r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8286265a56e3e10efd41b41618a54071
5f10ac9a050e15f5598674dc7ee3865b325d01a8
2da2fa0b2b86ccc4029d0baa4e9c5b21a6433228b84b451b72b1d318561d4ef2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2DA2FA0B2B86CCC4029D0BAA4E9C5B21A6433228B84B451B72B1D318561D4EF2"
Last-Modified: Sat, 05 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9185
Expires: Sat, 05 Nov 2022 21:54:11 GMT
Date: Sat, 05 Nov 2022 19:21:06 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 72c64df35304c35cd95e4ed6e101e795
a39287987854d644a8da295da536fb31de8b44c1
a9bf0da57e0f108b376781ede4b9762ae1b0d088910d26fb7be98c2d03e69092
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2619
Cache-Control: max-age=140016
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 19:21:07 GMT
Etag: "63662d58-1d7"
Expires: Mon, 07 Nov 2022 10:14:43 GMT
Last-Modified: Sat, 05 Nov 2022 09:31:04 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
www.under-the-dirt.com/
199.34.228.44301 Moved Permanently 370 B IP 199.34.228.44:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b673cf2b45f880fbe61cb9031b56be22
aae425ed38d67a7e58f860e5ca2176205e80b900
7d16b42fd3f41ce5091289f038ee20f7788b7241fc240915b87021ce25841d85
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: www.under-the-dirt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 05 Nov 2022 19:21:07 GMT
Server: Apache
Set-Cookie: is_mobile=0; path=/; domain=www.under-the-dirt.com
Vary: X-W-SSL,User-Agent
Location: https://www.under-the-dirt.com/
X-Host: blu145.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 370
Keep-Alive: timeout=10, max=52
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9f3527f898221f8ba6b5015f6decc100
ead93baa0e9d3a6297be3377dc3a624e5a3f509a
73a068f907cc50dd60af18d545b4264dd44bc4b9f40bf9adfceea157fdc33099
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "73A068F907CC50DD60AF18D545B4264DD44BC4B9F40BF9ADFCEEA157FDC33099"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8896
Expires: Sat, 05 Nov 2022 21:49:23 GMT
Date: Sat, 05 Nov 2022 19:21:07 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: L/IogWKxBq0YIhgCA1CGB7vU7PyLjLPfA9c7IckfWKeEPD0nNIW93L1/Cdy4wgMQ1i10QnKngTs=
x-amz-request-id: MKGSPR3SGV250E22
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 05 Nov 2022 19:10:09 GMT
age: 658
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 19:21:07 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1fae9a594cd8ca4bdd9ef768e5599dc2
6d3a7d4ded4dd00f74c923b25fd42d1abb4a8613
a4c700348bc8494369d5f99294a21db7246c3de7920619bbfbd718a3f51126ea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A4C700348BC8494369D5F99294A21DB7246C3DE7920619BBFBD718A3F51126EA"
Last-Modified: Fri, 04 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21512
Expires: Sun, 06 Nov 2022 01:19:39 GMT
Date: Sat, 05 Nov 2022 19:21:07 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash db63d54b77502dd6c7bdc792d4fd093e
026ad8186833988279468829c004c6e2a2f2626f
eff89ef67baa622e8a196ffcadc44d29aafff009bb531da3e979a1f47c3b1c36
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 374
Cache-Control: max-age=132714
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 19:21:07 GMT
Etag: "63661997-1d7"
Expires: Mon, 07 Nov 2022 08:13:01 GMT
Last-Modified: Sat, 05 Nov 2022 08:06:47 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
www.under-the-dirt.com/
199.34.228.44200 OK 6.4 kB IP 199.34.228.44:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1350), with CRLF, LF line terminators
Hash debc834b659ea981a8fc30a10b0926cf
bbbc18a91ede5b18f59a4fe5c840130c7395f86a
205e96b0207e7e42748c2b74be477a9834dbdd02724d520933a328b486c838f0
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: www.under-the-dirt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 19:21:07 GMT
Server: Apache
Vary: X-W-SSL,Accept-Encoding,User-Agent
Set-Cookie: is_mobile=0; path=/; domain=www.under-the-dirt.com
language=en; expires=Sat, 19-Nov-2022 19:21:07 GMT; Max-Age=1209600; path=/
Cache-Control: private
ETag: W/"0ce15c5ae3d0c547e2e2f16dd6673ef3-gzip"
Content-Encoding: gzip
X-Host: grn141.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 6440
Keep-Alive: timeout=10, max=66
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1667503124
151.101.85.46200 OK 1.4 kB URL HTTP/2 cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1667503124
IP 151.101.85.46:0
File type ASCII text, with very long lines (3600), with no line terminators
Hash 121a5b9688d8e70ee7bb06cc79491f76
3a28220baa7d8879270c8311bed7dddefa7e43e9
181716c84474c9eb6685a809d69dda5d49ce44dfbf64c5dee89a3091e23def40
GET /js/site/footerSignup.js?buildTime=1667503124 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.under-the-dirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 18:50:30 GMT
etag: "63640d76-e10"
expires: Thu, 17 Nov 2022 19:21:36 GMT
cache-control: max-age=1209600
x-host: blu148.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 05 Nov 2022 19:21:08 GMT
age: 172771
x-served-by: cache-sjc10034-SJC, cache-bma1659-BMA
x-cache: HIT, HIT
x-cache-hits: 23, 552
x-timer: S1667676068.071710,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1372
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/sites.css?buildTime=1664820280
151.101.85.46200 OK 30 kB URL HTTP/2 cdn2.editmysite.com/css/sites.css?buildTime=1664820280
IP 151.101.85.46:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash d10158b22b553f723d99dc78eaee6390
80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6
939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e
GET /css/sites.css?buildTime=1664820280 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.under-the-dirt.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Fri, 28 Oct 2022 22:29:06 GMT
etag: W/"635c57b2-347ac"
expires: Mon, 14 Nov 2022 18:07:53 GMT
cache-control: max-age=1209600
x-host: blu99.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 05 Nov 2022 19:21:08 GMT
age: 436394
x-served-by: cache-sjc10052-SJC, cache-bma1659-BMA
x-cache: HIT, HIT
x-cache-hits: 67, 1
x-timer: S1667676068.071307,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 29746
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.163.147.190101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.163.147.190:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 1kqssApb6lqiUIvn/7Zc8w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Kaokc0cKSx8ER+ITH+ilbhgI0nk=
cdn2.editmysite.com/images/site/footer/footer-toast-published-image-1.png
151.101.85.46200 OK 9.7 kB URL HTTP/2 cdn2.editmysite.com/images/site/footer/footer-toast-published-image-1.png
IP 151.101.85.46:0
File type PNG image data, 199 x 97, 8-bit colormap, non-interlaced\012- data
Hash 6e0f7ad31bf187e0d88fc5787573ba71
14e8b85cc32a01c8901e4ac0160582d29a45e9e6
580ef6409e067a4ec4a427400c7d6216184869e2da53343df20753cc1f8a46cd
GET /images/site/footer/footer-toast-published-image-1.png HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.under-the-dirt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdujQNpHaXULXK5hWOudOsrFbrCOJBmkXkf6lNHnzHxB1q3PphW4yFVZQbxms7rfGEwEu0IdDaAyLbpAPqDN6NvCrqCgiKDD
cache-control: public, max-age=86400, s-maxage=259200
expires: Thu, 06 Oct 2022 22:59:09 GMT
last-modified: Tue, 12 Feb 2019 18:19:08 GMT
etag: "6e0f7ad31bf187e0d88fc5787573ba71"
x-goog-generation: 1549995548326466
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 9677
content-type: image/png
x-goog-hash: crc32c=QhrKCw==, md5=bg960xvxh+DYj8V4dXO6cQ==
x-goog-storage-class: STANDARD
server: UploadServer
accept-ranges: bytes
date: Sat, 05 Nov 2022 19:21:08 GMT
via: 1.1 varnish
age: 246034
x-served-by: cache-bma1659-BMA
x-cache: HIT
x-cache-hits: 1192
x-timer: S1667676068.071895,VS0,VE0
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 9677
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1664820280&
151.101.85.46200 OK 33 kB URL HTTP/2 cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1664820280&
IP 151.101.85.46:0
File type ASCII text, with very long lines (65024)
Hash 47ecd46fdd9dc84622ce1294541d92ef
7aeda09a697e41f88f4cbad0843d94bb3fdb7a50
ec251328b1cb905ffb368b273ab84ca8cf4f451218ed3412024ab56b48d0fbd0
GET /js/lang/en/stl.js?buildTime=1664820280& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.under-the-dirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Fri, 28 Oct 2022 22:27:53 GMT
etag: "635c5769-2c1b7"
expires: Mon, 14 Nov 2022 18:07:52 GMT
cache-control: max-age=1209600
x-host: grn102.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 05 Nov 2022 19:21:08 GMT
age: 436396
x-served-by: cache-sjc10030-SJC, cache-bma1659-BMA
x-cache: HIT, HIT
x-cache-hits: 341, 1
x-timer: S1667676068.071274,VS0,VE2
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 32708
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash a2f6c296003d839bdee766ef4082e376
013ae64b10cb1355ae9b6ba38dcfa79f71a9b505
703d6582ab3344d6e4a0d5b7e0c9983b8f7e8179d73dd6584c37bbccc8c84308
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 19:21:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn2.editmysite.com/fonts/Montserrat/font.css?2
151.101.85.46200 OK 276 B URL HTTP/2 cdn2.editmysite.com/fonts/Montserrat/font.css?2
IP 151.101.85.46:0
Hash 559eefb63fcae2a3f85471dd3903016a
5e4a9f5b529f2f6d2ee1de511231f856e673066c
09110f0d179c52677e2caf24d4bad70e5d717acb2eff2887ac36dbc1d9583fae
GET /fonts/Montserrat/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.under-the-dirt.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Wed, 02 Nov 2022 21:12:12 GMT
etag: "6362dd2c-354"
expires: Thu, 17 Nov 2022 18:07:57 GMT
cache-control: max-age=1209600
x-host: blu92.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 05 Nov 2022 19:21:08 GMT
age: 177190
x-served-by: cache-sjc10070-SJC, cache-bma1659-BMA
x-cache: HIT, HIT
x-cache-hits: 43, 563
x-timer: S1667676068.081551,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 276
X-Firefox-Spdy: h2
cdn2.editmysite.com/fonts/Playfair_Display/font.css?2
151.101.85.46200 OK 332 B URL HTTP/2 cdn2.editmysite.com/fonts/Playfair_Display/font.css?2
IP 151.101.85.46:0
Hash d19ce27855300b97a4501c36fb6e1e0a
e7fd66d174d796dbe52e4fb2f22db19b575e5702
f75c76daf4f88f3977cd0f6cff4ad2897497d71349cbf3c8e1e610d4bbcdab0d
GET /fonts/Playfair_Display/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.under-the-dirt.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Wed, 02 Nov 2022 21:12:12 GMT
etag: "6362dd2c-6da"
expires: Thu, 17 Nov 2022 18:07:15 GMT
cache-control: max-age=1209600
x-host: blu81.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 05 Nov 2022 19:21:08 GMT
age: 177232
x-served-by: cache-sjc10078-SJC, cache-bma1659-BMA
x-cache: HIT, HIT
x-cache-hits: 48, 15
x-timer: S1667676068.082456,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 332
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/old/fancybox.css?1664820280
151.101.85.46200 OK 1.2 kB URL HTTP/2 cdn2.editmysite.com/css/old/fancybox.css?1664820280
IP 151.101.85.46:0
File type ASCII text, with very long lines (3910)
Hash b644e92258f4c7c0b4270047652d1e60
93734d52ee9e86a768159e514076051813c39cd9
29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907
GET /css/old/fancybox.css?1664820280 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.under-the-dirt.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Wed, 02 Nov 2022 00:21:51 GMT
etag: "6361b81f-f47"
expires: Wed, 16 Nov 2022 10:49:28 GMT
cache-control: max-age=1209600
x-host: blu21.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 05 Nov 2022 19:21:08 GMT
age: 289899
x-served-by: cache-sjc10051-SJC, cache-bma1659-BMA
x-cache: HIT, HIT
x-cache-hits: 1120, 1
x-timer: S1667676068.081405,VS0,VE4
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1218
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/social-icons.css?buildtime=1664820280
151.101.85.46200 OK 1.6 kB URL HTTP/2 cdn2.editmysite.com/css/social-icons.css?buildtime=1664820280
IP 151.101.85.46:0
File type ASCII text, with very long lines (13080)
Hash 9aaf5d5f36f8ae30cc5d4dfb45e828f3
401314e96935ec93ee0d282e756a2783bd974570
ed52d379ed5d2b568376214591db2d346ebd3273e02cd352d0c0cd979070d9f9
GET /css/social-icons.css?buildtime=1664820280 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.under-the-dirt.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 24 Oct 2022 20:06:42 GMT
etag: W/"6356f052-3319"
expires: Tue, 08 Nov 2022 12:01:15 GMT
cache-control: max-age=1209600
x-host: grn39.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 05 Nov 2022 19:21:08 GMT
age: 976793
x-served-by: cache-sjc10074-SJC, cache-bma1659-BMA
x-cache: HIT, HIT
x-cache-hits: 376, 1
x-timer: S1667676068.082257,VS0,VE4
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1639
X-Firefox-Spdy: h2
cdn2.editmysite.com/fonts/Quicksand/font.css?2
151.101.85.46200 OK 303 B URL HTTP/2 cdn2.editmysite.com/fonts/Quicksand/font.css?2
IP 151.101.85.46:0
Hash 27bf6b61552b879d89c6ece458ea2511
159b5de4199da247b750552ec89837e1acb20ab3
9f207b2610df88c978afdc86a201a95fef6eecf92dbfc6ca4f59c3556e11a186
GET /fonts/Quicksand/font.css?2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.under-the-dirt.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 24 Oct 2022 20:02:15 GMT
etag: "6356ef47-4f9"
expires: Tue, 08 Nov 2022 07:45:34 GMT
cache-control: max-age=1209600
x-host: grn91.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 05 Nov 2022 19:21:08 GMT
age: 992134
x-served-by: cache-sjc10054-SJC, cache-bma1659-BMA
x-cache: HIT, HIT
x-cache-hits: 5650, 1
x-timer: S1667676068.085483,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 303
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/main.js?buildTime=1664820280
151.101.85.46200 OK 146 kB URL HTTP/2 cdn2.editmysite.com/js/site/main.js?buildTime=1664820280
IP 151.101.85.46:0
File type ASCII text, with very long lines (32147)
Size 146 kB (146400 bytes)
Hash 81b8673c5d3aa3ab8c0574f2a8f0e3b4
2e0661bc7907d9e2703b3347c3fec579f0aef5d6
0e981f4de6287406ce261fddea24aa05ded4b6a8c4c07283c363c1502071cf40
GET /js/site/main.js?buildTime=1664820280 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.under-the-dirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Fri, 28 Oct 2022 22:29:29 GMT
etag: "635c57c9-74804"
expires: Tue, 15 Nov 2022 08:37:22 GMT
cache-control: max-age=1209600
x-host: blu44.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 05 Nov 2022 19:21:08 GMT
age: 384225
x-served-by: cache-sjc10028-SJC, cache-bma1659-BMA
x-cache: HIT, HIT
x-cache-hits: 2597, 1
x-timer: S1667676068.071431,VS0,VE2
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 146400
X-Firefox-Spdy: h2
www.under-the-dirt.com/files/main_style.css?1664848381
199.34.228.44200 OK 7.4 kB URL HTTP/1.1 www.under-the-dirt.com/files/main_style.css?1664848381
IP 199.34.228.44:0
File type ASCII text, with very long lines (1061)
Hash 08b8f8ddfb52c4f00f30c1ada4e72650
ed13493a3ab769cd7a5ada641dae9f15e3b6dfc2
689f86237a64b20cd6dfe40a57097de50f3a38fe1456bd5f8eeb19079c18c232
Analyzer Verdict Alert quad9 Sinkholed
GET /files/main_style.css?1664848381 HTTP/1.1
Host: www.under-the-dirt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.under-the-dirt.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 05 Nov 2022 19:21:08 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: grn32.sf2p.intern.weebly.net
Content-Encoding: gzip
ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
142.250.74.138200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
IP 142.250.74.138:0
File type ASCII text, with very long lines (65483)
Hash a54a444f20643b131117dc2112cca05f
074964746b12ff1d30f7656310d6154ae1cc98b5
aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830
GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.under-the-dirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 01 Nov 2022 00:57:42 GMT
expires: Wed, 01 Nov 2023 00:57:42 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 411806
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash a2f6c296003d839bdee766ef4082e376
013ae64b10cb1355ae9b6ba38dcfa79f71a9b505
703d6582ab3344d6e4a0d5b7e0c9983b8f7e8179d73dd6584c37bbccc8c84308
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 19:21:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.under-the-dirt.com/files/templateArtifacts.js?1664848381
199.34.228.44200 OK 1.6 kB URL HTTP/1.1 www.under-the-dirt.com/files/templateArtifacts.js?1664848381
IP 199.34.228.44:0
File type exported SGML document, ASCII text, with very long lines (1630)
Hash e0836e8203c22b8e4086f27e91e86f5a
28235e77f5a895c8cd411aff4a6ef4e6f7d419c2
32dbc4a2eeca39a57d35670f00e2cf59e03c279521e47506c56c5c36d8b664b6
Analyzer Verdict Alert quad9 Sinkholed
GET /files/templateArtifacts.js?1664848381 HTTP/1.1
Host: www.under-the-dirt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.under-the-dirt.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 05 Nov 2022 19:21:08 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: grn147.sf2p.intern.weebly.net
Content-Encoding: gzip
www.under-the-dirt.com/uploads/1/4/3/2/143288535/published/1664162221866.png?1664162526
199.34.228.44200 OK 14 kB URL HTTP/1.1 www.under-the-dirt.com/uploads/1/4/3/2/143288535/published/1664162221866.png?1664162526
IP 199.34.228.44:0
File type PNG image data, 359 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash e672c4f686503f26ae9c261b65fd369a
9c9366859d179cc695c07c71f12a9d96c1e2cb12
b89ea8993c66e4e6a156c089afec7f26c598aaf6d55041a498c29c76fd4247cc
Analyzer Verdict Alert quad9 Sinkholed
GET /uploads/1/4/3/2/143288535/published/1664162221866.png?1664162526 HTTP/1.1
Host: www.under-the-dirt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.under-the-dirt.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 05 Nov 2022 19:21:08 GMT
Content-Type: image/png
Content-Length: 14164
Connection: keep-alive
Last-Modified: Mon, 26 Sep 2022 03:20:35 GMT
x-rgw-object-type: Normal
ETag: "e672c4f686503f26ae9c261b65fd369a"
x-amz-request-id: tx0000000000000293cf2ae-006365a704-c696eea-sfo1
X-Storage-Bucket: zb89e
X-Storage-Object: b89ea8993c66e4e6a156c089afec7f26c598aaf6d55041a498c29c76fd4247cc
X-Host: grn79.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.under-the-dirt.com/files/theme/custom.js?1565969634
199.34.228.44200 OK 1.8 kB URL HTTP/1.1 www.under-the-dirt.com/files/theme/custom.js?1565969634
IP 199.34.228.44:0
Hash 1f7d51d1b0acc9268e8aa57af11ee258
df55901d31c5b1de0181820e1bf123d61b5ec6c6
44ecca81c81024cd199ad979fd0ca46a379978a73a1c9ce09b6dfc9393cceff0
Analyzer Verdict Alert quad9 Sinkholed
GET /files/theme/custom.js?1565969634 HTTP/1.1
Host: www.under-the-dirt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.under-the-dirt.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 05 Nov 2022 19:21:08 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 19 Apr 2022 15:56:37 GMT
x-rgw-object-type: Normal
ETag: W/"48e887857aec23f184b0aa49c18d2445"
x-amz-request-id: tx000000000000001c03ef4-0062848423-b9fbc63-sfo1
X-Storage-Bucket: z0567
X-Storage-Object: 0567021bc3973d113c6b0b6e68d0e9a8b53f38a7f60716c83214a133cc00139a
X-Host: blu48.sf2p.intern.weebly.net
Content-Encoding: gzip
www.under-the-dirt.com/files/theme/plugins.js?1565969634
199.34.228.44200 OK 16 kB URL HTTP/1.1 www.under-the-dirt.com/files/theme/plugins.js?1565969634
IP 199.34.228.44:0
Hash 43e6b0bb6eb6524188831a282f7656d7
44e73fe367fc1fb8efee7eefac557b7d76ef0f44
9001fcfe93ceab40de4bb3535fc61335318c56d4440b53070cac27a26fef42bb
Analyzer Verdict Alert quad9 Sinkholed
GET /files/theme/plugins.js?1565969634 HTTP/1.1
Host: www.under-the-dirt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.under-the-dirt.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 05 Nov 2022 19:21:08 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 24 Apr 2022 01:56:38 GMT
x-rgw-object-type: Normal
ETag: W/"2b8d85f1ea01d2c3e8b962eac8d76a5c"
x-amz-request-id: tx000000000000001ae94c4-006284793b-b9fbc20-sfo1
X-Storage-Bucket: zb635
X-Storage-Object: b6353ca52760aba4e7547ae9861db68158dc2af0f4febece55e5c775ee4449f5
X-Host: grn129.sf2p.intern.weebly.net
Content-Encoding: gzip
widget.sndcdn.com/widget-9-636db9b02be5.js
54.230.111.7200 OK 342 kB URL HTTP/2 widget.sndcdn.com/widget-9-636db9b02be5.js
IP 54.230.111.7:0
File type Unicode text, UTF-8 text, with very long lines (58488)
Size 342 kB (342081 bytes)
Hash 9ffa5792f2b3d20869852bf3af712ec6
7b09efbe0565aa0dcedb44f5c50f67f6b869b904
8eed995fae872e84c5694a885dd4329368f4525d9daf7af2964f2d5ac4b268c3
GET /widget-9-636db9b02be5.js HTTP/1.1
Host: widget.sndcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w.soundcloud.com
Connection: keep-alive
Referer: https://w.soundcloud.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Tue, 01 Nov 2022 08:05:38 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 01 Nov 2022 08:00:55 GMT
etag: W/"b473d03d05f4d224bfd5a50de2e90f45"
cache-control: public, max-age=31536000, immutable
x-amz-version-id: o.I457Sjz_bf3hJLAmzrK9RZy5rQj4cg
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _w0yESomXPNNZZoSiU_rtsRc74KykuC9u6pSEPX_mkoqYFRlGY6UBg==
age: 386131
X-Firefox-Spdy: h2
widget.sndcdn.com/assets/images/logo-200x120-3190df52.png
54.230.111.7200 OK 3.7 kB URL HTTP/2 widget.sndcdn.com/assets/images/logo-200x120-3190df52.png
IP 54.230.111.7:0
File type PNG image data, 200 x 120, 8-bit gray+alpha, non-interlaced\012- data
Hash a1591e5274b36cfbae3e167dffe49970
ad535777f813aae6727b416f821d727c854646e6
a9e23dcec7b7d492b11006586bea4e4fe7de01f647f89c6aa84e186567b9da50
GET /assets/images/logo-200x120-3190df52.png HTTP/1.1
Host: widget.sndcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://w.soundcloud.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 3745
date: Wed, 24 Aug 2022 01:47:09 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 22 Aug 2022 10:28:14 GMT
etag: "a1591e5274b36cfbae3e167dffe49970"
cache-control: public, max-age=31536000, immutable
x-amz-version-id: VldNYlm7gvRHU.GTTyDBB4UbN9JtUUnV
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: m_iAUnWV7ZEhlfRBN2NbFNIIzi51Iw0rdcvj2kMb2zvBdTiOvbBBig==
age: 6370440
X-Firefox-Spdy: h2
www.under-the-dirt.com/uploads/1/4/3/2/143288535/editor/sketch1633582704490.png?1664162917
199.34.228.44200 OK 102 kB URL HTTP/1.1 www.under-the-dirt.com/uploads/1/4/3/2/143288535/editor/sketch1633582704490.png?1664162917
IP 199.34.228.44:0
File type PNG image data, 958 x 552, 8-bit grayscale, non-interlaced\012- data
Size 102 kB (101736 bytes)
Hash 948e6c18c90c54466270f39d7e79a5d1
1ed60f97e52ec82fd20c633becfaf95edd0eeb9d
ebaaf7063646de4120f264f9b0d51681b0d384afd908a987a6dd9f90c718aef0
Analyzer Verdict Alert quad9 Sinkholed
GET /uploads/1/4/3/2/143288535/editor/sketch1633582704490.png?1664162917 HTTP/1.1
Host: www.under-the-dirt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.under-the-dirt.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 05 Nov 2022 19:21:08 GMT
Content-Type: image/png
Content-Length: 101736
Connection: keep-alive
Last-Modified: Mon, 26 Sep 2022 03:28:37 GMT
x-rgw-object-type: Normal
ETag: "948e6c18c90c54466270f39d7e79a5d1"
x-amz-request-id: tx000000000000028bbd8e8-00636456d7-c695612-sfo1
X-Storage-Bucket: zebaa
X-Storage-Object: ebaaf7063646de4120f264f9b0d51681b0d384afd908a987a6dd9f90c718aef0
X-Host: grn110.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.under-the-dirt.com/files/theme/fonts/1e9892c0-6927-4412-9874-1b82801ba47a.woff?1664848381
199.34.228.44200 OK 21 kB URL HTTP/1.1 www.under-the-dirt.com/files/theme/fonts/1e9892c0-6927-4412-9874-1b82801ba47a.woff?1664848381
IP 199.34.228.44:0
File type Web Open Font Format, TrueType, length 20709, version 1.0\012- data
Hash 9df5efadcd24b83511f3c339178210d8
74f67081083ebd94979f50e681df20bfbdc4cd8d
0d887fc553f2b9a6488c8bbdeb38d0e70e2da58d5bb34161d32f683af096fdb8
Analyzer Verdict Alert quad9 Sinkholed
GET /files/theme/fonts/1e9892c0-6927-4412-9874-1b82801ba47a.woff?1664848381 HTTP/1.1
Host: www.under-the-dirt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.under-the-dirt.com/files/main_style.css?1664848381
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 05 Nov 2022 19:21:08 GMT
Content-Type: font/woff
Content-Length: 20710
Connection: keep-alive
Last-Modified: Wed, 11 Dec 2019 02:22:43 GMT
x-rgw-object-type: Normal
ETag: "9df5efadcd24b83511f3c339178210d8"
x-amz-request-id: tx000000000000000bab67f-0061a70717-a9f4046-sfo1
X-Storage-Bucket: z0d88
X-Storage-Object: 0d887fc553f2b9a6488c8bbdeb38d0e70e2da58d5bb34161d32f683af096fdb8
X-Host: blu69.sf2p.intern.weebly.net
Accept-Ranges: bytes
api-widget.soundcloud.com/assignments/427200-560497-381657-636162?layers=widget_listening&format=json&client_id=LBCcHmRB8XSStWL6wKH2HPACspQlXg2P&app_version=1667289634
54.230.110.40200 OK 139 B URL HTTP/1.1 api-widget.soundcloud.com/assignments/427200-560497-381657-636162?layers=widget_listening&format=json&client_id=LBCcHmRB8XSStWL6wKH2HPACspQlXg2P&app_version=1667289634
IP 54.230.110.40:0
File type JSON data\012- , ASCII text, with very long lines (615), with no line terminators
Hash 99978a053ca4424e6c1029457fae7c7e
9507fdb81f1c214ae3d55c5062b62e3b0a3f54c4
d4ae8f0649e51a3829d9f635d6efd4593775bf30ac27526adb057efebc42ec03
GET /assignments/427200-560497-381657-636162?layers=widget_listening&format=json&client_id=LBCcHmRB8XSStWL6wKH2HPACspQlXg2P&app_version=1667289634 HTTP/1.1
Host: api-widget.soundcloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w.soundcloud.com
Connection: keep-alive
Referer: https://w.soundcloud.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Content-Length: 139
Connection: keep-alive
Date: Sat, 05 Nov 2022 19:21:09 GMT
x-robots-tag: noindex
Cache-Control: private, max-age=0
referrer-policy: no-referrer
x-frame-options: DENY
access-control-max-age: 1728000
x-content-type-options: nosniff
access-control-allow-origin: https://w.soundcloud.com
access-control-allow-headers: Authorization, Content-Type, Device-Locale, X-CSRF-Token
access-control-allow-methods: DELETE, GET, PATCH, POST, PUT
access-control-expose-headers: Date
access-control-allow-credentials: true
Content-Encoding: gzip
strict-transport-security: max-age=63072000
Server: am/2
Vary: Origin
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: rnfmFIVmsEr0hj72e4Gmv-VoseTF83d3gKJ8-hEQaR7MQqkiuRFcfA==
api-widget.soundcloud.com/assignments/659709-240962-287981-927951?layers=widget_listening&format=json&client_id=LBCcHmRB8XSStWL6wKH2HPACspQlXg2P&app_version=1667289634
54.230.110.40200 OK 139 B URL HTTP/1.1 api-widget.soundcloud.com/assignments/659709-240962-287981-927951?layers=widget_listening&format=json&client_id=LBCcHmRB8XSStWL6wKH2HPACspQlXg2P&app_version=1667289634
IP 54.230.110.40:0
File type JSON data\012- , ASCII text, with very long lines (615), with no line terminators
Hash 99978a053ca4424e6c1029457fae7c7e
9507fdb81f1c214ae3d55c5062b62e3b0a3f54c4
d4ae8f0649e51a3829d9f635d6efd4593775bf30ac27526adb057efebc42ec03
GET /assignments/659709-240962-287981-927951?layers=widget_listening&format=json&client_id=LBCcHmRB8XSStWL6wKH2HPACspQlXg2P&app_version=1667289634 HTTP/1.1
Host: api-widget.soundcloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w.soundcloud.com
Connection: keep-alive
Referer: https://w.soundcloud.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Content-Length: 139
Connection: keep-alive
Date: Sat, 05 Nov 2022 19:21:09 GMT
x-robots-tag: noindex
Cache-Control: private, max-age=0
referrer-policy: no-referrer
x-frame-options: DENY
access-control-max-age: 1728000
x-content-type-options: nosniff
access-control-allow-origin: https://w.soundcloud.com
access-control-allow-headers: Authorization, Content-Type, Device-Locale, X-CSRF-Token
access-control-allow-methods: DELETE, GET, PATCH, POST, PUT
access-control-expose-headers: Date
access-control-allow-credentials: true
Content-Encoding: gzip
strict-transport-security: max-age=63072000
Server: am/2
Vary: Origin
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: F10mUEPsboDwcXZHkzWrefcDOsHnuvbAFhA-9ubRcBoWyKmJ21cP6g==
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5428
Expires: Sat, 05 Nov 2022 20:51:37 GMT
Date: Sat, 05 Nov 2022 19:21:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5428
Expires: Sat, 05 Nov 2022 20:51:37 GMT
Date: Sat, 05 Nov 2022 19:21:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5428
Expires: Sat, 05 Nov 2022 20:51:37 GMT
Date: Sat, 05 Nov 2022 19:21:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5428
Expires: Sat, 05 Nov 2022 20:51:37 GMT
Date: Sat, 05 Nov 2022 19:21:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5428
Expires: Sat, 05 Nov 2022 20:51:37 GMT
Date: Sat, 05 Nov 2022 19:21:09 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255683f8-a0b6-411a-a41e-4d042746780e.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255683f8-a0b6-411a-a41e-4d042746780e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c7c9c908e891e7277f21a914fea9aa25
596c3c084ae3d850a5dc28e549b4e22f2b8cc71f
709c217b3ac09712d2af4366316c8977b1a4e2a73f887b3e30f10df1ed50bacd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255683f8-a0b6-411a-a41e-4d042746780e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9150
x-amzn-requestid: 7c179507-20a7-4fa3-993b-f79b3e7949ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: apwiGHD_IAMFQZw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635a2e0d-337623ce79dc53c864632c72;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 07:06:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: CKSa8_W-V5Rf8od3FFPgvBmlfXcqaYotYT5u6Gm8UvmXECcAzfAGoA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 14:36:54 GMT
age: 17055
etag: "596c3c084ae3d850a5dc28e549b4e22f2b8cc71f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f29b126-c6e5-4528-8307-e3c7fe12e225.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f29b126-c6e5-4528-8307-e3c7fe12e225.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 308da46611df43543d31ca502986bea2
0bf4de356c3a64785fe116161cb931b3b2476f5d
63996962e2763dcf2e0ae5e43aa12dfd8f8677082bb1cdf63528dfd00404f3e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f29b126-c6e5-4528-8307-e3c7fe12e225.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7619
x-amzn-requestid: 67308248-e660-4294-aafe-5f178970f822
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bGHlcHHfIAMFyGA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63658622-5b1ee875554a05eb1e8a6f16;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 21:37:38 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _-RekVvWiPI4MHy0Up2j6D6a_NcPywYvDeydP3QlbCceU7NfWk00jQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 21:52:21 GMT
age: 77328
etag: "0bf4de356c3a64785fe116161cb931b3b2476f5d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e2853cc6ec6223160471401e6871f4b
f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c
bf4b9145ea043d87a30fd3aeeae21a1a0aa27004cd2467e7aa843bc894ae1f60
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10462
x-amzn-requestid: 43480a38-fd89-4c47-b8c4-e6ba90b1321c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aMF6oEz_oAMF8Hg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634e5043-6617fd2e59cab00135301cdd;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 07:05:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 3fDf4aoep5tTAusisXhIdAf0A6SbpM5fYtYaiXtNSb0-VRJo5nu8Vg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 06:27:59 GMT
age: 46390
etag: "f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d05e3a2-b178-419f-90de-a1985765ff09.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d05e3a2-b178-419f-90de-a1985765ff09.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ca6c7517d7015fbc35fa290c1c2d6afd
594e5a82ce82fb4cd76548b6d2d6b4cc419b7e4c
a746b36be50209915a0e5657abd219aab382eee4b7556142aa1316daf3a9f5a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d05e3a2-b178-419f-90de-a1985765ff09.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6557
x-amzn-requestid: f2e39db1-fb8a-4a9b-8a1d-ee08000ddeb6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC1VyFHuIAMF5Eg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636435be-7a03ef677f8dbd680f72de90;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:42:22 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: I6mALhsUwtQqMP_p_HxFaiCyfRDTtVzPIJjeDrKSEq7Tc_d5EcNw3Q==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 21:52:32 GMT
age: 77317
etag: "594e5a82ce82fb4cd76548b6d2d6b4cc419b7e4c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28a5f5ce-bd81-4e56-bd1b-460e13379581.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28a5f5ce-bd81-4e56-bd1b-460e13379581.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7a3b1551512640bb8f5e7deb80c32272
75805b9f03aef14cfad025259936ae5f217d25ca
5baa90853202e78cf9b59e9ab597e16ccfbf143d7e124583e64dc1ad1ee2c2df
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28a5f5ce-bd81-4e56-bd1b-460e13379581.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7783
x-amzn-requestid: ab7cc6ee-976d-41a4-b5da-0aefd5cb6246
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bEJnzH15oAMFlwA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364bc98-68f910b60bd5ecaf2947c59a;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 07:17:44 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: JnvKcym5f71Ra_ZHzkTXnU7Fa3D5zBFK9JFKXA_A3G98jN9r3Jikyw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 08:24:07 GMT
age: 39422
etag: "75805b9f03aef14cfad025259936ae5f217d25ca"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb94b0737-3952-4bbe-b940-e1f79fb95cbe.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb94b0737-3952-4bbe-b940-e1f79fb95cbe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eaf06d0fb99703abfd57b962eb21ce96
ce73b0ad22139bec863ed990e3d3af4bdc3df288
a226250245611193be882c92f2d9920cb6ceeb12823b48c0b9c8fa2aba1c8c0d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb94b0737-3952-4bbe-b940-e1f79fb95cbe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6909
x-amzn-requestid: 7c500c29-f514-491c-b2fe-a732a546925f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: awWpEEYHoAMFWdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635cd16d-6d9c4c5c41f4fcd16cabda59;Sampled=0
x-amzn-remapped-date: Sat, 29 Oct 2022 07:08:29 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lOCFTDiIxZDBzypATpujFz2hjWPabqjokrpq1-5An86y5lZLG5xHxQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 07:40:21 GMT
age: 42048
etag: "ce73b0ad22139bec863ed990e3d3af4bdc3df288"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.under-the-dirt.com/files/theme/fonts/46cf1067-688d-4aab-b0f7-bd942af6efd8.ttf?1664848381
199.34.228.44200 OK 39 kB URL HTTP/1.1 www.under-the-dirt.com/files/theme/fonts/46cf1067-688d-4aab-b0f7-bd942af6efd8.ttf?1664848381
IP 199.34.228.44:0
File type TrueType Font data, 16 tables, 1st "GPOS", 26 names, Macintosh, Copyright \251 2004 - 2007 Linotype GmbH, www.linotype.com. All rights reserved. This font softw\012- data
Hash 98f6dacde86ebbaac7cc62b34a6e54cf
d232a9249b6f39e7d35ce6a555e070987357acc9
65032d5699bf3d4deb4313aa4d1bb8375053ac7e93dfb4bf631ce9261da20c2b
Analyzer Verdict Alert quad9 Sinkholed
GET /files/theme/fonts/46cf1067-688d-4aab-b0f7-bd942af6efd8.ttf?1664848381 HTTP/1.1
Host: www.under-the-dirt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.under-the-dirt.com/files/main_style.css?1664848381
Cookie: is_mobile=0; language=en; _snow_ses.9947=*; _snow_id.9947=07104909-6664-47ed-b15d-c4650b57d54c.1667676067.1.1667676067.1667676067.008d534e-b713-47f7-a1a8-b662fc1504ba
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 05 Nov 2022 19:21:09 GMT
Content-Type: font/ttf
Content-Length: 39185
Connection: keep-alive
Last-Modified: Wed, 11 Dec 2019 02:22:44 GMT
ETag: "98f6dacde86ebbaac7cc62b34a6e54cf"
x-amz-request-id: tx0000000000000004976c1-005eaa6ae2-1100fc6-las
X-Storage-Bucket: z6503
X-Storage-Object: 65032d5699bf3d4deb4313aa4d1bb8375053ac7e93dfb4bf631ce9261da20c2b
X-Host: blu50.sf2p.intern.weebly.net
Accept-Ranges: bytes
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 1ffa478f24443924e491a74d47f387d4
bf7d522400b71b8cb4c5c57c09a628e5baa5bbe7
646e49d83fd45b3c7089c4501ebda4895c2cc39c381679421f03e22992ea4911
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=166292
Date: Sat, 05 Nov 2022 19:21:09 GMT
Etag: "6366928f-1d7"
Expires: Mon, 07 Nov 2022 17:32:41 GMT
Last-Modified: Sat, 05 Nov 2022 16:42:55 GMT
Server: ECS (nyb/1D33)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Q1BWvZ1o4WQwvwK0Byz75WXSBWd6JkShKXTsmPfpCANSkleii6pK3w==
Age: 2986
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 1ffa478f24443924e491a74d47f387d4
bf7d522400b71b8cb4c5c57c09a628e5baa5bbe7
646e49d83fd45b3c7089c4501ebda4895c2cc39c381679421f03e22992ea4911
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=165816
Date: Sat, 05 Nov 2022 19:21:09 GMT
Etag: "6366928f-1d7"
Expires: Mon, 07 Nov 2022 17:24:45 GMT
Last-Modified: Sat, 05 Nov 2022 16:42:55 GMT
Server: ECS (bsa/EB20)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Xc9KR6AIQjEzDS3oVWRVrjcSCao3Zumjf4M7rII6aeYeXHihigUfrg==
Age: 2510
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d65c94a3bfe8605059e5e626ea0fa57e
b0fbc3577331b82efc8e320095b8d8705a6360d3
0878edd256a972f526d7053cdebceb28241db5662cc7660a10f1b4c3430c43c6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 19:21:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ssl.google-analytics.com/ga.js
216.58.207.232200 OK 17 kB URL HTTP/2 ssl.google-analytics.com/ga.js
IP 216.58.207.232:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.under-the-dirt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Sat, 05 Nov 2022 18:32:37 GMT
expires: Sat, 05 Nov 2022 20:32:37 GMT
cache-control: public, max-age=7200
age: 2912
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
35.82.13.103200 OK 0 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 35.82.13.103:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.under-the-dirt.com/
Origin: https://www.under-the-dirt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 05 Nov 2022 19:21:09 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://www.under-the-dirt.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 600
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e13e65ad7f6f12300b12d6cd6936d621
575faf606b5c5e39e0fbbef59998bcd3625aa141
10787f99c02b63d52b9b74fcec9497108d67c56c4a9436e0e3c9a7129d727dda
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 19:21:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.under-the-dirt.com/favicon.ico
199.34.228.44200 OK 4.3 kB URL HTTP/1.1 www.under-the-dirt.com/favicon.ico
IP 199.34.228.44:0
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Hash 4d27526198ac873ccec96935198e0fb9
b98d8b73ad6a0f7477c3397561b4aab37bf262aa
40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: www.under-the-dirt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.under-the-dirt.com/
Cookie: is_mobile=0; language=en; _snow_ses.9947=*; _snow_id.9947=07104909-6664-47ed-b15d-c4650b57d54c.1667676067.1.1667676067.1667676067.008d534e-b713-47f7-a1a8-b662fc1504ba
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 05 Nov 2022 19:21:09 GMT
Content-Type: image/x-icon
Content-Length: 4286
Connection: keep-alive
Last-Modified: Fri, 24 Sep 2021 21:48:12 GMT
x-rgw-object-type: Normal
ETag: "4d27526198ac873ccec96935198e0fb9"
x-amz-request-id: tx000000000000000c68792-0061a70442-a9f41e7-sfo1
X-Storage-Bucket: z40a2
X-Storage-Object: 40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
X-Host: grn64.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.under-the-dirt.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
199.34.228.44200 OK 348 B URL HTTP/1.1 www.under-the-dirt.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
IP 199.34.228.44:0
File type JSON data\012- , ASCII text, with very long lines (348), with no line terminators
Hash a944dd688c99d2901d6719be713271c0
4f5454d5d434829baf46671638610791758725d9
adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49
Analyzer Verdict Alert quad9 Sinkholed
POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1
Host: www.under-the-dirt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: https://www.under-the-dirt.com
Connection: keep-alive
Referer: https://www.under-the-dirt.com/
Cookie: is_mobile=0; language=en; _snow_ses.9947=*; _snow_id.9947=07104909-6664-47ed-b15d-c4650b57d54c.1667676067.1.1667676067.1667676067.008d534e-b713-47f7-a1a8-b662fc1504ba
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 19:21:09 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn141.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 348
Keep-Alive: timeout=10, max=42
Connection: Keep-Alive
Content-Type: application/json
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
35.82.13.103200 OK 2 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 35.82.13.103:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1793
Origin: https://www.under-the-dirt.com
Connection: keep-alive
Referer: https://www.under-the-dirt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 05 Nov 2022 19:21:09 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=839cb6e6-6dfc-4cfe-a5f5-070029be4390; Expires=Sun, 05 Nov 2023 19:21:09 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://www.under-the-dirt.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
www.under-the-dirt.com/uploads/1/4/3/2/143288535/sketch1664778762282_orig.png
199.34.228.44200 OK 1.5 MB URL HTTP/1.1 www.under-the-dirt.com/uploads/1/4/3/2/143288535/sketch1664778762282_orig.png
IP 199.34.228.44:0
File type PNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced\012- data
Size 1.5 MB (1488982 bytes)
Hash ff4e99e737cfebde7a5dce3ddb5d0b50
20e80f686f66c5ac33f470b7d88e2efedbbe1d76
8408904ea3042a4f3c2ead5bed008b4fbcc76da60656f85df030d0f425038b3f
Analyzer Verdict Alert quad9 Sinkholed
GET /uploads/1/4/3/2/143288535/sketch1664778762282_orig.png HTTP/1.1
Host: www.under-the-dirt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.under-the-dirt.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 05 Nov 2022 19:21:08 GMT
Content-Type: image/png
Content-Length: 1488982
Connection: keep-alive
Last-Modified: Tue, 04 Oct 2022 01:41:10 GMT
x-rgw-object-type: Normal
ETag: "ff4e99e737cfebde7a5dce3ddb5d0b50"
x-amz-request-id: tx0000000000000288514e3-006365c8ca-c67eadd-sfo1
X-Storage-Bucket: z8408
X-Storage-Object: 8408904ea3042a4f3c2ead5bed008b4fbcc76da60656f85df030d0f425038b3f
X-Host: grn133.sf2p.intern.weebly.net
Accept-Ranges: bytes
api-widget.soundcloud.com/resolve?url=https%3A//api.soundcloud.com/tracks/1334678047&format=json&client_id=LBCcHmRB8XSStWL6wKH2HPACspQlXg2P&app_version=1667289634
54.230.110.40200 OK 1.8 kB URL HTTP/1.1 api-widget.soundcloud.com/resolve?url=https%3A//api.soundcloud.com/tracks/1334678047&format=json&client_id=LBCcHmRB8XSStWL6wKH2HPACspQlXg2P&app_version=1667289634
IP 54.230.110.40:0
File type JSON data\012- , ASCII text, with very long lines (4491), with no line terminators
Hash 85c3d63d5a8b571f2159fc1a33442022
8cecf9397d208d3b413f50061b482338949aa450
54c95b4357c86fbb21bad8e144dfa651bbe1c1c7a1a9786e0ff21f8dc72a180b
GET /resolve?url=https%3A//api.soundcloud.com/tracks/1334678047&format=json&client_id=LBCcHmRB8XSStWL6wKH2HPACspQlXg2P&app_version=1667289634 HTTP/1.1
Host: api-widget.soundcloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w.soundcloud.com
Connection: keep-alive
Referer: https://w.soundcloud.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Content-Length: 1766
Connection: keep-alive
Date: Sat, 05 Nov 2022 19:21:11 GMT
x-robots-tag: noindex
Cache-Control: private, max-age=0
referrer-policy: no-referrer
x-frame-options: DENY
access-control-max-age: 1728000
x-content-type-options: nosniff
access-control-allow-origin: https://w.soundcloud.com
access-control-allow-headers: Authorization, Content-Type, Device-Locale, X-CSRF-Token
access-control-allow-methods: DELETE, GET, PATCH, POST, PUT
access-control-expose-headers: Date
access-control-allow-credentials: true
Content-Encoding: gzip
strict-transport-security: max-age=63072000
Server: am/2
Vary: Origin
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 7fjNQlF6rFnDQutxqG2XJAe7kH1x2hKsww-G__n2oXnC1FKUNP8S2g==
i1.sndcdn.com/artworks-4Pz2lKW0ppRLZhiy-43CLvA-t200x200.jpg
54.230.111.117200 OK 8.3 kB URL HTTP/2 i1.sndcdn.com/artworks-4Pz2lKW0ppRLZhiy-43CLvA-t200x200.jpg
IP 54.230.111.117:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x200, components 1\012- data
Hash f3810b733cfe71d4ea7099244cefc28b
003c7f37df535659df999eb1dae5623f0a7b8fd2
9c9440f45ddb8ef2c0c405bfcb6af5719ac337d1b349d3ba2c40c67418c48387
GET /artworks-4Pz2lKW0ppRLZhiy-43CLvA-t200x200.jpg HTTP/1.1
Host: i1.sndcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://w.soundcloud.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 8270
access-control-allow-headers: Accept, Accept-Encoding, Authorization, Content-Type, Origin
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: public,max-age=3104120
date: Fri, 04 Nov 2022 20:53:13 GMT
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Jd5uiux3y9T2jyo7OybDs7BrVjbp8OOnAIGfAovq2ui6JjkE5nm94g==
age: 80879
X-Firefox-Spdy: h2
wave.sndcdn.com/XTWdsCwnkB8M_m.json
143.204.55.30200 OK 1.9 kB URL HTTP/1.1 wave.sndcdn.com/XTWdsCwnkB8M_m.json
IP 143.204.55.30:0
File type JSON data\012- , ASCII text, with very long lines (7096)
Hash 51794ee64f8eb8e0a12ada73a2a73e86
2cf9149b0aaf58cddbefdd5095594c19aeaaf6ff
8a28c52ddfc632ac126674a3fad9dff6794216587c09f4b732d0c3081632c154
GET /XTWdsCwnkB8M_m.json HTTP/1.1
Host: wave.sndcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w.soundcloud.com
Connection: keep-alive
Referer: https://w.soundcloud.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 1851
Connection: keep-alive
access-control-allow-headers: Accept, Accept-Encoding, Authorization, Content-Type, Origin
access-control-allow-methods: GET
access-control-allow-origin: *
Cache-Control: public, max-age=155520000
Content-Encoding: gzip
Date: Fri, 04 Nov 2022 20:53:13 GMT
Server: am/2
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: HBMaYYMVRhOKzsbdCik3PBWBgeyHtjE2cU9KsqPGyKDy001Sv3TZow==
Age: 80879
api-widget.soundcloud.com/resolve?url=https%3A//api.soundcloud.com/tracks/1334654860&format=json&client_id=LBCcHmRB8XSStWL6wKH2HPACspQlXg2P&app_version=1667289634
54.230.110.40200 OK 1.9 kB URL HTTP/1.1 api-widget.soundcloud.com/resolve?url=https%3A//api.soundcloud.com/tracks/1334654860&format=json&client_id=LBCcHmRB8XSStWL6wKH2HPACspQlXg2P&app_version=1667289634
IP 54.230.110.40:0
File type JSON data\012- , ASCII text, with very long lines (4635), with no line terminators
Hash 92bc4484cefdd5301183ea1cb01568b0
62db57ec1d85dbad82961674ce40de61191023de
eeeb7d38dbbb2d116191a8638efedca1a9d29a09902123107b9e365223279c3f
GET /resolve?url=https%3A//api.soundcloud.com/tracks/1334654860&format=json&client_id=LBCcHmRB8XSStWL6wKH2HPACspQlXg2P&app_version=1667289634 HTTP/1.1
Host: api-widget.soundcloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w.soundcloud.com
Connection: keep-alive
Referer: https://w.soundcloud.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Content-Length: 1855
Connection: keep-alive
Date: Sat, 05 Nov 2022 19:21:12 GMT
x-robots-tag: noindex
Cache-Control: private, max-age=0
referrer-policy: no-referrer
x-frame-options: DENY
access-control-max-age: 1728000
x-content-type-options: nosniff
access-control-allow-origin: https://w.soundcloud.com
access-control-allow-headers: Authorization, Content-Type, Device-Locale, X-CSRF-Token
access-control-allow-methods: DELETE, GET, PATCH, POST, PUT
access-control-expose-headers: Date
access-control-allow-credentials: true
Content-Encoding: gzip
strict-transport-security: max-age=63072000
Server: am/2
Vary: Origin
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: wG0NE3UpiBOESgp-NQVF-UkFttRT9p6T8l3ekW4N6sCRaHXu7telqw==
api-widget.soundcloud.com/tracks/1334678047/comments?filter_replies=1&threaded=0&limit=100&offset=0&linked_partitioning=1&format=json&client_id=LBCcHmRB8XSStWL6wKH2HPACspQlXg2P&app_version=1667289634
54.230.110.40200 OK 73 B URL HTTP/1.1 api-widget.soundcloud.com/tracks/1334678047/comments?filter_replies=1&threaded=0&limit=100&offset=0&linked_partitioning=1&format=json&client_id=LBCcHmRB8XSStWL6wKH2HPACspQlXg2P&app_version=1667289634
IP 54.230.110.40:0
File type JSON data\012- , ASCII text, with no line terminators
Hash e1749856880b8ec0697525b699df09b4
47f1428570f9417136aaea576de46339030e0db2
46eeeec2a4e21c9912ddb687ceb62e3e323e915fe9b4777027a80bc7ca8f1042
GET /tracks/1334678047/comments?filter_replies=1&threaded=0&limit=100&offset=0&linked_partitioning=1&format=json&client_id=LBCcHmRB8XSStWL6wKH2HPACspQlXg2P&app_version=1667289634 HTTP/1.1
Host: api-widget.soundcloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w.soundcloud.com
Connection: keep-alive
Referer: https://w.soundcloud.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Content-Length: 73
Connection: keep-alive
Date: Sat, 05 Nov 2022 19:21:12 GMT
x-robots-tag: noindex
Cache-Control: private, max-age=0
referrer-policy: no-referrer
x-frame-options: DENY
access-control-max-age: 1728000
x-content-type-options: nosniff
access-control-allow-origin: https://w.soundcloud.com
access-control-allow-headers: Authorization, Content-Type, Device-Locale, X-CSRF-Token
access-control-allow-methods: DELETE, GET, PATCH, POST, PUT
access-control-expose-headers: Date
access-control-allow-credentials: true
Content-Encoding: gzip
strict-transport-security: max-age=63072000
Server: am/2
Vary: Origin
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: o0dXIfOFdNHxSmZN7qxn9b5aB2cfvtB0PWfiScE8TKelQT_RKkOFVg==
i1.sndcdn.com/artworks-hd1q4B75EdQgOXGb-LpqfCQ-t200x200.jpg
54.230.111.117200 OK 8.4 kB URL HTTP/2 i1.sndcdn.com/artworks-hd1q4B75EdQgOXGb-LpqfCQ-t200x200.jpg
IP 54.230.111.117:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x200, components 1\012- data
Hash e1e1eeaceec5bae29bc19f9f3a757baa
dd6146e2b906f2ad42c103ff37dc1d948cdeb99e
8558e5c89f8b188d939c13e702eee05efc91a143e4b947bdce3c21bfc5ebe5f3
GET /artworks-hd1q4B75EdQgOXGb-LpqfCQ-t200x200.jpg HTTP/1.1
Host: i1.sndcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://w.soundcloud.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 8402
access-control-allow-headers: Accept, Accept-Encoding, Authorization, Content-Type, Origin
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: public,max-age=3104120
date: Fri, 04 Nov 2022 20:53:13 GMT
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FSzWHxScwPV88xuN1ZN2HL2IEytEgMJU_mvOkC-3HeMMbT_qOssmxQ==
age: 80879
X-Firefox-Spdy: h2
wave.sndcdn.com/Vz0moBDEjvpR_m.json
143.204.55.30200 OK 2.0 kB URL HTTP/1.1 wave.sndcdn.com/Vz0moBDEjvpR_m.json
IP 143.204.55.30:0
File type JSON data\012- , ASCII text, with very long lines (6829)
Hash f0ffc020863a00497153807b302579d6
618259e3545e85e1b6d41aacde809d8460749bd9
c4d581342945543d040ce60e6ea01cfd75af9d1456d2effe9e400e1230d37a1f
GET /Vz0moBDEjvpR_m.json HTTP/1.1
Host: wave.sndcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w.soundcloud.com
Connection: keep-alive
Referer: https://w.soundcloud.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 1995
Connection: keep-alive
access-control-allow-headers: Accept, Accept-Encoding, Authorization, Content-Type, Origin
access-control-allow-methods: GET
access-control-allow-origin: *
Cache-Control: public, max-age=155520000
Content-Encoding: gzip
Date: Sat, 05 Nov 2022 19:21:12 GMT
Server: am/2
Vary: Accept-Encoding
X-Cache: Miss from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 67ABrRZcjy5u0qgGGsqEm9vf2nDsQ5RzKp9l8TXMCe55IjDEKB9xvA==
api-widget.soundcloud.com/tracks/1334654860/comments?filter_replies=1&threaded=0&limit=100&offset=0&linked_partitioning=1&format=json&client_id=LBCcHmRB8XSStWL6wKH2HPACspQlXg2P&app_version=1667289634
54.230.110.40200 OK 73 B URL HTTP/1.1 api-widget.soundcloud.com/tracks/1334654860/comments?filter_replies=1&threaded=0&limit=100&offset=0&linked_partitioning=1&format=json&client_id=LBCcHmRB8XSStWL6wKH2HPACspQlXg2P&app_version=1667289634
IP 54.230.110.40:0
File type JSON data\012- , ASCII text, with no line terminators
Hash e1749856880b8ec0697525b699df09b4
47f1428570f9417136aaea576de46339030e0db2
46eeeec2a4e21c9912ddb687ceb62e3e323e915fe9b4777027a80bc7ca8f1042
GET /tracks/1334654860/comments?filter_replies=1&threaded=0&limit=100&offset=0&linked_partitioning=1&format=json&client_id=LBCcHmRB8XSStWL6wKH2HPACspQlXg2P&app_version=1667289634 HTTP/1.1
Host: api-widget.soundcloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w.soundcloud.com
Connection: keep-alive
Referer: https://w.soundcloud.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Content-Length: 73
Connection: keep-alive
Date: Sat, 05 Nov 2022 19:21:12 GMT
x-robots-tag: noindex
Cache-Control: private, max-age=0
referrer-policy: no-referrer
x-frame-options: DENY
access-control-max-age: 1728000
x-content-type-options: nosniff
access-control-allow-origin: https://w.soundcloud.com
access-control-allow-headers: Authorization, Content-Type, Device-Locale, X-CSRF-Token
access-control-allow-methods: DELETE, GET, PATCH, POST, PUT
access-control-expose-headers: Date
access-control-allow-credentials: true
Content-Encoding: gzip
strict-transport-security: max-age=63072000
Server: am/2
Vary: Origin
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: BDhUuQzG_03XXZK5F9RJB8bxMG8k987aX3B2UrvvB7upc7i4KSZ47g==
widget.sndcdn.com/widget-0-5658586f6feb.js
54.230.111.7200 OK 0 B URL HTTP/2 widget.sndcdn.com/widget-0-5658586f6feb.js
IP 54.230.111.7:0
GET /widget-0-5658586f6feb.js HTTP/1.1
Host: widget.sndcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://w.soundcloud.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Tue, 01 Nov 2022 08:05:39 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 01 Nov 2022 08:00:54 GMT
etag: W/"054a92fb87a6130ed3ffbb7e294bd3c6"
cache-control: public, max-age=31536000, immutable
x-amz-version-id: aEg4mG_1GTAYnUiETbD8I2p3ye_.UzYP
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Dv-PmHxEiRHAyLdVzC3KQW8l-ofMi60AeVGLh2m4EHlqbSLHvkQI9g==
age: 386133
X-Firefox-Spdy: h2
widget.sndcdn.com/widget-8-155aa13524da.js
54.230.111.7200 OK 0 B URL HTTP/2 widget.sndcdn.com/widget-8-155aa13524da.js
IP 54.230.111.7:0
GET /widget-8-155aa13524da.js HTTP/1.1
Host: widget.sndcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://w.soundcloud.com
Connection: keep-alive
Referer: https://w.soundcloud.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Tue, 01 Nov 2022 08:05:38 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 01 Nov 2022 08:00:55 GMT
etag: W/"3e1ff25ba6c2683f74cc48792070e0d2"
cache-control: public, max-age=31536000, immutable
x-amz-version-id: cNc5RAQO9NPxw40biypO5iDoWnOKjYgL
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FUA7717OYpYFCzJWDHp0O1JKBM9v7PHODUQOCFsu3W-fvVuxml5h-w==
age: 386131
X-Firefox-Spdy: h2
widget.sndcdn.com/widget-1-7dd4f06cce6d.js
54.230.111.7200 OK 0 B URL HTTP/2 widget.sndcdn.com/widget-1-7dd4f06cce6d.js
IP 54.230.111.7:0
GET /widget-1-7dd4f06cce6d.js HTTP/1.1
Host: widget.sndcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://w.soundcloud.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Tue, 30 Aug 2022 04:42:39 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 22 Aug 2022 10:28:09 GMT
etag: W/"cbc8cd45c617155bd027e3ded04ea941"
cache-control: public, max-age=31536000, immutable
x-amz-version-id: 0drvTSqG9y2ykarvmpQwJhUfQUKDX0fT
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Nt1dr5EEaOTXHCAoJyGv0juYHHLaBUjR-nUtZiXzUMY4z1Q8MHtZFA==
age: 5841512
X-Firefox-Spdy: h2
widget.sndcdn.com/assets/images/share-4d6d0315.svg
54.230.111.7200 OK 0 B URL HTTP/2 widget.sndcdn.com/assets/images/share-4d6d0315.svg
IP 54.230.111.7:0
GET /assets/images/share-4d6d0315.svg HTTP/1.1
Host: widget.sndcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://w.soundcloud.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Sat, 20 Aug 2022 04:28:26 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 10 Aug 2022 09:11:48 GMT
etag: W/"e2febe1dffc89eedc7a4173da09ae49b"
cache-control: public, max-age=31536000, immutable
x-amz-version-id: anjPoo2RyIsse6dVW80UeJQ0J0CTu_lj
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CpA1jF4FIGDmJ1DlS0vvqKx0Qn91Zbyr1AVQv0FslYddjT1t7tzQ4Q==
age: 6706367
X-Firefox-Spdy: h2
w.soundcloud.com/player/?url=https%3A//api.soundcloud.com/tracks/1334678047&color=%230b0b0b&auto_play=false&hide_related=false&show_comments=true&show_user=true&show_reposts=false&show_teaser=true
143.204.55.75200 OK 0 B URL HTTP/2 w.soundcloud.com/player/?url=https%3A//api.soundcloud.com/tracks/1334678047&color=%230b0b0b&auto_play=false&hide_related=false&show_comments=true&show_user=true&show_reposts=false&show_teaser=true
IP 143.204.55.75:0
GET /player/?url=https%3A//api.soundcloud.com/tracks/1334678047&color=%230b0b0b&auto_play=false&hide_related=false&show_comments=true&show_user=true&show_reposts=false&show_teaser=true HTTP/1.1
Host: w.soundcloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.under-the-dirt.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
via: sssr, 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
p3p: policyref="https://w.soundcloud.com/player/w3c/p3p.xml", CP="NON DSP COR CUR ADM DEV TAI PSAo PSDo OUR STP CNT"
cache-control: public, max-age=300
date: Sat, 05 Nov 2022 19:21:08 GMT
strict-transport-security: max-age=63072000
server: am/2
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: KcPHrG6NRXsPKswNb2d_JCg4gC-Wp7HvtJxofAn6N_g3u_lcU0RNpA==
X-Firefox-Spdy: h2
w.soundcloud.com/player/?url=https%3A//api.soundcloud.com/tracks/1334654860&color=%230b0b0b&auto_play=false&hide_related=false&show_comments=true&show_user=true&show_reposts=false&show_teaser=true
143.204.55.75200 OK 0 B URL HTTP/2 w.soundcloud.com/player/?url=https%3A//api.soundcloud.com/tracks/1334654860&color=%230b0b0b&auto_play=false&hide_related=false&show_comments=true&show_user=true&show_reposts=false&show_teaser=true
IP 143.204.55.75:0
GET /player/?url=https%3A//api.soundcloud.com/tracks/1334654860&color=%230b0b0b&auto_play=false&hide_related=false&show_comments=true&show_user=true&show_reposts=false&show_teaser=true HTTP/1.1
Host: w.soundcloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.under-the-dirt.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
via: sssr, 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
p3p: policyref="https://w.soundcloud.com/player/w3c/p3p.xml", CP="NON DSP COR CUR ADM DEV TAI PSAo PSDo OUR STP CNT"
cache-control: public, max-age=300
date: Sat, 05 Nov 2022 19:21:08 GMT
strict-transport-security: max-age=63072000
server: am/2
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZDngxaf-fkVybxDvpv3XuykjnEewyvEKvPSNNgbHxqWRf8GOn9S5gA==
X-Firefox-Spdy: h2