x32.gif
IP
152.199.21.141:0
ASN
#15133 EDGECAST

File type
GIF image data, version 89a, 32 x 32\012- data
Size
11 kB (10947 bytes)
Hash
e70842cc32c22bad1a24080939fee9e4
182373fc75f1afd3acb615a16a1529e7317160f3
c1e205ab30c58193121dd6b8f4beb0dfadb40323f7ec41b3ca16602665111743

HTTP Headers

GET /a/1518055799/img/t1/spinners/spinner-rosetta-gray-32x32.gif HTTP/1.1
Host: abs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abs.twimg.com/a/1518055799/css/t1/twitter_more_1.bundle.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 14378388
content-type: image/gif
date: Tue, 31 Jan 2023 14:40:47 GMT
etag: "5whCzDLCK60aJAgJOf7p5A=="
expires: Wed, 31 Jan 2024 14:40:47 GMT
last-modified: Thu, 08 Feb 2018 02:35:31 GMT
server: ECAcc (ska/F7B8)
strict-transport-security: max-age=631138519
surrogate-key: twitter-assets
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: HIT
x-connection-hash: 16e4a9750d4e9ce4d40532d8865611f598c59d3440ce35006055f21967f95c4b
x-content-type-options: nosniff
x-response-time: 7
x-ton-expected-size: 10947
content-length: 10947
X-Firefox-Spdy: h2

abs.twimg.com/emoji/v2/72x72/1f914.png

152.199.21.141

200 OK

1.0 kB

URL HTTP/2
abs.twimg.com/emoji/v2/72x72/1f914.png
IP
152.199.21.141:0
ASN
#15133 EDGECAST

File type
PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Size
1.0 kB (1028 bytes)
Hash
5fb4adfc0cd59bed6866392635958da3
8fac9e6df0ea9d868ba9750f0f6422ca0366f710
5116f7d07677f06785887c0af23c189b541a306d6b792d605ffaf3ed9f0e912d

HTTP Headers

GET /emoji/v2/72x72/1f914.png HTTP/1.1
Host: abs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 15404830
content-type: image/png
date: Tue, 31 Jan 2023 14:40:47 GMT
etag: "X7St/AzVm+1oZjkmNZWNow=="
expires: Wed, 31 Jan 2024 14:40:47 GMT
last-modified: Wed, 21 Feb 2018 22:30:34 GMT
server: ECAcc (ska/F79E)
strict-transport-security: max-age=631138519
surrogate-key: twitter-assets
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: HIT
x-connection-hash: c1722585a39f598c36954fcc5a9bd12c48950b8a30667e752339696193623133
x-content-type-options: nosniff
x-response-time: 9
x-ton-expected-size: 1028
content-length: 1028
X-Firefox-Spdy: h2

pbs.twimg.com/profile_images/1170808690/twitterProfilePhoto.jpg_normal.png

151.101.84.159

200 OK

7.2 kB

URL HTTP/2
pbs.twimg.com/profile_images/1170808690/twitterProfilePhoto.jpg_normal.png
IP
151.101.84.159:0
ASN
#54113 FASTLY

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
7.2 kB (7190 bytes)
Hash
69ba44503c4a2587d7c73a7a18df7c6e
f16712c62b3233a85120a45c5ffa3319f12433b2
e8a9eacf6cdd60244616a37fe612c8cb704a0ca5107c8b9701c17e67da2ac1ed

HTTP Headers

GET /profile_images/1170808690/twitterProfilePhoto.jpg_normal.png HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
perf: 7626143928
cache-control: max-age=604800, must-revalidate
last-modified: Thu, 04 Nov 2010 01:42:54 GMT
x-transaction-id: c8742b02525012be
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
content-type: image/png
accept-ranges: bytes
date: Tue, 31 Jan 2023 14:40:47 GMT
x-cache: HIT, HIT
x-tw-cdn: FT
x-served-by: cache-lhr7326-LHR, cache-bma1669-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=HIT, x-tw-cdn;desc=FT
content-length: 7190
X-Firefox-Spdy: h2

abs.twimg.com/favicons/favicon.ico

152.199.21.141

404 Not Found

345 B

URL HTTP/1.1
abs.twimg.com/favicons/favicon.ico
IP
152.199.21.141:0
ASN
#15133 EDGECAST

File type
XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
345 B (345 bytes)
Hash
d8f540e3c342b32c8cfe52dc8f2a8f97
11a8d74e4a92df2bc378efa85fb65f10365e1b1b
17b3914195ad4aae3f4486a351fe9172aada062dad7fcc78bca5894221a6c019

HTTP Headers

GET /favicons/favicon.ico HTTP/1.1
Host: abs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://msnews.net.br/

HTTP/1.1 404 Not Found
Content-Type: text/html
Date: Tue, 31 Jan 2023 14:40:47 GMT
Server: ECAcc (ska/F776)
Content-Length: 345

pbs.twimg.com/profile_images/792185437842468864/fWxKFhed_bigger.jpg

151.101.84.159

200 OK

2.8 kB

URL HTTP/2
pbs.twimg.com/profile_images/792185437842468864/fWxKFhed_bigger.jpg
IP
151.101.84.159:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 73x73, components 3\012- data
Size
2.8 kB (2795 bytes)
Hash
ecd54775740c8aeac91b66db8225381a
0e8edd129610734622543dd7d162ed5d3f1b0a6e
6e4c716259cd346c552798fe59c334ef31741ce2580a0aa3961aa48701d1279c

HTTP Headers

GET /profile_images/792185437842468864/fWxKFhed_bigger.jpg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
perf: 7626143928
cache-control: max-age=604800, must-revalidate
last-modified: Sat, 29 Oct 2016 02:03:01 GMT
x-transaction-id: 418eac2025284abe
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
content-type: image/jpeg
accept-ranges: bytes
date: Tue, 31 Jan 2023 14:40:48 GMT
x-cache: HIT, MISS
x-tw-cdn: FT
x-served-by: cache-lhr7321-LHR, cache-bma1669-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 2795
X-Firefox-Spdy: h2

pbs.twimg.com/profile_images/693603578435485696/52xCZWWG_bigger.png

151.101.84.159

200 OK

12 kB

URL HTTP/2
pbs.twimg.com/profile_images/693603578435485696/52xCZWWG_bigger.png
IP
151.101.84.159:0
ASN
#54113 FASTLY

File type
PNG image data, 73 x 73, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (12051 bytes)
Hash
f13926d286fa50c9ba20640e53e89a21
271b28d51b388829bd8126289f7442302d16e63a
b83d57c0904f1e731ee7f0827bd9c5d3d4259deb52797bfddb981615094cff13

HTTP Headers

GET /profile_images/693603578435485696/52xCZWWG_bigger.png HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
perf: 7626143928
cache-control: max-age=604800, must-revalidate
last-modified: Sun, 31 Jan 2016 01:13:54 GMT
x-transaction-id: b3d3315bcd13294f
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
content-type: image/png
accept-ranges: bytes
date: Tue, 31 Jan 2023 14:40:48 GMT
x-cache: HIT, MISS
x-tw-cdn: FT
x-served-by: cache-lhr7361-LHR, cache-bma1669-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 12051
X-Firefox-Spdy: h2

pbs.twimg.com/media/DWQkevOW4AAWLG-.jpg

151.101.84.159

404 Not Found

0 B

URL HTTP/2
pbs.twimg.com/media/DWQkevOW4AAWLG-.jpg
IP
151.101.84.159:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /media/DWQkevOW4AAWLG-.jpg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 404 Not Found
perf: 7626143928
cache-control: max-age=86400, must-revalidate
x-transaction-id: d52ba121057d298c
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
content-type: image/jpeg
accept-ranges: bytes
date: Tue, 31 Jan 2023 14:40:48 GMT
x-cache: HIT, MISS
x-tw-cdn: FT
x-served-by: cache-lhr7342-LHR, cache-bma1669-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 0
X-Firefox-Spdy: h2

pbs.twimg.com/media/DWQbu0fX0AAhY17.jpg

151.101.84.159

404 Not Found

0 B

URL HTTP/2
pbs.twimg.com/media/DWQbu0fX0AAhY17.jpg
IP
151.101.84.159:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /media/DWQbu0fX0AAhY17.jpg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 404 Not Found
perf: 7626143928
cache-control: max-age=86400, must-revalidate
x-transaction-id: 1d91474bfd657e8d
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
content-type: image/jpeg
accept-ranges: bytes
date: Tue, 31 Jan 2023 14:40:48 GMT
x-cache: HIT, MISS
x-tw-cdn: FT
x-served-by: cache-lhr7320-LHR, cache-bma1669-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 0
X-Firefox-Spdy: h2

pbs.twimg.com/media/DWQmxRwX0AIFeDr.jpg

151.101.84.159

404 Not Found

0 B

URL HTTP/2
pbs.twimg.com/media/DWQmxRwX0AIFeDr.jpg
IP
151.101.84.159:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /media/DWQmxRwX0AIFeDr.jpg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 404 Not Found
perf: 7626143928
cache-control: max-age=86400, must-revalidate
x-transaction-id: 8569c48d84e03634
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
content-type: image/jpeg
accept-ranges: bytes
date: Tue, 31 Jan 2023 14:40:48 GMT
x-cache: HIT, MISS
x-tw-cdn: FT
x-served-by: cache-lhr7339-LHR, cache-bma1669-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 0
X-Firefox-Spdy: h2

pbs.twimg.com/tweet_video_thumb/DWQgzEZXkAAnNhZ.jpg

151.101.84.159

200 OK

30 kB

URL HTTP/2
pbs.twimg.com/tweet_video_thumb/DWQgzEZXkAAnNhZ.jpg
IP
151.101.84.159:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 480x270, components 3\012- data
Size
30 kB (30087 bytes)
Hash
ffb736c827cc2f274a240e89bf461c02
da53a67386935de8defbfdf2403083a909732bb3
ba2620b32ed7ad4e02bff40d01094e8b6e6934949b7f12ec05aa60461a47442a

HTTP Headers

GET /tweet_video_thumb/DWQgzEZXkAAnNhZ.jpg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
perf: 7626143928
cache-control: max-age=604800, must-revalidate
last-modified: Sat, 17 Feb 2018 18:37:18 GMT
x-transaction-id: 4b82863060f77705
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
content-type: image/jpeg
accept-ranges: bytes
date: Tue, 31 Jan 2023 14:40:48 GMT
x-cache: HIT, MISS
x-tw-cdn: FT
x-served-by: cache-lhr7362-LHR, cache-bma1669-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 30087
X-Firefox-Spdy: h2

pbs.twimg.com/profile_images/962467435919106049/uP-XZcs9_400x400.jpg

151.101.84.159

404 Not Found

0 B

URL HTTP/2
pbs.twimg.com/profile_images/962467435919106049/uP-XZcs9_400x400.jpg
IP
151.101.84.159:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /profile_images/962467435919106049/uP-XZcs9_400x400.jpg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
perf: 7626143928
cache-control: max-age=3600, must-revalidate
x-transaction-id: 43ac73cfbf418464
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
content-type: image/jpeg
accept-ranges: bytes
date: Tue, 31 Jan 2023 14:40:48 GMT
x-cache: MISS, MISS
x-tw-cdn: FT
x-served-by: cache-lhr7334-LHR, cache-bma1669-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 0
X-Firefox-Spdy: h2

pbs.twimg.com/profile_images/751847750849929217/ahhBum8x_bigger.jpg

151.101.84.159

404 Not Found

0 B

URL HTTP/2
pbs.twimg.com/profile_images/751847750849929217/ahhBum8x_bigger.jpg
IP
151.101.84.159:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /profile_images/751847750849929217/ahhBum8x_bigger.jpg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 404 Not Found
perf: 7626143928
cache-control: max-age=3600, must-revalidate
x-transaction-id: bb446faaae841cc7
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
content-type: image/jpeg
accept-ranges: bytes
date: Tue, 31 Jan 2023 14:40:48 GMT
x-cache: MISS, MISS
x-tw-cdn: FT
x-served-by: cache-lhr7371-LHR, cache-bma1669-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 0
X-Firefox-Spdy: h2

pbs.twimg.com/profile_images/959560140566552577/puqNip65_normal.jpg

151.101.84.159

404 Not Found

0 B

URL HTTP/2
pbs.twimg.com/profile_images/959560140566552577/puqNip65_normal.jpg
IP
151.101.84.159:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /profile_images/959560140566552577/puqNip65_normal.jpg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 404 Not Found
perf: 7626143928
cache-control: max-age=3600, must-revalidate
x-transaction-id: aef8e83dfa9a140c
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
content-type: image/jpeg
accept-ranges: bytes
date: Tue, 31 Jan 2023 14:40:48 GMT
x-cache: MISS, MISS
x-tw-cdn: FT
x-served-by: cache-lhr7359-LHR, cache-bma1669-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 0
X-Firefox-Spdy: h2

pbs.twimg.com/profile_images/786501879551459332/FlcTfxu6_bigger.jpg

151.101.84.159

404 Not Found

0 B

URL HTTP/2
pbs.twimg.com/profile_images/786501879551459332/FlcTfxu6_bigger.jpg
IP
151.101.84.159:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /profile_images/786501879551459332/FlcTfxu6_bigger.jpg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 404 Not Found
perf: 7626143928
cache-control: max-age=3600, must-revalidate
x-transaction-id: de8967f5819678e3
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
content-type: image/jpeg
accept-ranges: bytes
date: Tue, 31 Jan 2023 14:40:48 GMT
x-cache: MISS, MISS
x-tw-cdn: FT
x-served-by: cache-lhr7334-LHR, cache-bma1669-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 0
X-Firefox-Spdy: h2

pbs.twimg.com/profile_images/942555275713794049/8qjp_CeB_normal.jpg

151.101.84.159

404 Not Found

0 B

URL HTTP/2
pbs.twimg.com/profile_images/942555275713794049/8qjp_CeB_normal.jpg
IP
151.101.84.159:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /profile_images/942555275713794049/8qjp_CeB_normal.jpg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
perf: 7626143928
cache-control: max-age=3600, must-revalidate
x-transaction-id: 349919d8b517b4ad
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
content-type: image/jpeg
accept-ranges: bytes
date: Tue, 31 Jan 2023 14:40:48 GMT
x-cache: MISS, MISS
x-tw-cdn: FT
x-served-by: cache-lhr7390-LHR, cache-bma1669-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 0
X-Firefox-Spdy: h2

pbs.twimg.com/profile_images/949716706695491585/_s9demjs_normal.jpg

151.101.84.159

404 Not Found

0 B

URL HTTP/2
pbs.twimg.com/profile_images/949716706695491585/_s9demjs_normal.jpg
IP
151.101.84.159:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /profile_images/949716706695491585/_s9demjs_normal.jpg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
perf: 7626143928
cache-control: max-age=3600, must-revalidate
x-transaction-id: 0e19ac4c597fdfe4
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
content-type: image/jpeg
accept-ranges: bytes
date: Tue, 31 Jan 2023 14:40:48 GMT
x-cache: MISS, MISS
x-tw-cdn: FT
x-served-by: cache-lhr7320-LHR, cache-bma1669-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 0
X-Firefox-Spdy: h2

pbs.twimg.com/profile_banners/142833359/1518305018/1500x500

151.101.84.159

404 Not Found

0 B

URL HTTP/2
pbs.twimg.com/profile_banners/142833359/1518305018/1500x500
IP
151.101.84.159:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /profile_banners/142833359/1518305018/1500x500 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 404 Not Found
perf: 7626143928
cache-control: max-age=3600, must-revalidate
x-transaction-id: 976126959302873d
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
accept-ranges: bytes
date: Tue, 31 Jan 2023 14:40:48 GMT
x-cache: MISS, MISS
x-tw-cdn: FT
x-served-by: cache-lhr7372-LHR, cache-bma1669-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 0
X-Firefox-Spdy: h2

pbs.twimg.com/profile_images/962467435919106049/uP-XZcs9_normal.jpg

151.101.84.159

404 Not Found

0 B

URL HTTP/2
pbs.twimg.com/profile_images/962467435919106049/uP-XZcs9_normal.jpg
IP
151.101.84.159:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /profile_images/962467435919106049/uP-XZcs9_normal.jpg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
perf: 7626143928
cache-control: max-age=3600, must-revalidate
x-transaction-id: 20f52573793ea9a5
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
content-type: image/jpeg
accept-ranges: bytes
date: Tue, 31 Jan 2023 14:40:48 GMT
x-cache: MISS, MISS
x-tw-cdn: FT
x-served-by: cache-lhr7342-LHR, cache-bma1669-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 0
X-Firefox-Spdy: h2

pbs.twimg.com/profile_images/961354709926850567/UtamJzy6_bigger.jpg

151.101.84.159

404 Not Found

0 B

URL HTTP/2
pbs.twimg.com/profile_images/961354709926850567/UtamJzy6_bigger.jpg
IP
151.101.84.159:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /profile_images/961354709926850567/UtamJzy6_bigger.jpg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 404 Not Found
perf: 7626143928
cache-control: max-age=3600, must-revalidate
x-transaction-id: 1ed75230ad246e1b
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
content-type: image/jpeg
accept-ranges: bytes
date: Tue, 31 Jan 2023 14:40:48 GMT
x-cache: MISS, MISS
x-tw-cdn: FT
x-served-by: cache-lhr7323-LHR, cache-bma1669-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 0
X-Firefox-Spdy: h2

pbs.twimg.com/profile_images/963552182888009728/MomBeAWt_bigger.jpg

151.101.84.159

404 Not Found

0 B

URL HTTP/2
pbs.twimg.com/profile_images/963552182888009728/MomBeAWt_bigger.jpg
IP
151.101.84.159:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /profile_images/963552182888009728/MomBeAWt_bigger.jpg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 404 Not Found
perf: 7626143928
cache-control: max-age=3600, must-revalidate
x-transaction-id: 5ccdffe125650b42
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
content-type: image/jpeg
accept-ranges: bytes
date: Tue, 31 Jan 2023 14:40:48 GMT
x-cache: MISS, MISS
x-tw-cdn: FT
x-served-by: cache-lhr7364-LHR, cache-bma1669-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 0
X-Firefox-Spdy: h2

pbs.twimg.com/profile_images/467480860862996480/H6bWuz50_bigger.jpeg

151.101.84.159

404 Not Found

0 B

URL HTTP/2
pbs.twimg.com/profile_images/467480860862996480/H6bWuz50_bigger.jpeg
IP
151.101.84.159:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /profile_images/467480860862996480/H6bWuz50_bigger.jpeg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 404 Not Found
perf: 7626143928
cache-control: max-age=3600, must-revalidate
x-transaction-id: bef56518f26917df
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
accept-ranges: bytes
date: Tue, 31 Jan 2023 14:40:48 GMT
x-cache: MISS, MISS
x-tw-cdn: FT
x-served-by: cache-lhr7355-LHR, cache-bma1669-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 0
X-Firefox-Spdy: h2

pbs.twimg.com/profile_images/1409756299/delicate-sound-of-thunder_normal.jpg

151.101.84.159

404 Not Found

0 B

URL HTTP/2
pbs.twimg.com/profile_images/1409756299/delicate-sound-of-thunder_normal.jpg
IP
151.101.84.159:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /profile_images/1409756299/delicate-sound-of-thunder_normal.jpg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
perf: 7626143928
cache-control: max-age=3600, must-revalidate
x-transaction-id: 8a213f338a041fa5
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
content-type: image/jpeg
accept-ranges: bytes
date: Tue, 31 Jan 2023 14:40:48 GMT
x-cache: MISS, MISS
x-tw-cdn: FT
x-served-by: cache-lhr7335-LHR, cache-bma1669-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 0
X-Firefox-Spdy: h2

pbs.twimg.com/profile_images/879130440401125376/fCfnbYHV_normal.jpg

151.101.84.159

404 Not Found

0 B

URL HTTP/2
pbs.twimg.com/profile_images/879130440401125376/fCfnbYHV_normal.jpg
IP
151.101.84.159:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /profile_images/879130440401125376/fCfnbYHV_normal.jpg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 404 Not Found
perf: 7626143928
cache-control: max-age=3600, must-revalidate
x-transaction-id: 3c884a705f24ec51
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
content-type: image/jpeg
accept-ranges: bytes
date: Tue, 31 Jan 2023 14:40:48 GMT
x-cache: MISS, MISS
x-tw-cdn: FT
x-served-by: cache-lhr7362-LHR, cache-bma1669-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 0
X-Firefox-Spdy: h2

pbs.twimg.com/profile_images/962467435919106049/uP-XZcs9_bigger.jpg

151.101.84.159

404 Not Found

0 B

URL HTTP/2
pbs.twimg.com/profile_images/962467435919106049/uP-XZcs9_bigger.jpg
IP
151.101.84.159:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /profile_images/962467435919106049/uP-XZcs9_bigger.jpg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
perf: 7626143928
cache-control: max-age=3600, must-revalidate
x-transaction-id: 2daf79c0eba68fa5
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
strict-transport-security: max-age=631138519
access-control-allow-origin: *
access-control-expose-headers: Content-Length
x-content-type-options: nosniff
content-type: image/jpeg
accept-ranges: bytes
date: Tue, 31 Jan 2023 14:40:48 GMT
x-cache: MISS, MISS
x-tw-cdn: FT
x-served-by: cache-lhr7357-LHR, cache-bma1669-BMA, cache-tw-ZZZ1
server-timing: x-cache;desc=MISS, x-tw-cdn;desc=FT
content-length: 0
X-Firefox-Spdy: h2

push.services.mozilla.com/

52.43.158.219

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.43.158.219:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: WXES3FcN9e/TFb9CV8SObQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: s6B+L8E5WHPvxRzQtNvY39TQhrI=

www.msnews.net.br/i/js_inst?c_name=ui_metrics

108.179.193.99

404 Not Found

11 kB

URL HTTP/1.1
www.msnews.net.br/i/js_inst?c_name=ui_metrics
IP
108.179.193.99:0
ASN
#26337 OIS1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6808), with CRLF, LF line terminators
Size
11 kB (10647 bytes)
Hash
ddb943558010faba69f01d0177722171
ca742508ef91c68cce6f8c66a1966017a262a1b2
7491bf7fe1bb2adcb8a1ed229a21e19c6fa9911289bbd515aa5fee3a2ee825f7

HTTP Headers

GET /i/js_inst?c_name=ui_metrics HTTP/1.1
Host: www.msnews.net.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://msnews.net.br/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Tue, 31 Jan 2023 14:40:48 GMT
Server: Apache
Vary: Accept-Encoding,Cookie
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://www.msnews.net.br/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Content-Encoding: gzip
Content-Length: 10647
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

abs.twimg.com/k/pt/14.video_player_a.pt.551886c113384f9700bb.js

152.199.21.141

200 OK

114 kB

URL HTTP/2
abs.twimg.com/k/pt/14.video_player_a.pt.551886c113384f9700bb.js
IP
152.199.21.141:0
ASN
#15133 EDGECAST

File type
ASCII text, with very long lines (40209)
Size
114 kB (113478 bytes)
Hash
0684279f8508726e8855eec882b3acc5
d635eb649e331df1e4748f3e16419f69a258fca2
077203232dd91709ee47c688d4130c5c037fa0d38b9a15d1cc20ef1a942ca6e3

HTTP Headers

GET /k/pt/14.video_player_a.pt.551886c113384f9700bb.js HTTP/1.1
Host: abs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 14378035
content-type: application/javascript
date: Tue, 31 Jan 2023 14:40:48 GMT
etag: "xYmPNfCSanEHUgfgdC0gew=="
expires: Wed, 31 Jan 2024 14:40:48 GMT
last-modified: Thu, 01 Feb 2018 00:10:11 GMT
server: ECAcc (ska/F75E)
strict-transport-security: max-age=631138519
surrogate-key: twitter-assets
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
vary: Accept-Encoding
x-cache: HIT
x-connection-hash: 7f00654150b256fc3f02814533cd177722c90684a6897050da17d3d794bd57a2
x-content-type-options: nosniff
x-response-time: 35
x-ton-expected-size: 397471
content-length: 113478
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

313 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
313 B (313 bytes)
Hash
4867f25d0deeac2ee7e5f001331f35e0
884c3adc8ca1fc39dd80535df2ab45a6a203d9fb
5e414dce0306d561545b08e33a9c09e68f9cf932289e74a1808056e8bfa0a615

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 923
Cache-Control: max-age=139258
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 14:40:48 GMT
Etag: "63d8a1cf-139"
Expires: Thu, 02 Feb 2023 05:21:46 GMT
Last-Modified: Tue, 31 Jan 2023 05:06:23 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 313

ocsp.digicert.com/

93.184.220.29

200 OK

313 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
313 B (313 bytes)
Hash
beba92ff0bc5737791ba6982e7b0dba5
712af102d8a29ef26a49a16f95e8e90e3d9067b6
a778a2a369102dfbf4c67d64ff337d136f1ae79b4c1f72d0d4d7c0cfb3704e37

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5875
Cache-Control: max-age=123340
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 14:40:48 GMT
Etag: "63d85049-139"
Expires: Thu, 02 Feb 2023 00:56:28 GMT
Last-Modified: Mon, 30 Jan 2023 23:18:33 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 313

syndication.twitter.com/i/jot/syndication?l=%7B%22_category_%22%3A%22syndicated_impression%22%2C%22event_namespace%22%3A%7B%22client%22%3A%22web%22%2C%22page%22%3A%22permalink%22%2C%22action%22%3A%22impression%22%7D%2C%22triggered_on%22%3A1675176065561%7D

104.244.42.72

200 OK

0 B

URL HTTP/2
syndication.twitter.com/i/jot/syndication?l=%7B%22_category_%22%3A%22syndicated_impression%22%2C%22event_namespace%22%3A%7B%22client%22%3A%22web%22%2C%22page%22%3A%22permalink%22%2C%22action%22%3A%22impression%22%7D%2C%22triggered_on%22%3A1675176065561%7D
IP
104.244.42.72:0
ASN
#13414 TWITTER

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /i/jot/syndication?l=%7B%22_category_%22%3A%22syndicated_impression%22%2C%22event_namespace%22%3A%7B%22client%22%3A%22web%22%2C%22page%22%3A%22permalink%22%2C%22action%22%3A%22impression%22%7D%2C%22triggered_on%22%3A1675176065561%7D HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 31 Jan 2023 14:40:48 UTC
perf: 7626143928
server: tsa_o
cache-control: no-cache, no-store, max-age=0
content-length: 0
x-transaction-id: bf4baad2fd947e2d
strict-transport-security: max-age=631138519
x-response-time: 108
x-connection-hash: cc77aee4f0ae26a689e19b9e75d54f80ff55f90c3b3168b94e4283b22cbeefc1
X-Firefox-Spdy: h2

analytics.twitter.com/tpm/p?_=1675176064662

104.244.42.3

200 OK

28 B

URL HTTP/2
analytics.twitter.com/tpm/p?_=1675176064662
IP
104.244.42.3:0
ASN
#13414 TWITTER

File type
JSON data\012- , ASCII text, with no line terminators
Size
28 B (28 bytes)
Hash
830cb026fae1a13104725d2b3100ec10
40188da405f4a93c90f0b5e060e0ccca8e483eba
4d32822dd4fd4e7b58950d7c693e301eaa19b29305077afaebc12852df7f4ee0

HTTP Headers

GET /tpm/p?_=1675176064662 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/plain, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://msnews.net.br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 31 Jan 2023 14:40:48 GMT
perf: 7626143928
vary: Origin
server: tsa_o
set-cookie: guest_id=v1%3A167517604871718941; Max-Age=34214400; Expires=Sat, 02 Mar 2024 14:40:48 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: application/json;charset=utf-8
cache-control: no-cache, no-store, max-age=0
x-transaction: 4d0658f333e552d1
content-length: 28
x-frame-options: SAMEORIGIN
content-encoding: gzip
x-transaction-id: 4d0658f333e552d1
x-xss-protection: 0
content-disposition: attachment; filename=json.json
x-content-type-options: nosniff
strict-transport-security: max-age=631138519
x-response-time: 113
x-connection-hash: ca04bb75f38e57d76aa66a0d286e8aaa1d4ac5f9a43683620ef406e39be4920a
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

313 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
313 B (313 bytes)
Hash
9ea943e3915675ce9be3952cd37e4834
55786ca2e9cf1cfff818108059ae825ccbd717ca
84d582d80b73515c0fb69a4fb258fa551fbfff3caff2a682352c1f313864a88e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5868
Cache-Control: max-age=141356
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 14:40:48 GMT
Etag: "63d896b1-139"
Expires: Thu, 02 Feb 2023 05:56:44 GMT
Last-Modified: Tue, 31 Jan 2023 04:18:57 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 313

ocsp.digicert.com/

93.184.220.29

200 OK

313 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
313 B (313 bytes)
Hash
9ea943e3915675ce9be3952cd37e4834
55786ca2e9cf1cfff818108059ae825ccbd717ca
84d582d80b73515c0fb69a4fb258fa551fbfff3caff2a682352c1f313864a88e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3434
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 14:40:48 GMT
Last-Modified: Tue, 31 Jan 2023 13:43:34 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 313

www.msnews.net.br/i/js_inst?c_name=ui_metrics

108.179.193.99

404 Not Found

11 kB

URL HTTP/1.1
www.msnews.net.br/i/js_inst?c_name=ui_metrics
IP
108.179.193.99:0
ASN
#26337 OIS1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6808), with CRLF, LF line terminators
Size
11 kB (10627 bytes)
Hash
f0c9d939cd911c2a748a113f51c06947
01ee38b33fec730a8068faa05643fd220dbb694b
4315139cf0e2b9a9901fcd7cfe45228caadc112a1b4c675fd5a5a07f42fd888c

HTTP Headers

GET /i/js_inst?c_name=ui_metrics HTTP/1.1
Host: www.msnews.net.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://msnews.net.br/
Connection: keep-alive

HTTP/1.1 404 Not Found
Date: Tue, 31 Jan 2023 14:40:48 GMT
Server: Apache
Vary: Accept-Encoding,Cookie
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://www.msnews.net.br/wp-json/>; rel="https://api.w.org/"
Content-Encoding: gzip
Content-Length: 10627
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

api.twitter.com/1.1/guest/activate.json

104.244.42.66

404 Not Found

0 B

URL HTTP/2
api.twitter.com/1.1/guest/activate.json
IP
104.244.42.66:0
ASN
#13414 TWITTER

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /1.1/guest/activate.json HTTP/1.1
Host: api.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization
Referer: http://msnews.net.br/
Origin: http://msnews.net.br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
perf: 7626143928
cache-control: no-cache, no-store, max-age=0
content-length: 0
x-transaction-id: ed7955666783bdaa
x-response-time: 107
x-connection-hash: c0dff014d8b58ef43c1cf93f1d73dc4e891e1aabd4796e5dfe5ac2891ee17568
date: Tue, 31 Jan 2023 14:40:48 GMT
server: tsa_o
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14224
Expires: Tue, 31 Jan 2023 18:37:53 GMT
Date: Tue, 31 Jan 2023 14:40:49 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14224
Expires: Tue, 31 Jan 2023 18:37:53 GMT
Date: Tue, 31 Jan 2023 14:40:49 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14224
Expires: Tue, 31 Jan 2023 18:37:53 GMT
Date: Tue, 31 Jan 2023 14:40:49 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14224
Expires: Tue, 31 Jan 2023 18:37:53 GMT
Date: Tue, 31 Jan 2023 14:40:49 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14224
Expires: Tue, 31 Jan 2023 18:37:53 GMT
Date: Tue, 31 Jan 2023 14:40:49 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (13853 bytes)
Hash
d957012d3e2b8c3bc0eefe11d66e8554
1959fdd94846fa3791c4890578dd15336b909dcc
a97e81ec5eb2eda6a603bf4bfd4fa4ef4fab762747479489e99e6c713258a736

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13853
x-amzn-requestid: ca6ea6e7-3e13-4194-87f5-20a07b813e21
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fk3zzF4hIAMFwWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d839b1-772487cb1b7495c52c552d36;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 21:42:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lUGjUSIkoacdmaO1jnMwIuNMONhjyVfAIcTQ3B5d5da_g9eEnCtW7g==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:48:17 GMT
age: 60752
etag: "1959fdd94846fa3791c4890578dd15336b909dcc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37e3fb86-3315-41fd-97cb-ac82604d8869.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.6 kB (8558 bytes)
Hash
e6f9ffb8f9e99229b45ca5fdb84ce7d5
04577ad69ee9749b14382254eb5bbf0e1edcd7fa
6111acf3f363123b39d13cd3d23ab39b8c8d00379874f19231d1cd3da17c52c2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37e3fb86-3315-41fd-97cb-ac82604d8869.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8558
x-amzn-requestid: 2841cd36-22e6-4ecb-b56a-bfadce3197c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffB_BFA8IAMFyvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e393-3fd03bd14de762b0738a3b0a;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:10:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: R29JYq4Z8V_Xuq2no0bKxk1K6h2PmTO5OSxzMa4zppDVk3j9rO9aTw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 03:24:36 GMT
age: 40573
etag: "04577ad69ee9749b14382254eb5bbf0e1edcd7fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b71db36-11cb-45f6-a296-34813aea1c35.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10898 bytes)
Hash
4a2d26da68a313cc65958fc2692351c2
798c3538f3147ca77d317676ddd1bf040bd0f93b
76ce30224803d680c0115e987a712ce5552b2760beadf796a96b17439fb20797

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b71db36-11cb-45f6-a296-34813aea1c35.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10898
x-amzn-requestid: e29f8dfc-07d4-4136-afaf-e1e067eea2ab
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fk3zxGshIAMFw5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d839b1-5e87d2a44722af9e4e86c3d4;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 21:42:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: XYo_QvM8GWDyulOtUb5nVjS9PxOinaRJ3lYvCreeqd_9tHI5yv5xcQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:48:21 GMT
age: 60748
etag: "798c3538f3147ca77d317676ddd1bf040bd0f93b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (9987 bytes)
Hash
2c4934be94898028e2ab696561b51462
6cf734e2d29938688913daacfb75506d8e004a94
239adcbb538b7a6d1483c65c7694d4a9f9fa9cadf456ab5681c4b764185e3596

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9987
x-amzn-requestid: 67109f87-6073-4991-b540-cdeedc2d7b3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: flYlPF9uIAMFXMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d86e21-60ac2c7b37c72e6e54a5c69d;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 01:25:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Gif_csWkacU59D_hnOrJpK6u2aPI8Ylf2JyQEJZ2RLNMCrXSmmMa9w==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 01:56:35 GMT
age: 45854
etag: "6cf734e2d29938688913daacfb75506d8e004a94"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11129 bytes)
Hash
2797bfd35b7ec24888de84be14f7f2ec
8e315ac5856967286eaa8769e081d827fb4ca39e
b99f3bd73eb4395194bc7bb6a1b801750182239e5b70f3207f99e494b60b72ab

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11129
x-amzn-requestid: 74f2a4dd-7d5d-4839-90a8-d2e74f6d785d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffDBZGRPoAMFedg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e53b-3de444596550bb41188ada5b;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:17:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9Fga247EZZqiGmdMJ72resdBZR2KLgflGDBPESmuw9cFVs4hSzMzTw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 03:50:52 GMT
age: 38997
etag: "8e315ac5856967286eaa8769e081d827fb4ca39e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.8 kB (6844 bytes)
Hash
976dda397f9292a498ca9db5599c0378
dad9e9c3462907a2475046aee36d57f8309cd44e
7ed9ccf2ff75ca53f5ba56a1d2127e0f09b0ae941cad8b042e8df01ad01e614b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6844
x-amzn-requestid: 0542cf46-5045-459f-a35f-f6c0d3f5f7b7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: flZsxH0YIAMF9ew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d86feb-692d50f710a131df2ee49aa8;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 01:33:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oLMUuQVwUyKMuYAvTkA4wlVDb3-kZjStTJFfUZRb7JwKcK11waY0kQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 01:42:39 GMT
age: 46690
etag: "dad9e9c3462907a2475046aee36d57f8309cd44e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.14

200 OK

0 B

URL HTTP/1.1
www.google-analytics.com/analytics.js
IP
142.250.74.14:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://msnews.net.br/

HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20085
Date: Tue, 31 Jan 2023 14:03:18 GMT
Expires: Tue, 31 Jan 2023 16:03:18 GMT
Cache-Control: public, max-age=7200
Age: 2250
Last-Modified: Tue, 10 Jan 2023 21:29:14 GMT
Content-Type: text/javascript

abs.twimg.com/icons/apple-touch-icon-192x192.png

152.199.21.141

200 OK

0 B

URL HTTP/2
abs.twimg.com/icons/apple-touch-icon-192x192.png
IP
152.199.21.141:0
ASN
#15133 EDGECAST

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /icons/apple-touch-icon-192x192.png HTTP/1.1
Host: abs.twimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://msnews.net.br/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 20844395
content-type: image/png
date: Tue, 31 Jan 2023 14:40:47 GMT
etag: "xKoRPNg9Gbfwy1GNNLUoaw=="
expires: Wed, 31 Jan 2024 14:40:47 GMT
last-modified: Tue, 19 Sep 2017 21:03:47 GMT
server: ECAcc (ska/F7BA)
strict-transport-security: max-age=631138519
surrogate-key: twitter-assets
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: HIT
x-connection-hash: 07d6f282768b8abff13cb44fde6651950447d69ea88cab47ff1ba21c74d61c57
x-content-type-options: nosniff
x-response-time: 6
x-ton-expected-size: 2113
content-length: 2113
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML