Report - www.hcn89q.life/15GKNV?/

Report Overview

URL

www.hcn89q.life/15GKNV?/
IP

20.113.187.208

ASN

#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Submitted

2023-05-24T10:16:58Z

Access

public
Tags

None
urlquery detections

No alerts detected

Detections

urlquery

0
Network Intrusion Detection

2
Threat Detection Systems

1

Domain Summary

Domain	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.sectigo.com (1)	487	2019-11-29 12:50:24	2023-05-23 18:47:09	330	964	104.18.14.101
ocsp.pki.goog (2)	175	2018-07-01 08:43:07	2023-05-23 18:12:06	666	1398	142.250.74.3
www.hcn89q.life (1)	unknown	No data	No data	480	986	20.113.187.208
ocsp.r2m01.amazontrust.com (2)	unknown	2022-10-12 22:43:53	2023-05-23 21:59:32	680	1888	54.230.80.227
w26as.s3.ca-central-1.amazonaws.com (31)	unknown	2023-05-24 12:16:23	2023-05-24 12:16:23	14973	730572	16.12.5.58
cdnjs.cloudflare.com (1)	235	2015-04-17 22:46:33	2023-05-23 18:53:39	453	27707	104.17.24.14
www.googletagmanager.com (1)	75	2013-05-22 04:07:37	2023-05-23 18:24:36	446	47291	142.250.74.40
maxcdn.bootstrapcdn.com (2)	724	2014-06-18 02:37:31	2023-05-23 18:17:52	1061	95908	104.18.10.207
cdn.jsdelivr.net (1)	439	2012-09-30 02:15:09	2023-05-23 18:13:59	525	161230	185.244.209.62

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-05-24T10:16:36Z	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .life TLD
2023-05-24T10:16:36Z	medium	Client IP	Internal IP	ET INFO Observed DNS Query to .life TLD

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-05-24	medium	www.hcn89q.life/15GKNV?/

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

HTTP Transactions (42)

URL IP Response Size

www.hcn89q.life/15GKNV?/

20.113.187.208

302 Found

152

URL User Request GET HTTP/1.1

www.hcn89q.life/15GKNV?/
IP

20.113.187.208:443
ASN

#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate

IssuerLet's Encrypt

Subjectwww.hcn89q.life

Fingerprint17:3F:AA:D4:E2:17:CD:D3:43:4F:B9:5F:23:6F:D3:60:28:B4:D7:8A

ValidityFri, 19 May 2023 06:38:32 GMT - Thu, 17 Aug 2023 06:38:31 GMT

Magic

HTML document, ASCII text, with no line terminators

Size

152
Hash

d0287f2020d29571ccc1cf3293f4b671

64495920628f74dcbac6f79308009916faef3924

296fe4238b94ab2315475133dc47949e6b3e7b15b91e35a0a93f5a68cb93b68e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

                                        GET /15GKNV?/ HTTP/1.1
Host: www.hcn89q.life
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 302 Found
Server: nginx/1.23.0
Date: Wed, 24 May 2023 10:16:37 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 152
Connection: keep-alive
X-Powered-By: Express
Set-Cookie: 15GKNVo=20230524131684923789369; domain=.www.hcn89q.life; path=/;expires=Thu, 25 May 2023 10:16:37 GMT;  httpOnly=true;SameSite=None; Secure;
_pc_lc_id=15GKNV; domain=.www.hcn89q.life; path=/;expires=Thu, 25 May 2023 10:16:37 GMT;  httpOnly=true;SameSite=None; Secure;
peerclickcid=749601c176aeadf4e668a9b84eed5e51-16383-0524; domain=.www.hcn89q.life; path=/;expires=Thu, 25 May 2023 10:16:37 GMT;  httpOnly=true;SameSite=None; Secure;
_norg=1; domain=.www.hcn89q.life; path=/;expires=Thu, 25 May 2023 10:16:37 GMT;  httpOnly=true;SameSite=None; Secure;
Location: https://w26as.s3.ca-central-1.amazonaws.com/index.html
Vary: Accept

ocsp.r2m01.amazontrust.com/

54.230.80.227

471

URL

ocsp.r2m01.amazontrust.com/
IP

54.230.80.227:0
ASN

#16509 AMAZON-02

Magic

data

Size

471
Hash

33e797c45aa9cb6fef8a5413797bc803

ddacf720ae653c9d80fad21480621d5dec07fd7a

837c27ddfa242dba25f2fc83b373510d3ddf54de58fd9f303a5d677f846dcf1e

HTTP Headers

                                        POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=7200'
Date: Wed, 24 May 2023 10:16:37 GMT
Last-Modified: Wed, 24 May 2023 08:42:13 GMT
Server: ECAcc (bsa/EACA)
X-Cache: Miss from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: MqV0F6lguUgR_oP6nTnjNc9AAxBmW-1K0PgwsSMsKzlLVz_Ab2eeAw==
Age: 5664

w26as.s3.ca-central-1.amazonaws.com/index.html

16.12.5.58

200 OK

87728

URL User Request GET HTTP/1.1

w26as.s3.ca-central-1.amazonaws.com/index.html
IP

16.12.5.58:443
ASN

#16509 AMAZON-02

Certificate

IssuerAmazon

Subject*.s3.ca-central-1.amazonaws.com

Fingerprint20:67:08:07:04:96:D5:35:5E:95:5D:58:21:B9:7F:90:A0:67:94:7E

ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 15 Jan 2024 23:59:59 GMT

Magic

HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators

Size

87728
Hash

3af5d7da7b771e92a9574a574144ce2f

656ecc17beb16cfe9c075b19a8f2dd5dcbaf2d15

77204b02053b2428ed315ea49974e694352988aedecb49dba6051f7604fc90db

HTTP Headers

                                        GET /index.html HTTP/1.1
Host: w26as.s3.ca-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
x-amz-id-2: 9VFpTkjo+yZO9ts+Yvcr9vCGxXYcP5GH73xrQ5vt5E8Vzw1PFd1Om2xC4Os6hnib2BsYzGRN3JM=
x-amz-request-id: KXSCPS5EEZJYA1X7
Date: Wed, 24 May 2023 10:16:38 GMT
Last-Modified: Wed, 24 May 2023 06:54:06 GMT
ETag: "3af5d7da7b771e92a9574a574144ce2f"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/html
Server: AmazonS3
Content-Length: 87728

cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js

104.17.24.14

200 OK

26660

URL GET HTTP/2

cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js
IP

104.17.24.14:443
ASN

#13335 CLOUDFLARENET

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerCloudflare, Inc.

Subjectsni.cloudflaressl.com

FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F

ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT

Magic

ASCII text, with very long lines (32180)

Size

26660
Hash

7f9fb969ce353c5d77707836391eb28d

62c4042e9ebc691a5372d653b424512a561d1670

2051d61446d4dbffb03727031022a08c84528ab44d203a7669c101e5fbdd5515

HTTP Headers

                                        GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
date: Wed, 24 May 2023 10:16:38 GMT
content-type: application/javascript; charset=utf-8
content-length: 26660
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-14983"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3590722
expires: Mon, 13 May 2024 10:16:38 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bWeXCLCDB8DjrTLWLlVrap4xadkJDpaKkTAnHnm%2FZGWmpFWNrNOj3vWcwolop%2F%2B%2FDHQCN9kX7w%2Bitg5RkgxL%2B4bdYP9UWElhrminfP16qTlp7hzh3DaFO4XOX5Wi3OcbKcJaIL3W"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7cc4c8c7bb86b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.14.101

472

URL

ocsp.sectigo.com/
IP

104.18.14.101:0
ASN

#13335 CLOUDFLARENET

Magic

data

Size

472
Hash

46a4395b9cb8fbea7086e25038bd6413

cd5d7a34ba05963620a18c2ce913be4b43601418

59d00f83dd2fd38f41d7ad837de691df733ef1934e272de5d8a285b37a528597

HTTP Headers

                                        POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Date: Wed, 24 May 2023 10:16:38 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 22 May 2023 23:50:03 GMT
Expires: Mon, 29 May 2023 23:50:02 GMT
Etag: "cd5d7a34ba05963620a18c2ce913be4b43601418"
Cache-Control: max-age=480423,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7cc4c8c7daa3b50c-OSL

w26as.s3.ca-central-1.amazonaws.com/5f205bb74a5eb_v.css

16.12.5.58

200 OK

24880

URL GET HTTP/1.1

w26as.s3.ca-central-1.amazonaws.com/5f205bb74a5eb_v.css
IP

16.12.5.58:443
ASN

#16509 AMAZON-02

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerAmazon

Subject*.s3.ca-central-1.amazonaws.com

Fingerprint20:67:08:07:04:96:D5:35:5E:95:5D:58:21:B9:7F:90:A0:67:94:7E

ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 15 Jan 2024 23:59:59 GMT

Magic

ASCII text, with CRLF line terminators

Size

24880
Hash

d340826f7cf606785919322c20a58ecc

6eeec7c441767592091175792d208ce4a7d50d59

32f25dcaa4b59107836e2c7ab1249b665c8b6d950b554b1f4525392cb38ed14c

HTTP Headers

                                        GET /5f205bb74a5eb_v.css HTTP/1.1
Host: w26as.s3.ca-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
x-amz-id-2: mqTs8R7UZ49Jz4kYWR+PtWZLoUR6icI4ThT6eWD3kk/Ebz5DKE4OvPO9MGzME6HX56AxTtjDsGQ=
x-amz-request-id: QAX9D165DT48P6KP
Date: Wed, 24 May 2023 10:16:39 GMT
Last-Modified: Wed, 24 May 2023 06:54:06 GMT
ETag: "d340826f7cf606785919322c20a58ecc"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 24880

ocsp.pki.goog/gts1c3

142.250.74.3

471

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.3:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

c74db17f871249d3df054a36ab699f09

2b363e108eb091a4d1c2b762672dd4cebd6c53a9

2a58ed6b6af2bb75f4ce077b241be5668d699c3b2f8ba328db7bf741da02d49e

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 24 May 2023 10:16:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-194140465-1

142.250.74.40

200 OK

46644

URL GET HTTP/2

www.googletagmanager.com/gtag/js?id=UA-194140465-1
IP

142.250.74.40:443
ASN

#15169 GOOGLE

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerGoogle Trust Services LLC

Subject*.google-analytics.com

Fingerprint55:51:32:58:36:72:A1:C8:50:5E:5A:8D:CE:A5:2F:DC:D7:1E:62:03

ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT

Magic

ASCII text, with very long lines (2271)

Size

46644
Hash

e7746726a05eddd5bc4fa751599eb984

c4c1344443b612bff3c34d3f5d600d895612c397

7ef33d59613572e12570c7b3c13333c7fcc3476858c01e05215deb5d59cf7701

HTTP Headers

                                        GET /gtag/js?id=UA-194140465-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 May 2023 10:16:38 GMT
expires: Wed, 24 May 2023 10:16:38 GMT
cache-control: private, max-age=900
last-modified: Wed, 24 May 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46644
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

471

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.3:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

c74db17f871249d3df054a36ab699f09

2b363e108eb091a4d1c2b762672dd4cebd6c53a9

2a58ed6b6af2bb75f4ce077b241be5668d699c3b2f8ba328db7bf741da02d49e

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 24 May 2023 10:16:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

w26as.s3.ca-central-1.amazonaws.com/css2

16.12.5.58

200 OK

2845

URL GET HTTP/1.1

w26as.s3.ca-central-1.amazonaws.com/css2
IP

16.12.5.58:443
ASN

#16509 AMAZON-02

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerAmazon

Subject*.s3.ca-central-1.amazonaws.com

Fingerprint20:67:08:07:04:96:D5:35:5E:95:5D:58:21:B9:7F:90:A0:67:94:7E

ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 15 Jan 2024 23:59:59 GMT

Magic

Unicode text, UTF-8 (with BOM) text

Size

2845
Hash

7c6e715b529e72ada7acb5ff51cc5076

dbcd3f42e91bc4f587359e3cf75e8aa600068754

ea3882f2cfee474924d2a9451bc9c33cd6410c8592d9e01895e682a48f03147e

HTTP Headers

                                        GET /css2 HTTP/1.1
Host: w26as.s3.ca-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/5f205bb74a5eb_v.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
x-amz-id-2: R4yjaSqvBxkfTq4Zm8no6O1ZiG677zqqfCUrr/Vjmv5KXjOesrS4J2ZfKxgKwZlOhlBtAVk2eh8=
x-amz-request-id: QAX1ZPJ3XD09XWMC
Date: Wed, 24 May 2023 10:16:39 GMT
Last-Modified: Wed, 24 May 2023 06:54:06 GMT
ETag: "7c6e715b529e72ada7acb5ff51cc5076"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: binary/octet-stream
Server: AmazonS3
Content-Length: 2845

w26as.s3.ca-central-1.amazonaws.com/ajax/libs/froala-editor/2.8.5/css/froala_style.min.css

16.12.5.58

403 Forbidden

243

URL GET HTTP/1.1

w26as.s3.ca-central-1.amazonaws.com/ajax/libs/froala-editor/2.8.5/css/froala_style.min.css
IP

16.12.5.58:443
ASN

#16509 AMAZON-02

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerAmazon

Subject*.s3.ca-central-1.amazonaws.com

Fingerprint20:67:08:07:04:96:D5:35:5E:95:5D:58:21:B9:7F:90:A0:67:94:7E

ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 15 Jan 2024 23:59:59 GMT

Magic

XML 1.0 document text\012- XML document, ASCII text

Size

243
Hash

79e9c542dbe1af154fb80856e952d2d7

9515725aec48cce18fdd79d06966aef2c11c2453

6eb86f50d3705f94d582f303f310e5f4e7cb8ff5fac45b56a6db69230d4d221f

HTTP Headers

                                        GET /ajax/libs/froala-editor/2.8.5/css/froala_style.min.css HTTP/1.1
Host: w26as.s3.ca-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 403 Forbidden
x-amz-request-id: QAX051AVCCJ1R970
x-amz-id-2: rI6ae4GgZh/KrjrByA/vX+05JhhFRIajcnCIq4PzTriPu8862MxlJ/H7YUd8bp561eqya72/KCw=
Content-Type: application/xml
Transfer-Encoding: chunked
Date: Wed, 24 May 2023 10:16:38 GMT
Server: AmazonS3

w26as.s3.ca-central-1.amazonaws.com/5f205bb63ccd2_v.css

16.12.5.58

200 OK

URL GET HTTP/1.1

w26as.s3.ca-central-1.amazonaws.com/5f205bb63ccd2_v.css
IP

16.12.5.58:443
ASN

#16509 AMAZON-02

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerAmazon

Subject*.s3.ca-central-1.amazonaws.com

Fingerprint20:67:08:07:04:96:D5:35:5E:95:5D:58:21:B9:7F:90:A0:67:94:7E

ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 15 Jan 2024 23:59:59 GMT

Magic

Size

0
Hash

d41d8cd98f00b204e9800998ecf8427e

da39a3ee5e6b4b0d3255bfef95601890afd80709

e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

                                        GET /5f205bb63ccd2_v.css HTTP/1.1
Host: w26as.s3.ca-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
x-amz-id-2: 9Ifud1zZdxeJ7nzJ6hAJ3dkaUhh9EflgoQkJxTM3bLbTlzLqv13O0esEDnoTF0dAKQED+HwRfy4=
x-amz-request-id: QAX44C8Z7WG0DPTN
Date: Wed, 24 May 2023 10:16:39 GMT
Last-Modified: Wed, 24 May 2023 06:54:06 GMT
ETag: "d41d8cd98f00b204e9800998ecf8427e"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 0

w26as.s3.ca-central-1.amazonaws.com/5f205bc497791_v.css

16.12.5.58

200 OK

URL GET HTTP/1.1

w26as.s3.ca-central-1.amazonaws.com/5f205bc497791_v.css
IP

16.12.5.58:443
ASN

#16509 AMAZON-02

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerAmazon

Subject*.s3.ca-central-1.amazonaws.com

Fingerprint20:67:08:07:04:96:D5:35:5E:95:5D:58:21:B9:7F:90:A0:67:94:7E

ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 15 Jan 2024 23:59:59 GMT

Magic

ASCII text

Size

75
Hash

0e646e2e128c473d6fba7996a4a94e40

a4d4fb349d7480c10da8249c0851ea287a0309bb

8cf6666c0c6d23dcf25eed0ecb5c439e484e1ddd598522bc21eb6e454edaea33

HTTP Headers

                                        GET /5f205bc497791_v.css HTTP/1.1
Host: w26as.s3.ca-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
x-amz-id-2: MxEzStyP5Dzmx/xOrOCwVvu5HC+216l2PkIC3mW7bHZxzVjYmmIiXJ2iQspemjjPBcB+Tdw8Eww=
x-amz-request-id: QAX6DG6HY8FGK983
Date: Wed, 24 May 2023 10:16:39 GMT
Last-Modified: Wed, 24 May 2023 06:54:06 GMT
ETag: "0e646e2e128c473d6fba7996a4a94e40"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 75

w26as.s3.ca-central-1.amazonaws.com/5f205bbae3ed9_v.png

16.12.5.58

200 OK

349

URL GET HTTP/1.1

w26as.s3.ca-central-1.amazonaws.com/5f205bbae3ed9_v.png
IP

16.12.5.58:443
ASN

#16509 AMAZON-02

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerAmazon

Subject*.s3.ca-central-1.amazonaws.com

Fingerprint20:67:08:07:04:96:D5:35:5E:95:5D:58:21:B9:7F:90:A0:67:94:7E

ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 15 Jan 2024 23:59:59 GMT

Magic

PNG image data, 13 x 13, 8-bit/color RGB, non-interlaced\012- data

Size

349
Hash

7454c652e0733d92de6c920c2d646ae0

34a5bd8c7401f95e346895b0e5ccffbf0e9ad638

44f752b0bd2e48052d538bc6aca5379f3630ca64da945f794690ddf47e8eaef7

HTTP Headers

                                        GET /5f205bbae3ed9_v.png HTTP/1.1
Host: w26as.s3.ca-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
x-amz-id-2: n/8S1iMMGHtVCNveQIxQx9hBV96VCvzyDNno0dzQNFiqjmWqEhN4Ts7AeVD7k6Yc46Yy9593DvY=
x-amz-request-id: QAX02V2ZATWFMBF0
Date: Wed, 24 May 2023 10:16:39 GMT
Last-Modified: Wed, 24 May 2023 06:54:06 GMT
ETag: "7454c652e0733d92de6c920c2d646ae0"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 349

w26as.s3.ca-central-1.amazonaws.com/5f205bc00090f_v.gif

16.12.5.58

200 OK

949

URL GET HTTP/1.1

w26as.s3.ca-central-1.amazonaws.com/5f205bc00090f_v.gif
IP

16.12.5.58:443
ASN

#16509 AMAZON-02

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerAmazon

Subject*.s3.ca-central-1.amazonaws.com

Fingerprint20:67:08:07:04:96:D5:35:5E:95:5D:58:21:B9:7F:90:A0:67:94:7E

ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 15 Jan 2024 23:59:59 GMT

Magic

GIF image data, version 89a, 78 x 68\012- data

Size

949
Hash

da9d153375da51a616a7663f1504e3a5

bd81fe60fe017bfe79be8c1afed88b659ff166d9

9bb88049c3d3f3c172d97246fa148bb725e727847c37e28c3be156be240a0c04

HTTP Headers

                                        GET /5f205bc00090f_v.gif HTTP/1.1
Host: w26as.s3.ca-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
x-amz-id-2: u0hx5EocnckL++GA/OQkAEYJeYwZBMLeEfoT5N0dCYoxE6/Bxz2CjOAMrBr9OxopcOoj/VF6/1I=
x-amz-request-id: QAXBBVYS71YQ2GQV
Date: Wed, 24 May 2023 10:16:39 GMT
Last-Modified: Wed, 24 May 2023 06:54:06 GMT
ETag: "da9d153375da51a616a7663f1504e3a5"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 949

w26as.s3.ca-central-1.amazonaws.com/5f205bbb6fc7d_v.gif

16.12.5.58

200 OK

102

URL GET HTTP/1.1

w26as.s3.ca-central-1.amazonaws.com/5f205bbb6fc7d_v.gif
IP

16.12.5.58:443
ASN

#16509 AMAZON-02

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerAmazon

Subject*.s3.ca-central-1.amazonaws.com

Fingerprint20:67:08:07:04:96:D5:35:5E:95:5D:58:21:B9:7F:90:A0:67:94:7E

ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 15 Jan 2024 23:59:59 GMT

Magic

GIF image data, version 89a, 24 x 9\012- data

Size

102
Hash

ef14d57c065fdbd3c66d017a729ca91f

2e7b72d674361a9c2b41767ccfbed2486e6695dd

6fcbfcda8a36536a0f9b0bc8c4a6ca451d9bafd4a879d56697e48e209691ba36

HTTP Headers

                                        GET /5f205bbb6fc7d_v.gif HTTP/1.1
Host: w26as.s3.ca-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
x-amz-id-2: rd2JP9cHycjE/LPSqnh+DE0M4CNMR9InZ/EJFqyCKFVkqL4JxmctxPG81aJv4KKCvV0efp3tUd0=
x-amz-request-id: QAXBV7R077ZP3F3B
Date: Wed, 24 May 2023 10:16:39 GMT
Last-Modified: Wed, 24 May 2023 06:54:06 GMT
ETag: "ef14d57c065fdbd3c66d017a729ca91f"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 102

w26as.s3.ca-central-1.amazonaws.com/5f205bbdae210_v.png

16.12.5.58

200 OK

364

URL GET HTTP/1.1

w26as.s3.ca-central-1.amazonaws.com/5f205bbdae210_v.png
IP

16.12.5.58:443
ASN

#16509 AMAZON-02

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerAmazon

Subject*.s3.ca-central-1.amazonaws.com

Fingerprint20:67:08:07:04:96:D5:35:5E:95:5D:58:21:B9:7F:90:A0:67:94:7E

ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 15 Jan 2024 23:59:59 GMT

Magic

PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced\012- data

Size

364
Hash

e144c3378090087c8ce129a30cb6cb4e

59da5466551de941d0215e45c54aa2ceaf436be1

b13a03e0db893734298cbe203bf264407636ffe5dab0a141f83c492d0034dd6a

HTTP Headers

                                        GET /5f205bbdae210_v.png HTTP/1.1
Host: w26as.s3.ca-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
x-amz-id-2: m61uzfQYjh5NI3XtwnQqnCdVnMy1fzeP89hhSN0J+qtF/vtnpb898PBLj2NWUGljYOwIElP4MzQ=
x-amz-request-id: QAX7DN9EY6RYXNKV
Date: Wed, 24 May 2023 10:16:39 GMT
Last-Modified: Wed, 24 May 2023 06:54:06 GMT
ETag: "e144c3378090087c8ce129a30cb6cb4e"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 364

w26as.s3.ca-central-1.amazonaws.com/5f205bbbf25aa_v.gif

16.12.5.58

200 OK

1506

URL GET HTTP/1.1

w26as.s3.ca-central-1.amazonaws.com/5f205bbbf25aa_v.gif
IP

16.12.5.58:443
ASN

#16509 AMAZON-02

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerAmazon

Subject*.s3.ca-central-1.amazonaws.com

Fingerprint20:67:08:07:04:96:D5:35:5E:95:5D:58:21:B9:7F:90:A0:67:94:7E

ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 15 Jan 2024 23:59:59 GMT

Magic

GIF image data, version 89a, 80 x 65\012- data

Size

1506
Hash

0d3c4efabb6072ec3312574009be3ef8

02d319a4e46538bcadcc5122883e1a0c3e94c123

45a676a0eb476e7706e0187d975b612f51f3bb4c26596f991d55f5e68fbef3e3

HTTP Headers

                                        GET /5f205bbbf25aa_v.gif HTTP/1.1
Host: w26as.s3.ca-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
x-amz-id-2: C4vJ/d8M73LUhmIcXO8iJec+b5M/9SY9eiOnp8apmy276tEx8RqXrTQ4Rtsh7Wp1As/UPm+90Hg=
x-amz-request-id: QAXDM2FGMPG1KKFJ
Date: Wed, 24 May 2023 10:16:39 GMT
Last-Modified: Wed, 24 May 2023 06:54:06 GMT
ETag: "0d3c4efabb6072ec3312574009be3ef8"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 1506

w26as.s3.ca-central-1.amazonaws.com/5f205bbece31e_v.gif

16.12.5.58

200 OK

1509

URL GET HTTP/1.1

w26as.s3.ca-central-1.amazonaws.com/5f205bbece31e_v.gif
IP

16.12.5.58:443
ASN

#16509 AMAZON-02

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerAmazon

Subject*.s3.ca-central-1.amazonaws.com

Fingerprint20:67:08:07:04:96:D5:35:5E:95:5D:58:21:B9:7F:90:A0:67:94:7E

ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 15 Jan 2024 23:59:59 GMT

Magic

GIF image data, version 89a, 30 x 29\012- data

Size

1509
Hash

1834c112f6e54f620d2ef8f8c037d450

b911b12717fc708c9418b4a2a0d72f79c5c53be3

81a5f62c155d307316d16a11e5a907a99fcfa3f70dce41d01d9f65518206734e

HTTP Headers

                                        GET /5f205bbece31e_v.gif HTTP/1.1
Host: w26as.s3.ca-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
x-amz-id-2: 4zij+CBd8O3J0mbZpGk+xy9VR1Exg6UuU/BtQnmUYalo8pXlZDp9hyTmU3N1PsNfUfTrfID6gkU=
x-amz-request-id: QAXDQX93MTP9D89W
Date: Wed, 24 May 2023 10:16:39 GMT
Last-Modified: Wed, 24 May 2023 06:54:06 GMT
ETag: "1834c112f6e54f620d2ef8f8c037d450"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 1509

w26as.s3.ca-central-1.amazonaws.com/microsoft.png

16.12.5.58

200 OK

1045

URL GET HTTP/1.1

w26as.s3.ca-central-1.amazonaws.com/microsoft.png
IP

16.12.5.58:443
ASN

#16509 AMAZON-02

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerAmazon

Subject*.s3.ca-central-1.amazonaws.com

Fingerprint20:67:08:07:04:96:D5:35:5E:95:5D:58:21:B9:7F:90:A0:67:94:7E

ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 15 Jan 2024 23:59:59 GMT

Magic

PNG image data, 47 x 46, 8-bit/color RGBA, non-interlaced\012- data

Size

1045
Hash

bf2b460590fbb9d8e9611a6e9006b816

561e1dab259d61e798b3ce380527b71b61074ff3

ee4bc5fe81fa7c1e8497d79c9c8a96485df217092d334e9b48fa8840fed11d03

HTTP Headers

                                        GET /microsoft.png HTTP/1.1
Host: w26as.s3.ca-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
x-amz-id-2: f2oV1Xjn4L4TacWZzP7UwCQMeFMYD0O8WVUVYyDOg7lfbtyzh4dWtwueaaADxVSyk32ocmp2aHA=
x-amz-request-id: Q0ZN1WBBEP3X4GDA
Date: Wed, 24 May 2023 10:16:40 GMT
Last-Modified: Wed, 24 May 2023 06:54:06 GMT
ETag: "bf2b460590fbb9d8e9611a6e9006b816"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 1045

w26as.s3.ca-central-1.amazonaws.com/5f205bba58587_v.png

16.12.5.58

200 OK

128

URL GET HTTP/1.1

w26as.s3.ca-central-1.amazonaws.com/5f205bba58587_v.png
IP

16.12.5.58:443
ASN

#16509 AMAZON-02

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerAmazon

Subject*.s3.ca-central-1.amazonaws.com

Fingerprint20:67:08:07:04:96:D5:35:5E:95:5D:58:21:B9:7F:90:A0:67:94:7E

ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 15 Jan 2024 23:59:59 GMT

Magic

PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced\012- data

Size

128
Hash

0bb86caf792dd7d24731c18cd37bb68e

dda1e433a0eaf785b2aa2c6214d5e48cb82a3a25

2ac27821ba64d645f36e2ad197492d30c11b10a032cc474554679555f4604622

HTTP Headers

                                        GET /5f205bba58587_v.png HTTP/1.1
Host: w26as.s3.ca-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
x-amz-id-2: NuErahvqO3+T58eeKQCV3x87ZfK6iH+X/9BTLTMuJLe+pZLxuG/XJdGih+X7DhSMvov0KNACjvA=
x-amz-request-id: Q0ZPV1K8G719RPBY
Date: Wed, 24 May 2023 10:16:40 GMT
Last-Modified: Wed, 24 May 2023 06:54:06 GMT
ETag: "0bb86caf792dd7d24731c18cd37bb68e"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 128

w26as.s3.ca-central-1.amazonaws.com/0wa0rni0ng0.mp3

16.12.5.58

206 Partial Content

8405

URL GET HTTP/1.1

w26as.s3.ca-central-1.amazonaws.com/0wa0rni0ng0.mp3
IP

16.12.5.58:443
ASN

#16509 AMAZON-02

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerAmazon

Subject*.s3.ca-central-1.amazonaws.com

Fingerprint20:67:08:07:04:96:D5:35:5E:95:5D:58:21:B9:7F:90:A0:67:94:7E

ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 15 Jan 2024 23:59:59 GMT

Magic

Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 56 kbps, 44.1 kHz, Monaural\012- data

Size

8405
Hash

8618fbb0911e3b8fc96725dee8bfd81f

1bbcb78922946d0cf18fbf3a9e092e36453eb767

0589be7715d2320e559eae6bd26f3528e97450c70293da2e1e8ce45f77f99ab1

HTTP Headers

                                        GET /0wa0rni0ng0.mp3 HTTP/1.1
Host: w26as.s3.ca-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/index.html
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 206 Partial Content
x-amz-id-2: sVSnmKHkPuT4tC0hNxfdQZur/eDDB+OgcFJndH//qMgVfr9evkmmmVTcS2OA/eOX4GBd2x+N6fQ=
x-amz-request-id: Q0ZZ1SEFQ94VBYRV
Date: Wed, 24 May 2023 10:16:40 GMT
Last-Modified: Wed, 24 May 2023 06:54:06 GMT
ETag: "8618fbb0911e3b8fc96725dee8bfd81f"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Range: bytes 0-8404/8405
Content-Type: audio/mp3
Server: AmazonS3
Content-Length: 8405

w26as.s3.ca-central-1.amazonaws.com/5f205bb9bf55a_v.gif

16.12.5.58

200 OK

1776

URL GET HTTP/1.1

w26as.s3.ca-central-1.amazonaws.com/5f205bb9bf55a_v.gif
IP

16.12.5.58:443
ASN

#16509 AMAZON-02

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerAmazon

Subject*.s3.ca-central-1.amazonaws.com

Fingerprint20:67:08:07:04:96:D5:35:5E:95:5D:58:21:B9:7F:90:A0:67:94:7E

ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 15 Jan 2024 23:59:59 GMT

Magic

GIF image data, version 89a, 120 x 97\012- data

Size

1776
Hash

8806694db55d271b6c836433d103afcd

a532ae846499ffa93bd6ed8baafcbdabb2cc8da1

989f955c24583be00defab08c4cf80b17fe4c12756686359367144f0506eb8b8

HTTP Headers

                                        GET /5f205bb9bf55a_v.gif HTTP/1.1
Host: w26as.s3.ca-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
x-amz-id-2: IWitGjBYG90hnmyNRz/9ZAsp+oKitIwVX6ABXSR/l1u3d5IbCdGnFLFPl81HGNGJfSDeJY6/eU0=
x-amz-request-id: Q0ZYQM5K7NPH2TAJ
Date: Wed, 24 May 2023 10:16:40 GMT
Last-Modified: Wed, 24 May 2023 06:54:06 GMT
ETag: "8806694db55d271b6c836433d103afcd"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 1776

w26as.s3.ca-central-1.amazonaws.com/5f205bbc8a6e3_v.gif

16.12.5.58

200 OK

1547

URL GET HTTP/1.1

w26as.s3.ca-central-1.amazonaws.com/5f205bbc8a6e3_v.gif
IP

16.12.5.58:443
ASN

#16509 AMAZON-02

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerAmazon

Subject*.s3.ca-central-1.amazonaws.com

Fingerprint20:67:08:07:04:96:D5:35:5E:95:5D:58:21:B9:7F:90:A0:67:94:7E

ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 15 Jan 2024 23:59:59 GMT

Magic

GIF image data, version 89a, 65 x 80\012- data

Size

1547
Hash

af52e51f42fd0c55bc3cf2c8ece71492

016f83da68ff461a5c6aebcc2a45668317b2f24c

e91f304cf7409723968740e6363dda01b50acb8e94b5ca05b4a4617666ff095c

HTTP Headers

                                        GET /5f205bbc8a6e3_v.gif HTTP/1.1
Host: w26as.s3.ca-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
x-amz-id-2: NjN1tpJQ1GoJgomqQCjEw2ZJHj+bB3zCGDl6wSgv/M0ewQvZdoMN8LQr8+whyhAoQGGHpcMg1qY=
x-amz-request-id: Q0ZGK1Q694EEREK2
Date: Wed, 24 May 2023 10:16:40 GMT
Last-Modified: Wed, 24 May 2023 06:54:06 GMT
ETag: "af52e51f42fd0c55bc3cf2c8ece71492"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 1547

w26as.s3.ca-central-1.amazonaws.com/5f205bc1a74d5_v.gif

16.12.5.58

200 OK

URL GET HTTP/1.1

w26as.s3.ca-central-1.amazonaws.com/5f205bc1a74d5_v.gif
IP

16.12.5.58:443
ASN

#16509 AMAZON-02

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerAmazon

Subject*.s3.ca-central-1.amazonaws.com

Fingerprint20:67:08:07:04:96:D5:35:5E:95:5D:58:21:B9:7F:90:A0:67:94:7E

ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 15 Jan 2024 23:59:59 GMT

Magic

GIF image data, version 89a, 16 x 16\012- data

Size

69
Hash

3ae573d079dcd1d2da4086f2c0c72c45

e7c9dabec81379373476ed23168dcecb9b8c56aa

9cce08ab28e94790cf78c87e37f8690acbc6c535e4b43ae7b38506b94538e107

HTTP Headers

                                        GET /5f205bc1a74d5_v.gif HTTP/1.1
Host: w26as.s3.ca-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
x-amz-id-2: pbRtDfsw/WVzvqgskZyQ/bDaUuA27Wq4IUbaZXnWdkDFK/uafsMHCsYN7lTb4lwTtRM2kPruo6U=
x-amz-request-id: Q0ZVRNDKXBJ25YF3
Date: Wed, 24 May 2023 10:16:40 GMT
Last-Modified: Wed, 24 May 2023 06:54:06 GMT
ETag: "3ae573d079dcd1d2da4086f2c0c72c45"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 69

w26as.s3.ca-central-1.amazonaws.com/5f205bbe46967_v.png

16.12.5.58

200 OK

293

URL GET HTTP/1.1

w26as.s3.ca-central-1.amazonaws.com/5f205bbe46967_v.png
IP

16.12.5.58:443
ASN

#16509 AMAZON-02

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerAmazon

Subject*.s3.ca-central-1.amazonaws.com

Fingerprint20:67:08:07:04:96:D5:35:5E:95:5D:58:21:B9:7F:90:A0:67:94:7E

ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 15 Jan 2024 23:59:59 GMT

Magic

PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced\012- data

Size

293
Hash

9eb68d2ce05c151bda542a7a6356e22c

baeeefe4a7ac657c10a5f081841015de1bcf90dd

2d2b7040bc32b397c3c60d800de9aa7d86404f1874862eba61bdaa21f1523eb7

HTTP Headers

                                        GET /5f205bbe46967_v.png HTTP/1.1
Host: w26as.s3.ca-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
x-amz-id-2: umfPuiUm++zPnzxhyfOpLly9BOrhooqDaxHgd5PirXmnsNs65486QNIEiM65HGdZEBBZfnbU9VQ=
x-amz-request-id: Q0ZHQ6E23P7W6041
Date: Wed, 24 May 2023 10:16:40 GMT
Last-Modified: Wed, 24 May 2023 06:54:06 GMT
ETag: "9eb68d2ce05c151bda542a7a6356e22c"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 293

w26as.s3.ca-central-1.amazonaws.com/5f205bc2c1b4b_v.gif

16.12.5.58

200 OK

234

URL GET HTTP/1.1

w26as.s3.ca-central-1.amazonaws.com/5f205bc2c1b4b_v.gif
IP

16.12.5.58:443
ASN

#16509 AMAZON-02

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerAmazon

Subject*.s3.ca-central-1.amazonaws.com

Fingerprint20:67:08:07:04:96:D5:35:5E:95:5D:58:21:B9:7F:90:A0:67:94:7E

ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 15 Jan 2024 23:59:59 GMT

Magic

GIF image data, version 89a, 16 x 16\012- data

Size

234
Hash

9ce99ec458daf212f9812a90f3fadd13

9e3041bc91b79a17b52e0fbb6c2d0e2f905d98a1

b0d335401c9fd5fac9991ec92edaf7865ff3a491ebe390120936c69796c3b753

HTTP Headers

                                        GET /5f205bc2c1b4b_v.gif HTTP/1.1
Host: w26as.s3.ca-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
x-amz-id-2: 6z6H4LUbOqnCTmFcjQWQ0+Pak5ULgESfu+YEcQl9H8dW8erTReURM8KJibVwtlEHbsBcG8BOms0=
x-amz-request-id: Q0ZZFQHXZ0REBJJH
Date: Wed, 24 May 2023 10:16:40 GMT
Last-Modified: Wed, 24 May 2023 06:54:06 GMT
ETag: "9ce99ec458daf212f9812a90f3fadd13"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 234

w26as.s3.ca-central-1.amazonaws.com/5f205bc2379ac_v.gif

16.12.5.58

200 OK

377

URL GET HTTP/1.1

w26as.s3.ca-central-1.amazonaws.com/5f205bc2379ac_v.gif
IP

16.12.5.58:443
ASN

#16509 AMAZON-02

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerAmazon

Subject*.s3.ca-central-1.amazonaws.com

Fingerprint20:67:08:07:04:96:D5:35:5E:95:5D:58:21:B9:7F:90:A0:67:94:7E

ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 15 Jan 2024 23:59:59 GMT

Magic

GIF image data, version 89a, 16 x 16\012- data

Size

377
Hash

c10bdec858cb0cf9e6cc5865d5925746

697c095ed5509e5a5af0c5ebf2380662aeffc531

b65b47a79e32335d9ca35ff59c6975d2b5808f84da0db88d11ce777b33e72ad9

HTTP Headers

                                        GET /5f205bc2379ac_v.gif HTTP/1.1
Host: w26as.s3.ca-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
x-amz-id-2: QP91kLj11XSvbCuHTWBxmkM4zVyV6l8WViDb2kWmw2l+Y+ek6mUM278OLMHl58mmhRbgHMDPDQQ=
x-amz-request-id: Q0ZHV8RAH2N74SCF
Date: Wed, 24 May 2023 10:16:40 GMT
Last-Modified: Wed, 24 May 2023 06:54:06 GMT
ETag: "c10bdec858cb0cf9e6cc5865d5925746"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 377

w26as.s3.ca-central-1.amazonaws.com/5f205bbf6a050_v.gif

16.12.5.58

200 OK

1245

URL GET HTTP/1.1

w26as.s3.ca-central-1.amazonaws.com/5f205bbf6a050_v.gif
IP

16.12.5.58:443
ASN

#16509 AMAZON-02

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerAmazon

Subject*.s3.ca-central-1.amazonaws.com

Fingerprint20:67:08:07:04:96:D5:35:5E:95:5D:58:21:B9:7F:90:A0:67:94:7E

ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 15 Jan 2024 23:59:59 GMT

Magic

GIF image data, version 89a, 29 x 29\012- data

Size

1245
Hash

6d0c71ad95c413318e0946960a597318

297fa9d7797afcb90cb49adb045b673672b360ec

f2b1758e4d68018096355641f5e7163b0df07efc85e9c3513e51949a75c0446d

HTTP Headers

                                        GET /5f205bbf6a050_v.gif HTTP/1.1
Host: w26as.s3.ca-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
x-amz-id-2: Gyw4AD4h6/ni0YhjkcUJKDEAbgNPt+Hweh6mfbszcGhoAnum2AHrCJkgCK+VI7+0XPU1TxEOYGc=
x-amz-request-id: Q0ZWN87RYRJP2KXD
Date: Wed, 24 May 2023 10:16:40 GMT
Last-Modified: Wed, 24 May 2023 06:54:06 GMT
ETag: "6d0c71ad95c413318e0946960a597318"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 1245

w26as.s3.ca-central-1.amazonaws.com/minus.png

16.12.5.58

200 OK

945

URL GET HTTP/1.1

w26as.s3.ca-central-1.amazonaws.com/minus.png
IP

16.12.5.58:443
ASN

#16509 AMAZON-02

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerAmazon

Subject*.s3.ca-central-1.amazonaws.com

Fingerprint20:67:08:07:04:96:D5:35:5E:95:5D:58:21:B9:7F:90:A0:67:94:7E

ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 15 Jan 2024 23:59:59 GMT

Magic

PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced\012- data

Size

945
Hash

e6eb3d938f3ebebd85c71307b38a3bf3

387223165f8e86f861a09adb1e3c10a8f2ec7006

2b6c8e23b2a2c49ac71393cb3e1740b7e2fccaa310ee06b68ca27b693d133f8e

HTTP Headers

                                        GET /minus.png HTTP/1.1
Host: w26as.s3.ca-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
x-amz-id-2: K2gwN3gtyvDt7By2Q9Sg/TnaF+7KDmw3tOAW/y0bM7fTDoVewu7DGDuE/fmcWWX6cKW11wCvVDg=
x-amz-request-id: Q0ZP5563E4QE3DF3
Date: Wed, 24 May 2023 10:16:40 GMT
Last-Modified: Wed, 24 May 2023 06:54:06 GMT
ETag: "e6eb3d938f3ebebd85c71307b38a3bf3"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 945

w26as.s3.ca-central-1.amazonaws.com/background-2.png

16.12.5.58

200 OK

386648

URL GET HTTP/1.1

w26as.s3.ca-central-1.amazonaws.com/background-2.png
IP

16.12.5.58:443
ASN

#16509 AMAZON-02

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerAmazon

Subject*.s3.ca-central-1.amazonaws.com

Fingerprint20:67:08:07:04:96:D5:35:5E:95:5D:58:21:B9:7F:90:A0:67:94:7E

ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 15 Jan 2024 23:59:59 GMT

Magic

PNG image data, 1920 x 1126, 8-bit/color RGBA, non-interlaced\012- data

Size

386648
Hash

db2c775d2583118bf4464dd65a58535b

45413378bf16997decf585915931305788e55328

de9fbe2de348e17bd4948011260ef297c4102b69068692daaba02bf632acd291

HTTP Headers

                                        GET /background-2.png HTTP/1.1
Host: w26as.s3.ca-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
x-amz-id-2: a5amI82NLjq93QhxthTse+/+O8VhrD1Ct5sLe6WEkRVF67qFrJ28zT9bhJevq740Afz+cyNJj5A=
x-amz-request-id: QAX028BS13BSK639
Date: Wed, 24 May 2023 10:16:39 GMT
Last-Modified: Wed, 24 May 2023 06:54:06 GMT
ETag: "db2c775d2583118bf4464dd65a58535b"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 386648

w26as.s3.ca-central-1.amazonaws.com/microsoft.jpg

16.12.5.58

200 OK

2004

URL GET HTTP/1.1

w26as.s3.ca-central-1.amazonaws.com/microsoft.jpg
IP

16.12.5.58:443
ASN

#16509 AMAZON-02

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerAmazon

Subject*.s3.ca-central-1.amazonaws.com

Fingerprint20:67:08:07:04:96:D5:35:5E:95:5D:58:21:B9:7F:90:A0:67:94:7E

ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 15 Jan 2024 23:59:59 GMT

Magic

JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 47x46, components 3\012- data

Size

2004
Hash

513307d24832cc64115e69c57dd4f69a

ba2e4718f5dec696d5e1e9ab95361f5dfb337f23

f70249b342aecd9e3d2367aea39df606e92562f9d7945ad8849b36cd3e3a85a1

HTTP Headers

                                        GET /microsoft.jpg HTTP/1.1
Host: w26as.s3.ca-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
x-amz-id-2: 53cToNITRXhz2VN/re+4PtS8l+Vjxxpdnc7ygZ52kV+O4z+O0aVxl3yGBBKsi2PeLK0EoyH5kkw=
x-amz-request-id: Q0ZVH3YYT8TMM5RP
Date: Wed, 24 May 2023 10:16:40 GMT
Last-Modified: Wed, 24 May 2023 06:54:06 GMT
ETag: "513307d24832cc64115e69c57dd4f69a"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 2004

w26as.s3.ca-central-1.amazonaws.com/cut.png

16.12.5.58

200 OK

1192

URL GET HTTP/1.1

w26as.s3.ca-central-1.amazonaws.com/cut.png
IP

16.12.5.58:443
ASN

#16509 AMAZON-02

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerAmazon

Subject*.s3.ca-central-1.amazonaws.com

Fingerprint20:67:08:07:04:96:D5:35:5E:95:5D:58:21:B9:7F:90:A0:67:94:7E

ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 15 Jan 2024 23:59:59 GMT

Magic

PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced\012- data

Size

1192
Hash

e526e4ff50594a6c4a5d05c18474d6e7

705609a2bd21c1e3e13666451c75d2c51436c83e

d25cf2403704d5208d662af4ef703d424cedeac253a43a1aec6e60e0db43837f

HTTP Headers

                                        GET /cut.png HTTP/1.1
Host: w26as.s3.ca-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
x-amz-id-2: 0PvUEVWUsSPJFRoknA5hBK1fXcldZP8SjjOoWSkrIgJuaJBCk/FrsVsLfIRXNZiq9ea/fWDYX4U=
x-amz-request-id: Q0ZNXST6PAVAXW9G
Date: Wed, 24 May 2023 10:16:40 GMT
Last-Modified: Wed, 24 May 2023 06:54:06 GMT
ETag: "e526e4ff50594a6c4a5d05c18474d6e7"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 1192

w26as.s3.ca-central-1.amazonaws.com/favicon.ico

16.12.5.58

403 Forbidden

243

URL GET HTTP/1.1

w26as.s3.ca-central-1.amazonaws.com/favicon.ico
IP

16.12.5.58:443
ASN

#16509 AMAZON-02

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerAmazon

Subject*.s3.ca-central-1.amazonaws.com

Fingerprint20:67:08:07:04:96:D5:35:5E:95:5D:58:21:B9:7F:90:A0:67:94:7E

ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 15 Jan 2024 23:59:59 GMT

Magic

XML 1.0 document text\012- XML document, ASCII text

Size

243
Hash

2f89bd82c864de10d774c085dfb1f4c2

e038d4bce9833fe7242ffc14a1011dcef47aad12

ea4428effc5009bf73dd699e1c5da3ee0a59d1da0ef77596f9584e5e8f03166a

HTTP Headers

                                        GET /favicon.ico HTTP/1.1
Host: w26as.s3.ca-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 403 Forbidden
x-amz-request-id: Q0ZQVDYDKQEM7HEZ
x-amz-id-2: vUWcden/rqd8qIxWsvhjRGUqPWv4HH4GN54V9wvZP04iMO25VPi4vVk0IfQY2zyABaZ5qTWA0fo=
Content-Type: application/xml
Transfer-Encoding: chunked
Date: Wed, 24 May 2023 10:16:39 GMT
Server: AmazonS3

w26as.s3.ca-central-1.amazonaws.com/img/anim_orange.gif

16.12.5.58

403 Forbidden

243

URL GET HTTP/1.1

w26as.s3.ca-central-1.amazonaws.com/img/anim_orange.gif
IP

16.12.5.58:443
ASN

#16509 AMAZON-02

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerAmazon

Subject*.s3.ca-central-1.amazonaws.com

Fingerprint20:67:08:07:04:96:D5:35:5E:95:5D:58:21:B9:7F:90:A0:67:94:7E

ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 15 Jan 2024 23:59:59 GMT

Magic

XML 1.0 document text\012- XML document, ASCII text

Size

243
Hash

8b891eb7d29c503e1a17968104bbb9d2

a0860c1c973920d2d8692c969921f1f9962303ef

dc2463b1c0561af2265cd11f69d63c68149c884c8cf4871eb5dcda325100b934

HTTP Headers

                                        GET /img/anim_orange.gif HTTP/1.1
Host: w26as.s3.ca-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 403 Forbidden
x-amz-request-id: HGDFNPQD68ZAAS6W
x-amz-id-2: wFvpFKFNSjR3/rgCjlpisBPY9PcfhEkh1gaLhCLencG6B7LcIyEyyhStIDqmpb4yMyzNVa+UXII=
Content-Type: application/xml
Transfer-Encoding: chunked
Date: Wed, 24 May 2023 10:16:40 GMT
Server: AmazonS3

w26as.s3.ca-central-1.amazonaws.com/img/anim_red.gif

16.12.5.58

403 Forbidden

243

URL GET HTTP/1.1

w26as.s3.ca-central-1.amazonaws.com/img/anim_red.gif
IP

16.12.5.58:443
ASN

#16509 AMAZON-02

Requested by

https://w26as.s3.ca-central-1.amazonaws.com/index.html
Certificate

IssuerAmazon

Subject*.s3.ca-central-1.amazonaws.com

Fingerprint20:67:08:07:04:96:D5:35:5E:95:5D:58:21:B9:7F:90:A0:67:94:7E

ValidityTue, 11 Apr 2023 00:00:00 GMT - Mon, 15 Jan 2024 23:59:59 GMT

Magic

XML 1.0 document text\012- XML document, ASCII text

Size

243
Hash

cceb709ab6219b059b6f0c608b5a0065

62b12955e7e9a4358ded3f7d3aed03ac5763384f

556f8c03f3dc91647ca102c979dfbe8f94474ae2cc863295281f5f2041982d14

HTTP Headers

                                        GET /img/anim_red.gif HTTP/1.1
Host: w26as.s3.ca-central-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://w26as.s3.ca-central-1.amazonaws.com/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 403 Forbidden
x-amz-request-id: FRKRW2Q7WZVHSXKZ
x-amz-id-2: ZKSGKKgwToAOtawsyazn/CR96+wzPr6EL1XRD7YC/NIuPBjcrNNRytKeqlJ+6IGF/pNT7r3+7x0=
Content-Type: application/xml
Transfer-Encoding: chunked
Date: Wed, 24 May 2023 10:16:43 GMT
Server: AmazonS3

ocsp.r2m01.amazontrust.com/

54.230.80.227

471

URL

ocsp.r2m01.amazontrust.com/
IP

54.230.80.227:0
ASN

#16509 AMAZON-02

Magic

data

Size

471
Hash

33e797c45aa9cb6fef8a5413797bc803

ddacf720ae653c9d80fad21480621d5dec07fd7a

837c27ddfa242dba25f2fc83b373510d3ddf54de58fd9f303a5d677f846dcf1e

HTTP Headers

                                        POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=7200'
Date: Wed, 24 May 2023 10:16:52 GMT
Last-Modified: Wed, 24 May 2023 08:4

Report Overview

URL

IP

ASN

Submitted

Access

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (31)

#1 JS:Script (size: 167)

#2 JS:Script (size: 535)

#3 JS:Script (size: 249)

#4 JS:Script (size: 411)

#5 JS:Script (size: 343)

#6 JS:Script (size: 77)

#7 JS:Script (size: 104)

#8 JS:Script (size: 420)

#9 JS:Script (size: 410)

#10 JS:Script (size: 1252)

#11 JS:Script (size: 29)

#12 JS:Script (size: 30)

#13 JS:Script (size: 147)

#14 JS:Script (size: 4691)

#15 JS:Script (size: 32077)

#16 JS:Script (size: 6408)

#17 JS:Script (size: 117)

#18 JS:Script (size: 284)

#19 JS:Script (size: 162)

#20 JS:Script (size: 3276)

#21 JS:Script (size: 19)

#22 JS:Script (size: 18746)

#23 JS:Script (size: 99)

#24 JS:Script (size: 84355)

#25 JS:Script (size: 167)

#26 JS:Script (size: 154)

#27 JS:Script (size: 153)

#28 JS:Script (size: 153)

#29 JS:Script (size: 120107)

#1 JS:Write (size: 17)

#2 JS:Write (size: 32)

HTTP Transactions (42)

URL User Request GET HTTP/1.1

IP

ASN

Certificate

Magic

Size

Hash

Detections

HTTP Headers

URL

IP

ASN

Magic

Size

Hash

HTTP Headers

URL User Request GET HTTP/1.1

IP

ASN

Certificate

Magic

Size

Hash

HTTP Headers