r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19656
Expires: Fri, 02 Dec 2022 13:51:58 GMT
Date: Fri, 02 Dec 2022 08:24:22 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2547
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 08:24:22 GMT
Last-Modified: Fri, 02 Dec 2022 07:41:55 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 08:18:11 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 371
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5433
Expires: Fri, 02 Dec 2022 09:54:55 GMT
Date: Fri, 02 Dec 2022 08:24:22 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: /rXWWDUZjEhQe1Mdee+k/ii3gngL/ZppDXed/RjkZuyMIkG75gO0UOH1wp0XfgRErepIOrz9lvI=
x-amz-request-id: 7G62H28Y1FJT4W06
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 07:46:37 GMT
age: 2265
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
167.114.49.168/
167.114.49.168200 OK 6.4 kB IP 167.114.49.168:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ISO-8859 text, with CRLF line terminators
Hash 544a86e793638071606a698e1aba0a21
cd7ad2a6d3814db228bdad12c18a286b399ed18a
512ff5e439b3f6ba5844bb928fb292cce5dcbe4408a297c6c1e5d3343057675f
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:57 GMT
Server: Apache/2.4.10 (Debian)
X-Powered-By: PHP/5.3.16
Vary: Accept-Encoding
Content-Encoding: gzip
MKAUTH: FILES
Content-Length: 6357
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 08:24:22 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
167.114.49.168/js/mkauth4.js
167.114.49.168200 OK 5.5 kB URL HTTP/1.1 167.114.49.168/js/mkauth4.js
IP 167.114.49.168:0
File type ISO-8859 text, with CRLF line terminators
Hash 584330a57a4c30e3acaf48c0f5aacf64
b324d16b20cb13f8c0e9e90e26329ad90eb91a5c
647a6804c7a9c6269d42c48e781d9277601960b8f36665ef92f20d4bc9ff34c5
Analyzer Verdict Alert quad9 Sinkholed
GET /js/mkauth4.js HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:57 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:45 GMT
ETag: "4f74-5e9bf7a64b940-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:57 GMT
MKAUTH: FILES
Content-Length: 5548
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
167.114.49.168/js/AC_RunActiveContent.js
167.114.49.168200 OK 1.1 kB URL HTTP/1.1 167.114.49.168/js/AC_RunActiveContent.js
IP 167.114.49.168:0
File type ASCII text, with CRLF line terminators
Hash 3bcd700e6a2dff3664f177c5e8ac0380
58e19405e8baba91e17e14f3daac6462af926fb7
7a2cde9532efa36cc4c286e0254d130dc21154ef072a52b427af67fe3ef4fda6
Analyzer Verdict Alert quad9 Sinkholed
GET /js/AC_RunActiveContent.js HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:57 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "d1f-5e9bf7a36f280-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:57 GMT
MKAUTH: FILES
Content-Length: 1061
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
167.114.49.168/css/owl.carousel.min.css
167.114.49.168200 OK 1.1 kB URL HTTP/1.1 167.114.49.168/css/owl.carousel.min.css
IP 167.114.49.168:0
File type ASCII text, with very long lines (3184)
Hash 8864ff6a1198eecf45821c602593ff9a
c6097cea47ac44fcec94781f2af0110cb677ab0a
19eaae3fdfe574cd1b1cfd78d30633a4527bde9711dde88b467fe43ca854cda5
Analyzer Verdict Alert quad9 Sinkholed
GET /css/owl.carousel.min.css HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "d17-5e9bf7a36f280-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 1068
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
167.114.49.168/css/simple-line-icons.min.css
167.114.49.168200 OK 2.4 kB URL HTTP/1.1 167.114.49.168/css/simple-line-icons.min.css
IP 167.114.49.168:0
File type ASCII text, with very long lines (10943), with no line terminators
Hash 40c585b3baba46cdbf0ab010f51714c9
e1e977b6aedefba2f6ac45392293c1621500d083
b931c5ed14bbab5e7bcad89867bf32498ce03d4b2689bfac6e3bb69633a3483e
Analyzer Verdict Alert quad9 Sinkholed
GET /css/simple-line-icons.min.css HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "2abf-5e9bf7a36f280-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 2416
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
167.114.49.168/css/animate.min.css
167.114.49.168200 OK 4.3 kB URL HTTP/1.1 167.114.49.168/css/animate.min.css
IP 167.114.49.168:0
File type ASCII text, with very long lines (57790)
Hash ee777e634ba2463f5f4a161dde14dcbe
a4ecf77a2c47390e3aecb2b912130cbcc421733e
cd82447b75b27668be76ec8b86546aafabdc1ddf952e07bcf8f25ef7387fa21f
Analyzer Verdict Alert quad9 Sinkholed
GET /css/animate.min.css HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "e283-5e9bf7a36f280-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 4324
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
167.114.49.168/css/magnific-popup.min.css
167.114.49.168200 OK 1.6 kB URL HTTP/1.1 167.114.49.168/css/magnific-popup.min.css
IP 167.114.49.168:0
File type ASCII text, with very long lines (5204), with no line terminators
Hash 62120e5a8a334c03624b49ef3a06912a
695559cf9cda819340255d9bbd9c355cefabda2c
ee1d0ea9b35bc5d1c0333fae73f08d7f175823aa7d302a3dcf483f6cb593b9e1
Analyzer Verdict Alert quad9 Sinkholed
GET /css/magnific-popup.min.css HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "1454-5e9bf7a36f280-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 1583
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
167.114.49.168/css/settings.css
167.114.49.168200 OK 7.1 kB URL HTTP/1.1 167.114.49.168/css/settings.css
IP 167.114.49.168:0
File type ASCII text, with very long lines (29701)
Hash 951ca749bc707f714ca8394267d16f20
4030559605649c69db165d9715ccc19d10bd1428
761753b529103705781bb5316ca58f4d0d2450d77091923bf01865b6d3c7091c
Analyzer Verdict Alert quad9 Sinkholed
GET /css/settings.css HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "756c-5e9bf7a36f280-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 7116
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
167.114.49.168/css/navigation.css
167.114.49.168200 OK 8.0 kB URL HTTP/1.1 167.114.49.168/css/navigation.css
IP 167.114.49.168:0
Hash 4a877b2797109646120ddc38c2ef1e93
7d0fc34b7b550d9d2d6b5a2ae1798562f82aa7ac
f0a3381694fca787ca9a5f4d99a4b848f09c2e6704046346beb075bbd438ccf6
Analyzer Verdict Alert quad9 Sinkholed
GET /css/navigation.css HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "e8b8-5e9bf7a36f280-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 8038
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
167.114.49.168/css/component.css
167.114.49.168200 OK 976 B URL HTTP/1.1 167.114.49.168/css/component.css
IP 167.114.49.168:0
Hash 999d948440375e245cd6ad79e1ad0b2a
fb8961b4924335f80d2622896ef9ff330c53cad2
ca3c335c5fdf7a87206217fbd5bbd5c96b06436284750d99a248919d8a61b755
Analyzer Verdict Alert quad9 Sinkholed
GET /css/component.css HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "101e-5e9bf7a36f280-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 976
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
167.114.49.168/slides/engine1/style.css
167.114.49.168200 OK 4.8 kB URL HTTP/1.1 167.114.49.168/slides/engine1/style.css
IP 167.114.49.168:0
File type ASCII text, with very long lines (967), with CRLF line terminators
Hash 0c202c39d989631cd09424a5c9db7827
ff90a104d02f9d007cc67bb3a9a7002d811a0501
bbe2053929fe3025f60f346438e0409dad092ce015779c7326c657ab2463c27b
Analyzer Verdict Alert quad9 Sinkholed
GET /slides/engine1/style.css HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:51 GMT
ETag: "2de7-5e9bf7ac046c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 4782
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 08:08:57 GMT
cache-control: public,max-age=3600
age: 926
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 08:24:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 3394fee8d35efa928cc5d0dc42784d95
66482efc9a37241c0f492754cf03c69bdf7e6d95
71ced934e72a6651ad50815b547d7929a52c4987b87323e292f8a183479111a0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=141897
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 08:24:23 GMT
Etag: "63893d80-117"
Expires: Sat, 03 Dec 2022 23:49:20 GMT
Last-Modified: Thu, 01 Dec 2022 23:49:20 GMT
Server: nginx
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 08:24:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Slabo+27px&subset=latin,latin-ext
142.250.74.74200 OK 623 B URL HTTP/2 fonts.googleapis.com/css?family=Slabo+27px&subset=latin,latin-ext
IP 142.250.74.74:0
Hash 80705ec61f81ccf3c7b08c04e8109405
b2060f306d0879f6f7cfe8031db4235fb609385c
33dc7868a737685cf8be5142678bff078306cdfa206ddeb564200cff2149faa7
GET /css?family=Slabo+27px&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://167.114.49.168/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Dec 2022 08:24:23 GMT
date: Fri, 02 Dec 2022 08:24:23 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
167.114.49.168/js/modernizr.min.js
167.114.49.168200 OK 4.0 kB URL HTTP/1.1 167.114.49.168/js/modernizr.min.js
IP 167.114.49.168:0
File type ASCII text, with very long lines (9163)
Hash 64568217bc7ff8f16d5138912af67acf
5cad914d437894e976f2319467e3c6d5bb3db9bd
c2b633ee7113168480874856f6edbce126ce2aa53b42fa07309fa9a7b306143a
Analyzer Verdict Alert quad9 Sinkholed
GET /js/modernizr.min.js HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:45 GMT
ETag: "24b5-5e9bf7a64b940-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 3959
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 08:24:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
167.114.49.168/slides/engine1/wowslider.js
167.114.49.168200 OK 9.6 kB URL HTTP/1.1 167.114.49.168/slides/engine1/wowslider.js
IP 167.114.49.168:0
File type HTML document, ASCII text, with very long lines (21083)
Hash 6ec35e9e888a537c5bae46e0dc3d75b8
df923720243c5ac7f4bb202e8ffa320ceebf05a9
e0e7b608215361c16bef3b2f540b8bf42ba53350faf96827b9aa5599a23a2d9a
Analyzer Verdict Alert quad9 Sinkholed
GET /slides/engine1/wowslider.js HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:51 GMT
ETag: "86d6-5e9bf7ac046c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 9607
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2539
Cache-Control: max-age=91485
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 08:24:23 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 09:49:08 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
167.114.49.168/slides/engine1/jquery.js
167.114.49.168200 OK 33 kB URL HTTP/1.1 167.114.49.168/slides/engine1/jquery.js
IP 167.114.49.168:0
File type ASCII text, with very long lines (32047)
Hash a7618dbe06284b6777dd1daeb906b187
bc0403358da61b37d58a9275268f58f8e7b21dd3
94f453e7c3d9ddb82181b72a674ba46c9f709fc0bec3818b831eb6c2aea8f6c8
Analyzer Verdict Alert quad9 Sinkholed
GET /slides/engine1/jquery.js HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:51 GMT
ETag: "176bb-5e9bf7ac046c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 33282
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
167.114.49.168/slides/engine1/script.js
167.114.49.168200 OK 758 B URL HTTP/1.1 167.114.49.168/slides/engine1/script.js
IP 167.114.49.168:0
File type ASCII text, with very long lines (718)
Hash 7ed6013da3d15f9a981097855cdef64e
5eed6474538d622a62c0dff5965f040c345101e5
46c357fdf4e9390df460e454e2dd1569b25dbd2b6175c5127713e29acd406012
Analyzer Verdict Alert quad9 Sinkholed
GET /slides/engine1/script.js HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:51 GMT
ETag: "7cd-5e9bf7ac046c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 758
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
167.114.49.168/css/theme-elements.css
167.114.49.168200 OK 43 kB URL HTTP/1.1 167.114.49.168/css/theme-elements.css
IP 167.114.49.168:0
File type ASCII text, with CRLF line terminators
Hash 6911a595841df650a1ebddd5c4ba9e23
06fa879185155f9a1f315383ed390fb34842e89f
286d2f2b6989f5351d3e8e1b5274f766c3abafc1d80379e4f1900fd3630ca024
Analyzer Verdict Alert quad9 Sinkholed
GET /css/theme-elements.css HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "4ac4b-5e9bf7a36f280-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 43355
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
167.114.49.168/js/jquery.appear.min.js
167.114.49.168200 OK 839 B URL HTTP/1.1 167.114.49.168/js/jquery.appear.min.js
IP 167.114.49.168:0
File type ASCII text, with very long lines (1423)
Hash a865c80421c266d268a1b9f58743e72b
c3800899bd587bd8d1ea3c5cbb05cfa909aa93a8
3a0db110eb103a727b36567acb7620e183f71731d82f93c4110d5ce0ea2e7ff0
Analyzer Verdict Alert quad9 Sinkholed
GET /js/jquery.appear.min.js HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:43 GMT
ETag: "6be-5e9bf7a4634c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 839
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
167.114.49.168/js/jquery.easing.min.js
167.114.49.168200 OK 817 B URL HTTP/1.1 167.114.49.168/js/jquery.easing.min.js
IP 167.114.49.168:0
File type ASCII text, with very long lines (2532), with no line terminators
Hash d1a8f2ab3b6408f68a4f01d31ac90bc1
42b49a5c362f0cc5ca31dab43a8b98d499cdbf78
17368cc18bda01725115cb1ea484fe4059f425c73ec69fdbc3708fb4a597d1a3
Analyzer Verdict Alert quad9 Sinkholed
GET /js/jquery.easing.min.js HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:43 GMT
ETag: "9e4-5e9bf7a4634c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 817
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
167.114.49.168/js/popper.minx.js
167.114.49.168200 OK 7.5 kB URL HTTP/1.1 167.114.49.168/js/popper.minx.js
IP 167.114.49.168:0
File type ASCII text, with very long lines (20831)
Hash 64b549556021b56c8ff7b356cb3686ee
a0690a45253d7c1ebd66c6aba4ed4339f5d54519
b354d350ffe24607b98aec909a4c7639af3983e75cd4cd847e0c119139995524
Analyzer Verdict Alert quad9 Sinkholed
GET /js/popper.minx.js HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:45 GMT
ETag: "520c-5e9bf7a64b940-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 7457
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
167.114.49.168/css/theme.css
167.114.49.168200 OK 24 kB URL HTTP/1.1 167.114.49.168/css/theme.css
IP 167.114.49.168:0
File type Non-ISO extended-ASCII text, with very long lines (540), with CRLF line terminators
Hash 830e98f6d8bc7e6a7c508ec4638af1d0
5bd42569613a2ace1aa61a8ea4de94307c0aebc8
afa5656c9486f3e24e893fa67a4f7fe6b0296f3d7fb0262ce4fac174b99f4c21
Analyzer Verdict Alert quad9 Sinkholed
GET /css/theme.css HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "33493-5e9bf7a36f280-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 23695
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
167.114.49.168/js/jquery.min.js
167.114.49.168200 OK 31 kB URL HTTP/1.1 167.114.49.168/js/jquery.min.js
IP 167.114.49.168:0
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash 63797a863c3d24ba7f4e04c4aa6e3ef8
fbe0368201c6f6a268b0d1574fe08161d3078b16
35f578b7dfccbfed7f094a24fef45cabe9a9fce7d0e1248247c383e39c8f2650
Analyzer Verdict Alert quad9 Sinkholed
GET /js/jquery.min.js HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:44 GMT
ETag: "15574-5e9bf7a557700-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 30572
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
167.114.49.168/js/bootstrap.min.js
167.114.49.168200 OK 14 kB URL HTTP/1.1 167.114.49.168/js/bootstrap.min.js
IP 167.114.49.168:0
File type ASCII text, with very long lines (50758)
Hash 2cb8caa8c251fe1763b6b2f447a6b169
0f9316b868e48b83ca40c4709c13cd6fff5c2eb5
c7904677b8b2f52c1e0d24522cea665310a3afc75f371fd3d226afd79110f332
Analyzer Verdict Alert quad9 Sinkholed
GET /js/bootstrap.min.js HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "c75f-5e9bf7a36f280-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 14085
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
167.114.49.168/css/skin-corporate-5.css
167.114.49.168200 OK 14 kB URL HTTP/1.1 167.114.49.168/css/skin-corporate-5.css
IP 167.114.49.168:0
File type ASCII text, with CRLF line terminators
Hash 2a27ff344462e19265d3b4ef0645a292
e3e12a45b3e22b74b1c24c79bf33372cb6934735
efd9b5ea16df07fbc3bb8c6fe939ecb409c38d2071506cb4eac3f21bde3f71d0
Analyzer Verdict Alert quad9 Sinkholed
GET /css/skin-corporate-5.css HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "28049-5e9bf7a36f280-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 13817
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
167.114.49.168/js/common.minx.js
167.114.49.168200 OK 8.9 kB URL HTTP/1.1 167.114.49.168/js/common.minx.js
IP 167.114.49.168:0
File type ASCII text, with very long lines (24296), with no line terminators
Hash e4e90649704e7d169ad1529a9b50fd7d
26b2f0e0903037c332d0fcc174ff0d3adadf7020
e63c833848a903ee137bd0ace9f4e112c3bdb2f85a7f3e6de0349ed85e860486
Analyzer Verdict Alert quad9 Sinkholed
GET /js/common.minx.js HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:43 GMT
ETag: "5ee8-5e9bf7a4634c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 8880
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
push.services.mozilla.com/
52.41.201.177101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.41.201.177:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: AFcDu1ywoyD4Mcs1QbTYDw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: uQ8oTJ/N2W0JmqPDaNqrC3faWrc=
167.114.49.168/js/jquery.easypiechart.minx.js
167.114.49.168200 OK 1.7 kB URL HTTP/1.1 167.114.49.168/js/jquery.easypiechart.minx.js
IP 167.114.49.168:0
File type ASCII text, with very long lines (3765)
Hash c20fee21f56b196eb6e9387996a9741d
f05d33f092a15180a1d4c8847e735cbfebc127de
97f3c3474ef4aed31032e956b2ecf6f7cb3186b66136ff5a02b48868b1c7df01
Analyzer Verdict Alert quad9 Sinkholed
GET /js/jquery.easypiechart.minx.js HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:43 GMT
ETag: "f96-5e9bf7a4634c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 1691
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
167.114.49.168/js/jquery.isotopex.min.js
167.114.49.168404 Not Found 303 B URL HTTP/1.1 167.114.49.168/js/jquery.isotopex.min.js
IP 167.114.49.168:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 72a9f2ebadba8f8df264f7eee0053397
75b9e0466402f4c9cb90d041fffc9db203c9806e
b314c5b69bf79bf4d939a18ca5106c01cdaaf435d87d9a5268d123b48ba073cb
Analyzer Verdict Alert quad9 Sinkholed
GET /js/jquery.isotopex.min.js HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 404 Not Found
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Content-Length: 303
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
167.114.49.168/js/jquery.vide.minx.js
167.114.49.168200 OK 1.8 kB URL HTTP/1.1 167.114.49.168/js/jquery.vide.minx.js
IP 167.114.49.168:0
File type ASCII text, with very long lines (4322), with no line terminators
Hash c1c2292ca5fae4adb0adfffda39ac5f3
0b97b962c7bc845ab4c0d928da7a5973016f6319
ca99d594b8d238565fb0cf5155f9006c4f4db319a303ee0244c848c112a1b26d
Analyzer Verdict Alert quad9 Sinkholed
GET /js/jquery.vide.minx.js HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:44 GMT
ETag: "10e2-5e9bf7a557700-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 1827
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
167.114.49.168/js/view.home.js
167.114.49.168200 OK 570 B URL HTTP/1.1 167.114.49.168/js/view.home.js
IP 167.114.49.168:0
File type ASCII text, with CRLF line terminators
Hash bf9b136fec53353184b5a2396222a07d
af29958c6d851365fbd4e75894b9a50e2c290e13
02a7e46d85262845291b3e340894f10ec6627faff174bef1ba2431abbc796275
Analyzer Verdict Alert quad9 Sinkholed
GET /js/view.home.js HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:46 GMT
ETag: "540-5e9bf7a73fb80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 570
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
167.114.49.168/js/jquery.flipshow.min.js
167.114.49.168200 OK 2.0 kB URL HTTP/1.1 167.114.49.168/js/jquery.flipshow.min.js
IP 167.114.49.168:0
File type ASCII text, with very long lines (5352), with no line terminators
Hash 54d68d4e0f5cb8f42107a827c5e66436
13a7692e503ff097b65c48b94c4b19c0eb87b868
dc8d312b3238c36b6f88f9b8f7a41defaa4ddb2d54e9bb683bbfe4d798b99eb2
Analyzer Verdict Alert quad9 Sinkholed
GET /js/jquery.flipshow.min.js HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:44 GMT
ETag: "14e8-5e9bf7a557700-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 1968
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
167.114.49.168/js/theme.js
167.114.49.168200 OK 22 kB URL HTTP/1.1 167.114.49.168/js/theme.js
IP 167.114.49.168:0
File type ASCII text, with very long lines (572), with CRLF line terminators
Hash a1a7120b43394e1d3f40e96285c47f46
f444dd8d90472a5990b66b93a5393a5da4ad797f
7e60d6f213ee93ecc8bcbf8f0adb5f3cfbe341d7666bce52bf84ce4f49627bd4
Analyzer Verdict Alert quad9 Sinkholed
GET /js/theme.js HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:46 GMT
ETag: "1e239-5e9bf7a73fb80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 21810
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
167.114.49.168/js/owl.carousel.min.js
167.114.49.168200 OK 11 kB URL HTTP/1.1 167.114.49.168/js/owl.carousel.min.js
IP 167.114.49.168:0
File type ASCII text, with very long lines (31997)
Hash 147ac1c530c19c721f2f08015355831f
36666c04ebfd91eb34a2bccfd77d5921f149719e
ad388396f2600caf304c74c3255d0cb91ec3eb6979eece045c096b4b8f0e0f3c
Analyzer Verdict Alert quad9 Sinkholed
GET /js/owl.carousel.min.js HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:45 GMT
ETag: "ad36-5e9bf7a64b940-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 11412
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
167.114.49.168/js/theme.init.js
167.114.49.168200 OK 1.2 kB URL HTTP/1.1 167.114.49.168/js/theme.init.js
IP 167.114.49.168:0
Hash a9a800bf986f2d4cc0f3bf2e81cf6f43
65ec522e4676576a18a09beefa12f68d26e80699
2d38f8764a12db7d33e93d9d6dd3f8e31751d607d7602d07510985e50b678d32
Analyzer Verdict Alert quad9 Sinkholed
GET /js/theme.init.js HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:46 GMT
ETag: "2812-5e9bf7a73fb80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 1184
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
167.114.49.168/css/bootstrap.min.css
167.114.49.168200 OK 21 kB URL HTTP/1.1 167.114.49.168/css/bootstrap.min.css
IP 167.114.49.168:0
File type ASCII text, with very long lines (29299), with CRLF line terminators
Hash 679247a8f97088715d03c2395ad8be99
442a4cd3d064301babf4fc020a7076766f77c1a8
f64493ac7b7ff177ddc24c9e4a699eb1ef9b95ab232ee1ad742d4973e775fca5
Analyzer Verdict Alert quad9 Sinkholed
GET /css/bootstrap.min.css HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "21e43-5e9bf7a36f280-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 20638
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
167.114.49.168/js/jquery.validate.minx.js
167.114.49.168200 OK 7.8 kB URL HTTP/1.1 167.114.49.168/js/jquery.validate.minx.js
IP 167.114.49.168:0
File type Unicode text, UTF-8 text, with very long lines (24228)
Hash 4caa78079520fab58e3615f81274ec29
685e548ace99ea299bcf7a959a8f1004dc96daf8
1cb6aa8a7eeec4bdbdf94d00ea890f7409b9f36b22ca9b3eee42547a1116eef7
Analyzer Verdict Alert quad9 Sinkholed
GET /js/jquery.validate.minx.js HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:44 GMT
ETag: "5f30-5e9bf7a557700-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 7815
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
167.114.49.168/css/all.min.css
167.114.49.168200 OK 11 kB URL HTTP/1.1 167.114.49.168/css/all.min.css
IP 167.114.49.168:0
File type ASCII text, with very long lines (50212)
Hash 0ddf2ba252ac00cc46923df1b4f320e6
49035f37ad54787d9ec07bb093af929346b7d87e
18f14dec835c6eec8c6b59445ef963b1c72543a7b48d5f8e1bf99bef9843e4f6
Analyzer Verdict Alert quad9 Sinkholed
GET /css/all.min.css HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:59 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "c4dd-5e9bf7a36f280-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:59 GMT
MKAUTH: FILES
Content-Length: 11005
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/css
167.114.49.168/js/jquery.themepunch.revolution.min.js
167.114.49.168200 OK 60 kB URL HTTP/1.1 167.114.49.168/js/jquery.themepunch.revolution.min.js
IP 167.114.49.168:0
File type ASCII text, with very long lines (64660), with CRLF line terminators
Hash 0bce8de7057a56aedf17d2f5f6f69944
8731fdde4d81750d82db110a97f8447b84ef9670
e300914dcdffac4908571545038ff7da5f4f8d66411e36bdb7ebb6d3f10ba55b
Analyzer Verdict Alert quad9 Sinkholed
GET /js/jquery.themepunch.revolution.min.js HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:44 GMT
ETag: "3f1c1-5e9bf7a557700-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 59463
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
167.114.49.168/css/netflix.css
167.114.49.168200 OK 7.7 kB URL HTTP/1.1 167.114.49.168/css/netflix.css
IP 167.114.49.168:0
File type Non-ISO extended-ASCII text, with very long lines (40974), with CRLF line terminators
Hash 19b6c6e032dcd5455883004999a4f32d
b96c0c3feb1a58255d5b5cf5e6e90144e470a733
474bdb96de0d61656447ec67662e82482c733b315c153c95f378f06ca0cd0a9c
Analyzer Verdict Alert quad9 Sinkholed
GET /css/netflix.css HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:59 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "f8f7-5e9bf7a36f280-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:59 GMT
MKAUTH: FILES
Content-Length: 7671
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
167.114.49.168/images/video.png
167.114.49.168200 OK 50 kB URL HTTP/1.1 167.114.49.168/images/video.png
IP 167.114.49.168:0
File type PNG image data, 801 x 800, 8-bit/color RGBA, non-interlaced\012- data
Hash f5fab67dc1ca12552ccb9e2bc1786116
2d8661583c8da5ec5bd4c8d6c47d23b2fb209329
13d234b2951170e89d8203d5981c0c4a2bf4a6394fcb15db58687b7f7aff935f
Analyzer Verdict Alert quad9 Sinkholed
GET /images/video.png HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:59 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "c422-5e9bf7a36f280"
Accept-Ranges: bytes
Content-Length: 50210
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:59 GMT
MKAUTH: FILES
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 08:24:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
167.114.49.168/js/jquery.themepunch.tools.min.js
167.114.49.168200 OK 38 kB URL HTTP/1.1 167.114.49.168/js/jquery.themepunch.tools.min.js
IP 167.114.49.168:0
File type ASCII text, with very long lines (27287), with CRLF line terminators
Hash 781b0154285e03ab8955758268d7a0fa
9a23b577ab57766bd3b9aed5e94c11a918ff23ea
238adff663b7ce9f5fe4f444f62309fb9d4cee160816c5af303ae9531151b674
Analyzer Verdict Alert quad9 Sinkholed
GET /js/jquery.themepunch.tools.min.js HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:58 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:44 GMT
ETag: "1adb0-5e9bf7a557700-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:58 GMT
MKAUTH: FILES
Content-Length: 38093
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 08:24:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.35200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://167.114.49.168
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:52:41 GMT
expires: Tue, 28 Nov 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 307903
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 08:24:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/shadowsintolight/v15/UqyNK9UOIntux_czAvDQx_ZcHqZXBNQzdcD5.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/shadowsintolight/v15/UqyNK9UOIntux_czAvDQx_ZcHqZXBNQzdcD5.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 16296, version 1.0\012- data
Hash ab4a2c11e0a08a8b4fa7846c2adcc173
86304ab63791be3a22e5eb673245bca6351774a2
2498c027559c4ae9a920e18e30031193148983e7ea195416d62c5d0ea2eaa3ac
GET /s/shadowsintolight/v15/UqyNK9UOIntux_czAvDQx_ZcHqZXBNQzdcD5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://167.114.49.168
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16296
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:44:15 GMT
expires: Thu, 30 Nov 2023 19:44:15 GMT
cache-control: public, max-age=31536000
age: 132009
last-modified: Wed, 27 Apr 2022 15:55:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
167.114.49.168/webfonts/fa-solid-900.woff2
167.114.49.168200 OK 72 kB URL HTTP/1.1 167.114.49.168/webfonts/fa-solid-900.woff2
IP 167.114.49.168:0
File type Web Open Font Format (Version 2), TrueType, length 72000, version 1.0\012- data
Hash 1dc5b6dd4bf409a6f919be38603f76a0
388c52a87094578015fb41ebb9147821f0bb03a3
a5587a9dca3673b604a8a0e144d268f3dcb180aac337e2b2e163704bc1fc508a
Analyzer Verdict Alert quad9 Sinkholed
GET /webfonts/fa-solid-900.woff2 HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://167.114.49.168/css/all.min.css
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:59 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:52 GMT
ETag: "11940-5e9bf7acf8900"
Accept-Ranges: bytes
Content-Length: 72000
MKAUTH: FILES
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
167.114.49.168/images/game.png
167.114.49.168200 OK 66 kB URL HTTP/1.1 167.114.49.168/images/game.png
IP 167.114.49.168:0
File type PNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced\012- data
Hash 3911759e81d4cdcd3b7336808cfdce35
18af0badd3ba21ddc41616edea57ca860de672fe
2cbf96c5d56b62cae00b7ab9c94e5fc8ac91d5de789bf18af4e322b078680990
Analyzer Verdict Alert quad9 Sinkholed
GET /images/game.png HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:59 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "1027e-5e9bf7a36f280"
Accept-Ranges: bytes
Content-Length: 66174
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:59 GMT
MKAUTH: FILES
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
167.114.49.168/js/jquery.isotopex.min.js
167.114.49.168404 Not Found 303 B URL HTTP/1.1 167.114.49.168/js/jquery.isotopex.min.js
IP 167.114.49.168:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 72a9f2ebadba8f8df264f7eee0053397
75b9e0466402f4c9cb90d041fffc9db203c9806e
b314c5b69bf79bf4d939a18ca5106c01cdaaf435d87d9a5268d123b48ba073cb
Analyzer Verdict Alert quad9 Sinkholed
GET /js/jquery.isotopex.min.js HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 404 Not Found
Date: Fri, 02 Dec 2022 08:23:59 GMT
Server: Apache/2.4.10 (Debian)
Content-Length: 303
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
167.114.49.168/webfonts/fa-regular-400.woff2
167.114.49.168200 OK 15 kB URL HTTP/1.1 167.114.49.168/webfonts/fa-regular-400.woff2
IP 167.114.49.168:0
File type Web Open Font Format (Version 2), TrueType, length 14880, version 1.0\012- data
Hash cf6008d396082c09c3dd4907de9f3941
28ea1ea13a1b1801607c04674cb4cb5fce78c065
4d64f142cf22d40343bbf54ee0e0ec48b7b2bc654b9be78517d5634207286524
Analyzer Verdict Alert quad9 Sinkholed
GET /webfonts/fa-regular-400.woff2 HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://167.114.49.168/css/all.min.css
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:59 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:52 GMT
ETag: "3a20-5e9bf7acf8900"
Accept-Ranges: bytes
Content-Length: 14880
MKAUTH: FILES
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
167.114.49.168/webfonts/fa-brands-400.woff2
167.114.49.168200 OK 68 kB URL HTTP/1.1 167.114.49.168/webfonts/fa-brands-400.woff2
IP 167.114.49.168:0
File type Web Open Font Format (Version 2), TrueType, length 68240, version 1.0\012- data
Hash 921f1150167369cf4c400135a4905728
9b0c2c518f8b97b3ff7cea34c565fd4e70bb7640
8386356e1d512f570aac1b4883b928fe4bfd649c1d54a4d0f618357359cd3b74
Analyzer Verdict Alert quad9 Sinkholed
GET /webfonts/fa-brands-400.woff2 HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://167.114.49.168/css/all.min.css
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:59 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:52 GMT
ETag: "10a90-5e9bf7acf8900"
Accept-Ranges: bytes
Content-Length: 68240
MKAUTH: FILES
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
167.114.49.168/images/home-concept.png
167.114.49.168200 OK 57 kB URL HTTP/1.1 167.114.49.168/images/home-concept.png
IP 167.114.49.168:0
File type PNG image data, 2055 x 532, 8-bit/color RGBA, non-interlaced\012- data
Hash a7cfb294feb5234af316ecb2194a7006
e8a9057bf9244ac8158e792edc5bb485b75e86d6
cd16277c2846186d1a768347c52f68c207ab33d1fcb6a1243a59cfb2c89aeac7
Analyzer Verdict Alert quad9 Sinkholed
GET /images/home-concept.png HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/css/theme-elements.css
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:59 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "de98-5e9bf7a36f280"
Accept-Ranges: bytes
Content-Length: 56984
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:59 GMT
MKAUTH: FILES
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/png
167.114.49.168/slides/data1/images/slide1.png
167.114.49.168200 OK 917 kB URL HTTP/1.1 167.114.49.168/slides/data1/images/slide1.png
IP 167.114.49.168:0
File type PNG image data, 1920 x 650, 8-bit/color RGBA, non-interlaced\012- data
Size 917 kB (916706 bytes)
Hash 8f25371e09e6aef2a999c1c0d3c6156e
e3f9da449efc12d2153e98f48d5ed72a4c6d6cd0
2778b15469d6e5a5e052b3ed76480381e6bd3d39b612b42a557303a8664c28f3
Analyzer Verdict Alert quad9 Sinkholed
GET /slides/data1/images/slide1.png HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:59 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:51 GMT
ETag: "dfce2-5e9bf7ac046c0"
Accept-Ranges: bytes
Content-Length: 916706
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:59 GMT
MKAUTH: FILES
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
167.114.49.168/images/home-concept-icons.png
167.114.49.168200 OK 11 kB URL HTTP/1.1 167.114.49.168/images/home-concept-icons.png
IP 167.114.49.168:0
File type PNG image data, 749 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash cab7a65b44cdba2fd4c9ba8a091110e9
bf070089a9e674dab3b8c54b839480a3a0db7c78
40512d77a05c85768255b4569c7ffd02a542cf546ff4c30ba3b3ef090cba4b50
Analyzer Verdict Alert quad9 Sinkholed
GET /images/home-concept-icons.png HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/css/theme-elements.css
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:59 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "2b89-5e9bf7a36f280"
Accept-Ranges: bytes
Content-Length: 11145
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:59 GMT
MKAUTH: FILES
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
167.114.49.168/slides/data1/images/slide3.png
167.114.49.168200 OK 1.1 MB URL HTTP/1.1 167.114.49.168/slides/data1/images/slide3.png
IP 167.114.49.168:0
File type PNG image data, 1920 x 650, 8-bit/color RGBA, non-interlaced\012- data
Size 1.1 MB (1097498 bytes)
Hash 0228cf66ceaee78c48b58234b070e41f
a62eb73ef584011fd0b15b0bcadbbf0f821bc753
0bbfd8cd24e8ba55d0f4930cbb7b9732b25bab4ac5d4f913d73523460285d8be
Analyzer Verdict Alert quad9 Sinkholed
GET /slides/data1/images/slide3.png HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:59 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:51 GMT
ETag: "10bf1a-5e9bf7ac046c0"
Accept-Ranges: bytes
Content-Length: 1097498
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:59 GMT
MKAUTH: FILES
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
167.114.49.168/images/logo.png
167.114.49.168200 OK 45 kB URL HTTP/1.1 167.114.49.168/images/logo.png
IP 167.114.49.168:0
File type PNG image data, 906 x 360, 8-bit/color RGBA, non-interlaced\012- data
Hash 8f204b80bc6dd9d7ce9b6d75744a93a6
661f8b5cb0a316548c754c3cc11dea27e84832da
3466cfdec98920995f2a7e599b3fc0dbe166f8ba155c6ba44c2a3c271feead96
Analyzer Verdict Alert quad9 Sinkholed
GET /images/logo.png HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:59 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "ae83-5e9bf7a36f280"
Accept-Ranges: bytes
Content-Length: 44675
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:59 GMT
MKAUTH: FILES
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png
167.114.49.168/images/video-tv.m4v
167.114.49.168206 Partial Content 251 kB URL HTTP/1.1 167.114.49.168/images/video-tv.m4v
IP 167.114.49.168:0
File type ISO Media, Apple iTunes Video (.M4V) Video\012- data
Size 251 kB (250745 bytes)
Hash 62f76ef123fb82adf7d1856e92aba0f3
e9e113bc3afc103aaab9910ce2af14a50013e614
b71790ad26b8c29077c37efca8c06c6d50903f4a1fb2d4eb108c150b9d0a7ce0
Analyzer Verdict Alert quad9 Sinkholed
GET /images/video-tv.m4v HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 206 Partial Content
Date: Fri, 02 Dec 2022 08:23:59 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "3d379-5e9bf7a36f280"
Accept-Ranges: bytes
Content-Length: 250745
MKAUTH: FILES
Content-Range: bytes 0-250744/250745
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
167.114.49.168/images/contrato.png
167.114.49.168200 OK 200 kB URL HTTP/1.1 167.114.49.168/images/contrato.png
IP 167.114.49.168:0
File type PNG image data, 633 x 588, 8-bit/color RGBA, non-interlaced\012- data
Size 200 kB (199456 bytes)
Hash d9d1f20ea4e7940e0909f4128c9031d4
df5e6f3fa45f72d51454487a15260e870733a73c
1891ec06f4f067ca29a601be45674f5787be14f7b6f667bddb0742ec17397ca0
Analyzer Verdict Alert quad9 Sinkholed
GET /images/contrato.png HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:59 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "30b20-5e9bf7a36f280"
Accept-Ranges: bytes
Content-Length: 199456
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:59 GMT
MKAUTH: FILES
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
167.114.49.168/images/empresa.png
167.114.49.168200 OK 56 kB URL HTTP/1.1 167.114.49.168/images/empresa.png
IP 167.114.49.168:0
File type PNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced\012- data
Hash a1e8fbb8f52a67f4a57cf51ee608c94a
f468abf7f79a44f80cbdd17a9d2de3d9fb6d1d5d
2f7902dff036d4f48521527ba55e5fcc0413ac074ac7cc9a7999e2fd56d2e2f8
Analyzer Verdict Alert quad9 Sinkholed
GET /images/empresa.png HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:59 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "dc99-5e9bf7a36f280"
Accept-Ranges: bytes
Content-Length: 56473
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:59 GMT
MKAUTH: FILES
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
167.114.49.168/images/speed.png
167.114.49.168200 OK 516 kB URL HTTP/1.1 167.114.49.168/images/speed.png
IP 167.114.49.168:0
File type PNG image data, 634 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 516 kB (516432 bytes)
Hash cbbd2d372283ccf0da8d67121ed0b93b
7cb893a250d3fc733eae4271d1c38394ec4c3576
fcf12bb309104bfd72aa4a378844672426f5a99725ceb0f4f32d79df08fbf3ce
Analyzer Verdict Alert quad9 Sinkholed
GET /images/speed.png HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:59 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "7e150-5e9bf7a36f280"
Accept-Ranges: bytes
Content-Length: 516432
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:59 GMT
MKAUTH: FILES
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/png
167.114.49.168/slides/data1/images/slide2.png
167.114.49.168200 OK 882 kB URL HTTP/1.1 167.114.49.168/slides/data1/images/slide2.png
IP 167.114.49.168:0
File type PNG image data, 1920 x 650, 8-bit/color RGBA, non-interlaced\012- data
Size 882 kB (881833 bytes)
Hash a653cc88e5e3f083c88cee045744d708
27c9b6dffb77d4a2c5b5fc359edc78009acd0c6b
fb72ce0419bfcac9c656e0636444014b2e3eecfe0f734ea3af2180eb9cba1ae7
Analyzer Verdict Alert quad9 Sinkholed
GET /slides/data1/images/slide2.png HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:59 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:51 GMT
ETag: "d74a9-5e9bf7ac046c0"
Accept-Ranges: bytes
Content-Length: 881833
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:59 GMT
MKAUTH: FILES
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
167.114.49.168/images/netflix_logo.png
167.114.49.168200 OK 38 kB URL HTTP/1.1 167.114.49.168/images/netflix_logo.png
IP 167.114.49.168:0
File type PNG image data, 1024 x 374, 8-bit/color RGBA, non-interlaced\012- data
Hash e2b47412cd086296fbd318e9e1cabe3b
ed18afd4cf8b82ab729798c6ec989d8d5ec8b79d
b642d1882157c3d6054bc50f9b3ffc6cab5e97af9c0c660d7cbcce204473fc54
Analyzer Verdict Alert quad9 Sinkholed
GET /images/netflix_logo.png HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:59 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "93fd-5e9bf7a36f280"
Accept-Ranges: bytes
Content-Length: 37885
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:59 GMT
MKAUTH: FILES
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
167.114.49.168/images/familia.png
167.114.49.168200 OK 112 kB URL HTTP/1.1 167.114.49.168/images/familia.png
IP 167.114.49.168:0
File type PNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced\012- data
Size 112 kB (111575 bytes)
Hash 5aa868c7260c969e50cbdd4dc4e19d9d
8bd30fd626dd0373e935ef73beb781d975da3d72
2a3edce9383b177fb56c30b6c117e8775a254179a9950eef2f6b94ea12058da8
Analyzer Verdict Alert quad9 Sinkholed
GET /images/familia.png HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:59 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "1b3d7-5e9bf7a36f280"
Accept-Ranges: bytes
Content-Length: 111575
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:59 GMT
MKAUTH: FILES
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/png
167.114.49.168/images/tv.png
167.114.49.168200 OK 11 kB URL HTTP/1.1 167.114.49.168/images/tv.png
IP 167.114.49.168:0
File type PNG image data, 640 x 480, 8-bit colormap, non-interlaced\012- data
Hash 77994a67327ba957dfd880e33a91f041
5ba507de8c9bc4a063beecb569e89bcf9e0a901c
b68ea2c7bea397aa11fadb189ce7d83862baebaf03ece643eb5aa9fb5f755056
Analyzer Verdict Alert quad9 Sinkholed
GET /images/tv.png HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:59 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "2c9a-5e9bf7a36f280"
Accept-Ranges: bytes
Content-Length: 11418
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:59 GMT
MKAUTH: FILES
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2550
Expires: Fri, 02 Dec 2022 09:06:54 GMT
Date: Fri, 02 Dec 2022 08:24:24 GMT
Connection: keep-alive
167.114.49.168/images/logo2.png
167.114.49.168200 OK 13 kB URL HTTP/1.1 167.114.49.168/images/logo2.png
IP 167.114.49.168:0
File type PNG image data, 251 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 81466ea2a3c52d7eac900ab71f763b23
e6b7b46aa95537e4a2871d578eaa6387495bd7d3
379ddd8affaac1679045556136dcd88c892ddab1c43a0417d91206e7ab2aad73
Analyzer Verdict Alert quad9 Sinkholed
GET /images/logo2.png HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:59 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "3116-5e9bf7a36f280"
Accept-Ranges: bytes
Content-Length: 12566
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:59 GMT
MKAUTH: FILES
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: image/png
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2550
Expires: Fri, 02 Dec 2022 09:06:54 GMT
Date: Fri, 02 Dec 2022 08:24:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2550
Expires: Fri, 02 Dec 2022 09:06:54 GMT
Date: Fri, 02 Dec 2022 08:24:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2550
Expires: Fri, 02 Dec 2022 09:06:54 GMT
Date: Fri, 02 Dec 2022 08:24:24 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07af64d-c287-4b0a-9677-9a1000422afc.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07af64d-c287-4b0a-9677-9a1000422afc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 498ab4412ed5cf977bc23e4e870894b0
23753fe8af09ec8ffa10eed4d201a71833885c99
036042656f15e42b4d1537c45f5b8e7190c70305fa9a69c1287c6739ad0b7122
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07af64d-c287-4b0a-9677-9a1000422afc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7334
x-amzn-requestid: a6b8b420-8394-496b-8be8-26dee52e3887
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoHJOoAMF75g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-0b38d07f518c8b3134457df2;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: tuKmV_nb4HVbqkhtCnZY3b33VB-bB6UxaBl6HsY_JgWesbUB8SPt-g==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:09:38 GMT
age: 36886
etag: "23753fe8af09ec8ffa10eed4d201a71833885c99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d147ccb10bda82b153a596c3c967cd6a
ffd0763f997e71a8c1458523fc17cafe8849dfdf
1cfeb90a4ba027195f903d938d4a0aac418a1c2f0b52215ec023263f15905971
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7591
x-amzn-requestid: e179862e-f840-4e50-a9dc-09f325479b9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGgMFRZIAMFl7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e01-676a1571459f2d83488f2765;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: oB5K_ZCWWwCltMx8FQSjDdXRMzSTSyRLSYSLAooQXuCrUxadLUiWkA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:48:51 GMT
age: 38133
etag: "ffd0763f997e71a8c1458523fc17cafe8849dfdf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fw6nrporwF27NW0-vXpaolW79nDXLF2RyS-lqhhp1osHt7q98VpI3g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:49:56 GMT
age: 38068
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F356e23df-cb76-452a-b299-da5410086837.png
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F356e23df-cb76-452a-b299-da5410086837.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 82ea44d6cb116fb1f5752ce9bb87e345
f799dfd89a4f5a452dc837b8616549f578fb4184
e9087e7fce332289d67d4d5646d0233c2f2d871cc88dc1c51d5ea1e9f2fb5abd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F356e23df-cb76-452a-b299-da5410086837.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15495
x-amzn-requestid: 977cdbce-3a9c-4006-a5a1-5c4c82bd4a94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfHDIFxzIAMFzEw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891ee0-4b2cb3a16ca745537a8caf8c;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:38:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KnOx0PJ8BR9OoAzXfuWk_Je_yawqzY4isC0hYTZRvJ74YiVs8jqyIQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:25:42 GMT
age: 35922
etag: "f799dfd89a4f5a452dc837b8616549f578fb4184"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 06:00:48 GMT
age: 8616
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F937deb9c-e12c-486f-bf82-4833aed00836.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F937deb9c-e12c-486f-bf82-4833aed00836.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d08081e2dd562ef50e4e98ebc0136698
b5118bca37feda2ada3001199dc1d80ac6d2aacc
5160333e0cfd338b3887972d0a5c0f817ef88b70b7eb78e4e25d153a85e3478f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F937deb9c-e12c-486f-bf82-4833aed00836.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11443
x-amzn-requestid: 21469d81-ee4b-47f3-8877-b6658b3ea8b8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfHDHE4zoAMFvfw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891ee0-5b39eddd703ea04e6a1355f8;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:38:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nPuZoyOu_QAqbZvTUaNy1J3BOqnR2ttrIhv9BwRmWnKeba-e6MZWKA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:55:34 GMT
age: 37730
etag: "b5118bca37feda2ada3001199dc1d80ac6d2aacc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
167.114.49.168/images/gap1.png
167.114.49.168200 OK 2.5 MB URL HTTP/1.1 167.114.49.168/images/gap1.png
IP 167.114.49.168:0
File type PNG image data, 1390 x 1465, 8-bit/color RGBA, non-interlaced\012- data
Size 2.5 MB (2468232 bytes)
Hash 6d65f4a56f26ff14cc7aba03496a5c55
a932c14e81b41bb8744ac7ff56236331c2c85826
42102c5d016c63fa5a9010eb8a2d6d6c740e7d23d51fe9d4e09c6fce473a66cc
Analyzer Verdict Alert quad9 Sinkholed
GET /images/gap1.png HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:23:59 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "25a988-5e9bf7a36f280"
Accept-Ranges: bytes
Content-Length: 2468232
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:23:59 GMT
MKAUTH: FILES
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
167.114.49.168/images/anatel.png
167.114.49.168200 OK 27 kB URL HTTP/1.1 167.114.49.168/images/anatel.png
IP 167.114.49.168:0
File type PNG image data, 724 x 92, 8-bit/color RGBA, non-interlaced\012- data
Hash d4745b23d9baebbc28013d610fffdc8b
a19359113f741496750d113ee8759391d535ac13
11654645fd37d21bda9c9e079158db50faf229b1dffa3f4c5ee9f8239bf55ce0
Analyzer Verdict Alert quad9 Sinkholed
GET /images/anatel.png HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:24:00 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "6896-5e9bf7a36f280"
Accept-Ranges: bytes
Content-Length: 26774
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:24:00 GMT
MKAUTH: FILES
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
167.114.49.168/images/boleto.png
167.114.49.168200 OK 712 kB URL HTTP/1.1 167.114.49.168/images/boleto.png
IP 167.114.49.168:0
File type PNG image data, 2300 x 2186, 8-bit/color RGBA, non-interlaced\012- data
Size 712 kB (712326 bytes)
Hash 9f7bf2957a3db7cdce9f64db7225adce
ea1102ef8ca5ac42e682204135425f813c40df91
3d0eb014c74e7eaa029eb056646f3729bce1a8f9a33f741f5ea0d877c8239388
Analyzer Verdict Alert quad9 Sinkholed
GET /images/boleto.png HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:24:00 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "ade86-5e9bf7a36f280"
Accept-Ranges: bytes
Content-Length: 712326
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:24:00 GMT
MKAUTH: FILES
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ce9bb4656de0fb3edc54136d631bf5e1
95680f8722fba6e609b77df13566cf572de0183d
9a770b0fe4765e62e69c85565ccd057952fb54d078fb9ddb7732d2199f241bb6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2328
Cache-Control: max-age=169023
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 08:24:25 GMT
Etag: "63899e60-117"
Expires: Sun, 04 Dec 2022 07:21:28 GMT
Last-Modified: Fri, 02 Dec 2022 06:42:40 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
167.114.49.168/images/favicon.png
167.114.49.168200 OK 11 kB URL HTTP/1.1 167.114.49.168/images/favicon.png
IP 167.114.49.168:0
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 51c933eb75a2930cbb03e5e3c42d808e
41b360398e07c6207475b252a39213c88f181e0a
45c661088059ebd6349e2ad1e4c50b0ceab6c5900fc5faab26849b36cb53f166
Analyzer Verdict Alert quad9 Sinkholed
GET /images/favicon.png HTTP/1.1
Host: 167.114.49.168
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://167.114.49.168/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 08:24:00 GMT
Server: Apache/2.4.10 (Debian)
Last-Modified: Wed, 28 Sep 2022 16:44:42 GMT
ETag: "2a41-5e9bf7a36f280"
Accept-Ranges: bytes
Content-Length: 10817
Cache-Control: max-age=3600
Expires: Fri, 02 Dec 2022 09:24:00 GMT
MKAUTH: FILES
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
104.16.57.101200 OK 6.2 kB URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
IP 104.16.57.101:0
File type ASCII text, with very long lines (17031), with no line terminators
Hash dfd1fdd9197381188d9240427038f970
85135c355457345ea5c9d08ef12a7f872cdb363b
c6307b7ecc7e28db203c3ba4660652eaa799fc238bd8b810374c9f4cd162e549
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://widgets.woxo.tech
Connection: keep-alive
Referer: https://widgets.woxo.tech/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 08:24:25 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 7732aa863a29b50f-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f655556bf05a704fb31a74a2e605be54
ef21349ff45f171bf5add58d7c7731bced6ba7b2
66d462535e80e07e3e495dd9f8550776c30e42d78e828278032f51d9f1d1a562
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "66D462535E80E07E3E495DD9F8550776C30E42D78E828278032F51D9F1D1A562"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21560
Expires: Fri, 02 Dec 2022 14:23:46 GMT
Date: Fri, 02 Dec 2022 08:24:26 GMT
Connection: keep-alive
www.jmsdesigner.com.br/images/marca.png
177.11.54.85200 OK 16 kB URL HTTP/2 www.jmsdesigner.com.br/images/marca.png
IP 177.11.54.85:0
ASN #53243 Brasil Site Informatica LTDA
File type PNG image data, 306 x 56, 8-bit/color RGBA, non-interlaced\012- data
Hash 36a80f9fdbef5f53a50ee88f8294ff5b
ab8d34567a13fc2019d812192795983e82f94b42
2b3d3e6bc719ebe5afbfd45ad71e9da3beb5017a4531b7027c7f1178f266bdc3
GET /images/marca.png HTTP/1.1
Host: www.jmsdesigner.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://167.114.49.168/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
last-modified: Thu, 11 Aug 2022 19:16:56 GMT
accept-ranges: bytes
content-length: 15742
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 08:24:26 GMT
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: master-only
x-dns-prefetch-control: on
referrer-policy: no-referrer-when-downgrade
content-security-policy: block-all-mixed-content
content-type: image/png
date: Fri, 02 Dec 2022 08:24:26 GMT
server: Apache
X-Firefox-Spdy: h2
api.woxo.tech/instagram?source=%40italink.es&count=40&type=hashtag&sort=top&token=null
104.26.7.21200 OK 0 B URL HTTP/2 api.woxo.tech/instagram?source=%40italink.es&count=40&type=hashtag&sort=top&token=null
IP 104.26.7.21:0
GET /instagram?source=%40italink.es&count=40&type=hashtag&sort=top&token=null HTTP/1.1
Host: api.woxo.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://widgets.woxo.tech/
Origin: https://widgets.woxo.tech
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 08:24:29 GMT
content-type: application/json
x-amzn-requestid: dc09bb50-fe76-4813-8bcf-95ef41297c51
access-control-allow-origin: *
woxo-data: remote
x-amz-apigw-id: cglpFHEFIAMFu1w=
cache-control: private, max-age=7200, s-maxage=0
x-amzn-trace-id: Root=1-6389b639-3537ec1c70d920594032d6b0;Sampled=0
cf-cache-status: MISS
last-modified: Fri, 02 Dec 2022 08:24:29 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CXFNecLw%2BlqUoucywmxJQ1gK4pL1FmHCQmEsLos4oteq3Ig4a16GXh0kduU6XYwnawEr0EbOc0mEleR5T9tPa9R6S1BljuXYlqvpA3gHB7lxqil7rux0cWt8EF4aOPY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7732aa87de6eb51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn2.woxo.tech/a.js
104.26.7.21200 OK 0 B IP 104.26.7.21:0
GET /a.js HTTP/1.1
Host: cdn2.woxo.tech
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://167.114.49.168/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 08:24:23 GMT
content-type: application/javascript
last-modified: Wed, 20 Jul 2022 20:12:27 GMT
etag: W/"22cebdfbf6b3baf9117daf2596559257"
x-amz-version-id: Egm1OPnCI5h2oewDNOz.YHYm7ukPgIoO
x-cache: Miss from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oScuRRFz-EQqbtXo_SofIh9fNybdaAJsfEdv4CgoY4ht8mCstYAr6Q==
cf-cache-status: HIT
age: 1503527
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tbIhLdX0UNlQcSbh35I69LUUmAG0EAGDBRffBO%2BkpBvjRsYcz%2FQAdpCA7%2BeMj6jLZa9kxjm9oK5pJ2RVlZmRx8HZdqodFhfV3gFYjrXE6ifTEO5dxi%2FhyFHDOAU8UwiX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: max-age=120, stale-while-revalidate=31535880
server: cloudflare
cf-ray: 7732aa79485cb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:300,400,600,700,800%7CShadows+Into+Light%7CPlayfair+Display:400
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300,400,600,700,800%7CShadows+Into+Light%7CPlayfair+Display:400
IP 142.250.74.74:0
GET /css?family=Open+Sans:300,400,600,700,800%7CShadows+Into+Light%7CPlayfair+Display:400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://167.114.49.168/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Dec 2022 08:24:23 GMT
date: Fri, 02 Dec 2022 08:24:23 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2