Report - flrap.com/direct/a2caaf3ef6c471786589c76e3cc4a6e5e866341e

Report Overview

Submitted URL
flrap.com/direct/a2caaf3ef6c471786589c76e3cc4a6e5e866341e
IP
37.228.114.189
ASN
#50340 OOO Network of data-centers Selectel
Submitted
2022-09-11 23:16:42
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	34.217.237.91
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.27
flrap.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	376 B	267 B	37.228.114.189
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	6.2 kB	23.33.119.27
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	993 B	2.1 kB	142.250.74.3
rgeljg.sexplayground.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	16 kB	52.19.101.114
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	54 kB	34.120.237.76
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.35
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
cdn-dimi.akamaized.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	10 kB	229 kB	184.31.15.107

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-11	medium	rgeljg.sexplayground.net/js/pushjs/1.0.0/subscriber.js	Phishing
2022-09-11	medium	rgeljg.sexplayground.net/js/service-worker.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

Files detected

URL
cdn-dimi.akamaized.net/landings/273282/1654258909/images/music.mp4
IP
184.31.15.107
ASN
#20940 Akamai International B.V.

File type
gzip compressed data, max compression\012- data
Size
8.6 kB (8604 bytes)
Hash
73069e532b7039778d3a7128c997c61a
c523bbf1ac7f4e612c8ade75434c42fbca885adc
b6d7aec09aad2bb78dfbad4c9530fd03c0f33aed8385c3ee57c10b1fe959c4d5

Detections

Analyzer	Verdict	Alert
VirusTotal	0/0

JavaScript (16)

	URL	Size	First Seen	Last Seen
	rgeljg.sexplayground.net/c/1d58d0084e854e5f?s1=157404&s2=1488763&click_id=0&j1=1	3.0 kB	2023-03-07	2023-03-07
Pretty URL rgeljg.sexplayground.net/c/1d58d0084e854e5f?s1=157404&s2=1488763&click_id=0&j1=1 IP 52.19.101.114 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:54:18 Last Seen2023-03-07 14:54:18 Times Seen1 Hash 57caf4d1b496689541bbb204b56ac2f6 23220a404396234999a713af6359392a5d266362 1eb35f31de13cf36fd0632dda1d496f61a849fd64d1f40ef78171851fdcedb2e Loading...

	rgeljg.sexplayground.net/c/1d58d0084e854e5f?s1=157404&s2=1488763&click_id=0&j1=1	298 B	2023-03-07	2023-03-07
Pretty URL rgeljg.sexplayground.net/c/1d58d0084e854e5f?s1=157404&s2=1488763&click_id=0&j1=1 IP 52.19.101.114 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:54:18 Last Seen2023-03-07 14:54:18 Times Seen1 Hash 7d3c2ef6650b8c67ee995918748e0222 494341adae9af082e8d5a829c3ce231970a36f17 4b55b0160f2783855ed189172d3a8d5c922d1c74cdd5065484b1c2796c2529b0 Loading...

	cdn-dimi.akamaized.net/landings/273282/1654258909/js/translates.js?1654258910	25 kB	2023-03-07	2023-03-25
Pretty URL cdn-dimi.akamaized.net/landings/273282/1654258909/js/translates.js?1654258910 IP 184.31.15.107 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:54:18 Last Seen2023-03-25 23:24:56 Times Seen2 Hash d21db28715c2534fecbbf9fe9859c211 39148d89e54fd5ab6d17f51004770d75f2b64916 9d58d5f2e272dede20710a269f07d913363b3cd70e9ea78abaa9b3b6b2d3d9c6 Loading...

	cdn-dimi.akamaized.net/landings/273282/1654258909/js/transl-sb.js?1654258910	6.7 kB	2023-03-07	2024-01-25
Pretty URL cdn-dimi.akamaized.net/landings/273282/1654258909/js/transl-sb.js?1654258910 IP 184.31.15.107 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:19:22 Last Seen2024-01-25 23:26:15 Times Seen42 Hash 68898dc5a77e849bd5a8b6492a04ac0e 45e242f71668cb48eeeca1a5a95989ac6c8646f1 55322064b9b286302f3ce5eaf2d2cf6cb37d262349475d7915b8d91c11d4bbd4 Loading...

	rgeljg.sexplayground.net/js/pushjs/1.0.0/subscriber.js	9.4 kB	2023-03-07	2023-05-23
Pretty URL rgeljg.sexplayground.net/js/pushjs/1.0.0/subscriber.js IP 52.19.101.114 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:44 Last Seen2023-05-23 11:55:13 Times Seen1847 Hash eaaa22632bcced1b4a2bad3c22bd618f c5bb4097ff0b252c19671985d5d431dfd6bb7281 20a2729b7c4f4c6a0dd2e80500284bd8c0e84e3e4076eb6a248e2951fec0c550 Loading...

	www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js	36 kB	2023-03-07	2024-04-21
Pretty URL www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:22 Last Seen2024-04-21 23:30:58 Times Seen11070 Hash 0cb7a0eb328ea70ab360f861314c8820 e3e20eb50dae36f4cbcef1890b1cc7878acb537a 4569845f7c550a55311814032e88541bd3b4a055ec3894e9cf58c4fff1be91d9 Loading...

	flrap.com/direct/a2caaf3ef6c471786589c76e3cc4a6e5e866341e	121 B	2023-03-07	2023-03-07
Pretty URL flrap.com/direct/a2caaf3ef6c471786589c76e3cc4a6e5e866341e IP 37.228.114.189 ASN #50340 OOO Network of data-centers Selectel Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:54:18 Last Seen2023-03-07 14:54:18 Times Seen1 Hash a66b94591e5cefc2e069fddf5418bd50 2b40c740c2ee895ae3ae217cc107fa8d1263d05a a63c17b488a38f8b98d5ba2ee209c8debd95c146d9373d1f9d6a56cf21698aa7 Loading...

	rgeljg.sexplayground.net/c/1d58d0084e854e5f?s1=157404&s2=1488763&click_id=0&j1=1	2.5 kB	2023-03-07	2023-03-07
Pretty URL rgeljg.sexplayground.net/c/1d58d0084e854e5f?s1=157404&s2=1488763&click_id=0&j1=1 IP 52.19.101.114 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:54:18 Last Seen2023-03-07 14:54:18 Times Seen1 Hash 2b4681d86f2349a4d3ebc3fadcb0808d 63f7a3babbf718072baf71a52d27def321276438 4c4b9b7259ad1ad8c59b5b1ab8c81bdde419cf3465cbfe19d3a5469a78c0c06b Loading...

	rgeljg.sexplayground.net/c/1d58d0084e854e5f?s1=157404&s2=1488763&click_id=0&j1=1	3.7 kB	2023-03-07	2023-03-07
Pretty URL rgeljg.sexplayground.net/c/1d58d0084e854e5f?s1=157404&s2=1488763&click_id=0&j1=1 IP 52.19.101.114 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:54:18 Last Seen2023-03-07 14:54:18 Times Seen1 Hash 9ab9247376f7e8dbf498c4240bcfa3ba aefda895fb7076f6f0b9c7e7cda6bffc2d5c704e e319cb9c6f67d9421bab3bbf1445d6a9d499c14033a47f89f5758df13fc28a32 Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 09:08:55 Times Seen37087680 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	cdn-dimi.akamaized.net/landings/273282/1654258909/js/function.js?1654258910	1.5 kB	2023-03-07	2023-11-14
Pretty URL cdn-dimi.akamaized.net/landings/273282/1654258909/js/function.js?1654258910 IP 184.31.15.107 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:19:22 Last Seen2023-11-14 23:26:48 Times Seen5 Hash 0c7342b0fe04f46a7ca62bbe763250eb fb5a713fd18811e313eee037df2ea643a6b98c78 5d7bcdb3c224a856ea8aa7a9837500803c8db019c18bd2440d606182976e8e53 Loading...

	rgeljg.sexplayground.net/c/1d58d0084e854e5f?s1=157404&s2=1488763&s3=&s5=backuser&click_id=0&iexpp=1&j1=1	22 B	2023-03-07	2023-03-13
Pretty URL rgeljg.sexplayground.net/c/1d58d0084e854e5f?s1=157404&s2=1488763&s3=&s5=backuser&click_id=0&iexpp=1&j1=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:19:22 Last Seen2023-03-13 19:28:55 Times Seen1 Hash 0e5557e7007d44a4480493b6bd14db4c 80b607ca9233f914c11280b9067ccc2753c8e273 a3ac977034cec0554c5fa882d986c1f765089228edffdceddf16147c948f5dc3 Loading...

	rgeljg.sexplayground.net/c/1d58d0084e854e5f?s1=157404&s2=1488763&s3=&s5=backuser&click_id=0&iexpp=1&j1=1	63 B	2023-03-07	2024-01-14
Pretty URL rgeljg.sexplayground.net/c/1d58d0084e854e5f?s1=157404&s2=1488763&s3=&s5=backuser&click_id=0&iexpp=1&j1=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:19:22 Last Seen2024-01-14 23:20:00 Times Seen19 Hash 4b4a9c664bd68623f2449a198650dfb0 adc43e53a4ac54dfffc3ba7919466b4192f79370 dbe1dc6c1cc426cffbcdd292bd8d72ae04974bd572cf972ba713aef77e3e5c42 Loading...

	rgeljg.sexplayground.net/js/pushjs/1.0.0/utils.js	7.1 kB	2023-03-07	2024-04-21
Pretty URL rgeljg.sexplayground.net/js/pushjs/1.0.0/utils.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:44 Last Seen2024-04-21 23:30:57 Times Seen4796 Hash 711c7ecda710a342d24faef1dec76ede d1b38489603a2aecc2be5edb4fa4cd8d442fe727 41a5e34d6777a471d63211252ce51555815b728949dc81cec01414f4ffdb98eb Loading...

	rgeljg.sexplayground.net/c/1d58d0084e854e5f?s1=157404&s2=1488763&click_id=0&j1=1	1.9 kB	2023-03-07	2023-03-07
Pretty URL rgeljg.sexplayground.net/c/1d58d0084e854e5f?s1=157404&s2=1488763&click_id=0&j1=1 IP 52.19.101.114 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:54:18 Last Seen2023-03-07 14:54:18 Times Seen1 Hash 4a528782b0b87ac56749d99c12f043cd b7b754db4723378556b8b5a0ba5b4af856a78b27 e0cb28dd60bce64ec989bf975dd059df08c4770831d5ee8086f30f9992d9eb90 Loading...

	cdn-dimi.akamaized.net/landings/273282/1654258909/js/translates-review.js?1654258910	38 kB	2023-03-07	2024-01-25
Pretty URL cdn-dimi.akamaized.net/landings/273282/1654258909/js/translates-review.js?1654258910 IP 184.31.15.107 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:19:22 Last Seen2024-01-25 23:26:15 Times Seen42 Hash 1c2203e50508db5daa2667fc898e819c 4faf176783d2ed450fc0b53f9bf174fcf942bb6d 1553f7b0c69316ed48d9f0c0a7c168c6e315bbd18c1155fb6a4c0901135886d7 Loading...

HTTP Transactions (50)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.27

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 11 Sep 2022 23:07:53 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5-R48V3kl46DC6S8Rorm2mPoug-361Zwj1L8b-Eq0DV6g8WLXkZxrA==
Age: 518

flrap.com/direct/a2caaf3ef6c471786589c76e3cc4a6e5e866341e

37.228.114.189

200 OK

139 B

URL HTTP/1.1
flrap.com/direct/a2caaf3ef6c471786589c76e3cc4a6e5e866341e
IP
37.228.114.189:0
ASN
#50340 OOO Network of data-centers Selectel

File type
HTML document, ASCII text
Size
139 B (139 bytes)
Hash
9176e00b44941aa204188d471bda4958
5f21b895c610df5f710abaa498f1cd7419e34437
86404e88858749079aaf0e92f782798dcc4338172b9dc904cdf27956c95f6f8b

HTTP Headers

GET /direct/a2caaf3ef6c471786589c76e3cc4a6e5e866341e HTTP/1.1
Host: flrap.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Sun, 11 Sep 2022 23:16:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
76d5eb597558e3dee0d99719d17e71e0
f3a0f3932fa8059f27dc9422d523b938fa9a7d09
d16de6cc9eb0e1297f53dc1137bb764bf5c21a7727be32ad05afebd1fe9501ed

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14125
Expires: Mon, 12 Sep 2022 03:11:56 GMT
Date: Sun, 11 Sep 2022 23:16:31 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.35

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 11 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7yH0UOIqKQwu9UgAJLadlDOY_DB1VMZ2p1t4y_WeRYvBQ_gzEarovg==
age: 57559
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 23:16:31 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6b18038ccbb7ae718fbca857d4526d3b
d9ef702d482b28ece3f0dc79b7167417d135b7df
ceaf14b890fca4849755e8924f4c76407df513706a11e010f061bbc4f7f204bd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEAF14B890FCA4849755E8924F4C76407DF513706A11E010F061BBC4F7F204BD"
Last-Modified: Sat, 10 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4126
Expires: Mon, 12 Sep 2022 00:25:18 GMT
Date: Sun, 11 Sep 2022 23:16:32 GMT
Connection: keep-alive

cdn-dimi.akamaized.net/landings/273282/1654258909/css/style.css?1654258910

184.31.15.107

200 OK

3.5 kB

URL HTTP/1.1
cdn-dimi.akamaized.net/landings/273282/1654258909/css/style.css?1654258910
IP
184.31.15.107:0
ASN
#20940 Akamai International B.V.

File type
ASCII text
Size
3.5 kB (3488 bytes)
Hash
ec448675d1c53945b034f4dc2d433cd0
f6a11f8c343b9abf4caa7419f0a9c66d3240b8b5
a5feb865e46f8f49869feb5ab6812dfa9d2019344409f8f8e9e990a31474559b

HTTP Headers

GET /landings/273282/1654258909/css/style.css?1654258910 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgeljg.sexplayground.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: gcyA8fdfMie6CAWjqHwhNbkC2ABDRbafAoZQrF9ojujYul/klSSnf1h48uhZZtUE5mRYwBLH8UM=
x-amz-request-id: VYTPMQBC9GQ8T33J
Last-Modified: Fri, 03 Jun 2022 13:20:45 GMT
ETag: "0e60ea184b97c9906041eb6ca706a26a"
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 11 Sep 2022 23:16:32 GMT
Content-Length: 3488
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/landings/273282/1654258909/js/function.js?1654258910

184.31.15.107

200 OK

583 B

URL HTTP/1.1
cdn-dimi.akamaized.net/landings/273282/1654258909/js/function.js?1654258910
IP
184.31.15.107:0
ASN
#20940 Akamai International B.V.

File type
ASCII text
Size
583 B (583 bytes)
Hash
e7e4fe4291aeae4d7cfd96599b1007dd
2df818c1b5d865c37d07a91cfa7b178c6b62a5d3
ca8fabab4c62b0d932c2ca0ffe4a39518f8ebbaeef319abf807f407e8efd7844

HTTP Headers

GET /landings/273282/1654258909/js/function.js?1654258910 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgeljg.sexplayground.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: n9t5EsUoChowSWq5uh5pTcsbbn+fJfymj7PVsIJne8wbHJg09xJEVuUu+eE79/O0w93hNNy1wtQ=
x-amz-request-id: P25486BKB7786DRH
Last-Modified: Fri, 03 Jun 2022 13:20:45 GMT
ETag: "0c7342b0fe04f46a7ca62bbe763250eb"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 11 Sep 2022 23:16:32 GMT
Content-Length: 583
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/landings/273282/1654258909/css/reviews.css?1654258910

184.31.15.107

200 OK

934 B

URL HTTP/1.1
cdn-dimi.akamaized.net/landings/273282/1654258909/css/reviews.css?1654258910
IP
184.31.15.107:0
ASN
#20940 Akamai International B.V.

File type
ASCII text
Size
934 B (934 bytes)
Hash
4c9c30787ace31d90e0b5b2999db8c14
54a49d582be1fd05e7a47fa52acb6b1296655803
1a416aa917a0620838fa5fd6eec6b33e960e32533c407e4eb06fcc4ad3aa0f55

HTTP Headers

GET /landings/273282/1654258909/css/reviews.css?1654258910 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgeljg.sexplayground.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: hQPT7ibsGbpPA6oUy1mKXoqr07uq5qk8xewDK/IgCaO9YPhUMyCN4v7E58y60G40Kd4bwrFUR6YjedhFsEKKFg==
x-amz-request-id: 63P9M86AM89P4NES
Last-Modified: Fri, 03 Jun 2022 13:20:45 GMT
ETag: "3aa72c2d432918cce42d5877c4a72951"
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 11 Sep 2022 23:16:32 GMT
Content-Length: 934
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/landings/273282/1654258909/js/translates.js?1654258910

184.31.15.107

200 OK

9.7 kB

URL HTTP/1.1
cdn-dimi.akamaized.net/landings/273282/1654258909/js/translates.js?1654258910
IP
184.31.15.107:0
ASN
#20940 Akamai International B.V.

File type
Unicode text, UTF-8 text
Size
9.7 kB (9672 bytes)
Hash
bcc094821785bf12718ad74929889368
7fcd7152136b2a2ceca175b6c5caccf0ad1f7c7d
f77619a85a6f17e27b2cf50f23f7974b3c776c5f617e435173702a2e89cf0ee4

HTTP Headers

GET /landings/273282/1654258909/js/translates.js?1654258910 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgeljg.sexplayground.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: rznVZr3y29eE8pLs/OYuHCk4F4KKKjEzZ+/5yb6xna0ncw/3zfN+a+/kBPXBUcjt3sH2zA6KgOc=
x-amz-request-id: P25CYGT9844SZEA8
Last-Modified: Fri, 03 Jun 2022 13:20:45 GMT
ETag: "d21db28715c2534fecbbf9fe9859c211"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 11 Sep 2022 23:16:32 GMT
Content-Length: 9672
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/landings/273282/1654258909/js/translates-review.js?1654258910

184.31.15.107

200 OK

13 kB

URL HTTP/1.1
cdn-dimi.akamaized.net/landings/273282/1654258909/js/translates-review.js?1654258910
IP
184.31.15.107:0
ASN
#20940 Akamai International B.V.

File type
Unicode text, UTF-8 text
Size
13 kB (13246 bytes)
Hash
9914a787c932dadce74810eae35e6228
7d378f241dfd7566c9797e270baffe77cfc43402
5202868964ea4498cae53cb1a5577474095b33d415695221e64e7c3a68fdb4fe

HTTP Headers

GET /landings/273282/1654258909/js/translates-review.js?1654258910 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgeljg.sexplayground.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: JvzgYFAqIwljmaCa9HiOQrMEx+y9jmnxYw8KgwTy+OGNSBkSCaAHC4OnFm2kkLGpKvXXp8UsNlA=
x-amz-request-id: P25F826W6S1VCNCS
Last-Modified: Fri, 03 Jun 2022 13:20:45 GMT
ETag: "1c2203e50508db5daa2667fc898e819c"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 11 Sep 2022 23:16:32 GMT
Content-Length: 13246
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/landings/273282/1654258909/js/jquery-2.2.4.min.js?1654258910

184.31.15.107

200 OK

30 kB

URL HTTP/1.1
cdn-dimi.akamaized.net/landings/273282/1654258909/js/jquery-2.2.4.min.js?1654258910
IP
184.31.15.107:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (32065)
Size
30 kB (29855 bytes)
Hash
2fa28552f1ee4e1382ee43930b53afb8
803670da6a35378bf4eb73acc8e72fe4feb5ca30
ecfddf7d1e798dd2778c071bea24c70b650ef990fc09793fce25f2f094b35494

HTTP Headers

GET /landings/273282/1654258909/js/jquery-2.2.4.min.js?1654258910 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgeljg.sexplayground.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: WFDHuuDAGkjdLdIHULGfQAAj5gGfieS6OAIa1Q1MLjyHUtIpdkn8h8pGfi2XV9hv0+kzmtckyaE=
x-amz-request-id: P252P4TT7JM8DXKP
Last-Modified: Fri, 03 Jun 2022 13:20:45 GMT
ETag: "2f6b11a7e914718e0290410e85366fe9"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 11 Sep 2022 23:16:32 GMT
Content-Length: 29855
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/landings/273282/1654258909/js/transl-sb.js?1654258910

184.31.15.107

200 OK

2.0 kB

URL HTTP/1.1
cdn-dimi.akamaized.net/landings/273282/1654258909/js/transl-sb.js?1654258910
IP
184.31.15.107:0
ASN
#20940 Akamai International B.V.

File type
Unicode text, UTF-8 text
Size
2.0 kB (1983 bytes)
Hash
ced2727af8681fd06a0f0459ecfa92c1
0ed62c0aeb5c61d1e0c24ec87075e6da6851266f
6b20a54472e51cf46606fbebdfd8b479fa05e4a6ee92e964a5b4517a19907280

HTTP Headers

GET /landings/273282/1654258909/js/transl-sb.js?1654258910 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgeljg.sexplayground.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: 2oFTPIHHLVa1y6hKfeKa5nF3jU8KWBG2Mh4V/5ZCDgGVbhGGsAgPDFWN2LuRRUY6QXnYZCvfI4Q=
x-amz-request-id: 60Z7AA0PHTW8WQ8K
Last-Modified: Fri, 03 Jun 2022 13:20:45 GMT
ETag: "68898dc5a77e849bd5a8b6492a04ac0e"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sun, 11 Sep 2022 23:16:32 GMT
Content-Length: 1983
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/landings/273282/1654258909/images/3-eu.jpg

184.31.15.107

200 OK

3.9 kB

URL HTTP/1.1
cdn-dimi.akamaized.net/landings/273282/1654258909/images/3-eu.jpg
IP
184.31.15.107:0
ASN
#20940 Akamai International B.V.

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 80x80, components 3\012- data
Size
3.9 kB (3946 bytes)
Hash
1dc512dcb0850f22cfa72c789578085c
933e9c5648e782c9f9a1504d2248f0acb4b9950b
7a27ad3bbf259cc02f80f496c19e6033d958362c1b5075c1957bb502f2666d00

HTTP Headers

GET /landings/273282/1654258909/images/3-eu.jpg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgeljg.sexplayground.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: WZXaKXZFGIDQUtOLu1Qo10xrd1l5l9l5EkZ+RreFShtpgb/iYP7aNWGWUMqEAWYEEZL1c0baH9E=
x-amz-request-id: 63P9JV3R4PVYPC72
Last-Modified: Fri, 03 Jun 2022 13:20:43 GMT
ETag: "1dc512dcb0850f22cfa72c789578085c"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 3946
Date: Sun, 11 Sep 2022 23:16:32 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/landings/273282/1654258909/images/7-eu.jpg

184.31.15.107

200 OK

2.3 kB

URL HTTP/1.1
cdn-dimi.akamaized.net/landings/273282/1654258909/images/7-eu.jpg
IP
184.31.15.107:0
ASN
#20940 Akamai International B.V.

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Size
2.3 kB (2282 bytes)
Hash
8155d8ecc7dc2d9b29cf99ab85c3d2a8
ba784563c7787760b318af24ea274ad6df2c5b89
7e368b2c331e65b43d9e6977dde473b4ee4ed25f0253e0d086ca676438b97d27

HTTP Headers

GET /landings/273282/1654258909/images/7-eu.jpg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgeljg.sexplayground.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: WNjBXU9ae9j6P+/Gow6SE/rJQ5DK/ikNVN8M007123pM3En+H8n5KRsjurauhiF7BJLmGJRXA60=
x-amz-request-id: 63PA99CTSAXN7QNN
Last-Modified: Fri, 03 Jun 2022 13:20:43 GMT
ETag: "8155d8ecc7dc2d9b29cf99ab85c3d2a8"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 2282
Date: Sun, 11 Sep 2022 23:16:32 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/landings/273282/1654258909/images/4-eu.jpg

184.31.15.107

200 OK

2.6 kB

URL HTTP/1.1
cdn-dimi.akamaized.net/landings/273282/1654258909/images/4-eu.jpg
IP
184.31.15.107:0
ASN
#20940 Akamai International B.V.

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Size
2.6 kB (2586 bytes)
Hash
cb3aff7c886e4f72a98172b873b5e62d
33de244dcb4db4abe54b6508ae8d1546eb279aa5
d22825c9a1ff2c18506f0c2c3abaf3bb77f8352ba7bd410d50d35f20adbab08e

HTTP Headers

GET /landings/273282/1654258909/images/4-eu.jpg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgeljg.sexplayground.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: 4D/m8NpNMXYCND609Kvi/uyWH3WRG2fS7GJwe4ND6Vxp6n+dG3idVIxPMNCllBPmDQAIhVRl9II=
x-amz-request-id: 63P94DGQ1ENYZ3DY
Last-Modified: Fri, 03 Jun 2022 13:20:43 GMT
ETag: "cb3aff7c886e4f72a98172b873b5e62d"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 2586
Date: Sun, 11 Sep 2022 23:16:32 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/landings/273282/1654258909/images/password.svg

184.31.15.107

200 OK

1.3 kB

URL HTTP/1.1
cdn-dimi.akamaized.net/landings/273282/1654258909/images/password.svg
IP
184.31.15.107:0
ASN
#20940 Akamai International B.V.

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (330)
Size
1.3 kB (1339 bytes)
Hash
f42aef7f97d4c9bdb074673081f38ac7
0231df782e371d139c826e091279acd9a07e691c
5fca7f589cd825e1f152e0a1677d6cbd0a3ee3ecde05905d572af87e8b453eac

HTTP Headers

GET /landings/273282/1654258909/images/password.svg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgeljg.sexplayground.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: BRmbCrR/Awg8ttezfEdVHB092kcCco+hu599z4MEG+OuavJ5SUBI5YvcaDUUmjubbWRHDy2EGLY=
x-amz-request-id: 63PFKDVRN9N18AFB
Last-Modified: Fri, 03 Jun 2022 13:20:44 GMT
ETag: "f42aef7f97d4c9bdb074673081f38ac7"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 1339
Date: Sun, 11 Sep 2022 23:16:32 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/landings/273282/1654258909/images/6-eu.jpg

184.31.15.107

200 OK

3.3 kB

URL HTTP/1.1
cdn-dimi.akamaized.net/landings/273282/1654258909/images/6-eu.jpg
IP
184.31.15.107:0
ASN
#20940 Akamai International B.V.

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Size
3.3 kB (3256 bytes)
Hash
9a6870069cb979e16b239f9ed485fb3c
c1dc7f3620c8cc391648c550f91b269b04d3c612
3e280ac6e0be5142f62957076a5c99e792eb61533e23f33b165aea4d522de818

HTTP Headers

GET /landings/273282/1654258909/images/6-eu.jpg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgeljg.sexplayground.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: j4/OrkoSVZlr9+BQxM4sxSA8TNhXkek7PcLajKit96o3aQ3mAjUDG2hufPItX1dj3CdSEukzfsM=
x-amz-request-id: 63P4BAR8YFNQPW4N
Last-Modified: Fri, 03 Jun 2022 13:20:43 GMT
ETag: "9a6870069cb979e16b239f9ed485fb3c"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 3256
Date: Sun, 11 Sep 2022 23:16:32 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/landings/273282/1654258909/images/5-eu.jpg

184.31.15.107

200 OK

2.9 kB

URL HTTP/1.1
cdn-dimi.akamaized.net/landings/273282/1654258909/images/5-eu.jpg
IP
184.31.15.107:0
ASN
#20940 Akamai International B.V.

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Size
2.9 kB (2879 bytes)
Hash
27109a247208262e6293950ca8f5450d
cea89616d15ad45a0f2b04082dff608abd96b800
86755df878f9f09c1b06deb1ac049db77b1931d3b0f650548fac960b3fedaa96

HTTP Headers

GET /landings/273282/1654258909/images/5-eu.jpg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgeljg.sexplayground.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: AJbnZ8JGPkS+yToEK0ar7VCXmjRLwvsxwAKTeWaFebPwlfWqWkITFIzXS3+H/QmFoNpd3tQNQUA=
x-amz-request-id: 63P2M5BAM3AKYMHE
Last-Modified: Fri, 03 Jun 2022 13:20:43 GMT
ETag: "27109a247208262e6293950ca8f5450d"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 2879
Date: Sun, 11 Sep 2022 23:16:32 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/landings/273282/1654258909/images/sound-off-s8af.png

184.31.15.107

200 OK

12 kB

URL HTTP/1.1
cdn-dimi.akamaized.net/landings/273282/1654258909/images/sound-off-s8af.png
IP
184.31.15.107:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 110 x 110, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (11883 bytes)
Hash
a7f2c88cbdb10310f424f5fe1b11f14e
b7740b10817ec42a835df62ff89483ae78af0b6e
b745981776c9a0a926faa0f3fcd204257093efcca7738be3d8d5154f4a75d6cd

HTTP Headers

GET /landings/273282/1654258909/images/sound-off-s8af.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgeljg.sexplayground.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: 1B7KpQ/ZKlBJfPwz7/AJ2CyKbjaQnR+yDWP3EQc6ItDZDPeyOtZ+YtKuXG/ZlwtcKhxC2sie+js=
x-amz-request-id: 63PA3931FMD7NJB3
Last-Modified: Fri, 03 Jun 2022 13:20:44 GMT
ETag: "a7f2c88cbdb10310f424f5fe1b11f14e"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 11883
Date: Sun, 11 Sep 2022 23:16:32 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/landings/273282/1654258909/images/sound-on-s8af.png

184.31.15.107

200 OK

5.1 kB

URL HTTP/1.1
cdn-dimi.akamaized.net/landings/273282/1654258909/images/sound-on-s8af.png
IP
184.31.15.107:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 110 x 110, 8-bit/color RGBA, non-interlaced\012- data
Size
5.1 kB (5097 bytes)
Hash
abcfae4e12bd5b39f67af82fb1006e9e
1c0e8c7b910e749ca5e35ae4e09dddf1402802e7
2d1ec0bcfc06ec9046a7ed1bfb5a0399d48a4d9beaaa287f7a4c5e70e6954b03

HTTP Headers

GET /landings/273282/1654258909/images/sound-on-s8af.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgeljg.sexplayground.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: QjLOX9pyfrBxNG7SP6dRwi/laAwjRBEVC/b8Ib0GdP+Ed5ChN4x0O7MdNagv8RIv05fsjv+j0Ws=
x-amz-request-id: CXMC33Y1VCW071NS
Last-Modified: Fri, 03 Jun 2022 13:20:44 GMT
ETag: "abcfae4e12bd5b39f67af82fb1006e9e"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 5097
Date: Sun, 11 Sep 2022 23:16:32 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/landings/273282/1654258909/images/logo-ea.png

184.31.15.107

200 OK

9.6 kB

URL HTTP/1.1
cdn-dimi.akamaized.net/landings/273282/1654258909/images/logo-ea.png
IP
184.31.15.107:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 300 x 300, 8-bit gray+alpha, non-interlaced\012- data
Size
9.6 kB (9642 bytes)
Hash
7a4ae4d8150cdac08ee14c52067dbd0f
bfbc045d502315d04375dce928017c43a8cb343f
d5ddc63b8302041e6858abdec2d164f07002f53148bb8a37e2a3e8d4bc5f58ee

HTTP Headers

GET /landings/273282/1654258909/images/logo-ea.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgeljg.sexplayground.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: 7kJS7LFVjmkZrPGx/7Q/f8GnNzlFabzT84mSzAln1TjOQrly20KypG4QiJ+1qIyzifZuvynrDds=
x-amz-request-id: CXM7MEAE30MDJENZ
Last-Modified: Fri, 03 Jun 2022 13:20:44 GMT
ETag: "7a4ae4d8150cdac08ee14c52067dbd0f"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 9642
Date: Sun, 11 Sep 2022 23:16:32 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/landings/273282/1654258909/images/8-eu.jpg

184.31.15.107

200 OK

2.5 kB

URL HTTP/1.1
cdn-dimi.akamaized.net/landings/273282/1654258909/images/8-eu.jpg
IP
184.31.15.107:0
ASN
#20940 Akamai International B.V.

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Size
2.5 kB (2458 bytes)
Hash
41bbda91cef3f22db1d45d66f7ca0961
e2f8f56674e0180063a4f8287931dc0b273baf8e
d0f8fe31f17be4afd352a60628de61eef59ee08ac0ecddac9cfe4e4a504f4f0e

HTTP Headers

GET /landings/273282/1654258909/images/8-eu.jpg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgeljg.sexplayground.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: xjD7FSSPZ1TcabT3ciTHJso34tL8+Khp++EB/kIo8JPXDkHiP39fJhKaXYcJECcfIaFDyxAzRO8=
x-amz-request-id: 63PD2KC6YEPZ4EDE
Last-Modified: Fri, 03 Jun 2022 13:20:43 GMT
ETag: "41bbda91cef3f22db1d45d66f7ca0961"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 2458
Date: Sun, 11 Sep 2022 23:16:32 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/landings/273282/1654258909/images/1-eu.jpg

184.31.15.107

200 OK

4.3 kB

URL HTTP/1.1
cdn-dimi.akamaized.net/landings/273282/1654258909/images/1-eu.jpg
IP
184.31.15.107:0
ASN
#20940 Akamai International B.V.

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x80, components 3\012- data
Size
4.3 kB (4292 bytes)
Hash
6e6d0b84c81d847e24671a711115a781
20dc2d359e437dc10ceefea4d3c7b5189c2e58d0
515974c9245ead07b3332ca22fa1581622118c75955941452140a602646aa553

HTTP Headers

GET /landings/273282/1654258909/images/1-eu.jpg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgeljg.sexplayground.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: 8P6/8tnSKALZUETygqKNvBAsM43LPqOmIm/Ht8SuGdrMOmVZ7oWFaapQYFypLGk/wWf29fi56es=
x-amz-request-id: 63PESXJSMT0K1G05
Last-Modified: Fri, 03 Jun 2022 13:20:42 GMT
ETag: "6e6d0b84c81d847e24671a711115a781"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 4292
Date: Sun, 11 Sep 2022 23:16:32 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/landings/273282/1654258909/images/unlock.svg

184.31.15.107

200 OK

2.4 kB

URL HTTP/1.1
cdn-dimi.akamaized.net/landings/273282/1654258909/images/unlock.svg
IP
184.31.15.107:0
ASN
#20940 Akamai International B.V.

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (944)
Size
2.4 kB (2378 bytes)
Hash
a732e1e06affb4575c050fdb0131e5ca
da4f4f204a4d22c7424274a91520e0ea993c48c7
e17f481e5fe197e600ffe6cf53a94a4e49a73b6b817ff560cd92c3dd501d603f

HTTP Headers

GET /landings/273282/1654258909/images/unlock.svg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgeljg.sexplayground.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: t5pJFHWOyVU7fmweNkD9ZV95kPnW/2sB/9V0PhLBhvviHiUf8KWWANiG+iv3XRZu6jp7idg2T0s=
x-amz-request-id: 63P3E8W2TC4T80PR
Last-Modified: Fri, 03 Jun 2022 13:20:44 GMT
ETag: "a732e1e06affb4575c050fdb0131e5ca"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 2378
Date: Sun, 11 Sep 2022 23:16:32 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.27

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sun, 11 Sep 2022 22:56:07 GMT
Expires: Sun, 11 Sep 2022 23:22:22 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ZDVE13UUs2KcGjNLjFNLdtRLn9mVj2CzM-gIMHYLR4f22F2MoVOshQ==
Age: 1225

cdn-dimi.akamaized.net/landings/273282/1654258909/images/shield.svg

184.31.15.107

200 OK

1.5 kB

URL HTTP/1.1
cdn-dimi.akamaized.net/landings/273282/1654258909/images/shield.svg
IP
184.31.15.107:0
ASN
#20940 Akamai International B.V.

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (310)
Size
1.5 kB (1539 bytes)
Hash
0c7a0dfd64cf020cd8a6dc0c3df1dbdf
f705635388aebebae1223d828c38233067f28ab1
856fdb53067254df9495660a355e5ed91936803b567867f1053ce5fb97107888

HTTP Headers

GET /landings/273282/1654258909/images/shield.svg HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgeljg.sexplayground.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: ONerp2eVLEj3bi5eThDc7jpt8tz86hF+RvuQUcmoSodWr3uTNTRy/QcsFCiBuZgKxIbJReUbVDs=
x-amz-request-id: 63P4AKX48N6WVDD3
Last-Modified: Fri, 03 Jun 2022 13:20:44 GMT
ETag: "0c7a0dfd64cf020cd8a6dc0c3df1dbdf"
Accept-Ranges: bytes
Content-Type: image/svg+xml
Server: AmazonS3
Content-Length: 1539
Date: Sun, 11 Sep 2022 23:16:32 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/landings/273282/1654258909/images/logo-s8af.png

184.31.15.107

200 OK

15 kB

URL HTTP/1.1
cdn-dimi.akamaized.net/landings/273282/1654258909/images/logo-s8af.png
IP
184.31.15.107:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 755 x 85, 8-bit/color RGBA, non-interlaced\012- data
Size
15 kB (15373 bytes)
Hash
531066ad49aede5b3dc1ec89fb1be952
87c79b74b86b9d6fee0060ae40b0cb2c037d0757
4ad29fd05be1209e88c0526e7679c008b3b655744bef8f1c73d9c7355d83685e

HTTP Headers

GET /landings/273282/1654258909/images/logo-s8af.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgeljg.sexplayground.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: qco9ERZh0tq8rTYAjSjB2l1kCWZUOsD5T2OaVQ/2G1e9ZgCWX1j+OR9fkRBCNfyVXPDfnikpWmM=
x-amz-request-id: 63P3DGDHMJVJT3B5
Last-Modified: Fri, 03 Jun 2022 13:20:44 GMT
ETag: "531066ad49aede5b3dc1ec89fb1be952"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 15373
Date: Sun, 11 Sep 2022 23:16:32 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/landings/273282/1654258909/images/action_icons_20px_2x.png

184.31.15.107

200 OK

1.7 kB

URL HTTP/1.1
cdn-dimi.akamaized.net/landings/273282/1654258909/images/action_icons_20px_2x.png
IP
184.31.15.107:0
ASN
#20940 Akamai International B.V.

File type
PNG image data, 40 x 360, 8-bit colormap, non-interlaced\012- data
Size
1.7 kB (1726 bytes)
Hash
b699975b5fe73b087e711a33ff24ee1e
0e33cc5c32a5e7d18440751e3946076664caaf53
4e06866c22bb275c6c4f01265e1f3e9f00fe9face9739f6531371d688a8e7a7e

HTTP Headers

GET /landings/273282/1654258909/images/action_icons_20px_2x.png HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-dimi.akamaized.net/landings/273282/1654258909/css/reviews.css?1654258910
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
x-amz-id-2: MBrQ0au2flz0I1uEdx+bf3vuhVxDv2m8JNIL+bfdCdGpCAuqbFv52MBozwIT7jMpjcure09/z4k=
x-amz-request-id: 63PAYEE701X5APTM
Last-Modified: Fri, 03 Jun 2022 13:20:44 GMT
ETag: "b699975b5fe73b087e711a33ff24ee1e"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 1726
Date: Sun, 11 Sep 2022 23:16:32 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-dimi.akamaized.net/landings/273282/1654258909/images/1.mp4

184.31.15.107

206 Partial Content

79 kB

URL HTTP/1.1
cdn-dimi.akamaized.net/landings/273282/1654258909/images/1.mp4
IP
184.31.15.107:0
ASN
#20940 Akamai International B.V.

File type
ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Size
79 kB (78909 bytes)
Hash
64ca8c3b19e38cf6abd92d43b8bf1e28
2f554db7bc66505009fff34eaefa9b7c180dcf28
796a9b9d88e2e915884e59b45f70273f0723a1a5df0feb1bf0ab2b73985d98e9

HTTP Headers

GET /landings/273282/1654258909/images/1.mp4 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://rgeljg.sexplayground.net/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 206 Partial Content
x-amz-id-2: XW0DoTmt8+/0c1HXVpjqfrSQ3KGQ3nEjCnqeMS3vLieIwlwBRkv0ZO7YtsBVwZ7SygAD1UiqaMA=
x-amz-request-id: RFABBWT2ZKE9SGG8
Last-Modified: Fri, 03 Jun 2022 13:20:40 GMT
ETag: "8d436fada8d7b63c7007a505cc40bf53-2"
Accept-Ranges: bytes
Content-Type: video/mp4
Server: AmazonS3
Date: Sun, 11 Sep 2022 23:16:32 GMT
Content-Range: bytes 0-5848901/5848902
Content-Length: 5848902
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
4894843dd17150368f9e81305262c361
09c1036ec45f4da92b1749c5b0a76062d32ee681
5242d2bcde6e9f49b38e0749771de0388b9687af78be7b13a27e147b3e38684e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 23:16:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
4894843dd17150368f9e81305262c361
09c1036ec45f4da92b1749c5b0a76062d32ee681
5242d2bcde6e9f49b38e0749771de0388b9687af78be7b13a27e147b3e38684e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 23:16:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

rgeljg.sexplayground.net/js/pushjs/1.0.0/subscriber.js

52.19.101.114

200 OK

15 kB

URL HTTP/2
rgeljg.sexplayground.net/js/pushjs/1.0.0/subscriber.js
IP
52.19.101.114:0
ASN
#16509 AMAZON-02

File type
C source, ASCII text, with very long lines (32159)
Size
15 kB (15288 bytes)
Hash
bc3de6919d15a3dc07dadfa40e5e0d76
7bc7c59b75cf3f486b481791251f535123a2079f
8189fc20d9a2d7aaf7409e0bbed6d67f76e564bf41d929d7be546c7cd30d41f7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/pushjs/1.0.0/subscriber.js HTTP/1.1
Host: rgeljg.sexplayground.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rgeljg.sexplayground.net/c/1d58d0084e854e5f?s1=157404&s2=1488763&s3=&s5=backuser&click_id=0&iexpp=1&j1=1
Cookie: unique_id=631e6c5000015ae4; unique_id2=631e6c50000333ce; 631e6c50000333ce_c=1; ref_token=157404; impression=; 631e6c50000333ce_sl=[273282]
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 23:16:32 GMT
content-type: application/javascript
expires: Sun, 18 Sep 2022 23:16:32 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
26e829ba5f754918e20cbd316dc4348e
ba198501da0812dd11ca3b38a51325b5de6cfa60
4352c25d4af7637a8435b0df6d042fc606d37a348e966b99fecce8a853b8ebc0

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6576
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 23:16:32 GMT
Last-Modified: Sun, 11 Sep 2022 21:26:56 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
4894843dd17150368f9e81305262c361
09c1036ec45f4da92b1749c5b0a76062d32ee681
5242d2bcde6e9f49b38e0749771de0388b9687af78be7b13a27e147b3e38684e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 23:16:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

push.services.mozilla.com/

34.217.237.91

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.217.237.91:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: rRKtftlkzpqgfPe4aoObFg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: FzJnZf1z2X/o0eE2kMBgeId4G6o=

cdn-dimi.akamaized.net/landings/273282/1654258909/images/music.mp4

184.31.15.107

206 Partial Content

8.6 kB

URL HTTP/1.1
cdn-dimi.akamaized.net/landings/273282/1654258909/images/music.mp4
IP
184.31.15.107:0
ASN
#20940 Akamai International B.V.

File type
gzip compressed data, max compression\012- data
Size
8.6 kB (8604 bytes)
Hash
73069e532b7039778d3a7128c997c61a
c523bbf1ac7f4e612c8ade75434c42fbca885adc
b6d7aec09aad2bb78dfbad4c9530fd03c0f33aed8385c3ee57c10b1fe959c4d5

HTTP Headers

GET /landings/273282/1654258909/images/music.mp4 HTTP/1.1
Host: cdn-dimi.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://rgeljg.sexplayground.net/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 206 Partial Content
x-amz-id-2: 2TI0cdfDhtkZc1OemZ2HxRwYnIgZX5VMk7fAoMlEFZ8zC6Hz35SejfGmdQUwF/ccTBhun5guSJs=
x-amz-request-id: 63P78M1M836XV1Y0
Last-Modified: Fri, 03 Jun 2022 13:20:44 GMT
ETag: "69d969006408430e077f63b77b775050"
Accept-Ranges: bytes
Content-Type: video/mp4
Server: AmazonS3
Date: Sun, 11 Sep 2022 23:16:32 GMT
Content-Range: bytes 0-1813307/1813308
Content-Length: 1813308
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20571
Expires: Mon, 12 Sep 2022 04:59:25 GMT
Date: Sun, 11 Sep 2022 23:16:34 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20571
Expires: Mon, 12 Sep 2022 04:59:25 GMT
Date: Sun, 11 Sep 2022 23:16:34 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20571
Expires: Mon, 12 Sep 2022 04:59:25 GMT
Date: Sun, 11 Sep 2022 23:16:34 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20571
Expires: Mon, 12 Sep 2022 04:59:25 GMT
Date: Sun, 11 Sep 2022 23:16:34 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20571
Expires: Mon, 12 Sep 2022 04:59:25 GMT
Date: Sun, 11 Sep 2022 23:16:34 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23d4b64c-6112-465a-8c57-47176235f38c.jpeg

34.120.237.76

200 OK

7.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23d4b64c-6112-465a-8c57-47176235f38c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.4 kB (7399 bytes)
Hash
00203b01614ba1204d46986be83342ab
0b431fbd0f7382cb7648335f7e8390a37394771e
cc9bf1aa5f9858440300b8bac4f4069c5b4af1f91ee2c066324db81a57399765

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23d4b64c-6112-465a-8c57-47176235f38c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7399
x-amzn-requestid: 3f1c5097-3db7-40a7-821f-75341226b56b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUIxzHh-IAMFcFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e54d8-3346061d670aa4d46eec144f;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 21:36:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wHFCN1TcnJPXYOcL-cBD93Q-GD8AXPAY_bYgMbbfy_NmKTafGSJfKg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 21:45:14 GMT
age: 5480
etag: "0b431fbd0f7382cb7648335f7e8390a37394771e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f6d3098-68f1-4ed7-baff-aed0e0b792ed.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8658 bytes)
Hash
da890c42b21daa080ec1bdd023800393
02807770b43d375393e1efef0ba432b664a05be0
c0795e0b7535a3f25564b52b2e70a7447baa79378c95153ceb51f8bd3620d89e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f6d3098-68f1-4ed7-baff-aed0e0b792ed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8658
x-amzn-requestid: 37529bed-8f0c-43dc-926b-32ef4a7adbac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNkSfHkDIAMFV9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb40f-45988cf4677a87b521ac15b8;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:45:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8uWWE8aZpq7Fav6RD5pgwfxutdDtXgNdHxo6Jgwe7x3Mkg_DO8twrw==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 22:11:10 GMT
age: 3924
etag: "02807770b43d375393e1efef0ba432b664a05be0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75931920-737e-40b5-8dd6-d2070639ea2d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.8 kB (8799 bytes)
Hash
c14088c4ca0d576e087feed41b7f1565
172b23f2ef39b6c3fdebb5441b10a95712206d0a
2699efa811ceac5420f5bd26c35a6f48b51854e29cbce7cbb62efb613db7d6b9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75931920-737e-40b5-8dd6-d2070639ea2d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8799
x-amzn-requestid: 1bcdf387-9ad2-449a-861e-3352b1744d23
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUI-0G6vIAMFgbA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e552b-42aa46af6315148106c4fdee;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 21:37:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: g2mxKK8L5T4YkeD8JqNUuV_KfsIq8ypRMvxhsyzSZSEIP4gDl4zLVQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 21:41:51 GMT
age: 5683
etag: "172b23f2ef39b6c3fdebb5441b10a95712206d0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a938fd0-09b1-4550-89f4-e81e9c6a8737.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.2 kB (4162 bytes)
Hash
b674daf3dc6e85ed054ab34d69979b86
47aaf5a3af2c25820d01d613c82b7f1279a298fc
7b9993ef69d4b77c1533ada040c85563b9cf7b1f5d007177c005f6cd7fdba1d3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a938fd0-09b1-4550-89f4-e81e9c6a8737.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4162
x-amzn-requestid: 9dc27e34-69e1-439d-8974-1297584ef4d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YSIhuHlWIAMFhOQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d87a4-410e9ede524aa657609a057a;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 07:00:52 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: UxATqmWDCTwVqA3ORIXXObWZZj158TSRUoaAr48b08sxdAxBicw5zA==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 07:19:23 GMT
age: 57431
etag: "47aaf5a3af2c25820d01d613c82b7f1279a298fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36ab1cf7-da3f-4bea-abd5-3f9da5a18c29.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.1 kB (9126 bytes)
Hash
beca122055c554548ca6ef68a66a4e2e
cf5ec3650282d05c082eb0534f1b70a59f9f4bbe
a9cf7ef5dfb6a58c66bc29b2a280c2253e56a28ce317d8271273ddae2008d9d5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36ab1cf7-da3f-4bea-abd5-3f9da5a18c29.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9126
x-amzn-requestid: 86fd10d3-f2bb-4191-93b0-3a416000fd68
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUJHeGMqoAMFnwA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e5562-1f8b12e10d7212353f050f3f;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 21:38:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: WcMMN48JT7YRvUBGR6oAes5EwusRcdgrWT60xJffsOfsbkJ4_XyALg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 21:41:51 GMT
age: 5683
etag: "cf5ec3650282d05c082eb0534f1b70a59f9f4bbe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.5 kB (9466 bytes)
Hash
6174529fff57758e958da5432344962f
05ec2076b32398d60ee77fab8c14345bc7dfe647
65284a76355864efa944dff5033575013c6d74a019a7b731e0236603f2f656a7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9466
x-amzn-requestid: ba3f7eac-61c9-4b5f-ae8a-b372906a25ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YOTeoHMKoAMFr5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bff90-1e70e2c444242a2d46387986;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 03:08:00 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: VQ2j4y0nuCTtC9kxOcpQ4PPGb31UYyi_QlTX_l155fbHvCdf1ujouA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 d8d9c12d1a621129f4bc739038e7c72e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 03:47:47 GMT
age: 70127
etag: "05ec2076b32398d60ee77fab8c14345bc7dfe647"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

rgeljg.sexplayground.net/js/service-worker.js

52.19.101.114

200 OK

0 B

URL HTTP/2
rgeljg.sexplayground.net/js/service-worker.js
IP
52.19.101.114:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/service-worker.js HTTP/1.1
Host: rgeljg.sexplayground.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: unique_id=631e6c5000015ae4; unique_id2=631e6c50000333ce; 631e6c50000333ce_c=1; ref_token=157404; impression=; 631e6c50000333ce_sl=[273282]
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 23:16:32 GMT
content-type: application/javascript
expires: Sun, 18 Sep 2022 23:16:32 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2

rgeljg.sexplayground.net/c/1d58d0084e854e5f?s1=157404&s2=1488763&click_id=0&j1=1

52.19.101.114

200 OK

0 B

URL HTTP/2
rgeljg.sexplayground.net/c/1d58d0084e854e5f?s1=157404&s2=1488763&click_id=0&j1=1
IP
52.19.101.114:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /c/1d58d0084e854e5f?s1=157404&s2=1488763&click_id=0&j1=1 HTTP/1.1
Host: rgeljg.sexplayground.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://flrap.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 23:16:32 GMT
content-type: text/html; charset=utf-8
set-cookie: unique_id=631e6c5000015ae4; Path=/; Expires=Thu, 10 Nov 2022 23:16:32 GMT; Secure; SameSite=None
unique_id2=631e6c50000333ce; Path=/; Expires=Sat, 10 Dec 2022 23:16:32 GMT; Secure; SameSite=None
631e6c50000333ce_c=1; Path=/; Expires=Sat, 10 Dec 2022 23:16:32 GMT; Secure; SameSite=None
ref_token=157404; Path=/; Expires=Tue, 11 Oct 2022 23:16:32 GMT; Secure; SameSite=None
impression=; Path=/; Expires=Sun, 11 Sep 2022 23:16:32 GMT; Secure; SameSite=None
631e6c50000333ce_sl=[273282]; Path=/; Expires=Sun, 25 Sep 2022 23:16:32 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files detected

URL

IP

ASN

File type

Size

Hash

Detections

JavaScript (16)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML