r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2acd891dc6eb1f09f57a2b086791781
1e2088306501a61edcca1ade62c4d54f23b3b083
51148fed95cc00d60dc3640350f135b1b2763ff0e3cfbffc40f0948317894be9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11455
Expires: Thu, 08 Dec 2022 14:05:25 GMT
Date: Thu, 08 Dec 2022 10:54:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aea93551fa9deb76ae49a3b4019d64fe
e3b8862057ebe839959228e42246d7b1807fc90c
7e210f03b140418085e94ec20c1d27d6ecf7a404cbd323e16476ae5ae95d6dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8797
Expires: Thu, 08 Dec 2022 13:21:07 GMT
Date: Thu, 08 Dec 2022 10:54:30 GMT
Connection: keep-alive
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
82.221.131.142200 OK 18 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (507), with CRLF line terminators
Hash db99e629aed835e00b375ffa3dae31c8
1c5e00277217fc9fe91b4ea6bbe20a5c5ce3f7f8
f1bf01a89274d3b36b3d87d6aabc43514e835dd3987310814e9942074324ca24
Analyzer Verdict Alert fortinet Phishing
GET /za/bitcoin/cyr/162prplr-12527/ HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:30 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 18076
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 08 Dec 2022 10:08:11 GMT
content-type: application/json
age: 2779
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 00e7703bd74975689fc9050356aaca6b
9788fe6a36d6f278e8da329ebc5dd87bcd212317
593bc437ff8a8233516c62613d50220fcb25b9f967ed5fb384c253f0db135103
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "593BC437FF8A8233516C62613D50220FCB25B9F967ED5FB384C253F0DB135103"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17289
Expires: Thu, 08 Dec 2022 15:42:40 GMT
Date: Thu, 08 Dec 2022 10:54:31 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 3s0efX32dgQnVRmHmEnnQqhPnsPyAd/CnhYVwQ15PLVZCVXKvJ9h7/VOgD79tbifC2Br8cCG4Hs=
x-amz-request-id: ARV5R7BEXHGEVJJQ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 08 Dec 2022 10:49:45 GMT
age: 286
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 10:54:31 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
dj4yakrh0mk4q.cloudfront.net/tt-code.js
143.204.42.196200 OK 4.5 kB URL HTTP/1.1 dj4yakrh0mk4q.cloudfront.net/tt-code.js
IP 143.204.42.196:0
Hash c16ca157222c2e9b345d2b6994a9c3b4
7feacef0921a436cc1545b490a0655cf91980f11
521f1aaba1d635c693b507b96697239a2e2ebdc49d08b43067693cda96492676
GET /tt-code.js HTTP/1.1
Host: dj4yakrh0mk4q.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://marketinvestingns.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 4488
Connection: keep-alive
Last-Modified: Mon, 19 Oct 2020 11:55:56 GMT
x-amz-version-id: reZZ.2RJpt9clTThdNtC4.3l4pWao9nU
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 08 Dec 2022 08:28:25 GMT
ETag: "c16ca157222c2e9b345d2b6994a9c3b4"
X-Cache: Hit from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mRn4lgYlkihifAXdRP1_4F2hQ1K_tCjTi9w_pxgTniHRM2-iIJnODA==
Age: 28102
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/index_files/refGo3_master.css
82.221.131.142200 OK 1.1 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/index_files/refGo3_master.css
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
Hash 5bbd7e23cba235bd3f2251d0b8d0ff08
823bfb0e566cc9154fe34f364e623080a89ae8ee
8e9f2b71b7af76fb3bc96bb2b5cbdd82576110343f844c51477b182c24b00caa
GET /za/bitcoin/cyr/162prplr-12527/index_files/refGo3_master.css HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:17:03 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1081
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/index_files/refGo3_wide.css
82.221.131.142200 OK 295 B URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/index_files/refGo3_wide.css
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
Hash b812ad3bc72c53bc88d17d912d6cb050
4447a2d3e37f01545d0cb79975d72331c3f78687
fe4d081747707f12039eb9330ac8d91d0ff39778c0c783903f13e78f2f525bd6
GET /za/bitcoin/cyr/162prplr-12527/index_files/refGo3_wide.css HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:17:04 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 295
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/jquery.min.js
82.221.131.142200 OK 84 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/jquery.min.js
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type ASCII text, with CRLF line terminators
Hash fe38c28debe8051df6610828201914b3
575510719ceb2ea47dbc05ab088539228c7bea36
eda5adf5611b16bd1eaa04f6787324422b18821049e351df601296896ede7879
Analyzer Verdict Alert fortinet Phishing
GET /za/bitcoin/cyr/162prplr-12527/jquery.min.js HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:48 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
pushtoast-a.akamaihd.net/2.0/sw.register.js
23.36.76.201200 OK 36 kB URL HTTP/1.1 pushtoast-a.akamaihd.net/2.0/sw.register.js
IP 23.36.76.201:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (36501), with NEL line terminators
Hash 11de92fe93b8d0d8103abd7310878c09
808808b196ed4f4dfe606a9d49dfe226007ce4d3
b749307afa6ad6b9b5847ff66d71be25ea13445af40cc7f1646c599c4e61674f
GET /2.0/sw.register.js HTTP/1.1
Host: pushtoast-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://marketinvestingns.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 49eHDaUi7mtrvgcDwjVedumUlVKbdPmkU4yKb5ErjiDlhWNUVGNbHRxH4ZSaapK4CmkmjmqurFo=
x-amz-request-id: 58HBZSYCV1W8C708
Last-Modified: Tue, 01 Nov 2022 20:08:10 GMT
ETag: "73c97061473ccea21e636d1aa87c951d"
x-amz-version-id: iSFNL_93.64qrcehzlp.kld9vI4vwoCc
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Expires: Thu, 08 Dec 2022 10:54:31 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 08 Dec 2022 10:54:31 GMT
Content-Length: 36015
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Access-Control-Allow-Methods: GET,POST
Access-Control-Allow-Origin: *
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/style.css
82.221.131.142200 OK 115 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/style.css
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type Unicode text, UTF-8 text, with very long lines (760), with CRLF, CR line terminators
Size 115 kB (115414 bytes)
Hash c209940eefee951b3df30bbd4dcdf7fe
5f09db4cdd0047bdfe682022a74691cafe817da6
2dba73385edd9c6c812ffd69fa5ce45eba8a18af566aea6a2a45ac6d3b76ac08
GET /za/bitcoin/cyr/162prplr-12527/style.css HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:49 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/odA9sNLrE86.jpg
82.221.131.142200 OK 1.1 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/odA9sNLrE86.jpg
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash f04f15ed225fbf9390c6cac221a2fb85
bfd71aa20ce765daace60fb7c53d270171c54a2a
d7af70fd2dab0fadd7b57438ae80cd4cbfc69384ace14284c990e2916631ff3b
GET /za/bitcoin/cyr/162prplr-12527/odA9sNLrE86.jpg HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:46 GMT
Accept-Ranges: bytes
Content-Length: 1131
Vary: User-Agent
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/11880513_10153182441573635_6391766102196689121_n.jpg
82.221.131.142200 OK 5.5 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/11880513_10153182441573635_6391766102196689121_n.jpg
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x160, components 3\012- data
Hash ce705b8621d304ab774e0022882a8a3f
655a46c4ca2d9a0583c98f012303f8db9badbe31
3ee38441ef9c471c2488d253ee2d7898b7e8fa78de7f944500d545f483285cd7
GET /za/bitcoin/cyr/162prplr-12527/11880513_10153182441573635_6391766102196689121_n.jpg HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:41 GMT
Accept-Ranges: bytes
Content-Length: 5482
Vary: User-Agent
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/18423978_10210643158807484_4625467277978165616_n.jpg
82.221.131.142200 OK 6.9 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/18423978_10210643158807484_4625467277978165616_n.jpg
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x160, components 3\012- data
Hash 8efb0c63e1c0dba3790da58d40e6125e
bc76bbd9d201c90bb47b0f2d21f5c19f44c0064c
1099f9f7104a7a6ab217dceb4008a336d3640fc34602645a180d4593f9c01db8
GET /za/bitcoin/cyr/162prplr-12527/18423978_10210643158807484_4625467277978165616_n.jpg HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:59 GMT
Accept-Ranges: bytes
Content-Length: 6896
Vary: User-Agent
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/17265090_10158355004655716_6815458511175803011_n.jpg
82.221.131.142200 OK 4.4 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/17265090_10158355004655716_6815458511175803011_n.jpg
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x160, components 3\012- data
Hash a7aaef1f33c45feca36fb9a7c61550d2
0f4c41fcc479523e29e0f26ea4e48ae5e064f102
d2f4c6c31e2f76d443645063cda651e8fc2eca1139c973802e6fca959df3cc80
GET /za/bitcoin/cyr/162prplr-12527/17265090_10158355004655716_6815458511175803011_n.jpg HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:58 GMT
Accept-Ranges: bytes
Content-Length: 4407
Vary: User-Agent
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/13631522_1146706165402703_3256702316997043506_n.jpg
82.221.131.142200 OK 7.6 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/13631522_1146706165402703_3256702316997043506_n.jpg
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x160, components 3\012- data
Hash 73ab198541c1c371787537ac8dc75561
7fc291d21c26d0cc2fd0307eda3d924cd3b8725d
8b9d110b4592d446bdfbac7b0ed11f540ef7b358d120fae362e3ac7076ab3873
GET /za/bitcoin/cyr/162prplr-12527/13631522_1146706165402703_3256702316997043506_n.jpg HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:42 GMT
Accept-Ranges: bytes
Content-Length: 7571
Vary: User-Agent
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/18119267_10155363709609924_958378663814436125_n.jpg
82.221.131.142200 OK 5.6 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/18119267_10155363709609924_958378663814436125_n.jpg
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x160, components 3\012- data
Hash 5849a1d09fc7ef8254443874d517d2fa
3ad60af75e7e647f545dcb8a593fae44eedb3c61
a932f384beec3b73bd9d1b88c2ae941e1403b8e78766b23ff853352dce6b5900
GET /za/bitcoin/cyr/162prplr-12527/18119267_10155363709609924_958378663814436125_n.jpg HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:59 GMT
Accept-Ranges: bytes
Content-Length: 5587
Vary: User-Agent
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/16807461_10211764664812826_5680036435541740063_n.jpg
82.221.131.142200 OK 6.4 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/16807461_10211764664812826_5680036435541740063_n.jpg
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x160, components 3\012- data
Hash 229b401f44d7cddc337315f1a58ac019
28ccd2bd75d5118f4fff9e0bc03329215311ecee
07a4c21d8817f30f39265641c865833bec7a7aa3f9a94a9b40577f351ba07ec1
GET /za/bitcoin/cyr/162prplr-12527/16807461_10211764664812826_5680036435541740063_n.jpg HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:54 GMT
Accept-Ranges: bytes
Content-Length: 6357
Vary: User-Agent
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/16406523_1345882538809440_8201065904356080273_n.jpg
82.221.131.142200 OK 4.4 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/16406523_1345882538809440_8201065904356080273_n.jpg
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x160, components 3\012- data
Hash 7e609994d5671d7c96d2f35a2cc2b060
6f0841566ee90310222b613a0778b3495c3bbf01
0080c6a3c7ae014102268cbe27c5a9c230d3b59b665e53637473f214ab4c61e3
GET /za/bitcoin/cyr/162prplr-12527/16406523_1345882538809440_8201065904356080273_n.jpg HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:59 GMT
Accept-Ranges: bytes
Content-Length: 4436
Vary: User-Agent
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/14222287_1065953200155875_6514575430883754204_n.jpg
82.221.131.142200 OK 3.5 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/14222287_1065953200155875_6514575430883754204_n.jpg
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x160, components 3\012- data
Hash 6833fc5489e44a7eeebe3a773c756be6
b67f3bda4986b6bea706649511ea8641811fd728
2133dfd0e49c565f4154796def6212690d25226979cf6fe8fb9da943f7148db9
GET /za/bitcoin/cyr/162prplr-12527/14222287_1065953200155875_6514575430883754204_n.jpg HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:43 GMT
Accept-Ranges: bytes
Content-Length: 3519
Vary: User-Agent
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/26254_100854763287133_3441493_n.jpg
82.221.131.142200 OK 8.1 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/26254_100854763287133_3441493_n.jpg
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x160, components 3\012- data
Hash d1935983c52a2ad42babca818cbd129e
7f6641e7635e042c90b58ed27512260ad3c9d1d0
ec245e73a504f55c92bd7742caf23361fdb4991bc9618bb6a04a19aa2e9d2637
GET /za/bitcoin/cyr/162prplr-12527/26254_100854763287133_3441493_n.jpg HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:50 GMT
Accept-Ranges: bytes
Content-Length: 8135
Vary: User-Agent
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/540562_430147157013818_32273000_n.jpg
82.221.131.142200 OK 6.2 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/540562_430147157013818_32273000_n.jpg
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x160, components 3\012- data
Hash a0b7ac9f27da66b55db3be03dc890b65
4dbd2993ebf32ffbb831d16078006394f0a82d56
4c8309fd3817b1d1372b1abcd36591f30d405e3e66105ca19073b0993e4eca57
GET /za/bitcoin/cyr/162prplr-12527/540562_430147157013818_32273000_n.jpg HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:42 GMT
Accept-Ranges: bytes
Content-Length: 6183
Vary: User-Agent
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/12088299_1047136358664501_9121132063381418917_n.jpg
82.221.131.142200 OK 4.7 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/12088299_1047136358664501_9121132063381418917_n.jpg
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x160, components 3\012- data
Hash e18c080bc9e7b3330999800c179afd90
5fc40b30d4420ee62f08d29a3854c449fb9059f8
506ec08c6c59a93b5755f8f14882444f31047de2d87bbe056c6326cc37b3a7ce
GET /za/bitcoin/cyr/162prplr-12527/12088299_1047136358664501_9121132063381418917_n.jpg HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:42 GMT
Accept-Ranges: bytes
Content-Length: 4749
Vary: User-Agent
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 08 Dec 2022 10:07:58 GMT
age: 2793
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/18222397_10156169859605550_2186676355225458227_n.jpg
82.221.131.142200 OK 6.4 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/18222397_10156169859605550_2186676355225458227_n.jpg
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x160, components 3\012- data
Hash ba8c524b7280b7df1248cacdc8be2768
905d7f734ac10d4a7005f7bde6d1a48e7a2c5d1b
f6215e56dc9647487fc504c95bec6c653f7f2fa614c4c62149e88d5e2d606110
GET /za/bitcoin/cyr/162prplr-12527/18222397_10156169859605550_2186676355225458227_n.jpg HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:58 GMT
Accept-Ranges: bytes
Content-Length: 6417
Vary: User-Agent
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/1451348_572591889498316_1597699771_n.jpg
82.221.131.142200 OK 3.8 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/1451348_572591889498316_1597699771_n.jpg
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 158x158, components 3\012- data
Hash b17b1aeae3fb4a5d01736bbeae8278eb
edd73e2d90d48b6317c97b4be80890c980885255
bee6a9ec651e2230bb31b79119baf995b5459e7338b678b6a8dcf68ad3531e1f
GET /za/bitcoin/cyr/162prplr-12527/1451348_572591889498316_1597699771_n.jpg HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:43 GMT
Accept-Ranges: bytes
Content-Length: 3802
Vary: User-Agent
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/12651359_1104018629642643_1802809274505192979_n.jpg
82.221.131.142200 OK 4.8 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/12651359_1104018629642643_1802809274505192979_n.jpg
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x160, components 3\012- data
Hash 217f3112be1a91e6d5d80a7a062ae28a
0c95f8e03b790c09484cd440a30897a897c6c046
2015042e2d956b85963e119efb4f6dac6da3de64ec61966d9713b80a60c46afb
GET /za/bitcoin/cyr/162prplr-12527/12651359_1104018629642643_1802809274505192979_n.jpg HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:42 GMT
Accept-Ranges: bytes
Content-Length: 4814
Vary: User-Agent
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/13417709_10156999054495156_89965319140675792_n.jpg
82.221.131.142200 OK 3.8 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/13417709_10156999054495156_89965319140675792_n.jpg
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x160, components 3\012- data
Hash 727a837339440dd6b056cf4c1c3e77f2
b0d5632402c513a4dbb7ea13dfbb737576954ba2
973373859d28d6c3abc165ba2f901db2408c4f418064e73d04c998ad7ce504dc
GET /za/bitcoin/cyr/162prplr-12527/13417709_10156999054495156_89965319140675792_n.jpg HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:41 GMT
Accept-Ranges: bytes
Content-Length: 3842
Vary: User-Agent
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/15741058_1328102313929660_9039374177321233925_n.jpg
82.221.131.142200 OK 5.4 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/15741058_1328102313929660_9039374177321233925_n.jpg
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x160, components 3\012- data
Hash 4ad2feaca48afbc6c2b350b4abcd9dbc
dc0ca059529526d7b9a60f15a0c12d97abf4bdbd
ee56c1d14f974a9889e6f4313cff23788d53bbbab9d2a570321eb3f82240d747
GET /za/bitcoin/cyr/162prplr-12527/15741058_1328102313929660_9039374177321233925_n.jpg HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:49 GMT
Accept-Ranges: bytes
Content-Length: 5397
Vary: User-Agent
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/12669670_10207353042137627_8224718532595991020_n.jpg
82.221.131.142200 OK 6.9 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/12669670_10207353042137627_8224718532595991020_n.jpg
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x160, components 3\012- data
Hash a89e2ece444f97f4461403b0145d0569
b9d20825d0955a3336cd83d83296ac609fbf85ab
dbe45ee114d8d35ffe978af646ef381d959d1b2f664e6482d0a4ce77e82aab52
GET /za/bitcoin/cyr/162prplr-12527/12669670_10207353042137627_8224718532595991020_n.jpg HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:44 GMT
Accept-Ranges: bytes
Content-Length: 6888
Vary: User-Agent
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/16174412_10211484033439027_3968979027246986980_n.jpg
82.221.131.142200 OK 7.5 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/16174412_10211484033439027_3968979027246986980_n.jpg
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x160, components 3\012- data
Hash b8fa27fcd650d17192945506898a1da9
bf6620b2b1a5e02c354b2c950d98fe7187ae8dfc
972060c8d603cc5f0a10245ab0c6b0791987f932274a6508f47062b8a04d3deb
GET /za/bitcoin/cyr/162prplr-12527/16174412_10211484033439027_3968979027246986980_n.jpg HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:55 GMT
Accept-Ranges: bytes
Content-Length: 7522
Vary: User-Agent
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/pravfear.jpg
82.221.131.142200 OK 67 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/pravfear.jpg
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1264x570, components 3\012- data
Hash eff971694cca8b376a14909aa297911c
d2c1eaba297fb9ca6ff4417d13f0d0872c84fcb4
7df1c6e98cb1a75c7c9e67d2c9fe21023e84650ec3af00c13e41fd06307e016a
GET /za/bitcoin/cyr/162prplr-12527/pravfear.jpg HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:56 GMT
Accept-Ranges: bytes
Content-Length: 66676
Vary: User-Agent
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/pravmots.jpg
82.221.131.142200 OK 107 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/pravmots.jpg
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x628, components 3\012- data
Size 107 kB (106785 bytes)
Hash 7ef2971ee1fbc4392eb4e86f835d3315
597d4f87f427d44b7da95e16d8892e12ddfcdd3d
628fbf68936817fb542f66ca3205ea8ecfff433d0b6f98b0135dd8c070c7fc0e
GET /za/bitcoin/cyr/162prplr-12527/pravmots.jpg HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:47 GMT
Accept-Ranges: bytes
Content-Length: 106785
Vary: User-Agent
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
fontawesomes.com/ws
165.22.207.20101 Switching Protocols 0 B IP 165.22.207.20:0
ASN #14061 DIGITALOCEAN-ASN
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws HTTP/1.1
Host: fontawesomes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: http://marketinvestingns.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: uCcQ+py7jzHbgZJiRLYbcw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx/1.19.9
Date: Thu, 08 Dec 2022 10:54:31 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: PCtdiL/SW6+v4IzPkdtKzwBxOiY=
Sec-WebSocket-Extensions: permessage-deflate; server_no_context_takeover; client_no_context_takeover; server_max_window_bits=10
Strict-Transport-Security: max-age=31536000
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/icon-tw.png
82.221.131.142200 OK 9.9 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/icon-tw.png
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type PNG image data, 225 x 225, 8-bit/color RGBA, non-interlaced\012- data
Hash 4de1145abebca11cf45e02daf26335e3
a7033ce4bb5c4fe5361ecb0d7e21afa0d1a8723c
0a859b3b0928f6ebaf294cf8dcb2b266c6d33f796c4f273e3bd22b3a06d6d568
GET /za/bitcoin/cyr/162prplr-12527/icon-tw.png HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/style.css
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:55 GMT
Accept-Ranges: bytes
Content-Length: 9858
Vary: User-Agent
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/icon-gr.png
82.221.131.142200 OK 7.7 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/icon-gr.png
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type PNG image data, 225 x 225, 8-bit/color RGBA, non-interlaced\012- data
Hash fd96eeda1cca169005ca913821b21f4b
c6d42373618a1edc0ff0d1557252fdfaa648a682
56f763993aceac6411a239a79452603238191b23480dc42a633711e37df52a75
GET /za/bitcoin/cyr/162prplr-12527/icon-gr.png HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/style.css
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:53 GMT
Accept-Ranges: bytes
Content-Length: 7687
Vary: User-Agent
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/icon-mirror.svg
82.221.131.142200 OK 390 B URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/icon-mirror.svg
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash bea8070a5c2cdc990bf9936da7b761b3
a0eb5a6e97b1bb74ec87f3d2e8c61eb0ed5907d0
01a303324be35479e35e14f337bc940874a720e167b7e8a8ab81caadbd2b3ee7
Analyzer Verdict Alert fortinet Phishing
GET /za/bitcoin/cyr/162prplr-12527/icon-mirror.svg HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/style.css
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:51 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 390
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/svg+xml
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/icon-fb.png
82.221.131.142200 OK 64 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/icon-fb.png
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type PNG image data, 640 x 640, 8-bit/color RGBA, non-interlaced\012- data
Hash bcaf4a9943aaa61864be20feaaa15063
5440b00d58f6632d693cb79c7ff375f2ef50d059
5aecb04c5df89de5ea63b255877a55b3acbe5d507f23d9486c1e12b9eb76ae7f
GET /za/bitcoin/cyr/162prplr-12527/icon-fb.png HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/style.css
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:53 GMT
Accept-Ranges: bytes
Content-Length: 64501
Vary: User-Agent
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/pris.jpg
82.221.131.142200 OK 78 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/pris.jpg
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x628, components 3\012- data
Hash 7b5f14856c5d233f73291671cee3b658
cb5ed4476727e5a0eba92ad7ec3ccb1b426a8688
60431c24fad821ccfef39b19da565bed7637cec0cd8ce0793d9d94a350ad06ac
GET /za/bitcoin/cyr/162prplr-12527/pris.jpg HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:46 GMT
Accept-Ranges: bytes
Content-Length: 78279
Vary: User-Agent
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/icon-me.png
82.221.131.142200 OK 19 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/icon-me.png
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type PNG image data, 225 x 225, 8-bit/color RGBA, non-interlaced\012- data
Hash d51ccdd28453b81d526e557f227fdfa7
83da6efbf4e996ca16c53462833c314acec3517e
4ad8188d9394ae3c1f15aa6ec713165c03111844708d4327a0ae877a3adcb2e0
GET /za/bitcoin/cyr/162prplr-12527/icon-me.png HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/style.css
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:53 GMT
Accept-Ranges: bytes
Content-Length: 19410
Vary: User-Agent
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/index_files/refGo3_narrow.css
82.221.131.142200 OK 309 B URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/index_files/refGo3_narrow.css
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
Hash 7c5a79909dbfdb36e3a30981329e33ed
9869ebcbad4d0c83c1ef9f9de91647dae335f1cc
f73b3cc74e3014fa55c4c01ebc43d95cb353215e9d6c4a8fa570c27dd8b688ec
GET /za/bitcoin/cyr/162prplr-12527/index_files/refGo3_narrow.css HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:17:03 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 309
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/submit2.png
82.221.131.142200 OK 27 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/submit2.png
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type PNG image data, 660 x 358, 8-bit colormap, non-interlaced\012- data
Hash 3bbb057313e93df6b5ef97d298b46b01
69e09a4351fc71f1963d0b68da6322d09a5dfe16
79f59204e875ae3362a8debcb65b334e11d6d4a5e6f15b79c11e8abe2614230a
GET /za/bitcoin/cyr/162prplr-12527/submit2.png HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:57 GMT
Accept-Ranges: bytes
Content-Length: 27213
Vary: User-Agent
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/submit3.png
82.221.131.142200 OK 26 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/submit3.png
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type PNG image data, 660 x 358, 8-bit colormap, non-interlaced\012- data
Hash dc0040a7ec358cf6f394c2e80655542e
102d95eab5354dd72758168a6603acb671ced7ca
bcf2290b5ab360ba1a13ac68f8e5486cd1a3352f1309aaf1a0b5178ce8f5bb2a
GET /za/bitcoin/cyr/162prplr-12527/submit3.png HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:48 GMT
Accept-Ranges: bytes
Content-Length: 26012
Vary: User-Agent
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/trust-project.svg
82.221.131.142200 OK 2.4 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/trust-project.svg
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (6465), with no line terminators
Hash 943c78e147abe80be982609b8dcb98e2
8fc6f7815464a98e5942e3bf53b01b6f6aa9ef5b
8c7fde631ccd74b475de09abf6ec5927f61733cfa3016d846796a0acff108cc2
Analyzer Verdict Alert fortinet Phishing
GET /za/bitcoin/cyr/162prplr-12527/trust-project.svg HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/style.css
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2417
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/svg+xml
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd55f4aaaab6ec40bc7dc10252cd819a
a72523f60be265a391fa9edc43e0a93418ad1fd0
bae354b3db14f4fd115311a0c412c9b5e436dd9e0a151afd8b9c18831dd8c2dd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1933
Cache-Control: max-age=168274
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 10:54:31 GMT
Etag: "6391a92c-1d7"
Expires: Sat, 10 Dec 2022 09:39:05 GMT
Last-Modified: Thu, 08 Dec 2022 09:06:52 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/ipso.svg
82.221.131.142200 OK 1.7 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/ipso.svg
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (4446), with no line terminators
Hash c98fdd9a0d5bf0a2b10e37719fe99d51
f815a3497156b961a18d749008a31c6ef4627edb
7820137f8f89b30b902fd3bdd7cc08861aa729b5775cd686f9da936fd1ee82ca
Analyzer Verdict Alert fortinet Phishing
GET /za/bitcoin/cyr/162prplr-12527/ipso.svg HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/style.css
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:44 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1713
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/svg+xml
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/bankofza.jpg
82.221.131.142200 OK 69 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/bankofza.jpg
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x628, components 3\012- data
Hash 59741b83735cd706b1c7701f060ecd79
17f6ea32c374e5ad9b8d07101186d7ab2ab109ed
d9bab9668324a7d544f290dcbfb26bcd5e92f50f292dc5c5c3fcb4bf406547cf
GET /za/bitcoin/cyr/162prplr-12527/bankofza.jpg HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:51 GMT
Accept-Ranges: bytes
Content-Length: 68978
Vary: User-Agent
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/submit1.png
82.221.131.142200 OK 761 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/submit1.png
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type PNG image data, 1390 x 643, 8-bit/color RGBA, non-interlaced\012- data
Size 761 kB (761389 bytes)
Hash 477e3f059bacddc26fa1abeeb10ba07c
550417312210ba09fd7bacc971372a4af462cae9
8fc6c840a50490c033d6a03d459f5b82b3094959a0a9c9655d8bb9bfd3c0c092
GET /za/bitcoin/cyr/162prplr-12527/submit1.png HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:56 GMT
Accept-Ranges: bytes
Content-Length: 761389
Vary: User-Agent
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/sidebar.png
82.221.131.142200 OK 543 kB URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/sidebar.png
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type PNG image data, 633 x 4819, 8-bit colormap, non-interlaced\012- data
Size 543 kB (542748 bytes)
Hash 47651df13e8752cd9cba4b3cc323dd55
c07cb279e080152f66802202aa6d3482e9ef5b58
2d145a53f73073fdb9b396a57633b48a0048d4b30a70de53f19432eff47413a2
GET /za/bitcoin/cyr/162prplr-12527/sidebar.png HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:57 GMT
Accept-Ranges: bytes
Content-Length: 542748
Vary: User-Agent
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/favicon.ico
82.221.131.142200 OK 945 B URL HTTP/1.1 marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/favicon.ico
IP 82.221.131.142:0
ASN #50613 Advania Island ehf
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 1f3de316e99d8a28f092cd6dd2da9ca0
211a5b70f5fc786bce88b3bc09e8e8389a477343
772e33c18f28288db73a1a4fa43619d160e36ceb6584557673f186423fc073d1
GET /za/bitcoin/cyr/162prplr-12527/favicon.ico HTTP/1.1
Host: marketinvestingns.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://marketinvestingns.com/za/bitcoin/cyr/162prplr-12527/
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 10:54:31 GMT
Server: Apache
Last-Modified: Mon, 05 Dec 2022 21:16:58 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 945
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/x-icon
push.services.mozilla.com/
52.37.79.227101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.37.79.227:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JhCnkmLbM47jtD0N2J8iPQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: yohHoLGJd5ta6Wu1ymGkGTNBM88=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ee315a2ad007c9bc7338d7022b94e957
31cd8322b5f51ab62fef7fbccfd7ee350a6abddf
f4ecaa52a55f270f47d0d0e15b510915e42c1122e2b3ccc74896562321c6bdcd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F4ECAA52A55F270F47D0D0E15B510915E42C1122E2B3CCC74896562321C6BDCD"
Last-Modified: Thu, 08 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21592
Expires: Thu, 08 Dec 2022 16:54:24 GMT
Date: Thu, 08 Dec 2022 10:54:32 GMT
Connection: keep-alive
linktrkprplr.com/landing?trvid=12527&trvrf=&lpid=8117¶llel=0
3.64.104.69200 OK 70 B URL HTTP/2 linktrkprplr.com/landing?trvid=12527&trvrf=&lpid=8117¶llel=0
IP 3.64.104.69:0
File type JSON data\012- , ASCII text
Hash 09ebd554da6c0a4216d3c9408313c2e1
7f2bf8cab5e5ce654f206da07ba6511f9d35c435
b5cc01dd2718b335b8ca7d042db4ebc106cac72729961938d863c887dec618d1
GET /landing?trvid=12527&trvrf=&lpid=8117¶llel=0 HTTP/1.1
Host: linktrkprplr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://marketinvestingns.com
Connection: keep-alive
Referer: http://marketinvestingns.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 10:54:32 GMT
content-type: text/plain; charset=utf-8
content-length: 70
access-control-allow-origin: *
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
expires: Thu, 01 Jan 1970 00:00:00 UTC
pragma: no-cache
set-cookie: ClickDataNG=H4sIAAAAAAAA_2xUX2_jNgz_KgafNsCzJc9NWh2MQy_DhgHXdMB1u5e9KDKTCFEkg5Ld5nz97oNs5Q-GezHFPyYp_n7UCAOS186CAF6wgkEO4dQhCJaD7zcv0_k-B-XsgBSwBbGVxmMOymh1-LMFAYr3r4d7JKXUHnJoZUAQfLFk9cPiflnloOSxk3pnYzSv7qplDtqv_nq85CIXZNBuCqjqJc-BeoNRYzkQtppQhScMe9eCWObgXU9q8teLHIy0rba7qN5zvrwY_iYDAvYhdF6U5VHSAYO2A_qg7c76Qrlj-U2WGx2U07ZUJyr5ouqoM_TL1Gb5scVBK2zGWcbJvP_bM1YtNiRte7ZPSnIcXYvm7JiUyx_u1SM1Yzoks_PN6HxSlOttoFMzpkMya981o_bdOUoS6ZhJOWtvepqnYuURmzGOXJ97UrptRt9vrgbejEqHc35VXStCDm67RUrDj1dT-6RMjnmqECnhAwhWsHpZR5QGtP1MnE6eXB-uv6x6IrTqNP_Xk76BxWh7CHSYpj4hksD7GGjQbTPhMHcZaKBtM59Np9smgj2rnSRpDJom8ld3j21L6D0IeODFAyvqquB39a1rkVrxSI87tAEEPLlv2hhZ3hUs--mrtq179dn6JeOsYB-yr9ou6g_ZW_zQIDi7K9jP2R-oDq6sGGeMM579rgm37q2cvBBnskVCAgE_JF_clYkmL-eNc7HnVDsC4f-5bmdMmKgDAlKpS4pPkYLzpWbDU6TerWEtj5iAm-vBSm4Mlr99-Rwn4zsQ8Mnot-yLM31cRj9hPLECBKyfpwvt5m7Wz9-_P3vjslUMOMVIHU43DogsILRhFZ-Jua4jvdP2c3c2_e_dCCStl2p-BzwI2xuTg-p9cEcQY-JbTDSwJHmSVZK_JllH-f7-XwAAAP__O4m63t4EAAA=; Expires=Sat, 07 Jan 2023 10:54:32 GMT; SameSite=None; Secure
ClickDataNgFall=H4sIAAAAAAAA_2xUX2_jNgz_KgafNsCzJc9NWh2MQy_DhgHXdMB1u5e9KDKTCFEkg5Ld5nz97oNs5Q-GezHFPyYp_n7UCAOS186CAF6wgkEO4dQhCJaD7zcv0_k-B-XsgBSwBbGVxmMOymh1-LMFAYr3r4d7JKXUHnJoZUAQfLFk9cPiflnloOSxk3pnYzSv7qplDtqv_nq85CIXZNBuCqjqJc-BeoNRYzkQtppQhScMe9eCWObgXU9q8teLHIy0rba7qN5zvrwY_iYDAvYhdF6U5VHSAYO2A_qg7c76Qrlj-U2WGx2U07ZUJyr5ouqoM_TL1Gb5scVBK2zGWcbJvP_bM1YtNiRte7ZPSnIcXYvm7JiUyx_u1SM1Yzoks_PN6HxSlOttoFMzpkMya981o_bdOUoS6ZhJOWtvepqnYuURmzGOXJ97UrptRt9vrgbejEqHc35VXStCDm67RUrDj1dT-6RMjnmqECnhAwhWsHpZR5QGtP1MnE6eXB-uv6x6IrTqNP_Xk76BxWh7CHSYpj4hksD7GGjQbTPhMHcZaKBtM59Np9smgj2rnSRpDJom8ld3j21L6D0IeODFAyvqquB39a1rkVrxSI87tAEEPLlv2hhZ3hUs--mrtq179dn6JeOsYB-yr9ou6g_ZW_zQIDi7K9jP2R-oDq6sGGeMM579rgm37q2cvBBnskVCAgE_JF_clYkmL-eNc7HnVDsC4f-5bmdMmKgDAlKpS4pPkYLzpWbDU6TerWEtj5iAm-vBSm4Mlr99-Rwn4zsQ8Mnot-yLM31cRj9hPLECBKyfpwvt5m7Wz9-_P3vjslUMOMVIHU43DogsILRhFZ-Jua4jvdP2c3c2_e_dCCStl2p-BzwI2xuTg-p9cEcQY-JbTDSwJHmSVZK_JllH-f7-XwAAAP__O4m63t4EAAA=; Expires=Sat, 07 Jan 2023 10:54:32 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11695
Expires: Thu, 08 Dec 2022 14:09:28 GMT
Date: Thu, 08 Dec 2022 10:54:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11695
Expires: Thu, 08 Dec 2022 14:09:28 GMT
Date: Thu, 08 Dec 2022 10:54:33 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19ffa93b-2002-4f40-ab8b-aa163e9b5939.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19ffa93b-2002-4f40-ab8b-aa163e9b5939.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 535710165275856757bd7d1689f79de3
d51162b7fcba50022482b7130a556f3a7dfe822f
c93e2df13b78cd4b718eb4fe3fe70a9d6d12fd0a0d7f505219ec0d5e6a70653c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F19ffa93b-2002-4f40-ab8b-aa163e9b5939.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6186
x-amzn-requestid: 53d1d373-ff6c-4c59-bdeb-fff592bca586
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUsyGOEIAMFwfA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e67eb-0156077b52dc07fb124c087b;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:51:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KkP8o_5GoqAukEAUkPrvsHE0v_36vO0wI7_97kvnUkqYc4ziC7UPpw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 16:47:32 GMT
age: 65221
etag: "d51162b7fcba50022482b7130a556f3a7dfe822f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b87d6543345f73653ed4a49b37d7c959
c4f26846b8b72293368ff16915d49297cf12bbb9
aee6aa42e4b5b83b81f74801ff8f0039fc6d38036f42ee81875813c856cf5eef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8659
x-amzn-requestid: 6f420d07-65d5-4bb2-9f1f-e56025de497b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFSYFArIAMF46w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c0f-0a295e5c48228d5806b4f107;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TSh1BNzzIPhWCfYEiqvQJckSPAyhHobe-HK6msEVeEJ1ruX-_rMSSA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:33:19 GMT
age: 40874
etag: "c4f26846b8b72293368ff16915d49297cf12bbb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24d89b69ba37bf23c5d576aff4063caf
3d46a21b4da571d7e4962e335c18a28ca5f81ecf
09b52cdab278805c6e7282f469a02768ee62fc9ef09a6623a337e3d3aaa446fd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7268
x-amzn-requestid: ae5c231c-b1be-498a-a242-e8d641f3fe8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFDgEzUoAMFgyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911baf-10f06dc37cac69631c823fd9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:03:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QSv756DvAzOQnKae5wVg75wrQS6oDGPkfIZka86FNQ2vizBnZ7sIDQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:12:45 GMT
age: 42108
etag: "3d46a21b4da571d7e4962e335c18a28ca5f81ecf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c408efaa98ac2ce63bb1618368d10c15
a51bbb49ebd862d04eaee465d0a35b22dcd21391
077eb8c8739f527828c71c25a1c3aaae46afead3aac093ec11a6d5488ef2f0ec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9596
x-amzn-requestid: e5e6ceb2-5bad-4146-a9de-92a859716029
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy3_qH63oAMFfLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639106ca-678bed1b7729b8aa2645688d;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:34:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FsbiyZG0110CEANduIIWuLcxFOxfrV0YPvOSy-ScXFIX1qM6qaOdCg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:21:22 GMT
age: 45191
etag: "a51bbb49ebd862d04eaee465d0a35b22dcd21391"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3236488e-3e39-44b6-b864-0f7ede8ee3f5.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3236488e-3e39-44b6-b864-0f7ede8ee3f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3cbac0c7e45d3f33c38dbf3af4de05ba
e9106fec14ddda290951c61eda64a69ada9a244a
98d3785eb167ea6bbba3782ab3cfd8cc9c7715f493265ac6d59494c00d3b002e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3236488e-3e39-44b6-b864-0f7ede8ee3f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9376
x-amzn-requestid: bf2f33a6-7f13-4f5b-ba9c-da33282135b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctERHFRSoAMFgYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb406-121af6ba1b7b6a3066ffa103;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:16:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: yTLFIBUWHjudn2h6VKM79RUnXfuUTmQBkYSCFrRuY7_biVW5bEKZfA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 17:39:05 GMT
age: 62128
etag: "e9106fec14ddda290951c61eda64a69ada9a244a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F377ab47f-a48d-4112-a562-b49a358636f1.png
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F377ab47f-a48d-4112-a562-b49a358636f1.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2f5ce4070e5050733be6bded399afe53
77cf1dd30e86f5568a8e64cb42f536cf2af9301c
7fe19657e1add41e913e9a326023ff484180ca17615175ddc5d2ab57217566bc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F377ab47f-a48d-4112-a562-b49a358636f1.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4538
x-amzn-requestid: 143f359f-c0fd-4d32-8de5-cc2c2804bb39
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy4gIHzXoAMFqmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6391079a-27db2e3c6de7216e3c17caea;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:37:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CTvoYad2nNPubKimSZrkJXGTDWZK6u3fTli1YnBgrXk7WPAtmvO2rA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:04:30 GMT
age: 46203
etag: "77cf1dd30e86f5568a8e64cb42f536cf2af9301c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2