Report - replyreb.com/home/index?seqId=845498&spId=278749904&stepId=3090034

Report Overview

Submitted URL
replyreb.com/home/index?seqId=845498&spId=278749904&stepId=3090034
IP
40.83.145.50
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Submitted
2022-09-30 14:33:53
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
dc.services.visualstudio.com	894	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	954 B	977 B	13.69.106.212
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	56 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.35
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	52.42.148.177
az416426.vo.msecnd.net	1935	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	360 B	23 kB	152.199.19.161
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	6.2 kB	23.36.76.226
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.25
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
replyreb.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	47 kB	40.83.145.50

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (2)

	URL	Size	First Seen	Last Seen
	replyreb.com/home/index?seqId=845498&spId=278749904&stepId=3090034	1.0 kB	2023-03-08	2023-04-01
Pretty URL replyreb.com/home/index?seqId=845498&spId=278749904&stepId=3090034 IP 40.83.145.50 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:51:48 Last Seen2023-04-01 10:26:34 Times Seen2 Hash 4f5ac8c52fb2ccde6797d1d13200dba4 1556380f82dc2ec172a246c65e558c2c07c4a18d 1e6c92ae193eebfccb355eea918f1b67f6c2dbacb10486e0674438ea2e85395d Loading...

	az416426.vo.msecnd.net/scripts/a/ai.0.js	97 kB	2023-03-07	2024-04-19
Pretty URL az416426.vo.msecnd.net/scripts/a/ai.0.js IP 152.199.19.161 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:49 Last Seen2024-04-19 10:13:27 Times Seen2983 Hash 1dd63de72cf1f702324245441844be13 58a8bdcdcb398af7db424357df70df18e7b30e9d 5201c813c37a4168cc5c20c701d4391fd0a55625f97eb9f263a74fb52b52fd0e Loading...

HTTP Transactions (24)

	URL	IP	Response	Size
	firefox.settings.services.mozilla.com/v1/	143.204.55.35	200 OK	939 B
URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/ IP 143.204.55.35:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 2d12f67fe57a87e7366b662d153a5582 d7b02d81cc74f24a251d9363e0f4b0a149264ec1 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551 HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length Cache-Control: max-age=3600 Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Fri, 30 Sep 2022 13:58:05 GMT X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: KHZtdVEoe4WXm8PQlsYZmdsjr9B1TxGcooYdESyd3XApQRhIqk0z1w== Age: 2138

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 60e4edea7b5f4d19f3547a3bb2d5df57 3ee076bab4da3416c2c5808f730cb316c28baef7 763e2dadfdd286a51327cd2000ca335e30cd0b9b7267875d22ca33f7556ba200 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "763E2DADFDD286A51327CD2000CA335E30CD0B9B7267875D22CA33F7556BA200" Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11727 Expires: Fri, 30 Sep 2022 17:49:10 GMT Date: Fri, 30 Sep 2022 14:33:43 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain	143.204.55.25	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain IP 143.204.55.25:0 ASN #16509 AMAZON-02 File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 6113f8408c59aebe188d6af273b90743 7398873bf00f99944eaa77ad3ebc0d43c23dba6b b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK content-type: binary/octet-stream content-length: 5348 last-modified: Sat, 10 Sep 2022 18:47:45 GMT content-disposition: attachment accept-ranges: bytes server: AmazonS3 date: Fri, 30 Sep 2022 05:28:28 GMT etag: "6113f8408c59aebe188d6af273b90743" x-cache: Hit from cloudfront via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: chWlBJlq0LsoshGF86bx4YLiQDv0ysc56x6zNaCGaPaqFkwtHrrsLg== age: 32716 X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Fri, 30 Sep 2022 14:33:43 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 3666b2254d6f846117f2c691b9e24647 b8bf6072943cc105c460b277dd402f3e17e5953f ab70f5f620a973abe6c63bba2c069f668ce39a3bd69cd2f023d6d33d020efec2 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "AB70F5F620A973ABE6C63BBA2C069F668CE39A3BD69CD2F023D6D33D020EFEC2" Last-Modified: Thu, 29 Sep 2022 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=20750 Expires: Fri, 30 Sep 2022 20:19:33 GMT Date: Fri, 30 Sep 2022 14:33:43 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	143.204.55.35	200 OK	329 B
URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 143.204.55.35:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Date: Fri, 30 Sep 2022 14:29:33 GMT Cache-Control: max-age=3600, max-age=3600 Expires: Fri, 30 Sep 2022 15:04:31 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: VPlpYc5Whj4sVpVbsYtETXQ1AUce5LUblVcURSrilcMzfJAZOZ9J5A== Age: 250

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash d1be374a29f94481ff2c021e35f4eaa0 e05e92d94b5e434e9935e560fd8dc33bdc393aea 37a5132d2183f5c3bfaac5c89df691fea72cac4423110df88bdeb231f430deee HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3302 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Fri, 30 Sep 2022 14:33:43 GMT Last-Modified: Fri, 30 Sep 2022 13:38:42 GMT Server: ECS (ska/F6FC) X-Cache: HIT Content-Length: 471`

	push.services.mozilla.com/	52.42.148.177	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 52.42.148.177:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: JjOh4LC97PXvduy9nXXNMg== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: HyJAFpSGlkQvXnhRU/1Cgqpn1Fk=`

	az416426.vo.msecnd.net/scripts/a/ai.0.js	152.199.19.161	200 OK	22 kB
URL HTTP/2 az416426.vo.msecnd.net/scripts/a/ai.0.js IP 152.199.19.161:0 ASN #15133 EDGECAST File type ASCII text, with very long lines (65536), with no line terminators Size 22 kB (22495 bytes) Hash affc2b93a9fc23bbba65931b19b1e12c a175097d2aa7ffb4b54193f197f296ab57967308 1c383d5958a56ed0858150b049c83da4d4b31a4ac05314ae9a4f623933a3df25 HTTP Headers `GET /scripts/a/ai.0.js HTTP/1.1 Host: az416426.vo.msecnd.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://replyreb.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-encoding: gzip access-control-allow-origin: * access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding age: 1326 cache-control: public, max-age=1800 content-md5: HdY95yzx9wIyQkVEGES+Ew== content-type: application/x-javascript date: Fri, 30 Sep 2022 14:33:44 GMT etag: 0x8D8E461DA1A5889 expires: Fri, 30 Sep 2022 15:03:44 GMT last-modified: Thu, 11 Mar 2021 07:46:59 GMT server: ECAcc (ska/F773) vary: Accept-Encoding x-cache: HIT x-ms-blob-type: BlockBlob x-ms-lease-status: unlocked x-ms-meta-lastmodified: 2020-10-01 19:31:04 x-ms-request-id: bf60e3d1-901e-001a-74d6-d489aa000000 x-ms-version: 2009-09-19 content-length: 22495 X-Firefox-Spdy: h2

	replyreb.com/favicon.ico	40.83.145.50	404 Not Found	0 B
URL HTTP/2 replyreb.com/favicon.ico IP 40.83.145.50:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: replyreb.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://replyreb.com/home/index?seqId=845498&spId=278749904&stepId=3090034 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 404 Not Found date: Fri, 30 Sep 2022 14:33:43 GMT server: Microsoft-IIS/10.0 content-length: 0 request-context: appId=cid-v1:8cb77867-af02-4956-b582-e76553b1c797 strict-transport-security: max-age=2592000 x-powered-by: ASP.NET X-Firefox-Spdy: h2`

	dc.services.visualstudio.com/v2/track	13.69.106.212	200 OK	0 B
URL HTTP/2 dc.services.visualstudio.com/v2/track IP 13.69.106.212:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `OPTIONS /v2/track HTTP/1.1 Host: dc.services.visualstudio.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type,sdk-context Referer: https://replyreb.com/ Origin: https://replyreb.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-methods: POST access-control-allow-headers: Origin, X-Requested-With, Content-Name, Content-Type, Accept, Sdk-Context access-control-allow-origin: * access-control-max-age: 3600 x-content-type-options: nosniff date: Fri, 30 Sep 2022 14:33:43 GMT content-length: 0 X-Firefox-Spdy: h2`

	dc.services.visualstudio.com/v2/track	13.69.106.212	400 Bad Request	186 B
URL HTTP/2 dc.services.visualstudio.com/v2/track IP 13.69.106.212:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type JSON data\012- , ASCII text, with no line terminators Size 186 B (186 bytes) Hash 5c68fa4531b78d238ffb85343517733b 6b885fff3e399da1ea7b1857617812e46ffd139f 43f9cea186c6a97cf28dc6183d6f81e945bc8aada8bb2a77042d9c9e4423d067 HTTP Headers `POST /v2/track HTTP/1.1 Host: dc.services.visualstudio.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/json Sdk-Context: appId Content-Length: 1355 Origin: https://replyreb.com Connection: keep-alive Referer: https://replyreb.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 400 Bad Request content-type: application/json; charset=utf-8 x-ms-session-id: B4A1BA90-58EC-4C52-9478-D0BD5A53004B strict-transport-security: max-age=31536000 access-control-allow-headers: Origin, X-Requested-With, Content-Name, Content-Type, Accept, Cache-Control, Sdk-Context access-control-allow-origin: * access-control-max-age: 3600 x-content-type-options: nosniff date: Fri, 30 Sep 2022 14:33:44 GMT content-length: 186 X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 47f245f9a098439e59436f81d4c03415 950b3eadfd6fc7f859130fa2c63934c6ccd49889 25f075effbd8acded8f38d69ea17f673de3e197b635274d4c52411ef577fe8e7 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7" Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8029 Expires: Fri, 30 Sep 2022 16:47:34 GMT Date: Fri, 30 Sep 2022 14:33:45 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 47f245f9a098439e59436f81d4c03415 950b3eadfd6fc7f859130fa2c63934c6ccd49889 25f075effbd8acded8f38d69ea17f673de3e197b635274d4c52411ef577fe8e7 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7" Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8029 Expires: Fri, 30 Sep 2022 16:47:34 GMT Date: Fri, 30 Sep 2022 14:33:45 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 47f245f9a098439e59436f81d4c03415 950b3eadfd6fc7f859130fa2c63934c6ccd49889 25f075effbd8acded8f38d69ea17f673de3e197b635274d4c52411ef577fe8e7 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7" Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8029 Expires: Fri, 30 Sep 2022 16:47:34 GMT Date: Fri, 30 Sep 2022 14:33:45 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 47f245f9a098439e59436f81d4c03415 950b3eadfd6fc7f859130fa2c63934c6ccd49889 25f075effbd8acded8f38d69ea17f673de3e197b635274d4c52411ef577fe8e7 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7" Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8029 Expires: Fri, 30 Sep 2022 16:47:34 GMT Date: Fri, 30 Sep 2022 14:33:45 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 47f245f9a098439e59436f81d4c03415 950b3eadfd6fc7f859130fa2c63934c6ccd49889 25f075effbd8acded8f38d69ea17f673de3e197b635274d4c52411ef577fe8e7 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7" Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8029 Expires: Fri, 30 Sep 2022 16:47:34 GMT Date: Fri, 30 Sep 2022 14:33:45 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2449b320-e517-4241-b0f6-96786331ba6a.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2449b320-e517-4241-b0f6-96786331ba6a.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (11881 bytes) Hash 13d4e2dbae75f2029d80396e4c8117a3 c5846663f31f7fbced777f0499caac638cc3c28b ac0fb122c4f6857e9268faeacb387fcb1b1fb87cdfedb163574d3df451cf0447 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2449b320-e517-4241-b0f6-96786331ba6a.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11881 x-amzn-requestid: 4a49c2e9-a894-44df-b9a6-d02a9edc38a2 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZPd5QHvbIAMF5uw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6336103b-127426cc20c4d17713c2df6f;Sampled=0 x-amzn-remapped-date: Thu, 29 Sep 2022 21:38:03 GMT x-amz-cf-pop: SFO5-P2, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: vRAcwp7ffhQQM_wlqjAvBPsk8lVDg8qqLL-MTAqo7qEocF1aE2bX8Q== via: 1.1 7256fedee68a59a508800e0dda035348.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google date: Thu, 29 Sep 2022 21:46:05 GMT age: 60460 etag: "c5846663f31f7fbced777f0499caac638cc3c28b" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59da9c68-5ffa-4dc1-adf8-645278cd60ca.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59da9c68-5ffa-4dc1-adf8-645278cd60ca.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10380 bytes) Hash 139a144f8cb04ac8aae65f4bad1473e7 265840b2d2fc6eb764cc6409b05deee8d77a19c2 6e0f01b6bdd5a92e92c7b29a6172a2900c68900afd2abba948940621252e0fd8 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59da9c68-5ffa-4dc1-adf8-645278cd60ca.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10380 x-amzn-requestid: 35ee2a77-159c-4bb4-a825-98c638398586 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZPdZYHsTIAMFQNQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63360f6f-4f68073432bcea371c7b8f03;Sampled=0 x-amzn-remapped-date: Thu, 29 Sep 2022 21:34:39 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: IENB0e-e13ywHJKPgyLWn1bGPMMxFLUu3cIUcREjGhxDEMROEL1jBg== via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google date: Thu, 29 Sep 2022 21:45:15 GMT age: 60510 etag: "265840b2d2fc6eb764cc6409b05deee8d77a19c2" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9789cead-4e6c-4a12-9b45-25d0efd38fc9.png	34.120.237.76	200 OK	16 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9789cead-4e6c-4a12-9b45-25d0efd38fc9.png IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 16 kB (16011 bytes) Hash 1389b1d624b44706c7a6f6b7eb769241 78b798f2cfa7db13a6b5ca2ca2783bece5e77d5d c3c2526b98be06fc7e793e1150bacde2a7bd718e29a851a6e6992e8d84333790 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9789cead-4e6c-4a12-9b45-25d0efd38fc9.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 16011 x-amzn-requestid: d58dfdcd-383a-45ac-8ae2-2b97f016b6a4 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZPdbjFy1IAMF84A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63360f7c-1ca9707a5e5087fd769d9ab6;Sampled=0 x-amzn-remapped-date: Thu, 29 Sep 2022 21:34:52 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: QKHN1asEv6w1mTLxsmn7Oj5AZTsPcg0H8zv5_qQ1BYptjL254kCZdA== via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google date: Thu, 29 Sep 2022 22:20:36 GMT age: 58389 etag: "78b798f2cfa7db13a6b5ca2ca2783bece5e77d5d" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2016911-a1a6-4bdf-a8f3-89e94a0aaff7.jpeg	34.120.237.76	200 OK	7.8 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2016911-a1a6-4bdf-a8f3-89e94a0aaff7.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.8 kB (7810 bytes) Hash 456968f691ae9464d69a37bffe9bd7ce 31b8538deb0f00d5b4182739a4a2fcc1b956a998 5cde1e3158e6c6c0b7a01d3bd32f2aa292b3b205f604e5c4ed71cafedad06bf2 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2016911-a1a6-4bdf-a8f3-89e94a0aaff7.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7810 x-amzn-requestid: 7f6d92e1-c7b1-4dd2-9efa-52ad324ca19d x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZMK6pFvkoAMF_yA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6334beaa-362b7368566955966db78385;Sampled=0 x-amzn-remapped-date: Wed, 28 Sep 2022 21:37:46 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: TbPFEVDpMOjK26iu1UGcx56vtP7Pywq05VAylNubOIfbMgo1qGsA-w== via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google date: Thu, 29 Sep 2022 23:45:42 GMT age: 53283 etag: "31b8538deb0f00d5b4182739a4a2fcc1b956a998" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d906d66-cd90-4963-827e-8d0564c0f787.jpeg	34.120.237.76	200 OK	5.1 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d906d66-cd90-4963-827e-8d0564c0f787.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.1 kB (5106 bytes) Hash 13a12db696bc2bf6a6ea2f48f4c1428e 3481dce8ab711111fc8863d88bee1a887cfd43ac 6dae6c9e5de4146e1f528a36a1795225c9731385f13927fc001fb3f9842fe8f1 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d906d66-cd90-4963-827e-8d0564c0f787.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5106 x-amzn-requestid: a906507c-8820-489c-9978-7d0fd026c862 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZPd5PE0MIAMF3DA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6336103a-49eb3879088f17bc01d177c7;Sampled=0 x-amzn-remapped-date: Thu, 29 Sep 2022 21:38:02 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: op_2CSOAx9-hqXvj1nOyitq0UXqIyItmquWjMkmMdKWnwoTIA_SA6A== via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google date: Thu, 29 Sep 2022 21:45:26 GMT age: 60499 etag: "3481dce8ab711111fc8863d88bee1a887cfd43ac" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	replyreb.com/Content/optOut.min.css	40.83.145.50	200 OK	46 kB
URL HTTP/2 replyreb.com/Content/optOut.min.css IP 40.83.145.50:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type data Size 46 kB (46265 bytes) Hash a47461ce2aca1471556025062d81d0a3 1b1c5d2317d6b281c82f1a34432a29abbc541978 8a0580e02b742af36106f7881bcae814099c306bf4f1235eb74c78d48942403a HTTP Headers `GET /Content/optOut.min.css HTTP/1.1 Host: replyreb.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://replyreb.com/home/index?seqId=845498&spId=278749904&stepId=3090034 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK content-type: text/css date: Fri, 30 Sep 2022 14:33:43 GMT server: Microsoft-IIS/10.0 accept-ranges: bytes content-encoding: gzip etag: "1d8a8b3c38264ca" last-modified: Fri, 05 Aug 2022 10:11:44 GMT vary: Accept-Encoding request-context: appId=cid-v1:8cb77867-af02-4956-b582-e76553b1c797 strict-transport-security: max-age=2592000 x-powered-by: ASP.NET X-Firefox-Spdy: h2`

	replyreb.com/home/index?seqId=845498&spId=278749904&stepId=3090034	40.83.145.50	200 OK	0 B
URL HTTP/2 replyreb.com/home/index?seqId=845498&spId=278749904&stepId=3090034 IP 40.83.145.50:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash HTTP Headers `GET /home/index?seqId=845498&spId=278749904&stepId=3090034 HTTP/1.1 Host: replyreb.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` `HTTP/2 200 OK content-type: text/html; charset=utf-8 date: Fri, 30 Sep 2022 14:33:43 GMT server: Microsoft-IIS/10.0 content-encoding: gzip vary: Accept-Encoding request-context: appId=cid-v1:8cb77867-af02-4956-b582-e76553b1c797 strict-transport-security: max-age=2592000 x-powered-by: ASP.NET X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (2)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (24)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size