Report - folower.lol/

Report Overview

URL

folower.lol/
IP

35.246.229.114

ASN

#396982 GOOGLE-CLOUD-PLATFORM
Submitted

2023-01-26T21:58:55Z

Access
Tags

None
urlquery detections

No alerts detected

Detections

urlquery

0
Network Intrusion Detection

0
Threat Detection Systems

4

Domain Summary

Domain	Rank	First Seen	Last Seen	Sent	Received	IP
contile.services.mozilla.com (1)	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333	391	34.117.237.239
push.services.mozilla.com (1)	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606	127	35.82.221.194
ajax.googleapis.com (1)	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	356	31128	142.250.74.42
d13pxqgp3ixdbh.cloudfront.net (10)	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4190	258924	54.230.245.98
www.google-analytics.com (2)	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1086	21365	142.250.74.110
img-getpocket.cdn.mozilla.net (7)	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3801	71509	34.120.237.76
www.folower.lol (2)	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	835	727	34.159.168.235
folower.lol (2)	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	784	589	3.72.140.173
r3.o.lencr.org (9)	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3042	7977	23.36.77.32
content-signature-2.cdn.mozilla.net (1)	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413	5856	34.160.144.191
browser.sentry-cdn.com (1)	4393	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	372	21482	151.101.130.217
allfile.club (2)	780717	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	822	26824	188.114.96.1
firefox.settings.services.mozilla.com (2)	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782	2373	35.241.9.150
ocsp.pki.goog (7)	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2401	4895	142.250.74.131
fonts.gstatic.com (2)	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	924	31017	216.58.207.227
d2punpeg7vtjci.cloudfront.net (5)	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1942	9830	54.230.245.10
dby7kx9z9yzse.cloudfront.net (1)	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	339	474	54.230.245.144

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-26	medium	folower.lol/	Phishing
2023-01-26	medium	folower.lol/	Phishing
2023-01-26	medium	www.folower.lol/	Phishing
2023-01-26	medium	dby7kx9z9yzse.cloudfront.net/ce1aa6f.js	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

HTTP Transactions (56)

URL IP Response Size

folower.lol/

3.72.140.173

301 Moved Permanently

URL HTTP/1.1

folower.lol/
IP

3.72.140.173:0
ASN

#16509 AMAZON-02

Magic

ASCII text, with no line terminators

Size

35
Hash

81118ff4d535519ee9d8eb200b5ded39

4c16d973f36c44babbccf0f54d3aba6f6a3a511b

0169efb84614089fbe5fb6b893dc6442ad6f216b5b6b4a30979a0e145aaa4e46

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

                                        GET / HTTP/1.1
Host: folower.lol
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                        HTTP/1.1 301 Moved Permanently
Location: https://folower.lol/
Server: Netlify
X-Nf-Request-Id: 01GQR1E6NZRTWG8XR96QS7GMF8
Date: Thu, 26 Jan 2023 21:58:44 GMT
Content-Length: 35
Content-Type: text/plain; charset=utf-8

r3.o.lencr.org/

23.36.77.32

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.36.77.32:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

9fbe85f42e8ae8ae41cc12df5f98b141

949fa36ff0f22f72565fd584bef094dd4de23037

184d3e4df4bce559b4d7c4836372f5fd2de9782a96b04d364230b7d695d737d8

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "184D3E4DF4BCE559B4D7C4836372F5FD2DE9782A96B04D364230B7D695D737D8"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6533
Expires: Thu, 26 Jan 2023 23:47:37 GMT
Date: Thu, 26 Jan 2023 21:58:44 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.36.77.32:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

2405562765b49b2782ebd2e2994851d5

be7ac8e558f7875bb1fb86ab5ec674424a5ff269

422cfa907461cb7b93b9089d600052f9e94951e5e0c93d97651905002e48ad3e

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "422CFA907461CB7B93B9089D600052F9E94951E5E0C93D97651905002E48AD3E"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6152
Expires: Thu, 26 Jan 2023 23:41:16 GMT
Date: Thu, 26 Jan 2023 21:58:44 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939

URL HTTP/2

firefox.settings.services.mozilla.com/v1/
IP

35.241.9.150:0
ASN

#15169 GOOGLE

Magic

JSON data\012- , ASCII text, with very long lines (939), with no line terminators

Size

939
Hash

bf0c602d32b3c14606f22a86183b5e3c

6eabd8d83475eba731968abe1a05a8bfd272f160

6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e

HTTP Headers

                                        GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 26 Jan 2023 21:35:16 GMT
content-type: application/json
age: 1408
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.36.77.32:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

69f73ac59327cd9ad7d99816ccfcc03e

c54844f82dbee0d5ee4c8ce344eb0139373e6c6b

e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13075
Expires: Fri, 27 Jan 2023 01:36:39 GMT
Date: Thu, 26 Jan 2023 21:58:44 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5348

URL HTTP/2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP

34.160.144.191:0
ASN

#15169 GOOGLE

Magic

PEM certificate\012- , ASCII text

Size

5348
Hash

7b922915ebf1fa3639b333f994c74f24

144a3f80b98fd0652d4614f24cf6cbbee40f8938

adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

                                        GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
x-amz-id-2: 9xs+YKKoJZMkKCYMpt6ij0/OPhDnk3L0k66FsqHOIrkcsQbLWUoMFmQG1e2Cn+OTly3OqQquYMN9pQ2QeG9ykw==
x-amz-request-id: J55KXMXMZSCT29BP
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 26 Jan 2023 21:20:16 GMT
age: 2308
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

URL HTTP/2

contile.services.mozilla.com/v1/tiles
IP

34.117.237.239:0
ASN

#15169 GOOGLE

Magic

JSON data\012- , ASCII text, with no line terminators

Size

12
Hash

23e88fb7b99543fb33315b29b1fad9d6

a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce

7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

                                        GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 21:58:44 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.36.77.32:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

da1ba7aa31d43e9385f2e14edc2acbf0

4d2512f873d32b1db1b7e681f2f27fbce2d263fb

5af92b4bbb059a45d64867d20b346afb7f22d87601fa2d7f59db882c7509a3d8

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5AF92B4BBB059A45D64867D20B346AFB7F22D87601FA2D7F59DB882C7509A3D8"
Last-Modified: Thu, 26 Jan 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 27 Jan 2023 03:58:44 GMT
Date: Thu, 26 Jan 2023 21:58:44 GMT
Connection: keep-alive

folower.lol/

35.198.80.163

301 Moved Permanently

URL HTTP/2

folower.lol/
IP

35.198.80.163:0
ASN

#396982 GOOGLE-CLOUD-PLATFORM

Magic

ASCII text, with no line terminators

Size

39
Hash

1ecbdd80d264552963586aa8e0e68c47

a103f0e385fd47ba28867541929f4f6cab9072ec

611a4a23fd872d9a61314a6226181ffd16e1e54d62962f2d2ac45b8c3dbd49d3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

                                        GET / HTTP/1.1
Host: folower.lol
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                        HTTP/2 301 Moved Permanently
location: https://www.folower.lol/
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GQR1E7AYVTJTEGK93WVCH498
content-type: text/plain; charset=utf-8
content-length: 39
date: Thu, 26 Jan 2023 21:58:44 GMT
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329

URL HTTP/2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP

35.241.9.150:0
ASN

#15169 GOOGLE

Magic

JSON data\012- , ASCII text, with very long lines (329), with no line terminators

Size

329
Hash

0333b0655111aa68de771adfcc4db243

63f295a144ac87a7c8e23417626724eeca68a7eb

60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

                                        GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 26 Jan 2023 21:49:01 GMT
age: 583
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.36.77.32:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

c398b6b39d11d25b8ae9bc5cd94a1c98

640aa8c399ced71d0c2a9f5a90fbaf091b01d642

a6f07f7c6a4746acc25457c726701df33120628dfb578bc4982448d8efee5855

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A6F07F7C6A4746ACC25457C726701DF33120628DFB578BC4982448D8EFEE5855"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14688
Expires: Fri, 27 Jan 2023 02:03:33 GMT
Date: Thu, 26 Jan 2023 21:58:45 GMT
Connection: keep-alive

push.services.mozilla.com/

35.82.221.194

101 Switching Protocols

URL HTTP/1.1

push.services.mozilla.com/
IP

35.82.221.194:0
ASN

#16509 AMAZON-02

Magic

Size

0
Hash

d41d8cd98f00b204e9800998ecf8427e

da39a3ee5e6b4b0d3255bfef95601890afd80709

e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

                                        GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Hbv5YSTf0y5iWf2J53ETHw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                        HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: rSrMYgjGTMdZfHGB1xCOvdiukd4=

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472

URL HTTP/1.1

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

472
Hash

2ebcc7cd4c50e87a984668828c1e612e

f693d36335f333e3647f9fb2460e34dd73e17421

27f1d63422ccd02a6af514c2c0a36ac6f4e0d6f74ad6d9fc8c32e8ea487ffe15

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:58:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

browser.sentry-cdn.com/6.4.1/bundle.min.js

151.101.130.217

200 OK

20972

URL HTTP/2

browser.sentry-cdn.com/6.4.1/bundle.min.js
IP

151.101.130.217:0
ASN

#54113 FASTLY

Magic

ASCII text, with very long lines (65448)

Size

20972
Hash

42639cce5db857005b8285dedd67553d

a24a4a308123397a9a786645f5843e70653d8552

2b5b83c27b4f52cb3fe8cebc8412b3ceb7c62a2dca290eef38117c33c85b3c66

HTTP Headers

                                        GET /6.4.1/bundle.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.folower.lol
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 26 Jan 2024 06:53:45 GMT
last-modified: Wed, 19 May 2021 16:36:38 GMT
etag: "42639cce5db857005b8285dedd67553d"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Thu, 26 Jan 2023 21:58:45 GMT
age: 54301
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 20972
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js

142.250.74.42

200 OK

30028

URL HTTP/2

ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
IP

142.250.74.42:0
ASN

#15169 GOOGLE

Magic

ASCII text, with very long lines (32065)

Size

30028
Hash

6d973c8b7e2439d958e09c0a1ab9fe50

05ae0830200c20b9a2dfd5a825adc400481a60fb

f3c122dc227e829ed96b2a754296809201bd78abbad7ba50ef5079654e1cc894

HTTP Headers

                                        GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 22 Jan 2023 11:05:57 GMT
expires: Mon, 22 Jan 2024 11:05:57 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 384768
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472

URL HTTP/1.1

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

472
Hash

2ebcc7cd4c50e87a984668828c1e612e

f693d36335f333e3647f9fb2460e34dd73e17421

27f1d63422ccd02a6af514c2c0a36ac6f4e0d6f74ad6d9fc8c32e8ea487ffe15

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:58:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471

URL HTTP/1.1

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

d9bf2793558044193d7e5d27708a9144

5a8f73462cfda6544cc3efe488854c3cd80bb0a7

e1db5ce5f130aa6d6a1bf18da60fee5c6bb76625a26aef0fee67702e7209ef7e

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:58:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v15/RxZJdnzeo3R5zSexge8UUVtXRa8TVwTICgirnJhmVJw.woff2

216.58.207.227

200 OK

14596

URL HTTP/2

fonts.gstatic.com/s/roboto/v15/RxZJdnzeo3R5zSexge8UUVtXRa8TVwTICgirnJhmVJw.woff2
IP

216.58.207.227:0
ASN

#15169 GOOGLE

Magic

Web Open Font Format (Version 2), TrueType, length 14596, version 2.0\012- data

Size

14596
Hash

bb474f16c9f76f522d656d66aa4a220e

55161308d29d91ec21aadf6f63da390a902c053b

01a44f86a9b361ef0d3ad5e4f9f0f01d394ab53fc5b0e3dff92466fa411e706b

HTTP Headers

                                        GET /s/roboto/v15/RxZJdnzeo3R5zSexge8UUVtXRa8TVwTICgirnJhmVJw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.folower.lol
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14596
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Jan 2023 18:35:35 GMT
expires: Wed, 24 Jan 2024 18:35:35 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 14 Jan 2015 22:47:38 GMT
content-type: font/woff2
age: 184990
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471

URL HTTP/1.1

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

d9bf2793558044193d7e5d27708a9144

5a8f73462cfda6544cc3efe488854c3cd80bb0a7

e1db5ce5f130aa6d6a1bf18da60fee5c6bb76625a26aef0fee67702e7209ef7e

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:58:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v15/Hgo13k-tfSpn0qi1SFdUfVtXRa8TVwTICgirnJhmVJw.woff2

216.58.207.227

200 OK

14524

URL HTTP/2

fonts.gstatic.com/s/roboto/v15/Hgo13k-tfSpn0qi1SFdUfVtXRa8TVwTICgirnJhmVJw.woff2
IP

216.58.207.227:0
ASN

#15169 GOOGLE

Magic

Web Open Font Format (Version 2), TrueType, length 14524, version 2.0\012- data

Size

14524
Hash

16ddb1541046ada9b90cacf4adec839a

7346f70d00c734b1c4536a0c72ff8aa4ed49f667

d4911437335fe7ef206a68aa9ec2722381752db60a451c8223d141f79d3f3785

HTTP Headers

                                        GET /s/roboto/v15/Hgo13k-tfSpn0qi1SFdUfVtXRa8TVwTICgirnJhmVJw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.folower.lol
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 11:09:33 GMT
expires: Fri, 26 Jan 2024 11:09:33 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 14 Jan 2015 22:47:08 GMT
content-type: font/woff2
age: 38952
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471

URL HTTP/1.1

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

d9bf2793558044193d7e5d27708a9144

5a8f73462cfda6544cc3efe488854c3cd80bb0a7

e1db5ce5f130aa6d6a1bf18da60fee5c6bb76625a26aef0fee67702e7209ef7e

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:58:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

allfile.club/sound/connected.mp3

188.114.96.1

206 Partial Content

20617

URL HTTP/2

allfile.club/sound/connected.mp3
IP

188.114.96.1:0
ASN

#13335 CLOUDFLARENET

Magic

Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo\012- data

Size

20617
Hash

6221512d9c1e807a31fa93b4b7593a25

6f2369c934010ccbdd6ac8b150dc4fae44692d23

5e8dfead8f12cc0cf9aff8aaaeb7497798520ecb67de152776e3f383e52eb635

HTTP Headers

                                        GET /sound/connected.mp3 HTTP/1.1
Host: allfile.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        HTTP/2 206 Partial Content
date: Thu, 26 Jan 2023 21:58:46 GMT
content-type: audio/mpeg
content-length: 20617
last-modified: Thu, 26 Nov 2020 15:57:08 GMT
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=14400
cf-cache-status: HIT
age: 6603
content-range: bytes 0-20616/20617
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uvi3ihhGyj5JHpzgRNqlCgfwgJWCnddyf2rxngtnp0g%2BxRAPJrr1NzTA8FWyTvBnX640TvU8ZGBWFNdtKb0Kqh%2FBjF7ybkChWvhTXGDwoMCO69qV04TyXhkC2K7Ojk8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78fc830b7ad1b505-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

allfile.club/sound/click.mp3

188.114.96.1

206 Partial Content

4316

URL HTTP/2

allfile.club/sound/click.mp3
IP

188.114.96.1:0
ASN

#13335 CLOUDFLARENET

Magic

Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo\012- data

Size

4316
Hash

bbdfb9108c971ab54e7bd853147fd37b

66823fa6f7c78416fcc1941b721b1b6b4d212e74

1f84733afdefb4b0ad2a0baabbfe453392aa11004a54dac336f412bd847c8807

HTTP Headers

                                        GET /sound/click.mp3 HTTP/1.1
Host: allfile.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        HTTP/2 206 Partial Content
date: Thu, 26 Jan 2023 21:58:46 GMT
content-type: audio/mpeg
content-length: 4316
last-modified: Thu, 26 Nov 2020 15:57:08 GMT
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
cache-control: max-age=14400
cf-cache-status: HIT
age: 3556
content-range: bytes 0-4315/4316
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aY9lsUCvTY5VGBEZboGDESV1vewM1iR55zvOpN71gkTgym7z6luMb7%2FC6Rw4bO%2FPJyYHV6R2h8Ys8dlfgjs4H8cl8C8Y9MrwaPe9ziyyzIFVHdYgwXJwxhChZXAnRg8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78fc830b7ad2b505-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

d13pxqgp3ixdbh.cloudfront.net/uploads/1636472786ee1905a53e0b903bb72600a288d20d03.png

54.230.245.98

200 OK

49131

URL HTTP/2

d13pxqgp3ixdbh.cloudfront.net/uploads/1636472786ee1905a53e0b903bb72600a288d20d03.png
IP

54.230.245.98:0
ASN

#16509 AMAZON-02

Magic

PNG image data, 794 x 794, 8-bit/color RGBA, non-interlaced\012- data

Size

49131
Hash

8b64575dddf267f9a0549adf587cf046

0106aee4c667c2abcd98ca33eec8fb248350134a

17c75e2e71a9b6ca2bd024f7cb0d5c13ebb53f1a1c319d3fdbbfaf79ab24c1a3

HTTP Headers

                                        GET /uploads/1636472786ee1905a53e0b903bb72600a288d20d03.png HTTP/1.1
Host: d13pxqgp3ixdbh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        HTTP/2 200 OK
content-type: image/png
content-length: 49131
last-modified: Tue, 09 Nov 2021 15:46:27 GMT
x-amz-version-id: pqeXk7wfGBXYAN910pbHJ9hmCw.7cNjp
accept-ranges: bytes
server: AmazonS3
date: Thu, 26 Jan 2023 05:00:44 GMT
etag: "8b64575dddf267f9a0549adf587cf046"
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IZmB34AJSwSTkZmTaVGgsbPZtQ1PVVlrp3NMjDT8_eqKiC4FFwGj-g==
age: 61083
X-Firefox-Spdy: h2

d13pxqgp3ixdbh.cloudfront.net/uploads/1625809692a12c02ac8c4366a2fd94b22ac8951d0f.png

54.230.245.98

200 OK

1664

URL HTTP/2

d13pxqgp3ixdbh.cloudfront.net/uploads/1625809692a12c02ac8c4366a2fd94b22ac8951d0f.png
IP

54.230.245.98:0
ASN

#16509 AMAZON-02

Magic

PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data

Size

1664
Hash

e4f65a26e3cb3de3f8f487e90428f6af

d457cd78de767ed5ef0f51d876e33cb91274d40e

acb8c103e47bad58074e3f29e8b19ffc447e1be012732e0d4ff3590ef02ba8ef

HTTP Headers

                                        GET /uploads/1625809692a12c02ac8c4366a2fd94b22ac8951d0f.png HTTP/1.1
Host: d13pxqgp3ixdbh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        HTTP/2 200 OK
content-type: image/png
content-length: 1664
last-modified: Fri, 09 Jul 2021 05:48:13 GMT
x-amz-version-id: HASP1iC03VTaw40WFHFOjHaSVYjOmmaR
accept-ranges: bytes
server: AmazonS3
date: Thu, 26 Jan 2023 04:04:28 GMT
etag: "e4f65a26e3cb3de3f8f487e90428f6af"
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: aMwERLKhoTZ8MlrKKS17KVPj1TdE7uaU46YYICiFAgamphtNLN2AFg==
age: 64459
X-Firefox-Spdy: h2

d13pxqgp3ixdbh.cloudfront.net/uploads/1637759112e1881684740ba1bd68ac46940088ad53.jpg

54.230.245.98

200 OK

42037

URL HTTP/2

d13pxqgp3ixdbh.cloudfront.net/uploads/1637759112e1881684740ba1bd68ac46940088ad53.jpg
IP

54.230.245.98:0
ASN

#16509 AMAZON-02

Magic

JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x1080, components 3\012- data

Size

42037
Hash

b545d26e45ed9a4d99f02767d42c0d97

c026cf72bb3f0c701849eebca1222c73d2d0dace

8bdd6c691888aabbcc6abc5ff77dfa6c4af14c57fa9d1fe02f91c4da5fd837ec

HTTP Headers

                                        GET /uploads/1637759112e1881684740ba1bd68ac46940088ad53.jpg HTTP/1.1
Host: d13pxqgp3ixdbh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        HTTP/2 200 OK
content-type: image/jpg
content-length: 42037
last-modified: Wed, 24 Nov 2021 13:05:13 GMT
x-amz-version-id: L_N9VLlo8rTK_BSd67kRuY.txcFHo2wW
accept-ranges: bytes
server: AmazonS3
date: Wed, 25 Jan 2023 23:24:25 GMT
etag: "b545d26e45ed9a4d99f02767d42c0d97"
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KEYdogrGey-DzmZY6DmiUs6tiAcQrIs2wS9aOD5awZ4WCz--EENEWQ==
age: 81262
X-Firefox-Spdy: h2

d13pxqgp3ixdbh.cloudfront.net/uploads/1625029488971f38a72a02709697045cd60a5e1f69.png

54.230.245.98

200 OK

6240

URL HTTP/2

d13pxqgp3ixdbh.cloudfront.net/uploads/1625029488971f38a72a02709697045cd60a5e1f69.png
IP

54.230.245.98:0
ASN

#16509 AMAZON-02

Magic

PNG image data, 200 x 81, 8-bit/color RGBA, non-interlaced\012- data

Size

6240
Hash

898aab04b77e9a176979e6817f52874a

4c1ae328d9c9ca067dd7bc369e64a2129d810729

8f2db76b3e15ffff8ba4d5cb82cd4b6e051af1482343156f1a20936ad27bb94b

HTTP Headers

                                        GET /uploads/1625029488971f38a72a02709697045cd60a5e1f69.png HTTP/1.1
Host: d13pxqgp3ixdbh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        HTTP/2 200 OK
content-type: image/png
content-length: 6240
last-modified: Wed, 30 Jun 2021 05:04:49 GMT
x-amz-version-id: DpBH1einMxSOFxz3ut4cbnzeG8nI2XAw
accept-ranges: bytes
server: AmazonS3
date: Thu, 26 Jan 2023 09:27:10 GMT
etag: "898aab04b77e9a176979e6817f52874a"
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZWKA4EJAQfAYcXGWEiYblE0ITfjk-EAXAFLFDoh7kbVx_z3U9EusAA==
age: 45097
X-Firefox-Spdy: h2

d13pxqgp3ixdbh.cloudfront.net/uploads/16250294865927545b53c519973dae63ab5c9c7b62.png

54.230.245.98

200 OK

3909

URL HTTP/2

d13pxqgp3ixdbh.cloudfront.net/uploads/16250294865927545b53c519973dae63ab5c9c7b62.png
IP

54.230.245.98:0
ASN

#16509 AMAZON-02

Magic

PNG image data, 200 x 81, 8-bit/color RGBA, non-interlaced\012- data

Size

3909
Hash

bb658559b782d2fa2c99f7fd7969effc

94846385bad407f25ee3cbbcec800cdcef214dd5

e9b5d2a5655636dd9d134382a3aa843929d916b3671ed5c509a0141e7d6c83e6

HTTP Headers

                                        GET /uploads/16250294865927545b53c519973dae63ab5c9c7b62.png HTTP/1.1
Host: d13pxqgp3ixdbh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        HTTP/2 200 OK
content-type: image/png
content-length: 3909
date: Thu, 26 Jan 2023 01:21:35 GMT
last-modified: Wed, 30 Jun 2021 05:04:47 GMT
etag: "bb658559b782d2fa2c99f7fd7969effc"
x-amz-version-id: h6JywhqQY99UZ0bKSlziY6T0uDszehDZ
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: p0Hc0VdD5mdjRbLk3fpvYiA6P-Q2PllyaXMSESf0qXUwh_rSH7Os9Q==
age: 74231
X-Firefox-Spdy: h2

d13pxqgp3ixdbh.cloudfront.net/uploads/1625029487d11043412c66384d96b2e05c22a2996f.png

54.230.245.98

200 OK

5213

URL HTTP/2

d13pxqgp3ixdbh.cloudfront.net/uploads/1625029487d11043412c66384d96b2e05c22a2996f.png
IP

54.230.245.98:0
ASN

#16509 AMAZON-02

Magic

PNG image data, 200 x 81, 8-bit/color RGBA, non-interlaced\012- data

Size

5213
Hash

5cd7daf7898fd4ea9c41b86a04812440

f805eff57b309e2cee8fae0693bd9b821e348e50

e7bde68ebbea33ec0c8224b5edb4c2d5ed9aab87e32bf2cf9bca98d0b33fde8e

HTTP Headers

                                        GET /uploads/1625029487d11043412c66384d96b2e05c22a2996f.png HTTP/1.1
Host: d13pxqgp3ixdbh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        HTTP/2 200 OK
content-type: image/png
content-length: 5213
date: Thu, 26 Jan 2023 07:14:36 GMT
last-modified: Wed, 30 Jun 2021 05:04:48 GMT
etag: "5cd7daf7898fd4ea9c41b86a04812440"
x-amz-version-id: tijEvhuBlz3Kz6uWF5GlCUE670wr4IX5
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Fmg4e-4IlRuD1qVwTAjmPAlAxr1rD0SbU5X8HDpRXCsM6SDei9bBwg==
age: 53051
X-Firefox-Spdy: h2

d13pxqgp3ixdbh.cloudfront.net/uploads/163542468278c021e06cc778d4aef36f80e47413a2.gif

54.230.245.98

200 OK

50587

URL HTTP/2

d13pxqgp3ixdbh.cloudfront.net/uploads/163542468278c021e06cc778d4aef36f80e47413a2.gif
IP

54.230.245.98:0
ASN

#16509 AMAZON-02

Magic

GIF image data, version 89a, 480 x 480\012- data

Size

50587
Hash

31cdfb1e7dda6fc83c12a2ee24119d30

783554682759a67d7b6f6e76aafc9c4f9175cd42

c932bbb1439415184a6a2fa36b2a251d4eecaee2eef0bf954f78fe4e5f768780

HTTP Headers

                                        GET /uploads/163542468278c021e06cc778d4aef36f80e47413a2.gif HTTP/1.1
Host: d13pxqgp3ixdbh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        HTTP/2 200 OK
content-type: image/gif
content-length: 50587
date: Thu, 26 Jan 2023 06:43:29 GMT
last-modified: Thu, 28 Oct 2021 12:38:03 GMT
etag: "31cdfb1e7dda6fc83c12a2ee24119d30"
x-amz-version-id: gL8ZH1yxRYSppA1JIt_l1PEXrlxPmtkp
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: t4_zks3W1qT73PMgKU-OMQklQ3rHvB25zW9yFARVUGLoyf0vGk8Gow==
age: 54917
X-Firefox-Spdy: h2

d13pxqgp3ixdbh.cloudfront.net/uploads/1635653021ac61a7aa31f58b94c30339f142fa4242.png

54.230.245.98

200 OK

16335

URL HTTP/2

d13pxqgp3ixdbh.cloudfront.net/uploads/1635653021ac61a7aa31f58b94c30339f142fa4242.png
IP

54.230.245.98:0
ASN

#16509 AMAZON-02

Magic

PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data

Size

16335
Hash

6ffe3b076d6484a5ecc44f0b30d3cbda

a750bdb28bb1e1090d154ce659c5fe5d44e2f412

33339f3bc6836ed71dfd3e10d149b673d1f3fdc4f8bbc46226e04d43b4702ee7

HTTP Headers

                                        GET /uploads/1635653021ac61a7aa31f58b94c30339f142fa4242.png HTTP/1.1
Host: d13pxqgp3ixdbh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        HTTP/2 200 OK
content-type: image/png
content-length: 16335
last-modified: Sun, 31 Oct 2021 04:03:42 GMT
x-amz-version-id: Owy8P6tC806gyGetRroaoYhdoO_0IfwK
accept-ranges: bytes
server: AmazonS3
date: Thu, 26 Jan 2023 07:04:15 GMT
etag: "6ffe3b076d6484a5ecc44f0b30d3cbda"
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SkCefacrdjbaiyyMV3rNWZbYRo9wIouluoOKiyQrKWv5rRzIVMAp_g==
age: 53672
X-Firefox-Spdy: h2

d13pxqgp3ixdbh.cloudfront.net/uploads/1616768451bbe132d4ca25c0c41ca7084062465d64.png

54.230.245.98

200 OK

9726

URL HTTP/2

d13pxqgp3ixdbh.cloudfront.net/uploads/1616768451bbe132d4ca25c0c41ca7084062465d64.png
IP

54.230.245.98:0
ASN

#16509 AMAZON-02

Magic

PNG image data, 169 x 169, 8-bit/color RGBA, non-interlaced\012- data

Size

9726
Hash

670368a9b3586b091e991ee4e9712729

ec4e6140a22ae195a3707bd751fb04ffa3a69595

43e94b9c3ea0a80d9795ae0742a4badc17e6f4c23cfe6a8431699478f3edb31f

HTTP Headers

                                        GET /uploads/1616768451bbe132d4ca25c0c41ca7084062465d64.png HTTP/1.1
Host: d13pxqgp3ixdbh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        HTTP/2 200 OK
content-type: image/png
content-length: 9726
last-modified: Fri, 26 Mar 2021 14:20:52 GMT
x-amz-version-id: Sg2WkVQrs1S_yTVTnyyLyzPZgTsWjRxC
accept-ranges: bytes
server: AmazonS3
date: Thu, 26 Jan 2023 03:42:44 GMT
etag: "670368a9b3586b091e991ee4e9712729"
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zbQvvI2qib1Bnk_gA5TjFRflBCmuBnuDV-DdZjDIHiAmQlfL0xt7ag==
age: 65763
X-Firefox-Spdy: h2

d13pxqgp3ixdbh.cloudfront.net/uploads/1635084417577c52a4f572b38c329bb78062d1a4a4.png

54.230.245.98

200 OK

69007

URL HTTP/2

d13pxqgp3ixdbh.cloudfront.net/uploads/1635084417577c52a4f572b38c329bb78062d1a4a4.png
IP

54.230.245.98:0
ASN

#16509 AMAZON-02

Magic

PNG image data, 476 x 412, 8-bit/color RGBA, non-interlaced\012- data

Size

69007
Hash

cd99f09062c36c2b78d65a921bae77f4

6fe4332e501aade8b2c86d2fa90ce123928c7190

7ff5a663ce347da61792e091d50525ba2420f82fdba5d80437c70dd77c0eabb2

HTTP Headers

                                        GET /uploads/1635084417577c52a4f572b38c329bb78062d1a4a4.png HTTP/1.1
Host: d13pxqgp3ixdbh.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        HTTP/2 200 OK
content-type: image/png
content-length: 69007
last-modified: Sun, 24 Oct 2021 14:06:58 GMT
x-amz-version-id: zc80untYjVark_uDJp1dEneFID.2K5Kl
accept-ranges: bytes
server: AmazonS3
date: Thu, 26 Jan 2023 06:41:15 GMT
etag: "cd99f09062c36c2b78d65a921bae77f4"
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HV1YmZEWBn0bxqxT5XWcwpV8EVvlzB-CV8EU3LDzpF0qNdDq3unvlg==
age: 55052
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471

URL HTTP/1.1

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

82e3abc4a7b17efedca67cf215f4bb60

e20e55d87591af7db3a4bcfc429048f85e389b85

df8901d4d87686fb11e17986f5d53cf513f675b4dd71f0a2e35c7ffbefa7fb9e

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:58:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/analytics.js

142.250.74.110

200 OK

20085

URL HTTP/2

www.google-analytics.com/analytics.js
IP

142.250.74.110:0
ASN

#15169 GOOGLE

Magic

ASCII text, with very long lines (1490)

Size

20085
Hash

ca7fbbfd120e3e329633044190bbf134

d17f81e03dd827554ddd207ea081fb46b3415445

847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db

HTTP Headers

                                        GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 26 Jan 2023 21:46:59 GMT
expires: Thu, 26 Jan 2023 23:46:59 GMT
cache-control: public, max-age=7200
age: 707
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471

URL HTTP/1.1

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

82e3abc4a7b17efedca67cf215f4bb60

e20e55d87591af7db3a4bcfc429048f85e389b85

df8901d4d87686fb11e17986f5d53cf513f675b4dd71f0a2e35c7ffbefa7fb9e

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 21:58:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/j/collect?v=1&_v=j99&a=1840316710&t=pageView&_s=1&dl=https%3A%2F%2Fwww.folower.lol%2F&ul=en-us&de=UTF-8&dt=Instagram%20Followers%20Generator&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAEABAAAAACAAI~&jid=1516811746&gjid=1625846556&cid=1616708006.1674770326&tid=UA-85922709-2&_gid=1117060919.1674770326&_r=1&_slc=1&cd1=0&z=2064225647

142.250.74.110

200 OK

URL HTTP/2

www.google-analytics.com/j/collect?v=1&_v=j99&a=1840316710&t=pageView&_s=1&dl=https%3A%2F%2Fwww.folower.lol%2F&ul=en-us&de=UTF-8&dt=Instagram%20Followers%20Generator&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAEABAAAAACAAI~&jid=1516811746&gjid=1625846556&cid=1616708006.1674770326&tid=UA-85922709-2&_gid=1117060919.1674770326&_r=1&_slc=1&cd1=0&z=2064225647
IP

142.250.74.110:0
ASN

#15169 GOOGLE

Magic

ASCII text, with no line terminators

Size

2
Hash

38684612f0c6bb6dfa16da92f4a6878f

6fe62d0dd7db314b7f9bb945672f078e01d27f0f

a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f

HTTP Headers

                                        POST /j/collect?v=1&_v=j99&a=1840316710&t=pageView&_s=1&dl=https%3A%2F%2Fwww.folower.lol%2F&ul=en-us&de=UTF-8&dt=Instagram%20Followers%20Generator&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=YEBAAEABAAAAACAAI~&jid=1516811746&gjid=1625846556&cid=1616708006.1674770326&tid=UA-85922709-2&_gid=1117060919.1674770326&_r=1&_slc=1&cd1=0&z=2064225647 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.folower.lol
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                        HTTP/2 200 OK
access-control-allow-origin: https://www.folower.lol
date: Thu, 26 Jan 2023 21:58:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

d2punpeg7vtjci.cloudfront.net/public/external/css_front.css

54.230.245.10

200 OK

6596

URL HTTP/2

d2punpeg7vtjci.cloudfront.net/public/external/css_front.css
IP

54.230.245.10:0
ASN

#16509 AMAZON-02

Magic

ASCII text, with CRLF line terminators

Size

6596
Hash

2649f9832b1ede1bca6b60a16e50a676

c96e86a59be0ab5f2a1c86558205193597822742

a7bd79b6fba60944ee3a9c153108ff0819d2db57850116ac7065a86db08af4ec

HTTP Headers

                                        GET /public/external/css_front.css HTTP/1.1
Host: d2punpeg7vtjci.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
content-type: text/css
content-length: 6596
date: Thu, 26 Jan 2023 21:58:46 GMT
server: Apache/2.4.51 () OpenSSL/1.0.2k-fips PHP/7.4.11
last-modified: Tue, 23 Jun 2020 20:06:47 GMT
etag: "19c4-5a8c5e62e9d0a"
accept-ranges: bytes
x-cache: Miss from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: liTBPql3wvRTr5w9qwaDgl4l4N_Kwd2b98Tto4DF-lC09m63IZXNFg==
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.36.77.32:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

bd56ce22720c6e6072efdabae64669fd

29194390d12177fe0d88e1bd2fb4436509366a1c

c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7828
Expires: Fri, 27 Jan 2023 00:09:14 GMT
Date: Thu, 26 Jan 2023 21:58:46 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.36.77.32:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

bd56ce22720c6e6072efdabae64669fd

29194390d12177fe0d88e1bd2fb4436509366a1c

c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7828
Expires: Fri, 27 Jan 2023 00:09:14 GMT
Date: Thu, 26 Jan 2023 21:58:46 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.36.77.32:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

bd56ce22720c6e6072efdabae64669fd

29194390d12177fe0d88e1bd2fb4436509366a1c

c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7828
Expires: Fri, 27 Jan 2023 00:09:14 GMT
Date: Thu, 26 Jan 2023 21:58:46 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503

URL HTTP/1.1

r3.o.lencr.org/
IP

23.36.77.32:0
ASN

#20940 Akamai International B.V.

Magic

data

Size

503
Hash

bd56ce22720c6e6072efdabae64669fd

29194390d12177fe0d88e1bd2fb4436509366a1c

c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404

HTTP Headers

                                        POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7828
Expires: Fri, 27 Jan 2023 00:09:14 GMT
Date: Thu, 26 Jan 2023 21:58:46 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a8a63ec-e0a4-4297-b143-649ad3968ae8.jpeg

34.120.237.76

200 OK

9595

URL HTTP/2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a8a63ec-e0a4-4297-b143-649ad3968ae8.jpeg
IP

34.120.237.76:0
ASN

#15169 GOOGLE

Magic

JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

Size

9595
Hash

f62e9b7bdca82d18c945851912d8fea8

a7ca44d337c43bc5c6145b26778661c71cc50484

5da02cc405c1cada55813ffe376844375f1d6ad222cbb63405348b1f5132a0b1

HTTP Headers

                                        GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a8a63ec-e0a4-4297-b143-649ad3968ae8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                        HTTP/2 200 OK
server: nginx
content-length: 9595
x-amzn-requestid: c257bfbe-1bd7-4540-bbfa-e4c49a2624a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXwfGigoAMFvBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a002-226c08656eeefbfa3c2dddb6;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k9njnQmggD7UkVJzZqSzo90HJJjTjGK0QIoPU0HWYKrSstjM6s1rOw==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 21:57:18 GMT
age: 88
etag: "a7ca44d337c43bc5c6145b26778661c71cc50484"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8822

URL HTTP/2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ffb1709-216c-4bf0-9b98-e3a355f000bb.jpeg
IP

34.120.237.76:0
ASN

#15169 GOOGLE

Report Overview

URL

IP

ASN

Submitted

Access

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (14)

#1 JS:Script (size: 67961)

#2 JS:Script (size: 23942)

#3 JS:Script (size: 148)

#4 JS:Script (size: 5933)

#5 JS:Script (size: 11119)

#6 JS:Script (size: 0)

#7 JS:Script (size: 85578)

#8 JS:Script (size: 477)

#9 JS:Script (size: 2)

#10 JS:Script (size: 283)

#11 JS:Script (size: 198)

#12 JS:Script (size: 100)

#13 JS:Script (size: 50234)

#14 JS:Script (size: 78)

HTTP Transactions (56)

URL HTTP/1.1

IP

ASN

Magic

Size

Hash

Detections

HTTP Headers

URL HTTP/1.1

IP

ASN

Magic

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

Magic

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

Magic

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

Magic

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

Magic

Size