1.2 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (422), with CRLF, LF line terminators
Hash 8bd171df08282d5c6fa940268d4889dd
94985afb89c40ebe9a6cf808c7948e2d899379f2
923951507b9421c46ab8f01468ab5f6d267b651167c9f15bdbe92030d2ce441a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: 64.91.224.242
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/html
Content-Encoding: gzip
Last-Modified: Mon, 24 May 2021 17:11:56 GMT
Accept-Ranges: bytes
ETag: "09617e6bf50d71:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Wed, 06 Dec 2023 14:52:26 GMT
Content-Length: 1229
64.91.224.242/css/style.css
200 OK 4.8 kB URL GET HTTP/1.1 64.91.224.242/css/style.css
IP
File type ASCII text, with CRLF line terminators
Hash 1a7061cb898cf3b481871ecc1ac7da60
9d9030fdeed6632e118769fb8994c96d0f89642f
c90bf6cc3a9a6db7701517fd6a822bdf657ff3a465769f7ca5feaff75970c424
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /css/style.css HTTP/1.1
Host: 64.91.224.242
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://64.91.224.242/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Wed, 01 Nov 2017 07:00:06 GMT
Accept-Ranges: bytes
ETag: "01f37cdf52d31:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Wed, 06 Dec 2023 14:52:26 GMT
Content-Length: 4834
fonts.googleapis.com/css?family=Open+Sans:300,400,600&subset=latin,latin-ext,cyrillic,cyrillic-ext,greek,greek-ext,vietnamese
200 OK 716 B URL GET HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans:300,400,600&subset=latin,latin-ext,cyrillic,cyrillic-ext,greek,greek-ext,vietnamese
IP
Hash 948cdbb809399e45ca90177b4498a6ba
69ad1b1f05b1216a2c2c9ade9d60b476ade105bc
667fc446d4af4cfcb38101fe9597b80c1ebc1ddd594db32e37e763dcc38a7047
GET /css?family=Open+Sans:300,400,600&subset=latin,latin-ext,cyrillic,cyrillic-ext,greek,greek-ext,vietnamese HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://64.91.224.242/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Wed, 06 Dec 2023 14:52:26 GMT
Date: Wed, 06 Dec 2023 14:52:26 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
assets.plesk.com/static/default-website-content/public/fonts/inter-v12-latin-regular-be7cb1.woff2
200 OK 17 kB URL GET HTTP/2 assets.plesk.com/static/default-website-content/public/fonts/inter-v12-latin-regular-be7cb1.woff2
IP
ASN #60068 Datacamp Limited
Certificate IssuerLet's Encrypt
Subject1226552209.rsc.cdn77.org
Fingerprint6D:2F:F9:19:86:C9:4F:C8:2A:4A:4F:49:5D:3A:4C:7F:DD:C4:21:87
ValidityFri, 29 Sep 2023 14:57:38 GMT - Thu, 28 Dec 2023 14:57:37 GMT
File type Web Open Font Format (Version 2), TrueType, length 16708, version 1.0\012- data
Hash 68c477c4c76baab3a8d1ef6a55aa986f
4af50379e13514558dd53d123db8ea101ec5e24c
0364d368abf457d4e70dbc7a7a360f3486eaea2837b194915b23d4398bee91ac
GET /static/default-website-content/public/fonts/inter-v12-latin-regular-be7cb1.woff2 HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://64.91.224.242/
Origin: http://64.91.224.242
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 14:52:27 GMT
content-type: font/woff2
content-length: 16708
permissions-policy: interest-cohort=()
last-modified: Thu, 16 Nov 2023 07:18:19 GMT
access-control-allow-origin: *
etag: "6555c23b-4144"
expires: Thu, 16 Nov 2023 07:36:34 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: D978:D547:210ED5F:2194128:6555C42A
via: 1.1 varnish
age: 0
x-served-by: cache-ams21050-AMS
x-cache-hits: 0
x-timer: S1700119595.640276,VS0,VE104
vary: Accept-Encoding
x-fastly-request-id: c4794b67314bd2309bf19a14b7c9585e7b94da4b
x-77-nzt: ArlMCQ03Nzf/+wAAALlMCgE3Nzf/NgAAAA
x-77-nzt-ray: c0a4cc2893de0ebfab8a706524d7ee05
x-accel-expires: @1701874692
x-accel-date: 1701874096
x-77-cache: HIT
x-77-age: 305
server: CDN77-Turbo
x-cache-lb: HIT
x-age-lb: 251
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/fonts/inter-v12-latin-700-54321e.woff2
200 OK 18 kB URL GET HTTP/2 assets.plesk.com/static/default-website-content/public/fonts/inter-v12-latin-700-54321e.woff2
IP
ASN #60068 Datacamp Limited
Certificate IssuerLet's Encrypt
Subject1226552209.rsc.cdn77.org
Fingerprint6D:2F:F9:19:86:C9:4F:C8:2A:4A:4F:49:5D:3A:4C:7F:DD:C4:21:87
ValidityFri, 29 Sep 2023 14:57:38 GMT - Thu, 28 Dec 2023 14:57:37 GMT
File type Web Open Font Format (Version 2), TrueType, length 17784, version 1.0\012- data
Hash 8d7a3f034881d1712b3325cc71425c10
9594f24367800a20297a96c2d4f957e62c63e207
ced2d8e02e2fbf08d2edec9b5f13648ed8348588a05f7181632f3c1dd6e1f5c3
GET /static/default-website-content/public/fonts/inter-v12-latin-700-54321e.woff2 HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://64.91.224.242
DNT: 1
Connection: keep-alive
Referer: http://64.91.224.242/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 14:52:27 GMT
content-type: font/woff2
content-length: 17784
permissions-policy: interest-cohort=()
last-modified: Thu, 16 Nov 2023 07:18:19 GMT
access-control-allow-origin: *
etag: "6555c23b-4578"
expires: Thu, 16 Nov 2023 07:34:04 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 5918:38A2:494CB21:4A6FAD8:6555C394
via: 1.1 varnish
age: 0
x-served-by: cache-ams21040-AMS
x-cache-hits: 0
x-timer: S1700119445.895457,VS0,VE108
vary: Accept-Encoding
x-fastly-request-id: 465c18a52bdce1a4b459b010546c83c4376ef657
x-77-nzt: ArlMCQ03Nzf/hQAAALlMCgE3Nzf/AQEAAA
x-77-nzt-ray: c0a4cc2893de0ebfab8a7065d485a006
x-accel-expires: @1701874690
x-accel-date: 1701874214
x-77-cache: HIT
x-77-age: 390
server: CDN77-Turbo
x-cache-lb: HIT
x-age-lb: 133
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2
64.91.224.242/img/globe.png
200 OK 50 kB URL GET HTTP/1.1 64.91.224.242/img/globe.png
IP
File type PNG image data, 546 x 480, 8-bit/color RGB, non-interlaced\012- data
Hash 396b2938f45c3eee4188c34fc1c5021e
0716af0793e6a9f2b62a6c21038f703b88656c09
49c6d2c4fc8143dd2389df5d6da8ff30128a1257a72ce2ddc922e4267bcb2f92
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /img/globe.png HTTP/1.1
Host: 64.91.224.242
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://64.91.224.242/css/style.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 26 Apr 2017 10:02:02 GMT
Accept-Ranges: bytes
ETag: "0c9952674bed21:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Wed, 06 Dec 2023 14:52:26 GMT
Content-Length: 49609
64.91.224.242/img/forum.png
200 OK 3.4 kB URL GET HTTP/1.1 64.91.224.242/img/forum.png
IP
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 4a403551d727257944069360bff39127
66c59ee0139f2cd96077c09d2ff988c183931aad
f29b7727a1739d8a376f15794144bf71711378c36e185090f5929f16283db008
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /img/forum.png HTTP/1.1
Host: 64.91.224.242
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://64.91.224.242/css/style.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 26 Apr 2017 10:02:02 GMT
Accept-Ranges: bytes
ETag: "0c9952674bed21:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Wed, 06 Dec 2023 14:52:26 GMT
Content-Length: 3425
64.91.224.242/img/linkedin.png
200 OK 737 B URL GET HTTP/1.1 64.91.224.242/img/linkedin.png
IP
File type PNG image data, 64 x 64, 8-bit colormap, non-interlaced\012- data
Hash 8ee7e0a3a9ae1040a9b53725d2caed7c
285751bc16a373c05d92eadcafbce62bd981b527
e62ac2523b7b620400d81820050aa6cdde9ab60585b6c648bac7e0520e604637
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /img/linkedin.png HTTP/1.1
Host: 64.91.224.242
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://64.91.224.242/css/style.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 01 Nov 2017 07:00:06 GMT
Accept-Ranges: bytes
ETag: "01f37cdf52d31:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Wed, 06 Dec 2023 14:52:26 GMT
Content-Length: 737
64.91.224.242/img/blog.png
200 OK 2.3 kB URL GET HTTP/1.1 64.91.224.242/img/blog.png
IP
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash f7891a5403c402960ecb0ae37decbc65
105e9ffa2949e7460075e120277b61a4d656e495
68c47af57438cc7a864c4ed04ceffc2d66ace8792792f5ba66f6b4caedcced2b
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /img/blog.png HTTP/1.1
Host: 64.91.224.242
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://64.91.224.242/css/style.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 26 Apr 2017 10:02:02 GMT
Accept-Ranges: bytes
ETag: "0c9952674bed21:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Wed, 06 Dec 2023 14:52:26 GMT
Content-Length: 2328
64.91.224.242/img/knowledge-base.png
200 OK 1.5 kB URL GET HTTP/1.1 64.91.224.242/img/knowledge-base.png
IP
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 0c1ea46ae67d053a893854c4c4d4cc84
dd1d9378fde23fb9da4dcfaf43431a420ab11f45
3e070b868ea022d3950d2c9d5cdbea9901b15fae3bc2a3bf9cf4ce6a585d9203
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /img/knowledge-base.png HTTP/1.1
Host: 64.91.224.242
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://64.91.224.242/css/style.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 26 Apr 2017 10:02:02 GMT
Accept-Ranges: bytes
ETag: "0c9952674bed21:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Wed, 06 Dec 2023 14:52:26 GMT
Content-Length: 1495
64.91.224.242/img/twitter.png
200 OK 2.3 kB URL GET HTTP/1.1 64.91.224.242/img/twitter.png
IP
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 49f00313f6add19cd5da23ea1409fe05
0bec70d41ddd47e300b16ce0d0895c1c3c745191
039ac96482995b80fa192cd487bc668e2acec3f84b3fb908a9624e9888acbc10
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /img/twitter.png HTTP/1.1
Host: 64.91.224.242
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://64.91.224.242/css/style.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 26 Apr 2017 10:02:02 GMT
Accept-Ranges: bytes
ETag: "0c9952674bed21:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Wed, 06 Dec 2023 14:52:27 GMT
Content-Length: 2302
64.91.224.242/img/facebook.png
200 OK 1.9 kB URL GET HTTP/1.1 64.91.224.242/img/facebook.png
IP
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash cb76fd023bb8bfb9dabae1b74019fd66
ca91a9cb8662e8af82146cf507c8380bab9e11ab
6216c4e00e4557d3db7efbe6d44b68bcc46823d60ffcad289b409a9dd73ff813
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /img/facebook.png HTTP/1.1
Host: 64.91.224.242
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://64.91.224.242/css/style.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 26 Apr 2017 10:02:02 GMT
Accept-Ranges: bytes
ETag: "0c9952674bed21:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Wed, 06 Dec 2023 14:52:27 GMT
Content-Length: 1933
assets.plesk.com/static/default-website-content/public/img/logo-81ca7a.svg
200 OK 114 kB URL GET HTTP/2 assets.plesk.com/static/default-website-content/public/img/logo-81ca7a.svg
IP
ASN #60068 Datacamp Limited
Certificate IssuerLet's Encrypt
Subject1226552209.rsc.cdn77.org
Fingerprint6D:2F:F9:19:86:C9:4F:C8:2A:4A:4F:49:5D:3A:4C:7F:DD:C4:21:87
ValidityFri, 29 Sep 2023 14:57:38 GMT - Thu, 28 Dec 2023 14:57:37 GMT
File type gzip compressed data, from Unix\012- data
Size 114 kB (114471 bytes)
Hash 46f1ec69ea0eb779dbd696256fbac860
0b585f07ad22126cef03f6cba3ce7ca2ed514e0b
d8c7d84fa57cf2c6a77883ab47d448eb2e1fb121ebe0d40706258e776f44b876
GET /static/default-website-content/public/img/logo-81ca7a.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://64.91.224.242/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 14:52:27 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
last-modified: Thu, 16 Nov 2023 07:18:19 GMT
access-control-allow-origin: *
etag: W/"6555c23b-833"
expires: Thu, 16 Nov 2023 07:29:30 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 8BB2:D51D:1A0AFC0:1A722AC:6555C282
via: 1.1 varnish
age: 0
x-served-by: cache-ams21033-AMS
x-cache-hits: 0
x-timer: S1700119170.375068,VS0,VE113
vary: Accept-Encoding, Accept-Encoding
x-fastly-request-id: 6815c759031341df013224e76954136c205880b3
x-77-nzt: ArlMCQ03NzfeJQIAALlMCgE3Nzf/AAAAAA
x-77-nzt-ray: c0a4cc28bbe812b9ab8a70654751f203
x-accel-expires: @1701874946
x-accel-date: 1701873798
x-77-cache: HIT
x-77-age: 549
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: REVALIDATED
x-age-lb: 549
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
firehose.us-west-2.amazonaws.com/
200 OK 20 B URL OPTIONS HTTP/1.1 firehose.us-west-2.amazonaws.com/
IP
Certificate IssuerAmazon
Subjectfirehose.us-west-2.amazonaws.com
Fingerprint33:FD:78:B1:20:8F:6F:DC:AD:63:CA:90:DB:65:81:6C:6B:52:01:BB
ValidityWed, 01 Mar 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)\012- data
Hash 3970e82605c7d109bb348fc94e9eecc0
e03849ea786b9f7b28a35c17949e85a93eb1cff1
f5d031af01f137ae07fa71720fab94d16cc8a2a59868766002918b7c240f3967
OPTIONS / HTTP/1.1
Host: firehose.us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type,x-amz-content-sha256,x-amz-date,x-amz-target,x-amz-user-agent
Referer: http://64.91.224.242/
Origin: http://64.91.224.242
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amzn-RequestId: fa96fd89-0e97-768c-a77c-7162fb6646c0
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Access-Control-Allow-Headers: authorization,content-type,x-amz-content-sha256,x-amz-date,x-amz-target,x-amz-user-agent
Access-Control-Allow-Methods: POST
Access-Control-Expose-Headers: x-amzn-RequestId,x-amzn-ErrorType,x-amz-request-id,x-amz-id-2,x-amzn-ErrorMessage,Date
Access-Control-Max-Age: 172800
Content-Length: 20
Date: Wed, 06 Dec 2023 14:52:27 GMT
firehose.us-west-2.amazonaws.com/
200 OK 246 B URL OPTIONS HTTP/1.1 firehose.us-west-2.amazonaws.com/
IP
Certificate IssuerAmazon
Subjectfirehose.us-west-2.amazonaws.com
Fingerprint33:FD:78:B1:20:8F:6F:DC:AD:63:CA:90:DB:65:81:6C:6B:52:01:BB
ValidityWed, 01 Mar 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 8eed38c2202c32cb08e2b19f2c216c04
7394dbf59bb452f06f1a618d9db9d9e7d520b4ff
6891b2ab8a26d2c27fdb076b1b57bda8c6e6d69ceaf6b1354b2429ea2f6adeda
POST / HTTP/1.1
Host: firehose.us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Amz-User-Agent: aws-sdk-js/2.1335.0 callback
Content-Type: application/x-amz-json-1.1
X-Amz-Target: Firehose_20150804.PutRecord
X-Amz-Content-Sha256: eb6d5c45e4555cf147cbf697405f8bec5cd9215c5d6d2cdc053bf1b7b706dfc7
X-Amz-Date: 20231206T145233Z
Authorization: AWS4-HMAC-SHA256 Credential=AKIAR4YEYRJL6JKBNRGP/20231206/us-west-2/firehose/aws4_request, SignedHeaders=host;x-amz-content-sha256;x-amz-date;x-amz-target;x-amz-user-agent, Signature=0103233e987b0a5a44fd10e7a8e006c9b3b1272e271da83db48ab7a92f62f548
Content-Length: 108
Origin: http://64.91.224.242
DNT: 1
Connection: keep-alive
Referer: http://64.91.224.242/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amzn-RequestId: f5e5e00c-6196-9d0d-a80f-6ce79467ad41
Access-Control-Allow-Origin: *
Content-Encoding: gzip
x-amz-id-2: ItKvfT4bd6R6Qr6YqybkOiP81oxBG1I4XoELFWWaBHQ8l3xbOwC2mHubqXS3zPN30SJL0OCYmTuoagQHHZXn0DLGCG22dcbn
Access-Control-Expose-Headers: x-amzn-RequestId,x-amzn-ErrorType,x-amz-request-id,x-amz-id-2,x-amzn-ErrorMessage,Date
Content-Type: application/x-amz-json-1.1
Content-Length: 246
Date: Wed, 06 Dec 2023 14:52:27 GMT
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
0 B URL GET fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://64.91.224.242
DNT: 1
Connection: keep-alive
Referer: http://fonts.googleapis.com/
Pragma: no-cache
Cache-Control: no-cache
assets.plesk.com/static/default-website-content/public/favicon-2d0e10.ico
200 OK 114 kB URL GET HTTP/2 assets.plesk.com/static/default-website-content/public/favicon-2d0e10.ico
IP
ASN #60068 Datacamp Limited
Certificate IssuerLet's Encrypt
Subject1226552209.rsc.cdn77.org
Fingerprint6D:2F:F9:19:86:C9:4F:C8:2A:4A:4F:49:5D:3A:4C:7F:DD:C4:21:87
ValidityFri, 29 Sep 2023 14:57:38 GMT - Thu, 28 Dec 2023 14:57:37 GMT
File type MS Windows icon resource - 7 icons, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, -128x-128, 32 bits/pixel\012- data
Size 114 kB (113459 bytes)
Hash 1db747255c64a30f9236e9d929e986ca
384023452346aa087d40c93c23ca2f5e32ff1b1f
88baf40feb43463a8f6aa6543e88bdbe33f0db9a317486e786eee1e5c76a9544
GET /static/default-website-content/public/favicon-2d0e10.ico HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://64.91.224.242/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 14:52:27 GMT
content-type: image/vnd.microsoft.icon
content-length: 113459
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 16 Nov 2023 07:18:19 GMT
access-control-allow-origin: *
etag: "6555c23b-1bb33"
expires: Thu, 16 Nov 2023 07:32:16 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: D898:F954:49C56C2:4AE0922:6555C328
via: 1.1 varnish
age: 0
x-served-by: cache-ams21042-AMS
x-cache-hits: 0
x-timer: S1700119337.623742,VS0,VE109
vary: Accept-Encoding
x-fastly-request-id: a0a8c7edc40015f0e509e49ee68155eb0c88be02
x-77-nzt: ArlMCQ03Nzf/TAEAALlMCgE3Nzf/VAAAAA
x-77-nzt-ray: c0a4cc28bbe812b9ab8a7065a0c1ef1c
x-accel-expires: @1701874594
x-accel-date: 1701874015
x-77-cache: HIT
x-77-age: 416
server: CDN77-Turbo
x-cache-lb: HIT
x-age-lb: 332
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/default-server-index.js
200 OK 29 kB URL GET HTTP/2 assets.plesk.com/static/default-website-content/public/default-server-index.js
IP
ASN #60068 Datacamp Limited
Certificate IssuerLet's Encrypt
Subject1226552209.rsc.cdn77.org
Fingerprint6D:2F:F9:19:86:C9:4F:C8:2A:4A:4F:49:5D:3A:4C:7F:DD:C4:21:87
ValidityFri, 29 Sep 2023 14:57:38 GMT - Thu, 28 Dec 2023 14:57:37 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/default-website-content/public/default-server-index.js HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://64.91.224.242/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 14:52:26 GMT
content-type: application/javascript; charset=utf-8
permissions-policy: interest-cohort=()
last-modified: Thu, 16 Nov 2023 07:18:19 GMT
access-control-allow-origin: *
etag: W/"6555c23b-71ff"
expires: Thu, 16 Nov 2023 07:31:53 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 3A26:5F09:4908010:4A22CB7:6555C310
via: 1.1 varnish
age: 0
x-served-by: cache-ams21071-AMS
x-cache-hits: 0
x-timer: S1700119313.074635,VS0,VE114
vary: Accept-Encoding, Accept-Encoding
x-fastly-request-id: dcaf9a569e7a80ebd7a10a98b145c6ea717b733f
x-77-nzt: ArlMCQ03Nzf/SwEAALlMCgE3Nzf/KwAAAA
x-77-nzt-ray: c0a4cc28bbe812b9aa8a7065dd631433
x-accel-expires: @1701874465
x-accel-date: 1701874015
x-77-cache: HIT
x-77-age: 374
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT
x-age-lb: 331
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
64.91.224.242/img/logo.png
200 OK 14 kB URL GET HTTP/1.1 64.91.224.242/img/logo.png
IP
File type PNG image data, 133 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 6cfcc6677ca23f1da51c84983c000618
aeb5551fe6ac3d736f769f0c3ffe8e886968fd44
06cf561d2070568635e002b019b3bbff2016d21a8f46502480ec8a534e31307c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /img/logo.png HTTP/1.1
Host: 64.91.224.242
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://64.91.224.242/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 26 Apr 2017 10:02:02 GMT
Accept-Ranges: bytes
ETag: "0c9952674bed21:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Wed, 06 Dec 2023 14:52:26 GMT
Content-Length: 18187
assets.plesk.com/static/default-website-content/public/img/wpg-0f8209.svg
200 OK 1.9 kB URL GET HTTP/2 assets.plesk.com/static/default-website-content/public/img/wpg-0f8209.svg
IP
ASN #60068 Datacamp Limited
Certificate IssuerLet's Encrypt
Subject1226552209.rsc.cdn77.org
Fingerprint6D:2F:F9:19:86:C9:4F:C8:2A:4A:4F:49:5D:3A:4C:7F:DD:C4:21:87
ValidityFri, 29 Sep 2023 14:57:38 GMT - Thu, 28 Dec 2023 14:57:37 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1953), with no line terminators
Hash e797c14250ba3c4185601c2a48091b20
087f038c0033b8c3799c2f40d80e4525ad09bd93
c71654edf3f67cc23796e5ea1f182a0e31aa866610906d2ba3481fe934b3f60f
GET /static/default-website-content/public/img/wpg-0f8209.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://64.91.224.242/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 14:52:27 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
last-modified: Thu, 16 Nov 2023 07:18:19 GMT
access-control-allow-origin: *
etag: W/"6555c23b-771"
expires: Thu, 16 Nov 2023 07:30:40 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 83BA:268E:482752B:4945F06:6555C2C8
via: 1.1 varnish
age: 0
x-served-by: cache-ams21036-AMS
x-cache-hits: 0
x-timer: S1700119240.113813,VS0,VE117
vary: Accept-Encoding, Accept-Encoding
x-fastly-request-id: fa9c03805aecdf70a44c5a0040979059f677d247
x-77-nzt: ArlMCQ03Nzf/TAEAALlMCgE3Nzf/cAAAAA
x-77-nzt-ray: c0a4cc28bbe812b9ab8a7065b2e01604
x-accel-expires: @1701874523
x-accel-date: 1701874015
x-77-cache: HIT
x-77-age: 444
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT
x-age-lb: 332
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/bundle.js
200 OK 295 kB URL GET HTTP/2 assets.plesk.com/static/default-website-content/public/bundle.js
IP
ASN #60068 Datacamp Limited
Certificate IssuerLet's Encrypt
Subject1226552209.rsc.cdn77.org
Fingerprint6D:2F:F9:19:86:C9:4F:C8:2A:4A:4F:49:5D:3A:4C:7F:DD:C4:21:87
ValidityFri, 29 Sep 2023 14:57:38 GMT - Thu, 28 Dec 2023 14:57:37 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 295 kB (295325 bytes)
Hash c7a9f0e4da53a89761ad5d0278130614
58db235e943b3fc06bbd00031236e140614abc13
8916961fade067cb7c7ff49f8396e6afa17b539db8f0d32fdc1bc2740d7615c6
GET /static/default-website-content/public/bundle.js HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://64.91.224.242/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 14:52:27 GMT
content-type: application/javascript; charset=utf-8
permissions-policy: interest-cohort=()
last-modified: Thu, 16 Nov 2023 07:18:19 GMT
access-control-allow-origin: *
etag: W/"6555c23b-4819d"
expires: Thu, 16 Nov 2023 07:34:47 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: E6B4:570C:1AF023:1B5EA9:6555C3BF
via: 1.1 varnish
age: 0
x-served-by: cache-ams21059-AMS
x-cache-hits: 0
x-timer: S1700119488.556318,VS0,VE118
vary: Accept-Encoding, Accept-Encoding
x-fastly-request-id: 47b12558ac97d66c638d8d6aea87051d20c16c3c
x-77-nzt: ArlMCQ03NzfeigIAALlMCgE3Nzf/UQAAAA
x-77-nzt-ray: c0a4cc28bbe812b9ab8a7065be3a2304
x-accel-expires: @1701874874
x-accel-date: 1701873697
x-77-cache: HIT
x-77-age: 731
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: REVALIDATED
x-age-lb: 650
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
0 B URL GET fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://64.91.224.242
DNT: 1
Connection: keep-alive
Referer: http://fonts.googleapis.com/
Pragma: no-cache
Cache-Control: no-cache
assets.plesk.com/static/default-website-content/public/img/stars-fb15b6.svg
200 OK 24 kB URL GET HTTP/2 assets.plesk.com/static/default-website-content/public/img/stars-fb15b6.svg
IP
ASN #60068 Datacamp Limited
Certificate IssuerLet's Encrypt
Subject1226552209.rsc.cdn77.org
Fingerprint6D:2F:F9:19:86:C9:4F:C8:2A:4A:4F:49:5D:3A:4C:7F:DD:C4:21:87
ValidityFri, 29 Sep 2023 14:57:38 GMT - Thu, 28 Dec 2023 14:57:37 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (23586)
Hash 18aa9407cb97208391f24bcef249457f
c76eef71591d7d92fb30f51b49dadf16ae600a05
30628c4c5254e81ed7f953bd449c6976ce87210089c4b221f00c3a7a5d597736
GET /static/default-website-content/public/img/stars-fb15b6.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://64.91.224.242/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 14:52:27 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
last-modified: Thu, 16 Nov 2023 07:18:19 GMT
access-control-allow-origin: *
etag: W/"6555c23b-5c23"
expires: Thu, 16 Nov 2023 07:31:21 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 9A00:38A2:493F0EF:4A61D8C:6555C2F1
via: 1.1 varnish
age: 0
x-served-by: cache-ams21083-AMS
x-cache-hits: 0
x-timer: S1700119281.449913,VS0,VE110
vary: Accept-Encoding, Accept-Encoding
x-fastly-request-id: 861c5e8860816677f98143e5ccdb9a85a64915bc
x-77-nzt: ArlMCQ03NzfeXgIAALlMCgE3Nzf/RwAAAA
x-77-nzt-ray: c0a4cc28bbe812b9ab8a70651eea6e06
x-accel-expires: @1701874939
x-accel-date: 1701873741
x-77-cache: HIT
x-77-age: 677
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: REVALIDATED
x-age-lb: 606
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/robot-4b152c.svg
200 OK 89 kB URL GET HTTP/2 assets.plesk.com/static/default-website-content/public/img/robot-4b152c.svg
IP
ASN #60068 Datacamp Limited
Certificate IssuerLet's Encrypt
Subject1226552209.rsc.cdn77.org
Fingerprint6D:2F:F9:19:86:C9:4F:C8:2A:4A:4F:49:5D:3A:4C:7F:DD:C4:21:87
ValidityFri, 29 Sep 2023 14:57:38 GMT - Thu, 28 Dec 2023 14:57:37 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash a11790af7b8e734f7391d2695e96bfc8
af73e0993f9a486721d75bc21d6eb6e17104ece9
01084e18312cb2af2d6b89b7348a7f1e5ae8faf10c0bd9ce478dd38adb2955a3
GET /static/default-website-content/public/img/robot-4b152c.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://64.91.224.242/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 14:52:27 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
last-modified: Thu, 16 Nov 2023 07:18:19 GMT
access-control-allow-origin: *
etag: W/"6555c23b-15bb6"
expires: Thu, 16 Nov 2023 07:34:10 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 3510:EDB5:1DC0094:1E382C8:6555C39A
via: 1.1 varnish
age: 0
x-served-by: cache-ams21062-AMS
x-cache-hits: 0
x-timer: S1700119451.524985,VS0,VE115
vary: Accept-Encoding, Accept-Encoding
x-fastly-request-id: c97214ce006cd972f6afeea266e68661195d692b
x-77-nzt: ArlMCQ03Nzf/hQAAALlMCgE3Nzf/DQAAAA
x-77-nzt-ray: c0a4cc28bbe812b9ab8a706507bc7d06
x-accel-expires: @1701874773
x-accel-date: 1701874214
x-77-cache: HIT
x-77-age: 146
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT
x-age-lb: 133
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
64.91.224.242
0.0.0.0
185.76.9.17