Overview

URL georgewaters.shop/
IP104.21.26.26
ASNCLOUDFLARENET
Location
Report completed2022-09-27 08:16:07 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
mnemonic secure dns  No alerts detected
Quad9 DNS
Scan Date Severity Indicator Comment
2022-09-27 2 hewawkward.com Sinkholed
2022-09-27 2 invaderannihilationperky.com Sinkholed
2022-09-27 2 invaderannihilationperky.com Sinkholed
2022-09-27 2 invaderannihilationperky.com Sinkholed
2022-09-27 2 kazanwhoeveryowl.com Sinkholed
2022-09-27 2 unseenreport.com Sinkholed


Files

No files detected



Passive DNS (27)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS m.addthis.com (1) 1448 2013-11-06 20:12:22 UTC 2022-09-27 07:05:31 UTC 23.38.200.123
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-27 04:13:22 UTC 143.204.55.49
mnemonic passive DNS e1.o.lencr.org (6) 6159 2021-08-20 07:36:30 UTC 2022-09-26 04:44:54 UTC 23.36.76.226
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-27 04:52:33 UTC 34.117.237.239
mnemonic passive DNS invaderannihilationperky.com (3) 0 2022-09-20 14:08:34 UTC 2022-09-27 07:37:48 UTC 192.243.61.225 Unknown ranking
mnemonic passive DNS z.moatads.com (1) 374 2014-02-11 16:19:47 UTC 2022-09-26 04:34:46 UTC 23.38.201.146
mnemonic passive DNS v1.addthisedge.com (1) 1721 2019-05-22 18:56:22 UTC 2022-09-27 05:13:45 UTC 23.38.200.123
mnemonic passive DNS cpa-ebook-assets.site (1) 0 2021-10-26 10:06:58 UTC 2022-09-17 04:44:45 UTC 172.67.148.67 Unknown ranking
mnemonic passive DNS register.yars10.net (1) 0 2021-11-24 11:35:55 UTC 2022-09-27 05:46:20 UTC 178.63.30.218 Unknown ranking
mnemonic passive DNS ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2022-09-27 04:15:00 UTC 93.184.220.29
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-27 05:14:54 UTC 54.189.35.180
mnemonic passive DNS s7.addthis.com (3) 1504 2012-05-21 03:34:04 UTC 2022-09-26 04:42:26 UTC 23.38.200.123
mnemonic passive DNS books.google.com (10) 16267 2012-10-28 19:46:14 UTC 2022-09-27 04:39:13 UTC 142.250.74.174
mnemonic passive DNS api-public.addthis.com (3) 4111 2012-05-21 13:44:35 UTC 2022-09-26 11:38:55 UTC 23.38.200.123
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-27 04:53:17 UTC 34.120.237.76
mnemonic passive DNS simplewebanalysis.com (1) 0 2022-02-25 04:06:25 UTC 2022-09-27 04:59:30 UTC 3.66.118.16 Unknown ranking
mnemonic passive DNS unseenreport.com (1) 0 2022-03-30 14:33:17 UTC 2022-09-26 22:43:00 UTC 192.243.59.13 Unknown ranking
mnemonic passive DNS georgewaters.shop (2) 0 2022-09-17 22:55:00 UTC 2022-09-17 22:57:04 UTC 104.21.26.26 Unknown ranking
mnemonic passive DNS georgewaters.shop (2) 0 2022-09-17 22:55:00 UTC 2022-09-17 22:57:04 UTC 172.67.135.53 Unknown ranking
mnemonic passive DNS maxcdn.bootstrapcdn.com (1) 724 2014-06-18 00:37:31 UTC 2022-09-27 04:56:55 UTC 104.18.10.207
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-28 17:26:30 UTC 2022-09-27 05:44:40 UTC 143.204.55.27
mnemonic passive DNS kazanwhoeveryowl.com (1) 0 2022-09-19 02:25:31 UTC 2022-09-27 07:08:05 UTC 173.233.137.44 Unknown ranking
mnemonic passive DNS ocsp.sca1b.amazontrust.com (1) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.88
mnemonic passive DNS cdn.cloudimagesb.com (1) 23099 2021-02-12 16:15:41 UTC 2022-09-26 22:47:29 UTC 45.133.44.9
mnemonic passive DNS addresseepaper.com (1) 18169 2021-11-01 21:11:31 UTC 2022-09-27 03:39:28 UTC 172.64.100.4
mnemonic passive DNS r3.o.lencr.org (11) 344 2020-12-02 08:52:13 UTC 2022-09-27 04:12:16 UTC 23.36.76.226
mnemonic passive DNS hewawkward.com (1) 0 2021-09-11 06:18:48 UTC 2022-09-14 21:08:15 UTC 192.243.61.227 Unknown ranking


Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 104.21.26.26

Date UQ / IDS / BL URL IP
2022-09-27 08:16:07 +0000
0 - 0 - 6 georgewaters.shop/ 104.21.26.26

Last 5 reports on ASN: CLOUDFLARENET

Date UQ / IDS / BL URL IP
2022-11-28 04:48:05 +0000
0 - 0 - 2 infocons.ro/cb/afcu 104.21.8.97
2022-11-28 04:47:28 +0000
0 - 0 - 12 sltube.org/e/4j57gDmZgqdz26Xb 172.67.194.87
2022-11-28 04:47:07 +0000
0 - 0 - 1 provinerrigandsalz.tk/ 104.21.7.171
2022-11-28 04:46:44 +0000
0 - 0 - 2 frejobsalert.com/video-la-varit%E2%80%A6 104.21.23.90
2022-11-28 04:45:48 +0000
0 - 0 - 1 videjoo.com/us/flix/ 172.67.129.44

Last 1 reports on domain: georgewaters.shop

Date UQ / IDS / BL URL IP
2022-09-27 08:16:07 +0000
0 - 0 - 6 georgewaters.shop/ 104.21.26.26

No other reports with similar screenshot



JavaScript

Executed Scripts (15)


Executed Evals (3)

#1 JavaScript::Eval (size: 8, repeated: 1) - SHA256: 3c4b9b06fe520e9d07b2150eebd412a59c91d789706d99a2b2dc9bf217604d1f

                                        _ate.cbs
                                    

#2 JavaScript::Eval (size: 11, repeated: 1) - SHA256: 8ee784d797ce97ed9716bb42682346deb0c7ae8ff75d7ad8ae60508907054c16

                                        addthis.cbs
                                    

#3 JavaScript::Eval (size: 2108, repeated: 1) - SHA256: 5cedadef93cece8cb402c640a6220db819158ce2083c9a5465b62a03ca26ba15

                                                       (function() {
                   var bn;
                   if (bn = document.getElementById('atLink-ed3dbbca1a675ac6215f3ab22cd1d7fa')) {
                       var callback = function() {
                           (new Image()).src = '//invaderannihilationperky.com/clk.gif?landing_id=3569807&placement_id=16405778&sid=H4sIAAAAAAAC%2F1STz2sdVRvHz7R5X3h5cWHpwlKRu3ChaJJzZs78skix1kgxtqW1KLiQ82uSY%2BbODHNm7txkVSxIcWM2LtxNvklbtEXsShBa5KYgWBByu8rC%2FBNCRVeSGIw%2Bm%2Bf7fb7P4jNzzvl0o90jFK3YPf9uuWbzXMyHc3Tw0geMnRks2qIdD8ZJ9FHEzwzq0WtpNEdfHrxt1Eo571NGKaNssGBrk5Xj%2Bf0QtrqXsrmUznF%2FjoUc4%2Frf3rUenPCgR3vkBKyezjzyTsKqCYrht%2BeNW2nK6tW3hm0umrLGSN%2B5VqwUZVdgeCSz2kNW3DncRul2Fh6iLG4d4KIc%2Fb0o7ZR4Pz6ELO4cQkKOtg44ZQ5TQOr%2FoxtNYPIJrJhAlTdg9Q4BlMbFSyiGty%2BWdSdW%2F0rFfjolM09%2Fhe2mZOaXkyiG35zL7XhwtczbxpaFwzjrYccT2KUJqnYbzdox2G4bqvkEVv9M5p8uohhuXXJ5Cat3X%2BSxr5IsDGaNpGKWcx7OisBPZ01qIiM0902SHPwgayew2QS5WYdwx9E6D6310GYe2srDUO8OFGMsploJmqRKBTo2MtKUiThjgtEoQav2v2EdTbUOla9D1ddR1dexYr%2FYOXV3x%2Ft%2BSsiT33e873a8B6jbH%2BCWd29naZpF0qdBzCKTJDqkVKba11L63CQhM1rHigaRlEEScJFJwWWQJEkc0CQJOI3ShElfBnEc%2B9wEhjET0VALGUYhD2IWKhVz3%2FDIT7lO0pglmlLOlVZcykTJjNHIT7OEpUmqmQ5olFCaJSJQoc5iP%2BLcl76A0x5cQzDSPTpD0DmCThB0lqBrCLpRf0vnznf9bZ27VrLD7h%2F2oN8sm6UNcatslkxBNqo98uzBgf9x7QRWzO7A6EBLqQQTURwKFfkszAIhfV9ppuNMwNke1h2DcB7W7JQ892GOyk7Jf155BlJsw%2BXbUPY0RHsaotvkUQKxjIhirbg%2FtGrZ5LkphFpu5sara9Blj6qZQbPqbeR75NQBSzT%2BHEY9JocFVfeo6h4f20cES%2FnNzStlR7aulJ0j9y9VjR3aNbF%2FMa82ojH%2F%2Ffods9qVtb5w3q1%2F9YbaD%2FblvfeMaxZFoW2x5Mjdc1ZrUy%2BUtTLkwQX3vpGXW7d8rq2Ltlq8%2FObChWFVG%2BdsWUwg7I75CcpOyf8%2Be%2F3gxT3%2F5W%2Bw9QR122PYHpHachuqug5XHc1cSVDnR15WBF3bb9a%2BPBrmliA3R17IHu4fXh7pDXcTS%2FULEM0NFMMeo7rHKO8h8nW49vhmU9WPzz4JDgoy9zZlXpMtmdf7ud0d8JCHURbEikc60XEY0FRow7JU84DHWYbGTZV%2F%2F%2ByfAAAA%2F%2F8BAAD%2F%2F3KdalA3BQAA&psid=';
                       };
                       if (bn.addEventListener) bn.addEventListener('click', callback, false);
                       else if (bn.attachEvent) bn.attachEvent('onclick', callback);
                       else bn.onclick = callback;
                   }
               })();
                                    

Executed Writes (1)

#1 JavaScript::Write (size: 112, repeated: 1) - SHA256: e4d4823d663ec7be58563c08629dcb243c60dad91a86b02b8600cc988fbfe67c

                                        < script type = "text/javascript"
src = "https://hewawkward.com/ed3dbbca1a675ac6215f3ab22cd1d7fa/invoke.js" > < /script>
                                    


HTTP Transactions (64)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: georgewaters.shop
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         172.67.135.53
HTTP/1.1 301 Moved Permanently
                                        
Date: Tue, 27 Sep 2022 08:15:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 27 Sep 2022 09:15:56 GMT
Location: https://georgewaters.shop/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yAcwlh0avgQ8T0K3%2Feop0ldRB80%2Fiql%2BfSeygjOgXdt7adXCXaQBGmmj7NGo81FUW6yw%2FE8P%2BUCi6m5iQl3d%2B%2FcYXvmjWWvOKEq8HdmbPpKVZWPPH6HRA5YaK37zn%2BcuicUkJw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7512cb57eb41b4f7-OSL
alt-svc: h2=":443"; ma=60

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-stale=0
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 27 Sep 2022 07:45:26 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: kTDTy_r3uym_xhjXQ8JsSzGm1ViyVkL04sG9S0X5-GFRkOreVgBXcA==
Age: 1830


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    1b3053fa528e28810f8a2cc9284cc921
Sha1:   cca9eb471d941881a6b9a1793aecb6c281908f6a
Sha256: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4638
Expires: Tue, 27 Sep 2022 09:33:14 GMT
Date: Tue, 27 Sep 2022 08:15:56 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.49
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
date: Mon, 26 Sep 2022 09:17:07 GMT
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: XO_tVqcHpUU4otJMUK8wOISz6IT5igDifqY2Nr1C2McgYV52fVSwrw==
age: 82730
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 27 Sep 2022 08:15:56 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 346
ETag: "62472BF7A561A3AEB832AA78EBDD1E96704BCF161BC765A84B5AD124B71A4D3E"
Last-Modified: Tue, 27 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21533
Expires: Tue, 27 Sep 2022 14:14:49 GMT
Date: Tue, 27 Sep 2022 08:15:56 GMT
Connection: keep-alive

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 27 Sep 2022 08:10:46 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 27 Sep 2022 08:38:32 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: n7Q6MwP_EAgNkKvwLLpP-M683x1Sdxir_WGZYtXoydZlnX-ihT8wRg==
Age: 310


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5720
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 08:15:57 GMT
Last-Modified: Tue, 27 Sep 2022 06:40:37 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nmw883x/w1duXBnZLwbWiQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         54.189.35.180
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: utqbkd3KiBoornPP/wVXkwzBgHc=

                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 346
ETag: "62472BF7A561A3AEB832AA78EBDD1E96704BCF161BC765A84B5AD124B71A4D3E"
Last-Modified: Tue, 27 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21532
Expires: Tue, 27 Sep 2022 14:14:49 GMT
Date: Tue, 27 Sep 2022 08:15:57 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5763
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 08:15:57 GMT
Last-Modified: Tue, 27 Sep 2022 06:39:55 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 280

                                        
                                            GET /bootstrap/3.3.5/css/bootstrap.min.css HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://georgewaters.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.10.207
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Tue, 27 Sep 2022 08:15:57 GMT
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"5d5357cb3704e1f43a1f5bfed2aebf42"
last-modified: Mon, 25 Jan 2021 22:03:59 GMT
cdn-cachedat: 02/24/2022 14:58:46
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 864
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: fbe7e6fea753e22c4e1fd8ba1cf2b066
cdn-cache: HIT
cf-cache-status: HIT
age: 9715943
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7512cb60f85fb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65371)
Size:   20648
Md5:    1ef9ee9f9e9fa68ed6d6b98c394e5965
Sha1:   bca21d0e32a16400325e483aa22185ab342042ad
Sha256: 53b34e368dbcddcf5dac0256a745650383273c574f311ebb3f7b6401a59f8a9b
                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 345
ETag: "62A43476237949EC6C7AF1216DE4C44BDBABDC47253B84F119835262521E7160"
Last-Modified: Mon, 26 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 27 Sep 2022 14:15:57 GMT
Date: Tue, 27 Sep 2022 08:15:57 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 345
ETag: "62A43476237949EC6C7AF1216DE4C44BDBABDC47253B84F119835262521E7160"
Last-Modified: Mon, 26 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 27 Sep 2022 14:15:57 GMT
Date: Tue, 27 Sep 2022 08:15:57 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "7D7BC8C9EDE03E9E4A6ED362AAF949A63DEB0B25DFC58E13FA9B9EED8511AFA2"
Last-Modified: Mon, 26 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12583
Expires: Tue, 27 Sep 2022 11:45:40 GMT
Date: Tue, 27 Sep 2022 08:15:57 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "8CEF5EBB6AA5CAEA31AC1DB3FBA110A40BF89E6F352547C53D4D3F2FBA60F484"
Last-Modified: Sat, 24 Sep 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3259
Expires: Tue, 27 Sep 2022 09:10:17 GMT
Date: Tue, 27 Sep 2022 08:15:58 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4334
Expires: Tue, 27 Sep 2022 09:28:12 GMT
Date: Tue, 27 Sep 2022 08:15:58 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4334
Expires: Tue, 27 Sep 2022 09:28:12 GMT
Date: Tue, 27 Sep 2022 08:15:58 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4334
Expires: Tue, 27 Sep 2022 09:28:12 GMT
Date: Tue, 27 Sep 2022 08:15:58 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4334
Expires: Tue, 27 Sep 2022 09:28:12 GMT
Date: Tue, 27 Sep 2022 08:15:58 GMT
Connection: keep-alive

                                        
                                            GET /ed3dbbca1a675ac6215f3ab22cd1d7fa/invoke.js HTTP/1.1 
Host: hewawkward.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://georgewaters.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.243.61.227
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.22.0
Date: Tue, 27 Sep 2022 08:15:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ef9bf60be1033198c4ecb6345834522b
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  exported SGML document, ASCII text, with very long lines (26996), with no line terminators
Size:   9809
Md5:    d0a08f50195903ca8e50f48200967296
Sha1:   68bef95840e148c800973f2e88476b1399a9e167
Sha256: 0b13337cd8bd829481bfc4be52da9849c6e42a483ede31415dc3b623a6a39741

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4334
Expires: Tue, 27 Sep 2022 09:28:12 GMT
Date: Tue, 27 Sep 2022 08:15:58 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F658e1cdd-3e54-47dd-9724-ec65659721ea.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6390
x-amzn-requestid: b2681ff8-ab83-41e6-adef-3e6772c93c3f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGFJ6Gc_oAMF44g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63324f0c-3dbf9f4e2047567b5abdbe74;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 01:17:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8JXEBo_L_xKuKdeoOXEJ6FO7ZVsZVQzUmQFe7fYcxaHRQNEq1HWp6w==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:25:52 GMT
age: 24606
etag: "61676358cdbb2373bc644e66f8a84fbc8cc5daf6"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6390
Md5:    14218a43c5e5bbce546735a780c8ccce
Sha1:   61676358cdbb2373bc644e66f8a84fbc8cc5daf6
Sha256: 905b1c30a2273aef69904f2eb1451c756fc1fdba02e86ea5c957629dd056aeda
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63a7aeb3-999a-4e57-9255-c40e0376d08e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5319
x-amzn-requestid: d4c13fa8-eb03-4abf-9516-b74eac712b87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFkreHL5IAMFcOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b16-487923453bd27d6a744b5a31;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:35:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gGfaq_dx7NIHH43-iNn0Ah61HRLT8H3NxPGVoDvkKgBgy8zJWYwRuw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 21:49:18 GMT
age: 37600
etag: "75df3341e30281fcbf78c7074980356fdf0be8e2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5319
Md5:    46e31aa06b8e86a9a5f9ba1cc3feca08
Sha1:   75df3341e30281fcbf78c7074980356fdf0be8e2
Sha256: d1fd4f81b7e0f43de960f0ee024d9e87bcb395f032a4ab0360e3829d1ec8a42b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F334b6513-7266-4f03-aae2-328c1b58a30e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10864
x-amzn-requestid: a6be937a-3e8f-4dad-bbca-f28554f5ff21
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YioQqFHsoAMFxXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632420d0-78fecb9e2f76416044839a35;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 07:08:00 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: l-svEjPVAfeYvCQAHsARjTk9PNdkVGUJA_2415312kWF2x6MDI7o7A==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 13:17:07 GMT
age: 68331
etag: "2a2fabd9f9792daf9c058fc754d5616267b703f1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10864
Md5:    56c3768b851e6a5206cbfbe3f5a97cae
Sha1:   2a2fabd9f9792daf9c058fc754d5616267b703f1
Sha256: 668dba22a0c81c4580637806c293521b176512b18ebcc2fe951be2f27f43134d
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff092f2d0-abd6-40d2-ad33-9fb0ded1ec0a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11881
x-amzn-requestid: 4562e550-9c0f-407b-be2a-3c5d8901d444
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y2apSEPuIAMF5TA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632c0b08-5c5f052f146d25a7190412d1;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 07:13:12 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EAiLlHN2h6EPX0idrlQG4TIyGBMt_In0_Tpy79foal99j4xoRasO-A==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 22:23:49 GMT
age: 35529
etag: "3b660de9902fbfcf2efb477f40480b08545ebc5f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11881
Md5:    91d97447a6a35813e57d942f685544c4
Sha1:   3b660de9902fbfcf2efb477f40480b08545ebc5f
Sha256: 08c1ea19c4918273da12c9a2e962edf4463c486a30f60c8a279a45e5edcf972a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbde62996-d83a-4f97-a8ad-f7719aff0bff.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7701
x-amzn-requestid: 63bfd7b5-f18e-4396-99a8-fb24dee1ee0c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGCmmGswoAMF2zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63324af6-04fa1b18525182b7213f844c;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 00:59:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KT47E-2_0O70MgMbGzSjvVaFrWwQybXKo_dkWMw2vnqBElOZtT_Big==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 01:05:55 GMT
age: 25803
etag: "2f7876bd0e4b52aa04ccf1c2a45359156eaefb97"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7701
Md5:    9ff2dbdbf6d450f0d9774777b3c5aa6e
Sha1:   2f7876bd0e4b52aa04ccf1c2a45359156eaefb97
Sha256: 4c2184b8150834adf1e9ec807f3175b6fcd574920a98c857db2cfb01b78da2fe
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3823d156-2245-40a3-a9a3-7cb4a5c4a14d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7716
x-amzn-requestid: 1cf0b1c7-4611-40bf-b72a-412ebd03ef79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y2KguFL7IAMFzKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632bf137-2b7c15d3071e0266586fd17d;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 05:23:03 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5XZZKUgjmv2njI3xAPo57u0fBKEGqPmMUcWxHYzoSAaVjIIA2Oi0Aw==
via: 1.1 d042f60a962591f741406f28a8170c5a.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 22:03:16 GMT
age: 36762
etag: "2b53c4f836970501a682dae07235215c487d35cc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7716
Md5:    8ef8d9284ebd57a7cf76ceb762291356
Sha1:   2b53c4f836970501a682dae07235215c487d35cc
Sha256: 3529ab97ab2214ee9c67ee234beac96cd40f0bd6092b92b71c60956ed5710b41
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.88
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 27 Sep 2022 08:15:58 GMT
Last-Modified: Tue, 27 Sep 2022 07:12:27 GMT
Server: ECS (nyb/1D19)
X-Cache: Miss from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: UC5VVGLCKPW5BM8XwXQgLNtl4CAVm95hpk4leS3Kiei2U8RvcAe8Rg==
Age: 3811

                                        
                                            GET /stats HTTP/1.1 
Host: simplewebanalysis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://georgewaters.shop
Connection: keep-alive
Referer: https://georgewaters.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         3.66.118.16
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Tue, 27 Sep 2022 08:15:58 GMT
content-length: 40
server: fasthttp
access-control-allow-origin: https://georgewaters.shop
access-control-allow-credentials: true
set-cookie: uid_id2=472c8f53-eb0a-4445-a329-e9e6ead42e88:3:1; expires=Fri, 24 Sep 2032 08:15:58 GMT; secure; SameSite=None
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   40
Md5:    5a7a1e01f29e929a05d3c6b17103ad4a
Sha1:   3853f7575e0ffcee2249e12df39d7bc50d5a5390
Sha256: 5c25305bc33c0707faf23b04e348cd626a7a4b51f8571e7be52d4871167d531d
                                        
                                            GET /js/300/addthis_widget.js HTTP/1.1 
Host: s7.addthis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://georgewaters.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.200.123
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: "5f971164-5834c"
cache-control: public, max-age=600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 116360
date: Tue, 27 Sep 2022 08:15:59 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (54602)
Size:   116360
Md5:    b87cd33d44e99d7bb4fa59f97915a154
Sha1:   429b6461bab5189d6987d39713c3405223c461b8
Sha256: 9ad12a8b1ed82ccdfc74eebce578bd8f146b04ba08476f8a9a237e346f1772b2
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A2DB8009A62D30B6FA4ABCAA29E903A896C98A96C825FF0240A5712F50C4A060"
Last-Modified: Sun, 25 Sep 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2041
Expires: Tue, 27 Sep 2022 08:50:00 GMT
Date: Tue, 27 Sep 2022 08:15:59 GMT
Connection: keep-alive

                                        
                                            GET /books/content?id=sxmVCwAAQBAJ&printsec=frontcover&img=1&zoom=5&edge=curl&source=gbs_api HTTP/1.1 
Host: books.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

                                         
                                         142.250.74.174
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: private, max-age=86400
Accept-Ranges: bytes
Expires: Tue, 27 Sep 2022 08:15:59 GMT
Date: Tue, 27 Sep 2022 08:15:59 GMT
Content-Length: 17761
X-Content-Type-Options: nosniff
Server: Ocean Content Server
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 27x27, segment length 16, baseline, precision 8, 128x233, components 3\012- data
Size:   17761
Md5:    773ffce40a264a5c2ac141850c849a3b
Sha1:   c836a866e184108cb8cd8deb97a211a565b6a35b
Sha256: 2a6150f611183fa442ad4dab7acb414856656bdb1950e3b30b2c44a028e8d961
                                        
                                            GET /books/content?id=hJtIDwAAQBAJ&printsec=frontcover&img=1&zoom=5&edge=curl&source=gbs_api HTTP/1.1 
Host: books.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

                                         
                                         142.250.74.174
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: private, max-age=86400
Accept-Ranges: bytes
Expires: Tue, 27 Sep 2022 08:15:59 GMT
Date: Tue, 27 Sep 2022 08:15:59 GMT
Content-Length: 17295
X-Content-Type-Options: nosniff
Server: Ocean Content Server
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 27x27, segment length 16, baseline, precision 8, 128x195, components 3\012- data
Size:   17295
Md5:    550b46f690e350e28540d0f3d805df45
Sha1:   8a5e26fd33cfdcd9dfb16df6191efb1b779acb9b
Sha256: ca11e6c5b4b1ddca43ae7d2afc87d3974530c51e4625c52cd361d196694cd952
                                        
                                            GET /books/content?id=9e-YAAAAQBAJ&printsec=frontcover&img=1&zoom=5&edge=curl&source=gbs_api HTTP/1.1 
Host: books.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

                                         
                                         142.250.74.174
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: private, max-age=86400
Accept-Ranges: bytes
Expires: Tue, 27 Sep 2022 08:15:59 GMT
Date: Tue, 27 Sep 2022 08:15:59 GMT
Content-Length: 16369
X-Content-Type-Options: nosniff
Server: Ocean Content Server
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 24x24, segment length 16, baseline, precision 8, 128x206, components 3\012- data
Size:   16369
Md5:    137c6f535eb4d5e219aa9a29fb4ff44e
Sha1:   168960f0c1ff0736f56fb50af802702deabdaab8
Sha256: 385463ec9449d70c30c8bc5b429ed1b0612fecbb85d8c67e08de34618d3bce3d
                                        
                                            GET /watch.921046037849.js?key=ed3dbbca1a675ac6215f3ab22cd1d7fa&kw=%5B%22free%22%2C%22e-book%22%2C%22download%22%2C%22-%22%2C%22choose%22%2C%22among%22%2C%22free%22%2C%22ebooks%22%2C%22free%22%2C%22kindle%22%2C%22books%22%2C%22download%22%2C%22them%22%2C%22or%22%2C%22read%22%2C%22them%22%2C%22online%22%5D&refer=https%3A%2F%2Fgeorgewaters.shop%2F&tz=0&dev=r&res=12.31&uuid=472c8f53-eb0a-4445-a329-e9e6ead42e88%3A3%3A1 HTTP/1.1 
Host: invaderannihilationperky.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://georgewaters.shop
Connection: keep-alive
Referer: https://georgewaters.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         192.243.61.225
HTTP/1.1 307 Temporary Redirect
Content-Type: text/html
                                        
Server: nginx/1.22.0
Date: Tue, 27 Sep 2022 08:15:59 GMT
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://georgewaters.shop
Access-Control-Allow-Origin: https://georgewaters.shop
Access-Control-Allow-Credentials: true
Location: https://invaderannihilationperky.com/watch.921046037849.js?key=ed3dbbca1a675ac6215f3ab22cd1d7fa&kw=%5B%22free%22%2C%22e-book%22%2C%22download%22%2C%22-%22%2C%22choose%22%2C%22among%22%2C%22free%22%2C%22ebooks%22%2C%22free%22%2C%22kindle%22%2C%22books%22%2C%22download%22%2C%22them%22%2C%22or%22%2C%22read%22%2C%22them%22%2C%22online%22%5D&refer=https%3A%2F%2Fgeorgewaters.shop%2F&tz=0&dev=r&res=12.31&uuid=472c8f53-eb0a-4445-a329-e9e6ead42e88%3A3%3A1&shu=f99f6b203716e88d500b9d2dbb24e851edd7c036bb3834afba4b3888730883406981b2b377724e3e11e605dab56543715cc742e46294d89718d0044cdc4bb8cbf10629f81989d1d306800f8a3c5df726442b2a&pst=1664266619&rmtc=t
Set-Cookie: u_pl=16405778; expires=Wed, 28 Sep 2022 08:15:59 GMT; secure; SameSite=None ain=eyJhbGciOiJIUzI1NiJ9.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.l-sFGbgAq3zFZHskrBWMpKAMoJZq2vdvKSrcKQZq_Yw; expires=Tue, 27 Sep 2022 08:16:59 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a08dea3a0a37b40d26dc70e168e0f395
Strict-Transport-Security: max-age=0; includeSubdomains


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /books/content?id=IfYxDwAAQBAJ&printsec=frontcover&img=1&zoom=5&edge=curl&source=gbs_api HTTP/1.1 
Host: books.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

                                         
                                         142.250.74.174
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: private, max-age=86400
Accept-Ranges: bytes
Expires: Tue, 27 Sep 2022 08:15:59 GMT
Date: Tue, 27 Sep 2022 08:15:59 GMT
Content-Length: 13830
X-Content-Type-Options: nosniff
Server: Ocean Content Server
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 27x27, segment length 16, baseline, precision 8, 128x195, components 3\012- data
Size:   13830
Md5:    5ca942c92f3f02bae80669916129dd21
Sha1:   e1c3841c47563e1fa6e6676a9c11bcac9b1698ab
Sha256: 82fed006c26568e0e755900550bd794d3d6109bd5abccbbe90e03ff6f8153678
                                        
                                            GET /books/content?id=md5jAwAAQBAJ&printsec=frontcover&img=1&zoom=5&edge=curl&source=gbs_api HTTP/1.1 
Host: books.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

                                         
                                         142.250.74.174
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: private, max-age=86400
Accept-Ranges: bytes
Expires: Tue, 27 Sep 2022 08:15:59 GMT
Date: Tue, 27 Sep 2022 08:15:59 GMT
Content-Length: 13902
X-Content-Type-Options: nosniff
Server: Ocean Content Server
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 27x27, segment length 16, baseline, precision 8, 128x195, components 3\012- data
Size:   13902
Md5:    d74f852d7110f64cd5386d806bc19936
Sha1:   0188386d0677f276160958bf6359cfc7b483a815
Sha256: c7c833b3ecf488a2ebf3312ceab91ec056a84f132c87a5675a69122e8709423a
                                        
                                            GET /3c/7c/cb/3c7ccbcde902d1992d2782d62d899523.js HTTP/1.1 
Host: invaderannihilationperky.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://georgewaters.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.243.61.225
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.22.0
Date: Tue, 27 Sep 2022 08:15:59 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ad9d08a906fb10b3416b63c1613fa384
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Size:   28744
Md5:    46792d39cf0e563dc2e921d6a683133b
Sha1:   89520064201fafee23cb3c4ad64ade45f1d59e45
Sha256: adffe9956ae11ae6df34b84bab5cee0ad09266d5a3463d65793b2fbdc4d301ad

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /watch.921046037849.js?key=ed3dbbca1a675ac6215f3ab22cd1d7fa&kw=%5B%22free%22%2C%22e-book%22%2C%22download%22%2C%22-%22%2C%22choose%22%2C%22among%22%2C%22free%22%2C%22ebooks%22%2C%22free%22%2C%22kindle%22%2C%22books%22%2C%22download%22%2C%22them%22%2C%22or%22%2C%22read%22%2C%22them%22%2C%22online%22%5D&refer=https%3A%2F%2Fgeorgewaters.shop%2F&tz=0&dev=r&res=12.31&uuid=472c8f53-eb0a-4445-a329-e9e6ead42e88%3A3%3A1&shu=f99f6b203716e88d500b9d2dbb24e851edd7c036bb3834afba4b3888730883406981b2b377724e3e11e605dab56543715cc742e46294d89718d0044cdc4bb8cbf10629f81989d1d306800f8a3c5df726442b2a&pst=1664266619&rmtc=t HTTP/1.1 
Host: invaderannihilationperky.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://georgewaters.shop
Referer: https://georgewaters.shop/
Connection: keep-alive
Cookie: u_pl=16405778; ain=eyJhbGciOiJIUzI1NiJ9.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.l-sFGbgAq3zFZHskrBWMpKAMoJZq2vdvKSrcKQZq_Yw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         192.243.61.225
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.22.0
Date: Tue, 27 Sep 2022 08:15:59 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://georgewaters.shop
Access-Control-Allow-Origin: https://georgewaters.shop
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=472c8f53-eb0a-4445-a329-e9e6ead42e88:3:1; expires=Tue, 04 Oct 2022 08:15:59 GMT; secure; SameSite=None iprc8e0f1f6def7b95702a79705fad114cf4=3569807; expires=Tue, 27 Sep 2022 12:15:59 GMT; secure; SameSite=None pdhtkv=true; expires=Wed, 28 Sep 2022 08:15:59 GMT; secure; SameSite=None uncs=1; expires=Wed, 28 Sep 2022 08:15:59 GMT; secure; SameSite=None pdhtkv27=true; expires=Wed, 28 Sep 2022 08:15:59 GMT; secure; SameSite=None uncs27=1; expires=Wed, 28 Sep 2022 08:15:59 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ef95e96f2c350eb2c09ab768bb1e8ca9
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (2644)
Size:   2097
Md5:    b8e80e8feb80e6192f07937b360d02ad
Sha1:   cd747c9ade07e512d198ff37d81a88aa30b30d5a
Sha256: 19cda8cdb2dca0e803fffddfd5e8c425aa1c986b776f9adb4a7848606320e6fb

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /books/content?id=YQO9ZaizNKYC&printsec=frontcover&img=1&zoom=5&edge=curl&source=gbs_api HTTP/1.1 
Host: books.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

                                         
                                         142.250.74.174
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: private, max-age=86400
Accept-Ranges: bytes
Expires: Tue, 27 Sep 2022 08:15:59 GMT
Date: Tue, 27 Sep 2022 08:15:59 GMT
Content-Length: 20697
X-Content-Type-Options: nosniff
Server: Ocean Content Server
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 17x17, segment length 16, baseline, precision 8, 128x234, components 3\012- data
Size:   20697
Md5:    3043f8ca20f18fecc7e14e5585c5700f
Sha1:   30cebd0364f3717b7a372b6c895530655b47fd5e
Sha256: 776e8d0421cf732143f0d352b137fef42b8a9c1e10535809e18e66619e18a178
                                        
                                            GET /addthismoatframe568911941483/moatframe.js HTTP/1.1 
Host: z.moatads.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://georgewaters.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.201.146
HTTP/2 200 OK
content-type: application/x-javascript
                                        
x-amz-id-2: e0HboiVQpjIDEK8WTxqU5+8G8wOtu9bNCFY72alTHLP0/Yb+qoiTOxu6fad89ebRofzHxENxOOg=
x-amz-request-id: 61EC92F13BB22DD4
last-modified: Fri, 08 Nov 2019 20:13:52 GMT
etag: "f14b4e1f799b14f798a195f43cf58376"
content-encoding: gzip
accept-ranges: bytes
content-length: 948
server: AmazonS3
vary: Accept-Encoding
cache-control: max-age=17707
date: Tue, 27 Sep 2022 08:15:59 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (523)
Size:   948
Md5:    f14b4e1f799b14f798a195f43cf58376
Sha1:   b6fd3b3d407fb4c0a00fb8a31862235e2a6e0a86
Sha256: 92ed3e9fda5fa4d738ff4d9023846b56633617363dda6a750cacb4fba53241ac
                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 346
ETag: "6389A79FA621D32138DAB9C0FAB190C515288EF534B023CC909A156979FCEF39"
Last-Modified: Mon, 26 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6771
Expires: Tue, 27 Sep 2022 10:08:50 GMT
Date: Tue, 27 Sep 2022 08:15:59 GMT
Connection: keep-alive

                                        
                                            GET /books/content?id=A0NIt94D24UC&printsec=frontcover&img=1&zoom=5&edge=curl&source=gbs_api HTTP/1.1 
Host: books.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

                                         
                                         142.250.74.174
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: private, max-age=86400
Accept-Ranges: bytes
Expires: Tue, 27 Sep 2022 08:15:59 GMT
Date: Tue, 27 Sep 2022 08:15:59 GMT
Content-Length: 9153
X-Content-Type-Options: nosniff
Server: Ocean Content Server
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 77x77, segment length 16, baseline, precision 8, 128x190, components 3\012- data
Size:   9153
Md5:    fcb3288c1d3dd2c69fb277e88f46c8c5
Sha1:   84152d4806cdb0473bcbd8b6849c9bd55d4dcd79
Sha256: dfc7cb6e5f962ee7fe1108e9fbb14b07c1e914a1ca3d8b05f808e7c9fb75b157
                                        
                                            GET /books/content?id=W09cOXKTj-cC&printsec=frontcover&img=1&zoom=5&edge=curl&source=gbs_api HTTP/1.1 
Host: books.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

                                         
                                         142.250.74.174
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: private, max-age=86400
Accept-Ranges: bytes
Expires: Tue, 27 Sep 2022 08:15:59 GMT
Date: Tue, 27 Sep 2022 08:15:59 GMT
Content-Length: 13644
X-Content-Type-Options: nosniff
Server: Ocean Content Server
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 27x27, segment length 16, baseline, precision 8, 128x195, components 3\012- data
Size:   13644
Md5:    ad14cd4d0e1027f4756cd065b1a200f5
Sha1:   9b9405e810c2dd0308bc38e854e76cbb4cc2b037
Sha256: 2d5a2e78e4bad835e7e03e8ad2f41f911e36445c76776862d710af1313ce7d54
                                        
                                            GET /books/content?id=9mdZ8C3GLHYC&printsec=frontcover&img=1&zoom=5&edge=curl&source=gbs_api HTTP/1.1 
Host: books.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

                                         
                                         142.250.74.174
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: private, max-age=86400
Accept-Ranges: bytes
Expires: Tue, 27 Sep 2022 08:15:59 GMT
Date: Tue, 27 Sep 2022 08:15:59 GMT
Content-Length: 20066
X-Content-Type-Options: nosniff
Server: Ocean Content Server
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 23x23, segment length 16, baseline, precision 8, 128x206, components 3\012- data
Size:   20066
Md5:    eb69f7af5f00576f7b9c93099bca0dc2
Sha1:   b9eb47eec00feb9eb1ad78420c19f2a4b0a56e44
Sha256: acfa7d4391c3acdbe6ab61f1912c62555e5f4b969601837967f2b45a5e69c1f1
                                        
                                            GET /books/content?id=7MtehxyHMVkC&printsec=frontcover&img=1&zoom=5&edge=curl&source=gbs_api HTTP/1.1 
Host: books.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

                                         
                                         142.250.74.174
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: private, max-age=86400
Accept-Ranges: bytes
Expires: Tue, 27 Sep 2022 08:15:59 GMT
Date: Tue, 27 Sep 2022 08:15:59 GMT
Content-Length: 13190
X-Content-Type-Options: nosniff
Server: Ocean Content Server
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 27x27, segment length 16, baseline, precision 8, 128x195, components 3\012- data
Size:   13190
Md5:    5d3f00756f550b0c2393deaa1e413e8c
Sha1:   fb70b021de80f0681a45cfc98b2b43d492d03b85
Sha256: 8b6cd80c93b3251b88482d4aef01921dffc11e29fa7257fe41f523f8a874df9c
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "2501F62B10B278C0E95705040A281C9DD8DF9EE336C30995C85F5329FD8BE7C0"
Last-Modified: Mon, 26 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2124
Expires: Tue, 27 Sep 2022 08:51:23 GMT
Date: Tue, 27 Sep 2022 08:15:59 GMT
Connection: keep-alive

                                        
                                            GET /cti/56/ef/55/56ef55f6ef3bc03e69b8d66da27f0cd1/1658920055.png HTTP/1.1 
Host: cdn.cloudimagesb.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         45.133.44.9
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 27 Sep 2022 08:15:59 GMT
content-length: 67174
server: nginx/1.17.6
last-modified: Wed, 27 Jul 2022 11:07:43 GMT
etag: "62e11c7f-10666"
expires: Thu, 29 Sep 2022 08:15:59 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 468 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size:   67174
Md5:    a98b4585db1c6db06d6857c73bb75fcb
Sha1:   02a896b08a79e873b2dd26200ee1f0665dc1c80a
Sha256: fc08e863ffafe25aa63fe8b60c2d5135fc5f52caf0abae4da3f1a90e0f8ed96c
                                        
                                            POST / HTTP/1.1 
Host: e1.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 346
ETag: "6389A79FA621D32138DAB9C0FAB190C515288EF534B023CC909A156979FCEF39"
Last-Modified: Mon, 26 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6771
Expires: Tue, 27 Sep 2022 10:08:50 GMT
Date: Tue, 27 Sep 2022 08:15:59 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "9DF839AB826B15464F753175DC7105A9F25D5F067E7CF9C0F22720D5D30E300A"
Last-Modified: Tue, 27 Sep 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15485
Expires: Tue, 27 Sep 2022 12:34:04 GMT
Date: Tue, 27 Sep 2022 08:15:59 GMT
Connection: keep-alive

                                        
                                            GET /pixel/purst?dl=0&th=0&sc=0&rs=3328&rd=3328&fd=820&bv=22.8.v.2&tmpl=136 HTTP/1.1 
Host: kazanwhoeveryowl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://georgewaters.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         173.233.137.44
HTTP/1.1 200 OK
                                        
Server: nginx/1.19.5
Date: Tue, 27 Sep 2022 08:16:00 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1 
Host: s7.addthis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://georgewaters.shop/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.123
HTTP/2 200 OK
content-type: text/html
                                        
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Tue, 27 Sep 2022 08:16:00 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Size:   26421
Md5:    707317ccaabe08d32d1bd781754e6871
Sha1:   bb82dcd3e044c960e0861c2ce878f5504e628f78
Sha256: d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051
                                        
                                            GET /live/red_lojson/300lo.json?si=6332b13d2d65064c&bkl=0&bl=1&pdt=1432&sid=6332b13d2d65064c&pub=ra-5243766a0c4cc5a8&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=georgewaters.shop&fp=&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1664266557996&jsl=0&uvs=6332b13d409f4be7000&skipb=1&callback=addthis.cbs.jsonp__59652648379741470 HTTP/1.1 
Host: m.addthis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://georgewaters.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.123
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 89
cache-control: max-age=0, no-cache, no-store, no-transform
pragma: no-cache
content-disposition: attachment; filename=1.txt
date: Tue, 27 Sep 2022 08:16:00 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   89
Md5:    af1a4a83997a9d88a52d6157d6e3038d
Sha1:   717b18e1cf84225e27e1b131fe4218a52813d274
Sha256: 292d5f4ec19c514a54a2aff50c0c4c90fb97a4224f3242801bb4f97d40049f93
                                        
                                            GET /live/boost/ra-5243766a0c4cc5a8/_ate.track.config_resp HTTP/1.1 
Host: v1.addthisedge.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://georgewaters.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.123
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
                                        
content-length: 930
etag: 321257075--gzip
content-disposition: attachment; filename=1.txt
content-encoding: gzip
cache-control: public, max-age=60, s-maxage=86400
date: Tue, 27 Sep 2022 08:16:00 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4210), with no line terminators
Size:   930
Md5:    7929bc664ecee08e1d6493f3a0475bc1
Sha1:   c074626328039f0f69b6097d4b3280ab2a4229d7
Sha256: dfde078247aaf8e7369435bee20d1f12c59ffe20ad84ce42e0659d969453e8c4
                                        
                                            GET /sfp.js HTTP/1.1 
Host: addresseepaper.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://georgewaters.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.64.100.4
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Tue, 27 Sep 2022 08:15:59 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 9de7ae26c8d92521f1db87bd8dfdbad1
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 27 Sep 2022 08:15:59 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZiqJCz4ia5yY3EjdFdvIm5ybGb69mB6oreOxvRMlhUbQHSEDBlb3Y950ZwGbpZ5p4VaRZVtxpWTnGxlGhkRcj9ywz2CogP677Z0erPm4GvezBRBb%2BlkOcQeGIphZcwnv9j5UIdQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7512cb6cce84e638-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size:   27622
Md5:    2ba9ba04f2619196427c1443ce2c99a3
Sha1:   563ef61ec8d0c681eacbcdb31c4a9de66378244d
Sha256: 0f12e70617010298b2486948fa4e6a792a6d1559520a1427d7da9c5a5e3ab4ea
                                        
                                            GET /static/layers.fa6cd1947ce26e890d3d.js HTTP/1.1 
Host: s7.addthis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://georgewaters.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.123
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-41cf5"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 77672
date: Tue, 27 Sep 2022 08:16:00 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Size:   77672
Md5:    9a77dff666eebb6cf4bbc4c67c7b563b
Sha1:   9e98d7824a7b4e34665c2690d6f52caddad1fe4b
Sha256: 6cdf8e597f3cbe759531153fd926d51aeaebd836a1c9bc1436e079645bfd3ad7
                                        
                                            GET /pxf.gif?uuid=472c8f53-eb0a-4445-a329-e9e6ead42e88&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=14.31&b_frame=0&pk=3c7ccbcde902d1992d2782d62d899523&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=8 HTTP/1.1 
Host: unseenreport.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://georgewaters.shop/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.243.59.13
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.17.6
Date: Tue, 27 Sep 2022 08:16:00 GMT
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: dce38722b9e5d200923e13a69cc3da17
Strict-Transport-Security: max-age=0; includeSubdomains


--- Additional Info ---
Magic:  very short file (no magic)
Size:   1
Md5:    93b885adfe0da089cdf634904fd59f71
Sha1:   5ba93c9db0cff93f52b521d7420e43f6eda2784f
Sha256: 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /url/shares.json?url=https%3A%2F%2Fgeorgewaters.shop%2F&callback=_ate.cbs.rcb_kzmy0 HTTP/1.1 
Host: api-public.addthis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://georgewaters.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.123
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx/1.15.8
cache-control: no-transform, must-revalidate, max-age=0, s-maxage=3600
surrogate-key: georgewaters.shop/
last-modified: Tue, 27 Sep 2022 08:16:00 GMT
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 53
date: Tue, 27 Sep 2022 08:16:00 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   53
Md5:    2417d366fc066c7803d4ae106140e88f
Sha1:   7c042974534206dfeb1a37649ca273d8231faea0
Sha256: 59a9538fe4bc035a30312bbd83c2e68c22fe268c1cf58f34004d3741ca8de9d2
                                        
                                            GET /url/shares.json?url=http%3A%2F%2Fgeorgewaters.shop%2F&callback=_ate.cbs.rcb_dyds0 HTTP/1.1 
Host: api-public.addthis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://georgewaters.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.123
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx/1.15.8
cache-control: no-transform, must-revalidate, max-age=0, s-maxage=3600
surrogate-key: georgewaters.shop/
last-modified: Tue, 27 Sep 2022 08:16:00 GMT
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 53
date: Tue, 27 Sep 2022 08:16:00 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   53
Md5:    803ebcfe4e9737149f893770eda64b2f
Sha1:   a8e0b59b0f2c95e40c5ab90843374a5e2f133a43
Sha256: 44a9502b50fd411f84964626b68553cb5a378247cbf6107e154bd69f0af766a0
                                        
                                            POST /url/serviceapi/shares-post.json?services=sFbt&url=https%3A%2F%2Fgeorgewaters.shop%2F HTTP/1.1 
Host: api-public.addthis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Origin: https://georgewaters.shop
Connection: keep-alive
Referer: https://georgewaters.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

                                         
                                         23.38.200.123
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx/1.15.8
content-length: 2
cache-control: no-transform, max-age=0, s-maxage=14400
surrogate-key: sFbt=https://georgewaters.shop/
last-modified: Tue, 27 Sep 2022 08:00:00 GMT
access-control-allow-origin: https://georgewaters.shop
access-control-allow-credentials: true
strict-transport-security: max-age=15724800; includeSubDomains
date: Tue, 27 Sep 2022 08:16:01 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   2
Md5:    99914b932bd37a50b983c5e7c90ae93b
Sha1:   bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
Sha256: 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
                                        
                                            GET / HTTP/1.1 
Host: georgewaters.shop
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         104.21.26.26
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Tue, 27 Sep 2022 08:15:57 GMT
link: <http://georgewaters.shop/wp-json/>; rel="https://api.w.org/"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gWiTOtpm8Qde2Jfm%2FtRdecmNCakRyCykPsQ3%2FXO65LaC6Yy9A2sYHttTbDeEFeNl0Qj2e3Nvie9jn5GJHhZNWsbjVuUpRNygpSaqYX8PMzIcI1e8LiwI11pZDg2mYwjX1GdsVw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7512cb5aedb11c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /style.css HTTP/1.1 
Host: cpa-ebook-assets.site
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://georgewaters.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.148.67
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
                                        
date: Tue, 27 Sep 2022 08:15:57 GMT
cache-control: public, max-age=14400, must-revalidate
cf-bgj: minify
cf-polished: origSize=1784
etag: W/"eeed06b230384483968a2efef31c09fa-ssl-df"
vary: Accept-Encoding
x-nf-request-id: 01GBA8BEQ0HJ9E2PND22SBAYCT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=57HGFHpz2dNTZazOQxXT6mAQUmf12z6ikd4bOpFymFOqZcbejcNmleRb%2FJ3TKgcWFRKzKPsG4cD9GXTOuX2oiI%2BuwEMsl6bi%2F9cMe9IeEc%2BATVRC5yPpV254dRUO8x4fbl0wurrkZsU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7512cb620d92b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /js/pub.min.js?application=georgewaters.shop HTTP/1.1 
Host: register.yars10.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://georgewaters.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         178.63.30.218
HTTP/2 404 Not Found
content-type: text/javascript; charset=UTF-8
                                        
cache-control: no-cache, private
date: Tue, 27 Sep 2022 08:15:58 GMT
vary: Accept-Encoding, Origin
set-cookie: api_push_dog_session=eyJpdiI6IjM5ejFIaENnNXlpaE5BaFpQUThFK3c9PSIsInZhbHVlIjoiWEhEbDV3RUxhb0krRTZnbmpHbjhETnZRMUZNQXdkTVh3Y0IwYVhvNWdkZlBJcFRPTzY3SEh2bXlNb3hnTFg5RzFXRVYzalR1ZHlJV0REeXlTUGtWOVI5OEZ1Rml0NHFLaWJ5MVRLNFdRcitlOEZ1bWJBMGVGNnR0V1NhQk96RnciLCJtYWMiOiI5YTA1YjExMGQwNzUyNjY1Mjc1M2M3YjNhN2Q4ODY5N2YxNmRkM2Y1NjYwODhhNDI1ODhlZjE0NGNlMjJlMDU3IiwidGFnIjoiIn0%3D; expires=Tue, 27-Sep-2022 10:15:58 GMT; Max-Age=7200; path=/; domain=push.dog; secure; httponly; samesite=lax OoLByNnLTkXkELrnIBF0cRjKUx6Ginjf91z7dS2q=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%3D; expires=Tue, 27-Sep-2022 10:15:58 GMT; Max-Age=7200; path=/; domain=push.dog; secure; httponly; samesite=lax DSALB=595921988003458c; path=/
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---