urlquery - report: alud.com/

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	Sent bytes	Received bytes	IP
www.google.com (4)	7	2015-05-10T13:11:19Z	2023-03-10T12:19:40Z	2076	58091	142.250.74.164
ocsp.pki.goog (7)	175	2018-07-01T08:43:07Z	2023-03-10T05:11:10Z	2401	4893	142.250.74.35
partner.googleadservices.com (1)	798	2012-10-03T03:04:21Z	2023-03-10T06:40:47Z	460	842	172.217.21.162
img-getpocket.cdn.mozilla.net (6)	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3246	50542	34.120.237.76
ocsp.digicert.com (2)	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	682	1594	93.184.220.29
content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	413	5843	34.160.144.191
www1.alud.com (7)	0			3388	14176	99.83.136.84
push.services.mozilla.com (1)	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	606	127	34.213.121.129
firefox.settings.services.mozilla.com (2)	867	2020-06-04T22:08:41Z	2023-03-10T05:10:00Z	782	2374	34.102.187.140
alud.com (2)	0			804	5430	72.14.178.174
d38psrni17bvxu.cloudfront.net (5)	0	2022-09-22T18:48:38Z	2023-03-10T13:32:17Z	1781	21578	54.230.245.138
afs.googleusercontent.com (2)	12123	2013-05-06T21:11:00Z	2023-03-10T11:12:37Z	885	2318	142.250.74.33
r3.o.lencr.org (7)	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	2366	6204	23.36.76.226
contile.services.mozilla.com (1)	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	333	229	34.117.237.239
c.parkingcrew.net (2)	70582	2017-01-29T20:17:16Z	2023-03-10T13:32:17Z	685	1174	185.53.178.30

Scan Date	Severity	Indicator	Comment
2022-11-12	medium	alud.com/	Malware
2022-11-12	medium	alud.com/mtm/async/.eJxdiksOwjAMBe_iZYlqlnzEWZAJbmspaYLrQqSqdycFVuxm5r0FZhU (...)	Malware
2022-11-12	medium	d38psrni17bvxu.cloudfront.net/scripts/js3caf.js	Malware
2022-11-12	medium	d38psrni17bvxu.cloudfront.net/scripts/js3caf.js	Malware
2022-11-12	medium	www1.alud.com/ls.php	Malware

Date	UQ / IDS / BL	URL	IP
2023-06-04 00:57:12 UTC	0 - 0 - 14	volykyc.com/KeZnZ/login.php	45.79.19.196
2023-06-04 00:48:41 UTC	0 - 0 - 18	lygygin.com/WLVNZ/login.php	45.79.19.196
2023-06-04 00:44:32 UTC	0 - 0 - 14	qetyvep.com/PWcLZ/MSUdZ/login.php/	45.79.19.196
2023-06-04 00:22:00 UTC	0 - 0 - 18	qetyvep.com/UPNOZ/login.php	45.79.19.196
2023-06-03 03:55:48 UTC	0 - 0 - 18	qetyvep.com/MpWhZ/VhOmZ/login.php	45.79.19.196

Date	UQ / IDS / BL	URL	IP
2023-06-04 00:59:23 UTC	0 - 0 - 14	lygygin.com/UcidZ/login.php/	45.33.23.183
2023-06-04 00:57:12 UTC	0 - 0 - 14	volykyc.com/KeZnZ/login.php	45.79.19.196
2023-06-04 00:49:49 UTC	0 - 0 - 18	volykyc.com/KeZnZ/login.php/	45.33.30.197
2023-06-04 00:48:41 UTC	0 - 0 - 18	lygygin.com/WLVNZ/login.php	45.79.19.196
2023-06-04 00:48:22 UTC	0 - 0 - 14	qetyvep.com/KWpNZ/login.php/	72.14.185.43

Date	UQ / IDS / BL	URL	IP
2022-11-12 22:01:10 UTC	0 - 0 - 5	alud.com/	45.79.19.196

Date	UQ / IDS / BL	URL	IP
2023-03-20 17:28:11 UTC	0 - 0 - 1	activation-support-team.com/billing.php	99.83.175.80
2022-09-09 16:48:36 UTC	0 - 0 - 2	ww5.wholesalegolfequipment.net/http:/ww5.whol (...)	75.2.99.210
2022-09-04 14:36:05 UTC	0 - 0 - 1	www1.therealanarchychoppers.com/?tm=1&subid4= (...)	75.2.73.197
2022-09-04 14:35:50 UTC	0 - 0 - 2	therealanarchychoppers.com/mtm/direct/.eJx9is (...)	45.56.79.23
2023-02-26 11:59:00 UTC	0 - 0 - 2	www1.webmarketingbureau.com/	99.83.136.84

Request	Response
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "D3F75D03561D6A47D19370292E821A86E58381466F0C69386A21175DE55882FF" Last-Modified: Fri, 11 Nov 2022 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14270 Expires: Sun, 13 Nov 2022 01:58:49 GMT Date: Sat, 12 Nov 2022 22:00:59 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 3d0727e32cd103ddd4b73f28c81758aa Sha1: 197a7bf43d63723fc532c23c6dced68d5cc36652 Sha256: d3f75d03561d6a47d19370292e821a86e58381466f0c69386a21175de55882ff
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 6386 Cache-Control: max-age=137802 Date: Sat, 12 Nov 2022 22:00:59 GMT Etag: "636f75f3-1d7" Expires: Mon, 14 Nov 2022 12:17:41 GMT Last-Modified: Sat, 12 Nov 2022 10:31:15 GMT Server: ECS (ska/F719) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: de470c6bab46e7c4b7cc69f392900fe7 Sha1: 189e4dcc4c2b8bf1f050e06bd68bce8a99618918 Sha256: 86f57134ddebd23a25615dc4d59c4b1ca8919e3e0495e1f006cbe7c0f39aa27e
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Content-Length, Retry-After, Alert, Backoff, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Sat, 12 Nov 2022 21:44:03 GMT cache-control: public,max-age=3600 age: 1016 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 4736bac84ca28f2b1e961159fb4ea098 Sha1: 1319612979f53896fcfeacd4215c2715d4951e4c Sha256: 5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "ED5C27510100FFC4481BE474EBCB020D147C645BEB110604D5284EEEB8B97C02" Last-Modified: Fri, 11 Nov 2022 14:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10418 Expires: Sun, 13 Nov 2022 00:54:37 GMT Date: Sat, 12 Nov 2022 22:00:59 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: a8391107bfc5e4673e8a706f90f63768 Sha1: 5295ed0b1cb8bad4d3e851049acc7f0270937d12 Sha256: ed5c27510100ffc4481be474ebcb020d147c645beb110604d5284eeeb8b97c02
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	34.160.144.191 HTTP/2 200 OK content-type: binary/octet-stream x-amz-id-2: zOVYjFWv6Fbqwx8JjDvlpKsv3BKha3swmzi7/FYxG4EhqMpAwAO1X+KEP7WfcObITpZpFOadNKM= x-amz-request-id: EFQSKW2SMZ7D0ASX content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Sat, 12 Nov 2022 21:50:26 GMT age: 633 last-modified: Fri, 30 Sep 2022 18:50:55 GMT etag: "67d5a988edcda47bc3b3b3f65d32b4b6" cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 67d5a988edcda47bc3b3b3f65d32b4b6 Sha1: d4f0e0da8b3690cc7da925026d3414b68c7d954f Sha256: 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET / HTTP/1.1 Host: alud.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	72.14.178.174 HTTP/1.1 200 OK content-type: text/html; charset=utf-8 server: openresty/1.13.6.1 date: Sat, 12 Nov 2022 22:00:59 GMT content-length: 4596 vary: Accept-Language content-language: en connection: close --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 4596 Md5: b149692a496fd6db8c51480a744c9ee1 Sha1: 73291abffb830bba47b75c1eab7cc70f4667e4f4 Sha256: ba9fe998498ee9fa68147e1a269f4a5164b1c01ae580b6ac59c73f8b2230d6e7 Blocklists: - fortinet: Malware
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Sat, 12 Nov 2022 22:00:59 GMT content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /mtm/async/.eJxdiksOwjAMBe_iZYlqlnzEWZAJbmspaYLrQqSqdycFVuxm5r0FZhU4AYID0n6qWEm5Y2X9ypAmu44UuSqF-d76FLe395ytNuNiOFgMjnIO4skkjVi2siv_NYbz47Jvj04i9Yz0lO6HL75l12Dz2Q-wvgEd7jMK:1otyYd:SngSdfpIrvAWEPfoNH3Ue6rYHoE/1/ HTTP/1.1 Host: alud.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Referer: http://alud.com/ Connection: keep-alive	72.14.178.174 HTTP/1.1 200 OK content-type: text/html; charset=utf-8 server: openresty/1.13.6.1 date: Sat, 12 Nov 2022 22:00:59 GMT content-length: 55 x-mtm-path: 7 x-mtm-prov: 223:0.00;224:0.00 x-mtm-rd: 0.00 vary: Accept-Language content-language: en set-cookie: mtm_delivered=WyJhbHVkLmNvbSIsImh0dHA6Ly93d3cxLmFsdWQuY29tLz90bT0xJnN1YmlkND0xNjY4MjkwNDU5LjA0NDYyMTAwMDAiLDEsIjIwMjItMTEtMTIgMjI6MDA6NTkiLDEsIjE2NjgyOTA0NTkuMDQ0NjIxMDAwMCIsMjIzLG51bGwsbnVsbF0:1otyYd:OQrlc8ltNbN6RWXz-aknvygP0I0; expires=Sat, 12-Nov-2022 23:00:59 GMT; Max-Age=3600; Path=/ connection: close --- Additional Info --- Magic: ASCII text, with no line terminators Size: 55 Md5: 3dfad75c70913360c8da2ccc126aac49 Sha1: 7014bdf4f9cbe70b366d56b9f4a35b2ce3855603 Sha256: 402eb8448aaaef5f9a6ef28d0217d88b6235b67a72b2dc46c9f915d44ad6d2e0 Blocklists: - fortinet: Malware
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Content-Length, Cache-Control, Pragma, Last-Modified, ETag, Alert, Backoff, Content-Type, Retry-After, Expires content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Sat, 12 Nov 2022 21:25:00 GMT cache-control: public,max-age=3600 age: 2159 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /?tm=1&subid4=1668290459.0446210000 HTTP/1.1 Host: www1.alud.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://alud.com/ Upgrade-Insecure-Requests: 1	99.83.136.84 HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Date: Sat, 12 Nov 2022 22:00:59 GMT Transfer-Encoding: chunked Connection: keep-alive Server: nginx Vary: Accept-Encoding X-Buckets: bucket003 X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_HBSv7JybrTsb6WSzBXGGnehGiDCRooWqkBDf3U6OnUrTUXFYluBAdXWC7FHBf35KgNKeEQaEXyJE6SvfGProcQ== X-Template: tpl_CleanPeppermintBlack_twoclick X-Language: norwegian Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile Accept-CH-Lifetime: 30 Content-Encoding: gzip --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2714) Size: 5177 Md5: 593942fd82b70350b1389b35c1c1107d Sha1: 224061074e76ae3329892406c838da606212eb9f Sha256: 92b8080cc692d6cace606acb3a23cd7a0dfb1cd2c08afc178bdf2549a6cf2de0
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 2838 Cache-Control: max-age=129190 Date: Sat, 12 Nov 2022 22:01:00 GMT Etag: "636f622c-1d7" Expires: Mon, 14 Nov 2022 09:54:10 GMT Last-Modified: Sat, 12 Nov 2022 09:06:52 GMT Server: ECS (ska/F719) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: ae51f1958554de4457c22a7d5a9ba8b6 Sha1: 173e90a8c6ee36b7ec569dbea47436a90d7e7c76 Sha256: dc43a04e1e26243f63a8e628f2ebcb23a9527fd4bc40dc6d1d61879b0f95bb21
GET /adsense/domains/caf.js HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www1.alud.com/	142.250.74.164 HTTP/1.1 200 OK Content-Type: text/javascript; charset=UTF-8 Accept-Ranges: bytes Vary: Accept-Encoding Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui Cross-Origin-Resource-Policy: cross-origin Cross-Origin-Opener-Policy: same-origin; report-to="ads-afs-ui" Report-To: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]} Date: Sat, 12 Nov 2022 22:01:00 GMT Expires: Sat, 12 Nov 2022 22:01:00 GMT Cache-Control: private, max-age=3600 ETag: "9089615408232115983" X-Content-Type-Options: nosniff Content-Encoding: gzip Transfer-Encoding: chunked Server: sffe X-XSS-Protection: 0 --- Additional Info --- Magic: ASCII text, with very long lines (1885) Size: 53474 Md5: 8413497980a9c0614bb0fe15a80bba91 Sha1: f14b28841a24753c880aff5f0e8cc16d750e8478 Sha256: 2d6ff7353d307e7bbf6f4894fb2d5b049e03e95e1d5061210ba23a275f5e51b3
GET /scripts/js3caf.js HTTP/1.1 Host: d38psrni17bvxu.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www1.alud.com/	54.230.245.138 HTTP/1.1 200 OK Content-Type: application/javascript Content-Length: 7000 Connection: keep-alive Server: nginx Date: Sat, 12 Nov 2022 06:30:39 GMT Last-Modified: Thu, 14 Jan 2021 10:54:01 GMT Accept-Ranges: bytes ETag: "600022c9-1b58" X-Cache: Hit from cloudfront Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: zZ6e490F71eMTr1WXU7pSWgjH2TqhUkTNeZVjHXba5LY15DLBQwZbw== Age: 55821 --- Additional Info --- Magic: ASCII text, with very long lines (316) Size: 7000 Md5: cce7f943ec8e7b4ba13be4aba6b463d9 Sha1: 220f3e8ca723daa91fd040cf518991a65f2bf110 Sha256: ba5b7354353b0eec1637564dae072fee662a5b9862f6bf7ed5e60a5a76f2ef44 Blocklists: - fortinet: Malware
GET /themes/cleanPeppermintBlack_657d9013/style.css HTTP/1.1 Host: d38psrni17bvxu.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www1.alud.com/	54.230.245.138 HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Server: nginx Date: Sat, 12 Nov 2022 06:34:22 GMT Last-Modified: Fri, 21 Oct 2022 11:27:37 GMT Content-Encoding: gzip ETag: W/"63528229-63e" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: fDNDQFPUQ5KL-qJNuyVK6lGveYLN7djl_mdqgWcuA51TUzZp84HRnw== Age: 55598 --- Additional Info --- Magic: ASCII text Size: 648 Md5: 706f944f821bc64dff4240a04251ff36 Sha1: efcf7c46310be1b252baae8e2f4b5e9edfee9fe3 Sha256: dc365466c780c2d5e58a10925db88facb0cae18cb5a077790c54561e8590b63b
GET /themes/assets/style.css HTTP/1.1 Host: d38psrni17bvxu.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www1.alud.com/	54.230.245.138 HTTP/1.1 200 OK Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Server: nginx Date: Sat, 12 Nov 2022 07:34:24 GMT Last-Modified: Tue, 12 May 2020 14:25:52 GMT Content-Encoding: gzip ETag: W/"5ebab1f0-33d" Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: XxlykwgYYxryROpJol4wyRzR2hjsidCAPIgBppYcRJfI3tXJohsgbg== Age: 51996 --- Additional Info --- Magic: ASCII text Size: 343 Md5: 03a4a8c322fc0c99b0ee7cbbcc9eabcd Sha1: 6fc193276de2a3458cd853c474cb9269b900e00d Sha256: a535d2296792cb37a2bbad1d9d0546e3383a8a5bfac0d9edda15795c226bddf7
GET /scripts/sale_form.js HTTP/1.1 Host: c.parkingcrew.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www1.alud.com/	185.53.178.30 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Sat, 12 Nov 2022 22:01:00 GMT Content-Length: 761 Connection: keep-alive Last-Modified: Tue, 12 May 2020 14:25:52 GMT ETag: "5ebab1f0-2f9" Accept-Ranges: bytes --- Additional Info --- Magic: ASCII text Size: 761 Md5: 64f809e06446647e192fce8d1ec34e09 Sha1: 5b7ced07da42e205067afa88615317a277a4a82c Sha256: f52cbd664986ad7ed6e71c448e2d31d1a16463e4d9b7bca0c6be278649ccc4f3
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: 7m+eRCRl30Bvo6V+M9WtFQ== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	34.213.121.129 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: JnL0BB7I+th8/SfLSgmVxG0Nb9U= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /themes/cleanPeppermintBlack_657d9013/img/arrows.png HTTP/1.1 Host: d38psrni17bvxu.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://d38psrni17bvxu.cloudfront.net/themes/cleanPeppermintBlack_657d9013/style.css	54.230.245.138 HTTP/1.1 200 OK Content-Type: image/png Content-Length: 11375 Connection: keep-alive Server: nginx Date: Sat, 12 Nov 2022 02:14:07 GMT Last-Modified: Thu, 23 Jun 2022 10:44:43 GMT Accept-Ranges: bytes ETag: "62b4441b-2c6f" X-Cache: Hit from cloudfront Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: ZBUfGV4sKLSnWRGqWYrRv9fmMVuKNdVbz_6Ms_wgwmEzEAcHehftkA== Age: 71213 --- Additional Info --- Magic: PNG image data, 1500 x 600, 8-bit colormap, non-interlaced\012- data Size: 11375 Md5: 0cb2e5165dc9324eb462199f04e1ffa9 Sha1: 9e0f89847ec8a98d98a6020bc5c4ed32b7a48bf8 Sha256: 67dff0aad873050f12609885f2264417ccdd0d438311000a704c89f0865f7865
GET /favicon.ico HTTP/1.1 Host: www1.alud.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www1.alud.com/?tm=1&subid4=1668290459.0446210000	99.83.136.84 HTTP/1.1 200 OK Content-Type: image/x-icon Date: Sat, 12 Nov 2022 22:01:00 GMT Content-Length: 0 Connection: keep-alive Server: nginx Last-Modified: Tue, 12 May 2020 14:25:52 GMT ETag: "5ebab1f0-0" Accept-Ranges: bytes --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track.php?domain=alud.com&toggle=browserjs&uid=MTY2ODI5MDQ1OS45NDU2Ojc5NTZhZGNkN2JjZDg3NmVlZTg5MzljMGNhMjYzYjI5ODlhNjdkYmZhYTVkODFmMjkwMmY3YmM2NDZjYzY1NzQ6NjM3MDE3OWJlNmQ5Nw%3D%3D HTTP/1.1 Host: www1.alud.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www1.alud.com/?tm=1&subid4=1668290459.0446210000	99.83.136.84 HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Date: Sat, 12 Nov 2022 22:01:00 GMT Transfer-Encoding: chunked Connection: keep-alive Server: nginx Vary: Accept-Encoding X-Custom-Track: browserjs Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile Accept-CH-Lifetime: 30 Access-Control-Allow-Origin: * Content-Encoding: gzip --- Additional Info --- Magic: data Size: 20 Md5: a4745abc5e7fdb89cc6df3069f3c6e69 Sha1: 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed Sha256: d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.35 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 12 Nov 2022 22:01:01 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 86d1ab5f5a5b326dd100a4bfcda8ceed Sha1: ed17be3586e93321dd2ab1a340ae41d6f86e293d Sha256: db7591e84a7adaa4ff3ddd38458e379bbb15751e31a10937c6202cba94a8c602
GET /afs/ads?adtest=off&psid=6016880802&pcsa=false&channel=000001%2Cbucket003&client=dp-teaminternet04_3ph&r=m&hl=no&max_radlink_len=40&type=3&uiopt=true&swp=as-drid-2603414215433570&oe=UTF-8&ie=UTF-8&fexp=21404%2C17300003&format=r1%7Cs&nocache=2841668290460069&num=0&output=afd_ads&domain_name=www1.alud.com&v=3&bsl=8&pac=0&u_his=2&u_tz=0&dt=1668290460070&u_w=1280&u_h=1024&biw=1280&bih=939&psw=1280&psh=795&frm=0&cl=486644749&uio=--&cont=tc&jsid=caf&jsv=486644749&rurl=http%3A%2F%2Fwww1.alud.com%2F%3Ftm%3D1%26subid4%3D1668290459.0446210000&referer=http%3A%2F%2Falud.com%2F&adbw=master-1%3A530 HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://www1.alud.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site	142.250.74.164 HTTP/2 200 OK content-type: text/html; charset=UTF-8 content-disposition: inline date: Sat, 12 Nov 2022 22:01:01 GMT expires: Sat, 12 Nov 2022 22:01:01 GMT cache-control: private, max-age=3600 content-encoding: br server: gws content-length: 2004 x-xss-protection: 0 set-cookie: CONSENT=PENDING+366; expires=Mon, 11-Nov-2024 22:01:01 GMT; path=/; domain=.google.com; Secure p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5384) Size: 2004 Md5: b55bd6ba0e92aaf34a5995c45d976ae2 Sha1: a500c5857bb3b944f2571d6010582921d7036b7d Sha256: b6a60c5d004f30654f4d31fa113f88df7a73209781ac39ba7e536b2131eee9cb
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.35 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 12 Nov 2022 22:01:01 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: c7532175bdda623cb1f7d83c236772d4 Sha1: 71a1540c0d3e9acb10807b74b44228af537c6785 Sha256: fba2db2a9be13aebe95a85d8c7086b97794e4ebc19781a967c4d157f78c4626a
GET /gampad/cookie.js?domain=www1.alud.com&client=dp-teaminternet04_3ph&product=SAS&callback=__sasCookie HTTP/1.1 Host: partner.googleadservices.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://www1.alud.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	172.217.21.162 HTTP/2 200 OK content-type: text/javascript; charset=UTF-8 p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin x-content-type-options: nosniff content-disposition: attachment; filename="f.txt" content-encoding: gzip date: Sat, 12 Nov 2022 22:01:01 GMT server: cafe cache-control: private content-length: 179 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with no line terminators Size: 179 Md5: 34a64fa68de7874082f33813e6191db9 Sha1: c6e8c0e62387e2cf3965b2ecebe395d80bb08d01 Sha256: beec57e79ea2a7c48fb97a517002d01a2ea32453c50ac277252d656f15ce6a3d
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.35 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 12 Nov 2022 22:01:01 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: e569acd833d180f3c2fba0919fbeb704 Sha1: 60a3121c9bf8e08a8a7fe70001c24b6f8c9981f5 Sha256: 994bee0670c93479c3e835985d24d7ce41fbc0a3013e173d79ea1ea5f63ac85c
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.35 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 12 Nov 2022 22:01:01 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: c7532175bdda623cb1f7d83c236772d4 Sha1: 71a1540c0d3e9acb10807b74b44228af537c6785 Sha256: fba2db2a9be13aebe95a85d8c7086b97794e4ebc19781a967c4d157f78c4626a
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.35 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 12 Nov 2022 22:01:01 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 562149e460e7949cc1e3726ac7c854bf Sha1: 90c304ab2081e4d04e1c6a176e8193787986a0b2 Sha256: 9f83f2b72570abc2c662aacf80e9eac0ab0410de0e147b2f786767edd4dcc4fb
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.35 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 12 Nov 2022 22:01:01 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 562149e460e7949cc1e3726ac7c854bf Sha1: 90c304ab2081e4d04e1c6a176e8193787986a0b2 Sha256: 9f83f2b72570abc2c662aacf80e9eac0ab0410de0e147b2f786767edd4dcc4fb
GET /ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff HTTP/1.1 Host: afs.googleusercontent.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.google.com/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	142.250.74.33 HTTP/2 200 OK content-type: image/svg+xml accept-ranges: bytes vary: Accept-Encoding content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers" report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]} content-length: 270 x-content-type-options: nosniff content-encoding: gzip server: sffe x-xss-protection: 0 date: Sat, 12 Nov 2022 07:18:23 GMT expires: Sun, 13 Nov 2022 06:18:23 GMT cache-control: public, max-age=82800 age: 52958 last-modified: Thu, 19 Dec 2019 14:15:00 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (390) Size: 270 Md5: 5100391430a00e10ce60aa159f525b5c Sha1: 231a4492d73b225f441b1e9028dc33c89862e498 Sha256: 52b1432a6e3002e41ed1d8f4c84b258fdc4c6dac863e3c0e5c06360c81be6067
GET /ad_icons/standard/publisher_icon_image/chevron.svg?c=%23ffffff HTTP/1.1 Host: afs.googleusercontent.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.google.com/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	142.250.74.33 HTTP/2 200 OK content-type: image/svg+xml accept-ranges: bytes vary: Accept-Encoding content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers" report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]} content-length: 174 x-content-type-options: nosniff content-encoding: gzip server: sffe x-xss-protection: 0 date: Sat, 12 Nov 2022 05:02:20 GMT expires: Sun, 13 Nov 2022 04:02:20 GMT cache-control: public, max-age=82800 age: 61121 last-modified: Thu, 22 Oct 2020 21:45:00 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators Size: 174 Md5: 4de8b85c8915995b571bde50e231be7c Sha1: 29c226ca7b9cbe1d44e5480ce95bbb42727b2d99 Sha256: 2ec9168c4507546748c5f400f5030031f0eb06f2aed8deaa11362c395bff4f7a
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.35 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 12 Nov 2022 22:01:01 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 562149e460e7949cc1e3726ac7c854bf Sha1: 90c304ab2081e4d04e1c6a176e8193787986a0b2 Sha256: 9f83f2b72570abc2c662aacf80e9eac0ab0410de0e147b2f786767edd4dcc4fb
GET /?tm=1&subid4=1668290459.0446210000 HTTP/1.1 Host: www1.alud.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Cookie: __gsas=ID=c4d221742a55652c:T=1668290461:S=ALNI_MZOkbXg0J0he52r81qc6r-Q3uXLig Upgrade-Insecure-Requests: 1 Cache-Control: max-age=0	99.83.136.84 HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Date: Sat, 12 Nov 2022 22:01:01 GMT Transfer-Encoding: chunked Connection: keep-alive Server: nginx Vary: Accept-Encoding X-Buckets: bucket003 X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_HBSv7JybrTsb6WSzBXGGnehGiDCRooWqkBDf3U6OnUrTUXFYluBAdXWC7FHBf35KgNKeEQaEXyJE6SvfGProcQ== X-Template: tpl_CleanPeppermintBlack_twoclick X-Language: norwegian Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile Accept-CH-Lifetime: 30 Content-Encoding: gzip --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2714) Size: 5195 Md5: 59de98c7dfb9df25dda08136aa49fab8 Sha1: 25438a3c312d44c99fef0befbf0b0265d8cbf609 Sha256: 016464cfbaccfd8a87e970bb346d8137103433b963d3c63ed8825e4d43088184
GET /scripts/js3caf.js HTTP/1.1 Host: d38psrni17bvxu.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www1.alud.com/ If-Modified-Since: Thu, 14 Jan 2021 10:54:01 GMT If-None-Match: "600022c9-1b58" Cache-Control: max-age=0	54.230.245.138 HTTP/1.1 304 Not Modified Connection: keep-alive Server: nginx Date: Sat, 12 Nov 2022 06:30:39 GMT Last-Modified: Thu, 14 Jan 2021 10:54:01 GMT ETag: "600022c9-1b58" X-Cache: Hit from cloudfront Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: RqjtOKCyick2gyMk6tsYK21XZd_6_DUuP5tMLYeZG4wh2XYrprmkvw== Age: 55822 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Blocklists: - fortinet: Malware
GET /adsense/domains/caf.js HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www1.alud.com/ If-None-Match: "9089615408232115983" Cache-Control: max-age=0	142.250.74.164 HTTP/1.1 304 Not Modified Content-Type: text/javascript; charset=UTF-8 Cross-Origin-Resource-Policy: cross-origin Date: Sat, 12 Nov 2022 22:01:01 GMT Expires: Sat, 12 Nov 2022 22:01:01 GMT Cache-Control: private, max-age=3600 ETag: "9089615408232115983" X-Content-Type-Options: nosniff Server: sffe X-XSS-Protection: 0 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /scripts/sale_form.js HTTP/1.1 Host: c.parkingcrew.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www1.alud.com/ If-Modified-Since: Tue, 12 May 2020 14:25:52 GMT If-None-Match: "5ebab1f0-2f9" Cache-Control: max-age=0	185.53.178.30 HTTP/1.1 304 Not Modified Server: nginx Date: Sat, 12 Nov 2022 22:01:01 GMT Connection: keep-alive Last-Modified: Tue, 12 May 2020 14:25:52 GMT ETag: "5ebab1f0-2f9" --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF" Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3387 Expires: Sat, 12 Nov 2022 22:57:28 GMT Date: Sat, 12 Nov 2022 22:01:01 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: fb29db48daab83bcaed56b72093619cc Sha1: e0e0a09d729ffb1c41411419768896f1e1eb3346 Sha256: 08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF" Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3387 Expires: Sat, 12 Nov 2022 22:57:28 GMT Date: Sat, 12 Nov 2022 22:01:01 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: fb29db48daab83bcaed56b72093619cc Sha1: e0e0a09d729ffb1c41411419768896f1e1eb3346 Sha256: 08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF" Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3387 Expires: Sat, 12 Nov 2022 22:57:28 GMT Date: Sat, 12 Nov 2022 22:01:01 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: fb29db48daab83bcaed56b72093619cc Sha1: e0e0a09d729ffb1c41411419768896f1e1eb3346 Sha256: 08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF" Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3387 Expires: Sat, 12 Nov 2022 22:57:28 GMT Date: Sat, 12 Nov 2022 22:01:01 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: fb29db48daab83bcaed56b72093619cc Sha1: e0e0a09d729ffb1c41411419768896f1e1eb3346 Sha256: 08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF" Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3387 Expires: Sat, 12 Nov 2022 22:57:28 GMT Date: Sat, 12 Nov 2022 22:01:01 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: fb29db48daab83bcaed56b72093619cc Sha1: e0e0a09d729ffb1c41411419768896f1e1eb3346 Sha256: 08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F073ec866-b693-4f96-82bf-76ba051797c9.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 6577 x-amzn-requestid: b4587cfb-6041-453c-9e74-fa35ecd31448 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: bdMjIGHRoAMF26g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-636ec147-29e7ec741b0e6f6f674aef75;Sampled=0 x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:23 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: hsMmHIBEt_4cL455goPqDKQVQA75u4oGFbSxsGP_e_0uG7SZmSLBhQ== via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google date: Sat, 12 Nov 2022 22:00:57 GMT age: 4 etag: "ccc1ec5ebb5090c6255dcb1e8899e95cdd91e12f" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6577 Md5: faa8e3cf2ab3c1d53a1735def5bb7476 Sha1: ccc1ec5ebb5090c6255dcb1e8899e95cdd91e12f Sha256: e81a8fa312ec478871427f1d04ba7fe563573c683809153f75dec8df979d6efe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe8955e1-907b-43ed-a437-d4ad1f5fe742.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 5478 x-amzn-requestid: c06e47c6-da2a-4a70-af2a-c1268557b913 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: bdM67FEEIAMF-pA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-636ec1df-0628d00244323ddf727e0b80;Sampled=0 x-amzn-remapped-date: Fri, 11 Nov 2022 21:42:55 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: jQIBERZ9Wm17Fd6Tjtw0cV2fQFvzF3rCrTqKf_oC14H_xwB6oPQS8g== via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google date: Sat, 12 Nov 2022 21:45:17 GMT age: 944 etag: "c76588ccaf97fdfd6e73833083200cb49a01a4af" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5478 Md5: 38e32fc94c445ff47da5d2907e61e3a4 Sha1: c76588ccaf97fdfd6e73833083200cb49a01a4af Sha256: e4e3947b2248206c9dacfd35ff5619ca3b3ae56a7bcd565d40ed048839ffa075
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6f7d2f5-4807-4bbd-a3db-7a239962aca5.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 5583 x-amzn-requestid: e844f42a-e87e-4e61-8c97-137c07c5ae28 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: bNeQ9Ho7IAMF5_g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63687739-62c44d2f7d23632e74895bd8;Sampled=0 x-amzn-remapped-date: Mon, 07 Nov 2022 03:10:49 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: uHlIN1IVGCFUVl5lx5pFSux0YncseT2HQjiwFDL9eaEaBa9CdnCl8g== via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google date: Sat, 12 Nov 2022 04:50:44 GMT age: 61817 etag: "691f59b65ca9fde4f59bbf96b37071e07351f190" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5583 Md5: 85c6f450b38f41a2fb924d6d9a9cbff8 Sha1: 691f59b65ca9fde4f59bbf96b37071e07351f190 Sha256: c8f877488a2cf65f0d9829384fd4113847722a1b4df94b6b1d5788699689722c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe5720fc8-63c5-4f5e-bb64-33809e0069fe.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 8953 x-amzn-requestid: 2a2d20f4-3aa5-475e-8ec2-fc569766335e x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: bdMhQGAhIAMFrjw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-636ec13b-26dc0259793ec94814f3d41a;Sampled=0 x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT x-amz-cf-pop: SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: OKFzEoCVITStAPxYzhksarrlTkVeATx6AzBnEK32WLFaOeEIwLMu_Q== via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google date: Sat, 12 Nov 2022 21:45:17 GMT age: 944 etag: "fa34520e849bf746ff43aec3d28beb9e4be44f4d" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8953 Md5: f09e254cd6f2e29b3bf198cc5d58a46f Sha1: fa34520e849bf746ff43aec3d28beb9e4be44f4d Sha256: 2e29eace95fd8cb5b6d77df880d2044ecab4206cba47931c3a95e77c1b4e9d9a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d4e929-d0bb-41b7-bdcd-0e67258b428a.webp HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 9012 x-amzn-requestid: 83eac9e7-5387-4e11-9769-182fa3f7fffb x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: bdNC6FxzoAMF80w= x-content-type-options: nosniff x-amzn-trace-id: Root=1-636ec212-5ca277b90a5a9a4c437edc1e;Sampled=0 x-amzn-remapped-date: Fri, 11 Nov 2022 21:43:46 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: PrJoEROPymrtc0egNlWRoOMjohiCo3zReD01qAHwByaSiXarfRS0XQ== via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google date: Sat, 12 Nov 2022 22:00:44 GMT age: 17 etag: "0cc22d7bf9092fb30f31e2ca8f242c197b891669" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9012 Md5: 516f1bfefb1c1a737ea2441f85343b32 Sha1: 0cc22d7bf9092fb30f31e2ca8f242c197b891669 Sha256: 733824d4f6f7c5b54ce4e02ecaf152cfc1e10f3f6a801d7e2c55a02460e40087
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Facfcee70-832e-4f2d-8fc7-55d2bfff651e.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 8633 x-amzn-requestid: 8bdfbfbb-5193-4c62-ba1b-c906f7548676 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: bdMhSEC1oAMF8tw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-636ec13b-39b4c2954dbc8e4c40a2c9d8;Sampled=0 x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: uOmwGlJCumDmuVyp1T0YkwwQn8tJ7xMml78eEKaOcaaaIkqgQAdCIA== via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google date: Sat, 12 Nov 2022 21:45:26 GMT age: 935 etag: "2d90ff66079e8ffbaaa367a6bfc08927e7cc424d" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8633 Md5: eac2ed4bece6282c8273a58a88371e2e Sha1: 2d90ff66079e8ffbaaa367a6bfc08927e7cc424d Sha256: aea97fd7d90302edcb3e0c08507d682e02166e8ddd4d082fc4f5435af438594c
GET /track.php?domain=alud.com&toggle=browserjs&uid=MTY2ODI5MDQ2MS40MTY5OjY0NThlZDMzOTljODA0ODI0NzQ5ZTk4N2Q5MjE4NTUyYzcxN2Y2ZTlhZTI4OTRlM2Y4N2ZkMTU5OWVkNDQyOWI6NjM3MDE3OWQ2NWM5OA%3D%3D HTTP/1.1 Host: www1.alud.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www1.alud.com/?tm=1&subid4=1668290459.0446210000 Cookie: __gsas=ID=c4d221742a55652c:T=1668290461:S=ALNI_MZOkbXg0J0he52r81qc6r-Q3uXLig	99.83.136.84 HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Date: Sat, 12 Nov 2022 22:01:02 GMT Transfer-Encoding: chunked Connection: keep-alive Server: nginx Vary: Accept-Encoding X-Custom-Track: browserjs Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile Accept-CH-Lifetime: 30 Access-Control-Allow-Origin: * Content-Encoding: gzip --- Additional Info --- Magic: data Size: 20 Md5: a4745abc5e7fdb89cc6df3069f3c6e69 Sha1: 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed Sha256: d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
POST /ls.php HTTP/1.1 Host: www1.alud.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/x-www-form-urlencoded; charset=UTF-8 Content-Length: 2610 Origin: http://www1.alud.com Connection: keep-alive Referer: http://www1.alud.com/?tm=1&subid4=1668290459.0446210000 Cookie: __gsas=ID=c4d221742a55652c:T=1668290461:S=ALNI_MZOkbXg0J0he52r81qc6r-Q3uXLig Cache-Control: max-age=0	99.83.136.84 HTTP/1.1 201 Created Content-Type: text/javascript;charset=UTF-8 Date: Sat, 12 Nov 2022 22:01:02 GMT Transfer-Encoding: chunked Connection: keep-alive Server: nginx Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile Accept-CH-Lifetime: 30 X-Log-Success: 6370179e53e5e64ee9612b29 Charset: utf-8 Access-Control-Allow-Origin: http://www1.alud.com Access-Control-Allow-Methods: POST, OPTIONS Access-Control-Max-Age: 86400 X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_QfW9PrVQmNcvLD/lGZ8gDp9mmtAGEcEsipr3Itg7aMn+jZXC2owTa3DIkz0+ulu6WdOJxP9muDGbgYF5HHu9RA== --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Blocklists: - fortinet: Malware
GET /track.php?domain=alud.com&caf=1&toggle=answercheck&answer=yes&uid=MTY2ODI5MDQ2MS40MTY5OjY0NThlZDMzOTljODA0ODI0NzQ5ZTk4N2Q5MjE4NTUyYzcxN2Y2ZTlhZTI4OTRlM2Y4N2ZkMTU5OWVkNDQyOWI6NjM3MDE3OWQ2NWM5OA%3D%3D HTTP/1.1 Host: www1.alud.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://www1.alud.com/?tm=1&subid4=1668290459.0446210000 Cookie: __gsas=ID=c4d221742a55652c:T=1668290461:S=ALNI_MZOkbXg0J0he52r81qc6r-Q3uXLig	99.83.136.84 HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Date: Sat, 12 Nov 2022 22:01:02 GMT Transfer-Encoding: chunked Connection: keep-alive Server: nginx Vary: Accept-Encoding X-Custom-Track: answercheck Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile Accept-CH-Lifetime: 30 Access-Control-Allow-Origin: * Content-Encoding: gzip --- Additional Info --- Magic: data Size: 20 Md5: a4745abc5e7fdb89cc6df3069f3c6e69 Sha1: 74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed Sha256: d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /adsense/domains/caf.js HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.google.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	142.250.74.164 HTTP/2 200 OK content-type: text/javascript; charset=UTF-8 accept-ranges: bytes vary: Accept-Encoding content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="ads-afs-ui" report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]} date: Sat, 12 Nov 2022 22:01:01 GMT expires: Sat, 12 Nov 2022 22:01:01 GMT cache-control: private, max-age=3600 etag: "5610477286401618035" x-content-type-options: nosniff content-encoding: gzip server: sffe x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256:

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                        
                                             23.36.76.226

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response

                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "D3F75D03561D6A47D19370292E821A86E58381466F0C69386A21175DE55882FF" 

                                            
                                                
Last-Modified: Fri, 11 Nov 2022 12:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=14270 

                                            
                                                
Expires: Sun, 13 Nov 2022 01:58:49 GMT 

                                            
                                                
Date: Sat, 12 Nov 2022 22:00:59 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   503

                                                Md5:    3d0727e32cd103ddd4b73f28c81758aa

                                                Sha1:   197a7bf43d63723fc532c23c6dced68d5cc36652

                                                Sha256: d3f75d03561d6a47d19370292e821a86e58381466f0c69386a21175de55882ff

                                        
                                            GET /v1/ HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                        
                                             34.102.187.140

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/json

                                            

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
access-control-expose-headers: Content-Length, Retry-After, Alert, Backoff, Content-Type 

                                            
                                                
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                            
                                                
strict-transport-security: max-age=31536000 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
content-length: 939 

                                            
                                                
via: 1.1 google 

                                            
                                                
date: Sat, 12 Nov 2022 21:44:03 GMT 

                                            
                                                
cache-control: public,max-age=3600 

                                            
                                                
age: 1016 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators

                                                Size:   939

                                                Md5:    4736bac84ca28f2b1e961159fb4ea098

                                                Sha1:   1319612979f53896fcfeacd4215c2715d4951e4c

                                                Sha256: 5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 

                                        
                                            
Host: content-signature-2.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                        
                                             34.160.144.191

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: binary/octet-stream

                                            

                                            
                                                
x-amz-id-2: zOVYjFWv6Fbqwx8JjDvlpKsv3BKha3swmzi7/FYxG4EhqMpAwAO1X+KEP7WfcObITpZpFOadNKM= 

                                            
                                                
x-amz-request-id: EFQSKW2SMZ7D0ASX 

                                            
                                                
content-disposition: attachment 

                                            
                                                
accept-ranges: bytes 

                                            
                                                
server: AmazonS3 

                                            
                                                
content-length: 5348 

                                            
                                                
via: 1.1 google 

                                            
                                                
date: Sat, 12 Nov 2022 21:50:26 GMT 

                                            
                                                
age: 633 

                                            
                                                
last-modified: Fri, 30 Sep 2022 18:50:55 GMT 

                                            
                                                
etag: "67d5a988edcda47bc3b3b3f65d32b4b6" 

                                            
                                                
cache-control: public,max-age=3600 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  PEM certificate\012- , ASCII text

                                                Size:   5348

                                                Md5:    67d5a988edcda47bc3b3b3f65d32b4b6

                                                Sha1:   d4f0e0da8b3690cc7da925026d3414b68c7d954f

                                                Sha256: 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

                                        
                                            GET /v1/tiles HTTP/1.1 

                                        
                                            
Host: contile.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                        
                                             34.117.237.239

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/json

                                            

                                            
                                                
server: nginx 

                                            
                                                
date: Sat, 12 Nov 2022 22:00:59 GMT 

                                            
                                                
content-length: 12 

                                            
                                                
strict-transport-security: max-age=31536000 

                                            
                                                
via: 1.1 google 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  JSON data\012- , ASCII text, with no line terminators

                                                Size:   12

                                                Md5:    23e88fb7b99543fb33315b29b1fad9d6

                                                Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce

                                                Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/json 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: application/json 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                        
                                             34.102.187.140

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/json

                                            

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
access-control-expose-headers: Content-Length, Cache-Control, Pragma, Last-Modified, ETag, Alert, Backoff, Content-Type, Retry-After, Expires 

                                            
                                                
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                            
                                                
strict-transport-security: max-age=31536000 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
content-length: 329 

                                            
                                                
via: 1.1 google 

                                            
                                                
date: Sat, 12 Nov 2022 21:25:00 GMT 

                                            
                                                
cache-control: public,max-age=3600 

                                            
                                                
age: 2159 

                                            
                                                
last-modified: Fri, 25 Mar 2022 17:45:46 GMT 

                                            
                                                
etag: "1648230346554" 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators

                                                Size:   329

                                                Md5:    0333b0655111aa68de771adfcc4db243

                                                Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb

                                                Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                        
                                             93.184.220.29

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response

                                            

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
Age: 2838 

                                            
                                                
Cache-Control: max-age=129190 

                                            
                                                
Date: Sat, 12 Nov 2022 22:01:00 GMT 

                                            
                                                
Etag: "636f622c-1d7" 

                                            
                                                
Expires: Mon, 14 Nov 2022 09:54:10 GMT 

                                            
                                                
Last-Modified: Sat, 12 Nov 2022 09:06:52 GMT 

                                            
                                                
Server: ECS (ska/F719) 

                                            
                                                
X-Cache: HIT 

                                            
                                                
Content-Length: 471 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   471

                                                Md5:    ae51f1958554de4457c22a7d5a9ba8b6

                                                Sha1:   173e90a8c6ee36b7ec569dbea47436a90d7e7c76

                                                Sha256: dc43a04e1e26243f63a8e628f2ebcb23a9527fd4bc40dc6d1d61879b0f95bb21

                                        
                                            GET /themes/assets/style.css HTTP/1.1 

                                        
                                            
Host: d38psrni17bvxu.cloudfront.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://www1.alud.com/

                                        
                                             54.230.245.138

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: text/css

                                            

                                            
                                                
Transfer-Encoding: chunked 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Server: nginx 

                                            
                                                
Date: Sat, 12 Nov 2022 07:34:24 GMT 

                                            
                                                
Last-Modified: Tue, 12 May 2020 14:25:52 GMT 

                                            
                                                
Content-Encoding: gzip 

                                            
                                                
ETag: W/"5ebab1f0-33d" 

                                            
                                                
Vary: Accept-Encoding 

                                            
                                                
X-Cache: Hit from cloudfront 

                                            
                                                
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront) 

                                            
                                                
X-Amz-Cf-Pop: OSL50-P1 

                                            
                                                
X-Amz-Cf-Id: XxlykwgYYxryROpJol4wyRzR2hjsidCAPIgBppYcRJfI3tXJohsgbg== 

                                            
                                                
Age: 51996 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text

                                                Size:   343

                                                Md5:    03a4a8c322fc0c99b0ee7cbbcc9eabcd

                                                Sha1:   6fc193276de2a3458cd853c474cb9269b900e00d

                                                Sha256: a535d2296792cb37a2bbad1d9d0546e3383a8a5bfac0d9edda15795c226bddf7

                                        
                                            GET / HTTP/1.1 

                                        
                                            
Host: push.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Sec-WebSocket-Version: 13 

                                        
                                            
Origin: wss://push.services.mozilla.com/ 

                                        
                                            
Sec-WebSocket-Protocol: push-notification 

                                        
                                            
Sec-WebSocket-Extensions: permessage-deflate 

                                        
                                            
Sec-WebSocket-Key: 7m+eRCRl30Bvo6V+M9WtFQ== 

                                        
                                            
Connection: keep-alive, Upgrade 

                                        
                                            
Sec-Fetch-Dest: websocket 

                                        
                                            
Sec-Fetch-Mode: websocket 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
Upgrade: websocket

                                        
                                             34.213.121.129

                                            
                                                HTTP/1.1 101 Switching Protocols

                                            

                                            
                                                
Connection: Upgrade 

                                            
                                                
Upgrade: websocket 

                                            
                                                
Sec-WebSocket-Accept: JnL0BB7I+th8/SfLSgmVxG0Nb9U= 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            GET /favicon.ico HTTP/1.1 

                                        
                                            
Host: www1.alud.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://www1.alud.com/?tm=1&subid4=1668290459.0446210000

                                        
                                             99.83.136.84

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/x-icon

                                            

                                            
                                                
Date: Sat, 12 Nov 2022 22:01:00 GMT 

                                            
                                                
Content-Length: 0 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Server: nginx 

                                            
                                                
Last-Modified: Tue, 12 May 2020 14:25:52 GMT 

                                            
                                                
ETag: "5ebab1f0-0" 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                        
                                             142.250.74.35

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response

                                            

                                            
                                                
Date: Sat, 12 Nov 2022 22:01:01 GMT 

                                            
                                                
Cache-Control: public, max-age=14400 

                                            
                                                
Server: ocsp_responder 

                                            
                                                
Content-Length: 471 

                                            
                                                
X-XSS-Protection: 0 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   471

                                                Md5:    86d1ab5f5a5b326dd100a4bfcda8ceed

                                                Sha1:   ed17be3586e93321dd2ab1a340ae41d6f86e293d

                                                Sha256: db7591e84a7adaa4ff3ddd38458e379bbb15751e31a10937c6202cba94a8c602

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                        
                                             142.250.74.35

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response

                                            

                                            
                                                
Date: Sat, 12 Nov 2022 22:01:01 GMT 

                                            
                                                
Cache-Control: public, max-age=14400 

                                            
                                                
Server: ocsp_responder 

                                            
                                                
Content-Length: 471 

                                            
                                                
X-XSS-Protection: 0 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   471

                                                Md5:    c7532175bdda623cb1f7d83c236772d4

                                                Sha1:   71a1540c0d3e9acb10807b74b44228af537c6785

                                                Sha256: fba2db2a9be13aebe95a85d8c7086b97794e4ebc19781a967c4d157f78c4626a

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                        
                                             142.250.74.35

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response

                                            

                                            
                                                
Date: Sat, 12 Nov 2022 22:01:01 GMT 

                                            
                                                
Cache-Control: public, max-age=14400 

                                            
                                                
Server: ocsp_responder 

                                            
                                                
Content-Length: 471 

                                            
                                                
X-XSS-Protection: 0 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   471

                                                Md5:    e569acd833d180f3c2fba0919fbeb704

                                                Sha1:   60a3121c9bf8e08a8a7fe70001c24b6f8c9981f5

                                                Sha256: 994bee0670c93479c3e835985d24d7ce41fbc0a3013e173d79ea1ea5f63ac85c

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                        
                                             142.250.74.35

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response

                                            

                                            
                                                
Date: Sat, 12 Nov 2022 22:01:01 GMT 

                                            
                                                
Cache-Control: public, max-age=14400 

                                            
                                                
Server: ocsp_responder 

                                            
                                                
Content-Length: 471 

                                            
                                                
X-XSS-Protection: 0 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   471

                                                Md5:    562149e460e7949cc1e3726ac7c854bf

                                                Sha1:   90c304ab2081e4d04e1c6a176e8193787986a0b2

                                                Sha256: 9f83f2b72570abc2c662aacf80e9eac0ab0410de0e147b2f786767edd4dcc4fb

                                        
                                            GET /ad_icons/standard/publisher_icon_image/search.svg?c=%23ffffff HTTP/1.1 

                                        
                                            
Host: afs.googleusercontent.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://www.google.com/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                        
                                             142.250.74.33

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/svg+xml

                                            

                                            
                                                
accept-ranges: bytes 

                                            
                                                
vary: Accept-Encoding 

                                            
                                                
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/afs-native-asset-managers 

                                            
                                                
cross-origin-opener-policy: same-origin; report-to="afs-native-asset-managers" 

                                            
                                                
report-to: {"group":"afs-native-asset-managers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/afs-native-asset-managers"}]} 

                                            
                                                
content-length: 270 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
content-encoding: gzip 

                                            
                                                
server: sffe 

                                            
                                                
x-xss-protection: 0 

                                            
                                                
date: Sat, 12 Nov 2022 07:18:23 GMT 

                                            
                                                
expires: Sun, 13 Nov 2022 06:18:23 GMT 

                                            
                                                
cache-control: public, max-age=82800 

                                            
                                                
age: 52958 

                                            
                                                
last-modified: Thu, 19 Dec 2019 14:15:00 GMT 

                                            
                                                
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (390)

                                                Size:   270

                                                Md5:    5100391430a00e10ce60aa159f525b5c

                                                Sha1:   231a4492d73b225f441b1e9028dc33c89862e498

                                                Sha256: 52b1432a6e3002e41ed1d8f4c84b258fdc4c6dac863e3c0e5c06360c81be6067

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                        
                                             142.250.74.35

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response

                                            

                                            
                                                
Date: Sat, 12 Nov 2022 22:01:01 GMT 

                                            
                                                
Cache-Control: public, max-age=14400 

                                            
                                                
Server: ocsp_responder 

                                            
                                                
Content-Length: 471 

                                            
                                                
X-XSS-Protection: 0 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   471

                                                Md5:    562149e460e7949cc1e3726ac7c854bf

                                                Sha1:   90c304ab2081e4d04e1c6a176e8193787986a0b2

                                                Sha256: 9f83f2b72570abc2c662aacf80e9eac0ab0410de0e147b2f786767edd4dcc4fb

                                        
                                            GET /scripts/sale_form.js HTTP/1.1 

                                        
                                            
Host: c.parkingcrew.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://www1.alud.com/ 

                                        
                                            
If-Modified-Since: Tue, 12 May 2020 14:25:52 GMT 

                                        
                                            
If-None-Match: "5ebab1f0-2f9" 

                                        
                                            
Cache-Control: max-age=0

                                        
                                             185.53.178.30

                                            
                                                HTTP/1.1 304 Not Modified

                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Sat, 12 Nov 2022 22:01:01 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Last-Modified: Tue, 12 May 2020 14:25:52 GMT 

                                            
                                                
ETag: "5ebab1f0-2f9" 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                        
                                             23.36.76.226

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response

                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF" 

                                            
                                                
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=3387 

                                            
                                                
Expires: Sat, 12 Nov 2022 22:57:28 GMT 

                                            
                                                
Date: Sat, 12 Nov 2022 22:01:01 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   503

                                                Md5:    fb29db48daab83bcaed56b72093619cc

                                                Sha1:   e0e0a09d729ffb1c41411419768896f1e1eb3346

                                                Sha256: 08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                        
                                             23.36.76.226

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response

                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF" 

                                            
                                                
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=3387 

                                            
                                                
Expires: Sat, 12 Nov 2022 22:57:28 GMT 

                                            
                                                
Date: Sat, 12 Nov 2022 22:01:01 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   503

                                                Md5:    fb29db48daab83bcaed56b72093619cc

                                                Sha1:   e0e0a09d729ffb1c41411419768896f1e1eb3346

                                                Sha256: 08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F073ec866-b693-4f96-82bf-76ba051797c9.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                        
                                             34.120.237.76

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/jpeg

                                            

                                            
                                                
server: nginx 

                                            
                                                
content-length: 6577 

                                            
                                                
x-amzn-requestid: b4587cfb-6041-453c-9e74-fa35ecd31448 

                                            
                                                
x-xss-protection: 1; mode=block 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                            
                                                
x-frame-options: DENY 

                                            
                                                
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                            
                                                
x-amz-apigw-id: bdMjIGHRoAMF26g= 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
x-amzn-trace-id: Root=1-636ec147-29e7ec741b0e6f6f674aef75;Sampled=0 

                                            
                                                
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:23 GMT 

                                            
                                                
x-amz-cf-pop: SEA73-P1 

                                            
                                                
x-cache: Hit from cloudfront 

                                            
                                                
x-amz-cf-id: hsMmHIBEt_4cL455goPqDKQVQA75u4oGFbSxsGP_e_0uG7SZmSLBhQ== 

                                            
                                                
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google 

                                            
                                                
date: Sat, 12 Nov 2022 22:00:57 GMT 

                                            
                                                
age: 4 

                                            
                                                
etag: "ccc1ec5ebb5090c6255dcb1e8899e95cdd91e12f" 

                                            
                                                
cache-control: max-age=3600,public,public 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   6577

                                                Md5:    faa8e3cf2ab3c1d53a1735def5bb7476

                                                Sha1:   ccc1ec5ebb5090c6255dcb1e8899e95cdd91e12f

                                                Sha256: e81a8fa312ec478871427f1d04ba7fe563573c683809153f75dec8df979d6efe

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6f7d2f5-4807-4bbd-a3db-7a239962aca5.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                        
                                             34.120.237.76

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/jpeg

                                            

                                            
                                                
server: nginx 

                                            
                                                
content-length: 5583 

                                            
                                                
x-amzn-requestid: e844f42a-e87e-4e61-8c97-137c07c5ae28 

                                            
                                                
x-xss-protection: 1; mode=block 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                            
                                                
x-frame-options: DENY 

                                            
                                                
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                            
                                                
x-amz-apigw-id: bNeQ9Ho7IAMF5_g= 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
x-amzn-trace-id: Root=1-63687739-62c44d2f7d23632e74895bd8;Sampled=0 

                                            
                                                
x-amzn-remapped-date: Mon, 07 Nov 2022 03:10:49 GMT 

                                            
                                                
x-amz-cf-pop: SEA73-P1 

                                            
                                                
x-cache: Hit from cloudfront 

                                            
                                                
x-amz-cf-id: uHlIN1IVGCFUVl5lx5pFSux0YncseT2HQjiwFDL9eaEaBa9CdnCl8g== 

                                            
                                                
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google 

                                            
                                                
date: Sat, 12 Nov 2022 04:50:44 GMT 

                                            
                                                
age: 61817 

                                            
                                                
etag: "691f59b65ca9fde4f59bbf96b37071e07351f190" 

                                            
                                                
cache-control: max-age=3600,public,public 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   5583

                                                Md5:    85c6f450b38f41a2fb924d6d9a9cbff8

                                                Sha1:   691f59b65ca9fde4f59bbf96b37071e07351f190

                                                Sha256: c8f877488a2cf65f0d9829384fd4113847722a1b4df94b6b1d5788699689722c

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d4e929-d0bb-41b7-bdcd-0e67258b428a.webp HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                        
                                             34.120.237.76

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/jpeg

                                            

                                            
                                                
server: nginx 

                                            
                                                
content-length: 9012 

                                            
                                                
x-amzn-requestid: 83eac9e7-5387-4e11-9769-182fa3f7fffb 

                                            
                                                
x-xss-protection: 1; mode=block 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                            
                                                
x-frame-options: DENY 

                                            
                                                
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                            
                                                
x-amz-apigw-id: bdNC6FxzoAMF80w= 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
x-amzn-trace-id: Root=1-636ec212-5ca277b90a5a9a4c437edc1e;Sampled=0 

                                            
                                                
x-amzn-remapped-date: Fri, 11 Nov 2022 21:43:46 GMT 

                                            
                                                
x-amz-cf-pop: SEA73-P1 

                                            
                                                
x-cache: Hit from cloudfront 

                                            
                                                
x-amz-cf-id: PrJoEROPymrtc0egNlWRoOMjohiCo3zReD01qAHwByaSiXarfRS0XQ== 

                                            
                                                
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google 

                                            
                                                
date: Sat, 12 Nov 2022 22:00:44 GMT 

                                            
                                                
age: 17 

                                            
                                                
etag: "0cc22d7bf9092fb30f31e2ca8f242c197b891669" 

                                            
                                                
cache-control: max-age=3600,public,public 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   9012

                                                Md5:    516f1bfefb1c1a737ea2441f85343b32

                                                Sha1:   0cc22d7bf9092fb30f31e2ca8f242c197b891669

                                                Sha256: 733824d4f6f7c5b54ce4e02ecaf152cfc1e10f3f6a801d7e2c55a02460e40087

                                        
                                            GET /track.php?domain=alud.com&toggle=browserjs&uid=MTY2ODI5MDQ2MS40MTY5OjY0NThlZDMzOTljODA0ODI0NzQ5ZTk4N2Q5MjE4NTUyYzcxN2Y2ZTlhZTI4OTRlM2Y4N2ZkMTU5OWVkNDQyOWI6NjM3MDE3OWQ2NWM5OA%3D%3D HTTP/1.1 

                                        
                                            
Host: www1.alud.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://www1.alud.com/?tm=1&subid4=1668290459.0446210000 

                                        
                                            
Cookie: __gsas=ID=c4d221742a55652c:T=1668290461:S=ALNI_MZOkbXg0J0he52r81qc6r-Q3uXLig

                                        
                                             99.83.136.84

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: text/html; charset=UTF-8

                                            

                                            
                                                
Date: Sat, 12 Nov 2022 22:01:02 GMT 

                                            
                                                
Transfer-Encoding: chunked 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Server: nginx 

                                            
                                                
Vary: Accept-Encoding 

                                            
                                                
X-Custom-Track: browserjs 

                                            
                                                
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile 

                                            
                                                
Accept-CH-Lifetime: 30 

                                            
                                                
Access-Control-Allow-Origin: * 

                                            
                                                
Content-Encoding: gzip 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   20

                                                Md5:    a4745abc5e7fdb89cc6df3069f3c6e69

                                                Sha1:   74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed

                                                Sha256: d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

                                        
                                            GET /track.php?domain=alud.com&caf=1&toggle=answercheck&answer=yes&uid=MTY2ODI5MDQ2MS40MTY5OjY0NThlZDMzOTljODA0ODI0NzQ5ZTk4N2Q5MjE4NTUyYzcxN2Y2ZTlhZTI4OTRlM2Y4N2ZkMTU5OWVkNDQyOWI6NjM3MDE3OWQ2NWM5OA%3D%3D HTTP/1.1 

                                        
                                            
Host: www1.alud.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://www1.alud.com/?tm=1&subid4=1668290459.0446210000 

                                        
                                            
Cookie: __gsas=ID=c4d221742a55652c:T=1668290461:S=ALNI_MZOkbXg0J0he52r81qc6r-Q3uXLig

                                        
                                             99.83.136.84

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: text/html; charset=UTF-8

                                            

                                            
                                                
Date: Sat, 12 Nov 2022 22:01:02 GMT 

                                            
                                                
Transfer-Encoding: chunked 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Server: nginx 

                                            
                                                
Vary: Accept-Encoding 

                                            
                                                
X-Custom-Track: answercheck 

                                            
                                                
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile 

                                            
                                                
Accept-CH-Lifetime: 30 

                                            
                                                
Access-Control-Allow-Origin: * 

                                            
                                                
Content-Encoding: gzip 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   20

                                                Md5:    a4745abc5e7fdb89cc6df3069f3c6e69

                                                Sha1:   74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed

                                                Sha256: d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf

URL	alud.com/
IP	45.79.19.196 (United States)
ASN	#63949 Linode, LLC
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Access
Report completed	2022-11-12 22:01:10 UTC
Status	Loading report..
IDS alerts	0
Blocklist alert	5
urlquery alerts	No alerts detected
Tags	None

Overview

Domain Summary (15)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 45.79.19.196

Last 5 reports on ASN: Linode, LLC

Last 1 reports on domain: alud.com

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (26)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (50)

Overview

Domain Summary (15)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 45.79.19.196

Last 5 reports on ASN: Linode, LLC

Last 1 reports on domain: alud.com

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (26)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (50)

Network Intrusion Detection Systems