onlinequranteaching.com/public/SPZNrFkhCvFbxE56fGWAmq0HFrfyk7DW
167.86.83.89302 Found 394 B URL HTTP/1.1 onlinequranteaching.com/public/SPZNrFkhCvFbxE56fGWAmq0HFrfyk7DW
IP 167.86.83.89:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 041d0d1da90694143e8423d2e058c6a3
c36c00e850186b08c35cccabd42e262e458b2446
54361eca5164ae7b397edb94c7386d281185063a010eaad19a89e04a6d31d2d1
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /public/SPZNrFkhCvFbxE56fGWAmq0HFrfyk7DW HTTP/1.1
Host: onlinequranteaching.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Date: Sun, 19 Mar 2023 00:44:56 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6ImNQYlpFNU10ZXQ2UkhkT0trbHIzWVE9PSIsInZhbHVlIjoibFAzR2VabzFKMDliOEg2Vk9HSjR6ZzhjSGtyL2I4SWNkNUhCUFlKL0h2K0lsRHREUlRGQ1lzb1ltbVdSSUg0c3ByQzI2QkZLeGpGT0dIYXBNUHRtVktBak04UksrY2dlMnE4N1ZxM0tZL1AxWWhlZmsrd2ZYZWVRRkZ3Yk1tdVgiLCJtYWMiOiJmYTFiMjQ5NmI2NTY0NTk3ZTJlYTBhYTFmMWIzMDFkZmQ2M2NiMmUzZTNkYzQ1MzMwODMwMDFkODE0NTkwMDM0IiwidGFnIjoiIn0%3D; expires=Sun, 19-Mar-2023 02:44:56 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6IjNRZ1dtNDZ3M2tJdGV4cHZaem5EUXc9PSIsInZhbHVlIjoiNVRGdjVtTUJUYlVQeWYvdHRqM2NpODhWUzdyT09ST205RTFNN3ZlaUFhZDdkZE1jRVFZUmo3RzdwN3JWYVVpWHNUQ0szbmFhMkhyVkdBbXNtOG9OQUdKRVVTY09jN2R5MElJTmdaWjBTY1dMWmlxNFE4anRBdVlucUhsMk4wbi8iLCJtYWMiOiI3NWM3M2ZiOGY2NzFiMzRmZjljZmU1NWFhYTAxOGNjOTg4ZDFhOWEzOWE2MzAwZGEwMTg1ZGRlYmQwZjk3ZWVlIiwidGFnIjoiIn0%3D; expires=Sun, 19-Mar-2023 02:44:56 GMT; Max-Age=7200; path=/; httponly; samesite=lax
Location: http://onlinequranteaching.com/public
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2857be6f18459c7a4a7f00f6cd6076f1
570609086d72a9be57cde7bfefd25663c1035fba
bd8abb8f420d1e31462fca1d6a7caadf1e2bba6fc7db05684b5811e00e84107f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD8ABB8F420D1E31462FCA1D6A7CAADF1E2BBA6FC7DB05684B5811E00E84107F"
Last-Modified: Fri, 17 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5079
Expires: Sun, 19 Mar 2023 02:09:36 GMT
Date: Sun, 19 Mar 2023 00:44:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 12cdbcb1b0785dc0423386448ac68c9c
08cff6b76fd708f0cef3c5bdb8fc72570c4536bd
bb7622a85d32cbff40abd2995055e03dbac05dd841b9a84d9023a5510d89e534
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BB7622A85D32CBFF40ABD2995055E03DBAC05DD841B9A84D9023A5510D89E534"
Last-Modified: Fri, 17 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10937
Expires: Sun, 19 Mar 2023 03:47:14 GMT
Date: Sun, 19 Mar 2023 00:44:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 443a700f85619f4fd8a548421c5c23e2
a58764a07feafb2bb4b340c020b5104c55b35195
0bc80613f3d493ea081bf5672ab76f6f33a1dcc0710fe1431de83c46d7e8d31d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0BC80613F3D493EA081BF5672AB76F6F33A1DCC0710FE1431DE83C46D7E8D31D"
Last-Modified: Fri, 17 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7740
Expires: Sun, 19 Mar 2023 02:53:57 GMT
Date: Sun, 19 Mar 2023 00:44:57 GMT
Connection: keep-alive
onlinequranteaching.com/public
167.86.83.89301 Moved Permanently 246 B URL HTTP/1.1 onlinequranteaching.com/public
IP 167.86.83.89:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 568ebd656d2401323cf98900107a427c
f2f882eb94b7487a5bdc58a02e4b37eb4c139a4a
2641028d5c2c43d3a94b3114ee6b1d551dc75d4c7b071e55dcee72621f726400
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /public HTTP/1.1
Host: onlinequranteaching.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImNQYlpFNU10ZXQ2UkhkT0trbHIzWVE9PSIsInZhbHVlIjoibFAzR2VabzFKMDliOEg2Vk9HSjR6ZzhjSGtyL2I4SWNkNUhCUFlKL0h2K0lsRHREUlRGQ1lzb1ltbVdSSUg0c3ByQzI2QkZLeGpGT0dIYXBNUHRtVktBak04UksrY2dlMnE4N1ZxM0tZL1AxWWhlZmsrd2ZYZWVRRkZ3Yk1tdVgiLCJtYWMiOiJmYTFiMjQ5NmI2NTY0NTk3ZTJlYTBhYTFmMWIzMDFkZmQ2M2NiMmUzZTNkYzQ1MzMwODMwMDFkODE0NTkwMDM0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjNRZ1dtNDZ3M2tJdGV4cHZaem5EUXc9PSIsInZhbHVlIjoiNVRGdjVtTUJUYlVQeWYvdHRqM2NpODhWUzdyT09ST205RTFNN3ZlaUFhZDdkZE1jRVFZUmo3RzdwN3JWYVVpWHNUQ0szbmFhMkhyVkdBbXNtOG9OQUdKRVVTY09jN2R5MElJTmdaWjBTY1dMWmlxNFE4anRBdVlucUhsMk4wbi8iLCJtYWMiOiI3NWM3M2ZiOGY2NzFiMzRmZjljZmU1NWFhYTAxOGNjOTg4ZDFhOWEzOWE2MzAwZGEwMTg1ZGRlYmQwZjk3ZWVlIiwidGFnIjoiIn0%3D
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 19 Mar 2023 00:44:57 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 246
Connection: keep-alive
Location: http://onlinequranteaching.com/public/
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Dxu7S4JHeKQFufGULscVrzMH7d/6k8dw6sW4r6KlWeW39S0fEjlC0F7lUjQ/ajnM+VosVB3kCYE=
x-amz-request-id: 6W862XV3S4ZX6G71
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 18 Mar 2023 23:58:03 GMT
age: 2814
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 19 Mar 2023 00:26:59 GMT
content-type: application/json
age: 1078
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 19 Mar 2023 00:44:57 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Length, Retry-After, Content-Type, Expires, Alert, Pragma, ETag, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 19 Mar 2023 00:17:21 GMT
age: 1656
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0a4b141e90b0fb22cf6d10a6a4fd360d
37b081be1a69edb97a7c562b71474f4d7405d94e
5db17bb0a40658845e03d8237a69458a0576d955006ee224930b0310179af9af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5DB17BB0A40658845E03D8237A69458A0576D955006EE224930B0310179AF9AF"
Last-Modified: Fri, 17 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2739
Expires: Sun, 19 Mar 2023 01:30:36 GMT
Date: Sun, 19 Mar 2023 00:44:57 GMT
Connection: keep-alive
onlinequranteaching.com/public/
167.86.83.89200 OK 539 B URL HTTP/1.1 onlinequranteaching.com/public/
IP 167.86.83.89:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 1b51da12f43eaa15fb90dcb3bfbc5314
dd2f92a97355269b5100e2989ae6c954ae78f80e
ca105435253b82e23a2d7e26ba78df7e79d467d9cfe6eec47afed3ff2874f337
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
NIDS Severity Alert suricata low ET INFO Killbot JS Configuration - Possible Phishing
GET /public/ HTTP/1.1
Host: onlinequranteaching.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6ImNQYlpFNU10ZXQ2UkhkT0trbHIzWVE9PSIsInZhbHVlIjoibFAzR2VabzFKMDliOEg2Vk9HSjR6ZzhjSGtyL2I4SWNkNUhCUFlKL0h2K0lsRHREUlRGQ1lzb1ltbVdSSUg0c3ByQzI2QkZLeGpGT0dIYXBNUHRtVktBak04UksrY2dlMnE4N1ZxM0tZL1AxWWhlZmsrd2ZYZWVRRkZ3Yk1tdVgiLCJtYWMiOiJmYTFiMjQ5NmI2NTY0NTk3ZTJlYTBhYTFmMWIzMDFkZmQ2M2NiMmUzZTNkYzQ1MzMwODMwMDFkODE0NTkwMDM0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IjNRZ1dtNDZ3M2tJdGV4cHZaem5EUXc9PSIsInZhbHVlIjoiNVRGdjVtTUJUYlVQeWYvdHRqM2NpODhWUzdyT09ST205RTFNN3ZlaUFhZDdkZE1jRVFZUmo3RzdwN3JWYVVpWHNUQ0szbmFhMkhyVkdBbXNtOG9OQUdKRVVTY09jN2R5MElJTmdaWjBTY1dMWmlxNFE4anRBdVlucUhsMk4wbi8iLCJtYWMiOiI3NWM3M2ZiOGY2NzFiMzRmZjljZmU1NWFhYTAxOGNjOTg4ZDFhOWEzOWE2MzAwZGEwMTg1ZGRlYmQwZjk3ZWVlIiwidGFnIjoiIn0%3D
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Mar 2023 00:44:57 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6Ik9Idk1GLzZOeWNTVmJsRVRaN0JtNkE9PSIsInZhbHVlIjoiOFpmU3BKaEpobFFlbXJYeWZLYkVDaWh3WnhhcVozMXlYRGFMYTFJTW5CdW9CNlh5d0JycVdqeDZBdHZCeUhvZFJublFGNXFPQjN4R0pPU3RJUkVXZXJsakQ0dmJHZ2pESnowTmNOOXVKazVhUlhISFlaQ3BnUVN3aHRjWmQ3eWMiLCJtYWMiOiJiZmQ3ZGNiMTQ4MGUyYWIwMTg5YTIyMTAwN2ZkMDYxYTMxMjNiYzQ2ZWJkN2ZiMGM5YWY0MjkyNDM1NGY1MjU2IiwidGFnIjoiIn0%3D; expires=Sun, 19-Mar-2023 02:44:57 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6ImdUL24vbGp6emxINUVqNHN1QjJyUUE9PSIsInZhbHVlIjoiaGFWNlhGc05NOXVpV3QwZUxZSnVmY2FnRnFCVGxqQ1hRTHZwMzVvdnlIellUbGttWHM2bHJWNWtMQW9RVURRWC9JTXVaUC9zUWZpc0JSZldYaHY3djJuU0h5dFBkNFEvZ2RLeTI5MzlxN080QWNpaVJiTjFneHZCM3VnaDY4amQiLCJtYWMiOiI4ZDUwYzk3ZjdlYzU2Yzg2NWM4MWVhMDY4OTYzODMwMWVkZGQ4NDJlMzQ0ZTFkMTNhNzhmODU2YTg1MzdkYmRjIiwidGFnIjoiIn0%3D; expires=Sun, 19-Mar-2023 02:44:57 GMT; Max-Age=7200; path=/; httponly; samesite=lax
ocsp.globalsign.com/gsrsaovsslca2018
151.101.66.133200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 151.101.66.133:0
Hash 4f85194bff50b934dc1f4b56bbe60a46
9043dad949157486c64966ded3c71afbbddade96
c8813a1e405871f5f067d2509686d1f64a0ed3ed8e057e7e5466cdee149df982
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1432
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 22 Mar 2023 22:59:58 GMT
ETag: "9043dad949157486c64966ded3c71afbbddade96"
Last-Modified: Sat, 18 Mar 2023 22:59:59 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sun, 19 Mar 2023 00:44:57 GMT
Age: 2663
X-Served-By: cache-qpg1256-QPG, cache-bma1678-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 57, 1
X-Timer: S1679186698.827438,VS0,VE1
push.services.mozilla.com/
35.155.161.242101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.155.161.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: hBVoF1k0dtQogRHP5TcqVA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: nIIvxGl1WYOOPyTVnJjXl02xTnQ=
files.killbot.org/.cdn-cgi/killbot-security.js
172.67.166.105404 Not Found 375 B URL HTTP/2 files.killbot.org/.cdn-cgi/killbot-security.js
IP 172.67.166.105:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash ca8036959dcf294663ef2cc72a34096d
4eb76bb0c6da6a4a40d26054cede2d4b08d80f93
ea60d9ba96caa510c674057f04f83483bc35a9a4e7d7ea1c9b9d56288a1d15ce
GET /.cdn-cgi/killbot-security.js HTTP/1.1
Host: files.killbot.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://onlinequranteaching.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Sun, 19 Mar 2023 00:44:58 GMT
content-type: text/html
content-security-policy: default-src 'self' http: https: data: blob: 'unsafe-inline' 'unsafe-eval'
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WB5i3I1GzDCRgEJoDtksBpXxROxpfHSMipVKu9YX2Fz0sCiS7kazQC2oLfrj7W419WfWNawXyCJkQFEJC45D0u4iMcGuYcK%2F98HyFp7luGdrXgdbhJn4gdBpU5MTo%2FkW0AH3Mw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7aa1b09d9aff1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 84762efcb2e1535ae49fca6c1523df33
93e7f138a491d4276a793c2e5b947195ae69a88c
920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F"
Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10499
Expires: Sun, 19 Mar 2023 03:39:58 GMT
Date: Sun, 19 Mar 2023 00:44:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 84762efcb2e1535ae49fca6c1523df33
93e7f138a491d4276a793c2e5b947195ae69a88c
920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F"
Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10499
Expires: Sun, 19 Mar 2023 03:39:58 GMT
Date: Sun, 19 Mar 2023 00:44:59 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F948af7b9-8b3e-4159-bdaa-f68fedcc3497.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F948af7b9-8b3e-4159-bdaa-f68fedcc3497.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 790ee76f4db86cd0cc555f6d7beada2c
fea1a6b2a38be6a09e086def71f521cc88509a0f
f7641b9e414006ee96daa82fd9d6aa1463d47c0388a9f3b289c563af76a3d2ef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F948af7b9-8b3e-4159-bdaa-f68fedcc3497.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7930
x-amzn-requestid: 276e0768-3943-40ba-9d6c-4f13ab08da51
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B_wqXFwvoAMF1zA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64162e42-6f9e6903248d187d5d4a8544;Sampled=0
x-amzn-remapped-date: Sat, 18 Mar 2023 21:33:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 1xxK7FkBf2ZJFQ7x4Z7iWtLvxQIpB2YZwy4SsgbIsUwgvkQ4dOIf7w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 446e26a256db1310ae719d818e420898.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Mar 2023 21:45:47 GMT
age: 10752
etag: "fea1a6b2a38be6a09e086def71f521cc88509a0f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b3ad491-e5e8-4843-99f0-86abf9474414.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b3ad491-e5e8-4843-99f0-86abf9474414.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dafe070567c0a5a73c54e40cb1e0f6d2
c93cf172f988b4b6e36a0a2952ac0fe4cadb1da4
66576ea52a195c5306f3fbb61fa85445541525aebc019d14e35c99f4a9e2545e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b3ad491-e5e8-4843-99f0-86abf9474414.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7265
x-amzn-requestid: 9077962f-dc5f-4e3a-a4c6-ceb7ce35beef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Bv5m3FseIAMF6DA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640fd62b-08e1a16c77a607de41d2286d;Sampled=0
x-amzn-remapped-date: Tue, 14 Mar 2023 02:04:27 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: hEDVQOxzUJ4ooxWmufmvmRt5Fbziza7YzRjfAeiqvp1YJx71VSuNlg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 ef8f66c83aecd87910ce2e1153544a20.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Mar 2023 22:12:18 GMT
age: 9161
etag: "c93cf172f988b4b6e36a0a2952ac0fe4cadb1da4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71fa0fce-55e5-4ff2-89c1-09b112976742.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71fa0fce-55e5-4ff2-89c1-09b112976742.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3e549d87da8afc935cbe46b1196212f1
0c306a3f3c589a80ed550acd7b4431ad4145e8a5
a572c951a55319465fce2faf7a7a3796e964a0fc8cff5bae68c541ae6dfab06f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71fa0fce-55e5-4ff2-89c1-09b112976742.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6550
x-amzn-requestid: 7c98b2f3-90ca-4735-b475-e176640f5f08
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B_wZYFs5oAMFWSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64162dd5-256efdaf45e537b673b77523;Sampled=0
x-amzn-remapped-date: Sat, 18 Mar 2023 21:32:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: O9iVxD-cnlfmr-es5adn5HKwPEn6K5m5xCAzo3u57UZScC72bh9CPg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 2750b94b402c92287d764b5fa115a042.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Mar 2023 21:45:46 GMT
etag: "0c306a3f3c589a80ed550acd7b4431ad4145e8a5"
content-type: image/jpeg
age: 10753
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 78453ba98b72eff3879ef163b59c86ed
80519bb3726ee1f9f211344cd433cefaed3a7f2e
61adfeff11af9583355ac7d1500e8a8d97357b2846f151f2421001994fb06655
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10338
x-amzn-requestid: 9f880b5b-056c-44bb-a811-36ea27c232aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BvSgFGENoAMFuVw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640f9799-2318d444248f7610300c658f;Sampled=0
x-amzn-remapped-date: Mon, 13 Mar 2023 21:37:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: bka10YWXvoKBRkwgvJNMzm1SSv_J1USzdugO9lPduHxe2uYFYkXh4w==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 e11ee4e3208082d534c251b36bbee268.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Mar 2023 04:25:40 GMT
age: 73159
etag: "80519bb3726ee1f9f211344cd433cefaed3a7f2e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0791ca2a-218e-42a3-b584-3b1fbef1e0b1.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0791ca2a-218e-42a3-b584-3b1fbef1e0b1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 088ecc88f297af7324cf5c27f019daea
dd2634cc71555b254ffcb21621b1b4426bae619a
f0f7467e6d6a3d89157fbea1e554ba0cb04ec97411012c048ce7374a2cd980d7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0791ca2a-218e-42a3-b584-3b1fbef1e0b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6530
x-amzn-requestid: feaef7fd-1486-4717-b373-06546368aa4a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B_wZCGnJoAMFWqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64162dd3-71249f9a6287e81730459c65;Sampled=0
x-amzn-remapped-date: Sat, 18 Mar 2023 21:32:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 1O--raj5aqTkJoEx1CJ-Y1bLJUif2c7MD1-io-NwCwP6uFwxWHvQBA==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 31dfa94142c6eaf975b0e5454c00340a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Mar 2023 21:41:28 GMT
age: 11011
etag: "dd2634cc71555b254ffcb21621b1b4426bae619a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe42970c2-8007-4b4c-9f15-01cf4de37822.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe42970c2-8007-4b4c-9f15-01cf4de37822.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e58e6553fe8e5d936a911080cec36dc
75dd9bdbaf7f19102036d27e69a011f4c37942a9
0c565b97125e28b8183baab26baf7c703e70f82fad13117c5780259e6d91a89d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe42970c2-8007-4b4c-9f15-01cf4de37822.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6219
x-amzn-requestid: 61b80920-2ba3-4688-80ee-848d68031908
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BwlmnG0KoAMFd0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64101c90-17c159767df548c4672b7365;Sampled=0
x-amzn-remapped-date: Tue, 14 Mar 2023 07:04:48 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: ACswRkub0RlODaxJHJGsGkACkMQKk85qY3VxYPscNccAMYdpkQ9evA==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 9adef5b1c5fc9ca80d6f4f8d19e103a2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Mar 2023 07:50:48 GMT
age: 60851
etag: "75dd9bdbaf7f19102036d27e69a011f4c37942a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
onlinequranteaching.com/public/A4itNCpJX4esU8P7ZDdBO9W1evilfqv0
167.86.83.89200 OK 60 kB URL HTTP/1.1 onlinequranteaching.com/public/A4itNCpJX4esU8P7ZDdBO9W1evilfqv0
IP 167.86.83.89:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- assembler source text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (39884), with CR, LF line terminators
Hash befae88c946ef56cfcee1898c2f19e1d
e087b1c7498f884ecc2b057511ae6a2acb6c9247
3286f61971da7329a115eb2e247259bd93f61abe9daa46bef0997554bcd68f25
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
NIDS Severity Alert suricata high ET EXPLOIT_KIT TDS Sutra - page redirecting to a SutraTDS
suricata low ET INFO Killbot JS Configuration - Possible Phishing
GET /public/A4itNCpJX4esU8P7ZDdBO9W1evilfqv0 HTTP/1.1
Host: onlinequranteaching.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://onlinequranteaching.com/public/
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6Ik9Idk1GLzZOeWNTVmJsRVRaN0JtNkE9PSIsInZhbHVlIjoiOFpmU3BKaEpobFFlbXJYeWZLYkVDaWh3WnhhcVozMXlYRGFMYTFJTW5CdW9CNlh5d0JycVdqeDZBdHZCeUhvZFJublFGNXFPQjN4R0pPU3RJUkVXZXJsakQ0dmJHZ2pESnowTmNOOXVKazVhUlhISFlaQ3BnUVN3aHRjWmQ3eWMiLCJtYWMiOiJiZmQ3ZGNiMTQ4MGUyYWIwMTg5YTIyMTAwN2ZkMDYxYTMxMjNiYzQ2ZWJkN2ZiMGM5YWY0MjkyNDM1NGY1MjU2IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6ImdUL24vbGp6emxINUVqNHN1QjJyUUE9PSIsInZhbHVlIjoiaGFWNlhGc05NOXVpV3QwZUxZSnVmY2FnRnFCVGxqQ1hRTHZwMzVvdnlIellUbGttWHM2bHJWNWtMQW9RVURRWC9JTXVaUC9zUWZpc0JSZldYaHY3djJuU0h5dFBkNFEvZ2RLeTI5MzlxN080QWNpaVJiTjFneHZCM3VnaDY4amQiLCJtYWMiOiI4ZDUwYzk3ZjdlYzU2Yzg2NWM4MWVhMDY4OTYzODMwMWVkZGQ4NDJlMzQ0ZTFkMTNhNzhmODU2YTg1MzdkYmRjIiwidGFnIjoiIn0%3D
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Mar 2023 00:44:59 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6IlVGbnovYjM2bkwwbFJIMjVseG9ZOFE9PSIsInZhbHVlIjoiT0dTNE41VitoU0pjcG0vQXVXNkxKMHBrNHJWRDhzNVFWaFZmRjlSYnJkOG04UG1UdnI1MWJsZGhNVVhXVnFjaEdIWVVlaTZwdUxZMUIwMXRyZ2RDam5HK0lXdjJMY3FNcnBJRmRmMFRzd3d4VUFXeEJaeHRsKzJDWThWTzl1U2QiLCJtYWMiOiI4ODQ2ZDQxOWU2MTc3ZmM2MzZiNTY3NDAzMTIzZmY0NzFhODkzZDRiNDYxNWQ1NWUxY2VmMTY2MTQ2NmVjMzhhIiwidGFnIjoiIn0%3D; expires=Sun, 19-Mar-2023 02:44:59 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6IkRBMk5yM3JRUjh3Q200OGpScXpFUEE9PSIsInZhbHVlIjoicy9vRFF3c2s1VHppK21sWHJWaXBhb24vS25RbTUxaTNpcVJTQmZubHJrL2dDRlRGclIybjAzMDF4aEVtTTAzaXBkRjFXbmlUNGtQZW1qUys2MU52Ukx2Y0FwNkpyVjJMNDZpMW0rb25tcjhFK3A3N21XTVAydkhJQUFlb0V4SWkiLCJtYWMiOiIyNTQ3ODY5NjMwZGM0YTVjNDU3OTlmNjAzNGMwNzFmMmZiZTI3NjczYjJjOTljYTZhZmQ5YjEwNjUyZjk2YTZhIiwidGFnIjoiIn0%3D; expires=Sun, 19-Mar-2023 02:44:59 GMT; Max-Age=7200; path=/; httponly; samesite=lax
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
104.17.24.14200 OK 5.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (30837)
Hash 109d1ed85cd01f9cdab73a4cac5bf80d
d6c6498ad46de2d8e2008a8ff68e364ae7f16b32
8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://onlinequranteaching.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Mar 2023 00:44:59 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1586377
expires: Fri, 08 Mar 2024 00:44:59 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7WKDnvuYgKA5yV46siFeSh4tp5dBHt7QCb5HNI1A%2Fbc7tvJjqFpPPbSpT4A%2Foj59PdoAazBLAewRazSZWSsWVe888pb0MODnyAUel5F29UupdR%2FKOj2isI75y0Vr2sD%2FYJqqZYY%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7aa1b0a6ae3db51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
onlinequranteaching.com/public/js/session-recorder.js
167.86.83.89200 OK 45 kB URL HTTP/1.1 onlinequranteaching.com/public/js/session-recorder.js
IP 167.86.83.89:0
File type ASCII text, with very long lines (44992)
Hash 701984b4995f3c29820e83c999b7eb23
a3b50104a3bfa05bf59a317273816c7d8ae1f81d
67ad94e12a745b1b09c6cd616e20a2ad283ed68f8060bd1dd0d9a2b6ad9dc7ee
Analyzer Verdict Alert urlquery phishing Phishing - DHL
openphish DHL Airways, Inc.
fortinet Phishing
GET /public/js/session-recorder.js HTTP/1.1
Host: onlinequranteaching.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://onlinequranteaching.com/public/A4itNCpJX4esU8P7ZDdBO9W1evilfqv0
Cookie: XSRF-TOKEN=eyJpdiI6IlVGbnovYjM2bkwwbFJIMjVseG9ZOFE9PSIsInZhbHVlIjoiT0dTNE41VitoU0pjcG0vQXVXNkxKMHBrNHJWRDhzNVFWaFZmRjlSYnJkOG04UG1UdnI1MWJsZGhNVVhXVnFjaEdIWVVlaTZwdUxZMUIwMXRyZ2RDam5HK0lXdjJMY3FNcnBJRmRmMFRzd3d4VUFXeEJaeHRsKzJDWThWTzl1U2QiLCJtYWMiOiI4ODQ2ZDQxOWU2MTc3ZmM2MzZiNTY3NDAzMTIzZmY0NzFhODkzZDRiNDYxNWQ1NWUxY2VmMTY2MTQ2NmVjMzhhIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkRBMk5yM3JRUjh3Q200OGpScXpFUEE9PSIsInZhbHVlIjoicy9vRFF3c2s1VHppK21sWHJWaXBhb24vS25RbTUxaTNpcVJTQmZubHJrL2dDRlRGclIybjAzMDF4aEVtTTAzaXBkRjFXbmlUNGtQZW1qUys2MU52Ukx2Y0FwNkpyVjJMNDZpMW0rb25tcjhFK3A3N21XTVAydkhJQUFlb0V4SWkiLCJtYWMiOiIyNTQ3ODY5NjMwZGM0YTVjNDU3OTlmNjAzNGMwNzFmMmZiZTI3NjczYjJjOTljYTZhZmQ5YjEwNjUyZjk2YTZhIiwidGFnIjoiIn0%3D
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Mar 2023 00:44:59 GMT
Content-Type: application/javascript
Content-Length: 45066
Connection: keep-alive
Last-Modified: Tue, 29 Mar 2022 20:35:56 GMT
Accept-Ranges: bytes
onlinequranteaching.com/public/css/app.css
167.86.83.89200 OK 440 kB URL HTTP/1.1 onlinequranteaching.com/public/css/app.css
IP 167.86.83.89:0
Size 440 kB (439658 bytes)
Hash 181990cc2279e4cea65c9363fb37fee9
b85a7ba40043b0c48a034d8382629ef7ec6a1e24
36839348d4cd3d5ffcb15317bc5e8f32b77c644d0c6c0f8f19bdf216caf49293
Analyzer Verdict Alert urlquery phishing Phishing - DHL
openphish DHL Airways, Inc.
GET /public/css/app.css HTTP/1.1
Host: onlinequranteaching.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://onlinequranteaching.com/public/A4itNCpJX4esU8P7ZDdBO9W1evilfqv0
Cookie: XSRF-TOKEN=eyJpdiI6IlVGbnovYjM2bkwwbFJIMjVseG9ZOFE9PSIsInZhbHVlIjoiT0dTNE41VitoU0pjcG0vQXVXNkxKMHBrNHJWRDhzNVFWaFZmRjlSYnJkOG04UG1UdnI1MWJsZGhNVVhXVnFjaEdIWVVlaTZwdUxZMUIwMXRyZ2RDam5HK0lXdjJMY3FNcnBJRmRmMFRzd3d4VUFXeEJaeHRsKzJDWThWTzl1U2QiLCJtYWMiOiI4ODQ2ZDQxOWU2MTc3ZmM2MzZiNTY3NDAzMTIzZmY0NzFhODkzZDRiNDYxNWQ1NWUxY2VmMTY2MTQ2NmVjMzhhIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkRBMk5yM3JRUjh3Q200OGpScXpFUEE9PSIsInZhbHVlIjoicy9vRFF3c2s1VHppK21sWHJWaXBhb24vS25RbTUxaTNpcVJTQmZubHJrL2dDRlRGclIybjAzMDF4aEVtTTAzaXBkRjFXbmlUNGtQZW1qUys2MU52Ukx2Y0FwNkpyVjJMNDZpMW0rb25tcjhFK3A3N21XTVAydkhJQUFlb0V4SWkiLCJtYWMiOiIyNTQ3ODY5NjMwZGM0YTVjNDU3OTlmNjAzNGMwNzFmMmZiZTI3NjczYjJjOTljYTZhZmQ5YjEwNjUyZjk2YTZhIiwidGFnIjoiIn0%3D
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Mar 2023 00:44:59 GMT
Content-Type: text/css
Content-Length: 439658
Connection: keep-alive
Last-Modified: Tue, 29 Mar 2022 21:11:08 GMT
Accept-Ranges: bytes
onlinequranteaching.com/images/logo.png
167.86.83.89200 OK 2.0 kB URL HTTP/1.1 onlinequranteaching.com/images/logo.png
IP 167.86.83.89:0
File type PNG image data, 214 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d14ab93691604e826e1319d53599eb9
78724360e9d25da584445b851e37bca05abe6b85
3f0c62b5ccdcdbf3b3ae3885f1e6959e2d937eba9b29dea9a6bdb98788041756
Analyzer Verdict Alert urlquery phishing Phishing - DHL
openphish DHL Airways, Inc.
GET /images/logo.png HTTP/1.1
Host: onlinequranteaching.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://onlinequranteaching.com/public/A4itNCpJX4esU8P7ZDdBO9W1evilfqv0
Cookie: XSRF-TOKEN=eyJpdiI6IlVGbnovYjM2bkwwbFJIMjVseG9ZOFE9PSIsInZhbHVlIjoiT0dTNE41VitoU0pjcG0vQXVXNkxKMHBrNHJWRDhzNVFWaFZmRjlSYnJkOG04UG1UdnI1MWJsZGhNVVhXVnFjaEdIWVVlaTZwdUxZMUIwMXRyZ2RDam5HK0lXdjJMY3FNcnBJRmRmMFRzd3d4VUFXeEJaeHRsKzJDWThWTzl1U2QiLCJtYWMiOiI4ODQ2ZDQxOWU2MTc3ZmM2MzZiNTY3NDAzMTIzZmY0NzFhODkzZDRiNDYxNWQ1NWUxY2VmMTY2MTQ2NmVjMzhhIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkRBMk5yM3JRUjh3Q200OGpScXpFUEE9PSIsInZhbHVlIjoicy9vRFF3c2s1VHppK21sWHJWaXBhb24vS25RbTUxaTNpcVJTQmZubHJrL2dDRlRGclIybjAzMDF4aEVtTTAzaXBkRjFXbmlUNGtQZW1qUys2MU52Ukx2Y0FwNkpyVjJMNDZpMW0rb25tcjhFK3A3N21XTVAydkhJQUFlb0V4SWkiLCJtYWMiOiIyNTQ3ODY5NjMwZGM0YTVjNDU3OTlmNjAzNGMwNzFmMmZiZTI3NjczYjJjOTljYTZhZmQ5YjEwNjUyZjk2YTZhIiwidGFnIjoiIn0%3D
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Mar 2023 00:45:00 GMT
Content-Type: image/png
Content-Length: 1998
Connection: keep-alive
Last-Modified: Sun, 17 Apr 2022 14:24:00 GMT
Accept-Ranges: bytes
onlinequranteaching.com/images/all.png
167.86.83.89200 OK 12 kB URL HTTP/1.1 onlinequranteaching.com/images/all.png
IP 167.86.83.89:0
File type PNG image data, 123 x 84, 8-bit/color RGBA, non-interlaced\012- data
Hash 2cb0b7f615faf2deb9ec6f53d3149a3b
694a2c881c83e2ab86365bf1d16302ac5b9d500f
c1d5409eecb402a99f10718b06c266ba314d9e25f0b56c6fd063699334b8be6d
Analyzer Verdict Alert urlquery phishing Phishing - DHL
openphish DHL Airways, Inc.
GET /images/all.png HTTP/1.1
Host: onlinequranteaching.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://onlinequranteaching.com/public/A4itNCpJX4esU8P7ZDdBO9W1evilfqv0
Cookie: XSRF-TOKEN=eyJpdiI6IlVGbnovYjM2bkwwbFJIMjVseG9ZOFE9PSIsInZhbHVlIjoiT0dTNE41VitoU0pjcG0vQXVXNkxKMHBrNHJWRDhzNVFWaFZmRjlSYnJkOG04UG1UdnI1MWJsZGhNVVhXVnFjaEdIWVVlaTZwdUxZMUIwMXRyZ2RDam5HK0lXdjJMY3FNcnBJRmRmMFRzd3d4VUFXeEJaeHRsKzJDWThWTzl1U2QiLCJtYWMiOiI4ODQ2ZDQxOWU2MTc3ZmM2MzZiNTY3NDAzMTIzZmY0NzFhODkzZDRiNDYxNWQ1NWUxY2VmMTY2MTQ2NmVjMzhhIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkRBMk5yM3JRUjh3Q200OGpScXpFUEE9PSIsInZhbHVlIjoicy9vRFF3c2s1VHppK21sWHJWaXBhb24vS25RbTUxaTNpcVJTQmZubHJrL2dDRlRGclIybjAzMDF4aEVtTTAzaXBkRjFXbmlUNGtQZW1qUys2MU52Ukx2Y0FwNkpyVjJMNDZpMW0rb25tcjhFK3A3N21XTVAydkhJQUFlb0V4SWkiLCJtYWMiOiIyNTQ3ODY5NjMwZGM0YTVjNDU3OTlmNjAzNGMwNzFmMmZiZTI3NjczYjJjOTljYTZhZmQ5YjEwNjUyZjk2YTZhIiwidGFnIjoiIn0%3D
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Mar 2023 00:45:00 GMT
Content-Type: image/png
Content-Length: 12499
Connection: keep-alive
Last-Modified: Sun, 17 Apr 2022 14:24:34 GMT
Accept-Ranges: bytes
onlinequranteaching.com/images/foo.png
167.86.83.89404 Not Found 6.6 kB URL HTTP/1.1 onlinequranteaching.com/images/foo.png
IP 167.86.83.89:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5395)
Hash 307dca9c775906b8de45869cabe98fcd
2b80c3a2fd4a235b2cc9f89315a554d0721c0dd1
8437bd0ef46a19c9a7c294c53e0429b40e76ebbd5fe9fd73a9025752495ddb1c
Analyzer Verdict Alert urlquery phishing Phishing - DHL
openphish DHL Airways, Inc.
GET /images/foo.png HTTP/1.1
Host: onlinequranteaching.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://onlinequranteaching.com/public/A4itNCpJX4esU8P7ZDdBO9W1evilfqv0
Cookie: XSRF-TOKEN=eyJpdiI6IlVGbnovYjM2bkwwbFJIMjVseG9ZOFE9PSIsInZhbHVlIjoiT0dTNE41VitoU0pjcG0vQXVXNkxKMHBrNHJWRDhzNVFWaFZmRjlSYnJkOG04UG1UdnI1MWJsZGhNVVhXVnFjaEdIWVVlaTZwdUxZMUIwMXRyZ2RDam5HK0lXdjJMY3FNcnBJRmRmMFRzd3d4VUFXeEJaeHRsKzJDWThWTzl1U2QiLCJtYWMiOiI4ODQ2ZDQxOWU2MTc3ZmM2MzZiNTY3NDAzMTIzZmY0NzFhODkzZDRiNDYxNWQ1NWUxY2VmMTY2MTQ2NmVjMzhhIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkRBMk5yM3JRUjh3Q200OGpScXpFUEE9PSIsInZhbHVlIjoicy9vRFF3c2s1VHppK21sWHJWaXBhb24vS25RbTUxaTNpcVJTQmZubHJrL2dDRlRGclIybjAzMDF4aEVtTTAzaXBkRjFXbmlUNGtQZW1qUys2MU52Ukx2Y0FwNkpyVjJMNDZpMW0rb25tcjhFK3A3N21XTVAydkhJQUFlb0V4SWkiLCJtYWMiOiIyNTQ3ODY5NjMwZGM0YTVjNDU3OTlmNjAzNGMwNzFmMmZiZTI3NjczYjJjOTljYTZhZmQ5YjEwNjUyZjk2YTZhIiwidGFnIjoiIn0%3D
HTTP/1.1 404 Not Found
Server: nginx
Date: Sun, 19 Mar 2023 00:45:00 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
104.17.24.14200 OK 77 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 104.17.24.14:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://onlinequranteaching.com
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Mar 2023 00:45:00 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 77160
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e5f-12d68"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 238303
expires: Fri, 08 Mar 2024 00:45:00 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yZCvBdSR5cy1lzEq%2BgwB6N2NY094cGa7xBQa1Ulv3pwAj0jlc07TZcKQEPTYkHHHI9xd84u5lXdNms22obYepJ%2FX1JokI1UmjeTtFe90pDTx4T8pdQUa9DLfr3RptIVf7MOwNEuj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7aa1b0aece430b61-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
onlinequranteaching.com/fonts/vendor/@fontsource/roboto/files/roboto-latin-400-normal.woff2?4673b4537a84c7f7a130799aa6af329b
167.86.83.89404 Not Found 6.6 kB URL HTTP/1.1 onlinequranteaching.com/fonts/vendor/@fontsource/roboto/files/roboto-latin-400-normal.woff2?4673b4537a84c7f7a130799aa6af329b
IP 167.86.83.89:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5395)
Hash 307dca9c775906b8de45869cabe98fcd
2b80c3a2fd4a235b2cc9f89315a554d0721c0dd1
8437bd0ef46a19c9a7c294c53e0429b40e76ebbd5fe9fd73a9025752495ddb1c
Analyzer Verdict Alert urlquery phishing Phishing - DHL
openphish DHL Airways, Inc.
fortinet Phishing
GET /fonts/vendor/@fontsource/roboto/files/roboto-latin-400-normal.woff2?4673b4537a84c7f7a130799aa6af329b HTTP/1.1
Host: onlinequranteaching.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://onlinequranteaching.com/public/css/app.css
Cookie: XSRF-TOKEN=eyJpdiI6IlVGbnovYjM2bkwwbFJIMjVseG9ZOFE9PSIsInZhbHVlIjoiT0dTNE41VitoU0pjcG0vQXVXNkxKMHBrNHJWRDhzNVFWaFZmRjlSYnJkOG04UG1UdnI1MWJsZGhNVVhXVnFjaEdIWVVlaTZwdUxZMUIwMXRyZ2RDam5HK0lXdjJMY3FNcnBJRmRmMFRzd3d4VUFXeEJaeHRsKzJDWThWTzl1U2QiLCJtYWMiOiI4ODQ2ZDQxOWU2MTc3ZmM2MzZiNTY3NDAzMTIzZmY0NzFhODkzZDRiNDYxNWQ1NWUxY2VmMTY2MTQ2NmVjMzhhIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkRBMk5yM3JRUjh3Q200OGpScXpFUEE9PSIsInZhbHVlIjoicy9vRFF3c2s1VHppK21sWHJWaXBhb24vS25RbTUxaTNpcVJTQmZubHJrL2dDRlRGclIybjAzMDF4aEVtTTAzaXBkRjFXbmlUNGtQZW1qUys2MU52Ukx2Y0FwNkpyVjJMNDZpMW0rb25tcjhFK3A3N21XTVAydkhJQUFlb0V4SWkiLCJtYWMiOiIyNTQ3ODY5NjMwZGM0YTVjNDU3OTlmNjAzNGMwNzFmMmZiZTI3NjczYjJjOTljYTZhZmQ5YjEwNjUyZjk2YTZhIiwidGFnIjoiIn0%3D
HTTP/1.1 404 Not Found
Server: nginx
Date: Sun, 19 Mar 2023 00:45:00 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
onlinequranteaching.com/public/css/fonts/webfa-brands-400.woff2?d878b0a6a1144760244ff0665888404c
167.86.83.89404 Not Found 6.6 kB URL HTTP/1.1 onlinequranteaching.com/public/css/fonts/webfa-brands-400.woff2?d878b0a6a1144760244ff0665888404c
IP 167.86.83.89:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5395)
Hash 307dca9c775906b8de45869cabe98fcd
2b80c3a2fd4a235b2cc9f89315a554d0721c0dd1
8437bd0ef46a19c9a7c294c53e0429b40e76ebbd5fe9fd73a9025752495ddb1c
Analyzer Verdict Alert urlquery phishing Phishing - DHL
openphish DHL Airways, Inc.
fortinet Phishing
GET /public/css/fonts/webfa-brands-400.woff2?d878b0a6a1144760244ff0665888404c HTTP/1.1
Host: onlinequranteaching.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://onlinequranteaching.com/public/css/app.css
Cookie: XSRF-TOKEN=eyJpdiI6IlVGbnovYjM2bkwwbFJIMjVseG9ZOFE9PSIsInZhbHVlIjoiT0dTNE41VitoU0pjcG0vQXVXNkxKMHBrNHJWRDhzNVFWaFZmRjlSYnJkOG04UG1UdnI1MWJsZGhNVVhXVnFjaEdIWVVlaTZwdUxZMUIwMXRyZ2RDam5HK0lXdjJMY3FNcnBJRmRmMFRzd3d4VUFXeEJaeHRsKzJDWThWTzl1U2QiLCJtYWMiOiI4ODQ2ZDQxOWU2MTc3ZmM2MzZiNTY3NDAzMTIzZmY0NzFhODkzZDRiNDYxNWQ1NWUxY2VmMTY2MTQ2NmVjMzhhIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkRBMk5yM3JRUjh3Q200OGpScXpFUEE9PSIsInZhbHVlIjoicy9vRFF3c2s1VHppK21sWHJWaXBhb24vS25RbTUxaTNpcVJTQmZubHJrL2dDRlRGclIybjAzMDF4aEVtTTAzaXBkRjFXbmlUNGtQZW1qUys2MU52Ukx2Y0FwNkpyVjJMNDZpMW0rb25tcjhFK3A3N21XTVAydkhJQUFlb0V4SWkiLCJtYWMiOiIyNTQ3ODY5NjMwZGM0YTVjNDU3OTlmNjAzNGMwNzFmMmZiZTI3NjczYjJjOTljYTZhZmQ5YjEwNjUyZjk2YTZhIiwidGFnIjoiIn0%3D
HTTP/1.1 404 Not Found
Server: nginx
Date: Sun, 19 Mar 2023 00:45:00 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
onlinequranteaching.com/fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.woff2?1551f4f60c37af51121f106501f69b80
167.86.83.89404 Not Found 6.6 kB URL HTTP/1.1 onlinequranteaching.com/fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.woff2?1551f4f60c37af51121f106501f69b80
IP 167.86.83.89:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5395)
Hash 307dca9c775906b8de45869cabe98fcd
2b80c3a2fd4a235b2cc9f89315a554d0721c0dd1
8437bd0ef46a19c9a7c294c53e0429b40e76ebbd5fe9fd73a9025752495ddb1c
Analyzer Verdict Alert urlquery phishing Phishing - DHL
openphish DHL Airways, Inc.
fortinet Phishing
GET /fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.woff2?1551f4f60c37af51121f106501f69b80 HTTP/1.1
Host: onlinequranteaching.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://onlinequranteaching.com/public/css/app.css
Cookie: XSRF-TOKEN=eyJpdiI6IlVGbnovYjM2bkwwbFJIMjVseG9ZOFE9PSIsInZhbHVlIjoiT0dTNE41VitoU0pjcG0vQXVXNkxKMHBrNHJWRDhzNVFWaFZmRjlSYnJkOG04UG1UdnI1MWJsZGhNVVhXVnFjaEdIWVVlaTZwdUxZMUIwMXRyZ2RDam5HK0lXdjJMY3FNcnBJRmRmMFRzd3d4VUFXeEJaeHRsKzJDWThWTzl1U2QiLCJtYWMiOiI4ODQ2ZDQxOWU2MTc3ZmM2MzZiNTY3NDAzMTIzZmY0NzFhODkzZDRiNDYxNWQ1NWUxY2VmMTY2MTQ2NmVjMzhhIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkRBMk5yM3JRUjh3Q200OGpScXpFUEE9PSIsInZhbHVlIjoicy9vRFF3c2s1VHppK21sWHJWaXBhb24vS25RbTUxaTNpcVJTQmZubHJrL2dDRlRGclIybjAzMDF4aEVtTTAzaXBkRjFXbmlUNGtQZW1qUys2MU52Ukx2Y0FwNkpyVjJMNDZpMW0rb25tcjhFK3A3N21XTVAydkhJQUFlb0V4SWkiLCJtYWMiOiIyNTQ3ODY5NjMwZGM0YTVjNDU3OTlmNjAzNGMwNzFmMmZiZTI3NjczYjJjOTljYTZhZmQ5YjEwNjUyZjk2YTZhIiwidGFnIjoiIn0%3D
HTTP/1.1 404 Not Found
Server: nginx
Date: Sun, 19 Mar 2023 00:45:00 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
onlinequranteaching.com/fonts/vendor/@fontsource/roboto/files/roboto-all-400-normal.woff?376ea5d93f71583052f65de4e0c6a92c
167.86.83.89404 Not Found 6.6 kB URL HTTP/1.1 onlinequranteaching.com/fonts/vendor/@fontsource/roboto/files/roboto-all-400-normal.woff?376ea5d93f71583052f65de4e0c6a92c
IP 167.86.83.89:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5395)
Hash 307dca9c775906b8de45869cabe98fcd
2b80c3a2fd4a235b2cc9f89315a554d0721c0dd1
8437bd0ef46a19c9a7c294c53e0429b40e76ebbd5fe9fd73a9025752495ddb1c
Analyzer Verdict Alert urlquery phishing Phishing - DHL
openphish DHL Airways, Inc.
fortinet Phishing
GET /fonts/vendor/@fontsource/roboto/files/roboto-all-400-normal.woff?376ea5d93f71583052f65de4e0c6a92c HTTP/1.1
Host: onlinequranteaching.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://onlinequranteaching.com/public/css/app.css
Cookie: XSRF-TOKEN=eyJpdiI6IlVGbnovYjM2bkwwbFJIMjVseG9ZOFE9PSIsInZhbHVlIjoiT0dTNE41VitoU0pjcG0vQXVXNkxKMHBrNHJWRDhzNVFWaFZmRjlSYnJkOG04UG1UdnI1MWJsZGhNVVhXVnFjaEdIWVVlaTZwdUxZMUIwMXRyZ2RDam5HK0lXdjJMY3FNcnBJRmRmMFRzd3d4VUFXeEJaeHRsKzJDWThWTzl1U2QiLCJtYWMiOiI4ODQ2ZDQxOWU2MTc3ZmM2MzZiNTY3NDAzMTIzZmY0NzFhODkzZDRiNDYxNWQ1NWUxY2VmMTY2MTQ2NmVjMzhhIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkRBMk5yM3JRUjh3Q200OGpScXpFUEE9PSIsInZhbHVlIjoicy9vRFF3c2s1VHppK21sWHJWaXBhb24vS25RbTUxaTNpcVJTQmZubHJrL2dDRlRGclIybjAzMDF4aEVtTTAzaXBkRjFXbmlUNGtQZW1qUys2MU52Ukx2Y0FwNkpyVjJMNDZpMW0rb25tcjhFK3A3N21XTVAydkhJQUFlb0V4SWkiLCJtYWMiOiIyNTQ3ODY5NjMwZGM0YTVjNDU3OTlmNjAzNGMwNzFmMmZiZTI3NjczYjJjOTljYTZhZmQ5YjEwNjUyZjk2YTZhIiwidGFnIjoiIn0%3D
HTTP/1.1 404 Not Found
Server: nginx
Date: Sun, 19 Mar 2023 00:45:01 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
onlinequranteaching.com/fonts/vendor/@fortawesome/fontawesome-free/webfa-brands-400.woff?2285773e6b4b172f07d9b777c81b0775
167.86.83.89404 Not Found 6.6 kB URL HTTP/1.1 onlinequranteaching.com/fonts/vendor/@fortawesome/fontawesome-free/webfa-brands-400.woff?2285773e6b4b172f07d9b777c81b0775
IP 167.86.83.89:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5395)
Hash 307dca9c775906b8de45869cabe98fcd
2b80c3a2fd4a235b2cc9f89315a554d0721c0dd1
8437bd0ef46a19c9a7c294c53e0429b40e76ebbd5fe9fd73a9025752495ddb1c
Analyzer Verdict Alert urlquery phishing Phishing - DHL
openphish DHL Airways, Inc.
fortinet Phishing
GET /fonts/vendor/@fortawesome/fontawesome-free/webfa-brands-400.woff?2285773e6b4b172f07d9b777c81b0775 HTTP/1.1
Host: onlinequranteaching.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://onlinequranteaching.com/public/css/app.css
Cookie: XSRF-TOKEN=eyJpdiI6IlVGbnovYjM2bkwwbFJIMjVseG9ZOFE9PSIsInZhbHVlIjoiT0dTNE41VitoU0pjcG0vQXVXNkxKMHBrNHJWRDhzNVFWaFZmRjlSYnJkOG04UG1UdnI1MWJsZGhNVVhXVnFjaEdIWVVlaTZwdUxZMUIwMXRyZ2RDam5HK0lXdjJMY3FNcnBJRmRmMFRzd3d4VUFXeEJaeHRsKzJDWThWTzl1U2QiLCJtYWMiOiI4ODQ2ZDQxOWU2MTc3ZmM2MzZiNTY3NDAzMTIzZmY0NzFhODkzZDRiNDYxNWQ1NWUxY2VmMTY2MTQ2NmVjMzhhIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkRBMk5yM3JRUjh3Q200OGpScXpFUEE9PSIsInZhbHVlIjoicy9vRFF3c2s1VHppK21sWHJWaXBhb24vS25RbTUxaTNpcVJTQmZubHJrL2dDRlRGclIybjAzMDF4aEVtTTAzaXBkRjFXbmlUNGtQZW1qUys2MU52Ukx2Y0FwNkpyVjJMNDZpMW0rb25tcjhFK3A3N21XTVAydkhJQUFlb0V4SWkiLCJtYWMiOiIyNTQ3ODY5NjMwZGM0YTVjNDU3OTlmNjAzNGMwNzFmMmZiZTI3NjczYjJjOTljYTZhZmQ5YjEwNjUyZjk2YTZhIiwidGFnIjoiIn0%3D
HTTP/1.1 404 Not Found
Server: nginx
Date: Sun, 19 Mar 2023 00:45:01 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
onlinequranteaching.com/fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.woff?eeccf4f66002c6f2ba24d3d22f2434c2
167.86.83.89404 Not Found 6.6 kB URL HTTP/1.1 onlinequranteaching.com/fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.woff?eeccf4f66002c6f2ba24d3d22f2434c2
IP 167.86.83.89:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5395)
Hash 307dca9c775906b8de45869cabe98fcd
2b80c3a2fd4a235b2cc9f89315a554d0721c0dd1
8437bd0ef46a19c9a7c294c53e0429b40e76ebbd5fe9fd73a9025752495ddb1c
Analyzer Verdict Alert urlquery phishing Phishing - DHL
openphish DHL Airways, Inc.
fortinet Phishing
GET /fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.woff?eeccf4f66002c6f2ba24d3d22f2434c2 HTTP/1.1
Host: onlinequranteaching.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://onlinequranteaching.com/public/css/app.css
Cookie: XSRF-TOKEN=eyJpdiI6IlVGbnovYjM2bkwwbFJIMjVseG9ZOFE9PSIsInZhbHVlIjoiT0dTNE41VitoU0pjcG0vQXVXNkxKMHBrNHJWRDhzNVFWaFZmRjlSYnJkOG04UG1UdnI1MWJsZGhNVVhXVnFjaEdIWVVlaTZwdUxZMUIwMXRyZ2RDam5HK0lXdjJMY3FNcnBJRmRmMFRzd3d4VUFXeEJaeHRsKzJDWThWTzl1U2QiLCJtYWMiOiI4ODQ2ZDQxOWU2MTc3ZmM2MzZiNTY3NDAzMTIzZmY0NzFhODkzZDRiNDYxNWQ1NWUxY2VmMTY2MTQ2NmVjMzhhIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkRBMk5yM3JRUjh3Q200OGpScXpFUEE9PSIsInZhbHVlIjoicy9vRFF3c2s1VHppK21sWHJWaXBhb24vS25RbTUxaTNpcVJTQmZubHJrL2dDRlRGclIybjAzMDF4aEVtTTAzaXBkRjFXbmlUNGtQZW1qUys2MU52Ukx2Y0FwNkpyVjJMNDZpMW0rb25tcjhFK3A3N21XTVAydkhJQUFlb0V4SWkiLCJtYWMiOiIyNTQ3ODY5NjMwZGM0YTVjNDU3OTlmNjAzNGMwNzFmMmZiZTI3NjczYjJjOTljYTZhZmQ5YjEwNjUyZjk2YTZhIiwidGFnIjoiIn0%3D
HTTP/1.1 404 Not Found
Server: nginx
Date: Sun, 19 Mar 2023 00:45:01 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
onlinequranteaching.com/fonts/vendor/@fortawesome/fontawesome-free/webfa-brands-400.ttf?527940b104eb2ea366c8630f3f038603
167.86.83.89404 Not Found 6.6 kB URL HTTP/1.1 onlinequranteaching.com/fonts/vendor/@fortawesome/fontawesome-free/webfa-brands-400.ttf?527940b104eb2ea366c8630f3f038603
IP 167.86.83.89:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5395)
Hash 307dca9c775906b8de45869cabe98fcd
2b80c3a2fd4a235b2cc9f89315a554d0721c0dd1
8437bd0ef46a19c9a7c294c53e0429b40e76ebbd5fe9fd73a9025752495ddb1c
Analyzer Verdict Alert urlquery phishing Phishing - DHL
openphish DHL Airways, Inc.
fortinet Phishing
GET /fonts/vendor/@fortawesome/fontawesome-free/webfa-brands-400.ttf?527940b104eb2ea366c8630f3f038603 HTTP/1.1
Host: onlinequranteaching.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://onlinequranteaching.com/public/css/app.css
Cookie: XSRF-TOKEN=eyJpdiI6IlVGbnovYjM2bkwwbFJIMjVseG9ZOFE9PSIsInZhbHVlIjoiT0dTNE41VitoU0pjcG0vQXVXNkxKMHBrNHJWRDhzNVFWaFZmRjlSYnJkOG04UG1UdnI1MWJsZGhNVVhXVnFjaEdIWVVlaTZwdUxZMUIwMXRyZ2RDam5HK0lXdjJMY3FNcnBJRmRmMFRzd3d4VUFXeEJaeHRsKzJDWThWTzl1U2QiLCJtYWMiOiI4ODQ2ZDQxOWU2MTc3ZmM2MzZiNTY3NDAzMTIzZmY0NzFhODkzZDRiNDYxNWQ1NWUxY2VmMTY2MTQ2NmVjMzhhIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkRBMk5yM3JRUjh3Q200OGpScXpFUEE9PSIsInZhbHVlIjoicy9vRFF3c2s1VHppK21sWHJWaXBhb24vS25RbTUxaTNpcVJTQmZubHJrL2dDRlRGclIybjAzMDF4aEVtTTAzaXBkRjFXbmlUNGtQZW1qUys2MU52Ukx2Y0FwNkpyVjJMNDZpMW0rb25tcjhFK3A3N21XTVAydkhJQUFlb0V4SWkiLCJtYWMiOiIyNTQ3ODY5NjMwZGM0YTVjNDU3OTlmNjAzNGMwNzFmMmZiZTI3NjczYjJjOTljYTZhZmQ5YjEwNjUyZjk2YTZhIiwidGFnIjoiIn0%3D
HTTP/1.1 404 Not Found
Server: nginx
Date: Sun, 19 Mar 2023 00:45:01 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
onlinequranteaching.com/fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.ttf?be9ee23c0c6390141475d519c2c5fb8f
167.86.83.89404 Not Found 6.6 kB URL HTTP/1.1 onlinequranteaching.com/fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.ttf?be9ee23c0c6390141475d519c2c5fb8f
IP 167.86.83.89:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5395)
Hash 307dca9c775906b8de45869cabe98fcd
2b80c3a2fd4a235b2cc9f89315a554d0721c0dd1
8437bd0ef46a19c9a7c294c53e0429b40e76ebbd5fe9fd73a9025752495ddb1c
Analyzer Verdict Alert urlquery phishing Phishing - DHL
GET /fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.ttf?be9ee23c0c6390141475d519c2c5fb8f HTTP/1.1
Host: onlinequranteaching.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://onlinequranteaching.com/public/css/app.css
Cookie: XSRF-TOKEN=eyJpdiI6IlVGbnovYjM2bkwwbFJIMjVseG9ZOFE9PSIsInZhbHVlIjoiT0dTNE41VitoU0pjcG0vQXVXNkxKMHBrNHJWRDhzNVFWaFZmRjlSYnJkOG04UG1UdnI1MWJsZGhNVVhXVnFjaEdIWVVlaTZwdUxZMUIwMXRyZ2RDam5HK0lXdjJMY3FNcnBJRmRmMFRzd3d4VUFXeEJaeHRsKzJDWThWTzl1U2QiLCJtYWMiOiI4ODQ2ZDQxOWU2MTc3ZmM2MzZiNTY3NDAzMTIzZmY0NzFhODkzZDRiNDYxNWQ1NWUxY2VmMTY2MTQ2NmVjMzhhIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkRBMk5yM3JRUjh3Q200OGpScXpFUEE9PSIsInZhbHVlIjoicy9vRFF3c2s1VHppK21sWHJWaXBhb24vS25RbTUxaTNpcVJTQmZubHJrL2dDRlRGclIybjAzMDF4aEVtTTAzaXBkRjFXbmlUNGtQZW1qUys2MU52Ukx2Y0FwNkpyVjJMNDZpMW0rb25tcjhFK3A3N21XTVAydkhJQUFlb0V4SWkiLCJtYWMiOiIyNTQ3ODY5NjMwZGM0YTVjNDU3OTlmNjAzNGMwNzFmMmZiZTI3NjczYjJjOTljYTZhZmQ5YjEwNjUyZjk2YTZhIiwidGFnIjoiIn0%3D
HTTP/1.1 404 Not Found
Server: nginx
Date: Sun, 19 Mar 2023 00:45:01 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
ka-f.fontawesome.com/releases/v6.3.0/webfonts/free-fa-brands-400.woff2
172.64.168.22200 OK 108 kB URL HTTP/2 ka-f.fontawesome.com/releases/v6.3.0/webfonts/free-fa-brands-400.woff2
IP 172.64.168.22:0
File type Web Open Font Format (Version 2), TrueType, length 108000, version 771.256\012- data
Size 108 kB (108000 bytes)
Hash 3a97d67deb684f79e3c15c05718be7e7
950e246881739ef22e747b5fa573e88114344159
f7a5aba06e482e1506bdf5b3a730147d4a0ed7f088f6425cc9b166bf8a105fd8
GET /releases/v6.3.0/webfonts/free-fa-brands-400.woff2 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://onlinequranteaching.com
Connection: keep-alive
Referer: http://onlinequranteaching.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 00:45:01 GMT
content-type: font/woff2
content-length: 108000
last-modified: Tue, 31 Jan 2023 18:29:16 GMT
etag: "3a97d67deb684f79e3c15c05718be7e7"
cache-control: max-age=31556926
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: fa-kit-token
access-control-max-age: 3000
x-cache: Hit from cloudfront
via: 1.1 a6a1a17bbe377bf7c4423397c71959da.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: I2NOxfDrs_UPFoYXvjjwAVvDlieVbtqdrBe6Eh8jQkXVaD2JJnl3Nw==
age: 22215
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2TyaaFToFtJl6STGxwizyqJjhbPiWzJRO51CaHDB404EyG%2FBCUsJHDJ3MvGB%2B1P4vsKS1ErDZQCpvZNDQEN43uXCQna6UD8u4baXU%2Fdyu7VE2zlvbJBxEo9BJ83jreu14yAGCWlXiw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7aa1b0b52b5648b2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v6.3.0/webfonts/free-fa-solid-900.woff2
172.64.168.22200 OK 150 kB URL HTTP/2 ka-f.fontawesome.com/releases/v6.3.0/webfonts/free-fa-solid-900.woff2
IP 172.64.168.22:0
File type Web Open Font Format (Version 2), TrueType, length 149896, version 771.256\012- data
Size 150 kB (149896 bytes)
Hash c00cd95af40d3d74e114025555250f09
299451f824167830fec38fade1f9e69d4c0c6e9b
a963d0d6baf5f8ad3a8d21c2bff2971d0819789204815a7082d8d4776dec4a80
GET /releases/v6.3.0/webfonts/free-fa-solid-900.woff2 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://onlinequranteaching.com
Connection: keep-alive
Referer: http://onlinequranteaching.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 00:45:01 GMT
content-type: font/woff2
content-length: 149896
last-modified: Tue, 31 Jan 2023 18:29:16 GMT
etag: "c00cd95af40d3d74e114025555250f09"
cache-control: max-age=31556926
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: fa-kit-token
access-control-max-age: 3000
x-cache: Hit from cloudfront
via: 1.1 90b0c7315c3da3c762112b5b8fdfc0aa.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: -CItb4Eb52fOjtjkcF4tE_4iEaMR6rS3ruoQI3T3K-IhrGnsQDvMcg==
age: 70301
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iYYf1WIusbL2NPT9PyEoLQxmngKUbxZGko1JOm%2FxVI%2BzUJg3HEWYSQlSa3WsSFiFWLKKmK6trtxTCVLN2JjSYGr%2FIjy%2FTIp3g%2Fg2vM9pCnfK33l0RgtaoERIqKBMacab6Ob9kFL11Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7aa1b0b52b5748b2-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
onlinequranteaching.com/public/js/app.js
167.86.83.89200 OK 1.6 MB URL HTTP/1.1 onlinequranteaching.com/public/js/app.js
IP 167.86.83.89:0
Size 1.6 MB (1613806 bytes)
Hash fd900f643203761f2eeca2132fc15f1d
375f23ca9ad75b647373bda03b02e2d0f6e729be
399e233cea4e5468820e5c5f98ddbb156de729983710cf576a6508f076326c68
Analyzer Verdict Alert urlquery phishing Phishing - DHL
openphish DHL Airways, Inc.
fortinet Phishing
GET /public/js/app.js HTTP/1.1
Host: onlinequranteaching.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://onlinequranteaching.com/public/A4itNCpJX4esU8P7ZDdBO9W1evilfqv0
Cookie: XSRF-TOKEN=eyJpdiI6IlVGbnovYjM2bkwwbFJIMjVseG9ZOFE9PSIsInZhbHVlIjoiT0dTNE41VitoU0pjcG0vQXVXNkxKMHBrNHJWRDhzNVFWaFZmRjlSYnJkOG04UG1UdnI1MWJsZGhNVVhXVnFjaEdIWVVlaTZwdUxZMUIwMXRyZ2RDam5HK0lXdjJMY3FNcnBJRmRmMFRzd3d4VUFXeEJaeHRsKzJDWThWTzl1U2QiLCJtYWMiOiI4ODQ2ZDQxOWU2MTc3ZmM2MzZiNTY3NDAzMTIzZmY0NzFhODkzZDRiNDYxNWQ1NWUxY2VmMTY2MTQ2NmVjMzhhIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkRBMk5yM3JRUjh3Q200OGpScXpFUEE9PSIsInZhbHVlIjoicy9vRFF3c2s1VHppK21sWHJWaXBhb24vS25RbTUxaTNpcVJTQmZubHJrL2dDRlRGclIybjAzMDF4aEVtTTAzaXBkRjFXbmlUNGtQZW1qUys2MU52Ukx2Y0FwNkpyVjJMNDZpMW0rb25tcjhFK3A3N21XTVAydkhJQUFlb0V4SWkiLCJtYWMiOiIyNTQ3ODY5NjMwZGM0YTVjNDU3OTlmNjAzNGMwNzFmMmZiZTI3NjczYjJjOTljYTZhZmQ5YjEwNjUyZjk2YTZhIiwidGFnIjoiIn0%3D
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Mar 2023 00:44:59 GMT
Content-Type: application/javascript
Content-Length: 1613806
Connection: keep-alive
Last-Modified: Tue, 29 Mar 2022 20:35:56 GMT
Accept-Ranges: bytes
onlinequranteaching.com/images/favicon.gif
167.86.83.89200 OK 2.2 kB URL HTTP/1.1 onlinequranteaching.com/images/favicon.gif
IP 167.86.83.89:0
File type MS Windows icon resource - 1 icon, 32x32, 8 bits/pixel\012- data
Hash a6f1af8e79a11829ba9a66474b06bb97
d99e3ec7747c865033a8dfad43c9f49634404bc1
b0dbd00f3650fa6b931e678a9d8f79a405d23c7adf111ab91b1a01a0e7109807
Analyzer Verdict Alert urlquery phishing Phishing - DHL
openphish DHL Airways, Inc.
GET /images/favicon.gif HTTP/1.1
Host: onlinequranteaching.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://onlinequranteaching.com/public/A4itNCpJX4esU8P7ZDdBO9W1evilfqv0
Cookie: XSRF-TOKEN=eyJpdiI6IlVGbnovYjM2bkwwbFJIMjVseG9ZOFE9PSIsInZhbHVlIjoiT0dTNE41VitoU0pjcG0vQXVXNkxKMHBrNHJWRDhzNVFWaFZmRjlSYnJkOG04UG1UdnI1MWJsZGhNVVhXVnFjaEdIWVVlaTZwdUxZMUIwMXRyZ2RDam5HK0lXdjJMY3FNcnBJRmRmMFRzd3d4VUFXeEJaeHRsKzJDWThWTzl1U2QiLCJtYWMiOiI4ODQ2ZDQxOWU2MTc3ZmM2MzZiNTY3NDAzMTIzZmY0NzFhODkzZDRiNDYxNWQ1NWUxY2VmMTY2MTQ2NmVjMzhhIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkRBMk5yM3JRUjh3Q200OGpScXpFUEE9PSIsInZhbHVlIjoicy9vRFF3c2s1VHppK21sWHJWaXBhb24vS25RbTUxaTNpcVJTQmZubHJrL2dDRlRGclIybjAzMDF4aEVtTTAzaXBkRjFXbmlUNGtQZW1qUys2MU52Ukx2Y0FwNkpyVjJMNDZpMW0rb25tcjhFK3A3N21XTVAydkhJQUFlb0V4SWkiLCJtYWMiOiIyNTQ3ODY5NjMwZGM0YTVjNDU3OTlmNjAzNGMwNzFmMmZiZTI3NjczYjJjOTljYTZhZmQ5YjEwNjUyZjk2YTZhIiwidGFnIjoiIn0%3D
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 19 Mar 2023 00:45:02 GMT
Content-Type: image/gif
Content-Length: 2238
Connection: keep-alive
Last-Modified: Sun, 17 Apr 2022 14:25:28 GMT
Accept-Ranges: bytes
ws-mt1.pusher.com/app/bc5ba70500b3342fb1aa?protocol=7&client=js&version=7.0.3&flash=false
52.21.80.136101 Switching Protocols 0 B URL HTTP/1.1 ws-mt1.pusher.com/app/bc5ba70500b3342fb1aa?protocol=7&client=js&version=7.0.3&flash=false
IP 52.21.80.136:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /app/bc5ba70500b3342fb1aa?protocol=7&client=js&version=7.0.3&flash=false HTTP/1.1
Host: ws-mt1.pusher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Sec-WebSocket-Version: 13
Origin: http://onlinequranteaching.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: mMXFqrkkK6Ui27L2ePvGyQ==
Connection: keep-alive, Upgrade
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Sun, 19 Mar 2023 00:45:03 GMT
Connection: upgrade
Server: nginx/1.17.7
Upgrade: websocket
Sec-WebSocket-Accept: fDdguTINT7jPK1WGdGae31xv4Yg=
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe323f22e-6800-4578-a34f-a8fa940499e0.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe323f22e-6800-4578-a34f-a8fa940499e0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6645ef8b7e2b10326cc1cb7c76f82769
cc7b05fa466c6ecd6c8a0e0d6ccc96ecbd59aced
1076fa495f0b7cc23922f64cc6a6f596de9a6f08ea7549eef785d804db0be7fc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe323f22e-6800-4578-a34f-a8fa940499e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8189
x-amzn-requestid: 3815c61d-6d05-4794-bd9a-d417d1270527
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B_wqgGsdIAMFi6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64162e42-6af86b2a21b89d38559ca754;Sampled=0
x-amzn-remapped-date: Sat, 18 Mar 2023 21:33:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: n-Dbnb07Rsh0y_T4UW0VQSyRcV96MehdMiFlhdUtcrCiqZVL5ZVJxg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 5c7981a979abd51ba7e5ca7d464fd048.cloudfront.net (CloudFront), 1.1 google
date: Sat, 18 Mar 2023 21:45:47 GMT
etag: "cc7b05fa466c6ecd6c8a0e0d6ccc96ecbd59aced"
content-type: image/jpeg
age: 10758
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 768f5a547ed01317a1fddb9c6eae2d13
89ac84a8a5952cc2d0e5f3ade9983c3e208fc95e
24c1eeb2cdae344cb03d049030024105d7a939de0c08e78066a97315d8d72b96
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "24C1EEB2CDAE344CB03D049030024105D7A939DE0C08E78066A97315D8D72B96"
Last-Modified: Sat, 18 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13668
Expires: Sun, 19 Mar 2023 04:32:54 GMT
Date: Sun, 19 Mar 2023 00:45:06 GMT
Connection: keep-alive
ka-f.fontawesome.com/releases/v6.3.0/css/free-v4-font-face.min.css?token=f7165dd215
172.64.168.22200 OK 0 B URL HTTP/2 ka-f.fontawesome.com/releases/v6.3.0/css/free-v4-font-face.min.css?token=f7165dd215
IP 172.64.168.22:0
GET /releases/v6.3.0/css/free-v4-font-face.min.css?token=f7165dd215 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://onlinequranteaching.com/
Origin: http://onlinequranteaching.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 00:44:59 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 31 Jan 2023 18:17:21 GMT
etag: W/"00bb3d26f3fee308e5747eb9f5760b48"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e3d6764a647541ed814ff5842b8b1476.cloudfront.net (CloudFront)
x-amz-cf-pop: SYD62-P2
x-amz-cf-id: 1wtcXtj08l-UQBjnStTqSqGENnNKO0BEjLzL1MCl53A8jCQLp8Q-uQ==
age: 172434
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x5xS4EODeHcSQPZe77I%2Fjp%2BFrhJb28P01hLe0TQQ5grK0svvFKhVb%2BdBhDgPZrEXIzUEqEs5WbCIFakCqmFXPNrSUO8VIK%2FDMCJ4KtqSzS4Mm7ptB%2BlDrRUOZEugMF7vrtEAuqgGYA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7aa1b0a8b92148b2-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v6.3.0/css/free.min.css?token=f7165dd215
172.64.168.22200 OK 0 B URL HTTP/2 ka-f.fontawesome.com/releases/v6.3.0/css/free.min.css?token=f7165dd215
IP 172.64.168.22:0
GET /releases/v6.3.0/css/free.min.css?token=f7165dd215 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://onlinequranteaching.com/
Origin: http://onlinequranteaching.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 00:44:59 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 31 Jan 2023 18:17:21 GMT
etag: W/"b7d524a460c5ceb6420db3aec0be8c92"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f0b5ff1c80ac588b3de0f130e6e2c0b6.cloudfront.net (CloudFront)
x-amz-cf-pop: YTO50-P1
x-amz-cf-id: YoBaAgerX9SvVqNy9hqaEGhHRyOBDjvDNLk_YPKCW9cgNBf1RoYxzw==
age: 22214
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bMP4fgcBeZcgL0U3nLN%2FgSTONkweHZsb5iZgGdLiKKOr6JLHsnihln6f0kwcfsAOEc8H%2FYn1CES0tDQ2Sg%2FTywKsXEAQbEp9BoQDux6eFOlcNQbAhwDYazz44CfugUM1l5jPLAroHA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7aa1b0a8b92248b2-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-2895475.js?sv=6
54.230.111.39200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-2895475.js?sv=6
IP 54.230.111.39:0
GET /c/hotjar-2895475.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://onlinequranteaching.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Sun, 19 Mar 2023 00:45:02 GMT
cache-control: max-age=60
etag: W/123b1685917091d962124155046225a1
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WK_jqXDe9_LFn7jHgHv1A_EU-u1BqUaco7y-fBg4xDrU1TFvBMPFcg==
age: 22
X-Firefox-Spdy: h2
trial.dlsite.com/doujin/RJ01032000/RJ01031132_trial.zip
163.171.237.123200 OK 0 B URL HTTP/2 trial.dlsite.com/doujin/RJ01032000/RJ01031132_trial.zip
IP 163.171.237.123:0
ASN #54994 QUANTILNETWORKS
GET /doujin/RJ01032000/RJ01031132_trial.zip HTTP/1.1
Host: trial.dlsite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/zip
content-length: 450703591
x-amz-id-2: aW66kY4NlR93C+tZ3YTET7Br4AVIZYnBDqVPItlQX2I+x37t17Eim2UvpkHIlGuEuqJwsdBUe2Y=
x-amz-request-id: XRHT337QR6R7WW35
date: Fri, 03 Mar 2023 15:13:09 GMT
last-modified: Fri, 03 Mar 2023 07:09:53 GMT
etag: "ab60b6a91851ed09c2f00abf26e818c3"
x-cache-status: MISS
x-qtl-request-id: 20040e0596cb7357a62529df95a47e65
x-via: 1.1 as-jp-nrt0-cache-0011 [HIT], 2.0 eu-se-arn1-cache-0003 [MISS 206]
age: 1330310
server: PWS/8.3.1.0.8
accept-ranges: bytes
X-Firefox-Spdy: h2
kit.fontawesome.com/f7165dd215.js
104.18.22.52200 OK 0 B URL HTTP/2 kit.fontawesome.com/f7165dd215.js
IP 104.18.22.52:0
GET /f7165dd215.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://onlinequranteaching.com
Connection: keep-alive
Referer: http://onlinequranteaching.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Mar 2023 00:44:59 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: F0XXIGpaPAbuoTPUkGnC
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 7aa1b0a6ed02b4f1-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.lr-in.com/logger-1.min.js
104.21.234.144200 OK 0 B URL HTTP/2 cdn.lr-in.com/logger-1.min.js
IP 104.21.234.144:0
GET /logger-1.min.js HTTP/1.1
Host: cdn.lr-in.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://onlinequranteaching.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 19 Mar 2023 00:44:59 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=14400
cross-origin-resource-policy: cross-origin
etag: W/"dfdd57c62ea9976ed1a60d7164fb1c6538c2c63af3e0dd4c45db5010d3e43a1b"
last-modified: Fri, 17 Mar 2023 21:20:09 GMT
strict-transport-security: max-age=31556926
x-served-by: cache-fra-eddf8230119-FRA
x-cache: HIT
x-cache-hits: 1
x-timer: S1679088163.314937,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 186
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AGIvoifP9KWlUyQBAXsfko%2Fdi1fQbxmag8Vc1TVZvA8dEVEP1Q9zkjUucqtOxP4jumyjblJcgyM3TEoAvO861Aodp1W66BasNe7xdNW4EcFXAt%2BXwcbCEqpz1%2BZvA3Xq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7aa1b0a72d84730f-LHR
content-encoding: br
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v6.3.0/css/free-v5-font-face.min.css?token=f7165dd215
172.64.168.22200 OK 0 B URL HTTP/2 ka-f.fontawesome.com/releases/v6.3.0/css/free-v5-font-face.min.css?token=f7165dd215
IP 172.64.168.22:0
GET /releases/v6.3.0/css/free-v5-font-face.min.css?token=f7165dd215 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://onlinequranteaching.com/
Origin: http://onlinequranteaching.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 00:44:59 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 31 Jan 2023 18:17:21 GMT
etag: W/"fdedb74e19e1bffdcab908079cabd49a"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 f0b5ff1c80ac588b3de0f130e6e2c0b6.cloudfront.net (CloudFront)
x-amz-cf-pop: YTO50-P1
x-amz-cf-id: AvnFJZ7jg9n5_TODpfBRddluhKEFYXLg3R-yMSioWRM0KWqeoApFPA==
age: 22214
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RgHKLDONwOvRMAbWc1sp4QYWFJBmrTEnyN6S7OVpY3Ms4pvZSL7cEDWsLgKvt94avrvH8KKNDFcGLqqNzXcgeAJrFMrnz7gRJMZpBenwC8fNhP7Ho0nKhwrSZJZURbtLc6OexJKXEg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7aa1b0a8c92848b2-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v6.3.0/css/free-v4-shims.min.css?token=f7165dd215
172.64.168.22200 OK 0 B URL HTTP/2 ka-f.fontawesome.com/releases/v6.3.0/css/free-v4-shims.min.css?token=f7165dd215
IP 172.64.168.22:0
GET /releases/v6.3.0/css/free-v4-shims.min.css?token=f7165dd215 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://onlinequranteaching.com/
Origin: http://onlinequranteaching.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 19 Mar 2023 00:44:59 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 31 Jan 2023 18:17:21 GMT
etag: W/"3a57f9df341838cc106903c71730d13b"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 1093497011694314ff008667ee2636c0.cloudfront.net (CloudFront)
x-amz-cf-pop: YTO50-P1
x-amz-cf-id: uvZa9M9goOv2p4cudvTFIxuYYYoduZ6d_aV6OtfmU7WlLVeZIHVyoQ==
age: 22214
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dd3t9NGOQBPOQPTOKINyrWXYh%2BSf97yuKPrJ3MweUlE2CQ9LZ88pNmf7AnJXOz%2BYc9BKBfPquLBF9IuH6Sc2sBTPOoux61jPsFFlI%2F0%2BTcKgm9FWKQFv3TfRt8sT90JHqlf%2BrC%2B2%2Bg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7aa1b0a8b92348b2-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2